Dell Force10 S4810P Command Line Reference Guide 9.5(0.0) For The S4810 System

1508082757force10-s4810_owner's manual2_en-us DELL FORCE10 S4810 pdf | FreeUserManuals.com

: Dell Dell-Force10-S4810P-Command-Line-Reference-Guide-136514 dell-force10-s4810p-command-line-reference-guide-136514 dell pdf

Open the PDF directly: View PDF .
Page Count: 1758

Download
Open PDF In Browser	View PDF

Dell Command Line Reference Guide for the
S4810 System
9.5(0.0)

Notes, Cautions, and Warnings
NOTE: A NOTE indicates important information that helps you make better use of your computer.
CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you
how to avoid the problem.
WARNING: A WARNING indicates a potential for property damage, personal injury, or death.

Copyright © 2014 Dell Inc. All rights reserved. This product is protected by U.S. and international copyright and
intellectual property laws. Dell™ and the Dell logo are trademarks of Dell Inc. in the United States and/or other
jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.
2014 - 06

Contents
1 About this Guide..................................................................................................... 43
Objectives............................................................................................................................................43
Audience..............................................................................................................................................43
Conventions........................................................................................................................................ 43
Information Icons............................................................................................................................... 44

2 CLI Basics..................................................................................................................45
Accessing the Command Line............................................................................................................45
Multiple Configuration Users..............................................................................................................45
Obtaining Help.................................................................................................................................... 46
Navigating the CLI...............................................................................................................................48
Using the Keyword no Command......................................................................................................48
Filtering show Commands................................................................................................................. 48
Enabling Software Features on Devices Using a Command Option................................................ 49
feature vrf...................................................................................................................................... 50
show feature..................................................................................................................................50
Command Modes................................................................................................................................51

3 File Management.................................................................................................... 62
boot system.........................................................................................................................................62
cd......................................................................................................................................................... 63
HTTP Copy via CLI.............................................................................................................................. 64
copy..................................................................................................................................................... 65
delete................................................................................................................................................... 67
dir.........................................................................................................................................................68
format flash (S-Series).........................................................................................................................69
fsck flash.............................................................................................................................................. 70
HTTP Copy via CLI............................................................................................................................... 71
rename.................................................................................................................................................72
restore factory-defaults...................................................................................................................... 72
show boot system............................................................................................................................... 75
show bootvar.......................................................................................................................................76
show file-systems................................................................................................................................77
show os-version..................................................................................................................................78
show running-config..........................................................................................................................80
show startup-config........................................................................................................................... 84
show version....................................................................................................................................... 85
upgrade................................................................................................................................................87

4 Control and Monitoring....................................................................................... 90
asf-mode.............................................................................................................................................90
cam-acl................................................................................................................................................91
cam-acl-vlan....................................................................................................................................... 93
clear line.............................................................................................................................................. 93
configure............................................................................................................................................. 94
disable..................................................................................................................................................95
do.........................................................................................................................................................96
enable.................................................................................................................................................. 97
enable optic-info-update interval......................................................................................................98
enable xfp-power-updates.................................................................................................................99
end.....................................................................................................................................................100
exec-banner...................................................................................................................................... 101
exec-timeout.....................................................................................................................................102
exit..................................................................................................................................................... 103
ftp-server enable...............................................................................................................................104
ftp-server topdir................................................................................................................................ 105
ftp-server username......................................................................................................................... 106
hostname...........................................................................................................................................107
ip http source-interface....................................................................................................................108
ip ftp password..................................................................................................................................109
ip ftp source-interface...................................................................................................................... 110
ip ftp username.................................................................................................................................. 111
ip ftp vrf.............................................................................................................................................. 112
ip telnet server enable....................................................................................................................... 112
ip telnet server vrf.............................................................................................................................. 113
ip telnet source-interface..................................................................................................................114
ip telnet vrf......................................................................................................................................... 115
ip tftp source-interface..................................................................................................................... 116
ip tftp vrf............................................................................................................................................. 117
line......................................................................................................................................................118
motd-banner..................................................................................................................................... 119
ping.................................................................................................................................................... 120
reload................................................................................................................................................. 123
send................................................................................................................................................... 124
service timestamps............................................................................................................................125
show alarms...................................................................................................................................... 126
show cam-acl-vlan........................................................................................................................... 127
show command-history................................................................................................................... 128
show command-tree........................................................................................................................130
show cpu-traffic-stats....................................................................................................................... 131

show debugging................................................................................................................................132
show environment............................................................................................................................ 133
show inventory.................................................................................................................................. 135
show memory....................................................................................................................................137
show processes cpu..........................................................................................................................138
show processes ipc flow-control.....................................................................................................142
show processes memory..................................................................................................................144
show software ifm.............................................................................................................................146
show system......................................................................................................................................148
show tech-support............................................................................................................................152
ssh-peer-stack-unit.......................................................................................................................... 155
telnet.................................................................................................................................................. 155
telnet-peer-stack-unit...................................................................................................................... 157
terminal length.................................................................................................................................. 158
traceroute.......................................................................................................................................... 159
undebug all........................................................................................................................................ 161
virtual-ip............................................................................................................................................. 161
write................................................................................................................................................... 163

5 802.1ag....................................................................................................................164
ccm disable....................................................................................................................................... 164
ccm transmit-interval....................................................................................................................... 164
clear ethernet cfm traceroute-cache...............................................................................................165
database hold-time...........................................................................................................................166
disable................................................................................................................................................166
domain............................................................................................................................................... 167
ethernet cfm...................................................................................................................................... 167
ethernet cfm mep............................................................................................................................. 168
ethernet cfm mip.............................................................................................................................. 169
mep cross-check.............................................................................................................................. 170
mep cross-check enable.................................................................................................................. 170
mep cross-check start-delay............................................................................................................ 171
ping ethernet..................................................................................................................................... 172
show ethernet cfm domain...............................................................................................................172
show ethernet cfm maintenance-points local................................................................................ 173
show ethernet cfm maintenance-points remote............................................................................ 174
show ethernet cfm mipbd.................................................................................................................175
show ethernet cfm statistics............................................................................................................. 176
show ethernet cfm port-statistics.....................................................................................................177
show ethernet cfm traceroute-cache..............................................................................................178
service................................................................................................................................................ 178
traceroute cache hold-time............................................................................................................. 179

traceroute cache size....................................................................................................................... 180
traceroute ethernet...........................................................................................................................180

6 802.1X......................................................................................................................182
debug dot1x.......................................................................................................................................183
dot1x auth-fail-vlan...........................................................................................................................183
dot1x auth-server.............................................................................................................................. 185
dot1x auth-type mab-only................................................................................................................185
dot1x authentication (Configuration)............................................................................................... 186
dot1x authentication (Interface)........................................................................................................187
dot1x guest-vlan............................................................................................................................... 188
dot1x host-mode.............................................................................................................................. 189
dot1x mac-auth-bypass....................................................................................................................190
dot1x max-eap-req............................................................................................................................191
dot1x max-supplicants......................................................................................................................192
dot1x port-control............................................................................................................................ 192
dot1x quiet-period............................................................................................................................ 193
dot1x reauthentication......................................................................................................................194
dot1x reauth-max..............................................................................................................................195
dot1x server-timeout........................................................................................................................ 196
dot1x supplicant-timeout..................................................................................................................197
dot1x tx-period..................................................................................................................................198
show dot1x cos-mapping interface................................................................................................. 198
show dot1x interface........................................................................................................................ 200

7 Access Control Lists (ACL)................................................................................. 203
Commands Common to all ACL Types...........................................................................................203
remark......................................................................................................................................... 203
show config.................................................................................................................................205
Common IP ACL Commands...........................................................................................................205
access-class................................................................................................................................ 206
clear counters ip access-group................................................................................................. 206
ip access-group.......................................................................................................................... 207
ip control-plane egress-filter..................................................................................................... 209
show ip accounting access-list..................................................................................................209
show ip access-lists..................................................................................................................... 211
Standard IP ACL Commands............................................................................................................ 212
deny..............................................................................................................................................212
ip access-list standard.................................................................................................................214
permit...........................................................................................................................................215
resequence access-list................................................................................................................ 217
seq................................................................................................................................................218

Extended IP ACL Commands........................................................................................................... 220
deny.............................................................................................................................................220
deny icmp....................................................................................................................................222
deny tcp.......................................................................................................................................224
deny udp......................................................................................................................................227
ip access-list extended............................................................................................................... 230
permit.......................................................................................................................................... 232
permit tcp.................................................................................................................................... 233
permit udp................................................................................................................................... 237
resequence access-list............................................................................................................... 240
seq................................................................................................................................................241
Common MAC Access List Commands.......................................................................................... 244
clear counters mac access-group............................................................................................. 244
mac access-group...................................................................................................................... 245
show mac access-lists................................................................................................................ 247
show mac accounting access-list..............................................................................................248
Standard MAC ACL Commands....................................................................................................... 249
deny.............................................................................................................................................249
mac access-list standard.............................................................................................................251
permit.......................................................................................................................................... 252
seq............................................................................................................................................... 254
Extended MAC ACL Commands...................................................................................................... 255
deny............................................................................................................................................. 255
mac access-list extended........................................................................................................... 257
permit.......................................................................................................................................... 259
IP Prefix List Commands................................................................................................................... 261
clear ip prefix-list.........................................................................................................................261
deny............................................................................................................................................. 262
ip prefix-list..................................................................................................................................263
seq............................................................................................................................................... 264
show config.................................................................................................................................265
show ip prefix-list detail............................................................................................................. 266
show ip prefix-list summary....................................................................................................... 267
Route Map Commands.................................................................................................................... 268
continue...................................................................................................................................... 268
description...................................................................................................................................270
match as-path.............................................................................................................................270
match community....................................................................................................................... 271
match interface........................................................................................................................... 272
match ip address......................................................................................................................... 273
match ip next-hop...................................................................................................................... 275
match ip route-source................................................................................................................276

match metric............................................................................................................................... 277
match origin................................................................................................................................ 278
match route-type........................................................................................................................279
match tag.................................................................................................................................... 280
route-map................................................................................................................................... 281
set as-path...................................................................................................................................282
set automatic-tag....................................................................................................................... 283
set comm-list delete...................................................................................................................284
set community............................................................................................................................ 285
set level........................................................................................................................................286
set local-preference................................................................................................................... 288
set metric.................................................................................................................................... 289
set metric-type........................................................................................................................... 290
set next-hop................................................................................................................................ 291
set origin......................................................................................................................................292
set tag.......................................................................................................................................... 292
set weight.................................................................................................................................... 293
show config.................................................................................................................................294
show route-map......................................................................................................................... 295
AS-Path Commands......................................................................................................................... 296
ip as-path access-list..................................................................................................................296
show ip as-path-access-lists......................................................................................................297
IP Community List Commands........................................................................................................ 298
ip community-list........................................................................................................................298
show ip community-lists............................................................................................................ 298
deny (for Standard IP ACLs)..............................................................................................................299
deny (for Extended IP ACLs)............................................................................................................. 301
seq (for Standard IPv4 ACLs)............................................................................................................ 303
deny tcp (for Extended IP ACLs)...................................................................................................... 304
deny udp (for Extended IP ACLs)..................................................................................................... 305
deny arp (for Extended MAC ACLs)..................................................................................................307
deny icmp (for Extended IP ACLs)................................................................................................... 308
deny ether-type (for Extended MAC ACLs)......................................................................................310
deny (for Standard MAC ACLs)..........................................................................................................311
deny (for Extended MAC ACLs).........................................................................................................313
permit (for Standard IP ACLs)........................................................................................................... 314
permit arp (for Extended MAC ACLs)............................................................................................... 316
permit ether-type (for Extended MAC ACLs)................................................................................... 317
permit icmp (for Extended IP ACLs)................................................................................................. 318
permit udp (for Extended IP ACLs)...................................................................................................320
permit (for Extended IP ACLs)...........................................................................................................321
permit (for Standard MAC ACLs)...................................................................................................... 323

seq (for Standard MAC ACLs)........................................................................................................... 324
permit tcp (for Extended IP ACLs)....................................................................................................326
seq arp (for Extended MAC ACLs).................................................................................................... 327
seq ether-type (for Extended MAC ACLs)........................................................................................329
seq (for IP ACLs)................................................................................................................................330
seq (for IPv6 ACLs)............................................................................................................................ 332
permit udp (for IPv6 ACLs)................................................................................................................333
permit tcp (for IPv6 ACLs).................................................................................................................335
permit icmp (for IPv6 ACLs)..............................................................................................................336
permit (for IPv6 ACLs)....................................................................................................................... 337
deny udp (for IPv6 ACLs).................................................................................................................. 339
deny tcp (for IPv6 ACLs)................................................................................................................... 340
deny icmp (for Extended IPv6 ACLs)................................................................................................342
deny (for IPv6 ACLs)..........................................................................................................................343

8 Access Control List (ACL) VLAN Groups and Content Addressable
Memory (CAM)..........................................................................................................346
member vlan..................................................................................................................................... 346
ip access-group................................................................................................................................ 347
show acl-vlan-group ....................................................................................................................... 347
show cam-acl-vlan...........................................................................................................................349
cam-acl-vlan.....................................................................................................................................350
show cam-usage...............................................................................................................................351
show running config acl-vlan-group...............................................................................................354
acl-vlan-group.................................................................................................................................. 355
show acl-vlan-group detail.............................................................................................................. 356
description (ACL VLAN Group)......................................................................................................... 357

9 Bidirectional Forwarding Detection (BFD).................................................... 358
bfd all-neighbors.............................................................................................................................. 358
bfd disable.........................................................................................................................................360
bfd enable (Configuration)............................................................................................................... 360
bfd enable (Interface)........................................................................................................................ 361
bfd interval ....................................................................................................................................... 362
bfd neighbor......................................................................................................................................363
bfd protocol-liveness....................................................................................................................... 364
ip route bfd........................................................................................................................................364
ipv6 ospf bfd all-neighbors.............................................................................................................. 366
isis bfd all-neighbors.........................................................................................................................367
neighbor bfd..................................................................................................................................... 368
neighbor bfd disable.........................................................................................................................369
show bfd neighbors.......................................................................................................................... 370

vrrp bfd neighbor.............................................................................................................................. 372

10 Border Gateway Protocol.................................................................................374
BGP IPv4 Commands....................................................................................................................... 374
address-family.............................................................................................................................374
aggregate-address...................................................................................................................... 375
bgp add-path...............................................................................................................................377
bgp always-compare-med.........................................................................................................378
bgp asnotation............................................................................................................................ 379
bgp bestpath as-path ignore......................................................................................................380
bgp bestpath as-path multipath-relax....................................................................................... 381
bgp bestpath med confed...........................................................................................................381
bgp bestpath med missing-as-best........................................................................................... 382
bgp bestpath router-id ignore....................................................................................................383
bgp client-to-client reflection....................................................................................................383
bgp cluster-id..............................................................................................................................384
bgp confederation identifier.......................................................................................................385
bgp confederation peers............................................................................................................ 387
bgp connection-retry-timer.......................................................................................................388
bgp dampening...........................................................................................................................388
bgp default local-preference..................................................................................................... 390
bgp enforce-first-as.................................................................................................................... 391
bgp fast-external-fallover...........................................................................................................392
bgp four-octet-as-support........................................................................................................ 392
bgp graceful-restart....................................................................................................................393
bgp non-deterministic-med...................................................................................................... 394
bgp recursive-bgp-next-hop..................................................................................................... 395
bgp regex-eval-optz-disable..................................................................................................... 396
bgp router-id...............................................................................................................................398
clear ip bgp..................................................................................................................................398
clear ip bgp dampening............................................................................................................. 400
clear ip bgp flap-statistics...........................................................................................................401
clear ip bgp peer-group............................................................................................................. 403
debug ip bgp...............................................................................................................................404
debug ip bgp dampening........................................................................................................... 405
debug ip bgp events................................................................................................................... 406
debug ip bgp keepalives............................................................................................................. 407
debug ip bgp notifications......................................................................................................... 408
debug ip bgp soft-reconfiguration............................................................................................ 409
debug ip bgp updates................................................................................................................. 410
default-metric.............................................................................................................................. 411
description................................................................................................................................... 412

max-paths....................................................................................................................................412
neighbor activate.........................................................................................................................413
neighbor add-path...................................................................................................................... 414
neighbor advertisement-interval................................................................................................ 415
neighbor advertisement-start.....................................................................................................416
neighbor allowas-in.....................................................................................................................417
neighbor default-originate......................................................................................................... 418
neighbor description...................................................................................................................419
neighbor distribute-list............................................................................................................... 420
neighbor ebgp-multihop............................................................................................................ 421
neighbor fall-over....................................................................................................................... 422
neighbor local-as........................................................................................................................423
neighbor maximum-prefix......................................................................................................... 424
neighbor password..................................................................................................................... 425
neighbor peer-group (assigning peers)......................................................................................427
neighbor peer-group (creating group)...................................................................................... 428
neighbor peer-group passive..................................................................................................... 429
neighbor remote-as................................................................................................................... 430
neighbor remove-private-as.......................................................................................................431
neighbor route-map................................................................................................................... 432
neighbor route-reflector-client................................................................................................. 433
neighbor sender-side-loopdetect............................................................................................. 434
neighbor shutdown.................................................................................................................... 436
neighbor soft-reconfiguration inbound.....................................................................................437
neighbor timers...........................................................................................................................438
neighbor update-source............................................................................................................ 439
neighbor weight......................................................................................................................... 440
network........................................................................................................................................441
network backdoor...................................................................................................................... 442
redistribute.................................................................................................................................. 443
redistribute ospf.......................................................................................................................... 445
router bgp................................................................................................................................... 446
show capture bgp-pdu neighbor............................................................................................... 447
show config................................................................................................................................ 448
show ip bgp.................................................................................................................................449
show ip bgp cluster-list...............................................................................................................451
show ip bgp community.............................................................................................................453
show ip bgp community-list...................................................................................................... 455
show ip bgp dampened-paths................................................................................................... 457
show ip bgp detail.......................................................................................................................458
show ip bgp extcommunity-list..................................................................................................461
show ip bgp filter-list..................................................................................................................462

show ip bgp flap-statistics..........................................................................................................464
show ip bgp inconsistent-as...................................................................................................... 466
show ip bgp neighbors............................................................................................................... 468
show ip bgp next-hop................................................................................................................ 472
show ip bgp paths....................................................................................................................... 473
show ip bgp paths community...................................................................................................475
show ip bgp peer-group.............................................................................................................476
show ip bgp regexp.................................................................................................................... 478
show ip bgp summary................................................................................................................ 480
show running-config bgp.......................................................................................................... 483
timers bgp................................................................................................................................... 483
MBGP Commands............................................................................................................................ 484
debug ip bgp dampening........................................................................................................... 484
distance bgp................................................................................................................................485
show ip bgp dampened-paths...................................................................................................486
BGP Extended Communities (RFC 4360)........................................................................................ 488
set extcommunity rt................................................................................................................... 488
set extcommunity soo................................................................................................................489
show ip bgp paths extcommunity............................................................................................. 490
show ip extcommunity-list......................................................................................................... 491
IPv6 BGP Commands....................................................................................................................... 492
clear ip bgp ipv6 unicast soft......................................................................................................492
debug ip bgp ipv6 unicast soft-reconfiguration........................................................................493
ipv6 prefix-list............................................................................................................................. 494
neighbor soft-reconfiguration inbound.................................................................................... 495
show ipv6 prefix-list................................................................................................................... 496
IPv6 MBGP Commands.................................................................................................................... 496
show ipv6 mbgproutes...............................................................................................................496

11 Content Addressable Memory (CAM)............................................................498
CAM Profile Commands...................................................................................................................498
cam-acl (Configuration)............................................................................................................. 498
cam-acl-egress...........................................................................................................................502
cam-optimization....................................................................................................................... 502
show cam-acl............................................................................................................................. 503
test cam-usage........................................................................................................................... 505

12 Control Plane Policing (CoPP)........................................................................ 508
control-plane-cpuqos......................................................................................................................508
service-policy rate-limit-cpu-queues............................................................................................. 508
service-policy rate-limit-protocols................................................................................................. 509
ip unknown-unicast.......................................................................................................................... 510

ipv6 unknown-unicast.......................................................................................................................511
show cpu-queue rate cp................................................................................................................... 511
show ip protocol-queue-mapping...................................................................................................512
show ipv6 protocol-queue-mapping...............................................................................................513
show mac protocol-queue-mapping.............................................................................................. 514

13 Data Center Bridging (DCB)............................................................................. 515
DCB Command................................................................................................................................. 515
dcb-enable...................................................................................................................................515
PFC Commands................................................................................................................................ 516
clear pfc counters....................................................................................................................... 516
dcb-input..................................................................................................................................... 517
dcb-policy input.......................................................................................................................... 518
dcb-policy input stack-unit stack-ports all................................................................................519
dcb stack-unit pfc-buffering pfc-port-count pfc-queues....................................................... 520
description................................................................................................................................... 521
pfc link-delay...............................................................................................................................522
pfc mode on................................................................................................................................523
pfc no-drop queues....................................................................................................................524
pfc priority................................................................................................................................... 525
show dcb..................................................................................................................................... 526
show interface pfc.......................................................................................................................527
show interface pfc statistics....................................................................................................... 530
show qos dcb-input.................................................................................................................... 531
show stack-unit stack-ports pfc details.....................................................................................532
ETS Commands.................................................................................................................................533
bandwidth-percentage............................................................................................................... 533
clear ets counters........................................................................................................................534
dcb-enable.................................................................................................................................. 535
dcb-output.................................................................................................................................. 535
dcb-policy output....................................................................................................................... 536
dcb-policy output stack-unit stack-ports all............................................................................. 537
description...................................................................................................................................538
ets mode on................................................................................................................................ 539
priority-list...................................................................................................................................540
priority-group.............................................................................................................................. 541
priority-group qos-policy...........................................................................................................542
qos-policy-output ets.................................................................................................................543
scheduler.....................................................................................................................................544
set-pgid....................................................................................................................................... 545
show interface ets.......................................................................................................................546
show qos dcb-output................................................................................................................. 550

show qos priority-groups............................................................................................................551
show stack-unit stack-ports ets details..................................................................................... 552
DCBX Commands............................................................................................................................. 553
advertise dcbx-app-tlv................................................................................................................553
advertise dcbx-appln-tlv.............................................................................................................554
advertise dcbx-tlv........................................................................................................................555
dcbx port-role............................................................................................................................. 556
dcbx version................................................................................................................................ 557
debug dcbx..................................................................................................................................558
fcoe priority-bits......................................................................................................................... 559
iscsi priority-bits.......................................................................................................................... 559
show interface dcbx detail......................................................................................................... 560
Configuring DCB Maps and its Attributes........................................................................................ 563
Data Center Bridging: Default Configuration.................................................................................. 567
dcb-map............................................................................................................................................567
priority-pgid...................................................................................................................................... 568
pfc mode on..................................................................................................................................... 569
priority-group bandwidth pfc...........................................................................................................570
dcb-map stack-unit all stack-ports all............................................................................................. 571
show qos dcb-map...........................................................................................................................572
Applying a DCB Map in a Switch Stack ............................................................................................573
dcb pfc-shared-buffer-size.............................................................................................................. 573
dcb-buffer-threshold .......................................................................................................................574
priority................................................................................................................................................575
qos-policy-buffer..............................................................................................................................576
dcb-policy buffer-threshold (Interface Configuration)...................................................................578
dcb-policy dcb-buffer-threshold (Global Configuration)...............................................................579
show qos dcb-buffer-threshold.......................................................................................................579
show hardware stack-unit buffer-stats-snapshot (With Polling and History)............................... 580
dcb pfc-total-buffer-size................................................................................................................. 587
show running-config dcb-buffer-threshold................................................................................... 587
dcb pfc-queues................................................................................................................................ 589
dcb  enable...................................................................................................................... 590

14 Debugging and Diagnostics.............................................................................591
Offline Diagnostic Commands......................................................................................................... 591
diag stack-unit.............................................................................................................................591
offline stack-unit......................................................................................................................... 593
online stack-unit......................................................................................................................... 594
Buffer Tuning Commands................................................................................................................ 595
buffer-profile (Configuration).....................................................................................................595
Hardware Commands...................................................................................................................... 596

clear hardware stack-unit...........................................................................................................596
clear hardware system-flow....................................................................................................... 597
hardware watchdog....................................................................................................................598
show hardware layer2.................................................................................................................598
show hardware layer3.................................................................................................................599
show hardware stack-unit......................................................................................................... 600
show hardware system-flow......................................................................................................606

15 Dynamic Host Configuration Protocol (DHCP).......................................... 610
Commands to Configure the System to be a DHCP Server........................................................... 610
clear ip dhcp................................................................................................................................610
debug ip dhcp server................................................................................................................... 611
default-router.............................................................................................................................. 612
disable.......................................................................................................................................... 612
dns-server....................................................................................................................................613
domain-name..............................................................................................................................613
excluded-address........................................................................................................................614
hardware-address....................................................................................................................... 615
host.............................................................................................................................................. 615
lease............................................................................................................................................. 616
netbios-name-server.................................................................................................................. 617
netbios-node-type...................................................................................................................... 617
network........................................................................................................................................618
pool..............................................................................................................................................619
show ip dhcp binding..................................................................................................................619
show ip dhcp configuration....................................................................................................... 620
show ip dhcp conflict................................................................................................................. 620
show ip dhcp server.................................................................................................................... 621
Commands to Configure Secure DHCP.......................................................................................... 621
arp inspection.............................................................................................................................. 621
arp inspection-trust.................................................................................................................... 622
clear ip dhcp snooping............................................................................................................... 623
ip dhcp relay................................................................................................................................623
ip dhcp snooping........................................................................................................................ 624
ip dhcp snooping binding...........................................................................................................625
ip dhcp snooping database........................................................................................................ 626
ip dhcp snooping database renew............................................................................................. 627
ip dhcp snooping trust................................................................................................................627
ip dhcp source-address-validation............................................................................................ 628
ip dhcp relay information-option...............................................................................................629
ip dhcp snooping verify mac-address....................................................................................... 630
ip helper-address........................................................................................................................630

show ip dhcp snooping...............................................................................................................631
Commands to Configure DNS ........................................................................................................ 632
ip name-server............................................................................................................................ 632
ip domain-name......................................................................................................................... 633
ip domain-list.............................................................................................................................. 633
ip host..........................................................................................................................................634
clear host.....................................................................................................................................635

16 Equal Cost Multi-Path (ECMP)........................................................................ 636
ecmp-group......................................................................................................................................636
hash-algorithm..................................................................................................................................637
hash-algorithm ecmp....................................................................................................................... 641
hash-algorithm seed........................................................................................................................ 642
ip ecmp-group..................................................................................................................................643
link-bundle-monitor enable............................................................................................................ 644
link-bundle-distribution trigger-threshold......................................................................................644
show config...................................................................................................................................... 645
show link-bundle distribution.......................................................................................................... 646

17 FIPS Cryptography............................................................................................. 647
fips mode enable.............................................................................................................................. 647
show fips status................................................................................................................................ 648
show ip ssh....................................................................................................................................... 648
ssh..................................................................................................................................................... 649

18 FCoE Transit.........................................................................................................653
clear fip-snooping database interface vlan..................................................................................... 653
clear fip-snooping statistics............................................................................................................. 654
debug fip snooping...........................................................................................................................654
debug fip snooping rx.......................................................................................................................655
feature fip-snooping.........................................................................................................................656
fip-snooping enable..........................................................................................................................657
fip-snooping fc-map........................................................................................................................ 657
fip-snooping max-sessions-per-enodemac................................................................................... 658
fip-snooping port-mode fcf.............................................................................................................659
fip-snooping port-mode fcoe-trusted............................................................................................ 659
show fip-snooping config................................................................................................................660
show fip-snooping enode................................................................................................................ 661
show fip-snooping fcf...................................................................................................................... 662
show fip-snooping statistics............................................................................................................ 663
show fip-snooping system...............................................................................................................666
show fip-snooping vlan....................................................................................................................667

show fips status.................................................................................................................................667

19 Force10 Resilient Ring Protocol (FRRP)....................................................... 669
clear frrp............................................................................................................................................669
debug frrp......................................................................................................................................... 670
description......................................................................................................................................... 671
disable................................................................................................................................................672
interface.............................................................................................................................................673
member-vlan.................................................................................................................................... 674
mode................................................................................................................................................. 675
protocol frrp......................................................................................................................................676
show frrp........................................................................................................................................... 676
timer.................................................................................................................................................. 678

20 GARP VLAN Registration (GVRP)................................................................... 680
clear gvrp statistics............................................................................................................................681
debug gvrp........................................................................................................................................ 682
disable............................................................................................................................................... 683
garp timers........................................................................................................................................ 683
gvrp enable....................................................................................................................................... 685
gvrp registration................................................................................................................................685
protocol gvrp.................................................................................................................................... 686
show config.......................................................................................................................................687
show garp timers.............................................................................................................................. 688
show gvrp......................................................................................................................................... 688
show gvrp statistics.......................................................................................................................... 690

21 High Availability (HA).........................................................................................692
patch flash://RUNTIME_PATCH_DIR...............................................................................................692
process restartable........................................................................................................................... 693
redundancy auto-failover-limit........................................................................................................694
redundancy disable-auto-reboot.................................................................................................... 695
redundancy force-failover............................................................................................................... 696
redundancy primary..........................................................................................................................697
redundancy protocol........................................................................................................................ 697
redundancy reset-counter...............................................................................................................698
redundancy sfm standby..................................................................................................................699
redundancy synchronize..................................................................................................................700
show patch........................................................................................................................................ 701
show processes restartable.............................................................................................................. 702
show redundancy............................................................................................................................. 702

22 ICMP Message Types.........................................................................................706
23 Internet Group Management Protocol (IGMP).......................................... 708
IGMP Commands............................................................................................................................. 708
clear ip igmp groups................................................................................................................... 708
debug ip igmp............................................................................................................................. 709
ip igmp access-group................................................................................................................. 710
ip igmp group-join-limit.............................................................................................................. 711
ip igmp immediate-leave............................................................................................................ 712
ip igmp last-member-query-interval..........................................................................................713
ip igmp querier-timeout..............................................................................................................714
ip igmp query-interval................................................................................................................. 715
ip igmp query-max-resp-time.................................................................................................... 716
ip igmp ssm-map.........................................................................................................................717
ip igmp static-group....................................................................................................................718
ip igmp version............................................................................................................................ 719
show ip igmp groups.................................................................................................................. 720
show ip igmp interface............................................................................................................... 722
show ip igmp ssm-map.............................................................................................................. 723
IGMP Snooping Commands.............................................................................................................724
ip igmp snooping enable............................................................................................................ 725
ip igmp snooping fast-leave....................................................................................................... 726
ip igmp snooping flood...............................................................................................................726
ip igmp snooping last-member-query-interval......................................................................... 727
ip igmp snooping mrouter..........................................................................................................728
ip igmp snooping querier............................................................................................................729
show ip igmp snooping mrouter................................................................................................730

24 Interfaces..............................................................................................................732
Basic Interface Commands...............................................................................................................732
clear counters..............................................................................................................................732
clear dampening......................................................................................................................... 734
dampening...................................................................................................................................735
description...................................................................................................................................736
duplex (10/100 Interfaces).......................................................................................................... 737
flowcontrol.................................................................................................................................. 738
interface....................................................................................................................................... 741
interface group............................................................................................................................743
interface loopback...................................................................................................................... 744
interface ManagementEthernet..................................................................................................745
interface null................................................................................................................................746

interface range............................................................................................................................ 747
interface range macro (define)................................................................................................... 750
interface range macro name.......................................................................................................751
interface vlan............................................................................................................................... 752
intf-type cr4 autoneg..................................................................................................................754
keepalive...................................................................................................................................... 754
negotiation auto.......................................................................................................................... 755
monitor interface........................................................................................................................ 758
mtu.............................................................................................................................................. 760
portmode hybrid......................................................................................................................... 762
rate-interval.................................................................................................................................764
show config.................................................................................................................................765
show config (from INTERFACE RANGE mode)..........................................................................765
show interfaces........................................................................................................................... 766
show interfaces configured........................................................................................................ 773
show interfaces dampening........................................................................................................774
show interfaces phy.................................................................................................................... 775
show interfaces stack-unit..........................................................................................................778
show interfaces status.................................................................................................................779
show interfaces switchport.........................................................................................................781
show interfaces transceiver........................................................................................................ 783
show range..................................................................................................................................788
show running-config ecmp-group............................................................................................789
shutdown.....................................................................................................................................789
speed (for 10/100/1000 interfaces)............................................................................................ 791
speed (Management interface)...................................................................................................792
stack-unit portmode................................................................................................................... 793
switchport....................................................................................................................................794
Egress Interface Selection (EIS) Commands....................................................................................796
application...................................................................................................................................796
application (for HTTP and ICMP)................................................................................................ 797
clear management application pkt-cntr.................................................................................... 798
clear management application pkt-fallback-cntr..................................................................... 798
management egress-interface-selection.................................................................................. 798
show ip management-eis-route ............................................................................................... 799
show management application pkt-cntr................................................................................... 799
show management application pkt-fallback-cntr.................................................................... 800
Port Channel Commands.................................................................................................................801
channel-member........................................................................................................................ 801
group........................................................................................................................................... 803
interface port-channel............................................................................................................... 804
minimum-links............................................................................................................................805

port-channel failover-group......................................................................................................806
show config.................................................................................................................................807
show interfaces port-channel....................................................................................................808
show port-channel-flow............................................................................................................. 811
Time Domain Reflectometer (TDR)..................................................................................................813
tdr-cable-test.............................................................................................................................. 813
show tdr.......................................................................................................................................814
UDP Broadcast.................................................................................................................................. 815
debug ip udp-helper................................................................................................................... 816
ip udp-broadcast-address...........................................................................................................817
ip udp-helper udp-port...............................................................................................................817
show ip udp-helper.....................................................................................................................819
ip http source-interface....................................................................................................................819

25 Enhanced Validation of Interface Ranges....................................................821
26 Internet Protocol Security (IPSec)................................................................. 822
crypto ipsec transform-set...............................................................................................................822
crypto ipsec policy............................................................................................................................824
management crypto-policy............................................................................................................. 825
match................................................................................................................................................ 825
session-key....................................................................................................................................... 826
show crypto ipsec transform-set..................................................................................................... 827
show crypto ipsec policy..................................................................................................................828
transform-set....................................................................................................................................830

27 IPv4 Routing........................................................................................................ 831
arp...................................................................................................................................................... 831
arp backoff-time............................................................................................................................... 832
arp learn-enable............................................................................................................................... 833
arp max-entries.................................................................................................................................834
arp retries.......................................................................................................................................... 835
arp timeout........................................................................................................................................835
clear arp-cache.................................................................................................................................836
clear host.......................................................................................................................................... 838
clear ip fib stack-unit........................................................................................................................838
clear ip route.....................................................................................................................................839
clear tcp statistics............................................................................................................................. 840
debug arp.......................................................................................................................................... 841
debug ip dhcp...................................................................................................................................842
debug ip icmp...................................................................................................................................844
debug ip packet................................................................................................................................ 845

ip address.......................................................................................................................................... 848
ip directed-broadcast.......................................................................................................................849
ip domain-list....................................................................................................................................850
ip domain-lookup............................................................................................................................. 851
ip domain-name............................................................................................................................... 852
ip helper-address.............................................................................................................................. 853
ip helper-address hop-count disable.............................................................................................. 854
ip host................................................................................................................................................855
ip icmp source-interface..................................................................................................................856
ipv6 icmp source-interface.............................................................................................................. 857
ip max-frag-count............................................................................................................................ 859
ip max-routes................................................................................................................................... 860
ip mtu................................................................................................................................................ 860
ip name-server..................................................................................................................................862
ip proxy-arp...................................................................................................................................... 863
ip route..............................................................................................................................................864
ip source-route.................................................................................................................................866
ip unreachables.................................................................................................................................867
load-balance..................................................................................................................................... 867
load-balance hg............................................................................................................................... 869
management route........................................................................................................................... 871
show arp............................................................................................................................................872
show arp retries................................................................................................................................ 876
show hosts........................................................................................................................................ 876
show ip cam linecard........................................................................................................................878
show ip cam stack-unit.................................................................................................................... 881
show ip fib linecard.......................................................................................................................... 884
show ip fib stack-unit.......................................................................................................................886
show ip flow......................................................................................................................................887
show ip interface.............................................................................................................................. 889
show ip management-route............................................................................................................ 892
show ipv6 management-route........................................................................................................ 893
show ip protocols.............................................................................................................................894
show ip route.................................................................................................................................... 895
show ip route list.............................................................................................................................. 898
show ip route summary................................................................................................................... 899
show ip traffic....................................................................................................................................901
show tcp statistics............................................................................................................................ 903

28 IPv6 Access Control Lists (IPv6 ACLs)...........................................................907
show cam-acl-egress.......................................................................................................................907
show cam-acl...................................................................................................................................908

permit icmp....................................................................................................................................... 910
permit................................................................................................................................................. 911
ipv6 control-plane egress-filter........................................................................................................912
ipv6 access-list.................................................................................................................................. 912
cam-acl-egress................................................................................................................................. 913
cam-acl..............................................................................................................................................915

29 IPv6 Basics............................................................................................................917
clear ipv6 fib...................................................................................................................................... 917
clear ipv6 route................................................................................................................................. 918
clear ipv6 mld_host.......................................................................................................................... 918
ipv6 address autoconfig....................................................................................................................919
ipv6 address...................................................................................................................................... 920
ipv6 address eui64............................................................................................................................ 921
ipv6 control-plane icmp error-rate-limit........................................................................................ 922
ipv6 flowlabel-zero...........................................................................................................................923
ipv6 host............................................................................................................................................923
ipv6 name-server..............................................................................................................................924
ipv6 nd dad attempts........................................................................................................................ 925
ipv6 nd dns-server ........................................................................................................................... 926
ipv6 nd prefix.....................................................................................................................................927
ipv6 route.......................................................................................................................................... 928
ipv6 unicast-routing......................................................................................................................... 930
show ipv6 cam stack-unit.................................................................................................................931
show ipv6 control-plane icmp.........................................................................................................933
show ipv6 fib stack-unit................................................................................................................... 933
show ipv6 flowlabel-zero.................................................................................................................934
show ipv6 interface...........................................................................................................................935
show ipv6 mld_host......................................................................................................................... 938
show ipv6 route................................................................................................................................ 939
trust ipv6-diffserv..............................................................................................................................942

30 iSCSI Optimization............................................................................................ 944
advertise dcbx-app-tlv..................................................................................................................... 944
iscsi aging time................................................................................................................................. 945
iscsi cos............................................................................................................................................. 945
iscsi enable........................................................................................................................................946
iscsi priority-bits................................................................................................................................947
iscsi profile-compellant....................................................................................................................948
iscsi target port................................................................................................................................. 948
show iscsi..........................................................................................................................................949
show iscsi session.............................................................................................................................950

show iscsi session detailed............................................................................................................... 951
show run iscsi....................................................................................................................................953

31 Intermediate System to Intermediate System (IS-IS)................................ 954
adjacency-check.............................................................................................................................. 954
advertise............................................................................................................................................ 955
area-password.................................................................................................................................. 956
clear config........................................................................................................................................957
clear isis.............................................................................................................................................958
clns host............................................................................................................................................ 959
debug isis.......................................................................................................................................... 959
debug isis adj-packets......................................................................................................................960
debug isis local-updates...................................................................................................................961
debug isis snp-packets..................................................................................................................... 962
debug isis spf-triggers...................................................................................................................... 963
debug isis update-packets............................................................................................................... 964
default-information originate...........................................................................................................965
description........................................................................................................................................ 966
distance............................................................................................................................................. 967
distribute-list in.................................................................................................................................968
distribute-list out.............................................................................................................................. 969
distribute-list redistributed-override................................................................................................970
domain-password............................................................................................................................. 971
graceful-restart ietf........................................................................................................................... 972
graceful-restart interval.................................................................................................................... 973
graceful-restart restart-wait............................................................................................................. 973
graceful-restart t1............................................................................................................................. 974
graceful-restart t2............................................................................................................................. 975
graceful-restart t3.............................................................................................................................976
hello padding.....................................................................................................................................977
hostname dynamic........................................................................................................................... 978
ignore-lsp-errors.............................................................................................................................. 979
ip router isis....................................................................................................................................... 979
ipv6 router isis...................................................................................................................................980
isis circuit-type.................................................................................................................................. 981
isis csnp-interval............................................................................................................................... 982
isis hello-interval...............................................................................................................................983
isis hello-multiplier........................................................................................................................... 984
isis hello padding.............................................................................................................................. 985
isis ipv6 metric.................................................................................................................................. 986
isis metric.......................................................................................................................................... 987
isis network point-to-point..............................................................................................................988

isis password.....................................................................................................................................988
isis priority......................................................................................................................................... 990
is-type................................................................................................................................................991
log-adjacency-changes................................................................................................................... 992
lsp-gen-interval................................................................................................................................ 992
lsp-mtu..............................................................................................................................................994
lsp-refresh-interval........................................................................................................................... 995
max-area-addresses.........................................................................................................................996
max-lsp-lifetime............................................................................................................................... 996
maximum-paths................................................................................................................................997
metric-style.......................................................................................................................................998
multi-topology..................................................................................................................................999
net................................................................................................................................................... 1000
passive-interface.............................................................................................................................1001
redistribute...................................................................................................................................... 1002
redistribute bgp.............................................................................................................................. 1004
redistribute ospf..............................................................................................................................1005
router isis.........................................................................................................................................1007
set-overload-bit............................................................................................................................. 1008
show config.................................................................................................................................... 1009
show isis database.......................................................................................................................... 1010
show isis graceful-restart detail......................................................................................................1012
show isis hostname.........................................................................................................................1013
show isis interface...........................................................................................................................1014
show isis neighbors......................................................................................................................... 1015
show isis protocol........................................................................................................................... 1017
show isis traffic................................................................................................................................1018
spf-interval...................................................................................................................................... 1020

32 Link Aggregation Control Protocol (LACP)............................................... 1022
clear lacp counters......................................................................................................................... 1022
debug lacp...................................................................................................................................... 1023
lacp long-timeout...........................................................................................................................1024
lacp port-priority.............................................................................................................................1025
lacp system-priority........................................................................................................................1026
port-channel-protocol lacp...........................................................................................................1026
show lacp........................................................................................................................................ 1027

33 Layer 2.................................................................................................................1029
MAC Addressing Commands......................................................................................................... 1029
clear mac-address-table.......................................................................................................... 1029
mac-address-table aging-time................................................................................................1030

mac-address-table static.......................................................................................................... 1031
mac-address-table station-move threshold........................................................................... 1033
mac-address-table station-move refresh-arp........................................................................ 1033
mac learning-limit.................................................................................................................... 1034
mac learning-limit learn-limit-violation.................................................................................. 1036
mac learning-limit mac-address-sticky................................................................................... 1037
mac learning-limit station-move-violation............................................................................. 1037
mac learning-limit reset........................................................................................................... 1038
show cam mac linecard (count)...............................................................................................1039
show cam mac linecard (dynamic or static)............................................................................1040
show mac-address-table......................................................................................................... 1042
show mac-address-table aging-time...................................................................................... 1045
show mac accounting destination...........................................................................................1046
show mac learning-limit...........................................................................................................1047
Virtual LAN (VLAN) Commands......................................................................................................1048
default vlan-id........................................................................................................................... 1049
default-vlan disable.................................................................................................................. 1050
name..........................................................................................................................................1050
show config............................................................................................................................... 1051
show vlan...................................................................................................................................1052
tagged........................................................................................................................................1055
track ip.......................................................................................................................................1056
untagged................................................................................................................................... 1058
Far-End Failure Detection (FEFD)...................................................................................................1059
debug fefd................................................................................................................................. 1059
fefd............................................................................................................................................ 1060
fefd disable................................................................................................................................ 1061
fefd interval............................................................................................................................... 1062
fefd mode..................................................................................................................................1062
fefd reset................................................................................................................................... 1063
fefd-global interval................................................................................................................... 1064
fefd-global.................................................................................................................................1065
show fefd.................................................................................................................................. 1066

34 Link Layer Discovery Protocol (LLDP)........................................................ 1069
LLPD Commands............................................................................................................................1069
advertise dot1-tlv...................................................................................................................... 1069
advertise dot3-tlv...................................................................................................................... 1070
advertise management-tlv........................................................................................................ 1071
advertise management-tlv (Interface)......................................................................................1072
clear lldp counters.................................................................................................................... 1073
clear lldp neighbors.................................................................................................................. 1074

debug lldp interface.................................................................................................................. 1074
disable........................................................................................................................................1076
hello........................................................................................................................................... 1077
management-interface............................................................................................................. 1077
mode......................................................................................................................................... 1078
multiplier....................................................................................................................................1079
protocol lldp (Configuration)....................................................................................................1079
protocol lldp (Interface)........................................................................................................... 1080
show lldp neighbors..................................................................................................................1081
show lldp statistics....................................................................................................................1082
show management-interface.................................................................................................. 1083
show running-config lldp.........................................................................................................1083
LLDP-MED Commands.................................................................................................................. 1084
advertise med guest-voice.......................................................................................................1084
advertise med guest-voice-signaling...................................................................................... 1085
advertise med location-identification......................................................................................1086
advertise med power-via-mdi..................................................................................................1087
advertise med softphone-voice...............................................................................................1088
advertise med streaming-video............................................................................................... 1089
advertise med video-conferencing......................................................................................... 1090
advertise med video-signaling..................................................................................................1091
advertise med voice..................................................................................................................1092
advertise med voice-signaling................................................................................................. 1093

35 Microsoft Network Load Balancing............................................................ 1095
arp (for Multicast MAC Address).....................................................................................................1097
mac-address-table static (for Multicast MAC Address)................................................................ 1098
ip vlan-flooding...............................................................................................................................1100

36 Multicast Source Discovery Protocol (MSDP)........................................... 1101
clear ip msdp peer........................................................................................................................... 1101
clear ip msdp sa-cache...................................................................................................................1102
clear ip msdp statistic......................................................................................................................1103
debug ip msdp................................................................................................................................ 1104
ip msdp cache-rejected-sa............................................................................................................ 1104
ip msdp default-peer...................................................................................................................... 1105
ip msdp log-adjacency-changes................................................................................................... 1106
ip msdp mesh-group...................................................................................................................... 1107
ip msdp originator-id...................................................................................................................... 1108
ip msdp peer....................................................................................................................................1109
ip msdp redistribute.........................................................................................................................1110
ip msdp sa-filter............................................................................................................................... 1111

ip msdp sa-limit............................................................................................................................... 1112
ip msdp shutdown........................................................................................................................... 1113
ip multicast-msdp............................................................................................................................1114
show ip msdp...................................................................................................................................1114
show ip msdp sa-cache rejected-sa...............................................................................................1116

37 Multiple Spanning Tree Protocol (MSTP).................................................... 1117
debug spanning-tree mstp..............................................................................................................1117
disable.............................................................................................................................................. 1118
forward-delay.................................................................................................................................. 1119
hello-time........................................................................................................................................ 1120
max-age........................................................................................................................................... 1121
msti...................................................................................................................................................1122
name................................................................................................................................................ 1123
protocol spanning-tree mstp......................................................................................................... 1124
revision.............................................................................................................................................1125
show config..................................................................................................................................... 1126
show spanning-tree mst configuration..........................................................................................1126
show spanning-tree msti................................................................................................................ 1127
spanning-tree.................................................................................................................................. 1130
spanning-tree msti...........................................................................................................................1131
tc-flush-standard............................................................................................................................ 1132

38 Multicast............................................................................................................. 1134
IPv4 Multicast Commands.............................................................................................................. 1134
clear ip mroute.......................................................................................................................... 1134
ip mroute....................................................................................................................................1135
ip multicast-limit........................................................................................................................1136
ip multicast-routing................................................................................................................... 1137
show ip mroute......................................................................................................................... 1138
show ip rpf..................................................................................................................................1141

39 Neighbor Discovery Protocol (NDP)............................................................1142
clear ipv6 neighbors........................................................................................................................1142
ipv6 neighbor...................................................................................................................................1143
show ipv6 neighbors.......................................................................................................................1144

40 Open Shortest Path First (OSPFv2 and OSPFv3).......................................1147
OSPFv2 Commands........................................................................................................................ 1147
area default-cost....................................................................................................................... 1147
area nssa.................................................................................................................................... 1148
area range.................................................................................................................................. 1149

area stub.................................................................................................................................... 1150
auto-cost....................................................................................................................................1151
clear ip ospf................................................................................................................................1152
clear ip ospf statistics................................................................................................................ 1153
debug ip ospf............................................................................................................................. 1154
default-information originate....................................................................................................1157
default-metric............................................................................................................................1158
description................................................................................................................................. 1159
distance......................................................................................................................................1159
distance ospf............................................................................................................................. 1160
distribute-list in.......................................................................................................................... 1161
distribute-list out....................................................................................................................... 1162
fast-convergence...................................................................................................................... 1164
graceful-restart grace-period................................................................................................... 1165
graceful-restart helper-reject................................................................................................... 1166
graceful-restart mode............................................................................................................... 1167
graceful-restart role.................................................................................................................. 1167
ip ospf auth-change-wait-time................................................................................................ 1168
ip ospf authentication-key........................................................................................................1169
ip ospf cost................................................................................................................................ 1170
ip ospf dead-interval.................................................................................................................. 1171
ip ospf hello-interval..................................................................................................................1172
ip ospf message-digest-key...................................................................................................... 1172
ip ospf mtu-ignore.................................................................................................................... 1174
ip ospf network.......................................................................................................................... 1174
ip ospf priority............................................................................................................................ 1175
ip ospf retransmit-interval.........................................................................................................1176
ip ospf transmit-delay................................................................................................................1177
log-adjacency-changes............................................................................................................ 1178
maximum-paths........................................................................................................................ 1178
network area.............................................................................................................................. 1179
passive-interface....................................................................................................................... 1180
redistribute.................................................................................................................................1182
redistribute bgp......................................................................................................................... 1184
redistribute isis........................................................................................................................... 1185
router-id.................................................................................................................................... 1186
router ospf................................................................................................................................. 1187
show config............................................................................................................................... 1188
show ip ospf.............................................................................................................................. 1189
show ip ospf asbr....................................................................................................................... 1191
show ip ospf database...............................................................................................................1192
show ip ospf database asbr-summary..................................................................................... 1194

show ip ospf database external................................................................................................ 1196
show ip ospf database network................................................................................................ 1199
show ip ospf database nssa-external....................................................................................... 1201
show ip ospf database opaque-area........................................................................................1202
show ip ospf database opaque-as........................................................................................... 1204
show ip ospf database opaque-link......................................................................................... 1205
show ip ospf database router................................................................................................... 1207
show ip ospf database summary..............................................................................................1209
show ip ospf interface............................................................................................................... 1212
show ip ospf neighbor...............................................................................................................1214
show ip ospf routes................................................................................................................... 1216
show ip ospf statistics................................................................................................................1217
show ip ospf timers rate-limit................................................................................................... 1221
show ip ospf topology.............................................................................................................. 1222
summary-address..................................................................................................................... 1223
timers spf................................................................................................................................... 1224
timers throttle lsa all..................................................................................................................1225
timers throttle lsa arrival........................................................................................................... 1226
OSPFv3 Commands........................................................................................................................ 1227
area authentication................................................................................................................... 1227
area encryption......................................................................................................................... 1228
clear ipv6 ospf process..............................................................................................................1231
debug ipv6 ospf bfd...................................................................................................................1231
debug ipv6 ospf packet.............................................................................................................1233
default-information originate...................................................................................................1234
graceful-restart grace-period...................................................................................................1235
graceful-restart mode...............................................................................................................1236
ipv6 ospf area............................................................................................................................ 1237
ipv6 ospf authentication........................................................................................................... 1238
ipv6 ospf bfd all-neighbors.......................................................................................................1239
ipv6 ospf cost............................................................................................................................1240
ipv6 ospf dead-interval............................................................................................................. 1241
ipv6 ospf encryption................................................................................................................. 1242
ipv6 ospf graceful-restart helper-reject.................................................................................. 1244
ipv6 ospf hello-interval............................................................................................................. 1245
ipv6 ospf priority....................................................................................................................... 1245
ipv6 router ospf.........................................................................................................................1246
maximum-paths........................................................................................................................ 1247
passive-interface....................................................................................................................... 1247
redistribute................................................................................................................................ 1249
router-id.................................................................................................................................... 1250
show crypto ipsec policy...........................................................................................................1251

show crypto ipsec sa ipv6.........................................................................................................1253
show ipv6 ospf database.......................................................................................................... 1256
show ipv6 ospf interface........................................................................................................... 1257
show ipv6 ospf neighbor.......................................................................................................... 1259

41 Policy-based Routing (PBR).......................................................................... 1260
description...................................................................................................................................... 1260
ip redirect-group............................................................................................................................. 1261
ip redirect-list..................................................................................................................................1262
permit.............................................................................................................................................. 1262
redirect............................................................................................................................................ 1264
seq................................................................................................................................................... 1265
show cam pbr..................................................................................................................................1267
show ip redirect-list........................................................................................................................1268

42 PIM-Sparse Mode (PIM-SM).......................................................................... 1270
IPv4 PIM-Sparse Mode Commands............................................................................................... 1270
clear ip pim rp-mapping........................................................................................................... 1270
clear ip pim tib........................................................................................................................... 1271
debug ip pim.............................................................................................................................. 1271
ip pim bsr-border...................................................................................................................... 1273
ip pim bsr-candidate................................................................................................................. 1273
ip pim dr-priority....................................................................................................................... 1274
ip pim join-filter......................................................................................................................... 1275
ip pim ingress-interface-map................................................................................................... 1276
ip pim neighbor-filter................................................................................................................ 1277
ip pim query-interval.................................................................................................................1278
ip pim register-filter.................................................................................................................. 1278
ip pim rp-address...................................................................................................................... 1279
ip pim rp-candidate.................................................................................................................. 1280
ip pim sparse-mode.................................................................................................................. 1281
ip pim sparse-mode sg-expiry-timer.......................................................................................1282
ip pim spt-threshold................................................................................................................. 1283
no ip pim snooping dr-flood....................................................................................................1284
show ip pim bsr-router............................................................................................................. 1285
show ip pim interface............................................................................................................... 1285
show ip pim neighbor............................................................................................................... 1287
show ip pim rp.......................................................................................................................... 1288
show ip pim snooping interface...............................................................................................1289
show ip pim snooping neighbor.............................................................................................. 1290
show ip pim snooping tib..........................................................................................................1291
show ip pim summary...............................................................................................................1293

show ip pim tib..........................................................................................................................1295
show running-config pim......................................................................................................... 1297

43 Port Monitoring................................................................................................1298
description...................................................................................................................................... 1298
monitor session.............................................................................................................................. 1299
show config.................................................................................................................................... 1300
show monitor session..................................................................................................................... 1301
show running-config monitor session.......................................................................................... 1302
source (port monitoring)................................................................................................................ 1303

44 Private VLAN (PVLAN).....................................................................................1306
ip local-proxy-arp........................................................................................................................... 1307
private-vlan mode.......................................................................................................................... 1308
private-vlan mapping secondary-vlan...........................................................................................1309
switchport mode private-vlan........................................................................................................ 1310

45 Per-VLAN Spanning Tree Plus (PVST+)....................................................... 1312
description....................................................................................................................................... 1312
disable.............................................................................................................................................. 1313
extend system-id.............................................................................................................................1314
protocol spanning-tree pvst........................................................................................................... 1315
show spanning-tree pvst................................................................................................................ 1316
spanning-tree pvst.......................................................................................................................... 1319
spanning-tree pvst err-disable....................................................................................................... 1322
tc-flush-standard............................................................................................................................ 1323
vlan bridge-priority......................................................................................................................... 1323
vlan forward-delay..........................................................................................................................1324
vlan hello-time................................................................................................................................ 1325
vlan max-age...................................................................................................................................1326

46 Quality of Service (QoS)................................................................................. 1328
Global Configuration Commands..................................................................................................1328
qos-rate-adjust......................................................................................................................... 1328
Per-Port QoS Commands.............................................................................................................. 1329
dot1p-priority............................................................................................................................ 1329
rate police..................................................................................................................................1330
rate shape...................................................................................................................................1331
service-class dot1p-mapping................................................................................................... 1332
service-class dynamic dot1p.................................................................................................... 1333
strict-priority queue.................................................................................................................. 1334
Policy-Based QoS Commands.......................................................................................................1335

bandwidth-percentage............................................................................................................. 1335
class-map.................................................................................................................................. 1336
clear qos statistics..................................................................................................................... 1337
description.................................................................................................................................1338
match ip access-group.............................................................................................................1339
match ip dscp............................................................................................................................1340
match ip precedence................................................................................................................ 1341
match ip vlan............................................................................................................................. 1343
match ip vrf............................................................................................................................... 1343
match mac access-group........................................................................................................ 1344
match mac dot1p...................................................................................................................... 1345
match mac vlan.........................................................................................................................1346
policy-aggregate.......................................................................................................................1346
policy-map-input...................................................................................................................... 1347
policy-map-output................................................................................................................... 1348
qos-policy-input....................................................................................................................... 1349
qos-policy-output.................................................................................................................... 1350
queue egress..............................................................................................................................1351
queue ingress............................................................................................................................ 1353
rate-police.................................................................................................................................1354
rate-shape................................................................................................................................. 1355
service-policy input...................................................................................................................1355
service-policy output................................................................................................................1356
service-queue............................................................................................................................1357
set.............................................................................................................................................. 1358
show qos class-map................................................................................................................. 1359
show qos dot1p-queue-mapping............................................................................................1360
show qos policy-map............................................................................................................... 1360
show qos policy-map-input.....................................................................................................1362
show qos policy-map-output.................................................................................................. 1363
show qos qos-policy-input...................................................................................................... 1364
show qos qos-policy-output....................................................................................................1365
show qos statistics.................................................................................................................... 1365
show qos wred-profile............................................................................................................. 1366
test cam-usage..........................................................................................................................1367
threshold................................................................................................................................... 1369
trust............................................................................................................................................1370
wred........................................................................................................................................... 1372
wred ecn.................................................................................................................................... 1373
wred-profile...............................................................................................................................1374
DSCP Color Map Commands......................................................................................................... 1375
dscp............................................................................................................................................1375

qos dscp-color-map.................................................................................................................1376
qos dscp-color-policy...............................................................................................................1377
show qos dscp-color-policy ................................................................................................... 1378
show qos dscp-color-map ...................................................................................................... 1379

47 Routing Information Protocol (RIP).............................................................1381
auto-summary.................................................................................................................................1381
clear ip rip........................................................................................................................................1382
debug ip rip..................................................................................................................................... 1382
default-information originate.........................................................................................................1383
default-metric................................................................................................................................. 1384
description.......................................................................................................................................1385
distance........................................................................................................................................... 1386
distribute-list in............................................................................................................................... 1387
distribute-list out............................................................................................................................ 1388
ip poison-reverse............................................................................................................................1390
ip rip receive version.......................................................................................................................1390
ip rip send version........................................................................................................................... 1391
ip split-horizon................................................................................................................................1392
maximum-paths..............................................................................................................................1393
neighbor.......................................................................................................................................... 1394
network........................................................................................................................................... 1395
offset-list......................................................................................................................................... 1396
output-delay....................................................................................................................................1397
passive-interface.............................................................................................................................1398
redistribute...................................................................................................................................... 1399
redistribute isis................................................................................................................................1400
redistribute ospf.............................................................................................................................. 1401
router rip......................................................................................................................................... 1402
show config.................................................................................................................................... 1403
show ip rip database.......................................................................................................................1404
show running-config rip................................................................................................................ 1405
timers basic.....................................................................................................................................1406
version............................................................................................................................................. 1407

48 Remote Monitoring (RMON)........................................................................ 1409
rmon alarm..................................................................................................................................... 1409
rmon collection history................................................................................................................... 1411
rmon collection statistics................................................................................................................1412
rmon event...................................................................................................................................... 1413
rmon hc-alarm................................................................................................................................ 1414
show rmon.......................................................................................................................................1415

show rmon alarms.......................................................................................................................... 1416
show rmon events...........................................................................................................................1418
show rmon hc-alarm...................................................................................................................... 1419
show rmon history..........................................................................................................................1420
show rmon log................................................................................................................................ 1421
show rmon statistics....................................................................................................................... 1422

49 Rapid Spanning Tree Protocol (RSTP)........................................................ 1425
bridge-priority................................................................................................................................. 1425
debug spanning-tree rstp...............................................................................................................1426
description.......................................................................................................................................1427
disable............................................................................................................................................. 1428
forward-delay................................................................................................................................. 1429
hello-time....................................................................................................................................... 1430
max-age...........................................................................................................................................1431
protocol spanning-tree rstp........................................................................................................... 1432
show config.....................................................................................................................................1433
show spanning-tree rstp................................................................................................................ 1433
spanning-tree rstp.......................................................................................................................... 1436
tc-flush-standard............................................................................................................................1438

50 Software-Defined Networking (SDN).........................................................1440
51 Security................................................................................................................1441
AAA Accounting Commands.......................................................................................................... 1441
aaa accounting.......................................................................................................................... 1441
accounting................................................................................................................................ 1443
aaa accounting suppress.......................................................................................................... 1444
aaa radius group........................................................................................................................1445
show accounting...................................................................................................................... 1446
Authorization and Privilege Commands........................................................................................ 1447
authorization............................................................................................................................. 1447
aaa authorization commands.................................................................................................. 1448
aaa authorization config-commands...................................................................................... 1449
aaa authorization exec..............................................................................................................1450
privilege level (CONFIGURATION mode).................................................................................1450
privilege level (LINE mode)....................................................................................................... 1452
Authentication and Password Commands.................................................................................... 1452
aaa authentication enable........................................................................................................ 1453
aaa authentication login........................................................................................................... 1454
access-class.............................................................................................................................. 1456
enable password....................................................................................................................... 1457

enable restricted....................................................................................................................... 1458
enable secret.............................................................................................................................1459
login authentication.................................................................................................................. 1461
password................................................................................................................................... 1462
password-attributes..................................................................................................................1463
service password-encryption...................................................................................................1464
show privilege........................................................................................................................... 1465
show users................................................................................................................................ 1466
timeout login response.............................................................................................................1467
username...................................................................................................................................1468
RADIUS Commands........................................................................................................................1470
debug radius..............................................................................................................................1470
ip radius source-interface......................................................................................................... 1471
radius-server deadtime............................................................................................................. 1472
radius-server group...................................................................................................................1473
radius-server host..................................................................................................................... 1474
radius-server vrf........................................................................................................................ 1476
radius-server key....................................................................................................................... 1477
radius-server retransmit............................................................................................................1478
radius-server timeout................................................................................................................1479
TACACS+ Commands....................................................................................................................1480
tacacs-server group................................................................................................................. 1480
debug tacacs+...........................................................................................................................1481
ip tacacs source-interface........................................................................................................1482
tacacs-server group..................................................................................................................1483
tacacs-server host.................................................................................................................... 1484
tacacs-server key...................................................................................................................... 1485
tacacs-server vrf....................................................................................................................... 1486
Port Authentication (802.1X) Commands...................................................................................... 1487
dot1x authentication (Configuration).......................................................................................1488
dot1x authentication (Interface)............................................................................................... 1489
dot1x auth-fail-vlan.................................................................................................................. 1489
dot1x auth-server......................................................................................................................1490
dot1x guest-vlan........................................................................................................................1491
dot1x mac-auth-bypass............................................................................................................1492
dot1x max-eap-req................................................................................................................... 1493
dot1x port-control.................................................................................................................... 1493
dot1x quiet-period.................................................................................................................... 1494
dot1x reauthentication..............................................................................................................1495
dot1x reauth-max..................................................................................................................... 1496
dot1x server-timeout................................................................................................................ 1496
dot1x supplicant-timeout......................................................................................................... 1497

dot1x tx-period......................................................................................................................... 1498
show dot1x interface................................................................................................................ 1499
SSH Server and SCP Commands................................................................................................... 1500
crypto key generate..................................................................................................................1500
crypto key zeroize rsa............................................................................................................... 1501
debug ip ssh.............................................................................................................................. 1502
ip scp topdir...............................................................................................................................1503
ip ssh authentication-retries.....................................................................................................1504
ip ssh connection-rate-limit.................................................................................................... 1504
ip ssh hostbased-authentication.............................................................................................. 1505
ip ssh key-size........................................................................................................................... 1506
ip ssh password-authentication............................................................................................... 1507
ip ssh pub-key-file.................................................................................................................... 1508
ip ssh rekey ...............................................................................................................................1509
ip ssh rhostsfile..........................................................................................................................1509
ip ssh rsa-authentication (Config)............................................................................................ 1510
ip ssh server................................................................................................................................1511
ip ssh server vrf.......................................................................................................................... 1512
ip ssh source-interface..............................................................................................................1513
ip ssh vrf..................................................................................................................................... 1514
show crypto............................................................................................................................... 1515
show ip ssh................................................................................................................................ 1516
show ip ssh client-pub-keys..................................................................................................... 1517
ssh.............................................................................................................................................. 1518
Secure DHCP Commands...............................................................................................................1521
clear ip dhcp snooping..............................................................................................................1521
ip dhcp relay.............................................................................................................................. 1521
ip dhcp snooping...................................................................................................................... 1522
ip dhcp snooping binding......................................................................................................... 1523
ip dhcp snooping database...................................................................................................... 1524
ip dhcp snooping database renew........................................................................................... 1524
ip dhcp snooping trust.............................................................................................................. 1525
ip dhcp source-address-validation.......................................................................................... 1525
ip dhcp snooping vlan...............................................................................................................1526
show ip dhcp snooping.............................................................................................................1527
Role-Based Access Control Commands........................................................................................1527
aaa authorization role-only ..................................................................................................... 1528
enable........................................................................................................................................ 1529
role ............................................................................................................................................1530
show role .................................................................................................................................. 1531
show userroles ......................................................................................................................... 1532
userrole .....................................................................................................................................1532

52 Service Provider Bridging...............................................................................1534
debug protocol-tunnel...................................................................................................................1534
protocol-tunnel...............................................................................................................................1535
protocol-tunnel destination-mac.................................................................................................. 1536
protocol-tunnel enable...................................................................................................................1537
protocol-tunnel rate-limit.............................................................................................................. 1538
show protocol-tunnel.................................................................................................................... 1539

53 sFlow.................................................................................................................... 1541
sflow collector................................................................................................................................ 1542
sflow enable (Global)...................................................................................................................... 1544
sflow enable (Interface).................................................................................................................. 1544
sflow extended-switch enable....................................................................................................... 1545
sflow polling-interval (Global)........................................................................................................ 1546
sflow polling-interval (Interface).................................................................................................... 1547
sflow sample-rate (Global)............................................................................................................. 1548
sflow sample-rate (Interface)......................................................................................................... 1549
show sflow...................................................................................................................................... 1550

54 Simple Network Management Protocol (SNMP) and Syslog................ 1553
SNMP Commands...........................................................................................................................1553
show snmp................................................................................................................................ 1554
show snmp engineID................................................................................................................ 1555
show snmp group..................................................................................................................... 1555
show snmp user........................................................................................................................ 1556
snmp ifmib ifalias long.............................................................................................................. 1557
snmp-server community.......................................................................................................... 1558
snmp-server contact................................................................................................................ 1560
snmp-server enable traps......................................................................................................... 1561
snmp-server engineID.............................................................................................................. 1563
snmp-server group................................................................................................................... 1564
snmp-server host......................................................................................................................1566
snmp-server location................................................................................................................1570
snmp-server packetsize.............................................................................................................1571
snmp-server trap-source.......................................................................................................... 1571
snmp-server user...................................................................................................................... 1573
snmp-server user (for AES128-CFB Encryption)......................................................................1576
snmp-server view...................................................................................................................... 1577
snmp-server vrf......................................................................................................................... 1578
snmp trap link-status................................................................................................................ 1579
Syslog Commands.......................................................................................................................... 1579

clear logging............................................................................................................................. 1580
clear logging auditlog...............................................................................................................1580
default logging buffered............................................................................................................1581
default logging console............................................................................................................ 1581
default logging monitor............................................................................................................1582
default logging trap...................................................................................................................1583
logging.......................................................................................................................................1583
logging buffered........................................................................................................................1585
logging console........................................................................................................................ 1586
logging extended...................................................................................................................... 1587
logging facility........................................................................................................................... 1588
logging history.......................................................................................................................... 1589
logging history size................................................................................................................... 1590
logging monitor.........................................................................................................................1591
logging on................................................................................................................................. 1592
logging source-interface.......................................................................................................... 1593
logging synchronous................................................................................................................ 1594
logging trap............................................................................................................................... 1595
logging version..........................................................................................................................1596
show logging............................................................................................................................. 1597
show logging auditlog.............................................................................................................. 1599
show logging driverlog stack-unit........................................................................................... 1599
terminal monitor.......................................................................................................................1600

55 SNMP Traps........................................................................................................1601
56 Stacking..............................................................................................................1606
redundancy disable-auto-reboot.................................................................................................. 1606
redundancy force-failover stack-unit............................................................................................1607
redundancy protocol......................................................................................................................1608
reset stack-unit...............................................................................................................................1608
show redundancy............................................................................................................................1610
show system stack-ports................................................................................................................ 1611
stack-unit priority............................................................................................................................ 1613
stack-unit provision........................................................................................................................ 1614
stack-unit stack-group................................................................................................................... 1615
upgrade system stack-unit............................................................................................................. 1616

57 Storm Control....................................................................................................1618
show storm-control broadcast...................................................................................................... 1619
show storm-control multicast....................................................................................................... 1620
show storm-control unknown-unicast..........................................................................................1621

storm-control broadcast (Configuration)......................................................................................1622
storm-control broadcast (Interface).............................................................................................. 1623
storm-control multicast (Configuration)....................................................................................... 1624
storm-control multicast (Interface)............................................................................................... 1625
storm-control unknown-unicast (Configuration)......................................................................... 1625
storm-control unknown-unicast (Interface)................................................................................. 1626

58 Spanning Tree Protocol (STP).......................................................................1628
bridge-priority.................................................................................................................................1628
bpdu-destination-mac-address.....................................................................................................1629
debug spanning-tree...................................................................................................................... 1629
description....................................................................................................................................... 1631
disable.............................................................................................................................................. 1631
forward-delay..................................................................................................................................1632
hello-time........................................................................................................................................1633
max-age.......................................................................................................................................... 1634
protocol spanning-tree.................................................................................................................. 1635
show config.................................................................................................................................... 1636
show spanning-tree 0.....................................................................................................................1637
spanning-tree................................................................................................................................. 1640

59 System Time and Date.................................................................................... 1643
calendar set.....................................................................................................................................1643
clock read-calendar....................................................................................................................... 1644
clock summer-time date................................................................................................................1645
clock summer-time recurring........................................................................................................ 1647
clock timezone............................................................................................................................... 1649
debug ntp........................................................................................................................................1650
ntp authenticate.............................................................................................................................. 1651
ntp broadcast client........................................................................................................................ 1652
ntp disable....................................................................................................................................... 1652
ntp multicast client......................................................................................................................... 1653
ntp server........................................................................................................................................ 1654
show calendar.................................................................................................................................1655
show clock...................................................................................................................................... 1656
show ntp associations.....................................................................................................................1657
show ntp status...............................................................................................................................1659

60 u-Boot.................................................................................................................1661
printenv............................................................................................................................................1661
reset.................................................................................................................................................1663
save..................................................................................................................................................1663

setenv.............................................................................................................................................. 1664

61 Tunneling .......................................................................................................... 1666
tunnel-mode...................................................................................................................................1666
tunnel source.................................................................................................................................. 1667
tunnel keepalive..............................................................................................................................1668
tunnel allow-remote...................................................................................................................... 1669
tunnel dscp......................................................................................................................................1670
tunnel flow-label.............................................................................................................................1670
tunnel hop-limit...............................................................................................................................1671
tunnel destination........................................................................................................................... 1672
ip unnumbered................................................................................................................................1672
ipv6 unnumbered............................................................................................................................1673

62 Uplink Failure Detection (UFD).....................................................................1675
clear ufd-disable............................................................................................................................. 1675
debug uplink-state-group.............................................................................................................. 1676
description.......................................................................................................................................1677
downstream.................................................................................................................................... 1678
downstream auto-recover............................................................................................................. 1679
downstream disable links............................................................................................................... 1680
enable.............................................................................................................................................. 1681
show running-config uplink-state-group..................................................................................... 1682
show uplink-state-group............................................................................................................... 1683
uplink-state-group......................................................................................................................... 1684
upstream......................................................................................................................................... 1685

63 VLAN Stacking.................................................................................................. 1688
dei enable........................................................................................................................................1689
dei honor.........................................................................................................................................1689
dei mark.......................................................................................................................................... 1690
member........................................................................................................................................... 1691
stack-unit stack-group................................................................................................................... 1692
vlan-stack access............................................................................................................................1693
vlan-stack compatible.................................................................................................................... 1694
vlan-stack dot1p-mapping............................................................................................................. 1695
vlan-stack protocol-type............................................................................................................... 1696
vlan-stack trunk.............................................................................................................................. 1697

64 Virtual Routing and Forwarding (VRF)....................................................... 1700
ip vrf.................................................................................................................................................1700
description....................................................................................................................................... 1701

ip vrf forwarding.............................................................................................................................. 1701
interface management................................................................................................................... 1703
maximum dynamic-routes............................................................................................................. 1703
show ip vrf.......................................................................................................................................1704
show run vrf.................................................................................................................................... 1705

65 VLT Proxy Gateway.......................................................................................... 1707
proxy-gateway lldp......................................................................................................................... 1707
proxy-gateway static...................................................................................................................... 1708
remote-mac-address exclude-vlan...............................................................................................1708
peer-domain-link port-channel exclude-vlan.............................................................................. 1709
proxy-gateway peer-timeout ........................................................................................................ 1710
vlt-peer-mac transmit.....................................................................................................................1710
show vlt-proxy-gateway..................................................................................................................1711

66 Virtual Link Trunking (VLT)............................................................................ 1713
back-up destination........................................................................................................................ 1713
clear vlt statistics..............................................................................................................................1714
delay-restore....................................................................................................................................1715
lacp ungroup member-independent..............................................................................................1716
multicast peer-routing timeout...................................................................................................... 1718
peer-link port-channel....................................................................................................................1718
peer-routing.................................................................................................................................... 1719
peer-routing-timeout..................................................................................................................... 1720
primary-priority............................................................................................................................... 1720
show vlt brief....................................................................................................................................1721
show vlt backup-link.......................................................................................................................1722
show vlt counters............................................................................................................................1723
show vlt detail................................................................................................................................. 1724
show vlt inconsistency....................................................................................................................1725
show vlt mismatch.......................................................................................................................... 1726
show vlt role.................................................................................................................................... 1727
show vlt statistics............................................................................................................................ 1728
show vlt statistics igmp-snoop.......................................................................................................1730
system-mac.....................................................................................................................................1730
unit-id...............................................................................................................................................1731
vlt domain........................................................................................................................................1732
vlt-peer-lag port-channel...............................................................................................................1733
show vlt private-vlan.......................................................................................................................1734

67 Virtual Router Redundancy Protocol (VRRP)............................................ 1735
IPv4 VRRP Commands.................................................................................................................... 1735

advertise-interval.......................................................................................................................1735
authentication-type.................................................................................................................. 1736
clear counters vrrp.................................................................................................................... 1737
debug vrrp................................................................................................................................. 1738
description.................................................................................................................................1739
disable........................................................................................................................................1740
hold-time................................................................................................................................... 1741
preempt..................................................................................................................................... 1742
priority........................................................................................................................................1742
show config............................................................................................................................... 1743
show vrrp...................................................................................................................................1744
virtual-address...........................................................................................................................1748
vrrp delay minimum.................................................................................................................. 1749
vrrp delay reload........................................................................................................................1750
vrrp-group..................................................................................................................................1751
version .......................................................................................................................................1752
IPv6 VRRP Commands.................................................................................................................... 1753
clear counters vrrp ipv6............................................................................................................ 1753
debug vrrp ipv6......................................................................................................................... 1754
show vrrp ipv6........................................................................................................................... 1755
vrrp-ipv6-group.........................................................................................................................1757

About this Guide

1

This book provides information about the Dell Networking OS command line interface (CLI).
This book also includes information about the protocols and features found in Dell S4810 platform.

References
For more information about your system, refer to the following documents:
•

Dell Networking OS Configuration Guides

•

Installation and Maintenance Guides

•

Release Notes

Objectives
This book is intended as a reference guide for the Dell Networking OS CLI commands, with detailed
syntax statements, along with usage information and sample output.
NOTE: For more information about when to use the CLI commands, refer to the Dell Networking
OS Configuration Guide for your system.

Audience
This book is intended for system administrators who are responsible for configuring or maintaining
networks. This guide assumes that you are knowledgeable in Layer 2 and Layer 3 networking
technologies.

Conventions
This book uses the following conventions to describe command syntax.
Keyword

Keywords are in Courier font and must be entered in the CLI as listed.

parameter

Parameters are in italics and require a number or word to be entered in the CLI.

{X}

Keywords and parameters within braces must be entered in the CLI.

About this Guide

43

[X]

Keywords and parameters within brackets are optional.

x|y

Keywords and parameters separated by a bar require you to choose one option.

x||y

Keywords and parameters separated by a double bar allows you to choose any or
all of the options.

Information Icons
This book uses the following information symbols:
NOTE: The Note icon signals important operational information.
CAUTION: The Caution icon signals information about situations that could result in equipment
damage or loss of data.
WARNING: The Warning icon signals information about hardware handling that could result in
injury.

44

About this Guide

CLI Basics

2

This chapter describes the command line interface (CLI) structure and command modes. The Dell
Networking operating software commands are in a text-based interface that allows you to use the launch
commands, change command modes, and configure interfaces and protocols.

Accessing the Command Line
When the system boots successfully, you are positioned on the command line in EXEC mode and not
prompted to log in. You can access the commands through a serial console port or a Telnet session.
When you Telnet into the switch, you are prompted to enter a login name and password.
Example

telnet 172.31.1.53
Trying 172.31.1.53...
Connected to 172.31.1.53.
Escape character is '^]'.
Login: username
Password: Dell>

After you log in to the switch, the prompt provides you with the current command-level information. For
example:
Prompt

CLI Command Mode

Dell>

EXEC

Dell#

EXEC Privilege

Dell(conf)#

CONFIGURATION

NOTE: For a list of all the command mode prompts, refer to the Command Modes section.

Multiple Configuration Users
When a user enters CONFIGURATION mode and another user is already in CONFIGURATION mode, the
Dell Networking operating software generates an alert warning message similar to the following:
Dell#conf
% Warning: The following users are currently configuring the system:
User "" on line
User "admin" on
User "admin" on
User "Irene" on
Dell#conf

CLI Basics

console0
line vty0 ( 123.12.1.123 )
line vty1 ( 123.12.1.123 )
line vty3 ( 123.12.1.321 )

45

When another user enters CONFIGURATION mode, Dell Networking OS sends a message similar to the
following:
% Warning: User "admin" on line vty2 "172.16.1.210" is in configuration
In this case, the user is “admin” on vty2.

Obtaining Help
As soon as you are in a command mode there are several ways to access help.
To obtain a list
of keywords at
any command
mode:

Type a ? at the prompt or after a keyword. There must always be a space before
the ?.

To obtain a list
of keywords
with a brief
functional
description:

Type help at the prompt.

To obtain a list
of available
options:

Type a keyword and then type a space and a ?.

To obtain a list
of partial
keywords using
a partial
keyword:

Type a partial keyword and then type a ?.

Example

The following is an example of typing ip ? at the prompt:
Dell(conf)#ip ?
access-list
as-path
community-list
domain-list
name
domain-lookup
translation
domain-name
fib
ftp
host
max-frag-count
assembly
multicast-routing
name-server
pim Protocol
prefix-list
radius
redirect-list
route
scp
source-route
options
ssh

46

Named access-list
BGP autonomous system path filter
Add a community list entry
Domain name to complete unqualified host
Enable IP Domain Name System hostname
Define the default domain name
FIB configuration commands
FTP configuration commands
Add an entry to the ip hostname table
Max. fragmented packets allowed in IP reEnable IP multicast forwarding
Specify address of name server to use
Independent Multicast
Build a prefix list
Interface configuration for RADIUS
Named redirect-list
Establish static routes
SCP configuration commands
Process packets with source routing header
SSH configuration commands

CLI Basics

tacacs
telnet
tftp
trace-group
trace-list
Dell(conf)#ip

Interface configuration for TACACS+
Specify telnet options
TFTP configuration commands
Named trace-list
Named trace-list

When entering commands, you can take advantage of the following timesaving features:
•

The commands are not case-sensitive.

•

You can enter partial (truncated) command keywords. For example, you can enter interface teng
0/0 for the interface tengigabitethernet 0/0 command.

•

To complete keywords in commands, use the TAB key.

•

To display the last enabled command, use the up Arrow key.

•

Use either the Backspace key or Delete key to erase the previous character.

•

To navigate left or right in the Dell Networking OS command line, use the left and right Arrow keys.

The shortcut key combinations at the Dell Networking OS command line are as follows:
Key Combination

Action

CNTL-A

Moves the cursor to the beginning of the command line.

CNTL-B

Moves the cursor back one character.

CNTL-D

Deletes the character at the cursor.

CNTL-E

Moves the cursor to the end of the line.

CNTL-F

Moves the cursor forward one character.

CNTL-I

Completes a keyword.

CNTL-K

Deletes all the characters from the cursor to the end of the command line.

CNTL-L

Re-enters the previous command.

CNTL-N

Returns to the more recent commands in the history buffer after recalling
commands with Ctrl-P or the up Arrow key.

CNTL-P

Recalls commands, beginning with the last command.

CNTL-R

Re-enters the previous command.

CNTL-U

Deletes the line.

CNTL-W

Deletes the previous word.

CNTL-X

Deletes the line.

CNTL-Z

Ends continuous scrolling of the command outputs.

Esc B

Moves the cursor back one word.

Esc F

Moves the cursor forward one word.

Esc D

Deletes all the characters from the cursor to the end of the word.

CLI Basics

47

Navigating the CLI
Dell Networking OS displays a CLI prompt comprised of the host name and CLI mode.
•

Host name is the initial part of the prompt and is “Dell” by default. You can change the host name with
the hostname command.

•

CLI mode is the second part of the prompt and reflects the current CLI mode. For a list of the Dell
Networking OS command modes, refer to the command mode list in the Accessing the Command
Line section.

The CLI prompt changes as you move up and down the levels of the command structure. Starting with
CONFIGURATION mode, the command prompt adds modifiers to further identify the mode. For more
information about command modes, refer to the Command Modes section.

Using the Keyword no Command
To disable, delete or return to default values, use the no form of the commands.
For most commands, if you type the keyword no in front of the command, you disable that command or
delete it from the running configuration. In this guide, the no form of the command is described in the
Syntax portion of the command description.

Filtering show Commands
To find specific information, display certain information only or begin the command output at the first
instance of a regular expression or phrase, you can filter the display output of a show command.
When you execute a show command, and then enter a pipe ( | ), one of the following parameters, and a
regular expression, the resulting output either excludes or includes those parameters.
NOTE: Dell Networking OS accepts a space before or after the pipe, no space before or after the
pipe, or any combination. For example: Dell#command | grep gigabit |except regularexpression | find regular-expression
display

displays additional configuration information

except

displays only the text that does not match the pattern (or regular expression)

find

searches for the first occurrence of a pattern

grep

displays text that matches a pattern.
The grep command option has an ignore-case suboption that makes the search
case-insensitive. For example, the commands:
show run |
grep
Ethernet

48

returns a search result with instances containing a capitalized
“Ethernet,” such as interface GigabitEthernet 0/0

CLI Basics

show run |
grep
ethernet

does not return the previous search result because it only
searches for instances containing a noncapitalized “ethernet”

show run |
grep
Ethernet
ignore-case

returns instances containing both “Ethernet” and “ethernet”

no-more

does not paginate the display output

save

copies the output to a file for future use

Displaying All Output
To display the output all at once (not one screen at a time), use the no-more option after the pipe. This
operation is similar to the terminal length screen-length command except that the no-more
option affects the output of just the specified command. For example: Dell#show running-config|
no-more.

Filtering the Command Output Multiple Times
You can filter a single command output multiple times. To filter a command output multiple times, place
the save option as the last filter. For example: Dell# command | grep regular-expression |
except regular-expression | grep other-regular-expression | find regularexpression | no-more | save.

Enabling Software Features on Devices Using a Command
Option
This capability to activate software applications or components on a device using a command is
supported on the S4810, S4820T, and S6000, platforms.
Starting with Release 9.4(0.0), you can enable or disable specific software functionalities or applications
that need to run on a device by using a command attribute in the CLI interface. This capability enables
effective, streamlined management and administration of applications and utilities that run on a device.
You can employ this capability to perform an on-demand activation or turn-off of a software component
or protocol. A feature configuration file that is generated for each image contains feature names denotes
whether this enabling or disabling method is available for such features. In 9.4(0.0), you can enable or
disable the VRF application globally across the system by using this capability.
You can activate VRF application on a device by using the feature vrf command in CONFIGURATION
mode.
NOTE: The no feature vrf command is not supported on any of the platforms.
To enable the VRF feature and cause all VRF-related commands to be available or viewable in the CLI
interface, use the following command. You must enable the VRF feature before you can configure its
related attributes.
Dell(conf)# feature vrf

CLI Basics

49

Based on whether VRF feature is identified as supported in the Feature Configuration file, configuration
command feature vrf becomes available for usage. This command will be stored in running-configuration
and will precede all other VRF-related configurations.
NOTE: The MXL and Z9000 platforms currently do not support VRF. These platforms support only
the management and default VRFs, which are available by default. As a result, the feature vrf
command is not available for these platforms.
To display the state of Dell Networking OS features:
Dell#show feature
Example of show feature output
For a particular target where VRF is enabled, the show output is similar to the following:
Feature State
-----------------------------VRF
enabled

feature vrf
Enable the VRF application on a device. After you enable this module, you cannot deactivate it.

S4810
Syntax

feature vrf

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History
Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, and S6000.

You can activate VRF application on a device by using the feature vrf command
in CONFIGURATION mode. The no feature vrf command is not supported on
any of the platforms.

show feature
Verify the status of software applications, such as VRF, that are activated and running on a device.

S4810
Syntax

show feature

Command
Modes

EXEC

Command
History

50

EXEC Privilege
Version 9.4(0.0)

Introduced on the S4810, S4820T, and S6000.

CLI Basics

Usage
Information

You can activate VRF application on a device by using the feature vrf command
in CONFIGURATION mode. The no feature vrf command is not supported on
any of the platforms.

Example

Dell#show feature
Feature State
-----------------------------VRF
enabled

Command Modes
To navigate and launch various CLI modes, use specific commands. Navigation to these modes is
described in the following sections.

BGP ADDRESS-FAMILY Mode
To enable or configure IPv4 for BGP, use BGP ADDRESS-FAMILY mode. For more information, refer to
Border Gateway Protocol IPv4 (BGPv4).
To enable or configure IPv6 for BGP, use BGP ADDRESS-FAMILY mode.
To enter BGP ADDRESS-FAMILY mode:
1.

Verify that you are logged in to ROUTER BGP mode.

2.

Enter the command address-family

3.

Enter the protocol type.
•

For IPv4, enter ipv4 multicast. The prompt changes to include (conf-router_bgp_af) for IPv4.

•

For IPv6, enteripv6 unicast. The prompt changes to include (conf-router_bgpv6_af) for IPv6.

CLASS-MAP Mode
To create or configure a class map, use CLASS-MAP mode. For more information, refer to Policy-Based
QoS Commands.
To enter CLASS-MAP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the class-map command then enter the class map name. The prompt changes to include
(config-class-map).

You can return to CONFIGURATION mode by using the exit command.

CONFIGURATION Mode
In EXEC Privilege mode, use the configure command to enter CONFIGURATION mode and configure
routing protocols and access interfaces.
To enter CONFIGURATION mode:
1.

Verify that you are logged in to EXEC Privilege mode.

CLI Basics

51

2.

Enter the configure command. The prompt changes to include (conf).

From this mode, you can enter INTERFACE mode by using the interface command.

CONTROL-PLANE Mode
To manage control-plane traffic, use CONTROL-PLANE mode. For more information, refer to Control
Plane Policing (CoPP).
To enter CONTROL-PLANE mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the control-plane-cpuqos command. The prompt changes to include (conf-controlcpuqos).

You can return to CONFIGURATION mode by using the exit command.

DCB POLICY Mode
To enable and configure a Data Center Bridging (DCB) input or output policy, use DCB POLICY mode. For
more information, refer to Data Center Bridging (DCB).
To enter DCB POLICY mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

To enable or configure a DCB input policy, enter the dcb-input command then enter the policy
name. To enable or configure a DCB output policy, enter the dcb-output command then enter the
policy name. The prompt changes to include (conf-dcb-in) for an input policy or (conf-dcb-out) for
an output policy.

You can return to CONFIGURATION mode by using the exit command.

DHCP Mode
To enable and configure Dynamic Host Configuration Protocol (DHCP), use DHCP mode. For more
information, refer to Dynamic Host Configuration Protocol (DHCP).
To enter DHCP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ip dhcp server command. The prompt changes to include (config-dhcp).

You can return to CONFIGURATION mode by using the exit command.

DHCP POOL Mode
To create an address pool, use DHCP POOL mode. For more information, refer to Dynamic Host
Configuration Protocol (DHCP).
To enter DHCP POOL mode:
1.

Verify that you are logged in to DHCP mode.

2.

Enter the pool command then the pool name. The prompt changes to include (config-dhcp-poolname).

You can return to DHCP mode by using the exit command.

52

CLI Basics

ECMP GROUP Mode
To enable or configure traffic distribution monitoring on an ECMP link bundle, use ECMP GROUP mode.
For more information, refer to ecmp_overview.
To enter ECMP GROUP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ecmp-group command then enter the ECMP group ID. The prompt changes to include
(conf-ecmp-group-ecmp-group-id).

You can return to CONFIGURATION mode by using the exit command.

EIS Mode
To enable or configure Egress Interface Selection (EIS), use EIS mode.
To enter EIS mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the management egress-interface-selection command. The prompt changes to
include (conf-mgmt-eis).

You can return to CONFIGURATION mode by using the exit command.

EXEC Mode
When you initially log in to the switch, by default, you are logged in to EXEC mode. This mode allows you
to view settings and enter EXEC Privilege mode, which is used to configure the device.
When you are in EXEC mode, the > prompt is displayed following the host name prompt, which is “Dell”
by default. You can change the host name prompt using the hostname command.
NOTE: Each mode prompt is preceded by the host name.

EXEC Privilege Mode
The enable command accesses EXEC Privilege mode. If an administrator has configured an “Enable”
password, you are prompted to enter it.
EXEC Privilege mode allows you to access all the commands accessible in EXEC mode, plus other
commands, such as to clear address resolution protocol (ARP) entries and IP addresses. In addition, you
can access CONFIGURATION mode to configure interfaces, routes and protocols on the switch. While
you are logged in to EXEC Privilege mode, the # prompt is displayed.

EXTENDED COMMUNITY LIST Mode
To enable and configure a BGP extended community, use EXTENDED COMMUNITY LIST mode.
To enter EXTENDED COMMUNITY LIST mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ip extcommunity-list command then a community list name. The prompt changes to
include (conf-ext-community-list).

You can return to CONFIGURATION mode by using the exit command.

CLI Basics

53

FRRP Mode
To enable or configure Force10 Resilient Ring Protocol (FRRP), use FRRP mode. For more information,
refer to Force10 Resilient Ring Protocol (FRRP).
To enter FRRP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol frrp command then the ring ID. The prompt changes to include (conf-frrpring-id).

You can return to CONFIGURATION mode by using the exit command.

INTERFACE Mode
Use INTERFACE mode to configure interfaces or IP services on those interfaces. An interface can be
physical (for example, a Gigabit Ethernet port) or virtual (for example, the Null interface).
To enter INTERFACE mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the interface command and then enter an interface type and interface number that is
available on the switch.

The prompt changes to include the designated interface and slot/port number. For example:
Prompt

Interface Type

Dell(conf-if)#

INTERFACE mode

Dell(conf-ifgi-0/0)#

Gigabit Ethernet interface then the slot/port information

Dell(conf-ifte-0/0)#

Ten-Gigabit Ethernet interface then slot/port information

Dell(conf-iffo-0/0)#

Forty-Gigabit Ethernet interface then slot/port information

Dell(conf-iflo-0)#

Loopback interface number

Dell(conf-ifnu-0)#

Null Interface then zero

Dell(conf-ifpo-0)#

Port-channel interface number

Dell(conf-ifvl-0)#

VLAN Interface then VLAN number (range 1–4094)

Dell(conf-ifma-0/0)#

Management Ethernet interface then slot/port information

Dell(conf-iftu-0)#

Tunnel interface then tunnel ID.

54

CLI Basics

Prompt

Interface Type

Dell(conf-ifrange)#

Designated interface range (used for bulk configuration).

IP ACCESS LIST Mode
To enter IP ACCESS LIST mode and configure either standard or extended access control lists (ACLs), use
the ip access-list standard or ip access-list extended command.
To enter IP ACCESS LIST mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Use the ip access-list standard or ip access-list extended command. Include a name
for the ACL. The prompt changes to include (conf-std-nacl) or (conf-ext-nacl).

You can return to CONFIGURATION mode by using the exit command.

ISIS ADDRESS-FAMILY Mode
To enable or configure IPv6 for ISIS, use ISIS ADDRESS-FAMILY mode. For more information, refer to
Intermediate System to Intermediate System (IS-IS).
To enter ISIS ADDRESS-FAMILY mode:
1.

Verify that you are logged in to ROUTER ISIS mode.

2.

Enter the command address-family ipv6 unicast. The prompt changes to include (confrouter_isis-af_ipv6).

LLDP Mode
To enable and configure Link Layer Discovery Protocol (LLDP), use LLDP mode. For more information,
refer to Link Layer Discovery Protocol (LLDP).
To enter LLDP mode:
1.

To enable LLDP globally, verify that you are logged in to CONFIGURATION mode. To enable LLDP
on an interface, verify that you are logged in to INTERFACE mode.

2.

Enter the protocol lldp command. The prompt changes to include (conf-lldp) or (conf-ifinterface-lldp).

LLDP MANAGEMENT INTERFACE Mode
To enable and configure Link Layer Discovery Protocol (LLDP) on management interfaces, use LLDP
MANAGEMENT INTERFACE mode.
To enter LLDP MANAGEMENT INTERFACE mode:
1.

Verify that you are logged in to LLDP mode.

2.

Enter the management-interface command. The prompt changes to include (conf-lldp-mgmtIf).

LINE Mode
To configure the console or virtual terminal parameters, use LINE mode.
To enter LINE mode:

CLI Basics

55

1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the line command. Include the keywords console or vty and their line number available on
the switch. The prompt changes to include (config-line-console) or (config-line-vty).

You can exit this mode by using the exit command.

MAC ACCESS LIST Mode
To enter MAC ACCESS LIST mode and configure either standard or extended access control lists (ACLs),
use the mac access-list standard or mac access-list extended command.
To enter MAC ACCESS LIST mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Use the mac access-list standard or mac access-list extended command. Include a
name for the ACL. The prompt changes to include (conf-std-macl) or (conf-ext-macl).

You can return to CONFIGURATION mode by using the exit command.

MONITOR SESSION Mode
To enable and configure a traffic monitoring session using port monitoring, use MONITOR SESSION
mode. For more information, refer to Port Monitoring.
To enter MONITOR SESSION mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the monitor session command then the session ID. The prompt changes to include (confmon-sess-sessionID).

MULTIPLE SPANNING TREE (MSTP) Mode
To enable and configure MSTP, use MULTIPLE SPANNING TREE mode. For more information, refer to
Multiple Spanning Tree Protocol (MSTP).
To enter MULTIPLE SPANNING TREE mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol spanning-tree mstp command. The prompt changes to include (confmstp).

You can return to CONFIGURATION mode by using the exit command.

OPENFLOW INSTANCE Mode
To enable and configure OpenFlow instances, use OPENFLOW INSTANCE mode.
To enter OPENFLOW INSTANCE mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the openflow of-instance command then the OpenFlow ID number of the instance you
want to create or configure. The prompt changes to include (conf-of-instance of-id).

You can return to the CONFIGURATION mode by entering the exit command.

56

CLI Basics

Per-VLAN SPANNING TREE (PVST+) Plus Mode
To enable and configure the Per-VLAN Spanning Tree (PVST+) protocol, use PVST+ mode. For more
information, refer to Per-VLAN Spanning Tree Plus (PVST+).
NOTE: The protocol name is PVST+, but the plus sign is dropped at the CLI prompt.
To enter PVST+ mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol spanning-tree pvst command. The prompt changes to include (confpvst).

You can return to CONFIGURATION mode by using the exit command.

PORT-CHANNEL FAILOVER-GROUP Mode
To configure shared LAG state tracking, use PORT-CHANNEL FAILOVER-GROUP mode. For more
information, refer to Port Channel Commands.
To enter PORT-CHANNEL FAILOVER-GROUP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the port-channel failover-group command. The prompt changes to include (conf-pofailover-grp).

You can return to CONFIGURATION mode by using the exit command.

PREFIX-LIST Mode
To configure a prefix list, use PREFIX-LIST mode.
To enter PREFIX-LIST mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ip prefix-list command. Include a name for the prefix list. The prompt changes to
include (conf-nprefixl).

You can return to CONFIGURATION mode by using the exit command.

PRIORITY GROUP Mode
To create an ETS priority group, use PRIORITY GROUP mode. For more information, refer to ETS
Commands.
To enter PRIORITY GROUP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the priority-group command then the group name. The prompt changes to include (confpg).

You can return to CONFIGURATION mode by using the exit command.

PROTOCOL GVRP Mode
To enable and configure GARP VLAN Registration Protocol (GVRP), use PROTOCOL GVRP mode. For
more information, refer to GARP VLAN Registration (GVRP).

CLI Basics

57

To enter PROTOCOL GVRP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol gvrp command. The prompt changes to include (config-gvrp).

You can return to CONFIGURATION mode by using the exit command.

QOS POLICY Mode
To configure ETS bandwidth allocation and scheduling for priority traffic, use QOS POLICY mode. For
more information, refer to ETS Commands.
To enter QOS POLICY mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the qos-policy-output command, then the policy name, then ets. The prompt changes to
include (conf-qos-policy-out-ets).

You can return to CONFIGURATION mode by using the exit command.

RAPID SPANNING TREE (RSTP) Mode
To enable and configure RSTP, use RSTP mode. For more information, refer to Rapid Spanning Tree
Protocol (RSTP).
To enter RSTP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol spanning-tree rstp command. The prompt changes to include (conf-rstp).

You can return to CONFIGURATION mode by using the exit command.

ROUTE-MAP Mode
To configure a route map, use ROUTE-MAP mode.
To enter ROUTE-MAP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Use the route-map map-name [permit | deny] [sequence-number] command. The prompt
changes to include (config-route-map).

You can return to CONFIGURATION mode by using the exit command.

ROUTER BGP Mode
To enable and configure Border Gateway Protocol (BGP), use ROUTER BGP mode. For more information,
refer to Border Gateway Protocol IPv4 (BGPv4)
To enter ROUTER BGP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Use the router bgp command then enter the AS number. The prompt changes to include (confrouter_bgp).

You can return to CONFIGURATION mode by using the exit command.

58

CLI Basics

ROUTER ISIS Mode
To enable and configure Intermediate System to Intermediate System (ISIS), use ROUTER ISIS mode. For
more information, refer to Intermediate System to Intermediate System (IS-IS).
To enter ROUTER ISIS mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Use the router isis command. The prompt changes to include (conf-router_isis).

You can return to CONFIGURATION mode by using the exit command.

ROUTER OSPF Mode
To configure OSPF, use ROUTER OSPF mode. For more information, refer to OSPFv2 Commands.
To enter ROUTER OSPF mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the router ospf {process-id} command. The prompt changes to include (confrouter_ospf-id).

You can switch to INTERFACE mode by using the interface command or you can switch to ROUTER
RIP mode by using the router rip command.

ROUTER OSPFV3 Mode
To configure OSPF for IPv6, use ROUTER OSPFV3 mode.
To enter ROUTER OSPFV3 mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ipv6 router ospf {process-id} command. The prompt changes to include (confipv6-router_ospf).

You can return to CONFIGURATION mode by using the exit command.

ROUTER RIP Mode
To enable and configure Router Information Protocol (RIP), use ROUTER RIP mode. For more
information, refer to Routing Information Protocol (RIP).
To enter ROUTER RIP mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the router rip command. The prompt changes to include (conf-router_rip).

You can return to CONFIGURATION mode by using the exit command.

SPANNING TREE Mode
To enable and configure the Spanning Tree protocol, use SPANNING TREE mode. For more information,
refer to Spanning Tree Protocol (STP).
To enter SPANNING TREE mode:

CLI Basics

59

1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the protocol spanning-tree stp-id command. The prompt changes to include (conf-stp).

You can return to CONFIGURATION mode by using the exit command.

TRACE-LIST Mode
To configure a Trace list, use TRACE-LIST mode.
To enter TRACE-LIST mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the ip trace-list command. Include the name of the Trace list. The prompt changes to
include (conf-trace-acl).

You can exit this mode by using the exit command.

VLT DOMAIN Mode
To enable and configure the VLT domain protocol, use VLT DOMAIN mode. For more information, refer
to Virtual Link Trunking (VLT).
To enter VLT DOMAIN mode:
1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the vlt domaincommand then the VLT domain number. The prompt changes to include
(conf-vlt-domain).

You can return to CONFIGURATION mode by entering the exit command.

VRRP Mode
To enable and configure Virtual Router Redundancy Protocol (VRRP), use VRRP mode. For more
information, refer to Virtual Router Redundancy Protocol (VRRP).
To enter VRRP mode:
1.

To enable VRRP globally, verify that you are logged in to CONFIGURATION mode.

2.

Enter the vrrp-group command then enter the VRRP group ID. The prompt changes to include
(conf-if-interface-type-slot/port-vrid-vrrp-group-id).

u-Boot Mode
To enable u-Boot mode, press any key when the following line appears on the console during a system
boot: Hit any key to stop autoboot:. The prompt changes to include ( =>). For more information,
refer to S4810 u-Boot.
NOTE: You cannot use the Tab key to complete commands in u-Boot mode.

UPLINK STATE GROUP Mode
To enable and configure an uplink-state group, use UPLINK STATE GROUP mode. For more information,
refer to Uplink Failure Detection (UFD).
To enter UPLINK STATE GROUP mode:

60

CLI Basics

1.

Verify that you are logged in to CONFIGURATION mode.

2.

Enter the uplink-state-group command then the group ID number. The prompt changes to
include (conf-uplink-state-group-groupID).

CLI Basics

61

3

File Management

This chapter contains command line interface (CLI) commands needed to manage the configuration files
as well as other file management commands.

boot system
Tell the system where to access the Dell Networking OS image used to boot the system.

S4810
Syntax

boot system {gateway ip address| stack-unit [{0-11 | 0-7]| all]
[default | primary {system {A: | B:} | tftp: | | secondary]}
To return to the default boot sequence, use the no boot system command.

Parameters

gateway

Enter the IP address of the default next-hop gateway for the
management subnet.

ip-address

Enter an IP address in dotted decimal format.

stack-unit

Enter the stack-unit number for the master switch.

0-11, 0-7, all

Enter the stack-unit number. The S4810 range is from 0 to
11.

default

Enter the keyword default to use the primary Dell
Networking OS image.

primary

Enter the keyword primary to use the primary Dell
Networking OS image.

secondary

Enter the keyword secondary to use the primary Dell
Networking OS image.

tftp:

Enter the keyword TFTP: to retrieve the image from a TFTP
server. tftp://hostip/filepath.

A: | B:

Enter A: or B: to boot one of the system partitions.

Defaults

Not configured.

Command
Modes

CONFIGURATION

62

File Management

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

To display these changes in the show bootvar command output, save the
running configuration to the startup configuration (using the copy command) and
reload system.

cd
Change to a different working directory.

S4810
Syntax
Parameters

cd directory
directory

(OPTIONAL) Enter one of the following:
•

flash: (internal Flash) or any sub-directory

•

usbflash: (internal Flash) or any sub-directory

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

File Management

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

63

E-Series

Original command.

HTTP Copy via CLI
Copy one file to another location. Dell Networking OS supports IPv4 and IPv6 addressing for FTP, TFTP,
and SCP (in the hostip field).
This feature is supported on S4810 platform.
Syntax

copy http://10.16.206.77/sample_file flash://sample_filecopy
flash://sample_file http://10.16.206.77/sample_file
You can copy from the server to the switch and vice-versa.

Parameters

copy http:
flash:

Address or name of remote host []: 10.16.206.77
Port number of the server [80]:
Source file name []: sample_file
User name to login remote host: x
Password to login remote host:
Destination file name [sample_file]:

Defaults

None.

Command
Modes

EXEC

Command
History

Version 9.3(0.1)

Introduced on the S6000, Z9000, S4810, and S4820T.

Example

copy http://admin:admin123@10.16.206.77/sample_file flash://
sample_file

Related
Commands

copy ftp:flash

64

Copy files from FTP server to switch

File Management

copy
Copy one file to another location. Dell Networking OS supports IPv4 and IPv6 addressing for FTP, TFTP,
and SCP (in the hostip field).

S4810
Syntax

copy compressed-config source-file-url destination-file-url

Parameters

Enter the following location keywords and information:
compressedconfig

file-url

File Management

Enter the keyword compressed-config to copy one file,
after optimizing and reducing the size of the configuration
file, to another location. Dell Networking OS supports IPv4
and IPv6 addressing for FTP, TFTP, and SCP (in the hostip
field).
To copy a file
from the
internal FLASH

enter flash:// followed by the
filename

To copy a file
on an FTP
server

enter ftp://
user:password@hostip/filepath

To copy the
running
configuration

enter the keyword running-config

To copy the
startup
configuration

enter the keyword startup-config

To copy using
a Secure Copy
(SCP),

enter the keyword scp:
•

If you enter scp: in the source
position, enter the target URL;

•

If you enter scp: in the target
position, first enter the source URL;

To copy a file
on the external
FLASH

enter slot0:// followed by the
filename

To copy a file
on a TFTP
server

enter tftp://hostip/filepath

To copy a file
from an
external USB
drive

enter usbflash://filepath

65

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4(0.0)

Added the compressed-config parameter.

Version 9.0.2.0

Introduced on the S6000.

Version 8.4.1.0

Added IPv6 addressing support for FTP, TFTP, and SCP.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added usbflash and rpm0usbflash commands on ESeries ExaScale.

Version 7.6.1.0

Introduced on the S-Series and added the SSH port number
to the SCP prompt sequence on all systems.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Dell Networking OS supports a maximum of 100 files at the root directory level, on
both the internal and external Flash.
When copying a file to a remote location (for example, using Secure Copy [SCP]),
enter only the keywords and Dell Networking OS prompts you need for the rest of
the information. For example, when using SCP, you can enter copy runningconfig scp: where running-config is the source and the target is specified in
the ensuing prompts. Dell Networking OS prompts you to enter any required
information, as needed for the named destination—remote destination, destination
filename, user ID, password, etc.
When you use the copy running-config startup-config command to copy
the running configuration (the startup configuration file amended by any
configuration changes made since the system was started) to the startup
configuration file, Dell Networking OS creates a backup file on the internal flash of
the startup configuration.
Dell Networking OS supports copying the running-configuration to a TFTP server
or to an FTP server. For example:
•

copy running-config tftp:

•

copy running-config ftp:

You can compress the running configuration by grouping all the VLANs and the
physical interfaces with the same property. Support to store the operating

66

File Management

configuration to the startup config in the compressed mode and to perform an
image downgrade without any configuration loss are provided.
Two existing exec mode CLIs are enhanced to display and store the running
configuration in the compressed mode.
Example

Dell#copy running-config scp:/
Address or name of remote host []: 10.10.10.1
Destination file name [startup-config]? old_running
User name to login remote host? sburgess
Password to login remote host? dilling
In this copy scp: flash: example, specifying SCP in the first position indicates
that the target is to be specified in the ensuing prompts. Entering flash: in the
second position indicates that the target is the internal Flash. The source is on a
secure server running SSH, so you are prompted for the user datagram protocol
(UDP) port of the SSH server on the remote host.

Example

Dell#copy scp: flash:
Address or name of remote host []: 10.11.199.134
Port number of the server [22]: 99
Source file name []: test.cfg
User name to login remote host: admin
Password to login remote host:
Destination file name [test.cfg]: test1.cfg

Example

FTOS#copy compressed-config compressed-cfg
!
6655 bytes successfully copied
FTOS#
FTOS#copy compressed-config ftp:
Address or name of remote host []: 10.11.8.12
Destination file name [startup-config]:
User name to login remote host: spbalaji
Password to login remote host:
!
6655 bytes successfully copied

Related
Commands

cd – changes the working directory.

delete
Delete a file from the flash. After deletion, files cannot be restored.

S4810
Syntax
Parameters

File Management

delete flash-url [no-confirm]
flash-url

Enter the following location and keywords:

67

no-confirm

•

For a file or directory on the internal Flash, enter
flash:// followed by the filename or directory name.

•

For a file or directory on an external USB drive, enter
usbflash:// followed by the filename or directory
name.

(OPTIONAL) Enter the keyword no-confirm to specify that
Dell Networking OS does not require user input for each file
prior to deletion.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

dir
Display the files in a file system. The default is the current directory.

S4810
Syntax
Parameters

Command
Modes

68

dir [filename | directory name:]
filename |
directory
name:

(OPTIONAL) Enter one of the following:
•

For a file or directory on the internal Flash, enter
flash:// then the filename or directory name.

•

For a file or directory on the external Flash, enter
usbflash:// then the filename or directory name.

EXEC Privilege

File Management

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Example

Dell#dir
Directory of flash:
1 -rwx 6478482 May 13 101 16:54:34 E1200.BIN
flash: 64077824 bytes total (57454592 bytes free)
Dell#

Related
Commands

cd – changes the working directory.

format flash (S-Series)
Erase all existing files and reformat the filesystem in the internal flash memory. After the filesystem is
formatted, files cannot be restored.

S4810
Syntax

format flash:

Defaults

flash memory

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

File Management

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

69

Version 7.8.1.0
Usage
Information

Introduced on the S-Series

You must include the colon (:) when entering this command.
After reformatting is complete, three empty directories are automatically created
on flash: CRASH_LOG_DIR, TRACE_LOG_DIR and NVTRACE_LOG_DIR.
CAUTION: This command deletes all files, including the startup
configuration file. So, after executing this command, consider saving the
running config as the startup config (use the write memory command or
copy run start command).

Related
Commands

copy – copies the current configuration to either the startup-configuration file or
the terminal.
show file-systems – displays information about the file systems on the system.

fsck flash
Checks the flash file system for errors.

S4810
Syntax

fsck flash:
fsck usbflash:

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

70

Version 9.0.2.0

Introduced on the S6000.

Version 9.1(0.0)

Introduced on S4810 and Z9000.

Version
8.3.19.0

Introduced on S4820T.

Include the colon (:) when entering this command. This command checks the
specified flash memory for errors. If errors are found, the command recommends
that you format the flash.

File Management

CAUTION: If you elect to format the flash, all files – including the startup
configuration file – are lost. If you do decide to format the specified flash,
consider saving the running configuration as the startup configuration after
formatting the flash (use the write memory command or copy run start
command).
Related
Commands

•

copy — copy one file to another location.

•

show file-systems — Display information about the file systems on the system.

HTTP Copy via CLI
Copy one file to another location. Dell Networking OS supports IPv4 and IPv6 addressing for FTP, TFTP,
and SCP (in the hostip field).
This feature is supported on S4810 platform.
Syntax

copy http://10.16.206.77/sample_file flash://sample_filecopy
flash://sample_file http://10.16.206.77/sample_file
You can copy from the server to the switch and vice-versa.

Parameters

copy http:
flash:

Address or name of remote host []: 10.16.206.77
Port number of the server [80]:
Source file name []: sample_file
User name to login remote host: x
Password to login remote host:
Destination file name [sample_file]:

Defaults

None.

Command
Modes

EXEC

Command
History

Version 9.3(0.1)

Introduced on the S6000, Z9000, S4810, and S4820T.

Example

copy http://admin:admin123@10.16.206.77/sample_file flash://
sample_file

Related
Commands

copy ftp:flash

File Management

Copy files from FTP server to switch

71

rename
Rename a file in the local file system.

S4810
Syntax
Parameters

rename url url
url

Enter the following keywords and a filename:
•

For a file on the internal Flash, enter flash:// followed
by the filename.

•

For a file on an external USB drive, enter usbflash://
followed by the filename.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on S-Series

Version 7.5.1.0

Introduced on C-Series

E-Series

Original command

restore factory-defaults
Restore factory defaults.

S4810
Syntax
Parameters

72

restore factory-defaults stack-unit {0-5 | all} {clear-all |
nvram}
factorydefaults

Return the system to its factory default mode.

File Management

0-5

Enter the stack member unit identifier to restore only the
mentioned stack-unit.

all

Enter the keyword all to restore all units in the stack.

clear-all

Enter the keywords clear-all to reset the NvRAM and the
system startup configuration.

nvram

Enter the keyword nvram to reset the NvRAM only.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Restoring factory defaults deletes the existing startup configuration and all
persistent settings (stacking, fanout, and so forth).
When restoring all units in a stack, all the units in the stack are placed into standalone mode.
When restoring a single unit in a stack, that unit placed in stand-alone mode. No
other units in the stack are affected.
When restoring units in stand-alone mode, the units remin in stand-alone mode
after the restoration. After the restore is complete, the units power cycle
immediately.
CAUTION: There is no undo for this command.

Example (all
stack units)

File Management

Dell#restore factory-defaults stack-unit all clear-all
**************************************************************
* Warning - Restoring factory defaults will delete the
existing *
* startup-config and all persistent settings (stacking,
fanout, etc.)*
* All the units in the stack will be split into standalone
units. *
* After restoration the unit(s) will be powercycled
immediately. *

73

* Proceed with caution ! *
**************************************************************
Proceed with factory settings? Confirm [yes/no]:yes
-- Restore status -Unit Nvram
Config
-----------------------0
Success
Success
1
Success
Success
2
Success
Success
3
Not present
4
Not present
5
Not present
Power-cycling the unit(s).
Dell#
Example (single
stack)

Dell#restore factory-defaults stack-unit 0 clear-all
**************************************************************
* Warning - Restoring factory defaults will delete the
existing *
* startup-config and all persistent settings (stacking,
fanout, etc.)*
* After restoration the unit(s) will be powercycled
immediately. *
* Proceed with caution ! *
**************************************************************
Proceed with factory settings? Confirm [yes/no]:yes
-- Restore status -Unit Nvram
Config
-----------------------0
Success Success
Power-cycling the unit(s).
Dell#

Example
(NvRAM all
stack units)

Dell#restore factory-defaults stack-unit all nvram
**************************************************************
* Warning - Restoring factory defaults will delete the
existing *
* persistent settings (stacking, fanout, etc.) *
* All the units in the stack will be split into standalone
units. *
* After restoration the unit(s) will be powercycled
immediately. *
* Proceed with caution ! *
**************************************************************
Proceed with factory settings? Confirm [yes/no]:yes
-- Restore status -Unit Nvram
Config
-----------------------0
Success
1
Success
2
Success
3
Not present
4
Not present
5
Not present
Power-cycling the unit(s).
Dell#

Example
(NvRAM, single
unit)

Dell#restore factory-defaults stack-unit 1nvram
**************************************************************
* Warning - Restoring factory defaults will delete the
existing *

74

File Management

* persistent settings (stacking, fanout, etc.) *
* After restoration the unit(s) will be powercycled
immediately. *
* Proceed with caution ! *
**************************************************************
Proceed with factory settings? Confirm [yes/no]:yes
-- Restore status -Unit Nvram
Config
-----------------------1
Success
Power-cycling the unit(s).
Dell#

show boot system
Displays information about boot images currently configured on the system.

S4810
Syntax
Parameters

show boot system {stack-unit {0-11 | 0-7 | 0-5 | all}}
all

Enter the keyword all to display the boot image information
for all line cards and rpms.

stack-unit

Enter the keyword stack-unit followed by a number to
display boot image information for a stack-unit.
The S4810 range is from 0 to 11.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

File Management

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the C-Series and E-Series.

Dell#show boot system stack-unit 0

75

Current system image information in the system:
=============================================
Type
Boot Type
A
B
--------------------------------------------------------------Stack-unit 0 FLASH BOOT
9-0(2-1)
9-0(2-0)
[boot]
Dell#

show bootvar
Display the variable settings for the boot parameters.

S4810
Syntax

show bootvar

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

76

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.4

Output expanded to display current reload mode (normal or
Jumpstart).

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Dell#show bootvar
PRIMARY IMAGE FILE = system://B
SECONDARY IMAGE FILE = tftp://10.16.127.35/Dell-SI-9-0-2-0.bin
DEFAULT IMAGE FILE = system://A
LOCAL CONFIG FILE = variable does not exist
PRIMARY HOST CONFIG FILE = variable does not exist
SECONDARY HOST CONFIG FILE = variable does not exist
PRIMARY NETWORK CONFIG FILE = variable does not exist
SECONDARY NETWORK CONFIG FILE = variable does not exist
CURRENT IMAGE FILE = system://B
CURRENT CONFIG FILE 1 = flash://startup-config
CURRENT CONFIG FILE 2 = variable does not exist
CONFIG LOAD PREFERENCE = local first
BOOT INTERFACE GATEWAY IP ADDRESS = 10.16.132.254

File Management

Reload Mode =
Dell#

normal-reload

show file-systems
Display information about the file systems on the system.

S4810
Syntax

show file-systems

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Command
Fields

File Management

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series

Version 7.5.1.0

Introduced on the C-Series

E-Series

Original command

Dell#show file-systems
Size(b) Free(b) Feature Type Flags Prefixes
63938560 51646464 dosFs2.0 MMC rw flash:
63938560 18092032 dosFs1.0 MMC rw slot0:
- - - network rw ftp:
- - - network rw tftp:
- - - network rw scp:
Dell#
Field

Description

size(b)

Lists the size (in bytes) of the storage location. If the location
is remote, no size is listed.

Free(b)

Lists the available size (in bytes) of the storage location. If
the location is remote, no size is listed.

Feature

Displays the formatted DOS version of the device.

77

Field

Description

Type

Displays the type of storage. If the location is remote, the
word network is listed.

Flags

Displays the access available to the storage location. The
following letters indicate the level of access:

Prefixes
Related
Commands

•

r = read access

•

w = write access

Displays the name of the storage location.

format flash (S-Series) – Erases all the existing files and reformats the filesystem in
the internal flash memory on the S-Series.

show os-version
Display the release and software image version information of the image file specified.

S4810
Syntax
Parameters

show os-version [file-url]
file-url

(OPTIONAL) Enter the following location keywords and
information:
•

For a file on the internal flash, enter flash:// followed
by the filename.

•

For a file on an FTP server, enter ftp://
user:password@hostip/filepath.

•

For a file on a TFTP server, enter tftp://hostip/
filepath.

•

For a file on the USB port, enter usbflash://filepath.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

78

Introduced on the S6000.

File Management

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Dell#show os-version
RELEASE IMAGE INFORMATION :
-------------------------------------------------------------------Platform Version Size ReleaseTime
S-Series: SI 9-4(0-50) 49100764 Mar 6 2014 23:47:48
TARGET IMAGE INFORMATION :
-------------------------------------------------------------------Type Version Target checksum
runtime 9-4(0-50) Control Processor passed
BOOT IMAGE INFORMATION :
-------------------------------------------------------------------Type Version Target checksum
boot flash 3.1.1.3 Control Processor passed
BOOTSEL IMAGE INFORMATION :
-------------------------------------------------------------------Type Version Target checksum
boot selector 3.1.0.2 Control Processor passed
FPGA IMAGE INFORMATION :
-------------------------------------------------------------------Card FPGA Name Version
Stack-unit 0 S6000 SYSTEM CPLD 10
Stack-unit 0 S6000 MASTER CPLD 12
Stack-unit 0 S6000 SLAVE CPLD 10
Dell#

Usage
Information

File Management

NOTE: A filepath that contains a dot ( . ) is not supported.

79

show running-config
Display the current configuration and display changes from the default values.

S4810
Syntax
Parameters

show running-config [entity] [configured] [status]
entity

(OPTIONAL) To display that entity’s current (non-default)
configuration, enter one of the following keywords:
NOTE: If you did not configure anything that entity,
nothing displays and the prompt returns.

80

aaa

for the current AAA configuration

acl

for the current ACL configuration

arp

for the current static ARP
configuration

as-path

for the current AS-path configuration

bfd

for the current BFD configuration

bgp

for the current BGP configuration

boot

for the current boot configuration

cam-profile

for the current CAM profile in the
configuration

class-map

for the current class-map
configuration

communitylist

for the current community-list
configuration

ecmp-group

for the current ECMP group
configuration

eis

for the current EIS configuration

ethernet

for the current Ethernet CFM
configuration

fefd

for the current FEFD configuration

ftp

for the current FTP configuration

frrp

for the current FRRP configuration

fvrp

for the current FVRP configuration

gvrp

for the current GVRP configuration

host

for the current host configuration

hardwaremonitor

for hardware-monitor action-on-error
settings

File Management

File Management

hypervisor

for the current hypervisor
configuration

igmp

for the current IGMP configuration

interface

for the current interface configuration

interface
tunnel

for all configured tunnels. For a
specific tunnel, enter the tunnel ID.
The range is from 1 to 16383.

ip

for the current IP configuration

isis

for the current ISIS configuration

line

for the current line configuration

lldp

for the current LLDP configuration

load-balance

for the current port-channel loadbalance configuration

logging

for the current logging configuration

mac

for the current MAC ACL configuration

mac-addresstable

for the current MAC configuration

managementeis

for the current management EIS
configuration

managementroute

for the current Management port
forwarding configuration

mld

for the current MLD configuration

monitor

for the current Monitor configuration

mroute

for the current Mroutes configuration

msdp

for the current MSDP configuration

ntp

for the current NTP configuration

ospf

for the current OSPF configuration

pim

for the current PIM configuration

policy-mapinput

for the current input policy map
configuration

policy-mapoutput

for the current output policy map
configuration

po-failovergroup

for the current port-channel failovergroup configuration

prefix-list

for the current prefix-list configuration

privilege

for the current privilege configuration

81

82

qos-policyinput

for the current input QoS policy
configuration

qos-policyoutput

for the current output QoS policy
configuration

radius

for the current RADIUS configuration

redirectlist

for the current redirect-list
configuration

redundancy

for the current RPM redundancy
configuration

resolve

for the current DNS configuration

rip

for the current RIP configuration

rmon

for the current RMON configuration

route-map

for the current route map
configuration

sflow

for the current sFlow configuration

snmp

for the current SNMP configuration

spanningtree

for the current spanning tree
configuration

static

for the current static route
configuration

status

for the file status information

tacacs+

for the current TACACS+
configuration

tftp

for the current TFTP configuration

trace-group

for the current trace-group
configuration

trace-list

for the current trace-list configuration

uplinkstate-group

for the uplink state group
configuration

users

for the current users configuration

vlt

for the current VLT configuration

wred-profile

for the current wred-profile
configuration

configured

(OPTIONAL) Enter the keyword configuration to display
line card interfaces with non-default configurations only.

status

(OPTIONAL) Enter the keyword status to display the
checksum for the running configuration and the start-up
configuration.

File Management

compressed

(Optional) Enter the keyword compressed to display the
compressed group configuration. Displays the compressed
configuration by grouping all similar configurations. The
compression is done only for interface related
configurations.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Added support for the tunnel and EIS interface types.

Version 9.0.0.0

Added support for the VLT option.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added the hardware-monitor option.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Expanded to include the last configuration change, start-up
last updated (date and time), and who made the change.

Version 6.5.4.0

Added the status option.

Example
Dell# show running-config
Current Configuration ...
! Version 9-0(2-0)
! Last configuration change at Thu Apr 18 10:18:39 2013 by
admin
! Startup-config last updated at Thu Apr 18 10:18:40 2013 by
admin
!
boot system stack-unit 0 primary system: A:
boot system stack-unit 0 secondary tftp://10.16.127.35/DellSI-9-0-2-0.bin
boot system stack-unit 0 default system: A:
boot system gateway 10.16.132.254
!
redundancy auto-synchronize full
redundancy disable-auto-reboot stack-unit
!
redundancy disable-auto-reboot stack-unit 0
redundancy disable-auto-reboot stack-unit 1
redundancy disable-auto-reboot stack-unit 2

File Management

83

redundancy disable-auto-reboot stack-unit 3
redundancy disable-auto-reboot stack-unit 4
redundancy disable-auto-reboot stack-unit 5
!
hardware watchdog stack-unit 0
hardware watchdog stack-unit 1
hardware watchdog stack-unit 2
Example

Dell#show running-config status
running-config bytes 10257, checksum 0xFD33339F
startup-config bytes 10257, checksum 0xFD33339F

Usage
Information

The status option allows you to display the size and checksum of the running
configuration and the startup configuration.

show startup-config
Display the startup configuration.

S4810
Syntax

show startup-config

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

84

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on S-Series

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Expanded to include the last configuration change, start-up
last updated (date and time), and who made the change.

Dell#show startup-config
! Version 9-0(2-0)
! Last configuration change at Thu Apr 18 10:18:39 2013 by
admin
! Startup-config last updated at Thu Apr 18 10:18:40 2013 by
admin
!
boot system stack-unit 0 primary system: A:

File Management

boot system stack-unit 0 secondary tftp://10.16.127.35/DellSI-9-0-2-0.bin
boot system stack-unit 0 default system: A:
boot system gateway 10.16.132.254
!
redundancy auto-synchronize full
redundancy disable-auto-reboot stack-unit
...
Related
Commands

show running-config – displays the current (running) configuration.

show version
Display the current Dell Networking Operating System (OS) version information on the system.

S4810
Syntax

show version

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Command
Fields

File Management

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Lines Beginning
With

Description

Dell Network...

Name of the operating system

Dell Operating...

OS version number

Dell Application...

Software version

Copyright (c)...

Copyright information

85

Example (SSeries)

Lines Beginning
With

Description

Build Time...

Software build’s date stamp

Build Path...

Location of the software build files loaded on the system

Dell Networking
OS uptime is...

Amount of time the system has been up

System image...

Image file name

System Type:

S4810, S4820T, Z9000, S6000

Control
Processor:...

Control processor information and amount of memory on
processor

128K bytes...

Amount and type of memory on system

1 Route
Processor...

Hardware configuration of the system, including the
number and type of physical interfaces available

Dell#show version
Dell Real Time Operating System Software
Dell Operating System Version: 1.0
Dell Application Software Version: E7-8-1-13
Copyright (c) 1999-2008 by Dell Force10 Networks, Inc.
Build Time: Mon Nov 24 18:59:27 2008
Build Path: /sites/sjc/work/sw/build/build2/Release/E7-8-1/SW/
SRC
Dell uptime is 1 minute(s)
System Type: S50V
Control Processor: MPC8451E with 252739584 bytes of memory.
32M bytes of boot flash memory.
1 48-port E/FE/GE with POE (SB)
48 GigabitEthernet/IEEE 802.3 interface(s)
4 Ten GigabitEthernet/IEEE 802.3 interface(s)
Dell#

Example
(S4810)

86

Dell#
Dell#show version
Dell Real Time Operating System Software
Dell Operating System Version: 1.0
Dell Application Software Version: Z9K-ICC-PRIM-SYNC-8-3-11-173
Copyright (c) 1999-2012 by Dell Inc. All Rights Reserved.
Build Time: Mon Jul 16 22:19:01 PDT 2012
Build Path: /local/local/build/build15/8.3.12.0/SW/SRC/Radius
Dell uptime is 1 minute(s)
System image file is "s4810-14"
System Type: S4810
Control Processor: Freescale QorIQ P2020 with 2147483648 bytes
of memory.
128M bytes of boot flash memory.
1 52-port GE/TE/FG (SE)
52 Ten GigabitEthernet/IEEE 802.3 interface(s)
Dell#
Dell#
Dell#
Dell#config t
Dell(conf)#int te 0/5

File Management

Dell(conf-if-te-0/5)#no shut
Dell(conf-if-te-0/5)#
Dell(conf-if-te-0/5)#
Dell(conf-if-te-0/5)#
Dell(conf-if-te-0/5)#ipv6 nd prefix FEC0::/10
Dell(conf-if-te-0/5)#
Dell(conf-if-te-0/5)#show conf
!
interface TenGigabitEthernet 0/5
ip address 78.21.1.3/24
ipv6 nd prefix fec0::/10
flowcontrol rx on tx on
no shutdown
Dell(conf-if-te-0/5)#
Dell#
Example
(S6000)

Dell#S6000#show version
Dell Real Time Operating System Software
Dell Operating System Version: 2.0
Dell Application Software Version: 9-4(0-119)
Copyright (c) 1999-2014 by Dell Inc. All Rights Reserved.
Build Time: Tue Mar 18 10:32:02 PDT 2014
Build Path: /work.local/build/buildSpaces/build01/E9-4-0/SW/
SRCC
Dell Networking OS uptime is 1 day(s), 0 hour(s), 19 minute(s)
System image file is "DT-MAA-S6000-16-PI"
System Type: S6000
Control Processor: Intel Centerton with 3203911680 bytes of
memory, core(s) 2.
16G bytes of boot flash memory.
1 32-port TE/FG (SI)
32 Forty GigabitEthernet/IEEE 802.3 interface(s)

upgrade
Upgrade the bootflash image or system image of the management unit.

S4810
Syntax
Parameters

File Management

upgrade {boot | system} {ftp: | scp: | tftp: | flash: {A: |B:}
| stack-unit | usbflash | slot0:} file-url
boot

Enter the keyword boot to change the boot image.

system

Enter the keyword system to change the system image.

ftp:

After entering the keyword ftp:, you can either follow it
with the location of the source file in this form: //
userid:password@hostip/filepath or press Enter to
launch a prompt sequence.

scp:

After entering the keyword scp:, you can either follow it
with the location of the source file in this form: //
userid:password@hostip/filepath or press Enter to
launch a prompt sequence.

87

slot0:

After entering the keyword slot0:, you can either follow it
with the location of the source file in this form: //
hostlocation/filepath or press Enter to launch a
prompt sequence.

tftp:

After entering the keyword tftp:, you can either follow it
with the location of the source file in this form: //
hostlocation/filepath or press Enter to launch a
prompt sequence.

flash:

After entering the keyword flash:, you can either follow it
with the location of the source file in this form: flash//
filepath or press Enter to launch a prompt sequence.

A: | B:

Enter the partition to upgrade from the flash.

stack-unit:

Enter the keywords stack-unit: to synch the image to the
stack-unit.

file-url

Enter the following location keywords and information to
upgrade using an Dell Networking OS image other than the
one currently running:
•

To specify an Dell Networking OS image on the internal
flash, enter flash:// file-path/filename.

•

To specify an Dell Networking OS image on an FTP
server, enter ftp://user:password@hostip/
filepath.

•

To specify an Dell Networking OS image on the external
flash on the primary RPM, enter slot0://file-path/
filename.

•

To copy a file on a TFTP server, enter tftp://hostip/
filepath/filename.

where hostip is either an IPv4 dotted decimal address or an
IPv6 URI [x:x:x:x::x] format address.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

88

Version
9.0(0.0)

Added support for IPv6 for the file-url parameter.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000. Added support for the SSD on the
Z9000 only.

File Management

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Added support for TFTP and SCP.

Version 7.6.1.0

Introduced on the S-Series.

RFC 3986 specifies that IPv6 host addresses in a uniform resource identifier (URI)
must be enclosed in square brackets, [X:X:X:X::X]. For maximum flexibility this
command accepts IPv6 host addresses with or without the square brackets.
Reload Dell Networking OS after executing this command. To copy Dell
Networking OS from the management unit to one or more stack members, use the
upgrade system stack-unit (S-Series stack member) command.

Example

File Management

Dell# upgrade system ?
ftp:
Copy from remote file system (ftp://
userid:password@hostip/filepath)
scp:
Copy from remote file system (scp://
userid:password@hostip/filepath)
tftp:
Copy from remote file system (tftp://hostip/filepath)
Dell# upgrade system ftp://username:password@10.11.1.1/FTOSSB-7.7.1.0.bin
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!
Erasing Sseries ImageUpgrade Table of Contents, please wait
.!.............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
...............................................................
.....................................
....................................!
12946259 bytes successfully copied
Dell# reload

89

4

Control and Monitoring

This chapter contains the commands to configure and monitor the system, including Telnet, file transfer
protocol (FTP), and trivial file transfer protocol (TFTP) as they apply to the following Dell Networking
S4810 platform.
NOTE: Starting in version 8.3.10.0, the enable xfp-power-updates command was deprecated
for the S4810. This command replaces the enable optic-info-update interval command to
update information on temperature and power monitoring in the simple network management
protocol (SNMP) management information base (MIB).

asf-mode
Enable alternate store and forward (ASF) mode and forward packets as soon as a threshold is reached.

S4810
Syntax

asf-mode stack-unit {unit-id | all} queue size
To return to standard Store and Forward mode, use the no asf-mode stack
unit command.

Parameters

unit-id

Enter the stack member unit identifier of the stack member
to reset. The S4810 range is from 0 to 11.
NOTE: The S4810 commands accept Unit ID numbers
from 0 to 11, though S4810 supports stacking of up to six
units.

queue size

Enter the queue size of the stack member. The range is from
0 to 15.

Defaults

Not configured

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

90

Introduced on the S4820T.

Control and Monitoring

Usage
Information

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

You must save the configuration and reload the system to implement ASF. When
you enter the command, the system sends a message stating that the new mode is
enabled when the system reloads.

cam-acl
Allocate content addressable memory (CAM) for IPv4 and IPv6 ACLs.

S4810
Syntax
Parameters

default

Use the default CAM profile settings and set the CAM as
follows:
•
•
•
•
•
•
•
•

L3 ACL (ipv4acl): 4
L2 ACL(l2acl): 6
IPv6 L3 ACL (ipv6acl): 0
L3 QoS (ipv4qos): 2
L2 QoS (l2qos): 1
OpenFlow: 0 (disabled)
FCoE (fcoeacl): 0 (disabled)
iSCSI Optimization (iscsioptacl): 0 (disabled)

Allocate space to each CAM region.
Enter the CAM profile name then the amount of CAM space
to be allotted. The total space allocated must equal 13. The
ipv6acl range must be a factor of 2.
Enter 4 or 8 for the number of OpenFlow FP blocks.
•

•

4: Creates 242 entries for use by the OpenFlow controller
(256 total entries minus the 14 entries reserved for
internal functionality)
8: Creates 498 entries for use by the OpenFlow controller
(512 total entries minus the 14 entries reserved for
internal functionality)

Using the fcoe parameter, enter the number of FP groups to
be allocated for FCoE transit. Enter 1 – 6; maximum six
groups. Each group has 128 entries, creating a total of 768
possible entries for FCoE FP groups. The value given must be
an even number.

Control and Monitoring

91

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.2)

Added support for the fcoe parameter on the S4810 and
S4820T.

Version 9.1.
(0.0)

Added support for OpenFlow on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Added the keywords fcoeacl and iscsioptacl on the
S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Added the keywords ecfmacl, vman-qos, and vman-dualqos.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

For the new settings to take effect, save the new CAM settings to the startupconfig (write-mem or copy run start) then reload the system.
The total amount of space allowed is 16 FP Blocks. System flow requires three
blocks and these blocks cannot be reallocated. The ipv4acl profile range is from
1 to 4.
When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.
Ranges for the CAM profiles are from 1 to 10, except for the ipv6acl profile which
is from 0 to 10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10).
If you enabled BMP 3.0, to perform a reload on the chassis to upgrade any
configuration changes that have changed the NVRAM content, use the reload
conditional nvram-cfg-change command.

92

Control and Monitoring

cam-acl-vlan
Specify the number of VFP blocks allocated to OpenFlow.

S4810
Syntax

cam-acl-vlan vlanopenflow {0|1} vlaniscsi {0|1}

Defaults

Disabled.

Parameters

vlanopenflow

Enter the number 1 to allocate VFP blocks and enable
OpenFlow.
(Default) Enter the number 0 to disable OpenFlow.

vlaniscsi

Enter the number 1 to allocate VFP blocks for iSCSI.
Enter the number 0 to disable iSCSI CAM allocation.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on S4810.

Version
8.3.19.0

Introduced on the S4820T.

Reboot the switch after changing the parameter values for changes to take effect.
For platform-specific instructions about using this command, refer to the SDN
chapter in the Dell Networking OS Configuration Guide.

clear line
Reset a terminal line.

S4810
Syntax
Parameters

Control and Monitoring

clear line {line-number | aux 0 | console 0 | vty number}
line-number

Enter a number for one of the 12 terminal lines on the
system. The range is from 0 to 11.

93

aux 0

Enter the keywords aux 0 to reset the auxiliary port.

console 0

Enter the keywords console 0 to reset the console port.

vty number

Enter the keyword vty then a number to clear a terminal
line. The range is from 0 to 9.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

configure
Enter CONFIGURATION mode from EXEC Privilege mode.

S4810
Syntax
Parameters

configure [terminal]
terminal

(OPTIONAL) Enter the keyword terminal to specify that
you are configuring from the terminal.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

94

Control and Monitoring

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Dell#configure
Dell(conf)#

disable
Return to EXEC mode.

S4810
Syntax
Parameters

disable [level]
level

(OPTIONAL) Enter a number for a privilege level of the Dell
Networking OS. The range is from 0 to 15. The default is 1.

Defaults

1

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

95

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

do
Allows the execution of most EXEC-level commands from all CONFIGURATION levels without returning
to the EXEC level.

S4810
Syntax
Parameters

do command
command

Enter an EXEC-level command.

Defaults

none

Command
Modes

•

CONFIGURATION

•

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

96

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

The following commands are not supported by the do command:
•

enable

•

disable

•

exit

Control and Monitoring

•
Example

config

Dell(conf-if-te-5/0)#do clear counters
Clear counters on all interfaces [confirm]
Dell(conf-if-te-5/0)#
Dell(conf-if-te-5/0)#do clear logging
Clear logging buffer [confirm]
Dell(conf-if-te-5/0)#
Dell(conf-if-te-5/0)#do reload
System configuration has been modified. Save? [yes/no]: n
Proceed with reload [confirm yes/no]: n
Dell(conf-if-te-5/0)#

enable
Enter EXEC Privilege mode or any other privilege level configured. After entering this command, you may
need to enter a password.

S4810
Syntax
Parameters

enable [level]
level

(OPTIONAL) Enter a number for a privilege level of Dell
Networking OS. The range is from 0 to 15.

Defaults

15

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

97

Usage
Information

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Users entering EXEC Privilege mode or any other configured privilege level can
access configuration commands. To protect against unauthorized access, use the
enable password command to configure a password for the enable command
at a specific privilege level. If no privilege level is specified, the default is privilege
level 15.
NOTE: If you are authorized for the EXEC Privilege mode by your role, you do
not need to enter an enable password.

Related
Commands

enable password — configures a password for the enable command and to
access a privilege level.

enable optic-info-update interval
Enable polling intervals of optical information updates for simple network management protocol (SNMP).

S4810
Syntax

enable optical-info-update interval seconds
To disable optical power information updates, use the no enable opticalinfo-update interval command.

Parameters

interval
seconds

Enter the keyword interval then the polling interval in
seconds. The range is from 120 to 6000 seconds. The
default is 300 seconds (5 minutes).

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

98

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Replacement command for the S4820T. Replaces the
enable xfp-power-updates command.

Version 8.3.11.4

Replacement command for the Z9000. Replaces the enable
xfp-power-updates command

Control and Monitoring

Version
8.3.10.0
Usage
Information

Replacement command for the S4810 only. Replaces the
enable xfp-power-updates command.

To enable polling and to configure the polling frequency, use this command.

enable xfp-power-updates
Enable 10–gigabit small form-factor pluggable (XFP) power updates for SNMP.

S4810: Deprecated
Syntax
Parameters

enable xfp-power-updates interval seconds
interval
seconds

Enter the keyword interval then the polling interval in
seconds. The range is from 120 to 6000 seconds. Default:
300 seconds (5 minutes).

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version
8.3.19.0

Deprecated command for S4820T. Replaced by the enable
optic-info-update interval command to update
information on temperature and power monitoring in the
SNMP MIB.

Version 8.3.11.4

Deprecated command for Z9000. Replaced by the enable
optic-info-update interval command to update
information on temperature and power monitoring in the
SNMP MIB.

Version
8.3.10.0

Deprecated command for the S4810 only. Replaced by the
enable optic-info-update interval command to
update information on temperature and power monitoring in
the SNMP MIB.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

99

Usage
Information

The chassis MIB contains the entry chSysXfpRecvPower in the chSysPortTable
table. Periodically, IFA polls the XFP power for each of the ports and sends the
values to IFM where it is cached.
To enable polling and to configure the polling frequency, use this command.

end
Return to EXEC Privilege mode from other command modes (for example, CONFIGURATION or ROUTER
OSPF modes).

S4810
Syntax
Command
Modes

Command
History

end
•

CONFIGURATION

•

SPANNING TREE

•

MULTIPLE SPANNING TREE

•

LINE

•

INTERFACE

•

TRACE-LIST

•

VRRP

•

ACCESS-LIST

•

PREFIX-LIST

•

AS-PATH ACL

•

COMMUNITY-LIST

•

ROUTER OSPF

•

ROUTER RIP

•

ROUTER ISIS

•

ROUTER BGP

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

100

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Control and Monitoring

Related
Commands

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

E-Series

Original command.

exit — returns to the lower command mode.

exec-banner
Enable the display of a text string when the user enters EXEC mode.

S4810
Syntax

exec-banner
To disable the banner on terminal lines, use the no exec-banner command.

Defaults

Enabled on all lines (if configured, the banner appears).

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Usage
Information

Optionally, use the banner exec command to create a text string that is displayed
when you access EXEC mode. This command toggles that display.

Related
Commands

line — enables and configures console and virtual terminal lines to the system.

Control and Monitoring

101

exec-timeout
Set a time interval that the system waits for input on a line before disconnecting the session.

S4810
Syntax

exec-timeout minutes [seconds]
To return to default settings, use the no exec-timeout command.

Parameters

minutes

Enter the number of minutes of inactivity on the system
before disconnecting the current session. The range is from
0 to 35791. The default is 10 minutes for the console line
and 30 minutes for the VTY line.

seconds

(OPTIONAL) Enter the number of seconds. The range is from
0 to 2147483. The default is 0 seconds.

Defaults

10 minutes for console line; 30 minutes for VTY lines; 0 seconds

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Usage
Information

To remove the time interval, enter exec-timeout 0 0.

Example

Dell con0 is now available
Press RETURN to get started.
Dell>

102

Control and Monitoring

exit
Return to the lower command mode.

S4810
Syntax

exit

Command
Modes

•

EXEC Privilege

•

CONFIGURATION

•

LINE, INTERFACE

•

TRACE-LIST

•

PROTOCOL GVRP

•

SPANNING TREE

•

MULTIPLE SPANNING TREE

•

MAC ACCESS LIST

•

ACCESS-LIST

•

AS-PATH ACL

Command
History

•

COMMUNITY-LIST

•

PREFIX-LIST

•

ROUTER OSPF

•

ROUTER RIP

•

ROUTER ISIS

•

ROUTER BGP

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

end — returns to EXEC Privilege mode.

103

ftp-server enable
Enable FTP server functions on the system.

S4810
Syntax
Parameters

ftp-server [vrf vrf-name] enable
vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
enable the FTP server to listen to that VRF instance.
NOTE: Use this attribute to specify the VRF that is used
by the FTP server to accept client connections. If no VRF
is specified, then the default VRF is used.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

104

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

morpheus% ftp 10.31.1.111
Connected to 10.31.1.111.
220 Dell (1.0) FTP server ready
Name (10.31.1.111:dch): dch
331 Password required
Password:
230 User logged in
ftp> pwd
257 Current directory is "flash:"
ftp> dir
200 Port set okay
150 Opening ASCII mode data connection

Control and Monitoring

size date
time name
-------- ------ ------ -------512 Jul-20-2004 18:15:00 tgtimg
512 Jul-20-2004 18:15:00 diagnostic
512 Jul-20-2004 18:15:00 other
512 Jul-20-2004 18:15:00 tgt
226 Transfer complete
329 bytes received in 0.018 seconds (17.95 Kbytes/s)
ftp>

ftp-server topdir
Specify the top-level directory to be accessed when an incoming FTP connection request is made.

S4810
Syntax
Parameters

ftp-server topdir directory
directory

Enter the directory path.

Defaults

The internal flash is the default directory.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

After you enable FTP server functions with the ftp-server enable command,
Dell Networking recommends specifying a top-level directory path. Without a toplevel directory path specified, the Dell Networking OS directs users to the flash
directory when logging in to the FTP server.

105

Related
Commands

ftp-server enable — enables FTP server functions on the E-Series.
ftp-server username — sets a username and password for incoming FTP
connections to the E-Series.

ftp-server username
Create a user name and associated password for incoming FTP server sessions.

S4810
Syntax

ftp-server username username password [encryption-type]
password
To delete a user name and its password, use the no ftp-server username
username command.

Parameters

username

Enter a text string up to 40 characters long as the user name.

password
password

Enter the keyword password then a string up to 40
characters long as the password. Without specifying an
encryption type, the password is unencrypted.

encryptiontype

(OPTIONAL) After the keyword password, enter one of the
following numbers:
•

0 (zero) for an unecrypted (clear text) password

•

7 (seven) for a hidden text password

Defaults

Not enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

106

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Control and Monitoring

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

hostname
Set the host name of the system.

S4810
Syntax
Parameters

hostname name
name

Enter a text string, up to 32 characters long.

Defaults

Dell

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

The hostname is used in the prompt.

107

ip http source-interface
Specify an interface as the source interface for HTTP connections.
This feature is supported on S4810 platform.
Syntax

ip http source-interface interface
To delete an interface, use theno ip http source-interface interface command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE followed by the slot/port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
followed by a number from zero (0) to 16383.

•

For a Port Channel interface, enter the keyword portchannel followed by a number:
– S-Series: 1-128

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet followed by the slot/port
information.

•

For a VLAN interface, enter the keyword vlan followed by
a number from 1 to 4094.

Defaults

The IP address on the system that is closest to the Telnet address is used in the
outgoing packets.

Command
Modes

CONFIGURATION

Command
History

Related
Commands

108

Version 9.3(0.1)

Introduced on the S4810, S4820T, S6000, and Z9000.

Version 8.3.11.1

Introduced on the Z9000

Version 8.2.1.0

Increased number of VLANs on ExaScale to 4094 (was 2094)

Version 8.1.1.0

Introduced on E-Series ExaScale

Version 7.6.1.0

Support added for S-Series

Version 7.5.1.0

Introduced on C-Series

ip ftp source interface
Configuring source interface for ftp communications.

Control and Monitoring

ip ftp password
Specify a password for outgoing FTP connections.

S4810
Syntax

ip ftp password [encryption-type] password
To remove a password and return to the default setting, use the no ip ftp
password [password] command.

Parameters

encryptiontype

password

(OPTIONAL) Enter one of the following numbers:
•

0 (zero) for an unecrypted (clear text) password

•

7 (seven) for a hidden text password

Enter a string up to 40 characters as the password.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

The password is listed in the configuration file; you can view the password by
entering the show running-config ftp command.
Use the ip ftp password command when you use the ftp: parameter in the
copy command.

Related
Commands

Control and Monitoring

copy — copy files.

109

ip ftp username — sets the user name for the FTP sessions.

ip ftp source-interface
Specify an interface’s IP address as the source IP address for FTP connections.

S4810
Syntax

ip ftp source-interface interface
To delete an interface, use the no ip ftp source-interface interface
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16383.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

•

For a tunnel interface, enter the keyword tunnel.

Defaults

The IP address on the system that is closest to the Telnet address is used in the
outgoing packets.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

110

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Control and Monitoring

Related
Commands

Version 8.2.1.0

Increased number of VLANs on ExaScale to 4094 (was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

copy — copies files from and to the switch.

ip ftp username
Assign a user name for outgoing FTP connection requests.

S4810
Syntax

ip ftp username username
To return to anonymous FTP connections, use the no ip ftp username
[username] command.

Parameters

username

Enter a text string as the user name up to 40 characters long.

Defaults

No user name is configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

111

Usage
Information

Configure a password with the ip ftp password command.

Related
Commands

ip ftp password — sets the password for FTP connections.

ip ftp vrf
Configures an FTP client with a VRF that is used to connect to the FTP server.

S4810
Syntax

ip ftp [vrf vrf-name]
To undo the FTP client configuration, use the ip ftp [vrf vrf-name]
command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
specify the VRF that is used by the FTP client.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

Use this command to make the FTP clients VRF aware. The VRF name that you
specify is used by the FTP client to reach the FTP server. If no VRF is specified, then
the default vrf is used.

ip telnet server enable
Enable the Telnet server on the switch.

S4810
Syntax

ip telnet server enable
To disable the Telnet server, use the no ip telnet server enable command.

112

Control and Monitoring

Defaults

Enabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

ip ssh server — enables the secure shell (SSH) server on the system.

ip telnet server vrf
Configures the TELNET server on either a specific VRF or a management VRF.

S4810
Syntax

ip telnet server vrf {management | vrf-name}
To undo the TELNET server configuration, use the no ip telnet server [vrf
vrf-name] command.

Parameters

vrf
management

Enter the keyword vrf followed by the keyword
management to specify a management VRF that is used by
the TELNET server.

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
specify the VRF that is used by the TELNET server.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.

Control and Monitoring

113

Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

You can enable the TELNET server on either a management VRF or a user defined
VRF but not both. If you do not specify a VRF, then the TELNET server is enabled on
the default VRF.

Example

FTOS(conf)#ip
FTOS(conf)#no
FTOS(conf)#ip
FTOS(conf)#no

telnet server vrf vrf1
ip telnet server vrf
telnet server vrf management
ip telnet server vrf

ip telnet source-interface
Set an interface’s IP address as the source address in outgoing packets for Telnet sessions.

S4810
Syntax

ip telnet source-interface interface
To return to the default setting, use the no ip telnet source-interface
[interface] command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16383.

•

For a Port Channel, enter the keyword port-channel
then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

•

For a tunnel interface, enter the keyword tunnel.

Defaults

The IP address on the system that is closest to the Telnet address is used in the
outgoing packets.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

114

Control and Monitoring

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Increased number of VLANs on ExaScale to 4094 (was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command

telnet — telnet to another device.

ip telnet vrf
Configures a TELNET client to use a specific VRF.

S4810
Syntax

ip telnet [vrf vrf-name]
To undo the TELENT client configuration, use the ip telnet [vrf vrf-name]
command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
specify the VRF that is used by the TELENT client.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.
Version 9.4.
(0.0)

Control and Monitoring

Introduced on the S-Series and Z-Series.

115

Usage
Information

If you configure a TELNET client to use a specific VRF, then you need not explicitly
specify the same VRF during the TELNET client sessions corresponding to that VRF.

Example

FTOS(conf)#ip telnet vrf vrf1
FTOS(conf)#do telnet 10.10.10.2
FTOS(conf)#no ip telnet vrf vrf1

ip tftp source-interface
Assign an interface’s IP address in outgoing packets for TFTP traffic.

S4810
Syntax

ip tftp source-interface interface
To return to the default setting, use the no ip tftp source-interface
interface command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16383.

•

For a Port Channel, enter the keyword port-channel
then a number. For the C-Series and S-Series, the range
is 1 to 128.

•

For the SONET interfaces, enter the keyword sonet then
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

The IP address on the system that is closest to the Telnet address is used in the
outgoing packets.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Verison
8.3.19.0

116

Introduced on the S4820T.

Control and Monitoring

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4820T.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Increased number of VLANs on ExaScale to 4094 (was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command

ip tftp vrf
Configures an TFTP client with a VRF that is used to connect to the TFTP server.

S4810
Syntax

ip tftp [vrf vrf-name]
To undo the TFTP client configuration, use the no ip tftp [vrf vrf-name]
command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
specify the VRF that is used by the TFTP client.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to make the TFTP clients VRF aware. The VRF name that you
specify is used by the TFTP client to reach the TFTP server. If no VRF is specified,
then the default VRF is used.

Related
Commands

ftp-server topdir — sets the directory to be used for incoming FTP connections to
the E-Series.

Control and Monitoring

117

ftp-server username — sets a username and password for incoming FTP
connections to the E-Series.

line
Enable and configure console and virtual terminal lines to the system. This command accesses LINE
mode, where you can set the access conditions for the designated line.

S4810
Syntax
Parameters

line {aux 0 |console 0 | vty number [end-number]}
aux 0

Enter the keyword aux 0 to configure the auxiliary terminal
connection.

console 0

Enter the keyword console 0 to configure the console
port. The console option for the S-Series is <0-0>.

vty number

Enter the keyword vty then a number from 0 to 9 to
configure a virtual terminal line for Telnet sessions. The
system supports 10 Telnet sessions.

end-number

(OPTIONAL) Enter a number from 1 to 9 as the last virtual
terminal line to configure. You can configure multiple lines at
one time.

Defaults

Not configured

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

118

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Control and Monitoring

E-Series

Original command

Usage
Information

You cannot delete a terminal connection.

Related
Commands

access-class — restricts the incoming connections to a particular IP address in an
IP access control list (ACL).
password — specifies a password for users on terminal lines.

motd-banner
Enable a message of the day (MOTD) banner to appear when you log in to the system.

S4810
Syntax

motd-banner
To disable the MOTD banner, use the no motd-banner command.

Defaults

Enabled on all lines.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command

119

ping
Test connectivity between the system and another device by sending echo requests and waiting for
replies.

S4810
Syntax

Parameters

ping [host | ip-address | ipv6-address] [count {number |
continuous}] [datagram-size] [timeout] [source (ip src-ipv4address) | interface] [tos] [df-bit (y|n)] [validate-reply(y|
n)] [outgoing-interface] [pattern pattern] [sweep-min-size]
[sweep-max-size] [sweep-interval] [ointerface (ip src-ipv4address) | interface]
host

(OPTIONAL) Enter the host name of the devices to which
you are testing connectivity.

ip-address

(OPTIONAL) Enter the IPv4 address of the device to which
you are testing connectivity. The address must be in the
dotted decimal format.

ipv6-address

(OPTIONAL) Enter the IPv6 address, in the x:x:x:x::x format,
to which you are testing connectivity.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

count

Enter the number of echo packets to be sent. The default is
5.
•
•

datagram size

Enter the ICMP datagram size. The range is from 36 to 15360
bytes. The default is 100.

timeout

Enter the interval to wait for an echo reply before timing out.
The range is from 0 to 3600 seconds. The default is 2
seconds.

source

Enter the IPv4 or IPv6 source ip address or the source
interface. For IPv6 addresses, you may enter global
addresses only. Enter the IP address in A.B.C.D format.
•
•
•
•
•

120

number: from 1 to 2147483647
continuous: transmit echo request continuously

For a Port Channel interface, enter the keyword portchannel then a number: The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.
For a Tunnel interface, enter the keyword tunnel then a
number from 1 to 16383.
For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Control and Monitoring

tos

(IPv4 only) Enter the type of service required. The range is
from 0 to 255. The default is 0.

df-bit

(IPv4 only) Enter Y or N for the “don't fragment” bit in IPv4
header.
•

N: Do not set the “don't fragment” bit.

•

Y: Do set “don't fragment” bit

Default is No.
validate-reply

(IPv4 only) Enter Y or N for reply validation.
•

N: Do not validate reply data.

•

Y: Do validate reply data.

Default is No.
outgoinginterface

(IPv6 link-local address) Enter the outgoing interface for ping
packets to a destination link-local address.

pattern pattern

(IPv4 only) Enter the IPv4 data pattern. Range: 0-FFFF.
Default: 0xABCD.

sweep-minsize

Enter the minimum size of datagram in sweep range. The
range is from 52 to 15359 bytes.

sweep-maxsize

Enter the maximum size of datagram in sweep range. The
range is from 53 to 15359 bytes.

sweep-interval

Enter the incremental value for sweep size. The range is from
1 to 15308 seconds.

interface

(IPv4 only) Enter the outgoing interface for multicast packets.
Enter the IP address in A.B.C.D format.
•

For a Port Channel, enter the keyword port-channel
then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

121

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.
Added support for the outgoing-interface option for
link-local IPv6 addressing on the S4820T.

Usage
Information

Version
8.3.12.0

Added support for the outgoing-interface option for
link-local IPv6 addressing on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on the ExaScale.

Version 8.4.1.0

IPv6 pinging available on management interface.

Version 8.3.1.0

Introduced extended ping options.

Version 8.2.1.0

Introduced on the E-Series ExaScale (IPv6).

Version 8.1.1.0

Introduced on the E-Series ExaScale (IPv4).

Version 7.9.1.0

Introduced VRF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for IPv6 address on the E-Series.

When you enter the ping command without specifying an IP/IPv6 address
(Extended Ping), you are prompted for a target IP/IPv6 address, a repeat count, a
datagram size (up to 1500 bytes), a timeout (in seconds), and for Extended
Commands. For information on the ICMP message codes that return from a ping
command, refer to ICMP Message Types.
The following table provides descriptions for the ping command status response
symbols displayed in the output.

Example (IPv4)

122

Symbol

Description

!

Each exclamation point indicates receipt of a reply.

.

Each period indicates the network server timed out while
waiting for a reply.

U

A destination unreachable error PDU was received.

Q

Source quench (destination too busy).

M

Could not fragment.

?

Unknown packet type.

&

Packet lifetime exceeded.

Dell#ping 172.31.1.255

Control and Monitoring

Type Ctrl-C to abort.
Sending 5, 100-byte ICMP Echos to 172.31.1.255, timeout is 2
seconds:
Reply to request 1 from 172.31.1.208 0 ms
Reply to request 1 from 172.31.1.216 0 ms
Reply to request 1 from 172.31.1.205 16 ms
::
Reply to request 5 from 172.31.1.209 0 ms
Reply to request 5 from 172.31.1.66 0 ms
Reply to request 5 from 172.31.1.87 0 ms
Dell#
Example (IPv6)

Dell#ping 100::1
Type Ctrl-C to abort.
Sending 5, 100-byte ICMP Echos to 100::1, timeout is 2 seconds:
!!!!!
Success rate is 100.0 percent (5/5), round-trip min/avg/max =
0/0/0 (ms)
Dell#

reload
Reboot Dell Networking Operating System (OS).

S4810
Syntax
Parameters

reload [conditional nvram-cfg-change]
conditional
nvram-cfgchange

Reload if the condition is true. A configuration change to the
nvram requires a switch reload. To reload the switch, select
nvram-cfg-change.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version 9.1(0.0)

Added ‘conditional’ parameter.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

123

Usage
Information

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

If there is a change in the configuration, FTOS prompts you to save the new
configuration. Or you can save your running configuration with the copy
running-config command. Use the conditional parameter if any configuration
changes made to the nvram, such as stack-group and fanout configurations, must
be saved.

send
Send messages to one or all terminal line users.

S4810
Syntax
Parameters

send [*] | [line ] | [console] | [vty]
*

Enter the asterisk character * to send a message to all tty
lines.

line

Send a message to a specific line. The range is from 0 to 11.

console

Enter the keyword console to send a message to the
primary terminal line.

vty

Enter the keyword vty to send a message to the virtual
terminal.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

124

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Control and Monitoring

Usage
Information

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

Messages can contain an unlimited number of lines; however, each line is limited
to 255 characters. To move to the next line, use . To send the message use
CTR-Z; to abort a message, use CTR-C.

service timestamps
To debug and log messages, add time stamps. This command adds either the uptime or the current time
and date.

S4810
Syntax

service timestamps [debug | log] [datetime [localtime] [msec]
[show-timezone] | uptime]
To disable timestamping, use the no service timestamps [debug | log]
command.

Parameters

debug

(OPTIONAL) Enter the keyword debug to add timestamps to
debug messages.

log

(OPTIONAL) Enter the keyword log to add timestamps to
log messages with severity from 0 to 6.

datetime

(OPTIONAL) Enter the keyword datetime to have the
current time and date added to the message.

localtime

(OPTIONAL) Enter the keyword localtime to include the
localtime in the timestamp.

msec

(OPTIONAL) Enter the keyword msec to include milliseconds
in the timestamp.

showtimezone

(OPTIONAL) Enter the keyword show-timezone to include
the time zone information in the timestamp.

uptime

(OPTIONAL) Enter the keyword uptime to have the
timestamp based on time elapsed since system reboot.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Control and Monitoring

125

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

If you do not specify parameters and enter service timestamps, it appears as service
timestamps debug uptime in the running-configuration.
To view the current options set for the service timestamps command, use the
show running-config command.

show alarms
View alarms currently active in the system.

S4810
Syntax
Parameters

show alarms [threshold]
threshold

(OPTIONAL) Enter the keyword threshold to display the
temperature thresholds in Celcuis for each level.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

126

Control and Monitoring

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Dell# show alarms
-- Minor Alarms -Alarm Type Duration
---------------------------------------------RPM 0 PEM A failed or rmvd 7 hr, 37 min
SFM 0 PEM A failed or rmvd 7 hr, 37 min
SFM 1 PEM A failed or rmvd 7 hr, 37 min
SFM 2 PEM A failed or rmvd 7 hr, 37 min
SFM 3 PEM A failed or rmvd 7 hr, 37 min
SFM 4 PEM A failed or rmvd 7 hr, 37 min
SFM 5 PEM A failed or rmvd 7 hr, 37 min
SFM 6 PEM A failed or rmvd 7 hr, 37 min
SFM 7 PEM A failed or rmvd 7 hr, 36 min
stack-unit 1 PEM A failed or rmvd 7 hr, 36 min
stack-unit 4 PEM A failed or rmvd 7 hr, 36 min
only 8 SFMs in chassis 7 hr, 35 min
-- Major Alarms -Alarm Type Duration
---------------------------------------------No major alarms
Dell#

show cam-acl-vlan
Display the block sizes allocated for the VLAN CAM ACL.

S4810
Syntax

show cam-acl-vlan

Command
Modes

EXEC

Control and Monitoring

127

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on S4810.

Version
8.3.19.0

Introduced on the S4820T.

show command-history
Display a buffered log of all commands all users enter along with a time stamp.

S4810
Syntax

show command-history

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

Usage
Information

One trace log message is generated for each command. No password information
is saved to this file. A command-history trace log is saved to a file after an RPM
failover. Dell Networking TAC analyzes this file to help identify the root cause of an
RPM failover.

Example

Dell#show command-history
[11/20 15:47:22]: CMD-(CLI):[service password-encryption]by
default from console

128

Control and Monitoring

[11/20 15:47:22]: CMD-(CLI):[service password-encryption
hostname Force10]by
default from console
- Repeated 3 times.
[11/20 15:47:23]: CMD-(CLI):[service timestamps log
datetime]by default from
console
[11/20 15:47:23]: CMD-(CLI):[hostname Force10]by default from
console
[11/20 15:47:23]: CMD-(CLI):[enable password 7 ******]by
default from console
[11/20 15:47:23]: CMD-(CLI):[username admin password 7
******]by default from
console
[11/20 15:47:23]: CMD-(CLI):[enable restricted 7 ******]by
default from console
[11/20 15:47:23]: CMD-(CLI):[protocol spanning-tree rstp]by
default from console
[11/20 15:47:23]: CMD-(CLI):[protocol spanning-tree pvst]by
default from console
[11/20 15:47:23]: CMD-(CLI):[no disable]by default from console
[11/20 15:47:23]: CMD-(CLI):[interface gigabitethernet 0/1]by
default from console
[11/20 15:47:23]: CMD-(CLI):[ip address 1.1.1.1 /24]by default
from console
[11/20 15:47:23]: CMD-(CLI):[ip access-group abc in]by default
from console
[11/20 15:47:23]: CMD-(CLI):[no shutdown]by default from
console
[11/20 15:47:23]: CMD-(CLI):[interface gigabitethernet 0/2]by
default from console
[11/20 15:47:23]: CMD-(CLI):[no ip address]by default from
console
[11/20 15:47:23]: CMD-(CLI):[shutdown]by default from console
[11/20 15:47:23]: CMD-(CLI):[interface gigabitethernet 0/3]by
default from console
[11/20 15:47:23]: CMD-(CLI):[ip address 5.5.5.1 /24]by default
from console
[11/20 15:47:23]: CMD-(CLI):[no shutdown]by default from
console
[11/20 15:47:23]: CMD-(CLI):[interface gigabitethernet 0/4]by
default from console
[11/20 15:47:23]: CMD-(CLI):[no ip address]by default from
console
[11/20 15:47:23]: CMD-(CLI):[shutdown]by default from console
[11/20 15:47:23]: CMD-(CLI):[interface gigabitethernet 0/5]by
default from console
[11/20 15:47:23]: CMD-(CLI):[no ip address]by default from
console
[11/20 15:47:23]: CMD-(CLI):[shutdown]by default from console
[11/20 21:17:35]: CMD-(CLI):[line console 0]by default from
console
[11/20 21:17:36]: CMD-(CLI):[exec-timeout 0]by default from
console
[11/20 21:17:36]: CMD-(CLI):[exit]by default from console
[11/20 21:19:25]: CMD-(CLI):[show command-history]by default
from console
Dell#

Control and Monitoring

129

show command-tree
Display the entire CLI command tree, and optionally, display the utilization count for each command and
its options.

S4810
Syntax
Parameters

Defaults
Command
Modes
Command
History

show command-tree [count | no]
count

Display the command tree with a usage counter for each
command.

no

Display all of the commands that may be preceded by the
keyword no, which is the keyword used to remove a
command from the running-configuration.

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.2.1.0

Introduced.

Usage
Information

Reload the system to reset the command-tree counters.

Example

Dell#show command-tree count
!
Enable privilege mode:
enable command usage:3
<0-15> option usage: 0
exit

command usage:1

show
command-tree command usage:9
count option usage: 3
show version command usage:1

130

Control and Monitoring

!
Global configuration mode:
aaa authentication enable command usage:1
WORD
option usage: 1
default option usage: 0
enable option usage: 0
line
option usage: 0
none
option usage: 0
radius option usage: 1
tacacs+ option usage: 0

show cpu-traffic-stats
View the CPU traffic statistics.

S4810
Syntax
Parameters

show cpu-traffic-stats [port number | all | cp ]
port number

(OPTIONAL) Enter the port number to display traffic statistics
on that port only. The range is from 1 to 1568.

all

(OPTIONAL) Enter the keyword all to display traffic
statistics on all the interfaces receiving traffic, sorted based
on the traffic.

cp

(OPTIONAL) Enter the keyword cp to display traffic statistics
on the specified CPU.

Defaults

all

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the S-Series.

131

Usage
Information

Version 7.5.1.0

Introduced on the C-Series

Version 6.2.1.1

Introduced on the E-Series.

Traffic statistics are sorted on a per-interface basis; the interface receiving the most
traffic is displayed first. All CPU and port information is displayed unless a specific
port or CPU is specified. Traffic information is displayed for router ports only; not
for management interfaces. The traffic statistics are collected only after the debug
cpu-traffic-stats command is executed; not from the system bootup.
NOTE: After debugging is complete, use the no debug cpu-trafficstats command to shut off traffic statistics collection.

Example

Dell#show cpu-traffic-stats
Processor : CP
-------------Received 100% traffic on GigabitEthernet 8/2 Total packets:100
LLC:0, SNAP:0, IP:100, ARP:0, other:0
Unicast:100, Multicast:0, Broadcast:0
Processor : RP1
--------------Received 62% traffic on GigabitEthernet 8/2 Total packets:500
LLC:0, SNAP:0, IP:500, ARP:0, other:0
Unicast:500, Multicast:0, Broadcast:0
Received 37% traffic on GigabitEthernet 8/1 Total packets:300
LLC:0, SNAP:0, IP:300, ARP:0, other:0
Unicast:300, Multicast:0, Broadcast:0
Processor : RP2
--------------No CPU traffic statistics.
Dell#

show debugging
View a list of all enabled debugging processes.

S4810
Syntax

show debugging

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

132

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Control and Monitoring

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series

E-Series

Original command.

Dell#show debug
Generic IP:
IP packet debugging is on for
ManagementEthernet 0/0
Port-channel 1-2
Port-channel 5
GigabitEthernet 4/0-3,5-6,10-11,20
GigabitEthernet 5/0-1,5-6,10-11,15,17,19,21
ICMP packet debugging is on for
GigabitEthernet 5/0,2,4,6,8,10,12,14,16
Dell#

show environment
View S-Series and Z-Series system component status (for example, temperature or voltage).

S4810
Syntax
Parameters

Command
Modes

Control and Monitoring

show environment [all | fan | stack-unit unit-id | pem]
all

Enter the keyword all to view all components.

fan

Enter the keyword fan to view information on the fans. The
output of this command is chassis dependent.

stack-unit unitid

Enter the keyword stack-unit then the unit-id to display
information on a specific stack member. The range is from 0
to 1.

pem

Enter the keyword pem to view only information on power
entry modules.

•

EXEC

•

EXEC Privilege

133

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.8.1.0

The output of the show environment fan command for
the S-Series is changed to display fan speeds instead of
showing the fan status as up or down.

Usage
Information

The following example shows the output of the show environment fan
command.

Example (all)

Dell#show environment
-- Fan Status -Unit Bay
TrayStatus Fan0
Speed
Fan1
Speed
----------------------------------------------------------------------------------0
0
up
up
6971
up
7072
0
1
up
up
6971
up
7021
0
2
up
up
7021
up
7021
Speed in RPM
-- Power Supplies -Unit
Bay
Status
Type
FanStatus
FanSpeed(rpm)
-------------------------------------------------------------------------0
0
down
UNKNOWN down
0
0
1
up
AC
up
6504
-- Unit Environment Status -Unit Status
Temp
Voltage
TempStatus
-------------------------------------------------------------------------* 0
online
36C
ok
1
* Management Unit
-- Thermal Sensor Readings (deg C) -Unit Sensor0 Sensor1 Sensor2 Sensor3 Sensor4 Sensor5
Sensor6
-------------------------------------------------------------------0
40
36
37
37
31
31
46
Dell#show environment fan

134

Control and Monitoring

-- Fan Status -Unit Bay
TrayStatus Fan0
Speed
Fan1
Speed
----------------------------------------------------------------------------------0
0
up
up
7021
up
7021
0
1
up
up
6971
up
7072
0
2
up
up
7021
up
6971
Speed in RPM
Dell#show environment pem
-- Power Supplies -Unit
Bay
Status
Type
FanStatus
FanSpeed(rpm)
-------------------------------------------------------------------------0
0
down
UNKNOWN
down
0
0
1
up
AC
up
6504
Dell#show environment thermal-sensor
--

Thermal Sensor Readings (deg C)

--

Unit Sensor0 Sensor1 Sensor2 Sensor3 Sensor4 Sensor5
Sensor6
---------------------------------------------------------------------------------0
39
36
37
37
31
31
46

show inventory
Display the S-Series or Z-Series switch type, components (including media), and Dell Networking
Operating System (OS), including hardware identification numbers and configured protocols.

S4810
Syntax
Parameters

show inventory [media slot]
media slot

(OPTIONAL) Enter the keyword media then the stack ID of
the stack member for which you want to display pluggable
media inventory.
NOTE: This parameter is available but not supported in
Dell Networking Operating System version 8.3.11.4.
Because stacking is not supported, if you use this
parameter, the output displays “Media not present or
accessible” (refer to the Usage Information section).

Defaults

Control and Monitoring

none

135

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.4

Output expanded to include Piece Part ID (PPID) and eSR4
optics.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced this version of the command for S-Series. SSeries output differs from E-Series.

Usage
Information

If there are no fiber ports in the unit, just the header under show inventory media
displays. If there are fiber ports but no optics inserted, the output displays Media
not present or accessible.

Example
(S6000)

Dell#show inventory
System Type
System Mode
Software Version

: S6000
: 1.0
: 9-4(0-168)

Unit Type
Serial Number Part Number
Rev
Piece Part ID
Rev Svc Tag Exprs Svc Code
-------------------------------------------------------------------------------------------------------------------* 0 S6000-01-FE-32T
NA
08YWFG
A00
CN-08YWFG-28298-39Q-0015 A00 24N1VS1 463
414 838 5
0 S6000-PWR-AC
NA
0T9FNW
A00
CN-0T9FNW-28298-39Q-0005 A00 NA
NA
0 S6000-FAN
NA
0MGDH8
A00
CN-0MGDH8-28298-39Q-0009 A00 NA
NA
0 S6000-FAN
NA
0MGDH8
A00
CN-0MGDH8-28298-39Q-0007 A00 NA
NA
0 S6000-FAN
NA
0MGDH8
A00
CN-0MGDH8-28298-39Q-0008 A00 NA
NA
* - Management Unit
Software Protocol Configured
-------------------------------------------------------------LLDP
Example

136

Dell#show inventory media
Slot
Port
Type
Number
F10Qualified

Media

Serial

Control and Monitoring

----------------------------------------------------------------------------0
0
QSFP
40GBASE-CR4-1M
APF11200012UQQ
Yes
0
1
QSFP
40GBASE-CR4-1M
APF11200012UQQ
Yes
0
2
QSFP
40GBASE-CR4-1M
APF11200012UQQ
Yes
0
3
QSFP
40GBASE-CR4-1M
APF11200012UQQ
Yes
0
4
QSFP
40GBASE-CR4-1M
APF11200012UR1
Yes
0
5
QSFP
40GBASE-CR4-1M
APF11200012UR1
Yes
0
6
QSFP
40GBASE-CR4-1M
APF11200012UR1
Yes
0
7
QSFP
40GBASE-CR4-1M
APF11200012UR1
Yes
0
8
QSFP
40GBASE-CR4-1M
APF12300017GEY
Yes
0
9
QSFP
40GBASE-CR4-1M
APF12300017GEY
Yes
0
10
QSFP
40GBASE-CR4-1M
APF12300017GEY
Yes
Related
Commands

•

show interfaces — displays the interface configuration.

•

show interfaces transceiver — displays the physical status and operational status
of an installed transceiver. The output also displays the transceiver’s serial
number.

show memory
View current memory usage on the switch.

S4810
Syntax
Parameters

show memory [stack-unit id]
stack-unit id

(OPTIONAL) Enter the keyword stack-unit then the stack
unit ID of the S-Series stack member to display memory
information on the designated stack member. The unit ID
range from 0 to 11.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

137

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced this version of the command for the S-Series.

Usage
Information

The output for show memory displays the memory usage of LP part (sysdlp) of the
system. The sysdlp is an aggregate task that handles all the tasks running on the SSeries’ CPU.

Example

Dell#show memory stack-unit 0
Statistics On Unit 0 Processor
===========================
Total(b) Used(b) Free(b)
Lowest(b) Largest(b)
268435456 4010354 264425102 264375410 264425102

Example
(S4820T)

Dell#show memory stack 0
Statistics On Unit 0 Processor
===========================
Total(b)
Used(b) Free(b)
Lowest(b) Largest(b)
2147483648 4322398 2143161250 2142548382 2143161250
Dell#

show processes cpu
Display CPU usage information based on processes running.

S4810
Syntax
Parameters

show processes cpu [management-unit 1-99 [details] | stack-unit
id | summary | [stack-unit id]]
managementunit 1-99
[details]

(OPTIONAL) Display processes running in the control
processor. The 1-99 variable sets the number of tasks to
display in order of the highest CPU usage in the past five (5)
seconds. Add the keyword details to display all running
processes (except sysdlp). Refer to Example (managementunit).

stack-unit id

(OPTIONAL) Enter the keyword stack-unit then the stack
member ID.
As an option of the show processes cpu command, this
option displays CPU usage for the designated stack member.
Or, as an option of the command, this option limits the output

138

Control and Monitoring

of memory statistics to the designated stack member. The
unit ID range for the S4810 is from 0 to 11.
Refer to Example (stack-unit).
summary

Command
Modes
Command
History

•
•

(OPTIONAL) Enter the keywordsummary to view CPU
utilization of processes related to stack-unit processing.

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Added the keywords management-unit [details].

Version 7.6.1.0

Introduced on the S-Series.

Dell#show processes cpu ?
management-unit
Management Unit
stack-unit
Unit Number
summary
Summary of CPU utilization
|
Pipe through a command
Dell#show processes cpu summary
CPU utilization
5Sec
1Min
5Min
------------------------------------------UNIT0
3%
3%
1%
Dell#show processes cpu stack-unit 0
CPUID
5sec
1min
5min
-------------------------------------------------CORE 0
13.17
11.53
0.00
CORE 2
9.38
12.16
0.00
Overall
11.28
11.84
0.00
CPU utilization of sysdlp for five seconds: 2%/0%; one minute:
3%; five minutes: 1%
PID
Runtime(ms)
Invoked
uSecs
5Sec
1Min
5Min TTY
Process
0xbb773000
5950
595
10000
1.00%
2.25%
1.22%
0
tExcTask
0xbab2a000
4030
403
10000
1.00%
1.33%
0.73%
0
frrpagt

Control and Monitoring

139

0xbacf3000
0.00%
0.00%
0xbad0c000
0.00%
0.03%
0xbad24000
0.00%
0.00%
0xbad44000
0.00%
0.00%
0xbad58000
0.00%
0.00%
0xbad6e000
0.00%
0.00%
0xbad85000
0.00%
0.00%
0xbad9a000
0.00%
0.00%
0xbadb4000
0.00%
0.00%
0xbadc9000
0.00%
0.00%
0xbae22000
0.00%
0.02%

10

0

710

0

30

0

50

0

650

0

50

0

1190

0
0
0
0
0

0
30
10
60

1
F10StkMgr
71
lcMgr
3
dla
5
sysAdmTsk
65
timerMgr
5
PM
119
KP
0
evagt
3
ipc
1
sysReaper
6
tme

10000

0.00%

10000

0.00%

10000

0.00%

10000

0.00%

10000

0.00%

10000

0.00%

10000

0.00%

0

0.00%

10000

0.00%

10000

0.00%

10000

0.00%

Dell#show processes cpu management-unit ?
<1-99>
Number of tasks with highest CPU usage
last 5 seconds
details
Detail CPU utilization
|
Pipe through a command
Dell#show processes cpu management-unit details
CPUID
5sec
1min
5min
-------------------------------------------------CORE 0
11.73
10.79
12.82
CORE 2
11.73
12.05
14.31
Overall
11.73
11.42
13.56
PID
Runtime(ms)
Invoked
uSecs
1Min
5Min TTY
Process
Process: system
PID:
0 CPU usage: 5sec 1min - 13.37% 5min - 12.94% CoreID: 3
Process: sysdlp
PID: 428 CPU usage: 5sec - 2.56% 5min - 3.40% CoreID: 0
Process: sysd
PID: 410 CPU usage: 5sec - 0.96% 5min - 2.50% CoreID: 2
TID Runtime(ms)
Invoked
uSecs
1Min
5Min
TTY
Thread
56
20
2
10000
0.00%
0.00%
0
usm
55
10
1
10000
0.00%
0.00%
0
DHCLIENT
54
0
0
0
0.00%
0.00%
0
cms
53
60
6
10000
0.00%
0.00%
0
portmirr
52
0
0
0
0.00%
0.00%
0
cfgDataSync
51
0
0
0
0.00%
0.00%
0
sysCompMgr
50
50
5
10000
0.01%
0.00%
0
statMgr
49
1010
101
10000
0.07%
0.08%
0
sflCp
48
30
3
10000
0.00%
0.00%
0
snmp

140

5Sec
13.12%
3.78%

1min

1.59%

1min

5Sec
0.00%
0.00%
0.00%
0.00%
0.00%
0.00%
0.00%
0.05%
0.00%

Control and Monitoring

0.00%
0.00%

47
0.00%
46
0.00%

0
0

0

0

0

0.00%

0

0

0

0.00%

dpi_cmow
dpi_taskcmo

Dell#show processes cpu management-unit details ?
|
Pipe through a command
Dell#show processes cpu management-unit ?
<1-99>
Number of tasks with highest CPU usage
last 5 seconds
details
Detail CPU utilization
|
Pipe through a command
Dell#show processes cpu management-unit
CPUID
5sec
1min
5min
-------------------------------------------------CORE 0
9.54
9.92
12.82
CORE 2
10.74
11.56
14.31
Overall
10.14
10.74
13.56
PID
Runtime(ms)
1Min
5Min TTY
0x00000000
45040
13.20%
12.94%
0
0x000001ac
25750
2.48%
3.40%
0
0x0000019a
10650
1.16%
2.50%
0
0x000003a5
860
0.22%
0.28%
0
0x000001ad
520
0.30%
0.16%
0
0x000004ba
330
0.36%
0.09%
0
0x000000c9
1240
0.15%
0.44%
0
0x000000e0
530
0.12%
0.16%
0
0x00000132
420
0.10%
0.13%
0
0x0000028d
410
0.05%
0.12%
0
0x000000a9
200
0.03%
0.06%
0
0x00000253
100
0.02%
0.02%
0
0x00000206
140
0.02%
0.03%
0
0x00000012
1290
0.10%
0.12%
0
0x0000024d
400
0.08%
0.14%
0
Related
Commands

Invoked
Process
4504
system
2575
sysdlp
1065
sysd
86
clish
52
lacp
33
clish
124
nvmgr
53
igmp
42
vrrp
41
ovsdbsvr
20
arpm
10
otm
14
tnlmgr
129
mount_mfs
40
xstp

uSecs

5Sec

10000

13.12%

10000

2.78%

10000

0.60%

10000

0.40%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.20%

10000

0.00%

10000

0.00%

show hardware layer2 acl — displays Layer 2 ACL data for the selected stack
member and stack member port-pipe.
show hardware layer3 — displays Layer 3 ACL or QoS data for the selected stack
member and stack member port-pipe.

Control and Monitoring

141

show hardware stack-unit — displays the data plane or management plane input
and output statistics of the designated component of the designated stack
member.
show hardware system-flow — displays Layer 3 ACL or QoS data for the selected
stack member and stack member port-pipe.
show interfaces stack-unit — displays information on all interfaces on a specific SSeries stack member.
show processes memory (S-Series) — displays CPU usage information based on
processes running in an S-Series.

show processes ipc flow-control
Display the single window protocol queue (SWPQ) statistics.

S4810
Syntax
Parameters

show processes ipc flow-control [cp]
cp

(OPTIONAL) Enter the keyword cp to view the control
processor’s SWPQ statistics.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

142

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Control and Monitoring

Usage
Information

Version 7.5.1.0

Introduced on the C-Series and E-Series.

Field

Description

Source QID /Tx
Process

Source Service Identifier

Destination
QID/Rx Process

Destination Service Identifier

Cur Len

Current number of messages enqueued

High Mark

Highest number of packets in the queue at any time

#of to / Timeout

Timeout count

#of Retr /Retries

Number of retransmissions

#msg Sent/Msg
Sent/

Number of messages sent

#msg Ackd/Ack
Rcvd

Number of messages acknowledged

Retr /Available
Retra

Number of retries left

Total/ Max Retra

Number of retries allowed

Important Points:

Example (SSeries)

Control and Monitoring

•

The SWP provides flow control-based reliable communication between the
sending and receiving software tasks.

•

A sending task enqueues messages into the SWP queue3 for a receiving task
and waits for an acknowledgement.

•

If no response is received within a defined period of time, the SWP timeout
mechanism resubmits the message at the head of the FIFO queue.

•

After retrying a defined number of times, the SWP-2-NOMORETIMEOUT timeout
message is generated.

•

In the S-Series example, a retry (Retries) value of zero indicates that the SWP
mechanism reached the maximum number of retransmissions without an
acknowledgement.

Dell#show processes ipc flow-control ?
cp
Control Processor
|
Pipe through a command

143

show processes memory
Display memory usage information based on processes running in the S-Series or Z-Series system.

S4810
Syntax
Parameters

show processes memory {management-unit | stack unit {unit-id |
all | summary}}
managementunit

Enter the keyword management-unit for CPU memory
usage of the stack management unit.

stack unit unit
id

Enter the keyword stack unit then a stack unit ID of the
member unit for which to display memory usage on the
forwarding processor. The range is from 0 to 7.

all

Enter the keyword all for detailed memory usage on all
stack members.

summary

Enter the keyword summary for a brief summary of memory
availability and usage on all stack members.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

144

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Added the management-unit option.

Version 7.6.1.0

Introduced on the S-Series.

show processes
memory output
Field

Description

Total:

Total system memory available

Control and Monitoring

show processes
memory output
Field

Description

MaxUsed:

Total maximum memory used ever (history indicated with
time stamp)

CurrentUsed:

Total memory currently in use

CurrentFree:

Total system memory available

SharedUsed:

Total used shared memory

SharedFree:

Total free shared memory

PID

Process ID

Process

Process Name

ResSize

Actual resident size of the process in memory

Size

Process test, stack, and data size

Allocs

Total dynamic memory allocated

Frees

Total dynamic memory freed

Max

Maximum dynamic memory allocated

Current

Current dynamic memory in use

The output for the show process memory command displays the memory usage
statistics running on CP part (sysd) of the system. The sysd is an aggregate task that
handles all the tasks running on S-Series’ CP.
For the S-Series, the output of the show memory command and this command
differ based on which FTOS processes are counted.

Example

Control and Monitoring

•

In the show memory output, the memory size is equal to the size of the
application processes.

•

In the output of this command, the memory size is equal to the size of the
application processes plus the size of the system processes.

Dell#show processes memory stack-unit 0
Total: 268435456, MaxUsed: 2420244, CurrentUsed: 2420244,
CurrentFree:
266015212
TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding
tme
435406
397536
54434
37870
ipc
16652
0
16652
16652
timerMgr 33304
0
33304
33304
sysAdmTsk 33216
0
33216
33216
tFib4
1943960
0
1943960 1943960
aclAgent 90770
16564
74206
74206
ifagt_1
21318
16564
21318
4754
dsagt
6504
0
6504
6504
MacAgent 269778
0
269778 269778

145

Example
(managementunit)

Dell#show processes management-unit
Total
: 151937024,
MaxUsed : 111800320 [2/25/2008
4:18:53]
CurrentUsed: 98848768, CurrentFree: 53088256
SharedUsed : 13007848, SharedFree : 7963696
PID Process
ResSize
Size Allocs Frees
Max Current
337 KernLrnAgMv 117927936
0
0
0
0
0
331 vrrp
5189632 249856 50572
0 50572
50572
323 frrp
5206016 241664 369238
0 369238 369238
322 xstp
7430144 2928640 38328
0 38328
38328
321 pim
5267456 823296 62168
0 62168
62168
314 igmp
4960256 380928 18588 16564 18588
2024
313 mrtm
6742016 1130496 72758
0 72758
72758
308 l2mgr
5607424
552960 735214 380972 619266 354242
301 l2pm
5001216
167936 1429522 1176044 286606 253478
298 arpm
4628480 217088 71092 33128 71092 37964
294 ospf
5468160 503808 724204 662560 78208 61644
288 dsm
6778880 1159168 39490 16564 39490 22926
287 rtm
5713920 602112 442280 198768 376024 243512
284 rip
4562944 258048
528
0
528
528
281 lacp
4673536 266240 221060
0 221060 221060
277 ipm1
4837376 380928 83788
0 83788 83788
273 acl
5005312 512000 239564 149076 123616 90488
272 topoDPC
117927936
0
0
0
0
0
271 bcmNHOP
117927936
0
0
0
0
0
270 bcmDISC
117927936
0
0
0
0
0
269 bcmATP-RX
117927936
0
0
0
0
0
268 bcmATP-TX
117927936
0
0
0
0
0
267 bcmSTACK
117927936
0
0
0
0
0
266 bcmRX
117927936
0
0
0
0
0
265 bcmLINK.0
117927936
0
0
0
0
0
!----------- output truncated --------------!

show software ifm
Display interface management (IFM) data.

S4810
Syntax
Parameters

146

show software ifm {clients [summary] | ifagt number | ifcb
interface | stack-unit unit-ID | trace-flags}
clients

Enter the keyword clients to display IFM client
information.

summary

(OPTIONAL) Enter the keyword summary to display brief
information about IFM clients.

ifagt number

Enter the keyword ifagt then the number of an interface
agent to display software pipe and IPC statistics.

ifcb interface

Enter the keyword ifcb then one of the following interface
IDs then the slot/port information to display interface control
block information for that interface:

Control and Monitoring

stack-unit unitID

•

For a Port Channel interface, enter the keyword portchannel then a number: The range is from 1 to 128.

•

For a 10G Ethernet interface, enter the keyword
TenGigabitEthernet.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE.

Enter the keyword stack-unit then the stack member
number to display IFM information for that unit. The range is
from 0 to 1.
NOTE: This option is only available on the S-Series.

trace-flags

Enter the keyword trace-flags to display IFM information
for internal trace flags.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 7.6.1.0

Introduced for the C-Series and S-Series.

Dell#show software ifm clients summary
ClntType Inst svcMask subSvcMask tlvSvcMask
IPM
0 0x00000000 0x00000000 0x90ff71f3
RTM
0 0x00000000 0x00000000 0x800010ff
VRRP
0 0x00000000 0x00000000 0x803330f3
L2PM
0 0x00000000 0x00000000 0x87ff79ff
ACL
0 0x00000000 0x00000000 0x867f50c3
OSPF
0 0x00000dfa 0x00400098 0x00000000
PIM
0 0x000000f3 0x00030000 0x00000000
IGMP
0 0x000e027f 0x00000000 0x00000000
SNMP
0 0x00000000 0x00000000 0x800302c0
EVTTERM 0 0x00000000 0x00000000 0x800002c0
MRTM
0 0x00000000 0x00000200 0x81f7103f
DSM
0 0x00000000 0x00000000 0x80771003

tlvSubSvc swp
0x021e0e81 31
0x01930000 43
0x00400000 39
0x0e032200 45
0x000f0218 44
0x00000000 0
0x00000000 0
0x00000000 0
0x00000002 30
0x00000000 29
0x00000000 38
0x00000000 32

147

LACP
0 0x00000000 0x00000000 0x8000383f 0x00000000 35
DHCP
0 0x00000000 0x00000000 0x800000c2 0x0000c000 37
V6RAD
0 0x00000433 0x00030000 0x00000000 0x00000000 0
Unidentified Client0 0x006e0002 0x00000000 0x00000000
0x00000000 0
Dell#

show system
Display the status of all stack members or a specific member.

S4810
Syntax

Parameters

show system [brief | stack-unit unit-id | stack-ports {status |
topology}]
brief

(OPTIONAL) Enter the keyword brief to view an
abbreviated list of system information.

stack-unit unitid

(OPTIONAL) Enter the keywords stack-unit then the stack
member ID for information on that stack member. The unit
ID range for the S4810 is from 0 to 11.

stack-ports
status |
topology

(OPTIONAL) Enter the keywords stack-ports for
information about the status or topology of the S4810 stack
ports.
NOTE: This option applies to the S4810 or S4820T
system only.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

148

Version 9.4(0.0)

Added support for the disabled-ports parameter .

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.4

The brief parameter no longer displays the current Reload
mode. To display Reload mode, use the show reload-type

Control and Monitoring

command. Modified the show system stack-unit
command output to support Piece Part ID (PPID).
Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

The Boot Flash field displays the code level for boot code
2.8.1.1 and newer, while older boot codes display as
"Present".

Version 7.7.1.0

Added Master Priority field.

Version 7.6.1.0

Introduced on the S-Series.

Example (show
system stack
unit – disabled
ports)

Dell#show system stack-unit 0 disabled-ports
Disabled ports in stack-unit 0
Disabled
52
56
60

Example (show
system brief)

Dell#show system brief
Stack MAC : 90:b1:1c:f4:9b:79
Reload-Type
:
normal-reload]

normal-reload [Next boot :

-- Stack Info -Unit UnitType
Status
ReqTyp
CurTyp
Version
Ports
----------------------------------------------------------------------------------0
Management
online
S6000
S6000
9-4(0-168) 128
1
Member
not present
2
Member
not present
3
Member
not present
4
Member
not present
5
Member
not present
-- Power Supplies -Unit
Bay
Status
Type
FanStatus
FanSpeed(rpm)
-------------------------------------------------------------------------0
0
down
UNKNOWN down
0
0
1
up
AC
up
6600
-- Fan Status -Unit Bay
TrayStatus Fan0
Speed
Fan1
Speed
----------------------------------------------------------------------------------0
0
up
up
7072
up
7072
0
1
up
up
7021
up
7072
0
2
up
up
7021
up
7021
Speed in RPM
Example
(S6000)

Control and Monitoring

Dell#show system
Stack MAC : 90:b1:1c:f4:9b:79

149

Reload-Type
normal-reload]

:

normal-reload [Next boot :

-- Unit 0 -Unit Type
: Management Unit
Status
: online
Next Boot
: online
Required Type
: S6000 - 32-port TE/FG (SI)
Current Type
: S6000 - 32-port TE/FG (SI)
Master priority
: 0
Hardware Rev
: 4.0
Num Ports
: 128
Up Time
: 19 min, 19 sec
Dell Networking OS Version : 9-4(0-168)
Jumbo Capable
: yes
POE Capable
: no
FIPS Mode
: disabled
Burned In MAC
: 90:b1:1c:f4:9b:79
No Of MACs
: 3
-- Power Supplies -Unit
Bay
Status
Type
FanStatus
FanSpeed(rpm)
-------------------------------------------------------------------------0
0
down
UNKNOWN down
0
0
1
up
AC
up
6600
-- Fan Status -Unit Bay
TrayStatus Fan0
Speed
Fan1
Speed
----------------------------------------------------------------------------------0
0
up
up
7072
up
7021
0
1
up
up
7021
up
7123
0
2
up
up
7072
up
7021
Speed in RPM

Example
(S4810)

150

-- Unit 1 -Unit Type
Status

: Member Unit
: not present

-- Unit 2 -Unit Type
Status

: Member Unit
: not present

-- Unit 3 -Unit Type
Status

: Member Unit
: not present

-- Unit 4 -Unit Type
Status

: Member Unit
: not present

-- Unit 5 -Unit Type
Status

: Member Unit
: not present

Dell#show system stack-unit 0
-- Unit 0 -Unit Type
Status
Next Boot

: Management Unit
: online
: online

Control and Monitoring

Required Type
: S6000 - 32-port TE/FG (SI)
Current Type
: S6000 - 32-port TE/FG (SI)
Master priority
: 0
Hardware Rev
: 4.0
Num Ports
: 128
Up Time
: 21 min, 8 sec
Dell Networking OS Version : 9-4(0-168)
Jumbo Capable
: yes
POE Capable
: no
FIPS Mode
: disabled
Boot Flash
: 3.1.1.2
Boot Selector
: 3.1.0.2
Memory Size
: 3203911680 bytes
Temperature
: 36C
Voltage
: ok
Serial Number
: NA
Part Number
: 08YWFG
Rev A00
Vendor Id
: DL
Date Code
: 26092013
Country Code
: CN
Piece Part ID
: CN-08YWFG-28298-39Q-0015
PPID Revision
: A00
Service Tag
: 24N1VS1
Expr Svc Code
: 463 414 838 5
Auto Reboot
: disabled
Burned In MAC
: 90:b1:1c:f4:9b:79
No Of MACs
: 3
-- Power Supplies -Unit
Bay
Status
Type
FanStatus
FanSpeed(rpm)
-------------------------------------------------------------------------0
0
down
UNKNOWN
down
0
0
1
up
AC
up
6600
-- Fan Status -Unit Bay
TrayStatus Fan0
Speed
Fan1
Speed
----------------------------------------------------------------------------------0
0
up
up
6971
up
7021
0
1
up
up
7021
up
7021
0
2
up
up
7021
up
7021
Speed in RPM
Related
Commands

Control and Monitoring

•

show version – displays the Dell Networking OS version.

•

show hardware stack-unit – displays the data plane and management plane
input and output statistics of a particular stack member.

151

show tech-support
Display a collection of data from other show commands, necessary for Dell Networking technical support
to perform troubleshooting on S-Series or Z-Series switches.

S4810
Syntax
Parameters

show tech-support [stack-unit unit-id | page]
stack-unit

(OPTIONAL) Enter the keywords stack-unit to view CPU
memory usage for the stack member designated by unit-id.
The unit ID range for the S4810 is from 0 to 11.

page

(OPTIONAL) Enter the keyword page to view 24 lines of text
at a time. Press the SPACE BAR to view the next 24 lines.
Press the ENTER key to view the next line of text.
When using the pipe command ( | ), enter one of these
keywords to filter command output. For details about
filtering commands, refer to CLI Basics.

save

Enter the keyword save to save the command output.
flash: Save to local flash drive (flash://filename. A
maximum of 20 characters.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced save to the file options.

Version 7.6.1.0

Introduced on the S-Series.

Without the page or stack-unit option, the command output is continuous.
To interrupt the command output, use Ctrl-z.
The save option works with other filtering commands. This allows you to save
specific information of a show command. The save entry must always be the last
option. For example: Dell#show tech-support |grep regular-expression

152

Control and Monitoring

|except regular-expression | find regular-expression | save
flash://result
This display output is an accumulation of the same information that is displayed
when you execute one of the following show commands:

Example (SSeries)

•

show version

•

show clock

•

show running-config

•

show system stack-ports

•

show interfaces

•

show process memory

•

show process cpu

•

show file system

•

show system

•

show environment

•

show ip traffic

•

show ip management route

•

show ip route summary

•

show Inventory

•

show log summary

•

show command-history (last 20 commands)

•

show log

Dell#show tech-support ?
page
Page through output
stack-unit Unit Number
|
Pipe through a command

Dell#show tech-support stack-unit 1 ?
|
Pipe through a command

Dell#show tech-support stack-unit 1 | ?
except
Show only text that does not match a pattern
find
Search for the first occurrence of a pattern
grep
Show only text that matches a pattern
no-more
Don't paginate output
save
Save output to a file
Dell#show tech-support stack-unit 1 | save ?
flash:
Save to local file system (flash://filename (max 20
chars) )
Dell#show tech-support stack-unit 1 | save flash://LauraSave
Start saving show command report .......
Dell#
Dell#dir
Directory of flash:
1 drw- 16384
Jan 01 1980 00:00:00 +00:00 .
2 drwx 1536
Jul 13 1996 02:38:06 +00:00 ..
3 d--- 512
Nov 20 2007 15:46:44 +00:00 ADMIN_DIR

Control and Monitoring

153

Example (SSeries)

Dell#show tech-support stack-unit 0
----------------------------------- show version
------------------------------Dell Real Time Operating System Software
Dell Operating System Version: 2.0
Dell Application Software Version: 9-4(0-168)
Copyright (c) 1999-2014 by Dell Inc. All Rights Reserved.
Build Time: Sun Mar 23 22:17:49 PDT 2014
Build Path: /work.local/build/buildSpaces/build01/E9-4-0/SW/SRC
Dell Networking OS uptime is 32 minute(s)
System image file is "s6000"
System Type: S6000
Control Processor: Intel Centerton with 3203911680 bytes of
memory, core(s) 2.
16G bytes of boot flash memory.
1 32-port TE/FG (SI)
64 Ten GigabitEthernet/IEEE 802.3 interface(s)
16 Forty GigabitEthernet/IEEE 802.3 interface(s)
------------------------------------ show clock
------------------------------18:10:52.864 UTC Tue Mar 25 2014
----------------------------------- show running-config
-----------------------Current Configuration ...
! Version 9-4(0-168)
! Last configuration change at Tue Mar 25 17:43:06 2014 by
admin
!
boot system stack-unit 0 primary tftp://10.16.127.146/s6000
boot system stack-unit 0 secondary system: B:
boot system stack-unit 0 default system: A:
!
redundancy auto-synchronize full
redundancy disable-auto-reboot stack-unit
!
redundancy disable-auto-reboot stack-unit 0
redundancy disable-auto-reboot stack-unit 1
redundancy disable-auto-reboot stack-unit 2
redundancy disable-auto-reboot stack-unit 3
redundancy disable-auto-reboot stack-unit 4
redundancy disable-auto-reboot stack-unit 5
!
hardware watchdog stack-unit 0
hardware watchdog stack-unit 1
hardware watchdog stack-unit 2
hardware watchdog stack-unit 3
hardware watchdog stack-unit 4
hardware watchdog stack-unit 5
!

Related
Commands

154

•

show version — displays the Dell Networking OS version.

•

show system (S-Series and Z-Series) — displays the current switch status.

•

show environment (S-Series) — displays the system component status.

Control and Monitoring

•

show processes memory (S-Series) — displays the memory usage based on
running processes.

ssh-peer-stack-unit
Open an SSH connection to the peer stack-unit.

S4810
Syntax
Parameters

ssh-peer-stack-unit [-l username]
-l username

(OPTIONAL) Enter the keyword -l then your user name. The
default is the user name associated with the terminal.

Defaults

Not configured.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.11.1

Introduced on the S-Series.

telnet
Connect through Telnet to a server. The Telnet client and server in Dell Networking support IPv4 and
IPv6 connections. You can establish a Telnet session directly to the router or a connection can be
initiated from the router.
NOTE: The Telnet server and client are VRF-aware. Using the vrf parameter in this command, you
can make a Telnet server or client to listen to a specific VRF. This capability enables a Telent server
or client to look up the correct routing table and establish a connection.

Control and Monitoring

155

S4810
Syntax

Parameters

telnet {host | ip-address | ipv6-address prefix-length | vrf
vrf instance name } [/source-interface]
host

Enter the name of a server.

ip-address

Enter the IPv4 address in dotted decimal format of the
server.

ipv6-address
prefix-length

Enter the IPv6 address in the x:x:x:x::x format then the prefix
length in the /x format. The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

vrf instance

(Optional) Enter the keyword vrf then the VRF instance
name.

sourceinterface

(OPTIONAL) Enter the keywords /source-interface then
the interface information to include the source interface.
Enter the following keywords and slot/port or number
information:
•

For a Loopback interface, enter the keyword loopback
then a number from zero (0) to 16383.

•

For the Null interface, enter the keyword null then 0.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is from 1 to 128.

•

For Tunnel interface types, enter the keyword tunnel
then the slot/ port information. The range is from 1 to
16383.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

156

Control and Monitoring

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810. Added support for sourceinterface for link-local IPv6 addressing.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.2.1.0

Introduced on the E-Series ExaScale (IPv6). Increased the
number of VLANs on ExaScale to 4094 (was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale (IPv4).

Version 7.9.1.0

Introduced VRF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and added support for IPv6
address on the E-Series only.

Dell(conf)#do telnet vrf vrf1 10.10.10.2

telnet-peer-stack-unit
Open a Telnet connection to the peer stack unit.

S4810
Syntax

telnet-peer-stack-unit

Defaults

Not configured.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

157

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.11.1

Introduced on the S-Series.

terminal length
Configure the number of lines displayed on the terminal screen.

S4810
Syntax
Parameters

terminal length screen-length
screen-length

Enter a number of lines. Entering zero causes the terminal to
display without pausing. The range is from 0 to 512.

Defaults

24 lines

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

158

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Control and Monitoring

traceroute
View a packet’s path to a specific device.

S4810
Syntax
Parameters

traceroute {host | vrf instance | ip-address | ipv6-address}
host

Enter the name of device.

ip-address

Enter the IP address of the device in dotted decimal format.

ipv6-address

Enter the IPv6 address, in the x:x:x:x::x format, to which you
are testing connectivity.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Defaults

•

Timeout = 5 seconds

•

Probe count = 3

•

30 hops max

•

40 byte packet size

•

UDP port = 33434

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control and Monitoring

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.2.1.0

Introduced on the E-Series ExaScale with IPv6.

Version 8.1.1.0

Introduced on the E-Series ExaScale (IPv4 only).

Version 7.9.1.0

Introduced VRF.

Version 7.6.1.0

Added support for the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

159

Usage
Information

Version 7.4.1.0

Added support for IPv6 address on the E-Series.

E-Series

Original command.

When you enter the traceroute command without specifying an IP address
(Extended Traceroute), you are prompted for a target and source IP address,
timeout (in seconds) (default is 5), a probe count (default is 3), minimum TTL
(default is 1), maximum TTL (default is 30), and port number (default is 33434). To
keep the default setting for those parameters, press the ENTER key.
For IPv6, you are prompted for a minimum hop count (default is 1) and a maximum
hop count (default is 64).

Example (IPv4)

Dell#traceroute www.Dell Networking.com
Translating "www.Dell Networking.com"...domain server
(10.11.0.1) [OK]
Type Ctrl-C to abort.
----------------------------------------------Tracing the route to www.Dell Networking.com (10.11.84.18),
30 hops max, 40 byte packets
----------------------------------------------TTL Hostname
Probe1
Probe2
Probe3
1
10.11.199.190 001.000 ms 001.000 ms 002.000 ms
2
gwegress-sjc-02.Dell Networking.com (10.11.30.126) 005.000
ms 001.000 ms 001.000 ms
3
fw-sjc-01.Dell Networking.com (10.11.127.254) 000.000 ms
000.000 ms 000.000 ms
4
www.Dell Networking.com (10.11.84.18) 000.000 ms 000.000
ms 000.000 ms
FTOS#

Example (IPv6)

Dell#traceroute 100::1
Type Ctrl-C to abort.
----------------------------------------------Tracing the route to 100::1, 64 hops max, 60 byte packets
----------------------------------------------Hops Hostname Probe1
Probe2
Probe3
1
100::1 000.000 ms 000.000 ms 000.000 ms
FTOS#traceroute 3ffe:501:ffff:100:201:e8ff:fe00:4c8b
Type Ctrl-C to abort.
----------------------------------------------Tracing the route to 3ffe:501:ffff:100:201:e8ff:fe00:4c8b,
64 hops max, 60 byte packets
----------------------------------------------Hops Hostname Probe1
Probe2
Probe3
1 3ffe:501:ffff:100:201:e8ff:fe00:4c8b
000.000 ms 000.000 ms 000.000 ms
Dell#

160

Control and Monitoring

Related
Commands

ping — tests the connectivity to a device.

undebug all
Disable all debug operations on the system.

S4810
Syntax

undebug all

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command

virtual-ip
Configure a virtual IP address for the active management interface. You can configure virtual addresses
both for IPv4 and IPv6 independently.

S4810
Syntax

virtual-ip {ipv4-address | ipv6-address}
To return to the default, use the no virtual-ip {ipv4-address | ipv6address} command.

Control and Monitoring

161

Parameters

ipv4-address

Enter the IP address of the active management interface in a
dotted decimal format (A.B.C.D.).

ipv6-address

Enter an IPv6 address of the active management interface, in
the x:x:x:x::x format.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Usage
Information

You can configure both IPv4 and IPv6 virtual addresses simultaneously, but only
one of each. Each time this command is issued, it replaces the previously
configured address of the same family, IPv4 or IPv6. The no virtual-ip
command takes an address/prefix-length argument, so that the desired address
only is removed. If you enter the no virtual-ip command without any specified
address, then both IPv4 and IPv6 virtual addresses are removed.

Related
Commands

ip address — assigns a primary and secondary IP address to the interface.

162

Control and Monitoring

write
Copy the current configuration to either the startup-configuration file or the terminal.

S4810
Syntax
Parameters

write {memory | terminal}
memory

Enter the keyword memory to copy the current running
configuration to the startup configuration file. This
command is similar to the copy running-config
startup-config command.

terminal

Enter the keyword terminal to copy the current running
configuration to the terminal. This command is similar to the
show running-config command.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Usage
Information

The write memory command saves the running-configuration to the file labeled
startup-configuration. When using a LOCAL CONFIG FILE other than the startupconfig not named “startup-configuration” (for example, you used a specific file
during the boot config command), the running-config is not saved to that file;
use the copy command to save any running-configuration changes to that local
file.

Related
Commands

save — saves configurations created in BOOT_USER mode (BCLI).

Control and Monitoring

163

5

802.1ag
802.1ag is available on the Dell Networking S4810 platform.

ccm disable
Disable continuity check message (CCM).

S4810
Syntax

ccm disable
Enter no ccm disable to enable CCM.

Defaults

Disabled

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

ccm transmit-interval
Configure the transmit interval (mandatory). The interval specified applies to all maintenance endpoints
(MEPs) in the domain.

S4810
Syntax

164

ccm transmit-interval seconds

802.1ag

Parameters

seconds

Enter a transmit interval. The intervals are 1, 10, 60, and 600.

Defaults

10 seconds

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

clear ethernet cfm traceroute-cache
Delete all link trace cache entries.

S4810
Syntax

clear ethernet cfm traceroute-cache

Defaults

none

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

165

database hold-time
Set the amount of time that data from a missing MEP is kept in the continuity check database.

S4810
Syntax
Parameters

database hold-time minutes
minutes

Enter a hold-time. The range is from 100 to 65535 minutes.

Defaults

100 minutes

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

disable
Disable Ethernet CFM without stopping the CFM process.

S4810
Syntax

disable

Defaults

Disabled

Command
Modes

ETHERNET CFM

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

166

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

802.1ag

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

domain
Create the maintenance domain.

S4810
Syntax
Parameters

domain name md-level number
name

Name the maintenance domain.

md-level
number

Enter a maintenance domain level. The range is from 0 to 7.

Defaults

none

Command
Modes

ETHERNET CFM

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

ethernet cfm
Spawn the CFM process. No CFM configuration is allowed until the CFM process is spawned.

S4810
Syntax

ethernet cfm

Defaults

Disabled

802.1ag

167

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

ethernet cfm mep
Create an MEP.

S4810
Syntax
Parameters

ethernet cfm mep {up-mep | down-mep} domain {name | level} maname name mepid mep-id
[up-mep |
down-mep]

Specify whether the MEP is up or down facing.
•

Up-MEP: monitors the forwarding path internal to a
bridge on the customer or provider edge; on Dell
Networking systems, the internal forwarding path is
effectively the switch fabric and forwarding engine.

•

Down-MEP: monitors the forwarding path external to
another bridge.

domain [name |
level]

Enter the keyword domain and then enter the domain name
or domain level.

ma-name
name

Enter the keyword ma-name and then enter the name of the
maintenance association.

mepid mep-id

Enter an MEP ID. The range is from 1 to 8191.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

168

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

ethernet cfm mip
Create a maintenance intermediate point (MIP).

S4810
Syntax
Parameters

ethernet cfm mip domain {name | level} ma-name name
domain [name |
level]

Enter the keyword domain then the domain name or domain
level.

ma-name
name

Enter the keyword ma-name then the name of the
maintenance association.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

169

mep cross-check
Enable cross-checking for a MEP.

S4810
Syntax
Parameters

mep cross-check mep-id
mep-id

Enter the MEP ID. The range is from 1 to 8191.

Defaults

none

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

mep cross-check enable
Enable cross-checking.

S4810
Syntax
Parameters

mep cross-check enable {port | vlan-id}
port

Down service with no VLAN association.

vlan-id

Enter the VLAN to apply the cross-check.

Defaults

none

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

170

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

mep cross-check start-delay
Configure the amount of time the system waits for a remote MEP to come up before the cross-check
operation is started.

S4810
Syntax
Parameters

mep cross-check start-delay number
start-delay
number

Enter a start-delay in seconds. The range is from 3 to 100
seconds.

Defaults

3 ccms

Command
Modes

ETHERNET CFM

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

171

ping ethernet
Send a loopback message.

S4810
Syntax

Parameters

ping ethernet domain [name l level] ma-name ma-name remote
{dest-mep-id | mac-addr mac-address} source {src-mep-id | port
interface}
name | level

Enter the domain name or level.

ma-name maname

Enter the keyword ma-name and then enter the maintenance
association name.

dest-mep-id

Enter the MEP ID that is the target of the ping.

mac-addr
mac-address

Enter the keyword mac-addr and then enter the MAC
address that is the target of the ping.

src-mep-id

Enter the MEP ID that originates the ping.

port interface

Enter the keyword port and then enter the interface that
originates the ping.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

show ethernet cfm domain
Display maintenance domain information.

S4810
Syntax

172

show ethernet cfm domain [name | level | brief]

802.1ag

Parameters

name | level

Enter the maintenance domain name or level.

brief

Enter the keyword brief to display a summary output.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell# show ethernet cfm domain
Domain Name: customer
Level: 7
Total Service: 1
Services
MA-Name
VLAN
CC-Int
My_MA
200
10s
Domain Name: My_Domain
Level: 6
Total Service: 1
Services
MA-Name
VLAN
CC-Int
Your_MA
100
10s

X-CHK Status
enabled

X-CHK Status
enabled

show ethernet cfm maintenance-points local
Display configured MEPs and MIPs.

S4810
Syntax
Parameters

show ethernet cfm maintenance-points local [mep | mip]
mep

Enter the keyword mep to display configured MEPs.

mip

Enter the keyword mip to display configured MIPs.

Defaults

none

Command
Modes

EXEC Privilege

802.1ag

173

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell#show ethernet cfm maintenance-points local mip
----------------------------------------------------MPID Domain Name Level Type Port CCM-Status
MA Name
VLAN
Dir MAC
----------------------------------------------------0 service1
4
MIP Gi 0/5
Disabled
My_MA
3333
DOWN 00:01:e8:0b:c6:36
0 service1
Your_MA

4
3333

MIP
UP

Gi 0/5
Disabled
00:01:e8:0b:c6:36

show ethernet cfm maintenance-points remote
Display the MEP Database.

S4810
Syntax
Parameters

show ethernet cfm maintenance-points remote detail [active |
domain {level | name} | expired | waiting]
active

Enter the keyword active to display only the MEPs in active
state.

domain [name |
level]

Enter the keyword domain then the domain name or domain
level.

expired

Enter the keyword expired to view MEP entries that have
expired due to connectivity failure.

waiting

Enter the keyword waiting to display MEP entries waiting
for response.

Defaults

none

Command
Modes

EXEC Privilege

174

802.1ag

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell#show ethernet cfm maintenance-points remote detail
MAC Address: 00:01:e8:58:68:78
Domain Name: cfm0
MA Name: test0
Level: 7
VLAN: 10
MP ID: 900
Sender Chassis ID: Force10
MEP Interface status: Up
MEP Port status: Forwarding
Receive RDI: FALSE
MP Status: Active

show ethernet cfm mipbd
Display the MIP database.

S4810
Syntax

show ethernet cfm mipdb

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

175

show ethernet cfm statistics
Display MEP statistics.

S4810
Syntax
Parameters

show ethernet cfm statistics [domain {name | level} vlan-id
vlan-id mpid mpid]
domain

Enter the keyword domain to display statistics for a particular
domain.

name | level

Enter the domain name or level.

vlan-id vlan-id

Enter the keyword vlan-id then a VLAN ID.

mpid mpid

Enter the keyword mpid then a maintenance point ID.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell# show ethernet cfm statistics
Domain Name: Customer
Domain Level: 7
MA Name: My_MA
MPID: 300
CCMs:
Transmitted:
LTRs:
Unexpected Rcvd:
LBRs:
Received:
Received Bad MSDU:
Transmitted:

176

1503

RcvdSeqErrors: 0

0
0
0
0

Rcvd Out Of Order: 0

802.1ag

show ethernet cfm port-statistics
Display CFM statistics by port.

S4810
Syntax
Parameters

show ethernet cfm port-statistics [interface type slot/port]
interface type

Enter the keyword interface then the interface type.

slot/port

Enter the slot and port numbers for the port.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell#show ethernet cfm port-statistics interface
gigabitethernet 0/5
Port statistics for port: Gi 0/5
==================================
RX Statistics
=============
Total CFM Pkts 75394 CCM Pkts 75394
LBM Pkts 0 LTM Pkts 0
LBR Pkts 0 LTR Pkts 0
Bad CFM Pkts 0 CFM Pkts Discarded 0
CFM Pkts forwarded 102417
TX Statistics
=============
Total CFM Pkts 10303 CCM Pkts 0
LBM Pkts 0 LTM Pkts 3
LBR Pkts 0 LTR Pkts 0

177

show ethernet cfm traceroute-cache
Display the link trace cache.

S4810
Syntax

show ethernet cfm traceroute-cache

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

Dell#show ethernet cfm traceroute-cache
Traceroute to 00:01:e8:52:4a:f8 on Domain Customer2, Level 7,
MA name Test2 with VLAN
2
-----------------------------------------------------Hops
Host
IngressMAC
Ingr Action
Relay Action
Next Host
Egress MAC
Egress Action
FWD Status
-------------------------------------------------------4 00:00:00:01:e8:53:4a:f8 00:01:e8:52:4a:f8
IngOK
RlyHit
00:00:00:01:e8:52:4a:f8
Terminal MEP

service
Create maintenance association.

S4810
Syntax
Parameters

178

service name vlan vlan-id
name

Enter a maintenance association name.

vlan vlan-id

Enter the keyword vlan and then enter the VLAN ID. The
range is from 1 to 4094.

802.1ag

Defaults

none

Command
Modes

ECFM DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

traceroute cache hold-time
Set the amount of time a trace result is cached.

S4810
Syntax
Parameters

traceroute cache hold-time minutes
minutes

Enter a hold-time. The range is from 10 to 65535 minutes.

Defaults

100 minutes

Command
Modes

ETHERNET CFM

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

179

traceroute cache size
Set the size of the link trace cache.

S4810
Syntax
Parameters

traceroute cache size entries
entries

Enter the number of entries the link trace cache can hold.
The range is from 1 to 4095 entries.

Defaults

100 entries

Command
Modes

ETHERNET CFM

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

traceroute ethernet
Send a linktrace message to an MEP.

S4810
Syntax
Parameters

180

traceroute ethernet domain [name | level] ma-name remote {mepid mep-id | mac-addr mac-address}
domain name |
level

Enter the keyword domain then the domain name or level.

ma-name maname

Enter the keyword ma-name then the maintenance
association name.

mepid mep-id

Enter the MEP ID that is the trace target.

mac-addr
mac-address

Enter the MAC address of the trace target.

802.1ag

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1ag

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the S-Series.

181

6

802.1X

An authentication server must authenticate a client connected to an 802.1X switch port. Until the
authentication, only extensible authentication protocol over LAN (EAPOL) traffic is allowed through the
port to which a client is connected. After authentication is successful, normal traffic passes through the
port.
The Dell Networking operating software supports remote authentication dial-in service (RADIUS) and
active directory environments using 802.1X Port Authentication.

Important Points to Remember
Dell Networking operating software limits network access for certain users by using virtual local area
network (VLAN) assignments. 802.1X with VLAN assignment has these characteristics when configured on
the switch and the RADIUS server.
•

802.1X is supported on the S4810 platform.

•

On all platforms, if the primary RADIUS server becomes unresponsive, the authenticator begins using
a secondary RADIUS server, if configured.

•

If no VLAN is supplied by the RADIUS server or if you disable 802.1X authorization, the port configures
in its access VLAN after successful authentication.

•

If you enable 802.1X authorization but the VLAN information from the RADIUS server is not valid, the
port returns to the Unauthorized state and remains in the configured access VLAN. This safeguard
prevents ports from appearing unexpectedly in an inappropriate VLAN due to a configuration error.
Configuration errors create an entry in Syslog.

•

If you enable 802.1X authorization and all information from the RADIUS server is valid, the port is
placed in the specified VLAN after authentication.

•

If you enable port security on an 802.1X port with VLAN assignment, the port is placed in the RADIUS
server assigned VLAN.

•

If you disable 802.1X on the port, it returns to the configured access VLAN.

•

When the port is in the Force Authorized, Force Unauthorized, or Shutdown state, it is placed in the
configured access VLAN.

•

If an 802.1X port is authenticated and put in the RADIUS server assigned VLAN, any change to the port
access VLAN configuration does not take effect.

•

The 802.1X with VLAN assignment feature is not supported on trunk ports, dynamic ports, or with
dynamic-access port assignment through a VLAN membership.

182

802.1X

debug dot1x
Display 802.1X debugging information.

S4810
Syntax
Parameters

debug dot1x [all | auth-pae-fsm | backend-fsm | eapol-pdu]
[interface interface]
all

Enable all 802.1X debug messages.

auth-pae-fsm

Enable authentication PAE FSM debug messages.

backend-fsm

Enable backend FSM debug messages.

eapol-pdu

Enable the EAPOL frame trace and related debug messages.

interface
interface

Restricts the debugging information to an interface.

Defaults

Disabled

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Introduced on the C-Series and S-Series.

dot1x auth-fail-vlan
Configure an authentication failure VLAN for users and devices that fail 802.1X authentication.

S4810
Syntax

802.1X

dot1x auth-fail-vlan vlan-id [max-attempts number]

183

To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan
vlan-id [max-attempts number] command.
Parameters

vlan-id

Enter the VLAN Identifier. The range is from 1 to 4094.

max-attempts
number

(OPTIONAL) Enter the keywords max-attempts followed
number of attempts desired before authentication fails. The
range is from 1 to 5. The default is 3.

Defaults

3 attempts

Command
Modes

CONFIGURATION (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Introduced on the C-Series and S-Series.

If the host responds to 802.1X with an incorrect login/password, the login fails. The
switch attempts to authenticate again until the maximum attempts configured is
reached. If the authentication fails after all allowed attempts, the interface moves
to the authentication failed VLAN.
After the authentication VLAN is assigned, the port-state must be toggled to restart
authentication. Authentication occurs at the next reauthentication interval (dot1x
reauthentication).

Related
Commands

184

•

dot1x port-control — Enable port control on an interface

•

dot1x guest-vlan — Configure a guest VLAN for limited access users or for
devices that are not 802.1X capable.

•

show dot1x interface — Display the 802.1X configuration of an interface.

802.1X

dot1x auth-server
Configure the authentication server to RADIUS.

S4810
Syntax

dot1x auth-server radius

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x auth-type mab-only
To authenticate a device with MAC authentication bypass (MAB), only use the host MAC address.

S4810
Syntax

dot1x auth-type mab-only

Defaults

Disabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

185

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

The prerequisites for enabling MAB-only authentication on a port are:
•

Enable 802.1X authentication globally on the switch and on the port (the dot1x
authentication command).

•

Enable MAC authentication bypass on the port (the dot1x mac-auth-bypass
command).

In MAB-only authentication mode, a port authenticates using the host MAC
address even though 802.1xauthentication is enabled. If the MAB-only
authentication fails, the host is placed in the guest VLAN (if configured).
To disable MAB-only authentication on a port, enter the no dot1x auth-type
mab-only command.
Related
Commands

dot1x mac-auth-bypass — Enable MAC authentication bypass.

dot1x authentication (Configuration)
Enable dot1x globally. Enable dot1x both globally and at the interface level.

S4810
Syntax

dot1x authentication
To disable dot1x on a globally, use the no dot1x authentication command.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

186

802.1X

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

dot1x authentication (Interface) — Enable dot1x on an interface.

dot1x authentication (Interface)
Enable dot1x on an interface. Enable dot1x both globally and at the interface level.

S4810
Syntax

dot1x authentication
To disable dot1x on an interface, use the no dot1x authentication command.

Defaults

Disabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

187

Related
Commands

dot1x authentication (Configuration) — Enable dot1x globally.

dot1x guest-vlan
Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.

S4810
Syntax

dot1x guest-vlan vlan-id
To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.

Parameters

vlan-id

Enter the VLAN Identifier. The range is from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series, E-Series, and S-Series.

1X authentication is enabled when an interface is connected to the switch. If the
host fails to respond within a designated amount of time, the authenticator places
the port in the guest VLAN.
If a device does not respond within 30 seconds, it is assumed that the device is not
802.1X capable. Therefore, a guest VLAN is allocated to the interface and
authentication, for the device, occurs at the next reauthentication interval (dot1x
reauthentication).

188

802.1X

If the host fails authentication for the designated number of times, the
authenticator places the port in authentication failed VLAN (dot1x auth-failvlan).
NOTE: You can create the Layer 3 portion of a guest VLAN and authentication
fail VLANs regardless if the VLAN is assigned to an interface or not. After an
interface is assigned a guest VLAN (which has an IP address), routing through
the guest VLAN is the same as any other traffic. However, the interface may
join/leave a VLAN dynamically.
Related
Commands

•

dot1x auth-fail-vlan — Configure an authentication failure VLAN.

•

dot1x reauthentication — Enable periodic re-authentication of the client.

•

dot1x reauth-max —
Configure the maximum number of times to re-authenticate a port before it
becomes unauthorized

dot1x host-mode
Enable single-host or multi-host authentication.

S4810
Syntax
Parameters

dot1x host-mode {single-host | multi-host | multi-auth}
single-host

Enable single-host authentication.

multi-host

Enable multi-host authentication.

multi-auth

Enable multi-supplicant authentication.

Defaults

single-host

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

189

Usage
Information

Related
Commands

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Added the multi-auth option on the C-Series and S-Series.

Version 8.3.2.0

Added the single-host and multi-host options on the
C-Series, E-Series, and S-Series.

•

Single-host mode authenticates only one host per authenticator port and drops
all other traffic on the port.

•

Multi-host mode authenticates the first host to respond to an Identity Request
and then permits all other traffic on the port.

•

Multi-supplicant mode authenticates every device attempting to connect to the
network on the authenticator port.

show dot1x interface — Display the 802.1X configuration of an interface.

dot1x mac-auth-bypass
Enable MAC authentication bypass. If 802.1X times out because the host did not respond to the Identity
Request frame, Dell Networking OS attempts to authenticate the host based on its MAC address.

S4810
Syntax

dot1x mac-auth-bypass
To disable MAC authentication bypass on a port, use the no dot1x mac-authbypass command.

Defaults

Disabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

190

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

802.1X

Version 8.4.1.0
Usage
Information

Introduced on the C-Series and S-Series.

To disable MAC authentication bypass on a port, enter the no dot1x mac-authbypass command.

dot1x max-eap-req
Configure the maximum number of times an extensive authentication protocol (EAP) request is
transmitted before the session times out.

S4810
Syntax

dot1x max-eap-req number
To return to the default, use the no dot1x max-eap-req command.

Parameters

number

Enter the number of times an EAP request is transmitted
before a session time-out. The range is from 1 to 10. The
default is 2.

Defaults

2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

191

dot1x max-supplicants
Restrict the number of supplicants that can be authenticated and permitted to access the network
through the port. This configuration is only takes effect in Multi-auth mode.

S4810
Syntax
Parameters

dot1x max-supplicants number
number

Enter the number of supplicants that can be authenticated
on a single port in Multi-auth mode. The range is from 1 to
128. The default is 128.

Defaults

128 hosts can be authenticated on a single authenticator port.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Introduced on the C-Series and S-Series.

dot1x host-mode — Enable single-host or multi-host authentication

dot1x port-control
Enable port control on an interface.

S4810
Syntax

192

dot1x port-control {force-authorized | auto | forceunauthorized}

802.1X

Parameters

forceauthorized

Enter the keywords force-authorized to forcibly
authorize a port.

auto

Enter the keyword auto to authorize a port based on the
802.1X operation result.

forceunauthorized

Enter the keywords force-unauthorized to forcibly deauthorize a port.

Defaults

none

Command
Modes

Auto

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

The authenticator completes authentication only when port-control is set to
auto.

dot1x quiet-period
Set the number of seconds that the authenticator remains quiet after a failed authentication with a client.

S4810
Syntax

dot1x quiet-period seconds
To disable quiet time, use the no dot1x quiet-time command.

Parameters

802.1X

seconds

Enter the number of seconds. The range is from 1 to 65535.
The default is 60.

193

Defaults

60 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x reauthentication
Enable periodic reauthentication of the client.

S4810
Syntax

dot1x reauthentication [interval seconds]
To disable periodic reauthentication, use the no dot1x reauthentication
command.

Parameters

interval
seconds

(Optional) Enter the keyword interval then the interval
time, in seconds, after which reauthentication is initiated.
The range is from 1 to 31536000 (one year). The default is
3600 (1 hour).

Defaults

3600 seconds (1 hour)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

194

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x reauth-max
Configure the maximum number of times a port can re-authenticate before the port becomes
unauthorized.

S4810
Syntax

dot1x reauth-max number
To return to the default, use the no dot1x reauth-max command.

Parameters

number

Enter the permitted number of re-authentications. The range
is from 1 to 10. The default is 2.

Defaults

2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

195

Version 7.4.1.0

Introduced on the E-Series.

dot1x server-timeout
Configure the amount of time after which exchanges with the server time-out.

S4810
Syntax

dot1x server-timeout seconds
To return to the default, use the no dot1x server-timeout command.

Parameters

seconds

Enter a time-out value in seconds. The range is from 1 to
300, where 300 is implementation dependant. The default is
30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

196

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

When you configure the dot1x server-timeout value, take into account the
communication medium used to communicate with an authentication server and
the number of RADIUS servers configured. Ideally, the dot1x server-timeout
value (in seconds) is based on the configured RADIUS-server timeout and
retransmit values and calculated according to the following formula: dot1x
server-timeout seconds > (radius-server retransmit seconds + 1) * radius-server
timeout seconds.

802.1X

Where the default values are as follows: dot1x server-timeout (30 seconds),
radius-server retransmit (3 seconds), and radius-server timeout (5 seconds).
For example:
Dell(conf)#radius-server host 10.11.197.105 timeout 6
Dell(conf)#radius-server host 10.11.197.105 retransmit 4
Dell(conf)#interface gigabitethernet 2/23
Dell(conf-if-gi-2/23)#dot1x server-timeout 40

dot1x supplicant-timeout
Configure the amount of time after which exchanges with the supplicant time-out.

S4810
Syntax

dot1x supplicant-timeout seconds
To return to the default, use the no dot1x supplicant-timeout command.

Parameters

seconds

Enter a time-out value in seconds. The range is from 1 to
300, where 300 is implementation dependant. The default is
30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

802.1X

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

197

dot1x tx-period
Configure the intervals at which EAPOL PDUs the Authenticator PAE transmits.

S4810
Syntax

dot1x tx-period seconds
To return to the default, use the no dot1x tx-period command.

Parameters

seconds

Enter the interval time, in seconds, that EAPOL PDUs are
transmitted. The range is from 1 to 65535. The default is 30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

show dot1x cos-mapping interface
Display the CoS priority-mapping table the RADIUS server provides and applies to authenticated
supplicants on an 802.1X-enabled system.

S4810
Syntax
Parameters

198

show dot1x cos-mapping interface interface [mac-address macaddress]
interface

Enter one of the following keywords and slot/port or number
information:

802.1X

mac-address

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/port information.

•

For a Ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

(Optional) MAC address of an 802.1X-authenticated
supplicant.

Defaults

none

Command
Modes

•

EXEC

•

EXEC privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Enter a supplicant’s MAC address using the mac-address option to display CoS
mapping information only for the specified supplicant.
You can display the CoS mapping information applied to traffic from authenticated
supplicants on 802.1X-enabled ports that are in Single-Hot, Multi-Host, and MultiSupplicant authentication modes.

Example

Dell#show dot1x cos-mapping interface gigabitethernet 2/21
802.1p CoS re-map table on Gi 2/21:
---------------------------------Dot1p
Remapped Dot1p
0
7
1
6
2
5
3
4
4
3
5
2
6
1
7
0

802.1X

199

Dell#show dot1x cos-mapping int g 2/21 mac-address
00:00:01:00:07:00
802.1p CoS re-map table on Gi 2/21:
---------------------------------802.1p CoS re-map table for Supplicant: 00:00:01:00:07:00
Dot1
Remapped Dot1p
0
7
1
6
2
5
3
4
4
3
5
2
6
1
7
0

show dot1x interface
Display the 802.1X configuration of an interface.

S4810
Syntax
Parameters

show dot1x interface interface [mac-address mac-address]
interface

mac-address

Enter one of the following keywords and slot/port or number
information:
•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/port information.

•

For a Ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

(Optional) MAC address of a supplicant.

Defaults

none

Command
Modes

•

EXEC

•

EXEC privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

200

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

802.1X

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Added the mac-address option on the C-Series and SSeries.

Version 7.6.1.0

Introduced on the C-Series, E-Series, and S-Series.

Usage
Information

If you enable 802.1X multi-supplicant authentication on a port, additional 802.1X
configuration details (Port Authentication status, Untagged VLAN ID, Authentication
PAE state, and Backend state) are displayed for each supplicant, as shown in the
following example.

Example

Dell#show dot1x int Gi 2/32
802.1x information on Gi 2/32:
----------------------------Dot1x Status:
Enable
Port Control:
AUTO
Port Auth Status:
UNAUTHORIZED
Re-Authentication:
Disable
Untagged VLAN id:
None
Guest VLAN:
Enable
Guest VLAN id:
10
Auth-Fail VLAN:
Enable
Auth-Fail VLAN id:
11
Auth-Fail Max-Attempts: 3
Tx Period:
30 seconds
Quiet Period:
60 seconds
ReAuth Max:
2
Supplicant Timeout:
30 seconds
Server Timeout:
30 seconds
Re-Auth Interval:
3600 seconds
Max-EAP-Req:
2
Auth Type:
SINGLE_HOST
Auth PAE State:
Initialize
Backend State:
Initialize
Dell#

Example (macaddress)

Dell#show dot1x interface gig 2/21 mac-address
00:00:01:00:07:00
802.1x information on Gi 2/21:
----------------------------Dot1x Status:
Enable
Port Control:
AUTO
Re-Authentication:
Disable
Guest VLAN:
Disable
Guest VLAN id:
NONE
Auth-Fail VLAN:
Disable
Auth-Fail VLAN id:
NONE
Auth-Fail Max-Attempts: NONE
Mac-Auth-Bypass:
Enable
Mac-Auth-Bypass Only:
Disable
Tx Period:
5 seconds

802.1X

201

Quiet Period:
ReAuth Max:
Supplicant Timeout:
Server Timeout:
Re-Auth Interval:
Max-EAP-Req:
Host Mode:
Max-Supplicants:

60 seconds
1
30 seconds
30 seconds
60 seconds
2
MULTI_AUTH
128

Port status and State info for Supplicant: 00:00:01:00:07:00
Port Auth Status:
Untagged VLAN id:
Auth PAE State:
Backend State:
Dell#
Example
(Interface)

AUTHORIZED(MAC-AUTH-BYPASS)
4094
Authenticated
Idle

Dell#show dot1x interface g 0/21
802.1x information on Gi 0/21:
----------------------------Dot1x Status:
Enable
Port Control:
AUTO
Re-Authentication:
Disable
Guest VLAN:
Enable
Guest VLAN id:
100
Auth-Fail VLAN:
Disable
Auth-Fail VLAN id:
NONE
Auth-Fail Max-Attempts: NONE
Mac-Auth-Bypass:
Disable
Mac-Auth-Bypass Only:
Disable
Tx Period:
30 seconds
Quiet Period:
60 seconds
ReAuth Max:
3
Supplicant Timeout:
30 seconds
Server Timeout:
30 seconds
Re-Auth Interval:
60 seconds
Max-EAP-Req:
2
Host Mode:
MULTI_AUTH
Max-Supplicants:
128
Port status and State info for Supplicant: 00:00:00:00:00:10
Port Auth Status:
Untagged VLAN id:
Auth PAE State:
Backend State:

AUTHORIZED
400
Authenticated
Idle

Port status and State info for Supplicant: 00:00:00:00:00:11
192 | 802.1X
www.dell.com | s u p p o r t . d e l l.com
Port Auth Status:
AUTHORIZED
Untagged VLAN id:
300
Auth PAE State:
Authenticated
Backend State:
Idle
Port status and State info for Supplicant: 00:00:00:00:00:15
Port Auth Status:
Untagged VLAN id:
Auth PAE State:
Backend State:

202

AUTHORIZED(GUEST-VLAN)
100
Authenticated
Idle

802.1X

Access Control Lists (ACL)

7

Access control lists (ACLs) are supported by the Dell Networking operating software on the S4810
platform.
Dell Networking OS supports the following types of ACL, IP prefix list, and route maps:
•

Commands Common to all ACL Types

•

Common IP ACL Commands

•

Standard IP ACL Commands

•

Extended IP ACL Commands

•

Common MAC Access List Commands

•

Standard MAC ACL Commands

•

Extended MAC ACL Commands

•

IP Prefix List Commands

•

Route Map Commands

•

AS-Path Commands

•

IP Community List Commands
NOTE: For ACL commands that use the Trace function, refer to the Trace List Commands section in
the Security chapter.
NOTE: For IPv6 ACL commands, refer to IPv6 Access Control Lists (IPv6 ACLs).

Commands Common to all ACL Types
The following commands are available within each ACL mode and do not have mode-specific options.
Some commands in this chapter may use similar names, but require different options to support the
different ACL types (for example, the deny and permit commands).

remark
Enter a description for an ACL entry.

S4810
Syntax
Parameters

remark [remark-number] [description]
remarknumber

Enter the remark number. The range is from 0 to
4294967290.
NOTE: You can use the same sequence number for the
remark and an ACL rule.

Access Control Lists (ACL)

203

description

Enter a description of up to 80 characters.

Defaults

Not configured.

Command
Modes

•

CONFIGURATION-STANDARD-ACCESS-LIST

•

CONFIGURATION-EXTENDED-ACCESS-LIST

•

CONFIGURATION-MAC ACCESS LIST-STANDARD

•

CONFIGURATION-MAC ACCESS LIST-EXTENDED

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.4.1.0

Introduced on the E-Series.

The remark command is available in each ACL mode. You can configure up to
4294967290 remarks in a given ACL.
The following example shows the use of the remark command twice within
CONFIGURATION-STANDARD-ACCESS-LIST mode. The same sequence number
was used for the remark and for an associated ACL rule. The remark precedes the
rule in the running-config because it is assumed that the remark is for the rule with
the same sequence number, or the group of rules that follow the remark.

Example

Dell(config-std-nacl)#remark 10 Deny rest of the traffic
Dell(config-std-nacl)#remark 5 Permit traffic from XYZ Inc.
Dell(config-std-nacl)#show config
!
ip access-list standard test
remark 5 Permit traffic from XYZ Inc.
seq 5 permit 1.1.1.0/24
remark 10 Deny rest of the traffic
seq 10 Deny any
Dell(config-std-nacl)#

Related
Commands

show config — displays the current ACL configuration.

204

Access Control Lists (ACL)

show config
Display the current ACL configuration.

S4810
Syntax

show config

Command
Modes

•

CONFIGURATION-STANDARD-ACCESS-LIST

•

CONFIGURATION-EXTENDED-ACCESS-LIST

•

CONFIGURATION-MAC ACCESS LIST-STANDARD

•

CONFIGURATION-MAC ACCESS LIST-EXTENDED

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell(config-ext-nacl)#show conf
!
ip access-list extended patches
Dell(config-ext-nacl)#

Common IP ACL Commands
The following commands are available within both IP ACL modes (Standard and Extended) and do not
have mode-specific options. When an ACL is created without a rule and then is applied to an interface,
ACL behavior reflects an implicit permit.
The S4810 supports both Ingress and Egress IP ACLs.

Access Control Lists (ACL)

205

NOTE: Also refer to the Commands Common to all ACL Types section.

access-class
Apply a standard ACL to a terminal line.

S4810
Syntax

access-class access-list-name
To remove an ACL, use the no access-class access-list-name command.

Parameters

access-listname

Enter the name of a configured Standard ACL, up to 140
characters.

Defaults

Not configured.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increase the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

clear counters ip access-group
Erase all counters maintained for access lists.

S4810
Syntax

206

clear counters ip access-group [access-list-name]

Access Control Lists (ACL)

Parameters

access-listname

(OPTIONAL) Enter the name of a configured access-list, up
to 140 characters.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increase the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip access-group
Assign an IP access list (IP ACL) to an interface.

S4810
Syntax

ip access-group access-list-name {in | out} [implicit-permit]
[vlan vlan-id] [vrf vrf-name]
To delete an IP access-group configuration, use the no ip access-group
access-list-name {in | out} [implicit-permit] [vlan vlan-id]
[vrf vrf-name] command.

Parameters

access-listname

Enter the name of a configured access list, up to 140
characters.

in

Enter the keyword in to apply the ACL to incoming traffic.

out

Enter the keyword out to apply the ACL to outgoing traffic.

implicit-permit

(OPTIONAL) Enter the keyword implicit-permit to
change the default action of the ACL from implicit-deny to

Access Control Lists (ACL)

207

implicit-permit (that is, if the traffic does not match the filters
in the ACL, the traffic is permitted instead of dropped).
vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the ID numbers of
the VLANs. The range is from 1 to 4094 (you can use IDs
from 1 to 4094).

vrf vrf-name

(OPTIONAL) Enter the keyword vrf then the ID numbers of
the VRFs. The range is from 1 to 63 (you can use IDs from 1
to 63).
NOTE: When you specify a single VRF, use the name of
the VRF instead of the VRF ID number. Use the VRF ID
numbers only when you specify a range of VRFs.

Defaults

Not enabled.

Command
Modes

INTERFACE/VRF MODE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

You can assign one ACL (standard or extended ACL) to an interface.
NOTE: This command supports Loopback interfaces EE3 and EF series route
processor modules (RPMs). This command does not support Loopback
interfaces ED series RPMs, S-Series Loopback interfaces.
NOTE: If outbound(egress) IP acl is applied on switch port, filter will be applied
only for routed traffic egressing out of that port.

208

Access Control Lists (ACL)

Use the vrf attribute of this command to associate an access-list to a non-default
VRF. You can use this command at the interface context (physical/LAG) to apply
the access-list to a range of VRFs.
The VRF MODE is not available for the default and management VRFs.
Related
Commands

ip access-list standard — configures a standard ACL.
ip access-list extended — configures an extended ACL.

ip control-plane egress-filter
Enable egress Layer 3 ACL lookup for IPv4 CPU traffic.

S4810
Syntax

ip control-plane egress-filter

Defaults

Not enabled.

Command
Modes

EXEC Privilege

Command
History

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

show ip accounting access-list
Display the IP access-lists created on the switch and the sequence of filters.

S4810
Syntax
Parameters

show ip accounting {access-list access-list-name | cam_count}
interface interface [vrf vrf-name]
access-listname

Enter the name of the ACL to be displayed.

cam_count

List the count of the CAM rules for this ACL.

interface
interface

Enter the keyword interface then the one of the following
keywords and slot/port or number information:
•

•

Access Control Lists (ACL)

For a Port Channel interface, enter the keyword portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.
For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

209

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

in | out

Identify whether ACL is applied on the ingress or egress side.

vrf vrf-name

(Optional) Enter the keyword vrf and then the name of the
VRF to view the IP accounting information on either a default
or a non-default VRF.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

210

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for the 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced.

show ip
accounting
access-lists
Field

Description

“Extended IP...”

Displays the name of the IP ACL.

“seq 5...”

Displays the filter. If the keywords count or byte were
configured in the filter, the number of packets or bytes the
filter processes is displayed at the end of the line.

“order 4”

Displays the QoS order of priority for the ACL entry.

Dell#show ip accounting access FILTER1 interface gig 1/6
Extended IP access list FILTER1

Access Control Lists (ACL)

seq
seq
seq
seq
seq

5 deny ip any 191.1.0.0 /16 count (0x00 packets)
10 deny ip any 191.2.0.0 /16 order 4
15 deny ip any 191.3.0.0 /16
20 deny ip any 191.4.0.0 /16
25 deny ip any 191.5.0.0 /16

Dell#show ip accounting access-list L3-ACL vrf vrf3
!
Standard Ingress IP access list L3-ACL on vrf3
Total cam count 3
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
seq 15 permit 30.1.2.0/24
Dell#

show ip access-lists
Display all of the IP ACLs configured in the system, whether or not they are applied to an interface, and
the count of matches/mismatches against each ACL entry displayed.

S4810
Syntax
Parameters

show ip access-lists [access-list-name] [interface interface]
[in | out] [vrf vrf-name]
access-listname

Enter the name of a configured MAC ACL, up to 140
characters.

interface
interface

Enter the keyword interface followed by the one of the
following keywords and slot/port or number information:
•

For a VLAN interface, enter the keyword vlan followed
by the slot/port number.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/port
information.

•

For a Port Channel interface, enter the keyword portchannel followed by a number. For the C-Series and SSeries, the range is 1 to 128. For the E-Series, the range is
1 to 255 for TeraScale and 1 to 512 for ExaScale.

•

For a SONET interface, enter the keyword sonet
followed by the slot/ port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet followed by the slot/port
information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE followed by the slot/port information.

in | out

Identify whether ACL is applied on the ingress or egress side.

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
display the access-lists that are configured on either the
default or non-default VRFs.

Access Control Lists (ACL)

211

Command
Modes
Command
History

Example

EXEC Privilege

Version 9.4.
(0.0)

Added support for VRF.

Version 8.5.1.0

Added support for the 4-port 40G line cards on ExaScale.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dell#show ip access-lists L3-ACL vrf VRF2 in
Standard Ingress IP access list L3-ACL on VRF2
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24
Dell#show ip access-lists vrf VRF2 in
Standard Ingress IP access list L3-ACL
seq 5 permit 10.1.2.0/24
seq 10 permit 20.1.2.0/24

Standard IP ACL Commands
When you create an ACL without any rule and then apply it to an interface, the ACL behavior reflects an
implicit permit.
The S4810 supports both Ingress and Egress IP ACLs.
NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands
sections.

deny
To drop packets with a certain IP address, configure a filter.

S4810
Syntax

deny {source | any | host {ip-address}}
To remove this filter, you have two choices:

Parameters

212

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {source [mask] | any | host ip-address}
command.

source

Enter the IP address in dotted decimal format of the network
from which the packet was sent.

Access Control Lists (ACL)

any

Enter the keyword any to specify that all routes are subject
to the filter. You can enter any of the following keywords to
specify route types.
•
•
•
•
•

host ip-address

bytes — Enter the keyword count to count packets the
filter processes.
count — Enter the keyword bytesorder to count bytes
the filter processes.
dscp — Enter the keyword dcsp followed by the DCSP
value to match to the IP DCSCP values. The range is from
0 to 63.
fragments — Enter the keyword fragments to use
ACLs to control packet fragments.
order — Enter the keyword order to specify the QoS
order of priority for the ACL entry. The range is from 0 to
254 (0 is the highest priority and 254 is the lowest; lowerorder numbers have a higher priority). The default is, if
you do not use the keyword order, the ACLs have the
lowest order by default (255).

Enter the keyword host and then enter the IP address to
specify a host IP address only.

Defaults

Not configured.

Command
Modes

CONFIGURATION-STANDARD-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option.

Version 6.5.1.0

Expanded to include the optional QoS order priority for the
ACL entry.

Access Control Lists (ACL)

213

Usage
Information

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the Quality of Service chapter of the Dell Networking OS
Configuration Guide.
The software cannot count both packets and bytes, so when you enter the count
byte options, only bytes are incremented.

Related
Commands

ip access-list standard — configures a standard ACL.
permit — configures a permit filter.

ip access-list standard
Create a standard IP access list (IP ACL) to filter based on IP address.

S4810
Syntax

ip access-list standard access-list-name
To delete an access list, use the no ip access-list standard accesslist-name command.

Parameters

access-listname

Enter a string up to 140 characters long as the ACL name.

Defaults

All IP access lists contain an implicit “deny any,” that is, if no match occurs, the
packet is dropped.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

214

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Access Control Lists (ACL)

Usage
Information

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option.

Version 6.5.1.0

Expanded to include the optional QoS order priority for the
ACL entry.

Dell Networking OS supports one ingress and one egress IP ACL per interface.
Prior to Dell Networking OS version 7.8.1.0, names are up to 16 characters long.
The number of entries allowed per ACL is hardware-dependent. For detailed
specifications on entries allowed per ACL, refer to your line card documentation.

Example

Dell(conf)#ip access-list standard TestList
Dell(config-std-nacl)#

Related
Commands

ip access-list extended — creates an extended access list.
show config — displays the current configuration.

permit
To permit packets from a specific source IP address to leave the switch, configure a filter.

S4810
Syntax

permit {source [mask]| any | host ip-address}
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit {source [mask] | any | host ip-address}
command.

source

Enter the IP address in dotted decimal format of the network
from which the packet was sent.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter. You can enter any of the following keywords to
specify route types.

Access Control Lists (ACL)

•

bytes — Enter the keyword bytes to count bytes
processed by the filter.

•

count — Enter the keyword count to count packets the
filter processes.

•

dscp — Enter the keyword dcsp to match to the IP
DCSCP values.

215

host ip-address

•

fragments — Enter the keyword fragments to match
to non-initial fragments of a datagram.

•

order — Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254
(where 0 is the highest priority and 254 is the lowest;
lower-order numbers have a higher priority). If you do
not use the keyword order, the ACLs have the lowest
order by default (255).

Enter the keyword host then the IP address to specify a host
IP address or hostname.

Defaults

Not configured.

Command
Modes

CONFIGURATION-STANDARD-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option.

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

Usage
Information

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the “Quality of Service” chapter of the Dell Networking
OS Configuration Guide.

Related
Commands

deny — Assigns a IP ACL filter to deny IP packets.
ip access-list standard — creates a standard ACL.

216

Access Control Lists (ACL)

resequence access-list
Re-assign sequence numbers to entries of an existing access-list.

S4810
Syntax
Parameters

resequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Stepto-Increment}
ipv4 | ipv6 |
mac

Enter the keyword ipv4or mac to identify the access list type
to resequence.

access-listname

Enter the name of a configured IP access list.

StartingSeqNu
m

Enter the starting sequence number to resequence. The
range is from 0 to 4294967290.

Step-toIncrement

Enter the step to increment the sequence number. The
range is from 1 to 4294967290.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale (IPv6).

Version 8.1.1.0

Introduced on the E-Series ExaScale (IPv4).

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Access Control Lists (ACL)

217

Usage
Information

When you have exhausted all the sequence numbers, this feature permits reassigning a new sequence number to entries of an existing access-list.

seq
Assign a sequence number to a deny or permit filter in an IP access list while creating the filter.

S4810
Syntax

seq sequence-number {deny | permit} {source [mask] | any | host
ip-address}} [count [bytes]] [dscp value] [order] [fragments]
To delete a filter, use the no seq sequence-number command.

Parameters

218

sequencenumber

Enter a number from 0 to 4294967290.The range is from 0
to 65534.

deny

Enter the keyword deny to configure a filter to drop packets
meeting this condition.

permit

Enter the keyword permit to configure a filter to forward
packets meeting this criteria.

source

Enter an IP address in dotted decimal format of the network
from which the packet was received.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address or hostname.

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

bytes

(OPTIONAL) Enter the keyword bytes to count bytes the
filter processes.

dscp

(OPTIONAL) Enter the keyword dcsp to match to the IP
DCSCP values.

order

(OPTIONAL) Enter the keyword order to specify the QoS
order for the ACL entry. The range is from 0 to 254 (where 0
is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Access Control Lists (ACL)

Defaults

Not configured

Command
Modes

CONFIGURATION-STANDARD-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option.

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. The
following applies:
•

The seq sequence-number command is applicable only in an ACL group.

•

The order option works across ACL groups that have been applied on an
interface via the QoS policy framework.

•

The order option takes precedence over seq sequence-number.

•

If sequence-number is not configured, the rules with the same order value are
ordered according to their configuration order.

•

If sequence-number is configured, the sequence-number is used as a tie
breaker for rules with the same order.

deny — configures a filter to drop packets.
permit — configures a filter to forward packets.

Access Control Lists (ACL)

219

Extended IP ACL Commands
When an ACL is created without any rule and then applied to an interface, ACL behavior reflects an
implicit permit.
The following commands configure extended IP ACLs, which in addition to the IP address, also examine
the packet’s protocol type.
The S4810 supports both Ingress and Egress IP ACLs.
NOTE: Also refer to the Commands Common to all ACL Types and Common IP ACL Commands
sections.

deny
Configure a filter that drops IP packets meeting the filter criteria.

S4810
Syntax

deny {ip | ip-protocol-number} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [count
[byte] | log] [dscp value] [order] [monitor] [fragments]
To remove this filter, you have two choices:
•
•

Parameters

220

Use the no seq sequence-number command if you know the filter’s
sequence number.
Use the no deny {ip | ip-protocol-number} {source mask | any |
host ip-address} {destination mask | any | host ip-address}
command.

ip

Enter the keyword ip to configure a generic IP access list.
The keyword ip specifies that the access list denies all IP
protocols.

ip-protocolnumber

Enter a number from 0 to 255 to deny based on the protocol
identified in the IP protocol header.

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or noncontiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

destination

Enter the IP address of the network or host to which the
packets are sent.

count

(OPTIONAL) Enter the keyword count to count packets that
the filter processes.

Access Control Lists (ACL)

byte

(OPTIONAL) Enter the keyword byte to count bytes that the
filter processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to enter
ACL matches in the log.

dscp

(OPTIONAL) Enter the keyword dcsp to match to the IP
DCSCP values.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface. For more information, refer to the “Flow-based
Monitoring” section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the noncontiguous mask and added the
monitor option.

Access Control Lists (ACL)

221

Version 6.5.1.0

Usage
Information

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the Quality of Service chapter of the Dell Networking OS
Configuration Guide.
When you use the log option, the CP processor logs detail the packets that match.
Depending on how many packets match the log entry and at what rate, the CP
may become busy as it has to log these packets’ details.
The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to the Port Monitoring chapter.
The C-Series and S-Series cannot count both packets and bytes, when you enter
the count byte options, only bytes are incremented.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

deny tcp — assigns a filter to deny TCP packets.
deny udp — assigns a filter to deny UDP packets.
ip access-list extended — creates an extended ACL.

deny icmp
To drop all or specific internet control message protocol (ICMP) messages, configure a filter.

S4810
Syntax

deny icmp {source mask | any | host ip-address} {destination
mask | any | host ip-address} [dscp] [count [byte] | log]
[order] [monitor] [fragments]
To remove this filter, you have two choices:

Parameters

222

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny icmp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

Access Control Lists (ACL)

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

destination

Enter the IP address of the network or host to which the
packets are sent.

dscp

Enter this keyword dscp to deny a packet based on the
DSCP value. The range is from 0 to 63.

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

log

(OPTIONAL, E-Series only) Enter the keyword log to have
the information kept in an ACL log file.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower order
numbers have a higher priority) If you did not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface. For more information, refer to the section “Flowbased Monitoring” in the Port Monitoring chapter of the Dell
Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Access Control Lists (ACL)

223

Usage
Information

Version 8.3.1.0

Added the keyword dscp.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.4.1.0

Added support for non-contiguous mask and added the
monitor option.

Version 6.5.1.0

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the Quality of Service chapter of the Dell Networking OS
Configuration Guide.
The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to the Port Monitoring chapter.
When you use the log option, the CP processor logs details the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.

deny tcp
Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria.

S4810
Syntax

deny tcp {source mask | any | host ip-address} [bit] [operator
port [port]] {destination mask | any | host ip-address} [dscp]
[bit] [operator port [port]] [count [byte] | log] [order]
[monitor] [fragments]
To remove this filter, you have two choices:
•
•

Parameters

224

Use the no seq sequence-number command if you know the filter’s
sequence number.
Use the no deny tcp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

source

Enter the IP address of the network or host from which the
packets are sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

Access Control Lists (ACL)

dscp

Enter this keyword dscp to deny a packet based on the
DSCP value. The range is from 0 to 63.

bit

Enter a flag or combination of bits:

operator

•

ack: acknowledgement field

•

fin: finish (no more data from the user)

•

psh: push function

•

rst: reset the connection

•

syn: synchronize sequence numbers

•

urg: urgent field

(OPTIONAL) Enter one of the following logical operand:
•

port port

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for the port command)

Enter the application layer port number. Enter two port
numbers if using the range logical operand. The range is
from 0 to 65535.
The following list includes some common TCP port
numbers:
•

23 = Telnet

•

20 and 21 = FTP

•

25 = SMTP

•

169 = SNMP

destination

Enter the IP address of the network or host to which the
packets are sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

byte

(OPTIONAL) Enter the keyword byte to count bytes the filter
processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to have
the information kept in an ACL log file. Supported on
Jumbo-enabled line cards only.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where

Access Control Lists (ACL)

225

0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority) If you did not use the
keyword order, the ACLs have the lowest order by default
(255).
monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface. For more information, refer to the “Flow-based
Monitoring” section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the keyword dscp.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for non-contiguous mask and added the
monitor option. Deprecated the keyword established.

Version 6.5.1.0

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the Quality of Service chapter of the Dell Networking OS
Configuration Guide.
The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to the Port Monitoring chapter.

226

Access Control Lists (ACL)

When you use the log option, the CP processor logs details the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
The C-Series and S-Series cannot count both packets and bytes; when you enter
the count byte options, only bytes are incremented.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP
port operators (for example, gt, lt, or range) may require more than one entry. The
range of ports is configured in the CAM based on bit mask boundaries; the space
required depends on exactly what ports are included in the range.
Example

An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Rule#
1
2
3
4
5
6
7
8

Data

0000111110100000
0000111111000000
0001000000000000
0001100000000000
0001110000000000
0001111000000000
0001111100000000
0001111101000000

Mask
1111111111100000
1111111111000000
1111100000000000
1111110000000000
1111111000000000
1111111100000000
1111111111000000
1111111111111111

From To #Covered
4000
4032
4096
6144
7168
7680
7936
8000

4031
4095
6143
7167
7679
7935
7999
8000

32
64
2048
1024
512
256
64
1

Total Ports: 4001
Example

An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
Rule# Data

Mask

From To

1 0000000000000000 1111110000000000 0

#Covered

1023 1024

Total Ports: 1024
Related
Commands

deny — assigns a filter to deny IP traffic.
deny udp — assigns a filter to deny UDP traffic.

deny udp
To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.

S4810
Syntax

deny udp {source mask | any | host ip-address} [operator port
[port]] {destination mask | any | host ip-address} [dscp]
[operator port [port]] [count [byte] | log] [order] [monitor]
[fragments]

Access Control Lists (ACL)

227

To remove this filter, you have two choices:

Parameters

228

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny udp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

dscp

Enter this keyword dscp to deny a packet based on the
DSCP value. The range is from 0 to 63.

operator

(OPTIONAL) Enter one of the following logical operand:
•

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for the port command)

port port

Enter the application layer port number. Enter two port
numbers if using the range logical operand. The range is
from 0 to 65535.

destination

Enter the IP address of the network or host to which the
packets are sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

log

(OPTIONAL, E-Series only) Enter the keyword log to have
the information kept in an ACL log file. Supported on
Jumbo-enabled line cards only.

Access Control Lists (ACL)

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority) If you did not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface. For more information, refer to the section “Flowbased Monitoring” in the Port Monitoring chapter of the Dell
Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the keyword dscp.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for non-contiguous mask and added the
monitor option. Deprecated the keyword established.

Version 6.5.1.0

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the Quality of Service chapter of the Dell Networking OS
Configuration Guide.

Access Control Lists (ACL)

229

The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to the Port Monitoring chapter.
When you use the log option, the CP processor logs details the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
The C-Series and S-Series cannot count both packets and bytes; when you enter
the count byte options, only bytes are incremented.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP
port operators (for example, gt, lt or range) may require more than one entry. The
range of ports is configured in the CAM based on bit mask boundaries; the space
required depends on exactly what ports are included in the range.
Example

An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Rule#
1
2
3
4
5
6
7
8

Data

0000111110100000
0000111111000000
0001000000000000
0001100000000000
0001110000000000
0001111000000000
0001111100000000
0001111101000000

Mask
1111111111100000
1111111111000000
1111100000000000
1111110000000000
1111111000000000
1111111100000000
1111111111000000
1111111111111111

From To #Covered
4000
4032
4096
6144
7168
7680
7936
8000

4031
4095
6143
7167
7679
7935
7999
8000

32
64
2048
1024
512
256
64
1

Total Ports: 4001
Example

An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
Rule# Data

Mask

From To

1 0000000000000000 1111110000000000 0

#Covered

1023 1024

Total Ports: 1024
Related
Commands

deny — assigns a filter to deny IP traffic.
deny tcp — assigns a filter to deny TCP traffic.

ip access-list extended
Name (or select) an extended IP access list (IP ACL) based on IP addresses or protocols.

S4810
Syntax

230

ip access-list extended access-list-name

Access Control Lists (ACL)

To delete an access list, use the no ip access-list extended accesslist-name command.
Parameters

access-listname

Enter a string up to 140 characters long as the access list
name.

Defaults

All access lists contain an implicit “deny any”; that is, if no match occurs, the packet
is dropped.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The number of entries allowed per ACL is hardware-dependent. For detailed
specification on entries allowed per ACL, refer to your line card documentation.
Prior to 7.8.1.0, names are up to 16 characters long.

Example

Dell(conf)#ip access-list extended TESTListEXTEND
Dell(config-ext-nacl)#

Related
Commands

ip access-list standard — configures a standard IP access list.
show config — displays the current configuration.

Access Control Lists (ACL)

231

permit
To pass IP packets meeting the filter criteria, configure a filter.

S4810
Syntax

permit {source mask | any | host ip-address} {destination mask
| any | host ip-address} [count [bytes]] [dscp value] [order]
[fragments]
To remove this filter, you have two choices:

Parameters

Defaults

232

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

source

Enter the IP address in dotted decimal format of the network
from which the packet was sent.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address or hostname.

destination

Enter the IP address of the network or host to which the
packets are sent.

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

bytes

(OPTIONAL) Enter the keyword bytes to count bytes
processed by the filter.

dscp

(OPTIONAL) Enter the keyword dcsp to match to the IP
DCSCP values.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Not configured.

Access Control Lists (ACL)

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option.

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the “Quality of Service” chapter of the Dell Networking
OS Configuration Guide.
The software cannot count both packets and bytes; when you enter the count byte
options, only bytes are incremented.

Related
Commands

ip access-list extended — creates an extended ACL.
permit tcp — assigns a permit filter for TCP packets.
permit udp — assigns a permit filter for UDP packets.

permit tcp
To pass TCP packets meeting the filter criteria, configure a filter.

S4810
Syntax

permit tcp {source mask | any | host ip-address} [bit]
[operator port [port]] {destination mask | any | host ip-

Access Control Lists (ACL)

233

address} [bit] [dscp] [operator port [port]] [count [byte] |
log] [order] [monitor] [fragments]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit tcp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

bit

Enter a flag or combination of bits:
•

ack: acknowledgement field

•

fin: finish (no more data from the user)

•

psh: push function

•

rst: reset the connection

•

syn: synchronize sequence numbers

•

urg: urgent field

dscp

Enter the keyword dscp to deny a packet based on the
DSCP value. The range is from 0 to 63.

operator

(OPTIONAL) Enter one of the following logical operand:

port port

•

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for the port parameter)

Enter the application layer port number. Enter two port
numbers if you are using the range logical operand. The
range is from 0 to 65535.
The following list includes some common TCP port
numbers:
•

234

23 = Telnet

Access Control Lists (ACL)

•

20 and 21 = FTP

•

25 = SMTP

•

169 = SNMP

destination

Enter the IP address of the network or host to which the
packets are sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

byte

(OPTIONAL) Enter the keyword byte to count bytes the filter
processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to have
the information kept in an ACL log file.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the Flow-based
Monitoring section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Access Control Lists (ACL)

235

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the keyword dscp.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for non-contiguous mask and added the
monitor option. Deprecated the keyword established.

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the “Quality of Service” chapter of the Dell Networking
OS Configuration Guide.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.
When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
The S-Series cannot count both packets and bytes; when you enter the count byte
options, only bytes are incremented.
The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to Port Monitoring.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP
port operators (for example, gt, lt, or range) may require more than one entry. The
range of ports is configured in the CAM based on bit mask boundaries; the space
required depends on exactly what ports are included in the range.

Example

An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Rule# Data
1
2
3
4
5
6
7
8

0000111110100000
0000111111000000
0001000000000000
0001100000000000
0001110000000000
0001111000000000
0001111100000000
0001111101000000

Mask
1111111111100000
1111111111000000
1111100000000000
1111110000000000
1111111000000000
1111111100000000
1111111111000000
1111111111111111

From To

#Covered

4000
4032
4096
6144
7168
7680
7936
8000

32
64
2048
1024
512
256
64
1

4031
4095
6143
7167
7679
7935
7999
8000

Total Ports: 4001

236

Access Control Lists (ACL)

Example

An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
Rule# Data

Mask

From To

1 0000000000000000 1111110000000000 0

#Covered

1023 1024

Total Ports: 1024
Related
Commands

ip access-list extended — creates an extended ACL.
permit — assigns a permit filter for IP packets.
permit udp — assigns a permit filter for UDP packets.

permit udp
To pass UDP packets meeting the filter criteria, configure a filter.

S4810
Syntax

permit udp {source mask | any | host ip-address} [operator port
[port]] {destination mask | any | host ip-address} [dscp]
[operator port [port]] [count [byte] | log] [order] [monitor]
[fragments]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit udp {source mask | any | host ip-address}
{destination mask | any | host ip-address command.

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x) or A.B.C.D. The
mask, when specified in A.B.C.D format, may be either
contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host and then enter the IP address to
specify a host IP address.

dscp

Enter the keyword dscp to deny a packet based on the
DSCP value. The range is from 0 to 63.

operator

(OPTIONAL) Enter one of the following logical operand:

Access Control Lists (ACL)

•

eq = equal to

•

neq = not equal to

•

gt = greater than

237

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for the port parameter)

port port

Enter the application layer port number. Enter two port
numbers if you are using the range logical operand. The
range is 0 to 65535.

destination

Enter the IP address of the network or host to which the
packets are sent.

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

log

(OPTIONAL, E-Series only) Enter the keyword log to have
the information kept in an ACL log file.

order

(OPTIONAL) Enter the keyword order to specify the QoS
priority for the ACL entry. The range is from 0 to 254 (where
0 is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the Flow-based
Monitoring section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured.

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

238

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Access Control Lists (ACL)

Usage
Information

Version 8.3.1.0

Added the keyword dscp.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for non-contiguous mask and added the
monitor option. .

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

The order option is relevant in the context of the Policy QoS feature only. For
more information, refer to the “Quality of Service” chapter of the Dell Networking
OS Configuration Guide.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.
When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
The S-Series cannot count both packets and bytes; when you enter the count byte
options, only bytes are incremented.
The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to Port Monitoring.
Most ACL rules require one entry in the CAM. However, rules with TCP and UDP
port operators (for example, gt, lt, or range) may require more than one entry. The
range of ports is configured in the CAM based on bit mask boundaries; the space
required depends on exactly what ports are included in the range.

Example

An ACL rule with a TCP port range of 4000–8000 uses eight entries in the CAM.
Rule# Data
1
2
3
4
5
6
7
8

0000111110100000
0000111111000000
0001000000000000
0001100000000000
0001110000000000
0001111000000000
0001111100000000
0001111101000000

Mask
1111111111100000
1111111111000000
1111100000000000
1111110000000000
1111111000000000
1111111100000000
1111111111000000
1111111111111111

From To

#Covered

4000
4032
4096
6144
7168
7680
7936
8000

32
64
2048
1024
512
256
64
1

4031
4095
6143
7167
7679
7935
7999
8000

Total Ports: 4001

Access Control Lists (ACL)

239

Example

An ACL rule with a TCP port lt 1023 uses only one entry in the CAM.
Rule# Data

Mask

From To

1 0000000000000000 1111110000000000 0

#Covered

1023 1024

Total Ports: 1024
Related
Commands

ip access-list extended — creates an extended ACL.
permit — assigns a permit filter for IP packets.
permit tcp — assigns a permit filter for TCP packets.

resequence access-list
Re-assign sequence numbers to entries of an existing access-list.

Syntax
Parameters

resequence access-list {ipv4 | mac} {access-list-name
StartingSeqNum Step-to-Increment}
ipv4 | mac

Enter the keyword ipv4or mac to identify the access list type
to resequence.

access-listname

Enter the name of a configured IP access list, up to 140
characters.

StartingSeqNu
m

Enter the starting sequence number to resequence. The
range is from 0 to 4294967290.

Step-toIncrement

Enter the step to increment the sequence number. The
range is from 1 to 4294967290.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

240

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale (IPv4).

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Access Control Lists (ACL)

Usage
Information

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

When all sequence numbers have been exhausted, this feature permits reassigning a new sequence number to entries of an existing access-list.

seq
Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.

S4810
Syntax

Parameters

seq sequence-number {deny | permit} {ip-protocol-number | icmp
| ip | tcp | udp} {source mask | any | host ip-address}
{destination mask | any | host ip-address} [operator port
[port]] [count [byte] | log] [dscp value] [order] [monitor]
[fragments]
sequencenumber

Enter a number from 0 to 4294967290. For the S4810 , the
range is from 0 to 65534.

deny

Enter the keyword deny to configure a filter to drop packets
meeting this condition.

permit

Enter the keyword permit to configure a filter to forward
packets meeting this criteria.

ip-protocolnumber

Enter a number from 0 to 255 to filter based on the protocol
identified in the IP protocol header.

icmp

Enter the keyword icmp to configure an ICMP access list
filter.

ip

Enter the keyword ip to configure a generic IP access list.
The keyword ip specifies that the access list permits all IP
protocols.

tcp

Enter the keyword tcp to configure a TCP access list filter.

udp

Enter the keyword udp to configure a UDP access list filter.

source

Enter an IP address in dotted decimal format of the network
from which the packet was received.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D. The mask, when specified in A.B.C.D format, may be
either contiguous or non-contiguous.

any

Enter the keyword any to specify that all routes are subject
to the filter.

host ip-address

Enter the keyword host and then enter the IP address to
specify a host IP address or hostname.

Access Control Lists (ACL)

241

operator

port port

(OPTIONAL) Enter one of the following logical operands:
•

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for the port parameter.)

(OPTIONAL) Enter the application layer port number. Enter
two port numbers if you are using the range logical operand.
The range is from 0 to 65535.
The following list includes some common TCP port
numbers:
•

23 = Telnet

•

20 and 21 = FTP

•

25 = SMTP

•

169 = SNMP

destination

Enter the IP address of the network or host to which the
packets are sent.

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

byte

(OPTIONAL) Enter the keyword byte to count bytes the filter
processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to enter
ACL matches in the log. Supported on Jumbo-enabled line
cards only.

dscp

(OPTIONAL) Enter the keyword dcsp to match to the IP
DCSCP values.

order

(OPTIONAL) Enter the keyword order to specify the QoS
order for the ACL entry. The range is from 0 to 254 (where 0
is the highest priority and 254 is the lowest; lower-order
numbers have a higher priority). If you do not use the
keyword order, the ACLs have the lowest order by default
(255).

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the Flow-based
Monitoring section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

242

Access Control Lists (ACL)

fragments

Enter the keyword fragments to use ACLs to control packet
fragments.

Defaults

Not configured

Command
Modes

CONFIGURATION-EXTENDED-ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Add the DSCP value for ACL matching.

Version 8.2.1.0

Allows ACL control of fragmented packets for IP (Layer 3)
ACLs.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added support for the non-contiguous mask and added the
monitor option. Deprecated the keyword established.

Version 6.5.10

Expanded to include the optional QoS order priority for the
ACL entry.

The monitor option is relevant in the context of flow-based monitoring only. For
more information, refer to Port Monitoring.
The order option is relevant in the context of the Policy QoS feature only. The
following applies:
•

The seq sequence-number command is applicable only in an ACL group.

•

The order option works across ACL groups that have been applied on an
interface via the QoS policy framework.

•

The order option takes precedence over seq sequence-number.

•

If sequence-number is not configured, the rules with the same order value are
ordered according to their configuration order.

•

If sequence-number is configured, the sequence-number is used as a tie
breaker for rules with the same order.

Access Control Lists (ACL)

243

When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
If you configure the sequence-number, the sequence-number is used as a tie
breaker for rules with the same order.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.
Related
Commands

deny — configures a filter to drop packets.
permit — configures a filter to forward packets.

Common MAC Access List Commands
The following commands are available within both MAC ACL modes (Standard and Extended) and do not
have mode-specific options. These commands allow you to clear, display, and assign MAC ACL
configurations.
The S4810 supports both Ingress and Egress MAC ACLs.
The MAC ACL can be applied on Physical, Port-channel and VLAN interfaces. As per the specified rules in
the acl, the traffic on the interface/ VLAN members or Port-channel members will be permitted or
denied.

clear counters mac access-group
Clear counters for all or a specific MAC ACL.

S4810
Syntax
Parameters

clear counters mac access-group [mac-list-name]
mac-list-name

(OPTIONAL) Enter the name of a configured MAC access list.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

244

Introduced on the S6000.

Access Control Lists (ACL)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

mac access-group
Apply a MAC ACL to traffic entering or exiting an interface. The following interface types can be used for
VLAN , Physical interface, Port channel interface. Enter into the interface mode and apply the mac acl in
the following manner.

S4810
Syntax

Applying MAC Access group on a physical / port channel interfacemac accessgroup access-list-name {in [vlan vlan-range] | out}
To delete a MAC access-group, use the no mac access-group mac-listname command.

Parameters

access-listname

Enter the name of a configured MAC access list, up to 140
characters.

vlan vlan-range

(OPTIONAL) Enter the keyword vlan and then enter a range
of VLANs. The range is from 1 to 4094 (you can use IDs 1 to
4094).
NOTE: This option is available only with the keywordin
option.

in

Enter the keyword in to configure the ACL to filter incoming
traffic.

out

Enter the keyword out to configure the ACL to filter
outgoing traffic.
NOTE: The option is not available on the S-Series.

Access Control Lists (ACL)

245

NOTE:
1. If the MAC ACL is applied on VLAN, none of the VLAN members should have
an access list applied for that VLAN.
2. If the MAC ACL is applied on a Physical or Port Channel interface, the VLAN
in which this port is associated should not have an access list applied.
3. If the MAC ACL is applied on a VLAN, then that VLAN should not belong to
VLAN ACL group.
4. If the MAC ACL is applied on a VLAN ACL group, then none of the VLANs in
that group should have an access list applied on it.
Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

You can assign one ACL (standard or extended) to an interface.

Related
Commands

mac access-list standard — configures a standard MAC ACL.
mac access-list extended — configures an extended MAC ACL.

246

Access Control Lists (ACL)

show mac access-lists
Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface,
and the count of matches/mismatches against each ACL entry displayed.

S4810
Syntax
Parameters

show mac access-lists [access-list-name] [interface interface]
[in | out]
access-listname

Enter the name of a configured MAC ACL, up to 140
characters.

interface
interface

Enter the keyword interface then the one of the following
keywords and slot/port or number information:

in | out

•

For a Port Channel interface, enter the keyword portchannel and then enter a number. The C-Series and SSeries range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet and then enter the slot/port
information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE and then enter the slot/port information.

•

For a VLAN interface, enter the keyword VLAN followed
by the vlan id.

Identify whether ACL is applied on ingress or egress side.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.4.1.0

Introduced.

Access Control Lists (ACL)

247

show mac accounting access-list
Display MAC access list configurations and counters (if configured).

S4810
Syntax
Parameters

show mac accounting access-list access-list-name interface
interface in | out
access-listname

Enter the name of a configured MAC ACL, up to 140
characters.

interface
interface

Enter the keyword interface then the one of the following
keywords and slot/port or number information:

in | out

•

For a Port Channel interface, enter the keyword portchannel and then enter a number. The range is from 1
to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet and then enter the slot/port
information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE and then enter the slot/port information.

•

For a VLAN interface, enter the keyword VLAN followed
by the vlan id.

Identify whether ACL is applied on ingress or egress side.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

248

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Access Control Lists (ACL)

Version 7.5.1.0

Introduced on the C-Series

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

The ACL hit counters in this command increment the counters for each matching
rule, not just the first matching rule.

Example

Dell#show mac accounting access-list mac-ext interface po 1
Extended mac access-list mac-ext on GigabitEthernet 0/11
seq 5 permit host 00:00:00:00:00:11 host 00:00:00:00:00:19
count (393794576 packets)
seq 10 deny host 00:00:00:00:00:21 host 00:00:00:00:00:29
count (89076777 packets)
seq 15 deny host 00:00:00:00:00:31 host 00:00:00:00:00:39
count (0 packets)
seq 20 deny host 00:00:00:00:00:41 host 00:00:00:00:00:49
count (0 packets)
seq 25 permit any any count (0 packets)
Extended mac access-list mac-ext on GigabitEthernet 0/12
seq 5 permit host 00:00:00:00:00:11 host 00:00:00:00:00:19
count (57589834 packets)
seq 10 deny host 00:00:00:00:00:21 host 00:00:00:00:00:29
count (393143077 packets)
seq 15 deny host 00:00:00:00:00:31 host 00:00:00:00:00:39
count (0 packets)
seq 20 deny host 00:00:00:00:00:41 host 00:00:00:00:00:49
count (0 packets)
seq 25 permit any any count (0 packets)
Dell#

Standard MAC ACL Commands
When you create an access control list without any rule and then apply it to an interface, the ACL
behavior reflects implicit permit. These commands configure standard MAC ACLs.
The S4810 support both Ingress and Egress MAC ACLs.
NOTE: For more information, also refer to the Commands Common to all ACL Types and Common
MAC Access List Commands sections.

deny
To drop packets with a the MAC address specified, configure a filter.

S4810
Syntax

deny {any | mac-source-address [mac-source-address-mask]}
[count [byte]] [log] [monitor]
To remove this filter, you have two choices:
•

Access Control Lists (ACL)

Use the no seq sequence-number command if you know the filter’s
sequence number.

249

•

Parameters

Use the no deny {any | mac-source-address mac-source-addressmask} command.

any

Enter the keyword any to specify that all routes are subject
to the filter.

mac-sourceaddress

Enter a MAC address in nn:nn:nn:nn:nn:nn format.

mac-sourceaddress-mask

(OPTIONAL) Specify which bits in the MAC address must
match. If no mask is specified, a mask of 00:00:00:00:00:00
is applied (in other words, the filter allows only MAC
addresses that match).

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

log

(OPTIONAL, E-Series only) Enter the keyword log to log the
packets.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface. For more information, refer to the “Flow-based
Monitoring” section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

Defaults

Not enabled.

Command
Modes

CONFIGURATION-MAC ACCESS LIST-STANDARD

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

250

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the monitor option.

Access Control Lists (ACL)

Usage
Information

When you use the log option, the CP processor logs detail the packets that match.
Depending on how many packets match the log entry and at what rate, the CP
may become busy as it has to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

permit — configures a MAC address filter to pass packets.
seq — configures a MAC address filter with a specified sequence number.

mac access-list standard
To configure a standard MAC ACL, name a new or existing MAC access control list (MAC ACL) and enter
MAC ACCESS LIST mode. Also refer to the Commands Common to all ACL Types section and the
Common MAC Access List Commands section.

S4810
Syntax

mac access-list standard mac-list-name
To delete a MAC access list, use the no mac access-list standard maclist-name command.

Parameters

mac-list-name

Enter a text string as the name of the standard MAC access
list (140 character maximum).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Access Control Lists (ACL)

251

Usage
Information

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell Networking OS supports one ingress and one egress MAC ACL per interface.
The number of entries allowed per ACL is hardware-dependent. For detailed
specifications on entries allowed per ACL, refer to your line card documentation.
NOTE: Ingress ACLs are supported on C-Series and S-Series platforms only.

Example

Dell(conf)#mac-access-list access-list standard TestMAC
Dell(config-std-macl)#?
deny
Specify packets to reject
description
List description
exit
Exit from access-list configuration mode
no
Negate a command or set its defaults
permit
Specify packets to forward
remark
Specify access-list entry remark
seq
Sequence numbers
show
Show Standard ACL configuration

permit
To forward packets from a specific source MAC address, configure a filter.

S4810
Syntax

permit {any | mac-source-address [mac-source-address-mask]}
[count [byte]] | [log] [monitor]
To remove this filter, you have two choices:
•
•

Parameters

252

Use the no seq sequence-number command if you know the filter’s
sequence number.
Use the no permit {any | mac-source-address mac-sourceaddress-mask} command.

any

Enter the keyword any to forward all packets received with a
MAC address.

mac-sourceaddress

Enter a MAC address in nn:nn:nn:nn:nn:nn format.

mac-sourceaddress-mask

(OPTIONAL) Specify which bits in the MAC address must
match. If no mask is specified, a mask of 00:00:00:00:00:00
is applied (in other words, the filter allows only MAC
addresses that match).

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

Access Control Lists (ACL)

log

(OPTIONAL, E-Series only) Enter the keyword log to log the
packets.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the Flow-based
Monitoring section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

Defaults

Not configured.

Command
Modes

CONFIGURATION-MAC ACCESS LIST-STANDARD

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

deny — configures a MAC ACL filter to drop packets.
seq —configure a MAC ACL filter with a specified sequence number.

Access Control Lists (ACL)

253

seq
To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number.

S4810
Syntax

seq sequence-number {deny | permit} {any | mac-source-address
[mac-source-address-mask]} [count [byte]] [log] [monitor]
To remove this filter, use the no seq sequence-number command.

Parameters

sequencenumber

Enter a number from 0 to 65535.

deny

Enter the keyword deny to configure a filter to drop packets
meeting this condition.

permit

Enter the keyword permit to configure a filter to forward
packets meeting this criteria.

any

Enter the keyword any to filter all packets.

mac-sourceaddress

Enter a MAC address in nn:nn:nn:nn:nn:nn format.

mac-sourceaddress-mask

(OPTIONAL) Specify which bits in the MAC address must
match. If no mask is specified, a mask of 00:00:00:00:00:00
is applied (in other words, the filter allows only MAC
addresses that match).

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

byte

(OPTIONAL) Enter the keyword byte to count bytes the filter
processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to log the
packets.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the “Flow-based
Monitoring” section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

Defaults

Not configured

Command
Modes

CONFIGURATION-MAC ACCESS LIST-STANDARD

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

254

Access Control Lists (ACL)

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the monitor option.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

deny — configures a filter to drop packets.
permit — configures a filter to forward packets.

Extended MAC ACL Commands
When an access-list is created without any rule and then applied to an interface, ACL behavior reflects
implicit permit. The following commands configure Extended MAC ACLs.
The S4810 supports both Ingress and Egress MAC ACLs.
NOTE: For more information, also refer to the Commands Common to all ACL Types and Common
MAC Access List Commands sections.

deny
To drop packets that match the filter criteria, configure a filter.

S4810
Syntax

deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address

Access Control Lists (ACL)

255

mac-destination-address-mask} [ethertype-operator] [count
[byte]] [log] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {any | host mac-address | mac-source-address
mac-source-address-mask} {any | host mac-address | macdestination-address mac-destination-address-mask} command.

any

Enter the keyword any to drop all packets.

host macaddress

Enter the keyword host and then enter a MAC address to
drop packets with that host address.

mac-sourceaddress

Enter a MAC address in nn:nn:nn:nn:nn:nn format.

mac-sourceaddress-mask

Specify which bits in the MAC address must match.
The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.

macdestinationaddress

Enter the destination MAC address and mask in
nn:nn:nn:nn:nn:nn format.

macdestinationaddress-mask

Specify which bits in the MAC address must match.

ethertype
operator

The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.
(OPTIONAL) To filter based on protocol type, enter one of
the following Ethertypes:
•

256

ev2 - is the Ethernet II frame format

•

llc - is the IEEE 802.3 frame format

•

snap - is the IEEE 802.3 SNAP frame format

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.

byte

(OPTIONAL) Enter the keyword byte to count bytes
processed by the filter.

log

(OPTIONAL, E-Series only) Enter the keyword log to log the
packets.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored

Access Control Lists (ACL)

interface. For more information, refer to the “Flow-based
Monitoring” section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.
Defaults

Not configured.

Command
Modes

CONFIGURATION-MAC ACCESS LIST-EXTENDED

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the monitor option.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you use the log option, the CP processor logs detail the packets that match.
Depending on how many packets match the log entry and at what rate, the CP
may become busy as it has to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

permit — configures a MAC address filter to pass packets.
seq — configures a MAC address filter with a specified sequence number.

mac access-list extended
Name a new or existing extended MAC access control list (extended MAC ACL).

S4810
Syntax

mac access-list extended access-list-name [cpu-qos

Access Control Lists (ACL)

257

To delete a MAC access list, use the no mac access-list extended accesslist-name command.
Parameters

access-listname

Enter a text string as the MAC access list name, up to 140
characters.

cpu-qos

Enter the keywords cpu-qos to assign this ACL to control
plane traffic only (CoPP).

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The number of entries allowed per ACL is hardware-dependent. For detailed
specifications on entries allowed per ACL, refer to your line card documentation.
Prior to 7.8.1.0, names are up to 16 characters long.

Example

258

Dell(conf)#mac-access-list access-list extended TestMATExt
Dell(config-ext-macl)#remark 5 IPv4
Dell(config-ext-macl)#seq 10 permit any any ev2 eq 800 count
bytes
Dell(config-ext-macl)#remark 15 ARP
Dell(config-ext-macl)#seq 20 permit any any ev2 eq 806 count
bytes
Dell(config-ext-macl)#remark 25 IPv6
Dell(config-ext-macl)#seq 30 permit any any ev2 eq 86dd count
bytes
Dell(config-ext-macl)#seq 40 permit any any count bytes

Access Control Lists (ACL)

Dell(config-ext-macl)#exit
Dell(conf)#do show mac accounting access-list snickers
interface g0/47 in
Extended mac access-list snickers on GigabitEthernet 0/47
seq 10 permit any any ev2 eq 800 count bytes (559851886
packets 191402152148
bytes)
seq 20 permit any any ev2 eq 806 count bytes (74481486 packets
5031686754
bytes)
seq 30 permit any any ev2 eq 86dd count bytes (7751519 packets
797843521 bytes)
Related
Commands

mac access-list standard — configures a standard MAC access list.
show mac accounting access-list — displays MAC access list configurations and
counters (if configured).

permit
To pass packets matching the criteria specified, configure a filter.

S4810
Syntax

permit {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address
mac-destination-address-mask} [ethertype operator] [count
[byte]] | [log] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit {any | host mac-address | mac-source-address
mac-source-address-mask} {any | mac-destination-address macdestination-address-mask} command.

any

Enter the keyword any to forward all packets.

host

Enter the keyword host then a MAC address to forward
packets with that host address.

mac-sourceaddress

Enter a MAC address in nn:nn:nn:nn:nn:nn format.

mac-sourceaddress-mask

(OPTIONAL) Specify which bits in the MAC address must
match.
The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.

Access Control Lists (ACL)

259

macdestinationaddress

Enter the destination MAC address and mask in
nn:nn:nn:nn:nn:nn format.

macdestinationaddress-mask

Specify which bits in the MAC address must be matched.

ethertype
operator

(OPTIONAL) To filter based on protocol type, enter one of
the following Ethertypes:

The MAC ACL supports an inverse mask; therefore, a mask of
ff:ff:ff:ff:ff:ff allows entries that do not match and a mask of
00:00:00:00:00:00 only allows entries that match exactly.

•

ev2 - is the Ethernet II frame format

•

llc - is the IEEE 802.3 frame format

•

snap - is the IEEE 802.3 SNAP frame format

count

(OPTIONAL) Enter the keyword count to count packets the
filter processes.

byte

(OPTIONAL) Enter the keyword byte to count bytes the filter
processes.

log

(OPTIONAL, E-Series only) Enter the keyword log to log the
packets.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.
NOTE: For more information, refer to the Flow-based
Monitoring section in the Port Monitoring chapter of the
Dell Networking OS Configuration Guide.

Defaults

Not configured.

Command
Modes

CONFIGURATION-MAC ACCESS LIST-EXTENDED

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

260

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Access Control Lists (ACL)

Usage
Information

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the monitor option.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you use the log option, the CP processor logs details about the packets that
match. Depending on how many packets match the log entry and at what rate, the
CP may become busy as it has to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously,
byte counters may display an incorrect value. Configure packet counters with
logging instead.

Related
Commands

deny — configures a MAC ACL filter to drop packets.
seq — configure a MAC ACL filter with a specified sequence number.

IP Prefix List Commands
When you create an access-list without any rule and then apply it to an interface, the ACL behavior
reflects implicit permit.
To configure or enable IP prefix lists, use these commands.

clear ip prefix-list
Reset the number of times traffic mets the conditions (“hit” counters) of the configured prefix lists.

S4810
Syntax
Parameters

clear ip prefix-list [prefix-name]
prefix-name

(OPTIONAL) Enter the name of the configured prefix list to
clear only counters for that prefix list, up to 140 characters
long.

Defaults

Clears “hit” counters for all prefix lists unless a prefix list is specified.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Access Control Lists (ACL)

261

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increase the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip prefix-list — configures a prefix list.

deny
To drop packets meeting the criteria specified, configure a filter.

S4810
Syntax

deny ip-prefix [ge min-prefix-length] [le max-prefix-length]
To delete a drop filter, use the no deny ip-prefix command.

Parameters

ip-prefix

Specify an IP prefix in the network/length format. For
example, 35.0.0.0/ 8 means match the first 8 bits of address
35.0.0.0.

ge min-prefixlength

(OPTIONAL) Enter the keyword ge and then enter the
minimum prefix length, which is a number from zero (0) to
32.

le max-prefixlength

(OPTIONAL) Enter the keyword le and then enter the
maximum prefix length, which is a number from zero (0) to
32.

Defaults

Not configured.

Command
Modes

PREFIX-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

262

Access Control Lists (ACL)

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Sequence numbers for this filter are automatically assigned starting at sequence
number 5.
If you do not use the ge or le options, only packets with an exact match to the
prefix are filtered.

ip prefix-list
Enter the PREFIX-LIST mode and configure a prefix list.

S4810
Syntax

ip prefix-list prefix-name
To delete a prefix list, use the no ip prefix-list prefix-name command.

Parameters

prefix-name

Enter a string up to 16 characters long as the name of the
prefix list, up to 140 characters long.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Access Control Lists (ACL)

263

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

Prefix lists redistribute OSPF and RIP routes meeting specific criteria.

Related
Commands

show ip route list — displays IP routes in an IP prefix list.
show ip prefix-list summary — displays a summary of the configured prefix lists.

seq
To a deny or permit filter in a prefix list while configuring the filter, assign a sequence number.

S4810
Syntax

seq sequence-number {deny | permit} {any} | [ip-prefix /nn {ge
min-prefix-length} {le max-prefix-length}] | [bitmask number]
To delete a specific filter, use the no seq sequence-number {deny |
permit} {any} | [ip-prefix {ge min-prefix-length} {le maxprefix-length}] | [bitmask number].

Parameters

264

sequencenumber

Enter a number. The range is from 1 to 4294967294.

deny

Enter the keyword deny to configure a filter to drop packets
meeting this condition..

permit

Enter the keyword permit to configure a filter to forward
packets meeting this condition.

any

(OPTIONAL) Enter the keyword any to match any packets.

ip-prefix /nn

(OPTIONAL) Specify an IP prefix in the network/length
format. For example, 35.0.0.0/8 means match the first 8 bits
of address 35.0.0.0.

ge min-prefixlength

(OPTIONAL) Enter the keyword ge and then enter the
minimum prefix length, which is a number from zero (0) to
32.

le max-prefixlength

(OPTIONAL) Enter the keyword le and then enter the
maximum prefix length, which is a number from zero (0) to
32.

Access Control Lists (ACL)

bitmask
number

Enter the keyword bitmask then enter a bit mask number in
dotted decimal format.

Defaults

Not configured.

Command
Modes

PREFIX-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Added the bit mask option.

If you do not use the ge or le options, only packets with an exact match to the
prefix are filtered.

show config
Display the current PREFIX-LIST configurations.

S4810
Syntax

show config

Command
Modes

PREFIX-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Access Control Lists (ACL)

265

Example

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell(conf-nprefixl)#show config
!
ip prefix-list snickers
Dell(conf-nprefixl)#

show ip prefix-list detail
Display details of the configured prefix lists.

S4810
Syntax
Parameters

show ip prefix-list detail [prefix-name]
prefix-name

(OPTIONAL) Enter a text string as the name of the prefix list,
up to 140 characters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

266

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Access Control Lists (ACL)

pre-Version
6.1.1.0
Example

Introduced on the E-Series.

Dell#show ip prefix-list detail
Prefix-list with the last deletion/insertion: filter_ospf
ip prefix-list filter_in:
count: 3, range entries: 3, sequences: 5 - 10
seq 5 deny 1.102.0.0/16 le 32 (hit count: 0)
seq 6 deny 2.1.0.0/16 ge 23 (hit count: 0)
seq 10 permit 0.0.0.0/0 le 32 (hit count: 0)
ip prefix-list filter_ospf:
count: 4, range entries: 1, sequences: 5 - 10
seq 5 deny 100.100.1.0/24 (hit count: 5)
seq 6 deny 200.200.1.0/24 (hit count: 1)
seq 7 deny 200.200.2.0/24 (hit count: 1)
seq 10 permit 0.0.0.0/0 le 32 (hit count: 132)
Dell#

show ip prefix-list summary
Display a summary of the configured prefix lists.

S4810
Syntax
Parameters

show ip prefix-list summary [prefix-name]
prefix-name

(OPTIONAL) Enter a text string as the name of the prefix list,
up to 140 characters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Access Control Lists (ACL)

267

pre-Version
6.1.1.0
Example

Introduced on the E-Series.

Dell#show ip prefix summary
Prefix-list with the last deletion/insertion: test
ip prefix-list test:
count: 3, range entries: 1, sequences: 5 - 15
ip prefix-list test1:
count: 2, range entries: 2, sequences: 5 - 10
ip prefix-list test2:
count: 1, range entries: 1, sequences: 5 - 5
ip prefix-list test3:
count: 1, range entries: 1, sequences: 5 - 5
ip prefix-list test4:
count: 1, range entries: 1, sequences: 5 - 5
ip prefix-list test5:
count: 1, range entries: 1, sequences: 5 - 5
ip prefix-list test6:
count: 1, range entries: 1, sequences: 5 - 5
Dell#

Route Map Commands
When you create an access-list without any rule and then applied to an interface, the ACL behavior
reflects implicit permit.
To configure route maps and their redistribution criteria, use the following commands.

continue
To a route-map entry with a higher sequence number, configure a route-map.

S4810
Syntax
Parameters

continue [sequence-number]
sequencenumber

(OPTIONAL) Enter the route map sequence number. The
range is from 1 to 65535.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

268

Introduced on the S6000.

Access Control Lists (ACL)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

The continue feature allows movement from one route-map entry to a specific
route-map entry (the sequence number). If you do not specify the sequence
number, the continue feature simply moves to the next sequence number (also
known as an implied continue). If a match clause exists, the continue feature
executes only after a successful match occurs. If there are no successful matches,
the continue feature is ignored.
Match clause with Continue clause
The continue feature can exist without a match clause. A continue clause without
a match clause executes and jumps to the specified route-map entry.
With a match clause and a continue clause, the match clause executes first and the
continue clause next in a specified route map entry. The continue clause launches
only after a successful match. The behavior is:
•

A successful match with a continue clause, the route map executes the set
clauses and then goes to the specified route map entry upon execution of the
continue clause.

•

If the next route map entry contains a continue clause, the route map executes
the continue clause if a successful match occurs.

•

If the next route map entry does not contain a continue clause, the route map
evaluates normally. If a match does not occur, the route map does not
continue and falls through to the next sequence number, if one exists.

Set Clause with Continue Clause
If the route-map entry contains sets with the continue clause, set actions are
performed first then the continue clause jumps to the specified route map entry.

Related
Commands

•

If a set action occurs in the first route map entry and then the same set action
occurs with a different value in a subsequent route map entry, the last set of
actions overrides the previous set of actions with the same set command.

•

If set community additive and set as-path prepend are configure, the
communities and AS numbers are prepended.

set community — specifies a COMMUNITY attribute.
set as-path — configures a filter to modify the AS path.

Access Control Lists (ACL)

269

description
Add a description to this route map.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Enter a description to identify the route map (80 characters
maximum).

Defaults

none

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

pre-Version
7.7.1.0

Introduced.

route-map — enables a route map.

match as-path
To match routes that have a certain AS number in their BGP path, configure a filter.

S4810
Syntax

match as-path as-path-name
To delete a match AS path filter, use the no match as-path as-path-name
command.

Parameters

270

as-path-name

Enter the name of an established AS-PATH ACL, up to 140
characters.

Access Control Lists (ACL)

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set as-path — adds information to the BGP AS_PATH attribute.

match community
To match routes that have a certain COMMUNITY attribute in their BGP path, configure a filter.

S4810
Syntax

match community community-list-name [exact]
To delete a community match filter, use the no match community command.

Parameters

communitylist-name

Enter the name of a configured community list.

exact

(OPTIONAL) Enter the keywords exact to process only
those routes with this community list name.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Access Control Lists (ACL)

271

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set community — specifies a COMMUNITY attribute.

match interface
To match routes whose next hop is on the interface specified, configure a filter.

S4810
Syntax

match interface interface
To remove a match, use the no match interface interface command.

Parameters

272

interface

Enter the following keywords and slot/port or number
information:
•

.

•

For the loopback interface, enter the keyword loopback
then a number from zero (0) to 16383.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a Ten Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094 (you can use IDs 1 to 4094).

Access Control Lists (ACL)

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match ip address — redistributes routes that match an IP address.
match ip next-hop — redistributes routes that match the next-hop IP address.
match ip route-source — redistributes routes that match routes advertised by other
routers.
match metric — redistributes routes that match a specific metric.
match route-type — redistributes routes that match a route type.
match tag — redistributes routes that match a specific tag.

match ip address
To match routes based on IP addresses specified in an access list, configure a filter.

S4810
Syntax

match ip address prefix-list-name
To delete a match, use the no match ip address prefix-list-name
command.

Access Control Lists (ACL)

273

Parameters

prefix-listname

Enter the name of configured prefix list, up to 140
characters.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip next-hop — redistributes routes that match the next-hop IP address.
match ip route-source — redistributes routes that match routes advertised by other
routers.
match metric — redistributes routes that match a specific metric.
match route-type — redistributes routes that match a route type.
match tag — redistributes routes that match a specific tag.

274

Access Control Lists (ACL)

match ip next-hop
To match based on the next-hop IP addresses specified in an IP access list or IP prefix list, configure a
filter.

S4810
Syntax

match ip next-hop {prefix-list prefix-list-name}
To delete a match, use the no match ip next-hop {prefix-list prefixlist-name} command.

Parameters

prefix-list
prefix-listname

Enter the keywords prefix-list and then enter the name
of configured prefix list, up 10 140 characters.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip address — redistributes routes that match an IP address.
match ip route-source — redistributes routes that match routes advertised by other
routers.
match metric — redistributes routes that match a specific metric.

Access Control Lists (ACL)

275

match route-type — redistributes routes that match a route type.
match tag — redistributes routes that match a specific tag.

match ip route-source
To match based on the routes advertised by routes specified in IP access lists or IP prefix lists, configure a
filter.

S4810
Syntax

match ip route-source {prefix-list prefix-list-name}
To delete a match, use the no match ip route-source {prefix-list
prefix-list-name} command.

Parameters

prefix-list
prefix-listname

Enter the keywords prefix-list and then enter the name
of configured prefix list, up to 140 characters.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names were up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip address — redistributes routes that match an IP address.

276

Access Control Lists (ACL)

match ip next-hop — redistributes routes that match the next-hop IP address.
match metric — redistributes routes that match a specific metric.
match route-type — redistributes routes that match a route type.
match tag — redistributes routes that match a specific tag.

match metric
To match on a specified value, configure a filter.

S4810
Syntax

match metric metric-value
To delete a value, use the no match metric [metric-value] command.

Parameters

metric-value

Enter a value to match. The range is from zero (0) to
4294967295.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip address — redistributes routes that match an IP address.
match ip next-hop — redistributes routes that match the next-hop IP address.

Access Control Lists (ACL)

277

match ip route-source — redistributes routes that match routes advertised by other
routers.
match route-type — redistributes routes that match a route type.
match tag — redistributes routes that match a specific tag.

match origin
To match routes based on the value found in the BGP path ORIGIN attribute, configure a filter.

S4810
Syntax

match origin {egp | igp | incomplete}
To disable matching filter, use the no match origin {igp | egp |
incomplete} command.

Parameters

egp

Enter the keyword egp to match routes originating outside
the AS.

igp

Enter the keyword igp to match routes originating within
the same AS.

incomplete

Enter the keyword incomplete to match routes with
incomplete routing information.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

278

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

pre-Version
6.1.1.0

Introduced on the E-Series.

Access Control Lists (ACL)

match route-type
To match routes based on the how the route is defined, configure a filter.

S4810
Syntax

match route-type {external [type-1 | type-2] | internal |
level-1 | level-2 | local}
To delete a match, use the no match route-type {local | internal |
external [type-1 | type-2] | level-1 | level-2} command.

Parameters

external
[type-1| type-2]

Enter the keyword external then either type-1 or type-2 to
match only on OSPF Type 1 routes or OSPF Type 2 routes.

internal

Enter the keyword internal to match only on routes
generated within OSPF areas.

level-1

Enter the keyword level-1 to match IS-IS Level 1 routes.

level-2

Enter the keyword level-2 to match IS-IS Level 2 routes.

local

Enter the keyword local to match only on routes generated
within the switch.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip address — redistributes routes that match an IP address.

Access Control Lists (ACL)

279

match ip next-hop — redistributes routes that match the next-hop IP address.
match ip route-source — redistributes routes that match routes advertised by other
routers.
match metric — redistributes routes that match a specific metric.
match tag — redistributes routes that match a specific tag.

match tag
To redistribute only routes that match a specified tag value, configure a filter.

S4810
Syntax

match tag tag-value
To remove a match, use the no match tag command.

Parameters

tag-value

Enter a value as the tag on which to match. The range is
from zero (0) to 4294967295.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match interface — redistributes routes that match the next-hop interface.
match ip address — redistributes routes that match an IP address.
match ip next-hop — redistributes routes that match the next-hop IP address.

280

Access Control Lists (ACL)

match ip route-source — redistributes routes that match routes advertised by other
routers.
match metric — redistributes routes that match a specific metric.
match route-type — redistributes routes that match a route type.

route-map
Enable a route map statement and configure its action and sequence number. This command also places
you in ROUTE-MAP mode.

S4810
Syntax

route-map map-name [permit | deny] [sequence-number]
To delete a route map, use the no route-map map-name [permit | deny]
[sequence-number] command.

Parameters

Defaults

map-name

Enter a text string of up to 140 characters to name the route
map for easy identification.

permit

(OPTIONAL) Enter the keyword permit to set the route map
default as permit. If you do not specify a keyword, the default
is permit.

deny

(OPTIONAL) Enter the keyword deny to set the route map
default as deny.

sequencenumber

(OPTIONAL) Enter a number to identify the route map for
editing and sequencing with other route maps. You are
prompted for a sequence number if there are multiple
instances of the route map. The range is from 1 to 65535.

Not configured.
If you do not define a keyword (permit or deny) for the route map, the permit
action is the default.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Access Control Lists (ACL)

281

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

Use caution when you delete route maps because if you do not specify a sequence
number, all route maps with the same map-name are deleted when you use the no
route-map map-name command.

Example

Dell(conf)#route-map dempsey
Dell(config-route-map)#

Related
Commands

show config — displays the current configuration.

set as-path
To modify the AS path for border gateway protocol (BGP) routes, configure a filter.

S4810
Syntax

set as-path prepend as-number [... as-number]
To remove an AS-Path setting, use the no set as-path {prepend as-number
| tag} command.

Parameters

prepend asnumber

Enter the keyword prepend and then enter up to eight AS
numbers to be inserted into the BGP path information. The
range is from 1 to 65535.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

282

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Access Control Lists (ACL)

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

You can prepend up to eight AS numbers to a BGP route.
This command influences best path selection in BGP by inserting a tag or AS
number into the AS_PATH attribute.

Related
Commands

match as-path — redistributes routes that match an AS-PATH attribute.

set automatic-tag
To automatically compute the tag value of the route, configure a filter.

S4810
Syntax

set automatic-tag
To return to the default, enter no set automatic-tag.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Access Control Lists (ACL)

283

pre-Version
6.1.1.0
Related
Commands

Introduced on the E-Series.

set level — specify the OSPF area for route redistribution.
set metric — specify the metric value assigned to redistributed routes.
set metric-type — specify the metric type assigned to redistributed routes.
set tag — specify the tag assigned to redistributed routes.

set comm-list delete
To remove the specified community list from the BGP route’s COMMUNITY attribute, configure a filter.

S4810
Syntax

set comm-list community-list-name delete
To insert the community list into the COMMUNITY attribute, use the no set
comm-list community-list-name delete command.

Parameters

communitylist-name

Enter the name of an established Community list, up to 140
characters.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

284

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Access Control Lists (ACL)

pre-Version
6.1.1.0
Usage
Information

Introduced on the E-Series.

The community list used in the set comm-list delete command must be
configured so that each filter contains only one community. For example, the filter
deny 100:12 is acceptable, but the filter deny 120:13 140:33 results in an
error.
If the set comm-list delete command and the set community command
are configured in the same route map sequence, the deletion command (set
comm-list delete) is processed before the insertion command (set
community).

Related
Commands

match community — redistributes routes that match the COMMUNITY attribute.
set community — specifies a COMMUNITY attribute.

set community
Allows you to assign a BGP COMMUNITY attribute.

S4810
Syntax

set community {community-number | local-as | no-advertise | noexport | none} [additive]
To delete a BGP COMMUNITY attribute assignment, use the no set community
{community-number | local-as | no-advertise | no-export | none}
command.

Parameters

communitynumber

Enter the community number in AA:NN format where AA is
the AS number (2 bytes) and NN is a value specific to that
autonomous system.

local-AS

Enter the keywords local-AS to drop all routes with the
COMMUNITY attribute of NO_EXPORT_SUBCONFED.
All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03)
community attribute must not be advertised to external BGP
peers.

no-advertise

Enter the keywords no-advertise to drop all routes
containing the well-known community attribute of
NO_ADVERTISE.
All routes with the NO_ADVERTISE (0xFFFFFF02) community
attribute must not be advertised to other BGP peers.

no-export

Access Control Lists (ACL)

Enter the keywords no-export to drop all routes containing
the well-known community attribute of NO_EXPORT.

285

All routes with the NO_EXPORT (0xFFFFFF01) community
attribute must not be advertised outside a BGP
confederation boundary.
none

Enter the keyword none to remove the community attribute
from routes meeting the route map criteria.

additive

(OPTIONAL) Enter the keyword additive to add the
communities to already existing communities.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

match community — redistributes routes that match the COMMUNITY attribute.
show ip bgp community — displays BGP community groups.

set level
To specify the IS-IS level or OSPF area to which matched routes are redistributed, configure a filter.

S4810
Syntax

set level {backbone | level-1 | level-1-2 | level-2 | stubarea}
To remove a set level condition, use the no set level {backbone | level-1
| level-1-2 | level-2 | stub-area} command.

286

Access Control Lists (ACL)

Parameters

backbone

Enter the keyword backbone to redistribute matched routes
to the OSPF backbone area (area 0.0.0.0).

level-1

Enter the keyword level-1 to redistribute matched routes
to IS-IS Level 1.

level-1-2

Enter the keyword level-1-2 to redistribute matched
routes to IS-IS Level 1 and Level 2.

level-2

Enter the keyword level-2 to redistribute matched routes
to IS-IS Level 2.

stub-area

Enter the keyword stub to redistributed matched routes to
OSPF stub areas.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Dell Networking OS Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set automatic-tag — computes the tag value of the route.
set metric — specifies the metric value assigned to redistributed routes.
set metric-type — specifies the metric type assigned to redistributed routes.
set tag — specifies the tag assigned to redistributed routes.

Access Control Lists (ACL)

287

set local-preference
To set the BGP LOCAL_PREF attribute for routers within the local autonomous system, configure a filter.

S4810
Syntax

set local-preference value
To delete a BGP LOCAL_PREF attribute, use the no set local-preference
command.

Parameters

value

Enter a number as the LOCAL_PREF attribute value. The
range is from 0 to 4294967295.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

The set local-preference command changes the LOCAL_PREF attribute for
routes meeting the route map criteria. To change the LOCAL_PREF for all routes,
use the bgp default local-preference command.

Related
Commands

bgp default local-preference — changes the default LOCAL_PREF attribute for all
routes.

288

Access Control Lists (ACL)

set metric
To assign a new metric to redistributed routes, configure a filter.

S4810
Syntax

set metric [+ | -] metric-value
To delete a setting, enter no set metric.

Parameters

+

(OPTIONAL) Enter + to add a metric-value to the
redistributed routes.

-

(OPTIONAL) Enter - to subtract a metric-value from the
redistributed routes.

metric-value

Enter a number as the new metric value. The range is from
zero (0) to 4294967295.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set automatic-tag — computes the tag value of the route.
set level — specifies the OSPF area for route redistribution.
set metric-type — specifies the route type assigned to redistributed routes.
set tag — specifies the tag assigned to redistributed routes.

Access Control Lists (ACL)

289

set metric-type
To assign a new route type for routes redistributed to OSPF, configure a filter.

S4810
Syntax

set metric-type {internal | external | type-1 | type-2}
To delete a setting, use the no set metric-type command.

Parameters

internal

Enter the keyword internal to assign the Interior Gateway
Protocol metric of the next hop as the route’s BGP
MULTI_EXIT_DES (MED) value.

external

Enter the keyword external to assign the IS-IS external
metric.

type-1

Enter the keyword type-1 to assign the OSPF Type 1 metric.

type-2

Enter the keyword type-2 to assign the OSPF Type 2 metric.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Implemented the keyword internal.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set automatic-tag — computes the tag value of the route.
set level — specifies the OSPF area for route redistribution.
set metric — specifies the metric value assigned to redistributed routes.

290

Access Control Lists (ACL)

set tag — specifies the tag assigned to redistributed routes.

set next-hop
To specify an IP address as the next hop, configure a filter.

S4810
Syntax

set next-hop ip-address
To delete the setting, use the no set next-hop ip-address command.

Parameters

ip-address

Specify an IP address in dotted decimal format.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

If you configure the set next-hop command, its configuration takes precedence
over the neighbor next-hop-self command in the ROUTER BGP mode.
If you configure the set next-hop command with the interface’s IP address
(either Loopback or physical), the software declares the route unreachable.

Related
Commands

match ip next-hop — redistributes routes that match the next-hop IP address.

Access Control Lists (ACL)

291

set origin
To manipulate the BGP ORIGIN attribute, configure a filter.

S4810
Syntax

set origin {igp | egp | incomplete}
To delete an ORIGIN attribute setting, use the no set origin command.

Parameters

egp

Enter the keyword egp to set routes originating from outside
the local AS.

igp

Enter the keyword igp to set routes originating within the
same AS.

incomplete

Enter the keyword incomplete to set routes with
incomplete routing information.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set tag
To specify a tag for redistributed routes, configure a filter.

S4810
Syntax

292

set tag tag-value

Access Control Lists (ACL)

To delete a setting, use the no set tag command.
Parameters

tag-value

Enter a number as the tag. The range is from zero (0) to
4294967295.

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

set automatic-tag — computes the tag value of the route.
set level — specifies the OSPF area for route redistribution.
set metric — specifies the metric value assigned to redistributed routes.
set metric-type — specifies the route type assigned to redistributed routes.

set weight
To add a non-RFC compliant attribute to the BGP route to assist with route selection, configure a filter.

S4810
Syntax

set weight weight
To delete a weight specification, use the no set weight weight command.

Parameters

weight

Access Control Lists (ACL)

Enter a number as the weight used by the route meeting the
route map specification. The range is from 0 to 65535. The
default is router-originated = 32768 and all other routes = 0.

293

When there are multiple routes to the same destination, the
routes with a higher weight are preferred.

Defaults

router-originated = 32768; all other routes = 0

Defaults

Not configured.

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

If you do not use the set weight command, router-originated paths have a
weight attribute of 32768 and all other paths have a weight attribute of zero.

show config
Display the current route map configuration.

S4810
Syntax

show config

Command
Modes

ROUTE-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

294

Introduced on the S6000.

Access Control Lists (ACL)

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell(config-route-map)#show config
!
route-map hopper permit 10
Dell(config-route-map)#

show route-map
Display the current route map configurations.

S4810
Syntax
Parameters

show route-map [map-name]
map-name

(OPTIONAL) Enter the name of a configured route map, up
to 140 characters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Access Control Lists (ACL)

295

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Example

Dell#show route-map
route-map firpo, permit, sequence 10
Match clauses:
Set clauses:
tag 34
Dell#

Related
Commands

route-map — configures a route map.

AS-Path Commands
The following commands configure AS-Path ACLs.

ip as-path access-list
Enter AS-PATH ACL mode and configure an access control list based on the BGP AS_PATH attribute.

S4810
Syntax
Parameters

ip as-path access-list as-path-name
as-path-name

Enter the access-list name, up to 140 characters.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

296

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

Access Control Lists (ACL)

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

To apply the AS-PATH ACL to BGP routes, use the match as-path or neighbor
filter-list commands.

Example

Dell(conf)#ip as-path access-list TestPath
Dell(config-as-path)#

Related
Commands

match as-path — matches on routes contain a specific AS-PATH.

show ip as-path-access-lists
Display the all AS-PATH access lists configured on the E-Series.

S4810
Syntax

show ip as-path-access-lists

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell#show ip as-path-access-lists
ip as-path access-list 1
permit ^$
permit ^\(.*\)$
deny .*
ip as-path access-list 91
permit ^$
deny .*
permit ^\(.*\)$
Dell#

Access Control Lists (ACL)

297

IP Community List Commands
IP community list commands are supported on the S4810 platform.

ip community-list
Enter COMMUNITY-LIST mode and create an IP community-list for BGP.

S4810
Syntax

ip community-list comm-list-name
To delete a community-list, use the no ip community-list comm-list-name
command.

Parameters

comm-listname

Enter a text string as the name of the community-list, up to
140 characters.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell(conf)#ip community-list TestComList
Dell(config-community-list)#

show ip community-lists
Display configured IP community lists in alphabetic order.

S4810
Syntax
Parameters

298

show ip community-lists [name]
name

(OPTIONAL) Enter the name of the standard or extended IP
community list, up to 140 characters.

Access Control Lists (ACL)

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Increased the name string to accept up to 140 characters.
Prior to 7.8.1.0, names are up to 16 characters long.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell#show ip community-lists
ip community-list standard 1
deny 701:20
deny 702:20
deny 703:20
deny 704:20
deny 705:20
deny 14551:20
deny 701:112
deny 702:112
deny 703:112
deny 704:112
deny 705:112
deny 14551:112
deny 701:666
deny 702:666
deny 703:666
deny 704:666
deny 705:666
deny 14551:666
Dell#

deny (for Standard IP ACLs)
To drop packets with a certain IP address, configure a filter.
Syntax

deny {source | any | host {ip-address}}[count [byte]] [dscp
value] [order] [fragments] [log [interval minutes] [thresholdin-msgs [count]] [monitor]
To remove this filter, you have two choices:

Access Control Lists (ACL)

299

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {source [mask] | any | host ip-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-STANDARD-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and

300

Access Control Lists (ACL)

egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

ip access-list standard — configures a standard ACL.
permit — configures a permit filter.

deny (for Extended IP ACLs)
Configure a filter that drops IP packets meeting the filter criteria.
Syntax

deny {ip | ip-protocol-number} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [count
[byte]] [dscp value] [order] [monitor] [fragments] [log
[interval minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {ip | ip-protocol-number} {source mask | any |
host ip-address} {destination mask | any | host ip-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

Access Control Lists (ACL)

301

Defaults

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

deny tcp — Assigns a filter to deny TCP packets.
deny udp — Assigns a filter to deny UDP packets.
ip access-list extended — Creates an extended ACL.

302

Access Control Lists (ACL)

seq (for Standard IPv4 ACLs)
Assign a sequence number to a deny or permit filter in an IP access list while creating the filter.
Syntax

seq sequence-number {deny | permit} {source [mask] | any | host
ip-address}} [count [bytes]] [dscp value] [order] [fragments]
[log [interval minutes] [threshold-in-msgs [count]] [monitor]
To delete a filter, use the no seq sequence-number command.

Parameters

Defaults

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-STANDARD-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.

Access Control Lists (ACL)

303

You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

deny — Configures a filter to drop packets.
permit — Configures a filter to forward packets.

deny tcp (for Extended IP ACLs)
Configure a filter that drops transmission control protocol (TCP) packets meeting the filter criteria.
Syntax

deny tcp {source mask | any | host ip-address} [bit] [operator
port [port]] {destination mask | any | host ip-address} [dscp]
[bit] [operator port [port]] [count [byte]] [order] [fragments]
[log [interval minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

304

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny tcp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

Access Control Lists (ACL)

Defaults

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.4(0.0)

Added the support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added the support for logging of ACLs on the S4810,
S4820T, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

deny — assigns a filter to deny IP traffic.
deny udp — assigns a filter to deny UDP traffic.

deny udp (for Extended IP ACLs)
To drop user datagram protocol (UDP) packets meeting the filter criteria, configure a filter.
Syntax

deny udp {source mask | any | host ip-address} [operator port
[port]] {destination mask | any | host ip-address} [dscp]

Access Control Lists (ACL)

305

[operator port [port]] [count [byte]] [order] [fragments] [log
[interval minutes] [threshold-in-msgs [count]]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny udp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.

Related
Commands

deny — assigns a filter to deny IP traffic.
deny tcp — assigns a filter to deny TCP traffic.

306

Access Control Lists (ACL)

deny arp (for Extended MAC ACLs)
Configure an egress filter that drops ARP packets on egress ACL supported line cards. (For more
information, refer to your line card documentation).
Syntax

deny arp {destination-mac-address mac-address-mask | any} vlan
vlan-id {ip-address | any | opcode code-number} [count [byte]]
[order] [log [interval minutes] [threshold-in-msgs [count]]
[monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny arp {destination-mac-address mac-address-mask
| any} vlan vlan-id {ip-address | any | opcode code-number}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that

Access Control Lists (ACL)

307

new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

deny icmp (for Extended IP ACLs)
To drop all or specific internet control message protocol (ICMP) messages, configure a filter.
NOTE: Only the options that have been newly introduced in Release 9.3(0.0) and Release 9.4(0.0)
are described here. For a complete description on all of the keywords and variables that are
available with this command, refer the topic of this command discussed earlier in this guide.
Syntax

deny icmp {source mask | any | host ip-address} {destination
mask | any | host ip-address} [dscp] [message-type] [count
[byte]] [order] [fragments] [log [interval minutes] [thresholdin-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

308

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny icmp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

Access Control Lists (ACL)

Defaults

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Access Control Lists (ACL)

309

deny ether-type (for Extended MAC ACLs)
Configure an egress filter that drops specified types of Ethernet packets on egress ACL supported line
cards. (For more information, refer to your line card documentation).
Syntax

deny ether-type protocol-type-number {destination-mac-address
mac-address-mask | any} vlan vlan-id {source-mac-address macaddress-mask | any} [count [byte]] [order] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny ether-type protocol-type-number {destinationmac-address mac-address-mask | any} vlan vlan-id {sourcemac-address mac-address-mask | any} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

310

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that

Access Control Lists (ACL)

new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

deny (for Standard MAC ACLs)
To drop packets with a the MAC address specified, configure a filter.
Syntax

deny {any | mac-source-address [mac-source-address-mask]}
[count [byte]] [log [interval minutes] [threshold-in-msgs
[count]][monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {any | mac-source-address mac-source-addressmask} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The threshold range is from 1 to 10 minutes.

Access Control Lists (ACL)

311

monitor

Defaults

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-MAC ACCESS LIST-STANDARD

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.

You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

permit — configures a MAC address filter to pass packets.
seq — configures a MAC address filter with a specified sequence number.

312

Access Control Lists (ACL)

deny (for Extended MAC ACLs)
To drop packets that match the filter criteria, configure a filter.
Syntax

deny {any | host mac-address | mac-source-address mac-sourceaddress-mask} {any | host mac-address | mac-destination-address
mac-destination-address-mask} [ethertype-operator] [count
[byte]][log [interval minutes] [threshold-in-msgs [count]]
[monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {any | host mac-address | mac-source-address
mac-source-address-mask} {any | host mac-address | macdestination-address mac-destination-address-mask} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-MAC ACCESS LIST-EXTENDED

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that

Access Control Lists (ACL)

313

new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

permit — configures a MAC address filter to pass packets.
seq — configures a MAC address filter with a specified sequence number.

permit (for Standard IP ACLs)
To permit packets from a specific source IP address to leave the switch, configure a filter.
Syntax

permit {source [mask]| any | host ip-address} [count [byte]]
[dscp value] [order] [fragments] [log [interval minutes]
[threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

314

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit {source [mask] | any | host ip-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

Access Control Lists (ACL)

Defaults

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The threshold range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-STANDARD-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering
theflow-based enable command in the Monitor Session mode. When you
enable this capability, traffic with particular flows that are traversing through the
ingress and egress interfaces are examined and, appropriate ACLs can be applied in
both the ingress and egress direction. Flow-based monitoring conserves
bandwidth by monitoring only specified traffic instead all traffic on the interface.
This feature is particularly useful when looking for malicious traffic. It is available for
Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using
standard or extended access-lists. This mechanism copies all incoming or outgoing
packets on one port and forwards (mirrors) them to another port. The source port
is the monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

deny — Assigns a IP ACL filter to deny IP packets.
ip access-list standard — Creates a standard ACL.

Access Control Lists (ACL)

315

permit arp (for Extended MAC ACLs)
Configure a filter that forwards ARP packets meeting this criteria. This command is supported only on 12port GE line cards with SFP optics; refer to your line card documentation for specifications.
Syntax

permit arp {destination-mac-address mac-address-mask | any}
vlan vlan-id {ip-address | any | opcode code-number} [count
[byte]] [order] [fragments] [log [interval minutes] [thresholdin-msgs [count]][monitor]
To remove this filter, you have two choices:
•
•

Parameters

Defaults

Use the no seq sequence-number command if you know the filter’s
sequence number.
Use the {destination-mac-address mac-address-mask | any} vlan
vlan-id {ip-address | any | opcode code-number} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

316

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.

Access Control Lists (ACL)

If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

permit ether-type (for Extended MAC ACLs)
Configure a filter that allows traffic with specified types of Ethernet packets. This command is supported
only on 12-port GE line cards with SFP optics. For specifications, refer to your line card documentation.
Syntax

permit ether-type protocol-type-number {destination-mac-address
mac-address-mask | any} vlan vlan-id {source-mac-address macaddress-mask | any} [count [byte]] [order] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit ether-type protocol-type-number
{destination-mac-address mac-address-mask | any} vlan vlanid {source-mac-address mac-address-mask | any} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL

Access Control Lists (ACL)

317

in which you are creating the rule is applied to the monitored
interface.
Defaults

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

permit icmp (for Extended IP ACLs)
Configure a filter to allow all or specific ICMP messages.
Syntax

permit icmp {source mask | any | host ip-address} {destination
mask | any | host ip-address} [dscp] [message-type] [count
[byte]] [order] [fragments] [log [interval minutes] [thresholdin-msgs [count]] [monitor]
To remove this filter, you have two choices:

318

Access Control Lists (ACL)

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit icmp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-STANDARD-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering
theflow-based enable command in the Monitor Session mode. When you
enable this capability, traffic with particular flows that are traversing through the

Access Control Lists (ACL)

319

ingress and egress interfaces are examined and, appropriate ACLs can be applied in
both the ingress and egress direction. Flow-based monitoring conserves
bandwidth by monitoring only specified traffic instead all traffic on the interface.
This feature is particularly useful when looking for malicious traffic. It is available for
Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using
standard or extended access-lists. This mechanism copies all incoming or outgoing
packets on one port and forwards (mirrors) them to another port. The source port
is the monitored port (MD) and the destination port is the monitoring port (MG).

permit udp (for Extended IP ACLs)
To pass UDP packets meeting the filter criteria, configure a filter.
Syntax

permit udp {source mask | any | host ip-address} [operator port
[port]] {destination mask | any | host ip-address} [dscp]
[operator port [port]] [count [byte]] [order] [fragments] [log
[interval minutes] [threshold-in-msgs [count]][monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit udp {source mask | any | host ip-address}
{destination mask | any | host ip-address command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

320

Access Control Lists (ACL)

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3.0.0

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

ip access-list extended — creates an extended ACL.
permit — assigns a permit filter for IP packets.
permit tcp — assigns a permit filter for TCP packets.

permit (for Extended IP ACLs)
To pass IP packets meeting the filter criteria, configure a filter.
Syntax

permit {source mask | any | host ip-address} {destination mask
| any | host ip-address} [count [bytes]] [dscp value] [order]
[fragments] [log [interval minutes] [threshold-in-msgs [count]]
[monitor]
To remove this filter, you have two choices:

Access Control Lists (ACL)

321

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no deny {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.4(0.0)

Added the support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added the support for logging of ACLs on the S4810,
S4820T, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, standard and extended IPv6 ACLs, and standard
and extended MAC ACLs. You can configure ACL logging only on ACLs that are
applied to ingress interfaces; you cannot enable logging for ACLs that are
associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering
theflow-based enable command in the Monitor Session mode. When you

322

Access Control Lists (ACL)

enable this capability, traffic with particular flows that are traversing through the
ingress and egress interfaces are examined and, appropriate ACLs can be applied in
both the ingress and egress direction. Flow-based monitoring conserves
bandwidth by monitoring only specified traffic instead all traffic on the interface.
This feature is particularly useful when looking for malicious traffic. It is available for
Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using
standard or extended access-lists. This mechanism copies all incoming or outgoing
packets on one port and forwards (mirrors) them to another port. The source port
is the monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

ip access-list extended — creates an extended ACL.
permit tcp — assigns a permit filter for TCP packets.
permit udp — assigns a permit filter for UDP packets.

permit (for Standard MAC ACLs)
To forward packets from a specific source MAC address, configure a filter.
Syntax

permit {any | mac-source-address [mac-source-address-mask]}
[count [byte]] | [log [interval minutes] [threshold-in-msgs
[count]] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit {any | mac-source-address mac-sourceaddress-mask} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

Access Control Lists (ACL)

323

Defaults

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is 5 minutes. By default,
flow-based monitoring is not enabled.

Command
History

Usage
Information

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

deny — configures a MAC ACL filter to drop packets.
seq —configure a MAC ACL filter with a specified sequence number.

seq (for Standard MAC ACLs)
To a deny or permit filter in a MAC access list while creating the filter, assign a sequence number.
Syntax

seq sequence-number {deny | permit} {any | mac-source-address
[mac-source-address-mask]} [count [byte]] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, use the no seq sequence-number command.

324

Access Control Lists (ACL)

Parameters

Defaults

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-MAC ACCESS LIST-STANDARD

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on

Access Control Lists (ACL)

325

one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

deny — configures a filter to drop packets.
permit — configures a filter to forward packets.

permit tcp (for Extended IP ACLs)
To pass TCP packets meeting the filter criteria, configure a filter.
Syntax

permit tcp {source mask | any | host ip-address} [bit]
[operator port [port]] {destination mask | any | host ipaddress} [bit] [dscp] [operator port [port]] [count [byte]]
[order] [fragments] [log [interval minutes] [threshold-in-msgs
[count]] [monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit tcp {source mask | any | host ip-address}
{destination mask | any | host ip-address} command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes

326

CONFIGURATION-EXTENDED-ACCESS-LIST

Access Control Lists (ACL)

Command
History

Usage
Information

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

ip access-list extended — creates an extended ACL.
permit — assigns a permit filter for IP packets.
permit udp — assigns a permit filter for UDP packets.

seq arp (for Extended MAC ACLs)
Configure an egress filter with a sequence number that filters ARP packets meeting this criteria. This
command is supported only on 12-port GE line cards with SFP optics. For specifications, refer to your line
card documentation.
NOTE: Only the options that have been newly introduced in Release 9.3(0.0) and Release 9.4(0.0)
are described here. For a complete description on all of the keywords and variables that are
available with this command, refer the topic of this command discussed earlier in this guide.
Syntax

seq sequence-number {deny | permit} arp {destination-macaddress mac-address-mask | any} vlan vlan-id {ip-address | any

Access Control Lists (ACL)

327

| opcode code-number} [count [byte]] [order] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, use the no seq sequence-number command.
Parameters

Defaults

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. You can enter a threshold in the range of 1-100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
You can enter an interval in the range of 1-10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is 5 minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3.0.0

Added support for logging of ACLs on the S4810, S4820T,
Z9000, and MXL 10/40GbE Switch IO Module platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, Z9000, and MXL 10/40GbE Switch IO
Module platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is reenabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is
reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, standard and extended IPv6 ACLs, and standard
and extended MAC ACLs. You can configure ACL logging only on ACLs that are
applied to ingress interfaces; you cannot enable logging for ACLs that are
associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and

328

Access Control Lists (ACL)

egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

seq ether-type (for Extended MAC ACLs)
Configure an egress filter with a specific sequence number that filters traffic with specified types of
Ethernet packets. This command is supported only on 12-port GE line cards with SFP optics. For
specifications, refer to your line card documentation.
NOTE: Only the options that have been newly introduced in Release 9.3(0.0) and Release 9.4(0.0)
are described here. For a complete description on all of the keywords and variables that are
available with this command, refer the topic of this command discussed earlier in this guide.
Syntax

seq sequence-number {deny | permit} ether-type protocol-typenumber {destination-mac-address mac-address-mask | any} vlan
vlan-id {source-mac-address mac-address-mask | any} [count
[byte]] [order] [log [interval minutes] [threshold-in-msgs
[count]] [monitor]
To remove this filter, use the no seq sequence-number command.

Parameters

Defaults

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. You can enter a threshold in the range of 1-100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
You can enter an interval in the range of 1-10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is 5 minutes. By default,
flow-based monitoring is not enabled.

Access Control Lists (ACL)

329

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.3.0.0

Added support for logging of ACLs on the S4810, S4820T,
Z9000, and MXL 10/40GbE Switch IO Module platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, Z9000, and MXL 10/40GbE Switch IO
Module platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is reenabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is
reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, standard and extended IPv6 ACLs, and standard
and extended MAC ACLs. You can configure ACL logging only on ACLs that are
applied to ingress interfaces; you cannot enable logging for ACLs that are
associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

seq (for IP ACLs)
Assign a sequence number to a deny or permit filter in an extended IP access list while creating the filter.
Syntax

Parameters

330

seq sequence-number {deny | permit} {ip-protocol-number | icmp
| ip | tcp | udp} {source mask | any | host ip-address}
{destination mask | any | host ip-address} [operator port
[port]] [count [byte]] [dscp value] [order] [fragments] [log
[interval minutes] [threshold-in-msgs [count]] [monitor]
log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

Access Control Lists (ACL)

Defaults

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100..

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

CONFIGURATION-EXTENDED-ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Access Control Lists (ACL)

331

Related
Commands

deny — configures a filter to drop packets.
permit — configures a filter to forward packets.

seq (for IPv6 ACLs)
Assign a sequence number to a deny or permit the filter in an IPv6 access list while creating the filter.
Syntax

seq sequence-number {deny | permit} {ipv6-protocol-number |
icmp | ip | tcp | udp} {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
[operator port [port]] [count [byte]] [log [interval minutes]
[threshold-in-msgs [count]] [monitor]
To delete a filter, use the no seq sequence-number command.

Parameters

Defaults

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminate with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

332

ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Access Control Lists (ACL)

Usage
Information

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

permit – configures a filter to forward packets.

permit udp (for IPv6 ACLs)
Configure a filter to pass UDP packets meeting the filter criteria.
Syntax

permit udp {source address mask | any | host ipv6-address}
[operator port [port]] {destination address | any | host ipv6address} [operator port [port]] [count [byte]] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit udp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation

Access Control Lists (ACL)

333

of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

Defaults

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.3.0.0

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Related
Commands

334

permit – assigns a permit filter for IP packets.

Access Control Lists (ACL)

permit tcp (for IPv6 ACLs)
Configure a filter to pass TCP packets that match the filter criteria.
Syntax

permit tcp {source address mask | any | host ipv6-address}
[operator port [port]] {destination address | any | host ipv6address} [bit] [operator port [port]] [count [byte]] [log
[interval minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit tcp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is 5 minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.

Access Control Lists (ACL)

335

If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable
this capability, traffic with particular flows that are traversing through the ingress
and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands

permit – assigns a permit filter for IP packets.

permit icmp (for IPv6 ACLs)
To allow all or specific internet control message protocol (ICMP) messages, configure a filter.
Syntax

permit icmp {source address mask | any | host ipv6-address}
{destination address | any | host ipv6-address} [message-type]
[count [byte]] [log [interval minutes] [threshold-in-msgs
[count]] [monitor]
To remove this filter, you have two choices:

Parameters

336

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit icmp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command.

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

Access Control Lists (ACL)

monitor

Defaults

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering
theflow-based enable command in the Monitor Session mode. When you
enable this capability, traffic with particular flows that are traversing through the
ingress and egress interfaces are examined and, appropriate ACLs can be applied in
both the ingress and egress direction. Flow-based monitoring conserves
bandwidth by monitoring only specified traffic instead all traffic on the interface.
This feature is particularly useful when looking for malicious traffic. It is available for
Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using
standard or extended access-lists. This mechanism copies all incoming or outgoing
packets on one port and forwards (mirrors) them to another port. The source port
is the monitored port (MD) and the destination port is the monitoring port (MG).

permit (for IPv6 ACLs)
To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or
UDP.
Syntax

permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp} [count
[byte]] [dscp value] [order] [fragments] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]

Access Control Lists (ACL)

337

To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command syntax if you know the filter’s
sequence number

•

Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp |
udp} command

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering
theflow-based enable command in the Monitor Session mode. When you
enable this capability, traffic with particular flows that are traversing through the

338

Access Control Lists (ACL)

ingress and egress interfaces are examined and, appropriate ACLs can be applied in
both the ingress and egress direction. Flow-based monitoring conserves
bandwidth by monitoring only specified traffic instead all traffic on the interface.
This feature is particularly useful when looking for malicious traffic. It is available for
Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using
standard or extended access-lists. This mechanism copies all incoming or outgoing
packets on one port and forwards (mirrors) them to another port. The source port
is the monitored port (MD) and the destination port is the monitoring port (MG).

deny udp (for IPv6 ACLs)
Configure a filter to drop user datagram protocol (UDP) packets meeting the filter criteria.
Syntax

deny udp {source address mask | any | host ipv6-address}
[operator port [port]] {destination address | any | host ipv6address} [operator port [port]] [count [byte]] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command syntax if you know the filter’s
sequence number

•

Use the no deny udp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The threshold range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes

ACCESS-LIST

Access Control Lists (ACL)

339

Command
History

Usage
Information

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, Z9000, and MXL 10/40GbE Switch IO
Module platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
Z9000, and MXL 10/40GbE Switch IO Module platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs.
You can configure ACL logging only on ACLs that are applied to ingress interfaces;
you cannot enable logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

deny tcp (for IPv6 ACLs)
Configure a filter that drops TCP packets that match the filter criteria.
Syntax

deny tcp {source address mask | any | host ipv6-address}
[operator port [port]] {destination address | any | host ipv6address} [bit] [operator port [port]] [count [byte]] [log
[interval minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:
•

340

Use the no seq sequence-number command syntax if you know the filter’s
sequence number

Access Control Lists (ACL)

•

Parameters

Defaults

Use the no deny tcp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100..

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by

Access Control Lists (ACL)

341

monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

deny icmp (for Extended IPv6 ACLs)
Configure a filter to drop all or specific ICMP messages.
NOTE: Only the options that have been newly introduced in Release 9.3(0.0) and Release 9.4(0.0)
are described here. For a complete description on all of the keywords and variables that are
available with this command, refer the topic of this command discussed earlier in this guide.
Syntax

deny icmp {source address mask | any | host ipv6-address}
{destination address | any | host ipv6-address} [message-type]
[count [byte]] | [log [interval minutes] [threshold-in-msgs
[count]] [monitor]
To remove this filter, you have two choices:

Parameters

Defaults

•

Use the no seq sequence-number command syntax if you know the filter’s
sequence number

•

Use the no deny icmp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command

log

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. You can enter a threshold in the range of 1-100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
You can enter an interval in the range of 1-10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is 5 minutes. By default,
flow-based monitoring is not enabled.

342

Access Control Lists (ACL)

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.3.0.0

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on
one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

deny (for IPv6 ACLs)
Configure a filter that drops IPv6 packets that match the filter criteria.
Syntax

deny {ipv6-protocol-number | icmp | ipv6 | tcp | udp} [count
[byte]] [dscp value] [order] [fragments] [log [interval
minutes] [threshold-in-msgs [count]] [monitor]
To remove this filter, you have two choices:
•
•

Parameters

Use the no seq sequence-number command syntax if you know the filter’s
sequence number
Use the no deny {ipv6-protocol-number | icmp | ipv6 | tcp |
udp} command

log

Access Control Lists (ACL)

(OPTIONAL) Enter the keyword log to enable the triggering
of ACL log messages.

343

Defaults

threshold-in
msgs count

(OPTIONAL) Enter the threshold-in-msgs keyword
followed by a value to indicate the maximum number of ACL
logs that can be generated, exceeding which the generation
of ACL logs is terminated. with the seq, permit, or deny
commands. The threshold range is from 1 to 100.

interval
minutes

(OPTIONAL) Enter the keyword interval followed by the
time period in minutes at which ACL logs must be generated.
The time interval range is from 1 to 10 minutes.

monitor

(OPTIONAL) Enter the keyword monitor when the rule is
describing the traffic that you want to monitor and the ACL
in which you are creating the rule is applied to the monitored
interface.

By default, 10 ACL logs are generated if you do not specify the threshold explicitly.
The default frequency at which ACL logs are generated is five minutes. By default,
flow-based monitoring is not enabled.

Command
Modes
Command
History

Usage
Information

ACCESS-LIST

Version 9.3(0.0)

Added support for logging of ACLs on the S4810, S4820T,
and Z9000 platforms.

Version 9.4(0.0)

Added support for flow-based monitoring on the S4810,
S4820T, S6000, and Z9000 platforms.

When the configured maximum threshold is exceeded, generation of logs is
stopped. When the interval at which ACL logs are configured to be recorded
expires, the subsequent, fresh interval timer is started and the packet count for that
new interval commences from zero. If ACL logging was stopped previously
because the configured threshold is exceeded, it is re-enabled for this new interval.
If ACL logging is stopped because the configured threshold is exceeded, it is reenabled after the logging interval period elapses. ACL logging is supported for
standard and extended IPv4 ACLs, IPv6 ACLs, and MAC ACLs. You can configure
ACL logging only on ACLs that are applied to ingress interfaces; you cannot enable
logging for ACLs that are associated with egress interfaces.
You can activate flow-based monitoring for a monitoring session by entering the
flow-based enable command in the Monitor Session mode. When you enable this
capability, traffic with particular flows that are traversing through the ingress and
egress interfaces are examined and, appropriate ACLs can be applied in both the
ingress and egress direction. Flow-based monitoring conserves bandwidth by
monitoring only specified traffic instead all traffic on the interface. This feature is
particularly useful when looking for malicious traffic. It is available for Layer 2 and
Layer 3 ingress and egress traffic. You may specify traffic using standard or
extended access-lists. This mechanism copies all incoming or outgoing packets on

344

Access Control Lists (ACL)

one port and forwards (mirrors) them to another port. The source port is the
monitored port (MD) and the destination port is the monitoring port (MG).

Access Control Lists (ACL)

345

8

Access Control List (ACL) VLAN Groups
and Content Addressable Memory (CAM)

This chapter describes the access control list (ACL) VLAN group and content addressable memory (CAM)
enhancements.

member vlan
Add VLAN members to an ACL VLAN group.
Syntax
Parameters

member vlan {VLAN-range}
VLAN-range

Enter the member VLANs using comma-separated VLAN IDs,
a range of VLAN IDs, a single VLAN ID, or a combination. For
example:
Comma-separated: 3, 4, 6
Range: 5-10
Combination: 3, 4, 5-10, 8

Default

None

Command
Modes

CONFIGURATION (conf-acl-vl-grp)

Command
History

Usage
Information

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, and Z9000 platforms.

At a maximum, there can be only 32 VLAN members in all ACL VLAN groups. A
VLAN can belong to only one group at any given time.
You can create an ACL VLAN group and attach the ACL with the VLAN members.
The optimization is applicable only when you create an ACL VLAN group. If you
apply an ACL separately on the VLAN interface, each ACL has a mapping with the
VLAN and increased CAM space utilization occurs.
Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACLVLAN mapping storage in CAM prior to the implementation of the ACL VLAN group
functionality.

346

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

ip access-group
Apply an egress IP ACL to the ACL VLAN group.
Syntax
Parameters

ip access-group {group name} out implicit-permit
group-name

Enter the name of the ACL VLAN group where you want the
egress IP ACLs applied, up to 140 characters.

out

Enter the keyword out to apply the ACL to outgoing traffic.

implicit-permit

Enter the keyword implicit-permit to change the default
action of the ACL from implicit-deny to implicit-permit (that
is, if the traffic does not match the filters in the ACL, the
traffic is permitted instead of dropped).

Default

None

Command
Modes

CONFIGURATION (conf-acl-vl-grp)

Command
History

Usage
Information

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, and Z9000 platforms.

You can apply only an egress IP ACL on an ACL VLAN group.

show acl-vlan-group
Display all the ACL VLAN groups or display a specific ACL VLAN group, identified by name.
Syntax
Parameters

show acl-vlan-group {group-name | detail}
group-name

(Optional) Display only the ACL VLAN group that is specified,
up to 140 characters.

detail

Display information in a line-by-line format to display the
names in their entirety.
Without the detail option, the output displays in a table style
and information may be truncated.

Default

No default behavior or values

Command
Modes

EXEC
EXEC Privilege

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

347

Command
History

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, Z9000 and MXL platforms

Usage
Information

When an ACL-VLAN-Group name or the Access List Group Name contains more
than 30 characters, the name is truncated in the show acl-vlan-group
command output.

Examples

The following sample illustrates the output of the show acl-vlan-group
command.
NOTE: Some group names and some access list names are truncated.
Dell#show acl-vlan-group
Group Name
Members
TestGroupSeventeenTwenty
100,200,300
CustomerNumberIdentifica
HostGroup

Egress IP Acl

Vlan

SpecialAccessOnlyExperts
AnyEmployeeCustomerEleve
Group5

2-10,99
1,1000

Dell#
The following sample output is displayed when using the show acl-vlan-group
group-name option.
NOTE: The access list name is truncated.
Dell#show acl-vlan-group TestGroupSeventeenTwenty
Group Name
Egress IP Acl
Members
TestGroupSeventeenTwenty
SpecialAccessOnlyExperts
100,200,300

Vlan

Dell#
The following sample output shows the line-by-line style display when using the
show acl-vlan-group detail option.
NOTE: No group or access list names are truncated
Dell#show acl-vlan-group detail
Group Name :
TestGroupSeventeenTwenty
Egress IP Acl :
SpecialAccessOnlyExpertsAllowed
Vlan Members :
100,200,300
Group Name :
CustomerNumberIdentificationEleven
Egress IP Acl :
AnyEmployeeCustomerElevenGrantedAccess
Vlan Members :
2-10,99
Group Name :
HostGroup
Egress IP Acl :

348

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

Group5
Vlan Members :
1,1000
Dell#

show cam-acl-vlan
Display the number of flow processor (FP) blocks that is allocated for the different VLAN services.
Syntax

show cam-acl-vlan

Command
Modes

EXEC Privilege

Command
History

Usage
Information

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, Z9000 and MXL
platforms.

After CAM configuration for ACL VLAN groups is performed, you must reboot the
system to enable the settings to be stored in nonvolatile storage. During the
initialization of CAM, the chassis manager reads the NVRAM and allocates the
dynamic VCAP regions.
The following table describes the output fields of this show command:
Field

Description

Chassis Vlan Cam ACL

Details about the CAM blocks allocated
for ACLs for various VLAN operations at
a system-wide, global level.

Stack Unit 

Details about the CAM blocks allocated
for ACLs for various VLAN operations
for a particular stack unit.

Current Settings(in block sizes)

Information about the number of FP
blocks that are currently in use or
allocated.

VlanOpenFlow

Number of FP blocks for VLAN open
flow operations.

VlanIscsi

Number of FP blocks for VLAN internet
small computer system interface
(iSCSI) counters.

VlanHp

Number of FP blocks for VLAN high
performance processes.

VlanFcoe

Number of FP blocks for VLAN Fiber
Channel over Ethernet (FCoE)
operations.

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

349

Example

Field

Description

VlanAclOpt

Number of FP blocks for ACL VLAN
optimzation feature.

Dell#show cam-acl-vlan
-- Chassis Vlan Cam ACL -Current Settings(in block sizes)
VlanOpenFlow :
0
VlanIscsi
:
2
VlanHp
:
1
VlanFcoe
:
1
VlanAclOpt :
0
-- Stack unit 0 -Current Settings(in block sizes)
VlanOpenFlow :
0
VlanIscsi
:
2
VlanHp
:
1
VlanFcoe
:
1
VlanAclOpt :
0

cam-acl-vlan
Allocate the number of flow processor (FP) blocks or entries for VLAN services and processes.
Syntax
Parameters

cam-acl-vlan { default | vlanopenflow <0-2> | vlaniscsi <0-2> |
vlanaclopt <0-2>
default

Reset the number of FP blocks to default. By default, 0
groups are allocated for the ACL in VCAP. ACL VLAN groups
or CAM optimization is not enabled by default, and you need
to allocate the slices for CAM optimization.

vlanopenflow
<0-2>

Allocate the number of FP blocks for VLAN open flow
operations.

vlaniscsi <0-2>

Allocate the number of FP blocks for VLAN iSCSI counters.

vlanaclopt
<0-2>

Allocate the number of FP blocks for the ACL VLAN
optimization feature.

Default

If you use the default keyword with the cam-acl-vlan command, the FP blocks
allocated for VLAN processes are restored to their default values. No FP blocks or
dynamic VLAN Content Aware Processor (VCAP) groups are allocated for VLAN
operations by default.

Command
Modes

CONFIGURATION

350

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810 and Z9000 platforms.

The VLAN ContentAware Processor (VCAP) application is a pre-ingress CAP that
modifies the VLAN settings before packets are forwarded. To support the ACL CAM
optimization functionality, the CAM carving feature is enhanced. A total of four
VACP groups are present, of which two are for fixed groups and the other two are
for dynamic groups. Out of the total of two dynamic groups, you can allocate zero,
one, or two flow processor (FP) blocks to iSCSI Counters, OpenFlow and ACL
Optimization. You can configure only two of these features at a point in time.

show cam-usage
View the amount of CAM space available, used, and remaining in each partition (including IPv4Flow and
Layer 2 ACL sub-partitions).
Syntax
Parameters

Command
Modes
Command
History

Usage
Information

show cam-usage [acl | router | switch]
acl

(OPTIONAL) Enter the keyword acl to display Layer 2 and
Layer 3 ACL CAM usage.

router

(OPTIONAL) Enter the keyword router to display Layer 3
CAM usage.

switch

(OPTIONAL) Enter the keyword switch to display Layer 2
CAM usage.

EXEC
EXEC Privilege
Version 9.3.
(0.0)

Introduced on the S4810, S4820T, Z9000 and MXL
platforms.

The following regions must be provided in the show cam-usage output:
•

L3AclCam

•

L2AclCam

•

V6AclCam

The following table describes the output fields of this show command:

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

351

Example 1:
Output of the
show camusage
Command

352

Field

Description

LineCard

Number of the line card that contains
information on ACL VLAN groups

Portpipe

The hardware path that packets follow
through a system for ACL optimization

CAM-Region

Type of area in the CAM block that is
used for ACL VLAN groups

Total CAM space

Total amount of space in the CAM
block

Used CAM

Amount of CAM space that is currently
in use

Available CAM

Amount of CAM space that is free and
remaining to be allocated for ACLs

Dell#show cam-usage
Linecard|Portpipe| CAM Partition
| Total CAM
|
|Available CAM
========|========|=================|=============|
=============|==============
1
|
0
| IN-L2 ACL
|
1008
|
|
688
|
| IN-L2 FIB
|
32768
|
|
31636
|
| IN-L3 ACL
|
12288
|
|
12286
|
| IN-L3 FIB
|
262141
|
|
262127
|
| IN-L3-SysFlow
|
2878
|
|
2833
|
| IN-L3-TrcList
|
1024
|
|
1024
|
| IN-L3-McastFib |
9215
|
|
9215
|
| IN-L3-Qos
|
8192
|
|
8192
|
| IN-L3-PBR
|
1024
|
|
1024
|
| IN-V6 ACL
|
0
|
|
0
|
| IN-V6 FIB
|
0
|
|
0
|
| IN-V6-SysFlow
|
0
|
|
0
|
| IN-V6-McastFib |
0
|
|
0
|
| OUT-L2 ACL
|
1024
|
|
1024
|
| OUT-L3 ACL
|
1024
|
|
1024
|
| OUT-V6 ACL
|
0
|
|
0
1
|
1
| IN-L2 ACL
|
320
|
|
320
|
| IN-L2 FIB
|
32768
|
|
31632
|
| IN-L3 ACL
|
12288
|

Used CAM

320
1132
2
14
45
0
0
0
0
0
0
0
0
0
0
0
0
1136
2

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

|

12286
|
|
262127
|
|
2834
--More--

| IN-L3 FIB

|

262141

|

14

| IN-L3-SysFlow

|

2878

|

44

Example 2:
Output of the
show camusage acl
Command

Dell#show cam-usage acl
Linecard|Portpipe| CAM Partition
| Total CAM
|
|Available CAM
========|========|=================|=============|
=============|============
11
|
0
| IN-L2 ACL
|
1008
|
0
|
1008
|
| IN-L3 ACL
|
12288
|
2
|
12286
|
| OUT-L2 ACL
|
1024
|
2
|
1022
|
| OUT-L3 ACL
|
1024
|
0
|
1024

Example 3:
Output of the
show camusage router
Command

Dell#show cam-usage router
Linecard|Portpipe| CAM Partition
| Total CAM
|
|Available CAM
========|========|=================|=============|
=============|==============
11
|
0
| IN-L3 ACL
|
8192
|
|
8189
|
| IN-L3 FIB
|
196607
|
|
196606
|
| IN-L3-SysFlow
|
2878
|
|
2878
|
| IN-L3-TrcList
|
1024
|
|
1024
|
| IN-L3-McastFib |
9215
|
|
9215
|
| IN-L3-Qos
|
8192
|
|
8192
|
| IN-L3-PBR
|
1024
|
|
1024
|
| OUT-L3 ACL
|
16384
|
|
16384
11
|
1
| IN-L3 ACL
|
8192
|
|
8189
|
| IN-L3 FIB
|
196607
|
|
196606
|
| IN-L3-SysFlow
|
2878
|
|
2878
|
| IN-L3-TrcList
|
1024
|
|
1024
|
| IN-L3-McastFib |
9215
|
|
9215
|
| IN-L3-Qos
|
8192
|
|
8192
|
| IN-L3-PBR
|
1024
|
|
1024
|
| OUT-L3 ACL
|
16384
|
|
16384

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

Used CAM

Used CAM

3
1
0
0
0
0
0
0
3
1
0
0
0
0
0
0

353

Example 4:
Output of the
show camusage switch
Command

Dell#show cam-usage switch
Linecard|Portpipe| CAM Partition
| Total CAM
|
|Available CAM
========|========|=================|=============|
=============|==============
11
|
0
| IN-L2 ACL
|
7152
|
|
7152
|
| IN-L2 FIB
|
32768
|
|
31687
|
| OUT-L2 ACL
|
0
|
|
0
11
|
1
| IN-L2 ACL
|
7152
|
|
7152
|
| IN-L2 FIB
|
32768
|
|
31687
|
| OUT-L2 ACL
|
0
|
|
0

Used CAM

0
1081
0
0
1081
0

show running config acl-vlan-group
Display the running configuration of all or a given ACL VLAN group.
Syntax
Parameters

show running config acl-vlan-group group name
group-name

Default

None

Command
Modes

EXEC

Display only the ACL VLAN group that is specified. The
maximum group name is 140 characters.

EXEC Privilege
Command
History

Examples

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, Z9000 and MXL platforms

The following sample output shows the line-by-line style display when using the
show running-config acl-vlan-group option. Note that no group or access
list names are truncated
Dell#show running-config acl-vlan-group
!
acl-vlan-group group1
description Acl Vlan Group1
member vlan 1-10,400-410,500
ip access-group acl1 out implicit-permit
!
acl-vlan-group group2
member vlan 20
ip access-group acl2 out
Dell#

354

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

Dell#show running-config acl-vlan-group group1
!
acl-vlan-group group1
description Acl Vlan Group1
member vlan 1-10,400-410,500
ip access-group acl1 out implicit-permit
Dell#

acl-vlan-group
Create an ACL VLAN group.
Syntax

acl-vlan-group {group name}
To remove an ACL VLAN group, use the no acl-vlan-group {group name}
command.

Parameters

group-name

Specify the name of the ACL VLAN group. The name can
contain a maximum 140 characters.

Default

No default behavior or values

Command
Modes

CONFIGURATION

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810, S4820T and Z9000 platforms

You can have up to eight different ACL VLAN groups at any given time. When you
configure an ACL VLAN group, you enter the ACL VLAN Group Configuration
mode.
To avoid the problem of excessive consumption of CAM area, you can configure
ACL VLAN groups that combines all the VLANs that are applied with the same ACL
in a single group. A unique identifier for each of ACL attached to the VLAN is used
as a handle or locator in the CAM area instead of the VLAN id. This method of
processing signficiantly reduces the number of entries in the CAM area and saves
memory space in CAM.
You can create an ACL VLAN group and attach the ACL with the VLAN members.
Optimization is applicable only when you create an ACL VLAN group. If you apply
an ACL separately on the VLAN interface, each ACL maps with the VLAN and
increased CAM space utilization occurs.
Attaching an ACL individually to VLAN interfaces is similar to the behavior of ACLVLAN mapping storage in CAM prior to the implementation of the ACL VLAN group
functionality.

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

355

show acl-vlan-group detail
Display all the ACL VLAN Groups or display a specific ACL VLAN Group by name. To display the names in
their entirety, the output displays in a line-by-line format.
Syntax
Parameters

show acl-vlan-group detail
detail

Display information in a line-by-line format to display the
names in their entirety.
Without the detail option, the output is displayed in a table
style and information may be truncated.

Default

No default behavior or values

Command
Modes

EXEC
EXEC Privilege

Command
History

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, Z9000, and MXL
platforms

Usage
Information

The output for this command displays in a line-by-line format. This allows the ACLVLAN-Group names (or the Access List Group Names) to display in their entirety.

Examples

The following sample output shows the line-by-line style display when using the
show acl-vlan-group detail option. Note that no group or access list names
are truncated
Dell#show acl-vlan-group detail
Group Name :
TestGroupSeventeenTwenty
Egress IP Acl :
SpecialAccessOnlyExpertsAllowed
Vlan Members :
100,200,300
Group Name :
CustomerNumberIdentificationEleven
Egress IP Acl :
AnyEmployeeCustomerElevenGrantedAccess
Vlan Members :
2-10,99
Group Name :
HostGroup
Egress IP Acl :
Group5
Vlan Members :
1,1000
Dell#

356

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

description (ACL VLAN Group)
Add a description to the ACL VLAN group.
Syntax
Parameters

description description
description

Enter a description to identify the ACL VLAN group (80
characters maximum).

Default

No default behavior or values

Command
Modes

CONFIGURATION (conf-acl-vl-grp)

Command
History

Usage
Information

Version 9.3.
(0.0)

Introduced on the S4810, S4820T, and Z9000 platforms

Enter a description for each ACL VLAN group that you create for effective and
streamlined administrative and logging purposes.

Access Control List (ACL) VLAN Groups and Content Addressable Memory (CAM)

357

9

Bidirectional Forwarding Detection (BFD)

Bidirectional forwarding detection (BFD) is a detection protocol that provides fast forwarding path failure
detection.
The Dell Networking operating software implementation is based on the standards specified in the IETF
Draft draft-ietf-bfd-base-03 and supports BFD on all Layer 3 physical interfaces including VLAN
interfaces
and port-channels
BFD is supported on the S4810 platform.

bfd all-neighbors
Enable BFD sessions with all neighbors discovered by Layer 3 protocols virtual router redundancy
protocol (VRRP), intermediate system to intermediate system (IS-IS), open shortest path first (OSPF),
OSPFv3, or border gateway protocol (BGP) on router interfaces, and (optionally) reconfigure the default
timer values.

S4810
Syntax
Parameters

358

bfd all-neighbors [interval interval min_rx min_rx multiplier
value role {active | passive}]
interval
milliseconds

(OPTIONAL) Enter the keyword interval to specify nondefault BFD session parameters beginning with the
transmission interval. The range is from 50 to 1000. The
default is 100.

min_rx
milliseconds

Enter the keyword min_rx to specify the minimum rate at
which the local system would like to receive control packets
from the remote system. The range is from 50 to 100. The
default is 100.

multiplier value

Enter the keyword multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.

•

Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

Bidirectional Forwarding Detection (BFD)

The default is active.
Defaults

Refer to Parameters.

Command
Modes

ROUTER OSPF
ROUTER OSPFv3
ROUTER BGP
ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Introduced BFD for VRRP and OSPFv3 on Z9000, S4810, and
S4820T.

Version 9.0.0.0

Introduced BFD for BGP on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced BFD for BGP on the S4810.

Version 8.4.1.3

Introduced BFD for BGP on the E-Series ExaScale.

Version 8.2.1.0

Introduced BFD for OSPF and ISIS on the E-Series ExaScale.

Version 7.6.1.0

Introduced BFD for OSPF on the C-Series.

Version 7.5.1.0

Introduced BFD for ISIS on the E-Series.

Version 7.4.1.0

Introduced BFD for OSPF on the E-Series.

All neighbors inherit the timer values configured with the bfd neighbor
command except in the following cases:
•

•

Timer values configured with the isis bfd all-neighbors or ip ospf
bfd all-neighbors commands in INTERFACE mode override timer values
configured with the bfd neighbor command. Likewise, using the no bfd
neighbor command does not disable BFD on an interface if you explicitly
enable BFD using the isis bfd all-neighbors command.
Neighbors that have been explicitly enabled or disabled for a BFD session with
the bfd neighbor or neighbor bfd disable commands in ROUTER BGP
mode do not inherit the global BFD enable/disable values configured with the
bfd neighbor command or configured for the peer group to which a
neighbor belongs. The neighbors inherit only the global timer values
(configured with the bfd neighbor command).

You can only enable BFD for VRRP in INTERFACE command mode (vrrp bfd
all-neighbors).

Bidirectional Forwarding Detection (BFD)

359

Related
Commands

neighbor bfd disable — Explicitly disables a BFD session with a BGP neighbor or a
BGP peer group.

bfd disable
Disable BFD on an interface.

S4810
Syntax

bfd disable
Re-enable BFD using the no bfd disable command.

Defaults

BFD is disabled by default.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on S4810.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced on the E-Series.

bfd enable (Configuration)
Enable BFD on all interfaces.

S4810
Syntax

bfd enable
Disable BFD using the no bfd enable command.

Defaults

360

BFD is disabled by default.

Bidirectional Forwarding Detection (BFD)

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

bfd enable (Interface)
Enable BFD on an interface.

S4810
Syntax

bfd enable

Defaults

BFD is enabled on all interfaces when you enable BFD from CONFIGURATION
mode.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Bidirectional Forwarding Detection (BFD)

361

Version 7.4.1.0

Introduced on the E-Series.

bfd interval
Specify non-default BFD session parameters beginning with the transmission interval.

S4810
Syntax
Parameters

bfd interval interval min_rx min_rx multiplier value role
{active | passive}
interval
milliseconds

Enter the keywords interval to specify non-default BFD
session parameters beginning with the transmission interval.
The range is from 50 to 1000. The default is 100.

min_rx
milliseconds

Enter the keywords min_rx to specify the minimum rate at
which the local system would like to receive control packets
from the remote system. The range is from 50 to 1000. The
default is 100.

multiplier value

Enter the keywords multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.

•

Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

The default is Active.

Defaults

Refer to Parameters.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

362

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Bidirectional Forwarding Detection (BFD)

Example

Version
8.3.10.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell(conf-if-gi-0/3)#bfd interval 250 min_rx 300 multiplier 4
role passive
Dell(conf-if-gi-0/3)#

bfd neighbor
Establish a BFD session with a neighbor.

S4810
Syntax

bfd neighbor ip-address
To remove the BFD session with the neighbor, use the no bfd neighbor ipaddress command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format (A.B.C.D).

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.5.1.0

Added support for VLAN and port-channel interfaces on the
E-Series.

Bidirectional Forwarding Detection (BFD)

363

Version 7.4.1.0
Related
Commands

Introduced on the E-Series.

show bfd neighbors — displays the BFD neighbor information on all interfaces or a
specified interface.

bfd protocol-liveness
Enable the BFD protocol liveness feature.

S4810
Syntax

bfd protocol-liveness

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 7.4.1.0

Introduced on the E-Series.

Protocol Liveness is a feature that notifies the BFD Manager when a client protocol
(for example, OSPF and ISIS) is disabled. When a client is disabled, all BFD sessions
for that protocol are torn down. Neighbors on the remote system receive an Admin
Down control packet and are placed in the Down state. Peer routers might take
corrective action by choosing alternative paths for the routes that originally
pointed to this router.

ip route bfd
Enable BFD for all neighbors configured through static routes.

S4810
Syntax

364

ip route bfd [interval interval min_rx min_rx multiplier value
role {active | passive}]

Bidirectional Forwarding Detection (BFD)

To disable BFD for all neighbors configured through static routes, use the no ip
route bfd [interval interval min_rx min_rx multiplier value
role {active | passive}] command.
Parameters

interval
milliseconds

(OPTIONAL) Enter the keywords interval to specify nondefault BFD session parameters beginning with the
transmission interval. The range is from 50 to 1000. The
default is 100.

min_rx
milliseconds

Enter the keywords min_rx to specify the minimum rate at
which the local system receives control packets from the
remote system. The range is from 50 to 1000. The default is
100.

multiplier value

Enter the keywords multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.

•

Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

The default is Active.

Defaults

See Parameters

Command
Modes

CONFIGURATION

Command
History

Related
Commands

Version 9.3.
(0.0)

Introduced on S6000.

Version 9.2.
(0.0)

Introduced on Z9000, S4810, and S4820T.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

show bfd neighbors – displays the BFD neighbor information on all interfaces or a
specified interface.

Bidirectional Forwarding Detection (BFD)

365

ipv6 ospf bfd all-neighbors
Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session
parameters.

S4810
Syntax

ipv6 ospf bfd all-neighbors [disable | [interval interval
min_rx min_rx multiplier value role {active | passive}]]
To disable all BFD sessions on an OSPFv3 interface implicitly, use the no ipv6
ospf bfd all-neighbors disable command in interface mode..

Parameters

disable

(OPTIONAL) Enter the keyword disable to disable BFD on
this interface.

interval
milliseconds

(OPTIONAL) Enter the keyword interval to specify nondefault BFD session parameters beginning with the
transmission interval. The range is from 50 to 1000. The
default is 100.

min_rx
milliseconds

Enter the keywords min_rx to specify the minimum rate at
which the local system receives control packets from the
remote system. The range is from 50 to 100. The default is
100.

multiplier value

Enter the keyword multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.

•

Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

The default is Active.

Defaults

See Parameters

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.0.0

366

Introduced on the Z9000, S4820T, and S4810.

Bidirectional Forwarding Detection (BFD)

Usage
Information

This command provides the flexibility to fine-tune the timer values based on
individual interface needs when you configure ipv6 ospf BFD in CONFIGURATION
mode. Any timer values specified with this command overrides timers set using the
bfd all-neighbors command. Using the no form of this command does not
disable BFD if you configure BFD in CONFIGURATION mode.
To disable BFD on a specific interface while you configure BFD in
CONFIGURATION mode, use the keyword disable.

isis bfd all-neighbors
Enable BFD on all IS-IS neighbors discovered on an interface.

S4810
Syntax

isis bfd all-neighbors [disable | [interval interval min_rx
min_rx multiplier value role {active | passive}]]
To remove all BFD sessions with IS-IS neighbors discovered on this interface, use
the no isis bfd all-neighbors [disable | [interval interval
min_rx min_rx multiplier value role {active | passive}]]
command.

Parameters

disable

(OPTIONAL) Enter the keyword disable to disable BFD on
this interface.

interval
milliseconds

(OPTIONAL) Enter the keywords interval to specify nondefault BFD session parameters beginning with the
transmission interval. The range is from 50 to 1000. The
default is 100.

min_rx
milliseconds

Enter the keywords min_rx to specify the minimum rate at
which the local system would like to receive control packets
from the remote system. The range is from 50 to 1000. The
default is 100.

multiplier value

Enter the keywords multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.
Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

The default is Active.

Bidirectional Forwarding Detection (BFD)

367

Defaults

See Parameters

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the E-Series.

This command provides the flexibility to fine-tune the timer values based on
individual interface needs when ISIS BFD is configured in CONFIGURATION mode.
Any timer values specified with this command overrides timers set using the bfd
all-neighbors command. Using the no form of this command does not disable
BFD if BFD is configured in CONFIGURATION mode.
To disable BFD on a specific interface while BFD is configured in CONFIGURATION
mode, use the keyword disable.

neighbor bfd
Explicitly enable a BFD session with a BGP neighbor or a BGP peer group.

S4810
Syntax
Parameters

neighbor {ip-address | peer-group-name} bfd
ip-address

Enter the IP address of the BGP neighbor that you want to
explicitly enable for BFD sessions in dotted decimal format
(A.B.C.D).

peer-groupname

Enter the name of the peer group that you want to explicitly
enable for BFD sessions.

Defaults

none

Command
Modes

ROUTER BGP

368

Bidirectional Forwarding Detection (BFD)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Version 8.4.1.3

Introduced on the E-Series ExaScale.

When you enable a BFD session with a specified BGP neighbor or peer group using
the bfd neighbor command, the default BFD session parameters are used
(interval: 100 milliseconds, min_rx: 100 milliseconds, multiplier: 3 packets, and
role: active) if you have not specified parameters with the bfd neighbor
command.
When you explicitly enable a BGP neighbor for a BFD session with the bfd
neighbor command:

Related
Commands

•

The neighbor does not inherit the global BFD enable values configured with the
bfd neighbor command or configured for the peer group to which the
neighbor belongs.

•

The neighbor only inherits the global timer values configured with the bfd
neighbor command: interval, min_rx, and multiplier.

neighbor bfd disable — Explicitly disables a BFD session with a BGP neighbor or a
BGP peer group.

neighbor bfd disable
Explicitly disable a BFD session with a BGP neighbor or a BGP peer group.

S4810
Syntax
Parameters

neighbor {ip-address | peer-group-name} bfd disable
ip-address

Enter the IP address of the BGP neighbor that you want to
explicitly disable for BFD sessions in dotted decimal format
(A.B.C.D).

peer-groupname

Enter the name of the peer group that you want to explicitly
disable for BFD sessions.

Bidirectional Forwarding Detection (BFD)

369

Defaults

none

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Version 8.4.1.3

Introduced on the E-Series ExaScale.

When you explicitly disable a BGP neighbor for a BFD session with the neighbor
bfd disable command:
•

The neighbor does not inherit the global BFD disable values configured with the
bfd neighbor command or configured for the peer group to which the
neighbor belongs.

•

The neighbor only inherits the global timer values configured with the bfd
neighbor command: interval, min_rx, and multiplier.

When you remove the Disabled state of a BFD for a BGP session with a specified
neighbor by entering the no neighbor bfd disable command, the BGP link
with the neighbor returns to normal operation and uses the BFD session
parameters globally configured with the bfd neighbor command or configured
for the peer group to which the neighbor belongs.
Related
Commands

neighbor bfd — Explicitly enables a BFD session with a BGP neighbor or a BGP peer
group.

show bfd neighbors
Display BFD neighbor information on all interfaces or a specified interface.

S4810
Syntax
Parameters

370

show bfd neighbors interface [detail]
interface

Enter one of the following keywords and slot/port or number
information:

Bidirectional Forwarding Detection (BFD)

detail

•

For a 10-Gigabit Ethernet interface, enter the keyword
tengigabitethernet then the slot/port information.

•

For a port-channel interface, enter the keyword portchannel then a number. For the C-Series, Z-Series, and
S8410, the range is from 1 to 128.

•

For VLAN interfaces, enter the keyword vlan then a
number from 1 to 4094. For ExaScale VLAN interfaces,
the range is 1 to 2730 (VLAN IDs can be from 0 to 4093).

(OPTIONAL) Enter the keyword detail to view detailed
information about BFD neighbors.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Added support for BFD for BGP on the S4810.

Version 8.4.1.3

Added support for BFD for BGP on the E-Series ExaScale.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.5.1.0

Added support for BFD for VLAN and port-channel interfaces
on the E-Series.

Version 7.4.1.0

Introduced BFD on physical ports on the E-Series.

Dell#show bfd neighbors
*
- Active session role
Ad Dn - Admin Down
B
- BGP
C
- CLI
I
- ISIS
O
- OSPF
R
- Static Route (RTM)
LocalAddr
Clients
* 10.1.3.2

Bidirectional Forwarding Detection (BFD)

RemoteAddr

Interface State Rx-int Tx-int Mult

10.1.3.1

Gi 1/3

Up

300

250

3

C

371

Example
(Detail)

Dell#show bfd neighbors detail

Related
Commands

bfd neighbor — establishes a BFD session with a neighbor.

Session Discriminator: 1
Neighbor Discriminator: 1
Local Addr: 10.1.3.2
Local MAC Addr: 00:01:e8:02:15:0e
Remote Addr: 10.1.3.1
Remote MAC Addr: 00:01:e8:27:2b:f1
Int: GigabitEthernet 1/3
State: Up
Configured parameters:
TX: 100ms, RX: 100ms, Multiplier: 3
Neighbor parameters:
TX: 250ms, RX: 300ms, Multiplier: 4
Actual parameters:
TX: 300ms, RX: 250ms, Multiplier: 3
Role: Active
Delete session on Down: False
Client Registered: CLI
Uptime: 00:02:04
Statistics:
Number of packets received from neighbor: 376
Number of packets sent to neighbor: 314
Number of state changes: 2
Number of messages from IFA about port state change: 0
Number of messages communicated b/w Manager and Agent: 6
Dell#

bfd all-neighbors — establishes BFD sessions with all neighbors discovered by the
IS-IS protocol or OSPF protocol out of all interfaces.

vrrp bfd neighbor
Establish a BFD for VRRP session with a neighbor.

S4810
Syntax

vrrp bfd neighbor ip-address
To remove the BFD session with the neighbor, use the no vrrp bfd neighbor
ip-address command.

Parameters

ip-address

Defaults

none

Command
Modes

INTERFACE

372

Enter the IP address of the neighbor in dotted decimal
format (A.B.C.D).

Bidirectional Forwarding Detection (BFD)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.5.1.0

Added support for VLAN and port-channel interfaces on the
E-Series.

Version 7.4.1.0

Introduced on the E-Series.

show bfd neighbors — displays the BFD neighbor information on all interfaces or a
specified interface.

Bidirectional Forwarding Detection (BFD)

373

10

Border Gateway Protocol

BGP is an external gateway protocol that transmits interdomain routing information within and between
autonomous systems (AS). BGP version 4 (BGPv4) supports classless inter-domain routing (CIDR) and the
aggregation of routes and AS paths. Basically, two routers (called neighbors or peers) exchange
information including full routing tables and periodically sent messages to update those routing tables.
BGP is supported in Dell Networking OS version 8.3.7.0 for the S4810 platform
NOTE: For more information about configuring the border gateway protocol (BGP), refer to the BGP
chapter in the Dell Networking OS Configuration Guide.
This chapter contains the following sections:
•
•
•
•

BGPv4 Commands
MBGP Commands
BGP Extended Communities (RFC 4360)
IPv6 BGP Commands

BGP IPv4 Commands
Border Gateway Protocol (BGP) is an external gateway protocol that transmits interdomain routing
information within and between Autonomous Systems (AS). BGP supports classless interdomain routing
(CIDR) and the aggregation of routes and AS paths. Basically, two routers (called neighbors or peers)
exchange information including full routing tables and periodically send messages to update those
routing tables.
NOTE: Dell Networking OS supports 2-byte (16-bit) and 4-byte (32-bit) format for autonomous
system numbers (ASNs), where the 2-byte format is 1 to 65535 and the 4-byte format is 1 to
4294967295.
NOTE: Dell Networking OS supports dotted format as well as the traditional plain format for AS
numbers. The dot format is displayed when using the show ip bgp commands. To determine the
comparable dot format for an ASN from a traditional format, use ASN/65536. ASN%65536. For more
information about using the 2– or 4-byte format, refer to the Dell Networking OS Configuration
Guide.

address-family
Enable the IPv4 multicast or the IPv6 address family.

S4810
Syntax
Parameters

374

address-family [ipv4 {multicast | vrf vrf-name} | ipv6 unicast]
ipv4 multicast

Enter the keyword ipv4 followed by the keyword
multicast to enable BGPv4 multicast mode.

Border Gateway Protocol

ipv4 vrf vrfname

Enter the keyword ipv4 followed by the keyword vrf and
then the name of the VRF to enable VRF mode.
NOTE: Use this attribute to start a BGP instance
corresponding to either a specific address family in a
default VRF or an IPv4 address family in a non-default
VRF.

ipv6 unicast

Enter the keyword ipv6 followed by the keyword unicast
to enable BGPv6 mode.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.5.1.0

Introduced

aggregate-address
To minimize the number of entries in the routing table, summarize a range of prefixes.

S4810
Syntax

Parameters

aggregate-address ip-address mask [advertise-map map-name] [asset] [attribute-map map-name] [summary-only] [suppress-map mapname]
ip-address
mask

Enter the IP address and mask of the route to be the
aggregate address. Enter the IP address in dotted decimal
format (A.B.C.D) and mask in /prefix format (/x).

advertise-map
map-name

(OPTIONAL) Enter the keywords advertise-map then the
name of a configured route map to set filters for advertising
an aggregate route.

Border Gateway Protocol

375

as-set

(OPTIONAL) Enter the keyword as-set to generate path
attribute information and include it in the aggregate.
AS_SET includes AS_PATH and community information from
the routes included in the aggregated route.

Defaults
Command
Modes

Command
History

attribute-map
map-name

(OPTIONAL) Enter the keywords attribute-map then the
name of a configured route map to modify attributes of the
aggregate, excluding AS_PATH and NEXT_HOP attributes.

summary-only

(OPTIONAL) Enter the keyword summary-only to advertise
only the aggregate address. Specific routes are not
advertised.

suppress-map
map-name

(OPTIONAL) Enter the keywords suppress-map then the
name of a configured route map to identify which morespecific routes in the aggregate are suppressed.

Not configured.
•

ROUTER BGP ADDRESS FAMILY

•

ROUTER BGP ADDRESS FAMILY IPv6

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

At least one of the routes included in the aggregate address must be in the BGP
routing table for the configured aggregate to become active.
If routes within the aggregate are constantly changing, do not add the as-set
parameter to the aggregate as the aggregate flaps to keep track of the changes in
the AS_PATH.
In route maps used in the suppress-map parameter, routes meeting the deny
clause are not suppress; in other words, they are allowed. The opposite is also true:
routes meeting the permit clause are suppressed.

376

Border Gateway Protocol

If the route is injected via the network command, that route still appears in the
routing table if the summary-only parameter is configured in the aggregateaddress command.
The summary-only parameter suppresses all advertisements. If you want to
suppress advertisements to only specific neighbors, use the neighbor
distribute-list command.
In the show ip bgp command, aggregates contain an ‘a’ in the first column and
routes suppressed by the aggregate contain an ‘s’ in the first column.
When an aggregate address is denied using a peer's outbound route-map,
individual routes suppressed by the aggregate address are advertised to that peer.
The attribute-map corresponding to an aggregate address is applied during the
outbound update creation time; hence the value set in that attribute-map will not
be shown in the output of the show ip bgp aggregate route command.

bgp add-path
Allow the advertisement of multiple paths for the same address prefix without the new paths replacing
any previous ones.

S4810
Syntax
Parameters

bgp add-path [send | receive | both] path-count
send

Enter the keyword send to indicate that the system sends
multiple paths to peers.

receive

Enter the keyword receive to indicate that the system
accepts multiple paths from peers.

both

Enter the keyword both to indicate that the system sends
and accepts multiple paths from peers.

path-count

Enter the number paths supported. The range is from 2 to
64.

Defaults

Disabled

Command
Modes

•

ROUTER BGP

•

ROUTER BGP-address-family

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Border Gateway Protocol

Introduced on the S6000.

377

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

neighbor add-path — specifies that this neighbor/peer group can send/receive
multiple path advertisements.

bgp always-compare-med
Allows you to enable comparison of the MULTI_EXIT_DISC (MED) attributes in the paths from different
external ASs.

S4810
Syntax

bgp always-compare-med
To disable comparison of MED, enter no bgp always-compare-med.

Defaults

Disabled (that is, the software only compares MEDs from neighbors within the
same AS).

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced command.

Version 7.7.1.0

Introduced on the C-Series.

Any update without a MED attribute is the least preferred route.
If you enable this command, use the clear ip bgp * command to recompute
the best path.

378

Border Gateway Protocol

bgp asnotation
Allows you to implement a method for AS number representation in the command line interface (CLI).

S4810
Syntax

bgp asnotation [asplain | asdot+ | asdot]
To disable a dot or dot+ representation and return to ASPLAIN, enter the no bgp
asnotation command.

Defaults

asplain

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced the dynamic application of AS notation changes

Version 8.2.1.0

Introduced

Before enabling this feature, enable the enable bgp four-octet-assupportcommand. If you disable the four-octect-support command after
using dot or dot+ format, the AS numbers revert to asplain text.
When you apply an asnotation, it is reflected in the running-configuration. If you
change the notation type, the running-config updates dynamically and the new
notation shows.

Example

Dell(conf)#router bgp 1
Dell(conf-router_bgp)#bgp asnotation asdot
Dell(conf-router_bgp)#ex
Dell(conf)#do show run | grep bgp
router bgp 1
bgp four-octet-as-support
bgp asnotation asdot
Dell(conf)#router bgp 1
Dell(conf-router_bgp)#bgp asnotation asdot+
Dell(conf-router_bgp)#ex
Dell(conf)#do show run | grep bgp

Border Gateway Protocol

379

router bgp 1
bgp four-octet-as-support
bgp asnotation asdot+
Dell(conf)#router bgp 1
Dell(conf-router_bgp)#bgp asnotation asplain
Dell(conf-router_bgp)#ex
Dell(conf)#do show run |grep bgp
router bgp 1
bgp four-octet-as-support
Dell(conf)#
Related
Commands

bgp four-octet-as-support — enables 4-byte support for the BGP process.

bgp bestpath as-path ignore
Ignore the AS PATH in BGP best path calculations.

S4810
Syntax

bgp bestpath as-path ignore
To return to the default, enter the no bgp bestpath as-path ignore
command.

Defaults

Disabled (that is, the software considers the AS_PATH when choosing a route as
best).

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

380

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

If you enable this command, use the clear ip bgp * command to recompute
the best path.

Border Gateway Protocol

bgp bestpath as-path multipath-relax
Include prefixes received from different AS paths during multipath calculation.

S4810 S6000
Syntax

bgp bestpath as-path multipath-relax
To return to the default BGP routing process, use the no bgp bestpath aspath multipath-relax command.

Defaults

Disabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.4

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

The bestpath router bgp configuration mode command changes the
default bestpath selection algorithm. The multipath-relax option allows loadsharing across providers with different (but equal-length) autonomous system
paths. Without this option, ECMP expects the AS paths to be identical for loadsharing.

bgp bestpath med confed
Enable MULTI_EXIT_DISC (MED) attribute comparison on paths learned from BGP confederations.

S4810
Syntax

bgp bestpath med confed
To disable MED comparison on BGP confederation paths, enter the no bgp
bestpath med confed command.

Defaults

Disabled

Command
Modes

ROUTER BGP

Border Gateway Protocol

381

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The software compares the MEDs only if the path contains no external
autonomous system numbers. If you enable this command, use the clear ip
bgp * command to recompute the best path.

bgp bestpath med missing-as-best
During path selection, indicate preference to paths with missing MED (MULTI_EXIT_DISC) over paths with
an advertised MED attribute.

S4810
Syntax

bgp bestpath med missing-as-best
To return to the default selection, use the no bgp bestpath med missing-asbest command.

Defaults

Disabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

382

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Border Gateway Protocol

Usage
Information

Version 7.7.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced

The MED is a 4-byte unsigned integer value and the default behavior is to assume a
missing MED as 4294967295. This command causes a missing MED to be treated
as 0. During path selection, paths with a lower MED are preferred over paths with a
higher MED.

bgp bestpath router-id ignore
Do not compare router-id information for external paths during best path selection.

S4810
Syntax

bgp bestpath router-id ignore
To return to the default selection, use the no bgp bestpath router-id
ignore command.

Defaults

Disabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced

Configuring this option retains the current best-path. When sessions are then reset,
the oldest received path is chosen as the best-path.

bgp client-to-client reflection
Allows you to enable route reflection between clients in a cluster.

S4810 S6000
Syntax

bgp client-to-client reflection
To disable client-to-client reflection, use the no bgp client-to-client
reflection command.

Border Gateway Protocol

383

Defaults

Enabled when a route reflector is configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

Route reflection to clients is not necessary if all client routers are fully meshed.

Related
Commands

bgp cluster-id — assigns an ID to a BGP cluster with two or more route reflectors.
neighbor route-reflector-client — configures a route reflector and clients.

bgp cluster-id
Assign a cluster ID to a BGP cluster with more than one route reflector.

S4810
Syntax

bgp cluster-id {ip-address | number}
To delete a cluster ID, use the no bgp cluster-id {ip-address | number}
command.

Parameters

ip-address

Enter an IP address as the route reflector cluster ID.

number

Enter a route reflector cluster ID as a number from 1 to
4294967295.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

384

Border Gateway Protocol

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

When a BGP cluster contains only one route reflector, the cluster ID is the route
reflector’s router ID. For redundancy, a BGP cluster may contain two or more route
reflectors. Assign a cluster ID with the bgp cluster-id command. Without a
cluster ID, the route reflector cannot recognize route updates from the other route
reflectors within the cluster.
The default format for displaying the cluster-id is dotted decimal, but if you enter
the cluster-id as an integer, it is displayed as an integer.
This command automatically restarts the BGP instance for the configuration to
take effect.

Related
Commands

bgp client-to-client reflection — enables route reflection between the route
reflector and clients.
neighbor route-reflector-client — configures a route reflector and clients.
show ip bgp cluster-list — views paths with a cluster ID.

bgp confederation identifier
Configure an identifier for a BGP confederation.

S4810
Syntax

bgp confederation identifier as-number
To delete a BGP confederation identifier, use the no bgp confederation
identifier as-number command.

Parameters

as-number

Defaults

Not configured.

Command
Modes

ROUTER BGP

Border Gateway Protocol

Enter the AS number. The range is from 0 to 65535 (2 byte),
from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535
(dotted format).

385

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series. Added support for the 4-byte
format

To accept 4-byte formats before entering a 4-byte AS number, configure your
system. All the routers in the Confederation must be 4 byte or 2 byte identified
routers. You cannot mix them.
The autonomous systems configured in this command are visible to the EBGP
neighbors. Each autonomous system is fully meshed and contains a few
connections to other autonomous systems. The next hop, MED, and local
preference information is preserved throughout the confederation.
Dell Networking OS accepts confederation EBGP peers without a LOCAL_PREF
attribute. The software sends AS_CONFED_SET and accepts AS_CONFED_SET and
AS_CONF_SEQ.
If a local-as is configured, BGP does not allow for the configuration of BGP
confederation. Similarly, if BGP confederation is configured, then BGP does not
allow the configuration of local-as.
If the neighbor is an eBGP neighbor, then BGP performs a check on the first AS
number. In this scenario, it is mandatory that the first sequence in the AS path is of
type AS_SEQUENCE or AS_CONFED_SEQUENCE (in the case of confederations). If
the first entry appears as an AS_CONFED_SET and the neighbor is not in the local
AS, then this is strictly a problem with the neighbor node.
This command automatically restarts the BGP instance for the configuration to
take effect.

Related
Commands

386

bgp four-octet-as-support — enables 4-byte support for the BGP process.

Border Gateway Protocol

bgp confederation peers
Specify the autonomous systems (ASs) that belong to the BGP confederation.

S4810
Syntax

bgp confederation peers as-number [...as-number]
To return to the default, use the no bgp confederation peers command.

Parameters

as-number

Enter the AS number. The range is from 0 to 65535 (2 byte),
from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535
(dotted format).

...as-number

(OPTIONAL) Enter up to 16 confederation numbers. The
range is from 0 to 65535 (2 byte), from 1 to 4294967295 (4
byte), or from 0.1 to 65535.65535 (dotted format).

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series. Added support for the 4-byte
format.

All the routers in the Confederation must be 4 byte or 2 byte identified routers. You
cannot mix them.
The autonomous systems configured in this command are visible to the EBGP
neighbors. Each autonomous system is fully meshed and contains a few
connections to other autonomous systems.
After specifying autonomous systems numbers for the BGP confederation, recycle
the peers to update their configuration.

Border Gateway Protocol

387

Related
Commands

bgp confederation identifier — configures a confederation ID.
bgp four-octet-as-support — enables 4-byte support for the BGP process.

bgp connection-retry-timer
Configures the BGP connection retry timer.

S4810
Syntax

bgp connection-retry-timer retry-timer-value
To return to the default configuration, enter the no connection-retry-timer
retry-timer-value command.

Parameters

retry-timervalue

Enter a value that denotes the time interval after which the
session retries the connection. The valid range is from 10 to
65535.

Defaults

60 seconds.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S4810.

bgp dampening
Enable BGP route dampening and configure the dampening parameters.

S4810
Syntax

bgp dampening [half-life reuse suppress max-suppress-time]
[route-map map-name]
To disable route dampening, use the no bgp dampening [half-life reuse
suppress max-suppress-time] [route-map map-name] command.

Parameters

388

half-life

(OPTIONAL) Enter the number of minutes after which the
Penalty is decreased. After the router assigns a Penalty of
1024 to a route, the Penalty is decreased by half after the
half-life period expires. The range is from 1 to 45. The default
is 15 minutes.

Border Gateway Protocol

reuse

(OPTIONAL) Enter a number as the reuse value, which is
compared to the flapping route’s Penalty value. If the Penalty
value is less than the reuse value, the flapping route is once
again advertised (or no longer suppressed). The range is from
1 to 20000. The default is 750.

suppress

(OPTIONAL) Enter a number as the suppress value, which is
compared to the flapping route’s Penalty value. If the Penalty
value is greater than the suppress value, the flapping route is
no longer advertised (that is, it is suppressed). The range is
from 1 to 20000. The default is 2000.

max-suppresstime

(OPTIONAL) Enter the maximum number of minutes a route
can be suppressed. The default is four times the half-life
value. The range is from 1 to 255. The default is 60 minutes.

route-map
map-name

(OPTIONAL) Enter the keyword route-map then the name
of a configured route map.
Only match commands in the configured route map are
supported.

Defaults
Command
Modes
Command
History

Disabled.
•
•

ROUTER BGP
ROUTER BGP-address-family

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

If you enter the bgp dampening command, the default values for half-life,
reuse, suppress, and max-suppress-time are applied. The parameters are
position-dependent; therefore, if you configure one parameter, configure the
parameters in the order they appear in the CLI.
Route refresh is sent when you enable BGP dampening.

Border Gateway Protocol

389

Related
Commands

show ip bgp dampened-paths — views the BGP paths.

bgp default local-preference
Change the default local preference value for routes exchanged between internal BGP peers.

S4810 S6000
Syntax

bgp default local-preference value
To return to the default value, use the no bgp default local-preference
command.

Parameters

value

Enter a number to assign to routes as the degree of
preference for those routes. When routes are compared, the
higher the degree of preference or local preference value,
the more the route is preferred. The range is from 0 to
4294967295. The default is 100.

Defaults

100

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

All routers apply the bgp default local-preference command setting within
the AS. To set the local preference for a specific route, use the set localpreference command in ROUTE-MAP mode.

Related
Commands

set local-preference — assigns a local preference value for a specific route.

390

Border Gateway Protocol

bgp enforce-first-as
Disable (or enable) enforce-first-as check for updates received from EBGP peers.

S4810
Syntax

bgp enforce-first-as
To turn off the default, use the no bgp enforce-first-as command.

Defaults

Enabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

This command is enabled by default, that is for all updates received from EBGP
peers, BGP ensures that the first AS of the first AS segment is always the AS of the
peer. If not, the update is dropped and a counter is increments. Use the show ip
bgp neighbors command to view the “failed enforce-first-as check” counter.
If you disable the enforce-first-as command, it can be viewed using the show
ip protocols command.
In the event of an enfore-first-as check failure, the existing BGP session is flapped.

Related
Commands

show ip bgp neighbors — views the information the BGP neighbors exchange.
show ip protocols — views information on routing protocols.

Border Gateway Protocol

391

bgp fast-external-fallover
Enable the fast external fallover feature, which immediately resets the BGP session if a link to a directly
connected external peer fails.

S4810
Syntax

bgp fast-external-fallover
To disable fast external fallover, use the no bgp fast-external-fallover
command.

Defaults

Enabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The bgp fast-external-fallover command appears in the show config
command output.
The fast external fallover configuration is applied only after you manually reset all
the existing BGP sessions. As a result, after you execute this command, you must
also manually execute the clear ip bgp command in order for the configuration
to take effect.

bgp four-octet-as-support
Enable 4-byte support for the BGP process.

S4810
Syntax

bgp four-octet-as-support
To disable fast external failover, use the no bgp four-octet-as-support
command.

392

Border Gateway Protocol

Defaults

Disabled (supports 2–byte format)

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Routers supporting 4-byte ASNs advertise that function in the OPEN message. The
behavior of a 4-byte router is slightly different depending on whether it is speaking
to a 2-byte router or a 4-byte router.
When creating Confederations, all the routers in the Confederation must be 4 byte
or 2 byte identified routers. You cannot mix them.
Where the 2-byte format is from 1 to 65535, the 4-byte format is from 1 to
4294967295. Both formats are accepted and the advertisements reflect the
entered format.
For more information about using the 2 byte or 4-byte format, refer to the Dell
Networking OS Configuration Guide.
This command automatically restarts the BGP instance for the configuration to
take effect.

bgp graceful-restart
To support graceful restart as a receiver only, enable graceful restart on a BGP neighbor, a BGP node, or
designate a local router.

S4810
Syntax

bgp graceful-restart [restart-time seconds] [stale-path-time
seconds] [role receiver-only]
To return to the default, use the no bgp graceful-restart command.

Border Gateway Protocol

393

Parameters

restart-time
seconds

Enter the keyword restart-time then the maximum
number of seconds to restart and bring-up all the peers. The
range is from 1 to 3600 seconds. The default is 120 seconds.

stale-path-time
seconds

Enter the keyword stale-path-time then the maximum
number of seconds to wait before restarting a peer’s stale
paths. The default is 360 seconds.

role receiveronly

Enter the keyword role receiver-only to designate the
local router to support graceful restart as a receiver only.

Defaults

as above

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

This feature is advertised to BGP neighbors through a capability advertisement. In
Receiver Only mode, BGP saves the advertised routes of peers that support this
capability when they restart.
BGP graceful restart is active only when the neighbor becomes established.
Otherwise it is disabled. Graceful-restart applies to all neighbors with established
adjacency.
This command automatically restarts the BGP instance for the configuration to
take effect.

bgp non-deterministic-med
Compare MEDs of paths from different autonomous systems.

S4810 S6000
Syntax

bgp non-deterministic-med
To return to the default, use the no bgp non-deterministic-med command.

394

Border Gateway Protocol

Defaults

Disabled (that is, paths/routes for the same destination but from different ASs do
not have their MEDs compared).

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

In Non-Deterministic mode, paths are compared in the order in which they arrive.
This method can lead to Dell Networking OS choosing different best paths from a
set of paths, depending on the order in which they are received from the neighbors
because MED may or may not get compared between adjacent paths. In
Deterministic mode (no bgp non-deterministic-med), Dell Networking OS
compares MED between adjacent paths within an AS group because all paths in the
AS group are from the same AS.
When you change the path selection from Deterministic to Non-Deterministic, the
path selection for the existing paths remains Deterministic until you enter the
clear ip bgp command to clear existing paths.

bgp recursive-bgp-next-hop
Enable next-hop resolution through other routes learned by BGP.

S4810
Syntax

bgp recursive-bgp-next-hop
To disable next-hop resolution, use the no bgp recursive-bgp-next-hop
command.

Defaults

Enabled

Command
Modes

ROUTER BGP

Border Gateway Protocol

395

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.2.1.0

Introduced.

This command is a knob to disable BGP next-hop resolution using BGP learned
routes. During the next-hop resolution, only the first route that the next-hop
resolves through is verified for the route’s protocol source and is checked if the
route is learned from BGP or not.
The clear ip bgp command is required for this command to take effect and to
keep the BGP database consistent. Execute the clear ip bgp command right
after executing this command.

Related
Commands

clear ip bgp — clears the ip bgp.

bgp regex-eval-optz-disable
Disables the Regex Performance engine that optimizes complex regular expression with BGP.

S4810
Syntax

bgp regex-eval-optz-disable
To re-enable optimization engine, use the no bgp regex-eval-optz-disable
command.

Defaults

Enabled

Command
Modes

ROUTER BGP (conf-router_bgp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

396

Border Gateway Protocol

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced

BGP uses regular expressions (regex) to filter route information. In particular, the
use of regular expressions to filter routes based on AS-PATHs and communities is
common. In a large-scale configuration, filtering millions of routes based on
regular expressions can be quite CPU intensive, as a regular expression evaluation
involves generation and evaluation of complex finite state machines.
BGP policies, containing regular expressions to match as-path and communities,
tend to use much CPU processing time, which in turn affects the BGP routing
convergence. Additionally, the show bgp commands, which are filtered through
regular expressions, use up CPU cycles particularly with large databases. The Regex
Engine Performance Enhancement feature optimizes the CPU usage by caching
and reusing regular expression evaluation results. This caching and reuse may be at
the expensive of RP1 processor memory.

Examples

Dell(conf-router_bgp)#no bgp regex-eval-optz-disable
Dell(conf-router_bgp)#do show ip protocols
Routing Protocol is "ospf 22222"
Router ID is 2.2.2.2
Area
Routing for Networks
51
10.10.10.0/00
Routing Protocol is "bgp 1"
Cluster Id is set to 10.10.10.0
Router Id is set to 10.10.10.0
Fast-external-fallover enabled
Regular expression evaluation optimization enabled
Capable of ROUTE_REFRESH
For Address Family IPv4 Unicast
BGP table version is 0, main routing table version 0
Distance: external 20 internal 200 local 200
Dell(conf-router_bgp)#

Related
Commands

show ip protocols — views information on all routing protocols enabled and active
on the E-Series.

Border Gateway Protocol

397

bgp router-id
Assign a user-given ID to a BGP router.

S4810
Syntax

bgp router-id ip-address
To delete a user-assigned IP address, use the no bgp router-id command.

Parameters

ip-address

Enter an IP address in dotted decimal format to reset only
that BGP neighbor.

Defaults

The router ID is the highest IP address of the Loopback interface or, if no Loopback
interfaces are configured, the highest IP address of a physical interface on the
router.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Peering sessions are reset when you change the router ID of a BGP router.
This command automatically restarts the BGP instance for the configuration to
take effect.

clear ip bgp
Reset BGP sessions. The soft parameter (BGP Soft Reconfiguration) clears the policies without resetting
the TCP connection.

S4810
Syntax

398

clear ip bgp [vrf vrf-name] * | as-number | ip-address [flapstatistics | soft [in | out]]

Border Gateway Protocol

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
clear all BGP sessions corresponding to that VRF.
NOTE: Use this attribute to clear a BGP instance
corresponding to either a specific address family in a
default VRF or an IPv4 address family in a a non-default
VRF.

*

Enter an asterisk ( * ) to reset all BGP sessions.

as-number

Enter the AS number to reset all neighbors belonging to that
AS. The range is from 0 to 65535 (2 byte), from 1 to
4294967295 (4 byte), or from 0.1 to 65535.65535 (dotted
format).

ip-address

Enter an IP address in dotted decimal format to reset all
prefixes from that neighbor.

flap-statistics

(OPTIONAL) Enter the keyword flap-statistics to reset
the flap statistics on all prefixes from that neighbor.

soft

(OPTIONAL) Enter the keyword soft to configure and
activate policies without resetting the BGP TCP session, that
is, BGP Soft Reconfiguration.
NOTE: If you enter the clear ip bgp ip-address
soft command, both inbound and outbound policies
are reset.

in

(OPTIONAL) Enter the keyword in to activate only inbound
policies.

out

(OPTIONAL) Enter the keyword out to activate only
outbound policies.
NOTE: You must execute the clear ip bgp soft
out command when ever there is a change in the local
policy. If you do not run this command after a local
policy change, then these policy changes are not
reflected in the responses to the peer’s route refresh
messages.

<1-429496729
5>

Enter <1-4294967295> to clear peers with the AS number.

<0.1-65535.65
535>

Enter <0.1-65535.65535> to clear peers with the AS number
in dot format.

A.B.C.D

Enter the BGP neighbor address in the A.B.C.D format to
clear.

X:X:X:X::X

Enter the BGP neighbor address in the X:X:X:X::X format to
clear.

Border Gateway Protocol

399

dampening

Enter the keyword dampening to clear the flap dampening
information.

flap-statistics

Enter the keywords flap-statistics to clear the flap
statistics information.

ipv4

Enter the ipv4 address family to clear.

ipv6

Enter the ipv6 address family to clear.

peer-group

Enter the peer-group to clear all members of the peergroup.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 6.5.1.0

Expanded to include the as-number option.

bgp recursive-bgp-next-hop — disables next-hop resolution through other routes
learned by the BGP.

clear ip bgp dampening
Clear information on route dampening and return the suppressed route to the Active state.

S4810
Syntax
Parameters

400

clear ip bgp [vrf vrf-name] dampening [ip-address mask]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to clear information on route dampening
corresponding to that VRF

Border Gateway Protocol

NOTE: You can use this attribute on a specific VRF to
remove history routes corresponding to that VRF. You
can also use this attribute to return the suppressed
routes corresponding to a specific VRF to an active state.
ip-address
mask

(OPTIONAL) Enter an IP address in dotted decimal format
and the prefix mask in slash format (/x) to clear dampening
information only that BGP neighbor.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

After you enter this command, the software deletes the history routes and returns
the suppressed routes to the Active state.
The clear ip bgp dampening command does not clear the history paths.

clear ip bgp flap-statistics
Clear BGP flap statistics, which includes number of flaps and the time of the last flap.

S4810
Syntax
Parameters

clear ip bgp [vrf vrf-name] flap-statistics [ip-address mask |
filter-list as-path-name | regexp regular-expression]
vrf vrf-name

Border Gateway Protocol

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to clear BGP flap statistics corresponding to that
VRF.

401

NOTE: You can use this attribute on a specific VRF to
remove history routes corresponding to that VRF. You
can also use this attribute to return the suppressed
routes corresponding to a specific VRF to an active state.
ip-address
mask

(OPTIONAL) Enter an IP address in dotted decimal format
and the prefix mask in slash format (/x) to reset only that
prefix.

filter-list aspath-name

(OPTIONAL) Enter the keywords filter-list then the
name of a configured AS-PATH list.

regexp regularexpression

(OPTIONAL) Enter the keyword regexp then regular
expressions. Use one or a combination of the following:
•

. = (period) any single character (including a white
space).

•

* = (asterisk) the sequences in a pattern (0 or more
sequences).

•

+ = (plus) the sequences in a pattern (1 or more
sequences).

•

? = (question mark) sequences in a pattern (either 0 or 1
sequences).
NOTE: Enter an escape sequence (CTRL+v) prior to
entering the ? regular expression.

•

[ ] = (brackets) a range of single-character patterns.

•

( ) = (parenthesis) groups a series of pattern elements
to a single element.

•

{ } = (braces) minimum and the maximum match count.

•

^ = (caret) the beginning of the input string. If you use
the caret at the beginning of a sequence or range, it
matches on everything BUT the characters specified.

•

$ = (dollar sign) the end of the output string.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

402

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Border Gateway Protocol

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

If you enter the clear ip bgp flap-statistics command without any
parameters, all statistics are cleared.

Related
Commands

show debugging — views the enabled debugging operations.
show ip bgp flap-statistics — views the BGP flap statistics.
undebug all — disables all debugging operations.

clear ip bgp peer-group
Reset a peer-group’s BGP sessions.

S4810
Syntax
Parameters

clear ip bgp [vrf vrf-name] peer-group peer-group-name
vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
reset the peer group corresponding to that VRF.
NOTE: You can use this attribute on a specific VRF to
remove history routes corresponding to that VRF. You
can also use this attribute to return the suppressed
routes corresponding to a specific VRF to an active state.

peer-groupname

Enter the peer group name to reset the BGP sessions within
that peer group.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Border Gateway Protocol

403

Version 7.7.1.0

Introduced on the C-Series.

debug ip bgp
Display all information on BGP, including BGP events, keepalives, notifications, and updates.

S4810
Syntax

debug ip bgp [ vrf vrf-name | ip-address | peer-group peergroup-name] [in | out]
To disable all BGP debugging, use the no debug ip bgp command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
debug BGP information corresponding to that VRF.
NOTE: Use this attribute to debug BGP protocol
operations corresponding to either a default or nondefault VRF.

404

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-group
peer-groupname

Enter the keywords peer-group then the name of the peer
group to debug.

in

(OPTIONAL) Enter the keyword in to view only information
on inbound BGP routes.

out

(OPTIONAL) Enter the keyword out to view only information
on outbound BGP routes.

A.B.C.D

Enter the IP address of peer in the A.B.C.D format.

X:X:X:X::X

Enter the IPv6 IP address of peer in the X:X:X:X::X format.

dampening

Enter the keyword dampening to view BGP dampening.

events

Enter the keyword events to view BGP protocol events.

ipv4

Enter the ipv4 IP address to view the IPV4 route information.

ipv6

Enter the ipv6 IP address to view the IPV6 route information.

keepalives

Enter the keyword keepalives to view BGP keepalives.

notifications

Enter the keyword notifications to view BGP
notifications.

softreconfiguration

Enter the keywords soft-reconfiguration to view only
information on inbound BGP soft reconfiguration.

updates

Enter the keyword updates to view BGP updates.

Border Gateway Protocol

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To view information on both incoming and outgoing routes, do not include the in
and out parameters in the debugging command. The in and out parameters
cancel each other; for example, if you enter the debug ip bgp in command and
then enter the debug ip bgp out command, you do not see information on the
incoming routes.
Entering a no debug ip bgp command removes all configured debug
commands for BGP.

Related
Commands

debug ip bgp events — views information about BGP events.
debug ip bgp keepalives — views information about BGP keepalives.
debug ip bgp notifications — views information about BGP notifications.
debug ip bgp updates — views information about BGP updates.
show debugging — views enabled debugging operations.

debug ip bgp dampening
View information on routes being dampened.

S4810
Syntax

debug ip bgp [vrf test | ipv4 {unicast | multicast} | ipv6
{unicast | multicast} dampening

Border Gateway Protocol

405

To disable debugging, use the no debug ip bgp ipv4 multicast dampening
command.
Parameters

dampening

Enter the keyword dampening to debug route flap
dampening information.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced IPv6 MGBP support for the E-Series.

debug ip bgp events
Display information on local BGP state changes and other BGP events.

S4810
Syntax

debug ip bgp [ip-address | peer-group peer-group-name] events
[in | out]
To disable debugging, use the no debug ip bgp [ip-address | peer-group
peer-group-name] events command.

Parameters

406

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-group
peer-groupname

(OPTIONAL) Enter the keyword peer-group then the name
of the peer group.

in

(OPTIONAL) Enter the keyword in to view only events on
inbound BGP messages.

out

(OPTIONAL) Enter the keyword out to view only events on
outbound BGP messages.

Border Gateway Protocol

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To remove all configured debug commands for BGP, enter the no debug ip bgp
command.

debug ip bgp keepalives
Display information about BGP keepalive messages.

S4810
Syntax

debug ip bgp [ip-address | peer-group peer-group-name]
keepalives [in | out]
To disable debugging, use the no debug ip bgp [ip-address | peer-group
peer-group-name] keepalives [in | out] command.

Parameters

Command
Modes

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-group
peer-groupname

(OPTIONAL) Enter the keyword peer-group then the name
of the peer group.

in

(OPTIONAL) Enter the keyword in to view only inbound
keepalive messages.

out

(OPTIONAL) Enter the keyword out to view only outbound
keepalive messages.

EXEC Privilege

Border Gateway Protocol

407

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To remove all configured debug commands for BGP, enter the no debug ip bgp
command.

debug ip bgp notifications
Allows you to view information about BGP notifications received from neighbors.

S4810
Syntax

debug ip bgp [ip-address | peer-group peer-group-name]
notifications [in | out]
To disable debugging, use the no debug ip bgp [ip-address | peer-group
peer-group-name] notifications [in | out] command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-group
peer-groupname

(OPTIONAL) Enter the keyword peer-group then the name
of the peer group.

in

(OPTIONAL) Enter the keyword in to view BGP notifications
received from neighbors.

out

(OPTIONAL) Enter the keyword out to view BGP
notifications sent to neighbors

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

408

Border Gateway Protocol

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To remove all configured debug commands for BGP, enter the no debug ip bgp
command.

debug ip bgp soft-reconfiguration
Enable soft-reconfiguration debug.

S4810 S6000
Syntax

debug ip bgp {ip-address | peer-group-name} softreconfiguration
To disable, use the no debug ip bgp {ip-address | peer-group-name}
soft-reconfiguration command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

(OPTIONAL) Enter the name of the peer group to disable or
enable all routers within the peer group..

Defaults

Disabled

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Border Gateway Protocol

409

Usage
Information

Version 7.7.1.0

Introduced on the C-Series.

Version 7.2.1.0

Introduced.

This command turns on BGP soft-reconfiguration inbound debugging. If no
neighbor is specified, debug turns on for all neighbors.

debug ip bgp updates
Allows you to view information about BGP updates.

S4810
Syntax

debug ip bgp updates [in | out | prefix-list prefix-list-name]
To disable debugging, use the no debug ip bgp [ip-address | peer-group
peer-group-name] updates [in | out] command.

Parameters

in

(OPTIONAL) Enter the keyword in to view only BGP updates
received from neighbors.

out

(OPTIONAL) Enter the keyword out to view only BGP
updates sent to neighbors.

prefix-list
prefix-listname

(OPTIONAL) Enter the keyword prefix-list then the
name of an established prefix list. If the prefix list is not
configured, the default is permit (to allow all routes).

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

(OPTIONAL) Enter the name of the peer group to disable or
enable all routers within the peer group.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

410

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Border Gateway Protocol

Version 7.7.1.0
Usage
Information

Introduced on the C-Series.

To remove all configured debug commands for BGP, enter the no debug ip bgp
command.

default-metric
Allows you to change the metric of redistributed routes to locally originated routes. Use this command
with the redistribute command.

S4810
Syntax

default-metric number
To return to the default setting, use the no default-metric command.

Parameters

number

Enter a number as the metric to be assigned to routes from
other protocols. The range is from 1 to 4294967295.

Defaults

0

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

The default-metric command in BGP sets the value of the BGP
MULTI_EXIT_DISC (MED) attribute for redistributed routes only.

Related
Commands

bgp always-compare-med — enables comparison of all BGP MED attributes.
redistribute — redistributes routes from other routing protocols into BGP.

Border Gateway Protocol

411

description
Enter a description of the BGP routing protocol

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Enter a description to identify the BGP protocol (80
characters maximum).

Defaults

none

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

pre-7.7.1.0

Introduced.

router bgp — enters ROUTER mode on the switch.

max-paths
Configure the maximum number of parallel routes (multipath support) BGP supports.

S4810
Syntax

max-paths {ebgp | ibgp} number
To return to the default values, enter the no maximum-paths command.

Parameters

412

ebgp

Enter the keyword ebgp to enable multipath support for
External BGP routes.

Border Gateway Protocol

ibgp

Enter the keyword ibgp to enable multipath support for
Internal BGP routes.

number

Enter a number as the maximum number of parallel paths.
The range is from 2 to 64.

Defaults

none

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Support from 2 to 64 paths on the S4810. Command syntax
changed to max-path (was maximum-paths).

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

If you enable this command, use the clear ip bgp * command to recompute
the best path.

neighbor activate
This command allows the specified neighbor/peer group to be enabled for the current AFI/SAFI (Address
Family Identifier/Subsequent Address Family Identifier).

S4810
Syntax

neighbor [ip-address | peer-group-name] activate
To disable, use the no neighbor [ip-address | peer-group-name]
activate command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

(OPTIONAL) Enter the name of the peer group.

activate

Enter the keyword activate to enable the neighbor/peer
group in the new AFI/SAFI.

Border Gateway Protocol

413

Defaults

Disabled

Command
Modes

CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

By default, when you create a neighbor/peer group configuration in the Router
BGP context, this enables IPv4/Unicast AFI/SAFI. When you use activate in the
new context, the neighbor/peer group enables for AFI/SAFI.
It is not possible to de-activate a peer from the IPv4 unicast address family.

neighbor add-path
This command allows the specified neighbor/peer group to send/receive multiple path advertisements.

S4810
Syntax
Parameters

414

neighbor [ip-address | peer-group-name] add-path [send |
receive | both] path-count
ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

(OPTIONAL) Enter the name of the peer group.

send

Enter the keyword send to indicate that the system sends
multiple paths to peers.

receive

Enter the keyword receive to indicate that the system
accepts multiple paths from peers.

both

Enter the keyword both to indicate that the system sends
and accepts multiple paths from peers.

path-count

Enter the number paths supported. The range is from 2 to
64.

Border Gateway Protocol

Defaults

none

Command
Modes

CONFIGURATION-ROUTER-BGP-ADDRESS FAMILY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

bgp add-path — allows the advertisement of multiple paths for the same address
prefix without the new paths implicitly replacing any previous ones.

neighbor advertisement-interval
Set the advertisement interval between BGP neighbors or within a BGP peer group.

S4810
Syntax

neighbor {ip-address | peer-group-name} advertisement-interval
seconds
To return to the default value, use the no neighbor {ip-address | peergroup-name} advertisement-interval command.

Parameters

Defaults

Command
Modes

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

Enter the name of the peer group to set the advertisement
interval for all routers in the peer group.

seconds

Enter a number as the time interval, in seconds, between
BGP advertisements. The range is from 0 to 600 seconds.
The default is 5 seconds for internal BGP peers and 30
seconds for external BGP peers.

•

seconds = 5 seconds (internal peers)

•

seconds = 30 seconds (external peers)

ROUTER BGP

Border Gateway Protocol

415

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

neighbor advertisement-start
To send BGP routing updates, set the minimum interval before starting.

S4810
Syntax

neighbor {ip-address} advertisement-start seconds
To return to the default value, use the no neighbor {ip-address}
advertisement-start command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

seconds

Enter a number as the time interval, in seconds, before BGP
route updates are sent. The range is from 0 to 3600 seconds.

Defaults

none

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

416

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

neighbor allowas-in
Set the number of times an AS number can occur in the AS path.

S4810
Syntax

neighbor {ip-address | peer-group-name} allowas-in number
To return to the default value, use the no neighbor {ip-address | peergroup-name} allowas-in command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

Enter the name of the peer group to set the advertisement
interval for all routers in the peer group.

number

Enter a number of times to allow this neighbor ID to use the
AS path. The range is from 1 to 10.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

You cannot set this configuration for a peer that is associated with a peer group.
Similarly, you cannot associate a peer to a peer group if that peer is already
configured with these settings.

Related
Commands

bgp four-octet-as-support — enables 4-byte support for the BGP process.

Border Gateway Protocol

417

neighbor default-originate
Inject the default route to a BGP peer or neighbor.

S4810
Syntax

neighbor {ip-address | peer-group-name} default-originate
[route-map map-name]
To remove a default route, use the no neighbor {ip-address | peergroup-name} default-originate command.

Parameters

ip-address

(OPTIONAL) Enter the IP address of the neighbor in dotted
decimal format.

peer-groupname

Enter the name of the peer group to set the default route of
all routers in that peer group.

route-map
map-name

(OPTIONAL) Enter the keyword route-map then the name
of a configured route map.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

If you apply a route map to a BGP peer or neighbor with the neighbor defaultoriginate command configured, the software does not apply the set filters in the
route map to that BGP peer or neighbor.
When you configure a route-map for a BGP peer or peer group with the neighbor
default-originate command, the command checks for the existence of the
route in BGP RIB.
Route-map configuration on a BGP peer or peer group works only when the LOCRIB contains at least one route.

418

Border Gateway Protocol

When you apply a default route to a BGP peer or peer group using the neighbor
default-originate command, changes to the configured default route-map
are applied to the BGP peer or peer group only after a delay of 15 seconds. As a
result, you must wait for a period of 15 seconds before manually resetting BGP
using the clear ip bgp command.
In case of eBGP, the neighbor default-originate command does not
support extended-community as a non-transtive route-map attribute.
You cannot set this configuration for a peer that is associated with a peer group.
Similarly, you cannot associate a peer to a peer group if that peer is already
configured with these settings.
In order that settings corresponding to the neighbor default-originate
command take effect, you must execute the clear ip bgp command
immediately after you execute the neighbor default-originate command.

neighbor description
Assign a character string describing the neighbor or group of neighbors (peer group).

S4810
Syntax

neighbor {ip-address | peer-group-name} description text
To delete a description, use the no neighbor {ip-address | peer-groupname} description command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

text

Enter a continuous text string up to 80 characters.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Border Gateway Protocol

419

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

neighbor distribute-list
Distribute BGP information via an established prefix list.

S4810
Syntax

neighbor {ip-address | peer-group-name} distribute-list prefixlist-name {in | out}
To delete a neighbor distribution list, use the no neighbor {ip-address |
peer-group-name} distribute-list prefix-list-name {in | out}
command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group to apply the distribute list
filter to all routers in the peer group.

prefix-listname

Enter the name of an established prefix list.
If the prefix list is not configured, the default is permit (to
allow all routes).

in

Enter the keyword in to distribute only inbound traffic.

out

Enter the keyword out to distribute only outbound traffic.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

420

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Border Gateway Protocol

Usage
Information

Other BGP filtering commands include: neighbor filter-list, ip as-path
access-list, and neighbor route-map.

Related
Commands

neighbor route-map — assigns a route map to a neighbor or peer group.

neighbor ebgp-multihop
Attempt and accept BGP connections to external peers on networks that are not directly connected.

S4810
Syntax

neighbor {ip-address | peer-group-name} ebgp-multihop [ttl]
To disallow and disconnect connections, use the no neighbor {ip-address |
peer-group-name} ebgp-multihop command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

ttl

(OPTIONAL) Enter the number of hops as the Time to Live
(ttl) value. The range is from 1 to 255. The default is 255.

Defaults

Disabled.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To prevent loops, the neighbor ebgp-multihop command does not install the
default routes of the multihop peer. Networks not directly connected are not
considered valid for best-path selection.

Border Gateway Protocol

421

neighbor fall-over
Enable or disable fast fall-over for BGP neighbors.

S4810
Syntax

neighbor {ipv4-address | peer-group-name} fall-over
To disable, use the no neighbor {ipv4-address | peer-group-name}
fall-over command.

Parameters

ipv4-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

Defaults

Disabled.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced

Usage
Information

When you enable failover, BGP keeps track of IP or IPv6 ability to reach the peer
remote address and the peer local address. Whenever either address becomes
unreachable (for example, no active route exists in the routing table for the peer IP
or IPv6 destination/local address), BGP brings down the session with the peer.

Related
Commands

show ip bgp neighbors — displays information on the BGP neighbors.

422

Border Gateway Protocol

neighbor local-as
To accept external routes from neighbors with a local AS number in the AS number path, configure
Internal BGP (IBGP) routers.

S4810
Syntax

neighbor {ip-address | peer-group-name} local-as as-number [noprepend]
To return to the default value, use the no neighbor {ip-address | peergroup-name} local-as command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group to set the advertisement
interval for all routers in the peer group.

as-number

Enter the AS number to reset all neighbors belonging to that
AS. The range is from 0 to 65535 (2 byte), from 1 to
4294967295 (4 byte) or from 0.1 to 65535.65535 (dotted
format).

no prepend

Specifies that local AS values do not prepend to
announcements from the neighbor.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

If a local-as is configured, BGP does not allow for the configuration of BGP
confederation. Similarly, if BGP confederation is configured, then BGP does not
allow the configuration of local-as.

Border Gateway Protocol

423

This command automatically restarts the neighbor session for the configuration to
take effect.
Related
Commands

bgp four-octet-as-support — enables 4-byte support for the BGP process.

neighbor maximum-prefix
Control the number of network prefixes received.

S4810
Syntax

neighbor {ip-address | peer-group-name} maximum-prefix maximum
[threshold] [warning-only]
To return to the default values, use the no neighbor {ip-address | peergroup-name} maximum-prefix maximum command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

maximum

Enter a number as the maximum number of prefixes allowed
for this BGP router. The range is from 1 to 4294967295.

threshold

(OPTIONAL) Enter a number to be used as a percentage of
the maximum value. When the number of prefixes reaches
this percentage of the maximum value, the E-Series software
sends a message. The range is from 1 to 100 percent. The
default is 75.

warning-only

(OPTIONAL) Enter the keyword warning-only to set the
router to send a log message when the maximum value is
reached. If this parameter is not set, the router stops peering
when the maximum number of prefixes is reached.
NOTE: When you set this option, the router accepts BGP
prefixes only until the maximum configured value. After
the maximum number is reached, the router drops any
additional prefixes that it receives.

Defaults

threshold = 75

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

424

Border Gateway Protocol

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

If you configure the neighbor maximum-prefix command and the neighbor
receives more prefixes than the neighbor maximum-prefix command
configuration allows, the neighbor goes down and the show ip bgp summary
command displays (prfxd) in the State/PfxRcd column for that neighbor. The
neighbor remains down until you enter the clear ip bgp command for the
neighbor or the peer group to which the neighbor belongs or you enter the
neighbor shutdown and neighbor no shutdown commands.

Related
Commands

show ip bgp summary — displays the current BGP configuration.

neighbor password
Enable message digest 5 (MD5) authentication on the TCP connection between two neighbors.

S4810
Syntax

neighbor {ip-address | peer-group-name} password [encryptiontype] password
To delete a password, use the no neighbor {ip-address | peer-groupname} password command.

Parameters

ip-address

Enter the IP address of the router to be included in the peer
group.

peer-groupname

Enter the name of a configured peer group.

encryptiontype

(OPTIONAL) Enter 7 as the encryption type for the password
entered. 7 means that the password is encrypted and hidden.

password

Enter a text string up to 80 characters long. The first
character of the password must be a letter.
You cannot use spaces in the password.

Defaults

Not configured.

Border Gateway Protocol

425

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

This command automatically restarts the neighbor session for the configuration to
take effect.
Configure the same password on both BGP peers or a connection does not occur.
When you configure MD5 authentication between two BGP peers, each segment
of the TCP connection between them is verified and the MD5 digest is checked on
every segment sent on the TCP connection.
Configuring a password for a neighbor causes an existing session to be torn down
and a new one established.
If you specify a BGP peer group by using the peer-group-name parameter, all the
members of the peer group inherit the characteristic configured with this
command.
If you configure a password on one neighbor, but you have not configured a
password for the neighboring router, the following message appears on the
console while the routers attempt to establish a BGP session between them:
%RPM0-P:RP1 %KERN-6-INT: No BGP MD5 from [peer's IP address]
:179 to [local router's IP address]:65524
Also, if you configure different passwords on the two routers, the following
message appears on the console:
%RPM0-P:RP1 %KERN-6-INT: BGP MD5 password mismatch from
[peer's IP address] : 11502 to [local router's IP address] :179

426

Border Gateway Protocol

neighbor peer-group (assigning peers)
Allows you to assign one peer to an existing peer group.

S4810
Syntax

neighbor ip-address peer-group peer-group-name
To delete a peer from a peer group, use the no neighbor ip-address peergroup peer-group-name command.

Parameters

ip-address

Enter the IP address of the router to be included in the peer
group.

peer-groupname

Enter the name of a configured peer group.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

You can assign up to 256 peers to one peer group.
When you add a peer to a peer group, it inherits all the peer group’s configured
parameters. A peer cannot become part of a peer group if any of the following
commands are configured on the peer:
•

neighbor advertisement-interval

•

neighbor distribute-list

•

neighbor route-map

•

neighbor route-reflector-client

Border Gateway Protocol

427

A neighbor may keep its configuration after it was added to a peer group if the
neighbor’s configuration is more specific than the peer group’s, and the neighbor’s
configuration does not affect outgoing updates.
A peer group must exist before you add a peer to it. If the peer group is disabled
(shutdown) the peers within the group are also disabled (shutdown).
In BGP, you cannot associate a peer to a peer-group without configuring the
remote-as for Internal BGP (IBGP) or External BGP (EBGP).
This command automatically restarts the neighbor session for the configuration to
take effect.
Related
Commands

clear ip bgp — resets BGP sessions.
neighbor peer-group (creating group) — creates a peer group.
show ip bgp peer-group — views BGP peers.
show ip bgp neighbors — views BGP neighbors configurations.

neighbor peer-group (creating group)
Allows you to create a peer group and assign it a name.

S4810
Syntax

neighbor peer-group-name peer-group
To delete a peer group, use the no neighbor peer-group-name peer-group
command.

Parameters

peer-groupname

Enter a text string up to 16 characters long as the name of
the peer group.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

428

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Border Gateway Protocol

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

When you create a peer group, it is disabled (Shut mode).

Related
Commands

neighbor peer-group (assigning peers) — assigns routers to a peer group.
neighbor remote-as — assigns a indirectly connected AS to a neighbor or peer
group.
neighbor shutdown — disables a peer or peer group.

neighbor peer-group passive
Enable passive peering on a BGP peer group, that is, the peer group does not send an OPEN message,
but responds to one.

S4810
Syntax

neighbor peer-group-name peer-group passive [limit sessions]
To delete a passive peer-group, use the no neighbor peer-group-name
peer-group passive command.

Parameters

peer-groupname

Enter a text string up to 16 characters long as the name of
the peer group.

limit

(Optional) Enter the keyword limit to constrain the
numbers of sessions for this peer-group. The range is from 2
to 256. The default is 256.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced the limit keyword on the S4810.

Border Gateway Protocol

429

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

After you configure a peer group as passive, assign it a subnet using the neighbor
soft-reconfiguration inbound command.
For passive eBGP limits, the Remote AS must be different from the AS for this
neighbor.

Related
Commands

neighbor soft-reconfiguration inbound — assigns a subnet to a dynamically
configured BGP neighbor.
neighbor remote-as — assigns an indirectly connected AS to a neighbor or peer
group.

neighbor remote-as
Create and specify the remote peer to the BGP neighbor.

S4810
Syntax

neighbor {ip-address | peer-group-name} remote-as number
To delete a remote AS entry, use the no neighbor {ip-address | peergroup-name} remote-as number command.

Parameters

ip-address

Enter the IP address of the neighbor to enter the remote AS
in its routing table.

peer-groupname

Enter the name of the peer group to enter the remote AS
into routing tables of all routers within the peer group.

number

Enter a number of the AS. The range is from 0 to 65535 (2
byte) or from 1 to 4294967295 (4 byte).

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

430

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Border Gateway Protocol

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series. Added 4-byte support.

To accept 4-byte formats before entering a 4 byte AS Number, configure your
system. If the number parameter is the same as the AS number used in the router
bgp command, the remote AS entry in the neighbor is considered an internal BGP
peer entry.
This command creates a peer and the newly created peer is disabled (Shutdown).
This command automatically restarts the neighbor session for the configuration to
take effect.

Related
Commands

router bgp — enters ROUTER BGP mode and configures routes in an AS.
bgp four-octet-as-support — enables 4-byte support for the BGP process.

neighbor remove-private-as
Remove private AS numbers from the AS-PATH of outgoing updates.

S4810
Syntax

neighbor {ip-address | peer-group-name} remove-private-as
To return to the default, use the no neighbor {ip-address | peer-groupname} remove-private-as command.

Parameters

ip-address

Enter the IP address of the neighbor to remove the private AS
numbers.

peer-groupname

Enter the name of the peer group to remove the private AS
numbers.

Defaults

Disabled (that is, private AS number are not removed).

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Border Gateway Protocol

431

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series. Added 4-byte support.

Applies to EBGP neighbors only.
Configure your system to accept 4-byte formats before entering a 4 byte AS
Number.
If the AS-PATH contains both public and private AS number or contains AS
numbers of an EBGP neighbor, the private AS numbers are not removed.
If a confederation contains private AS numbers in its AS-PATH, the software
removes the private AS numbers only if they follow the confederation numbers in
the AS path.
Private AS numbers are from 64512 to 65535 (2 byte).

neighbor route-map
Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group.

S4810
Syntax

neighbor {ip-address | peer-group-name} route-map map-name {in
| out}
To remove the route map, use the no neighbor {ip-address | peergroup-name} route-map map-name {in | out} command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

map-name

Enter the name of an established route map.
If the Route map is not configured, the default is deny (to
drop all routes).

in

Enter the keyword in to filter inbound routes.

out

Enter the keyword out to filter outbound routes.
NOTE: This command sends routes to peers only if an
outbound policy is configured and if there is a change in
the existing outbound policy.

432

Border Gateway Protocol

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

When you apply a route map to outbound routes, only routes that match at least
one section of the route map are permitted.
If you identify a peer group by name, the peers in that peer group inherit the
characteristics in the Route map used in this command. If you identify a peer by IP
address, the Route map overwrites either the inbound or outbound policies on that
peer.

neighbor route-reflector-client
Configure the router as a route reflector and the specified neighbors as members of the cluster.

S4810
Syntax

neighbor {ip-address | peer-group-name} route-reflector-client
To remove one or more neighbors from a cluster, use the no neighbor {ipaddress | peer-group-name} route-reflector-client command. If you
delete all members of a cluster, you also delete the route-reflector configuration
on the router.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group.

Border Gateway Protocol

All routers in the peer group receive routes from a route
reflector.

433

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

A route reflector reflects routes to the neighbors assigned to the cluster. Neighbors
in the cluster do not need not to be fully meshed. By default, when you use no
route reflector, the internal BGP (IBGP) speakers in the network must be fully
meshed.
The first time you enter this command, the router configures as a route reflector
and the specified BGP neighbors configure as clients in the route-reflector cluster.
When you remove all clients of a route reflector using the no neighbor routereflector-client command, the router no longer functions as a route
reflector.
If the clients of a route reflector are fully meshed, you can configure the route
reflector to not reflect routes to specified clients by using the no bgp clientto-client reflection command.
This command automatically restarts the neighbor session for the configuration to
take effect.

Related
Commands

bgp client-to-client reflection — enables route reflection between the route
reflector and the clients.

neighbor sender-side-loopdetect
Enables sender-side loop detection for BGP.

S4810
Syntax

434

neighbor {ip-address | peer-group-name} sender-side-loopdetect

Border Gateway Protocol

To disable sender-side loop detection, use the no neighbor {ip-address |
peer-group-name} sender-side-loopdetect command.
Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group to enable or disable all
routers with in the peer group.
All routers in the peer group receive routes from a route
reflector.

Defaults

Enabled.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

This command enables sender-side-loopdetect for a specified BGP neighbor. BGP
does not advertise a route to a peer if the AS-Path of the route already contains the
peer's AS.
NOTE: If you configure a neighbor to accept such routes using the neighbor
allowas-in command, you must disable sender-side loop detection for that
neighbor.

Related
Commands

bgp client-to-client reflection — enables route reflection between the route
reflector and the clients.

Border Gateway Protocol

435

neighbor shutdown
Disable a BGP neighbor or peer group.

S4810
Syntax

neighbor {ip-address | peer-group-name} shutdown
To enable a disabled neighbor or peer group, use the neighbor {ip-address |
peer-group-name}no shutdown command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group to disable or enable all
routers within the peer group.

Defaults

Enabled (that is, BGP neighbors and peer groups are disabled.)

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Peers that are enabled within a peer group are disabled when their peer group is
disabled.
The neighbor shutdown command terminates all BGP sessions on the BGP
neighbor or BGP peer group. Use this command with caution as it terminates the
specified BGP sessions. When a neighbor or peer group is shut down, use the show
ip bgp summary command to confirm its status.

Related
Commands

show ip bgp summary — displays the current BGP configuration.
show ip bgp neighbors — displays the current BGP neighbors.

436

Border Gateway Protocol

neighbor soft-reconfiguration inbound
Enable soft-reconfiguration for BGP.

S4810
Syntax

neighbor {ip-address | peer-group-name} soft-reconfiguration
inbound
To disable, use the no neighbor {ip-address | peer-group-name} softreconfiguration inbound command.

Parameters

ip-address

Enter the IP address of the neighbor in dotted decimal
format.

peer-groupname

Enter the name of the peer group to disable or enable all
routers within the peer group.

Defaults

Disabled

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

This command enables soft-reconfiguration for the BGP neighbor specified. BGP
stores all the updates the neighbor receives but does not reset the peer-session.
You cannot set this configuration for a peer that is associated with a peer group.
Similarly, you cannot associate a peer to a peer group if that peer is already
configured with these settings.
CAUTION: Inbound update storage is a memory-intensive operation. The
entire BGP update database from the neighbor is stored in memory
regardless of the inbound policy results applied on the neighbor.

Border Gateway Protocol

437

NOTE: This command is supported in BGP Router Configuration mode for
IPv4 Unicast address only.
Related
Commands

show ip bgp neighbors — displays routes received by a neighbor.

neighbor timers
Set keepalive and hold time timers for a BGP neighbor or a peer group.

S4810
Syntax

neighbor {ip-address | peer-group-name} timers keepalive
holdtime
To return to the default values, use the no neighbor {ip-address | peergroup-name} timers command.

Parameters

Defaults

ip-address

Enter the IP address of the peer router in dotted decimal
format.

peer-groupname

Enter the name of the peer group to set the timers for all
routers within the peer group.

keepalive

Enter a number for the time interval, in seconds, between
keepalive messages sent to the neighbor routers. The range
is from 1 to 65535. The default is 60 seconds.

holdtime

Enter a number for the time interval, in seconds, between
the last keepalive message and declaring the router dead.
The range is from 3 to 65535. The default is 180 seconds.

•

keepalive = 60 seconds

•

holdtime = 180 seconds

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

438

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

Usage
Information

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Timer values configured with the neighbor timers command override the timer
values configured with any other command.
When two neighbors, configured with different keepalive and holdtime values,
negotiate for new values, the resulting values are as follows:
•

the lower of the holdtime value is the new holdtime value, and

•

whichever is the lower value; one-third of the new holdtime value, or the
configured keepalive value, is the new keepalive value.

neighbor update-source
Enable the E-Series software to use Loopback interfaces for TCP connections for BGP sessions.

S4810
Syntax

neighbor {ip-address | peer-group-name} update-source interface
To use the closest interface, use the no neighbor {ip-address | peergroup-name} update-source interface command.

Parameters

ip-address

Enter the IP address of the peer router in dotted decimal
format.

peer-groupname

Enter the name of the peer group to disable all routers within
the peer group.

interface

Enter the keyword loopback then a number of the
Loopback interface. The range is from 0 to 16383.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

439

Usage
Information

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Loopback interfaces are up constantly and the BGP session may need one
interface constantly up to stabilize the session. The neighbor update-source
command is not necessary for directly connected internal BGP sessions.
Neighbors are sorted according to the source and destination ip addresses. If an
update-source ip address exists, then the source ip address determines the order in
which the neighbors are displayed.

neighbor weight
Assign a weight to the neighbor connection, which is used to determine the best path.

S4810
Syntax

neighbor {ip-address | peer-group-name} weight weight
To remove a weight value, use the no neighbor {ip-address | peergroup-name} weight command.

Parameters

ip-address

Enter the IP address of the peer router in dotted decimal
format.

peer-groupname

Enter the name of the peer group to disable all routers within
the peer group.

weight

Enter a number as the weight. The range is from 0 to 65535.
The default is 0.

Defaults

0

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

440

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Border Gateway Protocol

Usage
Information

In the Dell Networking OS best path selection process, the path with the highest
weight value is preferred.
NOTE: In the Dell Networking OS best-path selection process, the path with
the highest weight value is preferred.
If you configure the set weight command in a route map applied to this
neighbor, the weight set in that command overrides the weight set in the
neighbor weight command.

Related
Commands

set weight — assigns a weight to all paths meeting the route map criteria.

network
Specify the networks for the BGP process and enter them in the BGP routing table.

S4810
Syntax

network ip-address mask [route-map map-name]
To remove a network, use the no network ip-address mask [route-map
map-name] command.

Parameters

ip-address

Enter an IP address in dotted decimal format of the network.

mask

Enter the mask of the IP address in the slash prefix length
format (for example, /24).
The mask appears in command outputs in dotted decimal
format (A.B.C.D).

route-map
map-name

(OPTIONAL) Enter the keyword route-map then the name
of an established route map.
Only the following ROUTE-MAP mode commands are
supported:
•

match ip address

•

set community

•

set local-preference

•

set metric

•

set next-hop

•

set origin

•

set weight

If the route map is not configured, the default is deny (to
drop all routes).

Border Gateway Protocol

441

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Dell Networking OS software resolves the network address the network command
configures with the routes in the main routing table to ensure that the networks are
reachable using non-BGP routes and non-default routes.
As BGP does not query next-hop information corresponding to locally originated
routes, a local route with an unreachable next-hop is chosen as the best route.
When a combination of locally originated and peer originated routes occurs, both
these routes will exist in the RTM. However, only the best route is kept active in the
RTM and the remaining route is rendered in-active.
It is possible to keep only one locally originated route in the BGP database.
Network command has preference over the re-distributed routes. When the locally
originated route is no longer present in the database the other route is
automatically installed.
In BGP, the next-hop for the route is calculated from the information that is
acquired through IGP or static routes.

Related
Commands

redistribute — redistributes routes into BGP.

network backdoor
Specify this IGP route as the preferred route.

S4810
Syntax

network ip-address mask backdoor
To remove a network, use the no network ip-address mask backdoor
command.

442

Border Gateway Protocol

Parameters

ip-address

Enter an IP address in dotted decimal format of the network.

mask

Enter the mask of the IP address in the slash prefix length
format (for example, /24).
The mask appears in command outputs in dotted decimal
format (A.B.C.D).

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Although Dell Networking OS does not generate a route due to the backdoor
config, there is an option for injecting/sourcing a local route in the presence of
network backdoor config on a learned route.

redistribute
Redistribute routes into BGP.

S4810
Syntax

redistribute {connected | static} [route-map map-name]
To disable redistribution, use the no redistribution {connected | static}
command.

Parameters

connected

Enter the keyword connected to redistribute routes from
physically connected interfaces.

static

Enter the keyword static to redistribute manually
configured routes.
These routes are treated as incomplete routes.

Border Gateway Protocol

443

route-map
map-name

(OPTIONAL) Enter the keyword route-map then the name
of an established route map.
Only the following ROUTE-MAP mode commands are
supported:
•

match ip address

•

set community

•

set local-preference

•

set metric

•

set next-hop

•

set origin

•

set weight

If the route map is not configured, the default is deny (to
drop all routes).

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced the ability to substitute IGP cost for MED when a
peer/peer-group outbound route-map is set as internal.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

You can use the redistribute command to advertise the IGP cost as the MED
on redistributed routes. When you set the route-map with metric-type internal and
applied outbound to an EBGP peer/peer-group, the advertised routes
corresponding to those peer/peer-groups have the IGP cost set as MED.
If you do not configure the default-metric command, in addition to the
redistribute command, or there is no route map to set the metric, the metric
for redistributed static and connected is “0”.

444

Border Gateway Protocol

To redistribute the default route (0.0.0.0/0), configure the neighbor defaultoriginate command.
As BGP does not query next-hop information corresponding to locally originated
routes, a local route with an unreachable next-hop is chosen as the best route.
When a combination of locally originated and peer originated routes occurs, both
these routes will exist in the RTM. However, only the best route is kept active in the
RTM and the remaining route is rendered in-active.
It is possible to keep only one locally originated route in the BGP database.
Network command has preference over the re-distributed routes. When the locally
originated route is no longer present in the database the other route is
automatically installed.
Related
Commands

neighbor default-originate — injects the default route.

redistribute ospf
Redistribute OSPF routes into BGP.

S4810
Syntax

redistribute ospf process-id [[match external {1 | 2}] [match
internal]] [route-map map-name]
To stop redistribution of OSPF routes, use the no redistribute ospf
process-id command.

Parameters

process-id

Enter the number of the OSPF process. The range is from 1
to 65535.

match external
{1 | 2}

(OPTIONAL) Enter the keywords match external to
redistribute OSPF external routes. You can specify 1 or 2 to
redistribute those routes only.

match internal

(OPTIONAL) Enter the keywords match internal to
redistribute OSPF internal routes only.

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of a configured route map.

Defaults

Not configured.

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Border Gateway Protocol

445

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced the ability to substitute IGP cost for MED when a
peer/peer-group outbound route-map is set as internal.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

You can use the redistribute command to advertise the IGP cost as the MED
on redistributed routes. When you set the route-map with metric-type internal and
apply outbound to an EBGP peer/peer-group, the advertised routes corresponding
to those peer/peer-groups have the IGP cost set as MED.
When you enter the redistribute isis process-id command without any
other parameters, Dell Networking OS redistributes all OSPF internal routes,
external type 1 routes, and external type 2 routes. RFC does not support this
feature.

router bgp
To configure and enable BGP, enter ROUTER BGP mode.

S4810
Syntax

router bgp as-number
To disable BGP, use the no router bgp as-number command.

Parameters

as-number

Enter the AS number. The range is from 1 to 65535 (2 byte),
from 1 to 4294967295 (4 byte), or from 0.1 to 65535.65535
(dotted format).

Defaults

Not enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

446

Introduced on the S6000.

Border Gateway Protocol

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

At least one interface must be in Layer 3 mode for the router bgp command to
be accepted. If no interfaces are enabled for Layer 3, an error message appears:
% Error: No router id
configured
BGP does not allow 23456 (AS-TRANS) as a configured AS number.

Example

Dell(conf)#router bgp 3
Dell(conf-router_bgp)#

show capture bgp-pdu neighbor
Display BGP packet capture information for an IPv4 address on the system.

S4810
Syntax
Parameters

show capture bgp-pdu neighbor ipv4-address
ipv4-address

Enter the IPv4 address (in dotted decimal format) of the BGP
address to display packet information for that address.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced.

Border Gateway Protocol

447

Example

Dell(conf-router_bgp)#show capture bgp-pdu neighbor 20.20.20.2
Incoming packet capture enabled for BGP neighbor 20.20.20.2
Available buffer size 40958758, 26 packet(s) captured using
680 bytes
PDU[1] : len 101, captured 00:34:51 ago
ffffffff ffffffff ffffffff ffffffff 00650100 00000013
00000000
00000000 419ef06c 00000000
00000000 00000000 00000000 00000000 0181a1e4 0181a25c
41af92c0
00000000 00000000 00000000
00000000 00000001 0181a1e4 0181a25c 41af9400 00000000
PDU[2] : len 19, captured 00:34:51 ago
ffffffff ffffffff ffffffff ffffffff 00130400
PDU[3] : len 19, captured 00:34:51 ago
ffffffff ffffffff ffffffff ffffffff 00130400
[. . .]
Outgoing packet capture enabled for BGP neighbor 20.20.20.2
Available buffer size 40958758, 27 packet(s) captured using
562 bytes
PDU[1] : len 41, captured 00:34:52 ago
ffffffff ffffffff ffffffff ffffffff 00290104 000100b4
14141401
0c020a01 04000100 01020080
00000000
PDU[2] : len 19, captured 00:34:51 ago
ffffffff ffffffff ffffffff ffffffff 00130400
PDU[3] : len 19, captured 00:34:50 ago
ffffffff ffffffff ffffffff ffffffff 00130400
[. . .]
Dell#

show config
View the current ROUTER BGP configuration.

S4810
Syntax

show config

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

448

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

Example

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Dell(conf-router_bgp)#show config
!
router bgp 100
network 1.1.11.1/32
network 1.1.12.1/32
network 1.1.13.1/32
neighbor 10.1.1.2 remote-as 200
neighbor 10.1.1.2 no shutdown

show ip bgp
View the current BGP IPv4 routing table for the system.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] [network [networkmask] [longer-prefixes]]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view ipv4–unicast route information
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

network

(OPTIONAL) Enter the network address (in dotted decimal
format) of the BGP network to view information only on that
network.

network-mask

(OPTIONAL) Enter the network mask (in slash prefix format)
of the BGP network address.

longer-prefixes

(OPTIONAL) Enter the keywords longer-prefixes to view
all routes with a common prefix.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Border Gateway Protocol

449

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Added the add-path option to the S4810. Output on the
S4810 shows the ADDPATH parameters.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

When you enable the bgp non-deterministic-med command, the show ip
bgp command output for a BGP route does not list the INACTIVE reason.
In BGP, this command displays the exact reason why the route is discarded.
The following describes the show ip bgp command shown in the following
example.

Example

Field

Description

Network

Displays the destination network prefix of each BGP route.

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell#show ip bgp
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Weight Path
*> 55.0.0.0/24
172.16.0.2
*> 66.0.0.0/24
172.16.0.2

Related
Commands

450

Next Hop

Metric

LocPrf

0 200 i
0 200 i

show ip bgp community — views the BGP communities.

Border Gateway Protocol

neighbor maximum-prefix — controls the number of network prefixes received.

show ip bgp cluster-list
View BGP neighbors in a specific cluster.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] cluster-list
[cluster-id]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view cluster information of BGP neighbors
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

cluster-id

(OPTIONAL) Enter the cluster id in dotted decimal format.
The range is 1 — 4294967295.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp cluster-list command shown in
the following example.
Field

Description

Network

Displays the destination network prefix of each BGP route.

Border Gateway Protocol

451

Example

Field

Description

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell#show ip bgp cluster-list
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.6
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Next Hop
Weight Path
*>I 55.0.0.0/24
172.16.0.2
0
0 400 500 600 i
*>I 66.0.0.0/24
172.16.0.2
0
0 500 i
*>I 77.0.0.0/24
172.16.0.2
0
0 i

Metric

LocPrf

Dell#show ip bgp cluster-list 4.4.4.4
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.6
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Next Hop
Weight Path
*>I 55.0.0.0/24
172.16.0.2
0
0 400 500 600 i
*>I 66.0.0.0/24
172.16.0.2
0
0 500 i
*>I 77.0.0.0/24
172.16.0.2
0
0 i
Dell#

452

Metric

LocPrf

Border Gateway Protocol

show ip bgp community
View information on all routes with Community attributes or view specific BGP community groups.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] community [communitynumber] [local-as] [no-export] [no-advertise]
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view information either on all routes with
community attributes or specific BGP community routes
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

communitynumber

Enter the community number in AA:NN format where AA is
the AS number (2 bytes) and NN is a value specific to that
autonomous system.
You can specify up to eight community numbers to view
information on those community groups.

local-AS

Enter the keywords local-AS to view all routes with the
COMMUNITY attribute of NO_EXPORT_SUBCONFED.
All routes with the NO_EXPORT_SUBCONFED (0xFFFFFF03)
community attribute must not be advertised to external BGP
peers.

no-advertise

Enter the keywords no-advertise to view all routes
containing the well-known community attribute of
NO_ADVERTISE.
All routes with the NO_ADVERTISE (0xFFFFFF02) community
attribute must not be advertised to other BGP peers.

no-export

Enter the keywords no-export to view all routes containing
the well-known community attribute of NO_EXPORT.
All routes with the NO_EXPORT (0xFFFFFF01) community
attribute must not be advertised outside a BGP
confederation boundary.

Command
Modes

•

EXEC

•

EXEC Privilege

Border Gateway Protocol

453

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To view the total number of COMMUNITY attributes found, use the show ip bgp
summary command. The text line above the route table states the number of
COMMUNITY attributes found.
The show ip bgp community command without any parameters lists BGP
routes with at least one BGP community attribute and the output is the same as for
the show ip bgp command output.
The following describes the show ip bgp community command shown in the
following example.

Example

454

Field

Description

Network

Displays the destination network prefix of each BGP route.

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell#show ip bgp community ?
local-AS
Do not export outside local AS (wellknown community)
no-advertise
Do not advertise to any peer (wellknown community)
no-export
Do not export to next AS (well-known
community)
aa:nn
Community number in aa:nn format
|
Pipe through a command

Border Gateway Protocol

Dell#show ip bgp community
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Weight Path
*> 55.0.0.0/24
172.16.0.2
*> 66.0.0.0/24
172.16.0.2

Next Hop

Metric

LocPrf

0 200 i
0 200 i

Dell#show ip bgp community no-advertise
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Weight Path
*> 66.0.0.0/24
172.16.0.2

Next Hop

Metric

LocPrf

0 200 i

show ip bgp community-list
View routes that a specific community list affects.

S4810
Syntax
Parameters

Command
Modes

show ip bgp [vrf vrf-name] [ipv4 unicast] community-list
community-list-name [exact-match]
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view routes affected by a specific community list
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

communitylist-name

Enter the name of a configured IP community list (maximum
140 characters).

exact-match

Enter the keyword for an exact match of the communities.

•

EXEC

•

EXEC Privilege

Border Gateway Protocol

455

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The show ip bgp community-list command without any parameters lists BGP
routes matching the Community List and the output is the same as for the show
ip bgp command output.
The following describes the show ip bgp community-list pass command
shown in the following example.

Example

456

Field

Description

Network

Displays the destination network prefix of each BGP route.

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell#conf t
Dell(conf)#ip community-list cl1
Dell(config-community-list)#permit 1000:1
Dell(config-community-list)#end
Dell#show ip bgp community-list cl1
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete

Border Gateway Protocol

Network
Next Hop
Metric
LocPrf
Weight Path
*> 55.0.0.0/24
172.16.0.2
0 200 i
Dell#show ip bgp 55.0.0.0/24
BGP routing table entry for 55.0.0.0/24
Paths: (1 available, table Default-IP-Routing-Table.)
Not advertised to any peer
Received from :
172.16.0.2 (172.16.0.2)
AS_PATH : 200

Best

Next-Hop : 172.16.0.2, Cost : 0
Origin IGP, Metric 4294967295 (Default), LocalPref
Weight 0, external
Communities :
200:1
1000:1

100,

3000:1

show ip bgp dampened-paths
View BGP routes that are dampened (non-active).

S4810
Syntax
Parameters

Command
Modes

Command
History

show ip bgp [vrf vrf-name] [ipv4 unicast] dampened-paths
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view routes that are affected by a specific
community list corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

•

EXEC

•

EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

457

Usage
Information

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To determine a BGP session flap, both a route-down event and a subsequent
route-up event corresponding to a single route are considered. As a result, a flap
event is penalized only one time during the route-down event. The subsequent
route-up event corresponding to the same route is not considered as a flap and is
not penalized.
The history paths that the show ip bgp command displays contain only the prefix
and the next-hop information. The next-hop information shows the ip address of
the neighbor. It does not show the actual next-hop details.
The following describes the show ip bgp damp command shown in the
following example.

Example

Field

Description

Network

Displays the network ID to which the route is dampened.

From

Displays the IP address of the neighbor advertising the
dampened route.

Reuse

Displays the hour:minutes:seconds until the dampened
route is available.

Path

Lists all the ASs the dampened route passed through to
reach the destination network.

Dell#show ip bgp dampened-paths
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
d

55.0.0.0/24

From
172.16.0.2

Reuse

Path
00:36:23

200

Dell#

show ip bgp detail
Display BGP internal information for the IPv4 Unicast address family.

S4810
Syntax

show ip bgp [ipv4 unicast] detail

Defaults

none

458

Border Gateway Protocol

Command
Modes
Command
History

•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced.

Dell#show ip bgp detail
Detail information for BGP Node
bgpNdP 0x41a17000 : NdTmrP 0x41a17000 : NdKATmrP 0x41a17014 :
NdTics 74857 :
NhLocAS 1 : NdState 2 : NdRPMPrim 1 : NdListSoc 13
NdAuto 1 : NdEqCost 1 : NdSync 0 : NdDefOrg 0
NdV6ListSoc 14 NdDefDid 0 : NdConfedId 0 : NdMedConfed 0 :
NdMedMissVal -1 :
NdIgnrIllId 0 : NdRRC2C 1 : NdClstId 33686273 : NdPaTblP
0x41a19088
NdASPTblP 0x41a19090 : NdCommTblP 0x41a19098 : NhOptTransTblP
0x41a190a0 :
NdRRClsTblP 0x41a190a8
NdPktPA 0 : NdLocCBP 0x41a6f000 : NdTmpPAP 0x419efc80 :
NdTmpASPAP 0x41a25000 :
NdTmpCommP 0x41a25800
NdTmpRRClP 0x41a4b000 : NdTmpOptP 0x41a4b800 : NdTmpNHP :
NdOrigPAP 0
NdOrgNHP 0 : NdModPathP 0x419efcc0 : NdModASPAP 0x41a4c000 :
NdModCommP 0x41a4c800
NdModOptP 0x41a4d000 : NdModNHP : NdComSortBufP 0x41a19110 :
NdComSortHdP
0x41a19d04 : NdUpdAFMsk 0 : AFRstSet 0x41a1a298 : NHopDfrdHdP
0x41a1a3e0 :
NumNhDfrd 0 : CfgHdrAFMsk 1
AFChkNetTmrP 0x41ee705c : AFRtDamp 0 : AlwysCmpMed 0 : LocrHld
10 : LocrRem 10 :
softReconfig 0x41a1a58c
DefMet 0 : AutoSumm 1 : NhopsP 0x41a0d100 : Starts 0 : Stops
0 : Opens 0
Closes 0 : Fails 0 : Fatals 0 : ConnExps 0 : HldExps 0 :
KeepExps 0
RxOpens 0 : RxKeeps 0 : RxUpds 0 : RxNotifs 0 : TxUpds 0 :
TxNotifs 0
BadEvts 0 : SynFails 0 : RxeCodeP 0x41a1b6b8 : RxHdrCodeP
0x41a1b6d4 : RxOpCodeP

Border Gateway Protocol

459

0x41a1b6e4
RxUpdCodeP 0x41a1b704 : TxEcodeP 0x41a1b734 : TxHdrcodeP
0x41a1b750 : TxOpCodeP
0x41a1b760
TxUpdCodeP 0x41a1b780 : TrEvt 0 : LocPref 100 : tmpPathP
0x41a1b7b8 : LogNbrChgs 1
RecursiveNH 1 : PgCfgId 0 : KeepAlive 0 : HldTime 0 : DioHdl
0 : AggrValTmrP
0x41ee7024
UpdNetTmrP 0 : RedistTmrP 0x41ee7094 : PeerChgTmrP 0 :
CleanRibTmrP 0x41ee7104
PeerUpdTmrP 0x41ee70cc : DfrdNHTmrP 0x41ee7174 : DfrdRtselTmrP
0x41ee713c :
FastExtFallover 1 : FastIntFallover 0 : Enforce1stAS 1
PeerIdBitsP 0x41967120 : softOutSz 16 : RibUpdCtxCBP 0
UpdPeerCtxCBP 0 : UpdPeerCtxAFI 0 : TcpioCtxCB 0 : RedistBlk 1
NextCBPurg 1101119536 : NumPeerToPurge 0 : PeerIBGPCnt 0 :
NonDet 0 : DfrdPathSel 0
BGPRst 0 : NumGrCfg 1 : DfrdTmestmp 0 : SnmpTrps 0 :
IgnrBestPthASP 0
RstOn 1 : RstMod 1 : RstRole 2 : AFFalgs 7 : RstInt 120 :
MaxeorExtInt 361
FixedPartCrt 1 : VarParCrt 1
Packet Capture max allowed length 40960000 : current length 0
Peer Grp List
Nbr List
Confed Peer List
Address Family specific Information
AFIndex 0
NdSpFlag 0x41a190b0 : AFRttP 0x41a0d200 : NdRTMMkrP
0x41a19d28 : NdRTMAFTblVer 0 :
NdRibCtxAddr 1101110688
NdRibCtxAddrLen 255 : NdAFPrefix 0 : NdAfNLRIP 0 : NdAFNLRILen
0 : NdAFWPtrP 0
NdAFWLen 0 : NdAfNH : NdAFRedRttP 0x41a0d400 : NdRecCtxAdd
1101110868
NdRedCtxAddrLen 255 : NdAfRedMkrP 0x41a19e88 : AFAggRttP
0x41a0d600 : AfAggCtxAddr
1101111028 : AfAggrCtxAddrLen 255
AfNumAggrPfx 0 : AfNumAggrASSet 0 : AfNumSuppmap 0 :
AfNumAggrValidPfx 0 :
AfMPathRttP 0x41a0d700
MpathCtxAddr 1101111140 : MpathCtxAddrlen 255 : AfEorSet
0x41a19f98 : NumDfrdPfx 0
AfActPeerHd 0x41a1a3a4 : AfExtDist 1101112312 : AfIntDist
200 : AfLocDist 200
AfNumRRc 0 : AfRR 0 : AfNetRttP 0x41a0d300 : AfNetCtxAddr
1101112392 :
AfNetCtxAddrlen 255
AfNwCtxAddr 1101112443 : AfNwCtxAddrlen 255 : AfNetBKDrRttP
0x41a0d500 :
AfNetBKDRCnt 0 : AfDampHLife 0
AfDampReuse 0 : AfDampSupp 0 : AfDampMaxHld 0 : AfDampCeiling
0 : AfDampRmapP

460

Border Gateway Protocol

show ip bgp extcommunity-list
View information on all routes with Extended Community attributes.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] extcommunity-list
[list name]
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view information on all routes with extended
community attributes corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

list name

Enter the extended community list name you wish to view.
The range is 140 characters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To view the total number of COMMUNITY attributes found, use the show ip bgp
summary command. The text line above the route table states the number of
COMMUNITY attributes found.
The show ip bgp community command without any parameters lists BGP
routes with at least one BGP community attribute and the output is the same as for
the show ip bgp command output.

Border Gateway Protocol

461

Example

Dell#show run extcommunity-list
!
ip extcommunity-list ecl1
permit rt 100:4
permit soo 40:4
Dell#show ip bgp extcommunity-list ecl1
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Next Hop
Metric
Weight Path
*> 55.0.0.0/24
172.16.0.2
0 200 i
*> 77.0.0.0/24
172.16.0.2
0 200 i
Dell#show ip bgp extcommunity-list ec
% Error: Extended community list does not exist.

LocPrf

Dell#

show ip bgp filter-list
View the routes that match the filter lists.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] filter-list as-pathname
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view route information that matches the filter lists
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

as-path-name

Enter an AS-PATH access list name. The range is 140
characters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

462

Border Gateway Protocol

Usage
Information

Example

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp filter-list hello command
shown in the following example.
Field

Description

Path source
codes

Lists the path sources shown to the right of the last AS
number in the Path column:
•

i = internal route entry

•

a = aggregate route entry

•

c = external confederation route entry

•

n = network route entry

•

r = redistributed route entry

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell#show run as-path a1
!
ip as-path access-list a1
permit 500
Dell#
Dell#show ip bgp filter-list a1
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete

Border Gateway Protocol

463

Network
Weight Path
*> 55.0.0.0/24
172.16.0.2
*> 66.0.0.0/24
172.16.0.2

Next Hop

Metric

LocPrf

0 200 400 500 600 i
0 200 500 i

show ip bgp flap-statistics
View flap statistics on BGP routes.

S4810
Syntax

Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] flap-statistics [ipaddress [mask]] [filter-list as-path-name] [regexp regularexpression]
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view flap statistics on BGP routes corresponding
to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

ip-address

(OPTIONAL) Enter the IP address (in dotted decimal format)
of the BGP network to view information only on that
network.

mask

(OPTIONAL) Enter the network mask (in slash prefix (/x)
format) of the BGP network address.

filter-list aspath-name

(OPTIONAL) Enter the keyword filter-list then the
name of a configured AS-PATH ACL. The range is 140
characters.

regexp regularexpression

Enter a regular expression then use one or a combination of
the following characters to match. The range is 256
characters.
•

. = (period) any single character (including a white
space).

•

* = (asterisk) the sequences in a pattern (zero or more
sequences).

•

+ = (plus) the sequences in a pattern (one or more
sequences).

•

? = (question mark) sequences in a pattern (either zero or
one sequences).
NOTE: Enter an escape sequence (CTRL+v) prior to
entering the ? regular expression.

464

•

[ ] = (brackets) a range of single-character patterns.

•

( ) = (parenthesis) groups a series of pattern elements
to a single element.

•

{ } = (braces) minimum and the maximum match count.

Border Gateway Protocol

•

•
Command
Modes
Command
History

•
•

^ = (caret) the beginning of the input string. If you use
the caret at the beginning of a sequence or range, it
matches on everything BUT the characters specified.
$ = (dollar sign) the end of the output string.

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp flap command shown in the
following example.
Field

Description

Network

Displays the network ID to which the route is flapping.

From

Displays the IP address of the neighbor advertising the
flapping route.

Flaps

Displays the number of times the route flapped.

Duration

Displays the hours:minutes:seconds since the route first
flapped.

Reuse

Displays the hours:minutes:seconds until the flapped route
is available.

Path

Lists all the ASs the flapping route passed through to reach
the destination network.

Dell#show ip bgp flap-statistics
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,

Border Gateway Protocol

465

r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
From
Duration
Reuse
Path
h
77.0.0.0/24
172.16.0.2
00:00:03
00:00:00
d
55.0.0.0/24
172.16.0.2
00:00:25
00:30:44 200 i
*> 66.0.0.0/24
172.16.0.2
00:00:23
00:00:00 200 i
Dell#*>n 66.66.77.77/32
0.0.0.0

Flaps
1
3
1
0

32768 i

show ip bgp inconsistent-as
View routes with inconsistent originating autonomous system (AS) numbers; that is, prefixes that are
announced from the same neighbor AS but with a different AS-Path.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] inconsistent-as
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view routes corresponding to the VRF that
contain inconsistent originating AS numbers.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

466

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Border Gateway Protocol

Usage
Information

Example

The following describes the show ip bgp inconsistent-as command shown
in the following example.
Field

Description

Network

Displays the destination network prefix of each BGP route.

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then local routes exist in the routing
table.

Metric

Displays the BGP route’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight.

Path

Lists all the ASs the route passed through to reach the
destination network.

Dell>show ip bgp inconsistent-as
BGP table version is 280852, local router ID is 10.1.2.100
Status codes: s suppressed, d damped, h history, * valid, >
best
Path source: I - internal, c - confed-external, r redistributed, n - network
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next
* 3.0.0.0/8
80 i
*
80 i
*
80 i
*>
*> 3.18.135.0/24
*
*
*
*> 4.0.0.0/8
*
*
*
* 6.0.0.0/20
*
*>
*
* 9.2.0.0/16
*
--More--

Hop
Metric LocPrf Weight Path
63.114.8.33
0 18508 209 7018
63.114.8.34

0 18508 209 7018

63.114.8.60

0 18508 209 7018

63.114.8.33
63.114.8.60
63.114.8.34
63.114.8.33
63.114.8.33
63.114.8.60
63.114.8.34
63.114.8.33
63.114.8.33
63.114.8.60
63.114.8.34
63.114.8.33
63.114.8.33
63.114.8.60
63.114.8.34

0
0
0
0
0
0
0
0
0
0
0
0
0
0
0

0

18508
18508
18508
18508
18508
18508
18508
18508
18508
18508
18508
18508
18508
18508
18508

701
209
209
701
209
209
209
701
209
209
209
?
209
209
209

80 i
7018
7018
7018
7018
1 i
1 i
1 i
1 i
3549
3549

?
?
?
?

i
i

3549 i
701 i
701 i

Dell>sho ip bgp vrf testinconsistent-as
BGP table version is 11, local router ID is 66.66.77.77
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete

Border Gateway Protocol

467

Network
Next Hop Metric
*>n 11.11.11.11/32
0.0.0.0
*>n 22.22.22.22/32
0.0.0.0
I 32.32.32.32/32
60.0.0.2
I 32.32.33.33/32
60.0.0.2
*>n 33.33.33.33/32
0.0.0.0
*>n 33.33.44.55/32
0.0.0.0
*>n 44.44.44.44/32
0.0.0.0
*>I 55.55.0.0/16
72.1.1.2
*>I 55.55.55.55/32
72.1.1.2
*>I 55.55.66.66/32
72.1.1.2
*>a 66.66.0.0/16
0.0.0.0
*>n 66.66.66.77/32
0.0.0.0
*>n 66.66.77.77/32
0.0.0.0

LocPrf Weight Path
0
32768 i
0
32768 i
100
0 400 500 i
100
0 400 500 i
0
32768 i
0
32768 i
0
32768 i
100
0 i
0
100
0 i
0
100
0 i
32768 i
0
32768 i
0
32768 i

show ip bgp neighbors
Allows you to view the information BGP neighbors exchange.

S4810
Syntax

Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] neighbors [ip-address
[advertised-routes | dampened-routes | detail | flap-statistics
| routes | {received-routes [network [network-mask]]} |
{denied-routes [network [network-mask]]}]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view information exchanged by BGP neighbors
corresponding to that VRF.
NOTE: You can use this attribute to view information
exchanged by BGP neighbors that correspond to either a
default or a non-default VRF.

468

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

ip-address

(OPTIONAL) Enter the IP address of the neighbor to view
only BGP information exchanged with that neighbor.

advertisedroutes

(OPTIONAL) Enter the keywords advertised-routes to
view only the routes the neighbor sent.

dampenedroutes

(OPTIONAL) Enter the keywords dampened-routes to view
information on dampened routes from the BGP neighbor.

detail

(OPTIONAL) Enter the keyword detail to view neighborspecific internal information for the IPv4 Unicast address
family.

flap-statistics

(OPTIONAL) Enter the keywords flap-statistics to view
flap statistics on the neighbor’s routes.

routes

(OPTIONAL) Enter the keyword routes to view only the
neighbor’s feasible routes.

Border Gateway Protocol

receivedroutes
[network
[network-mask]

(OPTIONAL) Enter the keywords received-routes then
either the network address (in dotted decimal format) or the
network mask (in slash prefix format) to view all information
received from neighbors.
NOTE: Configure the neighbor softreconfiguration inbound command prior to
viewing all the information received from the neighbors.

denied-routes
[network
[network-mask]

(OPTIONAL) Enter the keywords denied-routes then
either the network address (in dotted decimal format) or the
network mask (in slash prefix format) to view all information
on routes denied via neighbor inbound filters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Added the add-path option to the S4810. Output on the
S4810 shows the ADDPATH parameters.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Added the detail option. Output now displays the default
MED value.

Version 7.2.1.0

Added the received and denied route options.

Version 6.3.10

The output is changed to display the total number of
advertised prefixes.

After a peer reset, the contents of the notification log messages is displayed in hex
values for debugging.
The neighbor information that this command displays does not include counts
corresponding to ignored prefixes and updates. However, the martian case is an

Border Gateway Protocol

469

exception where neighbor information corresponding to ignored updates is
displayed.
BGP shows the exact information that is exchanged between the BGP peers. It also
indicates whether or not this information is received by the BGP peer.
The following describes the show ip bgp neighbors command shown in the
following examples.

470

The Lines
Beginning with:

Description

BGP neighbor

Displays the BGP neighbor address and its AS number. The
last phrase in the line indicates whether the link between the
BGP router and its neighbor is an external or internal one. If
they are located in the same AS, the link is internal;
otherwise the link is external.

BGP version

Displays the BGP version (always version 4) and the remote
router ID.

BGP state

Displays the neighbor’s BGP state and the amount of time in
hours:minutes:seconds it has been in that state.

Last read

This line displays the following information:
•

last read is the time (hours:minutes:seconds) the router
read a message from its neighbor

•

hold time is the number of seconds configured between
messages from its neighbor

•

keepalive interval is the number of seconds between
keepalive messages to help ensure that the TCP session
is still alive.

Received
messages

This line displays the number of BGP messages received, the
number of notifications (error messages), and the number of
messages waiting in a queue for processing.

Sent messages

The line displays the number of BGP messages sent, the
number of notifications (error messages), and the number of
messages waiting in a queue for processing.

Received updates

This line displays the number of BGP updates received and
sent.

Soft
reconfiguration

This line indicates that soft reconfiguration inbound is
configured.

Minimum time

Displays the minimum time, in seconds, between
advertisements.

(list of inbound
and outbound
policies)

Displays the policy commands configured and the names of
the Route map, AS-PATH ACL, or Prefix list configured for
the policy.

Border Gateway Protocol

Example

The Lines
Beginning with:

Description

For address
family:

Displays the IPv4 Unicast as the address family.

BGP table version

Displays which version of the primary BGP routing table the
router and the neighbor are using.

accepted prefixes

Displays the number of network prefixes the router accepts
and the amount of memory used to process those prefixes.

Prefix advertised

Displays the number of network prefixes advertised, the
number rejected, and the number withdrawn from the BGP
routing table.

Connections
established

Displays the number of TCP connections established and
dropped between the two peers to exchange BGP
information.

Last reset

Displays the amount of time since the peering session was
last reset. Also states if the peer resets the peering session. If
the peering session was never reset, the word never is
displayed.

Local host:

Displays the peering address of the local router and the TCP
port number.

Foreign host:

Displays the peering address of the neighbor and the TCP
port number.

Dell#show ip bgp neighbors 172.16.0.2
BGP neighbor is 172.16.0.2, remote AS 200, external link
Member of peer-group port0 for session parameters
BGP remote router ID 172.16.0.2
BGP state ESTABLISHED, in this state for 00:13:55
Last read 00:00:03, Last write 00:00:55
Hold time is 180, keepalive interval is 60 seconds
Received 50 messages, 0 in queue
1 opens, 0 notifications, 34 updates
15 keepalives, 0 route refresh requests
Sent 18 messages, 0 in queue
1 opens, 0 notifications, 0 updates
16 keepalives, 0 route refresh requests
Route refresh request: received 0, sent messages 1
Minimum time between advertisement runs is 30 seconds
Minimum time before advertisements start is 0 seconds
Capabilities received from neighbor for IPv4 Unicast :
MULTIPROTO_EXT(1)
ROUTE_REFRESH(2)

Capabilities advertised to neighbor for IPv4 Unicast :
MULTIPROTO_EXT(1)
ROUTE_REFRESH(2)
ADD_PATH(69)

Border Gateway Protocol

471

CISCO_ROUTE_REFRESH(128)

For address family: IPv4 Unicast
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
InQ : Added 0, Replaced 0, Withdrawn 0
OutQ : Added 0, Withdrawn 0
Allow local AS number 0 times in AS-PATH attribute
Prefixes accepted 2, withdrawn 15 by peer, martian prefixes
ignored 0
Prefixes advertised 0, denied 0, withdrawn 0 from peer
Connections established 1; dropped 0
Last reset never
Local host: 172.16.0.1, Local port: 58145
Foreign host: 172.16.0.2, Foreign port: 179
Dell#
Related
Commands

show ip bgp — views the current BGP routing table.

show ip bgp next-hop
View all next hops (using learned routes only) with current reachability and flap status. This command
only displays one path, even if the next hop is reachable by multiple paths.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] next-hop
vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view all next hops corresponding to that VRF.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

472

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Border Gateway Protocol

Usage
Information

Example

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp next-hop command shown in the
following example.
Field

Description

Next-hop

Displays the next-hop IP address.

Via

Displays the IP address and interface used to reach the next
hop.

RefCount

Displays the number of BGP routes using this next hop.

Cost

Displays the cost associated with using this next hop.

Flaps

Displays the number of times the next hop has flapped.

Time Elapsed

Displays the time elapsed since the next hop was learned. If
the route is down, this field displays time elapsed since the
route went down.

Dell#

show ip bgp next-hop
Next-hop
Resolved
172.16.0.2
YES
Dell#

show ip bgp paths
View all the BGP path attributes in the BGP database.

S4810
Syntax
Parameters

show ip bgp[vrf vrf-name] paths [regexp regular-expression]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf to view all path
attributes in the BGP database corresponding to that VRF.
NOTE: You can use this attribute to view information on
all path attributes in the BGP database that correspond
to either a default or a non-default VRF.

regexp regularexpression

Enter a regular expression then use one or a combination of
the following characters to match:
•
•
•
•

Border Gateway Protocol

. = (period) any single character (including a white
space).
* = (asterisk) the sequences in a pattern (zero or more
sequences).
+ = (plus) the sequences in a pattern (one or more
sequences).
? = (question mark) sequences in a pattern (either zero or
one sequences).

473

NOTE: Enter an escape sequence (CTRL+v) prior to
entering the ? regular expression.
•

[ ] = (brackets) a range of single-character patterns.

•

( ) = (parenthesis) groups a series of pattern elements
to a single element.

•

{ } = (braces) minimum and the maximum match count.

•

^ = (caret) the beginning of the input string. If you use
the caret at the beginning of a sequence or range, it
matches on everything BUT the characters specified.

•

$ = (dollar sign) the end of the output string.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

474

Version 9.4(0.0)

Added support for VRF for the S4810, S4820T, and S6000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp path command shown in the
following example.
Field

Description

Total

Displays the total number of BGP path attributes.

Address

Displays the internal address where the path attribute is
stored.

Hash

Displays the hash bucket where the path attribute is stored.

Refcount

Displays the number of BGP routes using this path attribute.

Metric

Displays the MED attribute for this path attribute.

Path

Displays the AS path for the route, with the origin code for
the route listed last. Numbers listed between braces {} are
AS_SET information.

Border Gateway Protocol

Example

Dell#show ip bgp paths ?
community
Display community information
extcommunity
Display extended community information
regexp
Display path information based on a
regular expression
|
Pipe through a command
Dell#show ip bgp paths
Total 2 Paths
Refcount Metric Path
1
0
200 i
1
0
200 i

show ip bgp paths community
View all unique COMMUNITY numbers in the BGP database.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] paths community
vrf vrf-name

(OPTIONAL) Enter the keyword vrf to view all unique
COMMUNITY numbers in the BGP database corresponding
to that VRF.
NOTE: You can use this attribute to view information on
unique COMMUNITY numbers in a BGP database that
correspond to either a default or a non-default VRF.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Border Gateway Protocol

475

Usage
Information

Example

The following describes the show ip bgp paths community command shown
in the following example.
Field

Description

Address

Displays the internal address where the path attribute is
stored.

Hash

Displays the hash bucket where the path attribute is stored.

Refcount

Displays the number of BGP routes using these
communities.

Community

Displays the community attributes in this BGP path.

Dell#show ip bgp paths community
Total 2 communities
Refcount
Community
1
NO-ADVERTISE
1
200:1
1000:1

3000:1

show ip bgp peer-group
Allows you to view information on the BGP peers in a peer group.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] peer-group [peergroup-name [detail | summary]]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf to view information on
BGP peers in a peer group corresponding to that VRF.
NOTE: You can use this attribute to view information on
BGP peers in a peer group that correspond to either a
default or a non-default VRF.

Command
Modes

476

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

peer-groupname

(OPTIONAL) Enter the name of a peer group to view
information about that peer group only.

detail

(OPTIONAL) Enter the keyword detail to view detailed
status information of the peers in that peer group.

summary

(OPTIONAL) Enter the keyword summary to view status
information of the peers in that peer group. The output is the
same as that found in the show ip bgp summary
command.

•
•

EXEC
EXEC Privilege

Border Gateway Protocol

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

Version 9.4.
(0.0)

Added support for VRF.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Added the add-path option to the S4810. Output on the
S4810 shows the ADDPATH parameters.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp peer-group command shown in the
following example.
Line beginning
with:

Description

Peer-group

Displays the peer group’s name.

Administratively
shut

Displays the peer group’s status if the peer group is not
enabled. If you enable the peer group, this line is not
displayed.

BGP version

Displays the BGP version supported.

Minimum time

Displays the time interval between BGP advertisements.

For address family

Displays IPv4 Unicast as the address family.

BGP neighbor

Displays the name of the BGP neighbor.

Number of peers

Displays the number of peers currently configured for this
peer group.

Peer-group
members:

Lists the IP addresses of the peers in the peer group. If the
address is outbound optimized, an * is displayed next to the
IP address.

Dell#show ip bgp peer-group
Peer-group port0, remote AS 200
BGP version 4
Minimum time between advertisement runs is 30 seconds
For address family: IPv4 Unicast
BGP neighbor is port0, peer-group external
Update packing has 4_OCTET_AS support enabled
Number of peers in this group 1
Maximum limit on the accepted connections 256

Border Gateway Protocol

477

Peer-group members (* - outbound optimized):
172.16.0.2
Dell#
Related
Commands

neighbor peer-group (assigning peers) — assigns a peer to a peer-group.
neighbor peer-group (creating group) — creates a peer group.

show ip bgp regexp
Display the subset of the BGP routing tables matching the regular expressions specified.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] regexp regular-expression
[character]
vrf vrf-name

Enter the keyword vrf and then the name of the VRF to view
the subset of BGP routing tables that match the regular
expression specified on that VRF.
NOTE: You can use this attribute to view the subset of
BGP routing tables that match the regular expression
that is specified on either a default or a non-default VRF.

regularexpression
[character]

Enter a regular expression then use one or a combination of
the following characters to match:
•

. = (period) any single character (including a white
space).

•

* = (asterisk) the sequences in a pattern (zero or more
sequences).

•

+ = (plus) the sequences in a pattern (one or more
sequences).

•

? = (question mark) sequences in a pattern (either zero or
one sequences).
NOTE: Enter an escape sequence (CTRL+v) prior to
entering the ? regular expression.

478

•

[ ] = (brackets) a range of single-character patterns.

•

( ) = (parenthesis) groups a series of pattern elements
to a single element.

•

{ } = (braces) minimum and the maximum match count.

•

^ = (caret) the beginning of the input string. If you use
the caret at the beginning of a sequence or range, it
matches on everything BUT the characters specified.

•

$ = (dollar sign) the end of the output string.

Border Gateway Protocol

Command
Modes
Command
History

•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

The following describes the show ip bgp regexp command shown in the
following example.
Field

Description

Network

Displays the destination network prefix of each BGP route.

Next Hop

Displays the next hop address of the BGP router. If 0.0.0.0 is
listed in this column, then non-BGP routes exist in the
router’s routing table.

Metric

Displays the BGP router’s metric, if assigned.

LocPrf

Displays the BGP LOCAL_PREF attribute for the route.

Weight

Displays the route’s weight

Path

Lists all the AS paths the route passed through to reach the
destination network.

Dell#show ip bgp regexp ^200
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network
Weight Path
*> 55.0.0.0/24
172.16.0.2

Border Gateway Protocol

Next Hop

Metric

LocPrf

0 200 i

479

*> 66.0.0.0/24
172.16.0.2

0 200 i

show ip bgp summary
Allows you to view the status of all BGP connections.

S4810
Syntax
Parameters

show ip bgp [vrf vrf-name] [ipv4 unicast] summary
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view the status of all BGP connections
corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

In BGP, route attributes are maintained at different locations. When attributes that
correspond to multiple routes change, then attribute counts that the show ip
bgp summary command displays are calculated as summations of attributes
corresponding to all the associated routes. For example, if cluster_id is an attribute
associated with thousand routes that contain exactly the same set of attributes,
then the cluster_id count is 1. If these thousand routes are set with different
attribute values with the same cluster_id, then the cluster_id count is 1000, since
the same value is stored for thousand different attribute records.
The attribute next-hop is a part of the BGP attribute data structure.

480

Border Gateway Protocol

If two peers send the same route that contains similar path attributes, then two
entries are maintained in the back-end, as both these entries have different nexthops. If this same route is sent to a different peer, an entry for each peer is created,
as the next-hop is different. As a result, the BGP attributes count in the summary
output will differ accordingly.
The following describes the show ip bgp summary command shown in the
following example.
Field

Description

BGP router
identifier

Displays the local router ID and the AS number.

BGP table version

Displays the BGP table version and the main routing table
version.

network entries

Displays the number of network entries, route paths, and
the amount of memory used to process those entries.

paths

Displays the number of paths and the amount of memory
used.

denied paths

Displays the number of denied paths and the amount of
memory used.

BGP path attribute
entries

Displays the number of BGP path attributes and the amount
of memory used to process them.

BGP AS-PATH
entries

Displays the number of BGP AS_PATH attributes processed
and the amount of memory used to process them.

BGP community
entries

Displays the number of BGP COMMUNITY attributes
processed and the amount of memory used to process
them. The show ip bgp community command provides
more details on the COMMUNITY attributes.

Dampening
enabled

Displayed only when you enable dampening. Displays the
number of paths designated as history, dampened, or
penalized.

Neighbor

Displays the BGP neighbor address.

AS

Displays the AS number of the neighbor.

MsgRcvd

Displays the number of BGP messages that neighbor
received.

MsgSent

Displays the number of BGP messages that neighbor sent.

TblVer

Displays the version of the BGP table that was sent to that
neighbor.

InQ

Displays the number of messages from that neighbor
waiting to be processed.

OutQ

Displays the number of messages waiting to be sent to that
neighbor. If a number appears in parentheses, the number

Border Gateway Protocol

481

Field

Description
represents the number of messages waiting to be sent to
the peer group.

Up/Down

Displays the amount of time that the neighbor is in the
Established stage. If the neighbor has never moved into the
Established stage, the word never is displayed.
The output format is:

State/Pfxrcd

Time Established

Display Example

< 1 day

00:12:23 (hours:minutes:seconds)

< 1 week

1d21h (DaysHours)

> 1 week

11w2d (WeeksDays)

If the neighbor is in Established stage, the number of
network prefixes received.
If a maximum limit was configured with the neighbor
maximum-prefix command, (prfxd) appears in this
column.
If the neighbor is not in Established stage, the current stage
is displayed (Idle, Connect, Active, OpenSent,
OpenConfirm). When the peer is transitioning between
states and clearing the routes received, the phrase (Purging)
may appear in this column.
If the neighbor is disabled, the phrase (Admin shut) appears
in this column.

Example
(S4810)

Dell#show ip bgp summary
BGP router identifier 192.168.11.5, local AS number 100
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
2 network entrie(s) using 152 bytes of memory
2 paths using 208 bytes of memory
BGP-RIB over all using 210 bytes of memory
2 BGP path attribute entrie(s) using 144 bytes of memory
1 BGP AS-PATH entrie(s) using 10 bytes of memory
2 neighbor(s) using 16384 bytes of memory
Neighbor
AS
InQ OutQ Up/Down State/Pfx
172.16.0.2
200
0
0 00:05:34 2
192.168.10.2
100
0
0 00:00:00 (shut)
Dell#

482

MsgRcvd

MsgSent

TblVer

10

8

0

0

22

0

Border Gateway Protocol

show running-config bgp
To display the current BGP configuration, use this feature.

S4810
Syntax

show running-config bgp

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

Dell#show running-config bgp
!
router bgp 100
network 1.1.11.1/32
network 1.1.12.1/32
network 1.1.13.1/32
neighbor 10.1.1.2 remote-as 200
neighbor 10.1.1.2 no shutdown
Dell#

timers bgp
Adjust the BGP Keep Alive and Hold Time timers.

S4810
Syntax

timers bgp keepalive holdtime
To return to the default, use the no timers bgp command.

Parameters

keepalive

Border Gateway Protocol

Enter a number for the time interval, in seconds, between
keepalive messages sent to the neighbor routers. The range
is from 1 to 65535. The default is 60 seconds.

483

holdtime

Enter a number for the time interval, in seconds, between
the last keepalive message and declaring the router dead.
The range is from 3 to 65535. The default is 180 seconds.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

MBGP Commands
Multiprotocol BGP (MBGP) is an enhanced BGP that enables multicast routing policy throughout the
internet and connecting multicast topologies between BGP and autonomous systems (ASs).
Dell Networking OS MBGP is implemented as per IETF RFC 1858.
BGPv4 is supported in the following:
Dell Networking
OS Version

Platform Support

7.8.1.0, MBGP for
S-Series
IPv4 Multicast Only

debug ip bgp dampening
View information on routes being dampened.

S4810
Syntax

484

debug ip bgp [vrf test | ipv4 {unicast | multicast} | ipv6
{unicast | multicast} dampening

Border Gateway Protocol

To disable debugging, use the no debug ip bgp ipv4 multicast dampening
command.
Parameters

dampening

Enter the keyword dampening to debug route flap
dampening information.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced IPv6 MGBP support for the E-Series.

distance bgp
Configure three administrative distances for routes.

S4810
Syntax

distance bgp external-distance internal-distance local-distance
To return to default values, use the no distance bgp command.

Parameters

Defaults

externaldistance

Enter a number to assign to routes learned from a neighbor
external to the AS. The range is from 1 to 255. The default is
20.

internaldistance

Enter a number to assign to routes learned from a router
within the AS. The range is from 1 to 255. The default is 200.

local-distance

Enter a number to assign to routes learned from networks
listed in the network command. The range is from 1 to 255.
The default is 200.

•

external-distance = 20

•

internal-distance = 200

Border Gateway Protocol

485

•

local-distance = 200

Command
Modes

ROUTER BGP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Usage
Information

CAUTION: Dell Networking recommends not changing the administrative
distance of internal routes. Changing the administrative distances may cause
routing table inconsistencies.
The higher the administrative distance assigned to a route means that your
confidence in that route is low. Routes assigned an administrative distance of 255
are not installed in the routing table. Routes from confederations are treated as
internal BGP routes.

Related
Commands

router bgp — enters ROUTER mode on the switch.

show ip bgp dampened-paths
View BGP routes that are dampened (non-active).

S4810
Syntax
Parameters

Command
Modes

486

show ip bgp [vrf vrf-name] [ipv4 unicast] dampened-paths
vrf vrf-name

(OPTIONAL) Enter the keywords vrf and then the name of
the VRF to view routes that are affected by a specific
community list corresponding to that VRF.

ipv4 unicast

(OPTIONAL) Enter the keywords ipv4 unicast to view
information only related to ipv4 unicast routes.

•

EXEC

•

EXEC Privilege

Border Gateway Protocol

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

To determine a BGP session flap, both a route-down event and a subsequent
route-up event corresponding to a single route are considered. As a result, a flap
event is penalized only one time during the route-down event. The subsequent
route-up event corresponding to the same route is not considered as a flap and is
not penalized.
The history paths that the show ip bgp command displays contain only the prefix
and the next-hop information. The next-hop information shows the ip address of
the neighbor. It does not show the actual next-hop details.
The following describes the show ip bgp damp command shown in the
following example.

Example

Field

Description

Network

Displays the network ID to which the route is dampened.

From

Displays the IP address of the neighbor advertising the
dampened route.

Reuse

Displays the hour:minutes:seconds until the dampened
route is available.

Path

Lists all the ASs the dampened route passed through to
reach the destination network.

Dell#show ip bgp dampened-paths
BGP local RIB : Routes to be Added 0, Replaced 0, Withdrawn 0
BGP local router ID is 192.168.11.5
Status codes: s suppressed, S stale, d dampened, h history, *
valid, > best
Path source: I - internal, a - aggregate, c - confed-external,
r - redistributed
n - network, D - denied, S - stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network

Border Gateway Protocol

From

Reuse

Path

487

d

55.0.0.0/24

172.16.0.2

00:36:23

200

Dell#

BGP Extended Communities (RFC 4360)
BGP Extended Communities, as defined in RFC 4360, is an optional transitive BGP attribute.
BGP Extended Communities provides two major advantages over Standard Communities:
•

The range is extended from 4-octet (AA:NN) to 8-octet (Type:Value) to provide enough number
communities.

•

Communities are structured using a new “Type” field (1 or 2-octets), allowing you to provide granular
control/filter routing information based on the type of extended communities.

set extcommunity rt
To set Route Origin community attributes in Route Map, use this feature.

S4810
Syntax

set extcommunity rt {as4 ASN4:NN [non-trans] | ASN:NNNN [nontrans] | IPADDR:NN [non-trans]} [additive]
To delete the Route Origin community, use the no set extcommunity
command.

Parameters

as4 ASN4:NN

Enter the keyword as4 then the 4-octet AS specific
extended community number in the format ASN4:NN (4byte AS number:2-byte community value).

ASN:NNNN

Enter the 2-octet AS specific extended community number
in the format ASN:NNNN (2-byte AS number:4-byte
community value).

IPADDR:NN

Enter the IP address specific extended community in the
format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte
community value).

additive

(OPTIONAL) Enter the keyword additive to add to the
existing extended community.

non-trans

(OPTIONAL) Enter the keywords non-trans to indicate a
non-transitive BGP extended community.

Defaults

none

Command
Modes

ROUTE MAP (config-route-map)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

488

Border Gateway Protocol

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version
8.3.19.0

Introduced on the S4820T

Version 8.3.11.1

Introduced on the Z-9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

If the set community rt and soo are in the same route-map entry, the behavior
defines as:
•

If the rt option comes before soo, with or without the additive option, soo
overrides the communities rt sets.

•

If the rt option comes after soo, without the additive option, rt overrides
the communities soo sets.

•

If the rt with the additive option comes after soo, rt adds the communities
soo sets.

set extcommunity soo — sets the extended community site-of-origin in the routemap.

set extcommunity soo
To set extended community site-of-origin in Route Map, use this feature.

S4810
Syntax

set extcommunity soo {as4 ASN4:NN | ASN:NNNN | IPADDR:NN [nontrans]}
To delete the site-of-origin community, use the no set extcommunity
command.

Parameters

as4 ASN4:NN

Enter the keyword as4 then the 4-octet AS specific
extended community number in the format ASN4:NN (4byte AS number:2-byte community value).

ASN:NNNN

Enter the 2-octet AS specific extended community number
in the format ASN:NNNN (2-byte AS number:4-byte
community value).

IPADDR:NN

Enter the IP address specific extended community in the
format IPADDR:NN (4-byte IPv4 Unicast Address:2-byte
community value).

non-trans

(OPTIONAL) Enter the keywords non-trans to indicate a
non-transitive BGP extended community.

Border Gateway Protocol

489

Defaults

none

Command
Modes

ROUTE MAP (config-route-map)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

If the set community rt and soo are in the same route-map entry, the behavior
defines as:
•

If the rt option comes before soo, with or without the additive option, soo
overrides the communities rt sets.

•

If the rt option comes after soo, without the additive option, rt overrides
the communities soo sets.

•

If the rt with the additive option comes after soo, rt adds the communities
soo sets.

set extcommunity rt — sets the extended community route origins using the routemap.

show ip bgp paths extcommunity
To display all BGP paths having extended community attributes, use this feature.

S4810
Syntax

show ip bgp paths extcommunity

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

490

Introduced on the S6000.

Border Gateway Protocol

Usage
Information

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

The following describes the show ip bgp paths extcommunity command
shown in the following example.
Field

Description

Address

Displays the internal address where the path attribute is
stored.

Hash

Displays the hash bucket where the path attribute is stored.

Refcount

Displays the number of BGP routes using these extended
communities.

Community

Displays the extended community attributes in this BGP
path.

Dell#show ip bgp paths extcommunity
Total 1 Extended Communities
Address
0x41d57024

Hash Refcount Extended Community
12272 1
RT:7:200 SoO:5:300 SoO:0.0.0.3:1285

Dell#

show ip extcommunity-list
Display the IP extended community list.

S4810
Syntax
Parameters

show ip extcommunity-list [word]
word

Enter the name of the extended community list you want to
view.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Border Gateway Protocol

491

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

Dell#show ip extcommunity-list test
ip extcommunity-list test
deny RT:1234:12
permit regexp 123
deny regexp 234
deny regexp 123
Dell#

IPv6 BGP Commands
IPv6 border gateway protocol (IPv6 BGP) is supported on the S4810 platform.
BGP is an external gateway protocol that transmits interdomain routing information within and between
Autonomous Systems (AS). Basically, two routers (called neighbors or peers) exchange information
including full routing tables and periodically send messages to update those routing tables.

clear ip bgp ipv6 unicast soft
Clear and reapply policies for IPv6 unicast routes without resetting the TCP connection; that is, perform
BGP soft reconfiguration.

S4810
Syntax
Parameters

492

clear ip bgp {* | as-number | ipv4-neighbor-addr | ipv6neighbor-addr | peer-group name} ipv6 unicast soft [in | out]
*

Clear and reapply policies for all BGP sessions.

as-number

Clear and reapply policies for all neighbors belonging to the
AS. The range is from 0 to 65535 (2 Byte), from 1 to
4294967295 (4 Byte), or from 0.1 to 0.65535.65535 (Dotted
format).

ipv4-neighboraddr | ipv6neighbor-addr

Clear and reapply policies for a neighbor.

peer-group
name

Clear and reapply policies for all BGP routers in the specified
peer group.

ipv6 unicast

Clear and reapply policies for all IPv6 unicast routes.

Border Gateway Protocol

in

Reapply only inbound policies.
NOTE: If you enter soft, without an in or out option,
both inbound and outbound policies are reset.

out

Reapply only outbound policies.
NOTE: If you enter soft, without an in or out option,
both inbound and outbound policies are reset.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.4.1.0

Added support for IPv4 multicast and IPv6 unicast routes.

Version 7.8.1.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.2.1.0

Introduced on the E-Series TeraScale.

debug ip bgp ipv6 unicast soft-reconfiguration
Enable soft-reconfiguration debugging for IPv6 unicast routes.

S4810
Syntax

debug ip bgp [ipv4-address | ipv6-address | peer-group-name]
ipv6 unicast soft-reconfiguration
To disable debugging, use the no debug ip bgp [ipv4-address | ipv6address | peer-group-name] ipv6 unicast soft-reconfiguration
command.

Parameters

Defaults

ipv4-address |
ipv6-address

Enter the IP address of the neighbor on which you want to
enable soft-reconfiguration debugging.

peer-groupname

Enter the name of the peer group on which you want to
enable soft-reconfiguration debugging.

ipv6 unicast

Debug soft reconfiguration for IPv6 unicast routes.

Disabled.

Border Gateway Protocol

493

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.4.1.0

Added support for IPv4 multicast and IPv6 unicast routes.

Version 7.8.1.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.2.1.0

Introduced on the E-Series TeraScale.

This command turns on BGP soft-reconfiguration inbound debugging for IPv6
unicast routes. If no neighbor is specified, debug is turned on for all neighbors.

ipv6 prefix-list
Configure an IPv6 prefix list.

S4810
Syntax
Parameters

ipv6 prefix-list prefix-list name
prefix-list name

Enter the name of the prefix list.
NOTE: There is a 140-character limit for prefix list
names.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.

494

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Border Gateway Protocol

Related
Commands

show ipv6 prefix-list — View the selected IPv6 prefix-list.

neighbor soft-reconfiguration inbound
Enable a BGP soft-reconfiguration and start storing updates for inbound IPv6 unicast routes.

S4810
Syntax

Parameters

neighbor {ipv4-address | ipv6-address | peer-group-name} softreconfiguration inbound

ipv4-address |
ipv6-address

Enter the IP address of the neighbor for which you want to
start storing inbound routing updates.

peer-groupname

Enter the name of the peer group for which you want to start
storing inbound routing updates.

Defaults

Disabled.

Command
Modes

ROUTER BGPv6 ADDRESS FAMILY (conf-router_bgpv6_af)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 8.4.1.0

Added support for IPv4 multicast and IPv4 unicast address
families.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced

This command enables soft-reconfiguration for the specified BGP neighbor. BGP
stores all updates for inbound IPv6 unicast routes the neighbor receives but does
not reset the peer-session.
CAUTION: Inbound update storage is a memory-intensive operation. The
entire BGP update database from the neighbor is stored in memory
regardless of the inbound policy results applied on the neighbor.

Border Gateway Protocol

495

show ipv6 prefix-list
Displays the specified IPv6 prefix list.

S4810
Syntax
Parameters

show ipv6 prefix-list detail {prefix-list name} | summary
detail

Display a detailed description of the selected IPv6 prefix list.

prefix-list name

Enter the name of the prefix list.
NOTE: There is a 140-character limit for prefix list
names.

summary

Display a summary of RPF routes.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.

Related
Commands

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

ipv6 prefix-list — configures an IPv6 prefix-list.

IPv6 MBGP Commands
Multiprotocol BGP (MBGP) is an enhanced BGP that enables the multicast routing policy throughout the
internet and connecting multicast topologies between BGP and autonomous systems (AS). FTOS MBGP is
implemented as per IETF RFC 1858.

show ipv6 mbgproutes
Display the selected IPv6 MBGP route or a summary of all MBGP routes in the table.

S4810
Syntax
Parameters

496

show ipv6 mbgproutes ipv6-address prefix-length | summary
ipv6-address
prefix-length

(OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format
then the prefix length in the /x format. The range is from /0
to /128.

Border Gateway Protocol

NOTE: The :: notation specifies successive hexadecimal
fields of zeros.
summary

Display a summary of RPF routes.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Border Gateway Protocol

497

Content Addressable Memory (CAM)

11

Content addressable memory (CAM) commands are supported on the Dell Networking S4810 platform.
NOTE: Not all CAM commands are supported on all platforms. Be sure to note the platform when
looking for a command.
WARNING: If you are using these features for the first time, contact Dell Networking Technical
Assistance Center (TAC) for guidance.

CAM Profile Commands
The CAM profiling feature allows you to partition the CAM to best suit your application. For example:
•
•
•
•
•
•

Configure more Layer 2 forwarding information base (FIB) entries when the system is deployed as a
switch.
Configure more Layer 3 FIB entries when the system is deployed as a router.
Configure more access control lists (ACLs) (when IPv6 is not employed).
Hash multi-protocol label switching (MPLS) packets based on source and destination IP addresses for
link aggregation groups (LAGs).
Hash based on bidirectional flow for LAGs.
Optimize the virtual local area network (VLAN) ACL Group feature, which permits group VLANs for IP
egress ACLs.

Important Points to Remember
•
•
•
•
•

•
•

Dell Networking OS supports CAM allocations on the C-Series and S-Series.
All line cards within a single system must have the same CAM profile (including CAM sub-region
configurations); this profile must match the system CAM profile (the profile on the primary route
processor module [RPM]).
Dell Networking OS automatically reconfigures the CAM profile on line cards and the secondary RPM
to match the system CAM profile by saving the correct profile on the card and then rebooting it.
The CAM configuration is applied to the entire system when you use the CONFIGURATION mode
commands. Save the running-configuration to affect the change.
When budgeting your CAM allocations for ACLs and quality of service (QoS) configurations,
remember that ACL and QoS rules might consume more than one CAM entry depending on
complexity. For example, transmission control protocol (TCP) and user datagram protocol (UDP) rules
with port range options might require more than one CAM entry.
After you install a secondary RPM, copy the running-configuration to the startup-configuration so
that the new RPM has the correct CAM profile.
You MUST save your changes and reboot the system for CAM profiling or allocations to take effect.

cam-acl (Configuration)
Select the default CAM allocation settings or reconfigure a new CAM allocation for Layer 2, IPv4, and IPv6
ACLs, Layer 2 and Layer 3 (IPv4) QoS, Layer 2 Protocol Tunneling (L2PT), IP and MAC source address

498

Content Addressable Memory (CAM)

validation for DHCP, Ethernet Connectivity Fault Management (CFM) ACLs, OpenFlow, and Policy-based
Routing (PBR).

S4810
Syntax

Parameters

cam-acl {default | l2acl number ipv4acl number ipv6acl number
ipv4qos number l2qos number l2pt number ipmacacl number [vmanqos | vman-dual-qos number] ecfmacl number ipv4pbr
number }openflow number | fcoe number} [iscsioptacl number]
[vrfv4acl number]
default

Use the default CAM profile settings and set the CAM as
follows:
•

L2Acl : 6

•

IPV4Acl : 4

•

IPV6Acl : 0

•

IPV4Qos : 2

•

L2Qos : 1

•

L2PT : 0

•

IpMacAcl : 0

•

VmanQos : 0

•

VmanDualQos : 0

•

EcfmAcl : 0

•

FcoeAcl : 0

•

iscsiOptAcl : 0

•

ipv4pbr : 0

•

vrfv4Acl :0

•

Openflow : 0

•

fedgovacl : 0

l2acl number

Enter the keyword l2acl and then the number of l2acl
blocks. The range is from 1 to 8.

ipv4acl number

Enter the keyword ipv4acl and then the number of FP
blocks for IPv4. The range is from 0 to 8.

ipv6acl number

Enter the keyword ipv6acl and then the number of FP
blocks for IPv6. The range is from 0 to 4.

ipv4qos
number

Enter the keyword ipv4qos and then the number of FP
blocks for IPv4. The range is from 0 to 8.

l2qos number

Enter the keyword l2qos and then the number of FP blocks
for l2 qos. The range is from 1to 8.

l2pt number

Enter the keyword l2pt and then the number of FP blocks
for l2 protocol tunnelling. The range is from 0 to 1.

Ipmacacl
number

Enter the keyword ipmacacl and then the number of FP
blocks for IP and MAC ACL. The range is from 0 to 6.

Content Addressable Memory (CAM)

499

Command
Modes

500

ecfmacl
number

Enter the keyword ecfmacacl and then the number of FP
blocks for ECFM ACL. The range is from 0 to 5.

Vman-qos|
vman-dual-qos
number

Enter the keyword evman-qos and then the number of FP
blocks for VMAN QoS. The range is from 0 to 6.

vman-dual-qos
number

Enter the keyword vman-dual-qos and then the number of
FP blocks for VMAN dual QoS. The range is from 0 to 4.

Ipv4pbr
number

Enter the keyword ipv4pbr and then the number of FP
blocks for ipv4pbr ACL. The range is from 0 to 8.

Openflow
number

Enter the keyword openflow and then the number of FP
blocks for open flow (multiples of 4). The range is from 0 to
8.

fcoeacl
number

Enter the keyword fcoeacl and then the number of FP
blocks for FCOE ACL. The range is from 0 to 6.

Iscsioptacl
number

Enter the keyword iscsioptacl and then the number of FP
blocks for iSCSI optimization ACL. The range is from 0 to 2.

vrfv4acl
number

Enter the keyword vrfv4acl and then the number of FP
blocks for VRF IPv4 ACL. The range is from 0 to 2.

l2acl number
ipv4acl number
ipv6acl
number,
ipv4qos
number l2qos
numberl2pt
number
ipmacacl
number
ecfmacl
number [vmanqos | vmandual-qos
number]
ipv4pbr
numberopenflo
w {4|8} | fcoe
number
[iscsioptacl
number]
[vrfv4acl
number]

Allocate space to each CAM region.
Enter 4 or 8 for the number of OpenFlow FP blocks.
•

4: Creates 242 entries for use by the OpenFlow controller
(256 total entries minus the 14 entries reserved for
internal functionality)

•

8: Creates 498 entries for use by the OpenFlow controller
(512 total entries minus the 14 entries reserved for
internal functionality)

The fcoe range is 0–6 groups. Each group has 128 entries;
the value given must be an even number. This information is
stored in the NVRAM and is effective after rebooting the
switch.

CONFIGURATION

Content Addressable Memory (CAM)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for PBR and VRF.

Version 9.2(0.2)

Added support for fcoe.

Version 9.1.
(0.0)

Added support for OpenFlow.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.2

Clarified block information for the S4810.

Version
8.3.10.0

Introduced on the S4810.

Version 8.3.1.0

Added the keywords ecfmacl, vman-qos, and vman-dualqos.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

Save the new CAM settings to the startup-config (write-mem or copy run
start) then reload the system for the new settings to take effect.
The total amount of space allowed is 16 FP Blocks. System flow requires three
blocks; these blocks cannot be reallocated. Only 13 number of blocks can be
configured by the user .
There can be only one odd number of Blocks in the CLI configuration; the other
Blocks must be in factors of 2. For example, a CLI configuration of 5+4+2+1+1
Blocks is not supported; a configuration of 6+4+2+1 Blocks is supported.
The ipv6acl allocation must be a factor of 2.
If allocation values are not entered for the CAM regions, the value is 0.
If you enable BMP 3.0, to perform a reload on the chassis to upgrade any
configuration changes that have changed the NVRAM content, use the command
reload conditional nvram-cfg-change.

Content Addressable Memory (CAM)

501

cam-acl-egress
Allocate CAM for egress ACLs.

S4810
Syntax
Parameters

cam-acl-egress default | l2acl number ipv4acl number ipv6acl
number
default

Reset egress CAM ACL entries to default settings.

l2acl number

Allocate space to each CAM region. The total space
allocated must equal 4. The ipv6acl range must be a factor of
2.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command..
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

cam-optimization
Optimize CAM utilization for QoS Entries by minimizing require policy-map CAM space.

S4810
Syntax
Parameters

cam-optimization [qos]
qos

Optimize CAM usage for QoS.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

502

Content Addressable Memory (CAM)

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

When you enable this command, if a Policy Map containing classification rules (ACL
and/or dscp/ ip-precedence rules) is applied to more than one physical interface
on the same port pipe, only a single copy of the policy is written (only one FP entry
is used).
NOTE: An ACL itself may still require more that a single FP entry, regardless of
the number of interfaces. For more information, refer to the “IP Access
Control Lists”, “Prefix Lists”, and “Route-map” sections in the Dell Networking
OS Configuration Guide.

show cam-acl
Display the details of the CAM profiles on the chassis and all line cards.

S4810
Syntax

show cam-acl

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series.

The display reflects the settings implemented with the cam-acl command.

Content Addressable Memory (CAM)

503

Example
(S4810 Default)

-- Chassis Cam ACL -Current Settings(in block sizes)
1 block = 128 entries
L2Acl
:
6
Ipv4Acl
:
4
Ipv6Acl
:
0
Ipv4Qos
:
2
L2Qos
:
1
L2PT
:
0
IpMacAcl
:
0
VmanQos
:
0
VmanDualQos :
0
EcfmAcl
:
0
FcoeAcl
:
0
iscsiOptAcl :
0
ipv4pbr
:
0
vrfv4Acl
:
0
Openflow
:
0
fedgovacl
:
0
-- Stack unit 0 -Current Settings(in block sizes)
1 block = 128 entries
L2Acl
:
6
Ipv4Acl
:
4
Ipv6Acl
:
0
Ipv4Qos
:
2
L2Qos
:
1
L2PT
:
0
IpMacAcl
:
0
VmanQos
:
0
VmanDualQos :
0
EcfmAcl
:
0
FcoeAcl
:
0
iscsiOptAcl :
0
ipv4pbr
:
0
vrfv4Acl
:
0
Openflow
:
0
fedgovacl
:
0
-- Stack unit 7 -Current Settings(in block sizes)
1 block = 128 entries
L2Acl
:
6
Ipv4Acl
:
4
Ipv6Acl
:
0
Ipv4Qos
:
2
L2Qos
:
1
L2PT
:
0
IpMacAcl
:
0
VmanQos
:
0
VmanDualQos :
0
EcfmAcl
:
0
FcoeAcl
:
0
iscsiOptAcl :
0
ipv4pbr
:
0
vrfv4Acl
:
0
Openflow
:
0
fedgovacl
:
0
Dell#

504

Content Addressable Memory (CAM)

Example (NonDefault)

Dell#show cam-acl
-- Chassis Cam ACL
Current
L2Acl
:
Ipv4Acl
:
Ipv6Acl
:
Ipv4Qos
:
L2Qos
:
L2PT
:
IpMacAcl
:
VmanQos
:
VmanDualQos:
Ipv4pbr
:

-Settings(in block sizes)
2
2
2
2
2
1
2
0
0
0

-- Line card 4 -Current Settings(in block sizes)
L2Acl
:
5
Ipv4Acl
:
5
Ipv6Acl
:
1
Ipv4Qos
:
1
L2Qos
:
1
L2PT
:
0
IpMacAcl
:
0
VmanQos
:
0
VmanDualQos:
0
Ipv4pbr
:
0
Dell#

test cam-usage
Verify that enough CAM space is available for the IPv6 ACLs you have created.

S4810
Syntax
Parameters

test cam-usage service-policy input input policy name linecard
{number | all}
policy-map
name

Enter the name of the policy-map to verify. Maximum is 32
characters.

number

Enter all to get information for all the linecards/stack-units
or enter the linecard/ stack-unit number to get information
for a specific card. The range is : 0-11 for S4810; 0-7 for all
other S-Series

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Content Addressable Memory (CAM)

505

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced.

This command applies to both IPv4 and IPv6 CAM Profiles, but is best used when
verifying QoS optimization for IPv6 ACLs.
QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a
policy on a single (or the first of several) interfaces. It is most useful when a policy
is applied across multiple interfaces; it can reduce the impact to CAM usage across
subsequent interfaces.
The following describes the test cam-usage command shown in the following
example.

Example (SSeries)

506

Term

Explanation

Stack-Unit

Lists the stack unit or units that are checked. Entering all
shows the status for all stacks.

Portpipe

Lists the portpipe (port-set) or port pipes (port-sets) that are
checked. Entering all shows the status for linecards and
port-pipes in the chassis.

CAM Partition

Shows the CAM profile of the CAM.

Available CAM

Identifies the amount of CAM space remaining for that
profile.

Estimated CAM
per Port

Estimates the amount of CAM space the listed policy will
require.

Status

Indicates whether or not the policy will be allowed in the
CAM.

Dell#test cam-usage service-policy input In stack-unit all
Stack-Unit | Portpipe | CAM Partition | Available CAM |
Estimated CAM per Port| Status
------------------------------------------------------------------------------------0 | 0 | IPv4Flow | 102 | 0| Allowed
0 | 1 | IPv4Flow | 102 | 0| Allowed
Dell#
!
Dell#test cam-usage service-policy input In stack-unit 0 portset 1
Stack-Unit | Portpipe | CAM Partition | Available CAM |
Estimated CAM per Port| Status
--------------------------------------------------------------------------------------

Content Addressable Memory (CAM)

0 | 1 | IPv4Flow | 102 | 0| Allowed
Dell#
Usage
Information

Example (SSeries)

The following describes the test cam-usage command shown in the Example
below.
Term

Explanation

Stack-Unit

Lists the stack unit or units that are checked. Entering all
shows the status for all stacks.

Portpipe

Lists the portpipe (port-set) or port pipes (port-sets) that are
checked. Entering all shows the status for linecards and
port-pipes in the chassis.

CAM Partition

Shows the CAM profile of the CAM.

Available CAM

Identifies the amount of CAM space remaining for that
profile.

Estimated CAM
per Port

Estimates the amount of CAM space the listed policy will
require.

Status

Indicates whether or not the policy will be allowed in the
CAM.

FTOS#test cam-usage service-policy input LauraIn stack-unit all
Stack-Unit|Portpipe|CAM Partition|AvailableCAM|EstimatedCAM
per Port|Status
----------------------------------------------------------------------0|
0|
IPv4Flow|
102|
0|Allowed
0|
1|
IPv4Flow|
102|
0|Allowed
FTOS#
!
FTOS#test cam-usage service-policy input LauraIn stack-unit 0 portset 1
Stack-Unit|Portpipe|CAM Partition|Available CAM|EstimatedCAM
per Port|Status
------------------------------------------------------------------------0|
1|
IPv4Flow|
102|
0|Allowed
FTOS#

Content Addressable Memory (CAM)

507

12

Control Plane Policing (CoPP)
The CoPP commands are supported on the Dell Networking S4810 platform.

control-plane-cpuqos
To manage control-plane traffic, enter control-plane mode and configure the switch.

S4810
Syntax

control-plane-cpuqos

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

service-policy rate-limit-cpu-queues
Apply a policy map for the system to rate limit control traffic on a per-queue basis.

S4810
Syntax
Parameters

508

service-policy rate-limit-cpu-queues policy-name
policy-name

Enter the service-policy name, using a string up to 32
characters.

Control Plane Policing (CoPP)

Defaults

Not configured.

Command
Modes

CONTROL-PLANE-CPUQOS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

Create a policy-map by associating a queue number with the qos-policy.
Create QoS policies prior to enabling this command.
For CoPP, use the keyword cpu-qos when creating qos-policy-input.

Related
Commands

qos-policy-input — creates a QoS input policy map.
policy-map-input — creates an input policy map.

service-policy rate-limit-protocols
Apply a policy for the system to rate limit control protocols on a per-protocol basis.

S4810
Syntax
Parameters

service-policy rate-limit-protocols policy-name
policy-name

Enter the service-policy name, using a string up to 32
characters.

Defaults

Not configured.

Command
Modes

CONTROL-PLANE-CPUQOS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Control Plane Policing (CoPP)

509

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

This command applies the service-policy based on the type of protocol defined in
the ACL rules.
Create ACL and QoS policies prior to enabling this command.
For CoPP, use the keyword cpu-qos when creating qos-policy-input.

Related
Commands

ip access-list extended — creates an extended IP ACL.
mac access-list extended — creates an extended MAC ACL.
qos-policy-input — creates a QoS input policy map.
class-map — creates a QoS class map.
policy-map-input — creates an input policy map.

ip unknown-unicast
Enable IPv4 catch-all route.

S4810
Syntax

ip unknown-unicast [vrf vrf-name]
To remove the IPv4 catch-all route (0.0.0.0/0) from the LPM route forwarding
table in hardware which gets added as a default configuration after the initialization
of FIB Agent module, use the no ip unknown-unicast command.

Defaults
Parameters

Command
Modes
Command
History

510

None
vrf vrf-name

(Optional) Enter the keyword vrf followed by the name of
the VRF to enable catch-all routes corresponding to that
VRF.

CONFIGURATION

Version 9.4(0.0)

Introduced on the S–Series.

Control Plane Policing (CoPP)

Usage
Information

Use this command to add the IPv4 catch-all route (0.0.0.0/0) in the LPM route
forwarding table if it was deleted using the no ip unknown-unicast command
previously. This will be the default configuration after reload.

ipv6 unknown-unicast
Disable soft forwarding of unknown IPv6 destination packets.

S4810 MXL Switch
Syntax

[no] ipv6 unknown-unicast

Defaults

Soft forwarding is enabled.

Command
Modes

CONFIGURATION

Command
History

Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

All the default catch-all entries in the longest prefix match (LPM) table collect and
transmit all unresolved IPv6 packets to the CPU, even if they are destined for
unknown destinations.

show cpu-queue rate cp
Display the rates for each CPU queue.

S4810
Syntax

show cpu-queue rate cp

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Control Plane Policing (CoPP)

511

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

This command applies the service-policy based on the type of protocol defined in
the ACL rules.
Create ACL and QoS policies prior to enabling this command.

Example

Dell#show cpu-queue rate cp for 8 queue platform
Service-Queue Rate (PPS)
-------------- ----------Q0
1300
Q1
300
Q2
300
Q3
300
Q4
2000
Q5
400
Q6
400
Q7
1100
Dell#

show ip protocol-queue-mapping
Display the queue mapping for each configured protocol.

S4810
Syntax

show ip protocol-queue-mapping

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

512

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

Dell#show ip protocol-queue-mapping
Protocol
Src-Port
Dst-Port
TcpFlag
Queue EgPort
Rate(kbps)
------------------------ ----- ------

Control Plane Policing (CoPP)

----------TCP (BGP)
100
UDP (DHCP)
UDP (DHCP-R)
TCP (FTP)
ICMP
IGMP
TCP (MSDP)
UDP (NTP)
OSPF
PIM
UDP (RIP)
TCP (SSH)
TCP (TELNET)
VRRP
Dell#

any/179

179/any

_

Q6

CP

67/68
67
any
any
any
any/639
any
any
any
any
any
any
any

68/67
67
21
any
any
639/any
123
any
any
520
22
23
any

_
_
_
_
_
_
_
_
_
_
_
_
_

Q6/Q5
Q6
Q6
Q6
Q7
Q6
Q6
Q7
Q7
Q7
Q6
Q6
Q7

CP
CP
CP
CP
CP
CP
CP
CP
CP
CP
CP
CP
CP

_
_
_
_
_
_
_
_
_
_
_
_
_

show ipv6 protocol-queue-mapping
Display the queue mapping for each configured IPv6 protocol.

S4810
Syntax

show ipv6 protocol-queue-mapping

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Dell#show ipv6 protocol-queue-mapping
Protocol
Src-Port
Dst-Port TcpFlag Queue EgPort
Rate(kbps)
---------------------- ------- ----- ------ -------TCP (BGP)
any/179
179/any
_
Q6
CP
_
ICMP
any
any
_
Q6
CP
_
VRRP
any
any
_
Q7
CP
_
Dell#

Control Plane Policing (CoPP)

513

show mac protocol-queue-mapping
Display the queue mapping for the MAC protocols.

S4810
Syntax

show mac protocol-queue-mapping

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

514

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

Dell#show mac protocol-queue-mapping
Protocol Destination Mac
EtherType Queue EgPort
Rate(kbps)
----------------------------------- ----- ------ ----------ARP
any
0x0806
Q5/Q6 CP
_
FRRP
01:01:e8:00:00:10/11
any
Q7
CP
_
LACP
01:80:c2:00:00:02
0x8809
Q7
CP
_
LLDP
any
0x88cc
Q7
CP
_
GVRP
01:80:c2:00:00:21
any
Q7
CP
_
STP
01:80:c2:00:00:00
any
Q7
CP
_
ISIS
01:80:c2:00:00:14/15
any
Q7
CP
_
09:00:2b:00:00:04/05
any
Q7
CP
Dell#

Control Plane Policing (CoPP)

Data Center Bridging (DCB)

13

Data center bridging (DCB) refers to a set of IEEE Ethernet enhancements that provide data centers with a
single, robust, converged network to support multiple traffic types, including local area network (LAN),
server, and storage traffic.
The Dell Networking operating software commands for data center bridging features include 802.1Qbb
priority-based flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center
bridging exchange (DCBX) protocol.
This chapter includes the following sections:
•

DCB Command

•

PFC Commands

•

ETS Commands

•

DCBX Commands

DCB Command
The following DCB command is supported on the S4810 platform.

dcb-enable
Enable data center bridging.

S4810
Syntax

dcb enable[pfc-queues 1|4]
To disable DCB, use the no dcb enable command.

Parameters

pfc-queues

Enter the pfc-queue range. To disable DCB, use the no dcb
enable command. The range is from 1 or 2.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Data Center Bridging (DCB)

515

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

By default, iSCSI is enabled on the unit and flow control is enabled on all of the
interfaces or if link-level flow control is enabled on one or more interfaces. To
enable DCB, do one of the following:
•

Apply the dcb-input policy command with the no pfc-mode command on
to all the interfaces.

•

Disable flow-control on all of the interfaces.

dcb-policy input — applies the input policy with the PFC configuration to an
ingress interface.

PFC Commands
The following PFC commands are supported on the S4810 platform.

clear pfc counters
Clear the PFC TLV counters and PFC statistics on an interface or stack unit.

S4810
Syntax
Parameters

clear pfc counters [port-type slot/port | stack-unit {unit
number | all } all stack-ports all}]
port-type

Enter the keywords port-type then the slot/port
information.

stack-unit unit
number

Enter the keywords stack-unit then the stack-unit number
to be cleared.

all stack-ports
all

Enter the keywords all stack-ports all to clear the
counters on all interfaces.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

516

Data Center Bridging (DCB)

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

If you do not use the statistics parameter, both hardware and DCBx counters
clear.

dcb-input
To apply pause or flow control for specified priorities using a configure delay time, create a DCB input
policy.

S4810
Syntax

dcb-input policy-name
To delete the DCB input policy, use the no dcb-input command.

Parameters

policy-name

Maximum: 32 alphanumeric characters.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

517

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
As soon as you apply a DCB policy with PFC enabled on an interface, DCBx starts
exchanging information with PFC-enabled peers. The IEEE802.1Qbb, CEE, and CIN
versions of PFC TLV are supported. DCBx also validates PFC configurations
received in TLVs from peer devices.
By applying a DCB input policy with PFC enabled, you enable PFC operation on
ingress port traffic. To achieve complete lossless handling of traffic, also enable
PFC on all DCB egress ports or configure the dot1p priority-queue assignment of
PFC priorities to lossless queues (refer to pfc no-drop queues).
To remove a DCB input policy, including the PFC configuration it contains, enter
the no dcb-input policy-name command in Interface Configuration mode.

Related
Commands

dcb-policy input — applies the input policy with the PFC configuration.

dcb-policy input
Apply the input policy with the PFC configuration to an ingress interface.

S4810
Syntax

dcb-policy input policy-name
To delete the input policy, use the no dcb-policy input command.

Parameters

policy-name

Enter the input policy name with the PFC configuration to an
ingress interface.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

518

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Data Center Bridging (DCB)

Version
8.3.16.0
Usage
Information

Introduced on the MXL 10/40GbE Switch IO Module.

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
If you apply an input policy with PFC disabled (no pfc mode on):
•

You can enable link-level flow control on the interface. To delete the input
policy, first disable link-level flow control. PFC is then automatically enabled on
the interface because an interface is by default PFC-enabled.

•

PFC still allows you to configure lossless queues on a port to ensure no-drop
handling of lossless traffic.

When you apply an input policy to an interface, an error message is displayed if:
•

The PFC dot1p priorities result in more than two lossless port queues globally
on the switch.

•

You already enabled link-level flow control. PFC and link-level flow control
cannot be enabled at the same time on an interface.

In a switch stack, configure all stacked ports with the same PFC configuration.
A DCB input policy for PFC applied to an interface may become invalid if you
reconfigure the dot1p-queue mapping. This situation occurs when the new dot1pqueue assignment exceeds the maximum number (2) of lossless queues supported
globally on the switch. In this case, all PFC configurations received from PFCenabled peers are removed and resynchronized with the peer devices.
Traffic may be interrupted when you reconfigure PFC no-drop priorities in an input
policy or reapply the policy to an interface.
If the priority group to QoS policy mapping configurations in the DCB output
profile are not complete (for example, no priorities are mapped or only some of the
priorities are mapped), all eight priorities map to a single priority group with a PGID
of 0 for DCBx negotiations.
Related
Commands

dcb-input — creates a DCB input policy.

dcb-policy input stack-unit stack-ports all
Apply the specified DCB input policy on all ports of the switch stack or a single stacked switch.

S4810
Syntax

dcb-policy input stack-unit {all | stack-unit-id} stack-ports
all dcb-input-policy-name
To remove all DCB input policies applied to the stacked ports and rest the PFC to
its default settings, use the no dcb-policy input stack-unit all command.

Data Center Bridging (DCB)

519

To remove only the DCB input policies applied to the specified switch, use the no
dcb-policy input stack-unit command.
Parameters

stack-unit-id

Enter the stack unit identification.

dcb-inputpolicy-name

Enter the policy name for the DCB input policy.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
The dcb-policy input stack-unit all command overwrites any previous
dcb-policy input stack-unit stack-unit-id configurations. Similarly, a
dcb-policy input stack-unit stack-unit-id command overwrites any
previous dcb-policy input stack-unit all configuration.

dcb stack-unit pfc-buffering pfc-port-count pfc-queues
Configure the PFC buffer for all port pipes in a specified stack unit by specifying the port-pipe number,
number of PFC-enabled ports, and number of configured lossless queues.

S4810
Syntax

NOTE:
This command was deprecated in Dell Networking OS Version 9.2.(0.0).
dcb stack-unit {stack-unit-id | all} {pfc-buffering | unit
stack-unit-id pfc-buffering} pfc-ports {1-64} pfc-queues {1-2}

520

Data Center Bridging (DCB)

To remove the configuration for the PFC buffer on all port pipes in a specified stack
unit, use the no dcb stack-unit {stack-unit-id | all} {pfcbuffering | unit stack-unit-id pfc-buffering} pfc-ports {1-64}
pfc-queues {1-2} command.
Parameters

stack-unit-id

Enter the stack unit identification. The range is from 0 to 5.

pfc-ports
{1-64}

Enter the pfc-ports. The range is from 1 to 64.

pfc-queues
{1-2}

Enter the pfc-queue number. The range is from 1 to 2.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

If you configure PFC on a 40GbE port, count the 40GbE port as four PFC-enabled
ports in the pfc-port number you enter in the command syntax.
To achieve lossless PFC operation, the PFC port count and queue number used for
the reserved buffer size that is created must be greater than or equal to the buffer
size required for PFC-enabled ports and lossless queues on the switch.
You must reload the stack or a specified stack unit (use the reload command in
EXEC Privilege mode) for the PFC buffer configuration to take effect.

Related
Commands

dcb stack-unit pfc-buffering pfc-port pfc-queues — configures the PFC buffer for
all switches in the stack.

description
Enter a text description of the DCB policy (PFC input or ETS output).

S4810
Syntax

description text
To remove the text description, use the no description command.

Data Center Bridging (DCB)

521

Parameters

text

Enter the description of the output policy. The maximum is
32 characters.

Defaults

none

Command
Modes

•

DCB INPUT POLICY

•

DCB OUTPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

•

dcb-input — creates a DCB PFC input policy.

•

dcb-policy input — applies the output policy.

•

dcb-output — creates a DCBETS output policy.

•

dcb-policy output — applies the output policy.

pfc link-delay
Configure the link delay used to pause specified priority traffic.

S4810
Syntax

pfc link-delay value
To remove the link delay, use the no pfc link-delay command.

Parameters

value

The range is (in quanta) from 712 to 65535. One quantum is
equal to a 512-bit transmission.

Defaults

45556 quantum

Command
Modes

DCB INPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

522

Data Center Bridging (DCB)

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
The minimum link delay must be greater than the round-trip transmission time a
peer must honor a PFC pause frame multiplied by the number of PFC-enabled
ingress ports.

Related
Commands

dcb-input — creates a DCB input policy.

pfc mode on
Enable the PFC configuration on the port so that the priorities are included in DCBX negotiation with peer
PFC devices.

S4810
Syntax

pfc mode on
To disable the PFC configuration, use the no pfc mode on command.

Defaults

PFC mode is on.

Command
Modes

DCB INPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

523

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
By applying a DCB input policy with PFC enabled, you enable PFC operation on
ingress port traffic. To achieve complete lossless handling of traffic, also enable
PFC on all DCB egress ports or configure the dot1p priority-queue assignment of
PFC priorities to lossless queues (refer to pfc no-drop queues).
To disable PFC operation on an interface, enter the no pfc mode on command in
DCB Input Policy Configuration mode. PFC is enabled and disabled as global DCB
operation is enabled (dcb-enable) or disabled (no dcb-enable).
You cannot enable PFC and link-level flow control at the same time on an
interface.

Related
Commands

dcb-input — creates a DCB input policy.

pfc no-drop queues
Configure the port queues that still function as no-drop queues for lossless traffic.

S4810
Syntax

pfc no-drop queues queue-range
To remove the no-drop port queues, use the no pfc no-drop queues
command.

Parameters

queue-range

Enter the queue range. Separate the queue values with a
comma; specify a priority range with a dash; for example,
pfc no-drop queues 1,3 or pfc no-drop queues 7
or pfc no-drop queues 0,7. The range is from 0 to 3.

Defaults

No lossless queues are configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

524

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Data Center Bridging (DCB)

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

•
•

When you configure lossless queues on an interface, PFC priority configuration
is not allowed on the dcb-input profile applied on the interface.
The maximum number of lossless queues globally supported on the switch is
two.
The following lists the dot1p priority-queue assignments.
dot1p Value in the
Incoming Frame

Description heading

0

0

1

0

2

0

3

1

4

2

5

3

6

3

7

3

pfc priority
Configure the CoS traffic to be stopped for the specified delay.

S4810
Syntax

pfc priority priority-range
To delete the pfc priority configuration, use the no pfc priority command.

Parameters

priority-range

Enter the 802.1p values of the frames to be paused. Separate
the priority values with a comma; specify a priority range
with a dash; for example, pfc priority 1,3,5-7. The range is
from 0 to 7.

Defaults

none

Command
Modes

DCB INPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Data Center Bridging (DCB)

525

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
You can enable any number of 802.1p priorities for PFC. Queues to which PFC
priority traffic is mapped are lossless by default. Traffic may be interrupted due to
an interface flap (going down and coming up) when you reconfigure the lossless
queues for no-drop priorities in a PFC input policy and reapply the policy to an
interface.
The maximum number of lossless queues supported on the switch is two.
A PFC peer must support the configured priority traffic (as DCBX detects) to apply
PFC.

Related
Commands

dcb-input — creates a DCB input policy.

show dcb
Displays the data center bridging status, the number of PFC-enabled ports, and the number of PFCenabled queues.

S4810
Syntax
Parameters

show dcb [stack-unit unit-number] [port-set port-set port-set
number]
unit number

Enter the DCB unit number. The range is from 0 to 5.

port-set
number

Enter the port-set number.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

526

Data Center Bridging (DCB)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

Specify a stack-unit number on the Master switch in a stack.

Example

Dell# show dcb
stack-unit 0 port-set 0
DCB Status : Enabled
PFC Port Count : 56 (current), 56 (configured)
PFC Queue Count : 2 (current), 2 (configured)

show interface pfc
Displays the PFC configuration applied to ingress traffic on an interface, including priorities and link delay.

S4810
Syntax
Parameters

show interface port-type slot/port pfc {summary | detail}
port-type slot/
port pfc

Enter the port-type slot and port PFC information.

{summary |
detail}

Enter the keyword summary for a summary list of results or
enter the keyword detail for a full list of results.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Down status messages added.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

527

Usage
Information

To clear the PFC TLV counters, use the clear pfc counters interface
port-type slot/port command.
The following describes the show interface pfc summary command shown in
the following example.

528

Field

Description

Interface

Interface type with stack-unit and port number.

Admin mode is on
Admin is enabled

PFC admin mode is on or off with a list of the configured
PFC priorities. When the PFC admin mode is on, PFC
advertisements are enabled to be sent and received from
peers; received PFC configuration take effect. The admin
operational status for a DCBX exchange of PFC
configuration is enabled or disabled.

Remote is
enabled, Priority
list Remote
Willing Status is
enabled

Operational status (enabled or disabled) of peer device for
DCBX exchange of PFC configuration with a list of the
configured PFC priorities. Willing status of peer device for
DCBX exchange (Willing bit received in PFC TLV): enabled or
disable.

Local is enabled

DCBX operational status (enabled or disabled) with a list of
the configured PFC priorities.

Operational status
(local port)

Port state for current operational PFC configuration:
•

Init: Local PFC configuration parameters were
exchanged with the peer.

•

Recommend: Remote PFC configuration parameters
were received from the peer.

•

Internally propagated: PFC configuration
parameters were received from the configuration
source.

PFC DCBX Oper
status

Operational status for the exchange of the PFC
configuration on the local port: match (up) or mismatch
(down).

State Machine
Type

Type of state machine used for DCBX exchanges of the PFC
parameters: Feature — for legacy DCBX versions; Symmetric
— for an IEEE version.

TLV Tx Status

Status of the PFC TLV advertisements: enabled or disabled.

PFC Link Delay

Link delay (in quanta) used to pause specified priority traffic.

Application
Priority TLV: FCOE
TLV Tx Status

Status of FCoE advertisements in application priority TLVs
from the local DCBX port: enabled or disabled.

Application
Priority TLV: SCSI
TLV Tx Status

Status of ISCSI advertisements in application priority TLVs
from the local DCBX port: enabled or disabled.

Data Center Bridging (DCB)

Example
(Summary)

Field

Description

Application
Priority TLV: Local
FCOE Priority Map

Priority bitmap the local DCBX port uses in FCoE
advertisements in application priority TLVs.

Application
Priority TLV: Local
ISCSI Priority Map

Priority bitmap the local DCBX port uses in ISCSI
advertisements in application priority TLVs.

Application
Priority TLV:
Remote FCOE
Priority Map

Status of FCoE advertisements in application priority TLVs
from the remote peer port: enabled or disabled.

Application
Priority TLV:
Remote ISCSI
Priority Map

Status of iSCSI advertisements in application priority TLVs
from the remote peer port: enabled or disabled.

PFC TLV Statistics:
Input TLV pkts

Number of PFC TLVs received.

PFC TLV Statistics:
Output TLV pkts

Number of PFC TLVs transmitted.

PFC TLV Statistics:
Error pkts

Number of PFC error packets received.

PFC TLV Statistics:
Pause Tx pkts

Number of PFC pause frames transmitted.

PFC TLV Statistics:
Pause Rx pkts

Number of PFC pause frames received.

Dell# show interfaces tengigabitethernet 0/49 pfc summary
Interface TenGigabitEthernet 0/49
Admin mode is on
Admin is enabled
Remote is enabled, Priority list is 4
Remote Willing Status is enabled
Local is enabled
Oper status is Recommended
PFC DCBX Oper status is Up
State Machine Type is Feature
TLV Tx Status is enabled
PFC Link Delay 45556 pause quantams
Application Priority TLV Parameters :
-------------------------------------FCOE TLV Tx Status is disabled
ISCSI TLV Tx Status is disabled
Local FCOE PriorityMap is 0x8
Local ISCSI PriorityMap is 0x10
Remote FCOE PriorityMap is 0x8
Remote ISCSI PriorityMap is 0x8
Dell# show interfaces tengigabitethernet 0/49 pfc detail
Interface TenGigabitEthernet 0/49
Admin mode is on

Data Center Bridging (DCB)

529

Admin is enabled
Remote is enabled
Remote Willing Status is enabled
Local is enabled
Oper status is recommended
PFC DCBX Oper status is Up
State Machine Type is Feature
TLV Tx Status is enabled
PFC Link Delay 45556 pause quanta
Application Priority TLV Parameters :
-------------------------------------FCOE TLV Tx Status is disabled
ISCSI TLV Tx Status is disabled
Local FCOE PriorityMap is 0x8
Local ISCSI PriorityMap is 0x10
Remote FCOE PriorityMap is 0x8
Remote ISCSI PriorityMap is 0x8
0 Input TLV pkts, 1 Output TLV pkts, 0 Error pkts,
0 Pause Tx pkts, 0 Pause Rx pkts

show interface pfc statistics
Displays counters for the PFC frames received and transmitted (by dot1p priority class) on an interface.

S4810
Syntax
Parameters

show interface port-type slot/port pfc statistics
port-type

Enter the port type.

slot/port

Enter the slot/port number.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example
(Summary)

530

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Dell (conf-if-te-0/1)#show int te 0/1 pfc statistics
Interface TenGigabitEthernet 0/1
Priority
Rx XOFF Frames
Rx Total
Frames
Tx Total Frames
-------------------------------------------------------------------------------------

Data Center Bridging (DCB)

0
0
1
0
2
0
3
0
4
0
5
0
6
0
7
0

0
0
0
0
0
0
0
0

0
0
0
0
0
0
0
0

show qos dcb-input
Displays the PFC configuration in a DCB input policy.

S4810
Syntax
Parameters

show qos dcb-input [dcb-input-policy-name]
dcb-inputpolicyname

Enter the PFC profile.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

Example
(Summary)

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
Dell(conf)# show qos dcb-input
dcb-input pfc-profile
pfc link-delay 32
pfc priority 0-1
dcb-input pfc-profile1

Data Center Bridging (DCB)

531

no pfc mode on
pfc priority 6-7

show stack-unit stack-ports pfc details
Displays the PFC configuration applied to ingress traffic on stacked ports, including PFC Operational
mode on each unit with the configured priorities, link delay, and number of pause packets sent and
received.

S4810
Syntax
Parameters

show stack-unit {all | stack-unit} stack-ports {all | portnumber} pfc details
stack-unit

Enter the stack unit.

port-number

Enter the port number.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example
(Summary)

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Dell(conf)# show stack-unit all stack-ports all pfc details
stack unit 0 stack-port all
Admin mode is On
Admin is enabled, Priority list is 4-5
Local is enabled, Priority list is 4-5
Link Delay 45556 pause quantum
0 Pause Tx pkts, 0 Pause Rx pkts
stack unit 1 stack-port all
Admin mode is On
Admin is enabled, Priority list is 4-5
Local is enabled, Priority list is 4-5
Link Delay 45556 pause quantum
0 Pause Tx pkts, 0 Pause Rx pkts

532

Data Center Bridging (DCB)

ETS Commands
The following ETS commands are supported on the S4810 platform.

bandwidth-percentage
Configure the bandwidth percentage allocated to priority traffic in port queues.

S4810
Syntax

bandwidth-percentage percentage
To remove the configured bandwidth percentage, use the no bandwidthpercentage command.

Parameters

percentage

(Optional) Enter the bandwidth percentage. The percentage
range is from 1 to 100% in units of 1%.

Defaults

none

Command
Modes

QOS-POLICY-OUT-ETS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

By default, equal bandwidth is assigned to each port queue and each dot1p priority
in a priority group. To configure bandwidth amounts in associated dot1p queues,
use the bandwidth-percentage command. When specified bandwidth is
assigned to some port queues and not to others, the remaining bandwidth (100%
minus assigned bandwidth amount) is equally distributed to unassigned non-strict
priority queues in the priority group. The sum of the allocated bandwidth to all
queues in a priority group must be 100% of the bandwidth on the link.
ETS-assigned bandwidth allocation applies only to data queues, not to control
queues.
The configuration of bandwidth allocation and strict-queue scheduling is not
supported at the same time for a priority group. If you configure both, the

Data Center Bridging (DCB)

533

configured bandwidth allocation is ignored for priority-group traffic when you
apply the output policy on an interface.
By default, equal bandwidth is assigned to each priority group in the ETS output
policy applied to an egress port if you did not configure bandwidth allocation. The
sum of configured bandwidth allocation to dot1p priority traffic in all ETS priority
groups must be 100%. Allocate at least 1% of the total bandwidth to each priority
group and queue. If bandwidth is assigned to some priority groups but not to
others, the remaining bandwidth (100% minus assigned bandwidth amount) is
equally distributed to nonstrict-priority groups which have no configured
scheduler.
Related
Commands

•

qos-policy-output ets — creates a QoS output policy.

•

scheduler — schedules priority traffic in port queues.

clear ets counters
Clear all ETS TLV counters on an interface.

S4810
Syntax
Parameters

clear ets counters port-type slot/port
port-type

Enter the keywords port-type then the slot/port
information.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

534

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

dcb-enable
Enable data center bridging.

S4810
Syntax

dcb enable[pfc-queues 1|4]
To disable DCB, use the no dcb enable command.

Parameters

pfc-queues

Enter the pfc-queue range. To disable DCB, use the no dcb
enable command. The range is from 1 or 2.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

By default, iSCSI is enabled on the unit and flow control is enabled on all of the
interfaces or if link-level flow control is enabled on one or more interfaces. To
enable DCB, do one of the following:
•

Apply the dcb-input policy command with the no pfc-mode command on
to all the interfaces.

•

Disable flow-control on all of the interfaces.

dcb-policy input — applies the input policy with the PFC configuration to an
ingress interface.

dcb-output
To associate an ETS configuration with priority traffic, create a DCB output policy.

S4810
Syntax

dcb-output policy-name

Data Center Bridging (DCB)

535

To remove the ETS output policy globally, use the no dcb output policy-name
command.
Parameters

policy-name

Enter the DCB output policy name. The maximum is 32
alphanumeric characters.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
To associate a priority group with an ETS output policy with scheduling and
bandwidth configuration, create a DCB output policy. You can apply a DCB output
policy on multiple egress ports. When you apply an ETS output policy on an
interface, ETS-configured scheduling and bandwidth allocation take precedence
over any configured settings in QoS output policies.
The ETS configuration associated with 802.1 priority traffic in a DCB output policy
is used in DCBX negotiation with ETS peers.

Related
Commands

dcb-policy output — applies the output policy.

dcb-policy output
Apply the output policy with the ETS configuration to an egress interface.

S4810
Syntax

536

dcb-policy output policy-name

Data Center Bridging (DCB)

To delete the output policy, use the no dcb-policy output command.
Parameters

policy-name

Enter the output policy name.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
When you apply an ETS output policy to on interface, ETS-configured scheduling
and bandwidth allocation take precedence over any configured settings in QoS
output policies.
When you disable DCB, ETS is disabled by default. When you enable DCB, ETS is
enabled for all interfaces that have the default ETS configuration applied (all dot1p
priorities in the same group with equal bandwidth allocation).

Related
Commands

dcb-output — creates a DCB output policy.

dcb-policy output stack-unit stack-ports all
Apply the specified DCB output policy on all ports of the switch stack or a single stacked switch.

S4810
Syntax

dcb-policy output stack-unit {all | stack-unit-id} stack-ports
all dcb-output-policy-name
To remove all DCB output policies applied to the stacked ports, use the no dcbpolicy output stack-unit all command.

Data Center Bridging (DCB)

537

To remove only the DCB output policies applied to the specified switch, use the no
dcb-policy output stack-unit command.
Parameters

stack-unit-id

Enter the stack unit identification.

dcb-outputpolicyname

Enter the policy name for the DCB output policy.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
The dcb-policy output stack-unit all command overwrites any previous
dcb-policy output stack-unit stack-unit-id configurations. Similarly, a
dcb-policy output stack-unit stack-unit-id command overwrites any
previous dcb-policy output stack-unit all configuration.
You can apply a DCB output policy with ETS configuration to all stacked ports in a
switch stack or an individual stacked switch. You can apply different DCB output
policies to different stack units.

Related
Commands

dcb-policy input stack-unit stack-ports all — applies the specified DCB input
policy.

description
Enter a text description of the DCB policy (PFC input or ETS output).

S4810
Syntax

538

description text

Data Center Bridging (DCB)

To remove the text description, use the no description command.
Parameters

text

Enter the description of the output policy. The maximum is
32 characters.

Defaults

none

Command
Modes

•

DCB INPUT POLICY

•

DCB OUTPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

•

dcb-input — creates a DCB PFC input policy.

•

dcb-policy input — applies the output policy.

•

dcb-output — creates a DCBETS output policy.

•

dcb-policy output — applies the output policy.

ets mode on
Enable the ETS configuration so that scheduling and bandwidth allocation configured in an ETS output
policy or received in a DCBX TLV from a peer can take effect on an interface.

S4810
Syntax

ets mode on
To remove the ETS configuration, use the no ets mode on command.

Defaults

ETS mode is on.

Command
Modes

DCB OUTPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Data Center Bridging (DCB)

539

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
If you disable ETS in an output policy applied to an interface using the no ets
mode on command, any previously configured QoS settings at the interface or
global level takes effect. If you configure QoS settings at the interface or global
level and in an output policy map (the service-policy output command), the
QoS configuration in the output policy takes precedence.
ETS configurations are accepted from the local and remote system and take effect
based on DCBX negotiations.

Related
Commands

•

dcb-output — creates a DCB output policy.

•

dcb-policy output — applies the output policy.

priority-list
Configure the 802.1p priorities for the traffic on which you want to apply an ETS output policy.

S4810
Syntax

priority-list value
To remove the priority list, use the no priority-list command.

Parameters

value

Enter the priority list value. Separate priority values with a
comma; specify a priority range with a dash; for example,
priority-list 3,5-7. The range is from 0 to 7.

Defaults

none

Command
Modes

PRIORITY-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

540

Data Center Bridging (DCB)

Usage
Information

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

By default:
•

All 802.1p priorities are grouped in priority group 0.

•

100% of the port bandwidth is assigned to priority group 0. The complete
bandwidth is equally assigned to each priority class so that each class has 12 to
13%.

•

priority-group — creates an ETS priority group.

•

priority-group qos-policy — associates an ETS priority group with an ETS
output policy.

•

set-pgid — configures the priority-group.

priority-group
To use with an ETS output policy, create an ETS priority group.

S4810
Syntax

priority-group group-name
To remove the priority group, use the no priority-group command.

Parameters

group-name

Enter the name of the ETS priority group. The maximum is 32
characters.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Data Center Bridging (DCB)

541

Version
8.3.16.0
Usage
Information

Introduced on the MXL 10/40GbE Switch IO Module.

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
A priority group consists of 802.1p priority values that are grouped for similar
bandwidth allocation and scheduling, and that share latency and loss requirements.
All 802.1p priorities mapped to the same queue must be in the same priority group.
You must configure 802.1p priorities in priority groups associated with an ETS
output policy. You can assign each dot1p priority to only one priority group.
The maximum number of priority groups supported in ETS output policies on an
interface is equal to the number of data queues (4) on the port. The 802.1p
priorities in a priority group can map to multiple queues.
If you configure more than one priority queue as strict priority or more than one
priority group as strict priority, the higher numbered priority queue is given
preference when scheduling data traffic.
You must fully define the priority-group profile with a PGID and priorities before
mapping it to a QoS policy because the PGID and priorities are unique keys of the
traffic class group (TCG) that define the QoS policy.
You must disable the DCB output policy before changing the PGID or priorities of a
priority group assigned to that DCB output policy.

Related
Commands

•

priority-list — configures the 802.1p priorities for an ETS output policy.

•

set-pgid — configures the priority-group.

priority-group qos-policy
Associate the 802.1p priority traffic in a priority group with the ETS configuration in a QoS output policy.

S4810
Syntax

priority-group group-name qos-policy ets-policy-name
To remove the 802.1p priority group, use the no priority-group qos-policy
command.

Parameters

542

group-name

Enter the group name of the 802.1p priority group. The
maximum is 32 characters.

ets-policyname

Enter the ETS policy name.

Data Center Bridging (DCB)

Defaults

none

Command
Modes

DCB OUTPUT POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
The ETS configuration associated with 802.1p priority traffic in a DCB output policy
is used in DCBX negotiation with ETS peers.
If you disable ETS in an output policy applied to an interface using the no ets
mode on command, any previously configured QoS settings at the interface or
global level take effect. If you configure QoS settings at the interface or global level
and in an output policy map (the service-policy output command), the QoS
configuration in the output policy takes precedence.

Related
Commands

•

dcb-output — creates a DCB output policy.

•

dcb-policy output — applies the output policy.

qos-policy-output ets
To configure the ETS bandwidth allocation and scheduling for priority traffic, create a QoS output policy.

S4810
Syntax

qos-policy-output policy-name ets
To remove the QoS output policy, use the no qos-policy-output ets
command.

Parameters

policy-name

Data Center Bridging (DCB)

Enter the policy name. The maximum is 32 characters.

543

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

If an error occurs in an ETS output-policy configuration, the configuration is
ignored and the scheduler and bandwidth allocation settings are reset to the ETS
default values (all priorities are in the same ETS priority group and bandwidth is
allocated equally to each priority).
If an error occurs when a port receives a peer’s ETS configuration, the port’s
configuration is reset to the previously configured ETS output policy. If no ETS
output policy was previously applied, the port is reset to the default ETS
parameters.
You can only associate output QoS policy profiles with the priority groups in the
DCB output profile context; output QoS policy profiles are not permitted on output
policy-maps.
WRED, ECN, rate shaping, and rate limiting are not supported in output policies
because DCBx does not negotiate these parameters with peer devices. You can
apply a QoS output policy with WRED and/or rate shaping on a DCBx CIN-enabled
interface.
If you enable the scheduler command for a QoS ETS output policy, no
bandwidth percentage is assigned to the policy.

Related
Commands

•
•

scheduler — schedules the priority traffic in port queues.
bandwidth-percentage — bandwidth percentage allocated to the priority traffic
in port queues.

scheduler
Configure the method used to schedule priority traffic in port queues.

S4810
Syntax

scheduler value
To remove the configured priority schedule, use the no scheduler command.

544

Data Center Bridging (DCB)

Parameters

value

Enter schedule priority value. The range: strict: strict-priority
traffic is serviced before any other queued traffic.

Defaults

Weighted Elastic Round Robin (WERR) scheduling is used to queue priority traffic.

Command
Modes

POLICY-MAP-OUT-ETS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

dot1p priority traffic on the switch is scheduled to the current queue mapping.
dot1p priorities within the same queue must have the same traffic properties and
scheduling method.
ETS-assigned scheduling applies only to data queues, not to control queues.
The configuration of bandwidth allocation and strict-queue scheduling is not
supported at the same time for a priority group. If you configure both, the
configured bandwidth allocation is ignored for priority-group traffic when you
apply the output policy on an interface.
If you enable this command for a QoS ETS output policy, no bandwidth percentage
is assigned to the policy.

Related
Commands

•

qos-policy-output ets — configures the ETS bandwidth allocation.

•

bandwidth-percentage — bandwidth percentage allocated to priority traffic in
port queues.

set-pgid
Configure the priority-group identifier.

S4810
Syntax

set-pgid value
To remove the priority group, use the no set-pgid command.

Data Center Bridging (DCB)

545

Parameters

value

Enter the priority group identification. The range is from 0 to
7.

Defaults

none

Command
Modes

PRIORITY-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

Related
Commands

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
•

priority-group qos-policy — creates an ETS priority group.

•

priority-list — configures the 802.1p priorities.

show interface ets
Displays the ETS configuration applied to egress traffic on an interface, including priority groups with
priorities and bandwidth allocation.

S4810
Syntax
Parameters

show interface port-type slot/port ets {summary | detail}
port-type slot/
port ets

Enter the port-type slot and port ETS information.

{summary |
detail}

Enter the keyword summary for a summary list of results or
enter the keyword detail for a full list of results.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

546

Data Center Bridging (DCB)

The following is a list of the Dell Networking OS version history for this command.

Example
(Summary)

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.2)

Down status messages added.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Dell(conf-qos-policy-out-ets)#show interface te 0/3 ets de
Interface TenGigabitEthernet 0/3
Max Supported TC Groups is 4
Number of Traffic Classes is 8
Admin mode is on
Admin Parameters :
-----------------Admin is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
1
0,1,2
100%
ETS
2
3
0 %
SP
3
4,5,6,7
0 %
SP
4
5
6
7
Remote Parameters :
------------------Remote is disabled
Local Parameters :
-----------------Local is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
1
0,1,2
100%
ETS
2
3
0 %
SP
3
4,5,6,7
0 %
SP
4
5
6
7
Oper status is init
ETS DCBX Oper status is Down
State Machine Type is Asymmetric
Conf TLV Tx Status is enabled
Reco TLV Tx Status is enabled

Data Center Bridging (DCB)

547

0 Input Conf TLV Pkts, 1955 Output Conf TLV Pkts, 0 Error Conf
TLV Pkts
0 Input Reco TLV Pkts, 1955 Output Reco TLV Pkts, 0 Error Reco
TLV Pkts
Dell(conf-qos-policy-out-ets)#do sho int te 0/3 ets de
Interface TenGigabitEthernet 0/3
Max Supported TC Groups is 4
Number of Traffic Classes is 8
Admin mode is on
Admin Parameters :
-----------------Admin is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
1
0,1,2
100%
ETS
2
3
0 %
SP
3
4,5,6,7
0 %
SP
4
5
6
7
Remote Parameters :
------------------Remote is disabled
Local Parameters :
-----------------Local is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
1
0,1,2
100%
ETS
2
3
0 %
SP
3
4,5,6,7
0 %
SP
4
5
6
7
Oper status is init
ETS DCBX Oper status is Down
State Machine Type is Asymmetric
Conf TLV Tx Status is enabled
Reco TLV Tx Status is enabled
0 Input Conf TLV Pkts, 1955 Output Conf TLV Pkts, 0 Error Conf
TLV Pkts
0 Input Reco TLV Pkts, 1955 Output Reco TLV Pkts, 0 Error Reco
TLV Pkts
Dell(conf)# show interfaces tengigabitethernet 0/0 ets detail
Interface TenGigabitEthernet 0/0
Max Supported TC Groups is 4
Number of Traffic Classes is 8
Admin mode is on
Admin Parameters :
------------------

548

Data Center Bridging (DCB)

Admin is enabled
TC-grp Priority# Bandwidth TSA
0 0,1,2,3,4,5,6,7 100% ETS
1 0% ETS
2 0% ETS
3 0% ETS
4 0% ETS
5 0% ETS
6 0% ETS
7 0% ETS
Priority# Bandwidth TSA
0 13% ETS
1 13% ETS
2 13% ETS
3 13% ETS
4 12% ETS
5 12% ETS
6 12% ETS
7 12% ETS
Remote Parameters:
------------------Remote is disabled
Local Parameters :
-----------------Local is enabled
TC-grp Priority# Bandwidth TSA
0 0,1,2,3,4,5,6,7 100% ETS
1 0% ETS
2 0% ETS
3 0% ETS
4 0% ETS
5 0% ETS
6 0% ETS
7 0% ETS
Priority# Bandwidth TSA
0 13% ETS
1 13% ETS
2 13% ETS
3 13% ETS
4 12% ETS
5 12% ETS
6 12% ETS
7 12% ETS
Oper status is init
Conf TLV Tx Status is disabled
Traffic Class TLV Tx Status is disabled
0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf
TLV Pkts
0T LIVnput Traffic Class TLV Pkts, 0 Output Traffic Class TLV
Pkts, 0 Error Traffic
Class
Pkts
Example
(Detail)

Dell(conf)# show interfaces tengigabitethernet 0/0 ets detail
Interface TenGigabitEthernet 0/0
Max Supported TC Groups is 4
Number of Traffic Classes is 8
Admin mode is on
Admin Parameters :
-----------------Admin is enabled
TC-grp Priority#
Bandwidth TSA
0
0,1,2,3,4,5,6,7 100%
ETS

Data Center Bridging (DCB)

549

1
2
3
4
5
6
7

0%
0%
0%
0%
0%
0%
0%

ETS
ETS
ETS
ETS
ETS
ETS
ETS

Priority#
0
1
2
3
4
5
6
7
Remote Parameters:
------------------Remote is disabled

Bandwidth
13%
13%
13%
13%
12%
12%
12%
12%

TSA
ETS
ETS
ETS
ETS
ETS
ETS
ETS
ETS

Bandwidth
100%
0%
0%
0%
0%
0%
0%
0%

TSA
ETS
ETS
ETS
ETS
ETS
ETS
ETS
ETS

Local Parameters :
-----------------Local is enabled
TC-grp Priority#
0
0,1,2,3,4,5,6,7
1
2
3
4
5
6
7

Priority#
Bandwidth TSA
0
13%
ETS
1
13%
ETS
2
13%
ETS
3
13%
ETS
4
12%
ETS
5
12%
ETS
6
12%
ETS
7
12%
ETS
Oper status is init
Conf TLV Tx Status is disabled
Traffic Class TLV Tx Status is disabled
0 Input Conf TLV Pkts, 0 Output Conf TLV Pkts, 0 Error Conf
TLV Pkts
0 Input Traffic Class TLV Pkts, 0 Output Traffic Class TLV
Pkts, 0 Error Traffic Class
TLV
Pkts

show qos dcb-output
Displays the ETS configuration in a DCB output policy.

S4810
Syntax

550

show qos dcb-output [ets-profile]

Data Center Bridging (DCB)

Parameters

[ets-profile]

Enter the ETS profile.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Usage
Information

Example
(Summary)

NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4.(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.
Dell# show qos dcb-output
dcb-output ets
priority-group san qos-policy san
priority-group ipc qos-policy ipc
priority-group lan qos-policy lan

show qos priority-groups
Displays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of
each group.

S4810
Syntax

show qos priority-groups

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Data Center Bridging (DCB)

551

Version
8.3.16.0
Example
(Summary)

Introduced on the MXL 10/40GbE Switch IO Module.

Del#show qos priority-groups
priority-group ipc
priority-list 4
set-pgid 2

show stack-unit stack-ports ets details
Displays the ETS configuration applied to egress traffic on stacked ports, including ETS Operational mode
on each unit and the configurated priority groups with dot1p priorities, bandwidth allocation, and
scheduler type.

S4810
Syntax
Parameters

show stack-unit {all | stack-unit} stack-ports {all | portnumber} ets details
stack-unit

Enter the stack unit identification.

port-number

Enter the port number.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example
(Summary)

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Dell(conf)# show stack-unit all stack-ports all ets details
Stack unit 0 stack port all
Max Supported TC Groups is 4
Number of Traffic Classes is 1
Admin mode is on
Admin Parameters:
-------------------Admin is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
0,1,2,3,4,5,6,7 100%
ETS
1
- 2
- 3
- -

552

Data Center Bridging (DCB)

4
5
6
7
8

-

-

Stack unit 1 stack port all
Max Supported TC Groups is 4
Number of Traffic Classes is 1
Admin mode is on
Admin Parameters:
-------------------Admin is enabled
TC-grp Priority#
Bandwidth TSA
-----------------------------------------------0
0,1,2,3,4,5,6,7 100%
ETS
1
2
3
4
5
6
7
8
-

DCBX Commands
The following DCBX commands are supported on the S4810 platform.

advertise dcbx-app-tlv
Configure DCBX to send iSCSI TLV advertisements.

S4810
Syntax

advertise dcbx-app-tlv iscsi
To disable DCBX iSCSI TLV advertisements, use the no advertise dcbx-apptlv iscsi command.

Defaults

Enabled

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Data Center Bridging (DCB)

Introduced on the S4820T.

553

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

You can configure iSCSI TLVs to send either globally or on a specified interface.
The interface configuration takes priority over global configuration.

advertise dcbx-appln-tlv
On a DCBX port with a manual role, configure the application priority TLVs advertised on the interface to
DCBX peers.

S4810
Syntax

advertise dcbx-appln-tlv {fcoe | iscsi}
To remove the application priority TLVs, use the no advertise dcbx-applntlv {fcoe | iscsi} command.

Parameters

{fcoe | iscsi}

Enter the application priority TLVs, where:
•

fcoe: enables the advertisement of FCoE in application
priority TLVs.

•

iscsi: enables the advertisement of iSCSI in application
priority TLVs.

Defaults

Application priority TLVs are enabled to advertise FCoE and iSCSI.

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

554

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

To disable TLV transmission, use the no form of the command; for example, no
advertise dcbx-appln-tlv iscsi.

Data Center Bridging (DCB)

advertise dcbx-tlv
On a DCBX port with a manual role, configure the PFC and ETS TLVs advertised to DCBX peers.

S4810
Syntax

advertise dcbx-tlv {ets-conf | ets-reco | pfc} [ets-conf | etsreco | pfc] [ets-conf | ets-reco | pfc]
To remove the advertised ETS TLVs, use the no advertise dcbx-tlv command.

Parameters

{ets-conf | etsreco | pfc}

Enter the PFC and ETS TLVs advertised, where:
•

ets-conf: enables the advertisement of ETS
configuration TLVs.

•

ets-reco: enables the advertisement of ETS
recommend TLVs.

•

pfc: enables the advertisement of PFC TLVs.

Defaults

All PFC and ETS TLVs are advertised.

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

You can configure the transmission of more than one TLV type at a time; for
example: advertise dcbx-tlv ets-conf ets-reco.
You can enable ETS recommend TLVs (ets-reco) only if you enable ETS
configuration TLVs (ets-conf). To disable TLV transmission, use the no form of
the command; for example, no advertise dcbx-tlv pfc ets-reco.
DCBX requires that you enable LLDP to advertise DCBX TLVs to peers.

Data Center Bridging (DCB)

555

Configure DCBX operation at the INTERFACE level on a switch or globally on the
switch. To verify the DCBX configuration on a port, use the show interface
dcbx detail command.

dcbx port-role
Configure the DCBX port role the interface uses to exchange DCB information.

S4810
Syntax

dcbx port-role {config-source | auto-downstream | auto-upstream
| manual}
To remove DCBX port role, use the no dcbx port-role {config-source |
auto-downstream | auto-upstream | manual} command.

Parameters

config-source |
autodownstream |
auto-upstream
| manual

Enter the DCBX port role, where:
•

config-source: configures the port to serve as the
configuration source on the switch.

•

auto-upstream: configures the port to receive a peer
configuration. The configuration source is elected from
auto-upstream ports.

•

auto-downstream: configures the port to accept the
internally propagated DCB configuration from a
configuration source.

•

manual: configures the port to operate only on
administer-configured DCB parameters. The port does
not accept a DCB configuration received form a peer or a
local configuration source.

Defaults

Manual

Command
Modes

INTERFACE PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

556

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

Usage
Information

DCBX requires that you enable LLDP to advertise DCBX TLVs to peers.
Configure DCBX operation at the INTERFACE level on a switch or globally on the
switch. To verify the DCBX configuration on a port, use the show interface
dcbx detail command.

dcbx version
Configure the DCBX version used on the interface.

S4810
Syntax

dcbx version {auto | cee | cin | ieee-v2.5}
To remove the DCBX version, use the dcbx version {auto | cee | cin |
ieee-v2.5} command.

Parameters

auto | cee | cin
| ieee-v2.5

Enter the DCBX version type used on the interface, where:
•

auto: configures the port to operate using the DCBX
version received from a peer.

•

cee: configures the port to use CDD (Intel 1.01).

•

cin: configures the port to use Cisco-Intel-Nuova (DCBX
1.0).

•

ieee-v2: configures the port to use IEEE 802.1az (Draft
2.5).

Defaults

Auto

Command
Modes

INTERFACE PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

DCBX requires that you enable LLDP to advertise DCBX TLVs to peers.

Data Center Bridging (DCB)

557

Configure DCBX operation at the INTERFACE level on a switch or globally on the
switch. To verify the DCBX configuration on a port, use the show interface
dcbx detail command.

debug dcbx
Enable DCBX debugging.

S4810
Syntax

debug dcbx {all | auto-detect-timer | config-exchng | fail |
mgmt | resource | sem | tlv}
To disable DCBX debugging, use the no debug dcbx command.

Parameters

{all | autodetect-timer |
config-exchng
| fail | mgmt |
resource | sem
| tlv}

Enter the type of debugging, where:
•

all: enables all DCBX debugging operations.

•

auto-detect-timer: enables traces for DCBX autodetect timers.

•

config-exchng: enables traces for DCBX configuration
exchanges.

•

fail: enables traces for DCBX failures.

•

mgmt: enables traces for DCBX management frames.

•

resource: enables traces for DCBX system resource
frames.

•

sem: enables traces for the DCBX state machine.

•

tlv: enables traces for DCBX TLVs.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

558

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

Data Center Bridging (DCB)

fcoe priority-bits
Configure the FCoE priority advertised for the FCoE protocol in application priority TLVs.

S4810
Syntax

fcoe priority-bits priority-bitmap
To remove the configured FCoE priority, use the no fcoe priority-bits
command.

Parameters

priority-bitmap

Enter the priority-bitmap range. The range is from 1 to FF.

Defaults

0x8

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

This command is available at the global level only.

iscsi priority-bits
Configure the iSCSI priority advertised for the iSCSI protocol in application priority TLVs.

S4810
Syntax

iscsi priority-bits priority-bitmap
To remove the configured iSCSI priority, use the no iscsi priority-bits
command.

Parameters

Defaults

priority-bitmap

Enter the priority-bitmap range. The range is from 1 to FF.

0x10

Data Center Bridging (DCB)

559

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on the MXL 10/40GbE Switch IO Module.

This command is available at the global level only.

show interface dcbx detail
Displays the DCBX configuration on an interface.

S4810
Syntax
Parameters

show interface port-type slot/port dcbx detail
port-type

Enter the port type.

slot/port

Enter the slot/port number.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

560

Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Down status messages added.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Data Center Bridging (DCB)

Version
8.3.16.0
Usage
Information

Introduced on the MXL 10/40GbE Switch IO Module.

To clear DCBX frame counters, use the clear dcbx counters interface
stack-unit/port command.
The following describes the show interface dcbx detail command shown in
the following example.
Field

Description

Interface

Interface type with chassis slot and port number.

Port-Role

Configured the DCBX port role: auto-upstream, autodownstream, config-source, or manual.

DCBX Operational
Status

Operational status (enabled or disabled) used to elect a
configuration source and internally propagate a DCB
configuration. The DCBX operational status is the
combination of PFC and ETS operational status.

Configuration
Source

Specifies whether the port serves as the DCBX configuration
source on the switch: true (yes) or false (no).

Local DCBX
Compatibility
mode

DCBX version accepted in a DCB configuration as
compatible. In auto-upstream mode, a port can only receive
a DCBX version supported on the remote peer.

Local DCBX
Configured mode

DCBX version configured on the port: CEE, CIN, IEEE v2.5,
or Auto (port auto-configures to use the DCBX version
received from a peer).

Peer Operating
version

DCBX version that the peer uses to exchange DCB
parameters.

Local DCBX TLVs
Transmitted

Transmission status (enabled or disabled) of advertised DCB
TLVs (see TLV code at the top of the show command
output).

Local DCBX
Status: DCBX
Operational
Version

DCBX version advertised in Control TLVs.

Local DCBX
Status: DCBX Max
Version Supported

Highest DCBX version supported in Control TLVs.

Local DCBX
Status: Sequence
Number

Sequence number transmitted in Control TLVs.

Local DCBX
Status:
Acknowledgment
Number

Acknowledgement number transmitted in Control TLVs.

Data Center Bridging (DCB)

561

Example

Field

Description

Local DCBX
Status: Protocol
State

Current operational state of the DCBX protocol: ACK or INSYNC.

Peer DCBX Status:
DCBX Operational
Version

DCBX version advertised in Control TLVs received from the
peer device.

Peer DCBX Status:
DCBX Max
Version Supported

Highest DCBX version supported in Control TLVs received
from the peer device.

Peer DCBX Status:
Sequence
Number

Sequence number transmitted in Control TLVs received
from the peer device.

Peer DCBX Status:
Acknowledgment
Number

Acknowledgement number transmitted in Control TLVs
received from the peer device.

Total DCBX
Frames
transmitted

Number of DCBX frames sent from the local port.

Total DCBX
Frames received

Number of DCBX frames received from the remote peer
port.

Total DCBX Frame
errors

Number of DCBX frames with errors received.

Total DCBX
Frames
unrecognized

Number of unrecognizable DCBX frames received.

Dell(conf)# show interface tengigabitethernet 0/49 dcbx detail
Dell#show interface te 0/49 dcbx detail
E-ETS Configuration TLV enabled
e-ETS Configuration TLV disabled
R-ETS Recommendation TLV enabled
r-ETS Recommendation TLV disabled
P-PFC Configuration TLV enabled
p-PFC Configuration TLV disabled
F-Application priority for FCOE enabled
f-Application Priority for FCOE disabled
I-Application priority for iSCSI enabled
i-Application Priority for iSCSI disabled
----------------------------------------------------------Interface TenGigabitEthernet 0/49
Remote Mac Address 00:00:00:00:00:11
Port Role is Auto-Upstream
DCBX Operational Status is Enabled
Is Configuration Source? TRUE
Local DCBX Compatibility mode is CEE
Local DCBX Configured mode is CEE
Peer Operating version is CEE

562

Data Center Bridging (DCB)

Local DCBX TLVs Transmitted: ErPfi
Local DCBX Status
----------------DCBX Operational Version is 0
DCBX Max Version Supported is 0
Sequence Number: 2
Acknowledgment Number: 2
Protocol State: In-Sync
Peer DCBX Status:
---------------DCBX Operational Version is 0
DCBX Max Version Supported is 255
Sequence Number: 2
Acknowledgment Number: 2
Total DCBX Frames transmitted 27
Total DCBX Frames received 6
Total DCBX Frame errors 0
Total DCBX Frames unrecognized 0

Configuring DCB Maps and its Attributes
This topic contains the following sections that describe how to configure a DCB map, apply the
configured DCB map to a port, configure PFC without a DCB map, and configure lossless queues. This
functionality is supported on the S4810 platform.

DCB Map: Configuration Procedure
A DCB map consists of PFC and ETS parameters. By default, PFC is not enabled on any 802.1p priority
and ETS allocates equal bandwidth to each priority. To configure user-defined PFC and ETS settings, you
must create a DCB map.
Step

Task

Command

Command Mode

1

Enter global configuration mode to create a
DCB map or edit PFC and ETS settings.

dcb-map name

CONFIGURATION

2

Configure the PFC setting (on or off) and the
ETS bandwidth percentage allocated to traffic
in each priority group, or whether the priority
group traffic should be handled with strict
priority scheduling. You can enable PFC on a
maximum of two priority queues on an
interface. Enabling PFC for dot1p priorities
makes the corresponding port queue lossless.
The sum of all allocated bandwidth
percentages in all groups in the DCB map
must be 100%. Strict-priority traffic is serviced
first. Afterwards, bandwidth allocated to other
priority groups is made available and allocated
according to the specified percentages. If a
priority group does not use its allocated

priority-group
group_num {bandwidth
percentage | strictpriority} pfc {on | off}

DCB MAP

Data Center Bridging (DCB)

563

Step

Task

Command

Command Mode

priority-pgid
dot1p0_group_num
dot1p1_group_num
dot1p2_group_num
dot1p3_group_num
dot1p4_group_num
dot1p5_group_num
dot1p6_group_num
dot1p7_group_num

DCB MAP

bandwidth, the unused bandwidth is made
available to other priority groups.
Example: priority-group 0 bandwidth 60 pfc
off priority-group 1 bandwidth 20 pfc on
priority-group 2 bandwidth 20 pfc on
priority-group 4 strict-priority pfc off
Repeat this step to configure PFC and ETS
traffic handling for each priority group.
Specify the dot1p priority-to-priority group
mapping for each priority. Priority-group
range: 0 to 7. All priorities that map to the
same queue must be in the same priority
group.

3

Leave a space between each priority group
number. For example: priority-pgid 0 0 0 1 2
4 4 4 in which priority group 0 maps to dot1p
priorities 0, 1, and 2; priority group 1 maps to
dot1p priority 3; priority group 2 maps to
dot1p priority 4; priority group 4 maps to
dot1p priorities 5, 6, and 7.

Important Points to Remember
•

If you remove a dot1p priority-to-priority group mapping from a DCB map (no priority pgid
command), the PFC and ETS parameters revert to their default values on the interfaces on which the
DCB map is applied. By default, PFC is not applied on specific 802.1p priorities; ETS assigns equal
bandwidth to each 802.1p priority.
As a result, PFC and lossless port queues are disabled on 802.1p priorities, and all priorities are
mapped to the same priority queue and equally share the port bandwidth.

•

To change the ETS bandwidth allocation configured for a priority group in a DCB map, do not modify
the existing DCB map configuration. Instead, first create a new DCB map with the desired PFC and
ETS settings, and apply the new map to the interfaces to override the previous DCB map settings.
Then, delete the original dot1p priority-priority group mapping.
If you delete the dot1p priority-priority group mapping (no priority pgid command) before you
apply the new DCB map, the default PFC and ETS parameters are applied on the interfaces. This
change may create a DCB mismatch with peer DCB devices and interrupt network operation.

Applying a DCB Map on a Port
When you apply a DCB map with PFC enabled on an S6000 interface, a memory buffer for PFC-enabled
priority traffic is automatically allocated. The buffer size is allocated according to the number of PFCenabled priorities in the assigned map.
To apply a DCB map to an Ethernet port, follow these steps:

564

Data Center Bridging (DCB)

Step

Task

Command

Command Mode

1

Enter interface configuration mode on an
Ethernet port.

CONFIGURATION
interface
{tengigabitEthernet slot/
port |
fortygigabitEthernet
slot/port}

2

Apply the DCB map on the Ethernet port to
configure it with the PFC and ETS settings in
the map; for example:

dcb-map name

INTERFACE

Dell# interface tengigabitEthernet 0/0
Dell(config-if-te-0/0)# dcb-map
SAN_A_dcb_map1 Repeat Steps 1 and 2 to
apply a DCB map to more than one port.
You cannot apply a DCB map on an interface
that has been already configured for PFC using
thepfc priority command or which is
already configured for lossless queues (pfc
no-drop queues command).

Configuring PFC without a DCB Map
In a network topology that uses the default ETS bandwidth allocation (assigns equal bandwidth to each
priority), you can also enable PFC for specific dot1p-priorities on individual interfaces without using a
DCB map. This type of DCB configuration is useful on interfaces that require PFC for lossless traffic, but
do not transmit converged Ethernet traffic.
Step

Task

Command

Command Mode

1

Enter interface configuration mode on an
Ethernet port.

interface
{tengigabitEthernet
slot/port |
fortygigabitEthernet
slot/port}

CONFIGURATION

2

Enable PFC on specified priorities. Range:
0-7. Default: None.

pfc priority
priority-range

INTERFACE

Maximum number of lossless queues
supported on an Ethernet port: 2.
Separate priority values with a comma.
Specify a priority range with a dash, for
example: pfc priority 3,5-7
1.

You cannot configure PFC using the
pfc priority command on an
interface on which a DCB map has been
applied or which is already configured
for lossless queues (pfc no-drop
queues command).

Data Center Bridging (DCB)

565

Configuring Lossless Queues
DCB also supports the manual configuration of lossless queues on an interface after you disable PFC
mode in a DCB map and apply the map on the interface. The configuration of no-drop queues provides
flexibility for ports on which PFC is not needed, but lossless traffic should egress from the interface.
Lossless traffic egresses out the no-drop queues. Ingress 802.1p traffic from PFC-enabled peers is
automatically mapped to the no-drop egress queues.
When configuring lossless queues on a port interface, consider the following points:
•

By default, no lossless queues are configured on a port.

•

A limit of two lossless queues are supported on a port. If the number of lossless queues configured
exceeds the maximum supported limit per port (two), an error message is displayed. You must reconfigure the value to a smaller number of queues.

•

If you configure lossless queues on an interface that already has a DCB map with PFC enabled (pfc
on), an error message is displayed.

Step

Task

Command

Command Mode

1

Enter INTERFACE Configuration mode.

interface{tengigabitE CONFIGURATION
thernet slot/port |
fortygigabitEthernet
slot/port}

2

Open a DCB map and enter DCB map
configuration mode.

dcb-map name

INTERFACE

3

Disable PFC.

no pfc mode on

DCB MAP

4

Return to interface configuration mode.

exit

DCB MAP

5

Apply the DCB map, created to disable the
PFC operation, on the interface

dcb-map {name |
default}

INTERFACE

6

Configure the port queues that still function
as no-drop queues for lossless traffic. For
the dot1p-queue assignments.

pfc no-drop
queuesqueue-range

INTERFACE

The maximum number of lossless queues
globally supported on a port is 2.
You cannot configure PFC no-drop queues
on an interface on which a DCB map with
PFC enabled has been applied, or which is
already configured for PFC using the pfc
priority command.
Range: 0-3. Separate queue values with a
comma; specify a priority range with a dash;
for example: pfc no-drop queues 1,3 or pfc
no-drop queues 2-3 Default: No lossless
queues are configured.

566

Data Center Bridging (DCB)

Data Center Bridging: Default Configuration
This functionality is supported on the platform.
Before you configure PFC and ETS on an S6000 switch (see Configuring DCB Maps and its Attributes),
take into account the following default settings:
DCB is enabled.
PFC and ETS are globally enabled by default.
The default dot1p priority-queue assignments are applied as follows:
Dell(conf)#do show qos dot1p-queue-mapping
Dot1p Priority : 0 1 2 3 4 5 6 7
Queue : 2 0 1 3 4 5 6 7
Dell(conf)#
NOTE: In Egress queue assignment (8 queues in S6000, 4 against in S5000 / S4810.
PFC is not applied on specific dot1p priorities.
ETS: Equal bandwidth is assigned to each port queue and each dot1p priority in a priority group.
To configure PFC and ETS parameters on an S6000 interface, you must specify the PFC mode, the ETS
bandwidth allocation for a priority group, and the 802.1p priority-to-priority group mapping in a DCB
map. No default PFC and ETS settings are applied to Ethernet interfaces.

dcb-map
Create a DCB map to configure priority flow control (PFC) and enhanced transmission selection (ETS) on
Ethernet ports that support converged Ethernet traffic. Apply the DCB map to an Ethernet interface.

S4810
Syntax
Parameters

dcb-map map-name
map-name

Enter a DCB map name. The maximum number of
alphanumeric characters is 32.

Defaults

None. There are no pre-configured PFC and ETS settings on S5000 Ethernet
interfaces.

Command
Modes

CONFIGURATION

Command
History

INTERFACE

Version 9.3(0.0)

Data Center Bridging (DCB)

Introduced on the S4810 and S6000 platforms.

567

Usage
Information

A DCB map is a template used to configure DCB parameters and apply them on
converged Ethernet interfaces. DCB parameters include priority-based flow control
(PFC) and enhanced traffic selection (ETS).
To display the PFC and ETS settings in DCB maps, enter the show qos dcb-map
command.
Use the dcb-map command to create a DCB map to specify PFC and ETS settings
and apply it on Ethernet ports. After you apply a DCB map to an interface, the PFC
and ETS settings in the map are applied when the Ethernet port is enabled. DCBx is
enabled on Ethernet ports by default.
The dcb-map command is supported only on physical Ethernet interfaces.
To remove a DCB map from an interface, enter the no dcb-map map-name
command in Interface configuration mode.

priority-pgid
Assign 802.1p priority traffic to a priority group in a DCB map.

S4810
Syntax

Parameters

priority-pgid dot1p0_group-num dot1p1_group-num dot1p2_groupnum dot1p3_group-num dot1p4_group-num dot1p5_group-num
dot1p6_group-num dot1p7_group-num
dot1p0_groupnum

Enter the priority group number for each 802.1p class of
traffic in a DCB map.

dot1p1_groupnum
dot1p2_groupnum
dot1p3_groupnum
dot1p4_groupnum
dot1p5_groupnum
dot1p6_groupnum
dot1p7_groupnum

568

Data Center Bridging (DCB)

Defaults

None

Command
Modes

DCB MAP

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810, S6000 platforms.

PFC and ETS settings are not pre-configured on Ethernet ports. You must use the
dcb-map command to configure different groups of 802.1p priorities with PFC and
ETS settings.
Using the priority-pgid command, you assign each 802.1p priority to one
priority group. A priority group consists of 802.1p priority values that are grouped
together for similar bandwidth allocation and scheduling, and that share latency
and loss requirements. All 802.1p priorities mapped to the same queue must be in
the same priority group. For example, the priority-pgid 0 0 0 1 2 4 4 4
command creates the following groups of 802.1p priority traffic:
•

Priority group 0 contains traffic with dot1p priorities 0, 1, and 2.

•

Priority group 1 contains traffic with dot1p priority 3.

•

Priority group 2 contains traffic with dot1p priority 4.

•

Priority group 4 contains traffic with dot1p priority 5, 6, and 7.

To remove a priority-pgid configuration from a DCB map, enter the no
priority-pgid command.

pfc mode on
Enable the PFC configuration on the port so that the priorities are included in DCBX negotiation with peer
PFC devices.
Syntax

pfc mode on
To disable the PFC configuration, use the no pfc mode on command.

Defaults

PFC mode is on.

Command
Modes

DCB MAP

Command
History

Usage
Information

Version 9.3(0.0)

Introduced on the MXL 10/40GbE Switch with the FC Flex IO
module.

By applying a DCB input policy with PFC enabled, you enable PFC operation on
ingress port traffic. To achieve complete lossless handling of traffic, also enable
PFC on all DCB egress ports or configure the dot1p priority-queue assignment of
PFC priorities to lossless queues (refer to pfc no-drop queues).

Data Center Bridging (DCB)

569

To disable PFC operation on an interface, enter the no pfc mode on command in
DCB Input Policy Configuration mode. PFC is enabled and disabled as global DCB
operation is enabled (dcb-enable) or disabled (no dcb-enable).
You cannot enable PFC and link-level flow control at the same time on an
interface.
NOTE: Please note that Dell Networking does not recommended to use this
command as it has been deprecated in the current 9.4(0.0) release. A warning
message appears when you try to run this command indicating that you have
to use the dcb-map commands in the future.

priority-group bandwidth pfc
Configure the ETS bandwidth allocation and PFC mode used to manage port traffic in an 802.1p priority
group.

S4810
Syntax
Parameters

priority-group group-num {bandwidth percentage| strictpriority} pfc {on | off}
priority-group
group-num

Enter the keyword priority-group followed by the
number of an 802.1p priority group. Use the prioritypgid command to create the priority groups in a DCB map.

bandwidth
percentage

Enter the keyword bandwidth followed by a bandwidth
percentage allocated to the priority group. The range of valid
values is 1 to 100. The sum of all allocated bandwidth
percentages in priority groups in a DCB map must be 100%.

strict-priority

Configure the priority-group traffic to be handled with strict
priority scheduling. Strict-priority traffic is serviced first,
before bandwidth allocated to other priority groups is made
available.

pfc {on | off}

Configure whether priority-based flow control is enabled
(on) or disabled (off) for port traffic in the priority group.

Defaults

None

Command
Modes

DCB MAP

Command
History
Usage
Information

570

Version 9.3(0.0)

Introduced on the S4810, S6000 platforms.

Use the dcb-map command to configure priority groups with PFC and/or ETS
settings and apply them to Ethernet interfaces.

Data Center Bridging (DCB)

Use the priority-pgid command to map 802.1p priorities to a priority group.
You can assign each 802.1p priority to only one priority group. A priority group
consists of 802.1p priority values that are grouped together for similar bandwidth
allocation and scheduling, and that share latency and loss requirements. All 802.1p
priorities mapped to the same queue must be in the same priority group.
Repeat the priority-group bandwidth pfc command to configure PFC and
ETS traffic handling for each priority group in a DCB map.
You can enable PFC on a maximum of two priority queues.
If you configure more than one priority group as strict priority, the higher
numbered priority queue is given preference when scheduling data traffic.
If a priority group does not use its allocated bandwidth, the unused bandwidth is
made available to other priority groups.
To remove a priority-group configuration in a DCB map, enter the no prioritygroup bandwidth pfc command.
By default, equal bandwidth is assigned to each dot1p priority in a priority group.
Use the bandwidth parameter to configure the bandwidth percentage assigned to
a priority group. The sum of the bandwidth allocated to all priority groups in a DCB
map must be 100% of the bandwidth on the link. You must allocate at least 1% of
the total port bandwidth to each priority group.

dcb-map stack-unit all stack-ports all
Apply the specified DCB map on all ports of the switch stack.

S4810
Syntax

dcb-map stack-unit all stack-ports all dcb-map-name
To remove the PFC and ETS settings in a DCB map from all stack units, use the no
dcb-map stack-unit all stack-ports all command.

Parameters

dcb-mapname

Defaults

None

Command
Modes

CONFIGURATION

Command
History

Version 9.3(0.0)

Data Center Bridging (DCB)

Enter the name of the DCB map.

Introduced on the S4810 and S6000 platforms.

571

Usage
Information

The dcb-map stack-unit all stack-ports all command overwrites any
previous DCB maps applied to stack ports.

show qos dcb-map
Display the DCB parameters configured in a specified DCB map.

S4810
Syntax
Parameters

Command
Modes

Command
History

Usage
Information

show qos dcb-map map-name
map-name

•

EXEC

•

EXEC Privilege

Displays the PFC and ETS parameters configured in the
specified map.

Version 9.3(0.0)

Introduced on the S4810 and S6000 platforms.

Version 9.3(0.0)

Introduced on the FC Flex IO module installed in the MXL
10/40GbE Switch.

Use the show qos dcb-map command to display the enhanced transmission
selection (ETS) and priority-based flow control (PFC) parameters used to configure
server-facing Ethernet ports. S5000 Ethernet ports are DCBx-enabled by default.
The following table describes the show qos dcb-map output shown in the
example below.

572

Field

Description

State

Complete: All mandatory DCB parameters are correctly
configured. In progress: The DCB map configuration is not
complete. Some mandatory parameters are not configured.

PFC Mode

PFC configuration in DCB map: On (enabled) or Off.

PG

Priority group configured in the DCB map.

TSA

Transmission scheduling algorithm used by the priority
group: Enhanced Transmission Selection (ETS).

BW

Percentage of bandwidth allocated to the priority group.

PFC

PFC setting for the priority group: On (enabled) or Off.

Priorities

802.1p priorities configured in the priority group.

Data Center Bridging (DCB)

Example

Dell# show qos dcb-map dcbmap2
State
:Complete
PfcMode:ON
-------------------PG:0 TSA:ETS BW:50 PFC:OFF
Priorities:0 1 2 4 5 6 7
PG:1 TSA:ETS
Priorities:3

BW:50

PFC:ON

Applying a DCB Map in a Switch Stack
Apply the same DCB map with PFC and ETS configuration to all stacked ports in a switch stack. You
cannot apply different DCB maps to different stacked switches. This functionality is supported on the
platform.
To remove all PFC and ETS settings applied to stacked ports from the DCB map and reset PFC and ETS to
their default settings, use the no dcb-map stack-unit all command.
Task

Command

Command Mode

Apply the specified DCB map on all
ports of the switch stack.

dcb-map stack-unit all
stack-ports all dcb-mapname

CONFIGURATION

dcb pfc-shared-buffer-size
Configure the maximum amount of shared buffer size for PFC packets in kilobytes. This utility is
supported on the S4810 platform.
You must configure the shared buffer size to be less than the total PFC buffer size. If the buffer size and
DCB buffer threshold settings are applied on one or more ports, a validaiton is performed to determine
whether following condition is satisfied: Shared-pfc-buffer-size <= (Total-pfc-buffer-size - Σpfc priority
<> buffer-size on each port, priority).
If the preceding condition is not satisfied by the shared PFC buffer size value, the configuration is not
saved and a system logging message is generated stating that the shared buffer size that you attempt to
specify cannot be configured because of the existing total buffer space on the system being lower than
the shared buffer size. You must either enter a smaller value for the shared buffer size or increase the
total buffer size appropriately by using the dcb pfc-total- buffer-size command.
Syntax
Parameters

Default

dcb pfc-shared—buffer—size KB
KB

Enter a number in the range of 0 to 7787.

The default is 1 KB for S6000 platforms.

Data Center Bridging (DCB)

573

Command
Modes
Command
History
Usage
Information

CONFIGURATION mode

Version 9.3(0.0)

Introduced on the S4810, S4820T, and S6000 platforms.

Configure the maximum shared buffer available for PFC traffic. You can choose to
increase or decrease the shared buffer that is currently allocated in the system by
default. You must configure the shared buffer size to be less than the total PFC
buffer size. If the buffer size and DCB buffer threshold settings are applied on one
or more ports, a validation is performed to determine whether following condition
is satisfied:
Shared-pfc-buffer-size <= (Total-pfc-buffer-size - Σpfc priority <> buffer-size on
each port, priority).
If the preceding condition is not satisfied by the shared PFC buffer size value, the
configuration is not saved and a system logging message is generated as follows:
Dell(conf)#dcb pfc-shared-buffer-size 2000
%ERROR: pfc shared buffer size configured cannot accommodate
existing buffer requirement in the system.

Example

Dell(conf)#dcb pfc-shared-buffer-size 5000

dcb-buffer-threshold
Configure the profile name for the DCB buffer threshold. This utility is supported on the S4810, S4820T,
and S6000 platforms.

S4810
Syntax
Parameters

dcb buffer—threshold profile-name
profile-name

Enter the name of the profile, which can be a string of up to
32 characters in length.

Default

None

Command
Modes

CONFIGURATION mode

Command
History
Usage
Information

574

Version 9.3(0.0)

Introduced on the S4810, S4820T, and S6000 platforms.

When you enter the profile name, you enter the DCB buffer threshold
configuration mode. You can specify the shared buffer threshold limit, the ingress
buffer size, buffer limit for pausing the acceptance of packets, and the buffer offset
limit for resuming the acceptance of received packets.

Data Center Bridging (DCB)

Example

S4810-YU-MR-Dell(conf)#dcb buffer—threshold test

priority
Configure the priority for the PFC threshold to be allocated to the buffer space parameters. This utility is
supported on the S4810 platforms.
Syntax
Parameters

priority value buffer-size size pause-threshold threshold-value
resume-offset threshold-value shared-threshold-weight size
priority

Specify the priority of the queue for which the buffer space
settings apply

value

Enter a number in the range of 0 to 7 to denote the priority
to be allocated to the dynamic buffer control mechanism

buffer-size

Ingress buffer size

size

Size of the ingress buffer in KB. Enter a number in the range
of 0 to 7787. The default is 45 KB.

pausethreshold

Buffer limit for pause frames to be sent

thresholdvalue

Buffer limit at which the port sends the pause to peer in KB.
Enter a number in the range of 0 to 7787. The default is 10
KB.

resume-offset

Buffer offset limit for resuming in KB

thresholdvalue

Buffer offset limit at which the port resumes the peer in KB.
Enter a number in the range of 1 to 7787. The default is 10
KB.

sharedthresholdweight

Buffer shared threshold weight

size

Weightage of the priorities on the shared buffer size in the
system. Enter a number in the range of 0 to 9. The default
shared threshold weight is 10.

Default

The default size of the ingress buffer is 45 KB. The default buffer limit at which the
port sends the pause to peer and recommences the sending of packets to the peer
is 10 KB. The default threshold weight of the shared buffer space is 10.

Command
Modes

DCB-BUFFER-THRESHOLD mode

Command
History

Version 9.3(0.0)

Data Center Bridging (DCB)

Introduced on the S4810, S4820T, and S6000 platforms.

575

Usage
Information

For each priority, you can specify the shared buffer threshold limit, the ingress
buffer size, buffer limit for pausing the acceptance of packets, and the buffer offset
limit for resuming the acceptance of received packets. When PFC detects
congestion on a queue for a specified priority, it sends a pause frame for the
802.1p priority traffic to the transmitting device.
You can use theprioritycommand to set up both the administrative and peerrelated PFC priorities. For example, you can configure the intended buffer
configuration for all eight priorities. If you configure the number of lossless queues
as 4 and if the administrator-configured priorities configured within the DCB input
policy is applied, then the configuration for those priorities are pre-designed.
However, if the peer-provided priorities are applied, although a DCB input policy is
present, the peer-provided priorities become effective for buffer configuration.
This method of configuration provides an easy and flexible technique to
accommodate both administratively-configured and peer-configured priorities.

Example

Dell(conf-dcb-buffer-thr)#priority 0 buffer-size 52 pausethreshold 16 resume-offset 10 shared-threshold-weight 7

qos-policy-buffer
Create a QoS policy buffer and enter the configuration mode to configure the no-drop queues, ingress
buffer size, buffer limit for pausing, and buffer offset limit for resuming. This utility is supported on the
S4810
Syntax

Parameters

576

qos-policy-buffer queue queue-num pause no-drop queue buffersize size pause-threshold threshold-value resume-offset
threshold-value shared-threshold-weight size
policy-name

Name of the QoS policy buffer that is applied to an interface
for this setting to be effective in conjunction with the DCB
input policy. You can specify the shared buffer threshold
limit, the ingress buffer size, buffer limit for pausing the
acceptance of packets, and the buffer offset limit for
resuming the acceptance of received packets. This method
of configuration enables different peer-provided and
administrative priorities to be set up because the intended
queue is directly configured instead of determining the
priority to queue mapping for local and remote parameters.

queue 0 to
queue 7

Specify the queue number to which the QoS policy buffer
parameters apply

pause

Pause frames to be sent at the specified buffer limit levels
and pause packet settings

no-drop

The packets for this queue must not be dropped

value

Enter a number in the range of 0 to 7 to denote the priority
to be allocated to the dynamic buffer control mechanism

Data Center Bridging (DCB)

buffer-size

Ingress buffer size

size

Size of the ingress buffer in KB. Enter a number in the range
of 0 to 7787. The default is 45 KB.

pausethreshold

Buffer limit for pause frames to be sent

thresholdvalue

Buffer limit at which the port sends the pause to peer in KB.
Enter a number in the range of 0 to 7787. The default is 10
KB.

resume-offset

Buffer offset limit for resuming in KB

thresholdvalue

Buffer offset limit at which the port resumes the peer in KB.
Enter a number in the range of 1 to 7787. The default is 10
KB.

sharedthresholdweight

Buffer shared threshold weight

size

Weightage of the priorities on the shared buffer size in the
system. Enter a number in the range of 0 to 9. The default
shared threshold weight is 10.

Default

The default size of the ingress buffer is 45 KB. The default buffer limit at which the
port sends the pause to peer and recommences the sending of packets to the peer
is 10 KB. The default threshold weight of the shared buffer space is 10.

Command
Modes

DCB-BUFFER-THRESHOLD mode

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810, S4820T, S6000, and MXL
platforms.

You must apply this buffer policy at the interface level for the attributes to be
applicable in conjunction with the DCB input policy.
For each QoS policy buffer, you can specify the shared buffer threshold limit, the
ingress buffer size, buffer limit for pausing the acceptance of packets, and the
buffer offset limit for resuming the acceptance of received packets. When PFC
detects congestion on a queue for a specified priority, it sends a pause frame for
the 802.1p priority traffic to the transmitting device.
You can use set up both the administrative and peer-related PFC priorities. For
example, you can configure the intended buffer configuration for all 8 priorities. If
you configure the number of lossless queues as 4 and if the administratorconfigured priorities configured within the DCB input policy is applied, then the
configuration for those priorities are pre-designed. However, if the peer-provided
priorities are applied, although a DCB input policy is present, the peer-provided
priorities become effective for buffer configuration. This method of configuration
provides an easy and flexible technique to accommodate both administrativelyconfigured and peer-configured priorities.

Data Center Bridging (DCB)

577

Example

S4810-YU-MR-Dell(conf)# qos-policy-buffer test
S4810-YU-MR-Dell (conf-qos-policy-buffer)#queue 0 pause no-drop
buffer-size 128000 pause-threshold 103360 resume-threshold
83520
S4810-YU-MR-Dell (conf-qos-policy-buffer)# queue 4 pause nodrop buffer-size 128000 pause-threshold 103360 resume-threshold
83520

dcb-policy buffer-threshold (Interface Configuration)
Assign the DCB policy to the DCB buffer threshold profile on interfaces. This setting takes precedence
over the global buffer-threshold setting. This utility is supported on the S4810 platform.
Syntax
Parameters

dcb-policy buffer-threshold profile-name
bufferthreshold

Configure the profile name for the DCB buffer threshold

profile-name

Enter the name of the profile, which can be a string of up to
32 characters in length.

Default

None

Command
Modes

INTERFACE mode

Command
History

Version 9.3(0.0)

Introduced on the S4810, S4820T, and S6000 platforms.

Usage
Information

You can configure up to a maximum of four lossless (PFC) queues. By configuring
four lossless queues, you can configure four different priorities and assign a
particular priority to each application that your network is used to process. For
example, you can assign a higher priority for time-sensitive applications and a
lower priority for other services, such as file transfers. You can configure the
amount of buffer space to be allocated for each priority and the pause or resume
thresholds for the buffer. This method of configuration enables you to effectively
manage and administer the behavior of lossless queues.

Example

Dell(conf-if-te-0/0)#dcb-policy buffer-threshold test

578

Data Center Bridging (DCB)

dcb-policy dcb-buffer-threshold (Global Configuration)
Assign the DCB policy to the DCB buffer threshold profile on stack ports that applies globally throughout
the system. This utility is supported on the S4810 and platforms. This command is not supported on the
S6000 platform because it does not contain stack ports.
Syntax
Parameters

dcb-policy buffer-threshold stack-unit all stack-ports all
profile-name
dcb-bufferthreshold

Configure the profile name for the DCB buffer threshold

profile-name

Enter the name of the profile, which can be a string of up to
32 characters in length.

stack-unit all

Enter the stack unit identification. Indicates the specific the
stack unit or units. Entering all shows the status for all stacks.

stack-port all

Enter the port number of a port in a switch stack.

Default

None

Command
Modes

CONFIGURATION mode

Command
History

Version 9.3(0.0)

Introduced on the S4810 and S4820T platforms.

Usage
Information

You can configure up to a maximum of four lossless (PFC) queues. By configuring
four lossless queues, you can configure four different priorities and assign a
particular priority to each application that your network is used to process. For
example, you can assign a higher priority for time-sensitive applications and a
lower priority for other services, such as file transfers. You can configure the
amount of buffer space to be allocated for each priority and the pause or resume
thresholds for the buffer. This method of configuration enables you to effectively
manage and administer the behavior of lossless queues.

Example

Dell(conf)# dcb-policy buffer-threshold stack-unit all stackports all test

show qos dcb-buffer-threshold
Displays the DCB buffer threshold assigned to a QoS policy. This command is supported on the platform.
Syntax
Parameters

show qos dcb buffer-threshold {name}
name

Data Center Bridging (DCB)

Enter the name of the profile, which can be a string of up to
32 characters in length.

579

Command
Modes

EXEC
EXEC Privilege

Command
History
Usage
Information

Example

Version 9.3(0.0)

Introduced on the S6000 platform.

The following table describes the output fields displayed for the show command:
Field

Description

Name

Name of the DCB buffer threshold
profile

Buffer threshold parameters

Buffer size allocated for the PFC
priority queue and the priority of the
queue

Dell#show qos dcb buffer-threshold
Name
:
test1
Buffer threshold parameters:
pfc priority 0 buffer-size 40
pfc priority 3 buffer-size 50

show hardware stack-unit buffer-stats-snapshot (With
Polling and History)
View the buffer statistics tracking resource information with polling details and historical snapshots. This
command is supported on the platform.
Syntax
Parameters

580

show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource X history Y
stack-unit
number

Unique ID of the stack unit to select a particular stack
member and then enter one of the following command
options to display a collection of data based on the option
entered. The range is 0 to 11.

buffer-statssnapshot unit
number

Display the historical snapshot of buffer statistical values

unit

Enter the keyword unit along with a port-pipe number,
then the keyword counters to display the counters on the
selected port-pipe. The range is 0 to 0.

resource X

Buffer and traffic manager resources usage, where X can be
one of the following:

Data Center Bridging (DCB)

history Y

Command
Modes

•

All - Ingress and Egress resources snapshots

•

Port {id |all} queue {all} - egress queue-level snapshot for
both unicast and multicast packets

•

Port {id |all} queue ucast {id | all} - egress queue-level
snapshot for unicast packets only

•

Port {id |all} queue mcast {id | all} - egress queue-level
snapshot for multicast packets only

•

Port {id |all} prio-group {id | all} - ingress priority-group
level snapshot

Historical snapshot details of buffer space statistics, where Y
can be one of the following:
•

Instance {all | id} - Displays the information for all
instances or the specified instance of the snapshot.

•

Summary - Displays the consolidated information
pertaining to the preceding three instances of the
snapshot values collected in history.

EXEC
EXEC Privilege

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S6000 platform.

When you enter the “instance all” option, “show hardware stack-unit 0 buffer-statssnapshot unit 0 resource X” Output for all available instances on the history
collection is displayed.
When you enter the “instance id" option, “show hardware stack-unit 0 buffer-statssnapshot unit 0 resource X” for specified instance alone is displayed.
When you enter the “summary” option, “show hardware stack-unit 0 buffer-statssnapshot unit 0 resource X” will be enhanced to display the total buffered cells,
shared cells, headroom cells for last 5 instances in the table format.
If information for specified instance id id is not available when you enter the show
command, which occurs if you issue the command before the time elapsed for the
snapshot to be captured for that instance ID, the following informational message
is displayed on the console:
%Info: Data for instance id id is not available.
For example, if you configured 5 as the maximum instances with linear periodicity
and a polling interval of 10 seconds, 1 as the multiplier, then 5 instances will be
polled at 10, 20, 30, 40, and 50 seconds incrementally. If you attempt to enter the
show command to display the fifth instance after 30 seconds of enabling polling,
the aforementioned information message is shown.

Data Center Bridging (DCB)

581

If specified instance ID is higher than the size of the maximum number of snapshot
instances configured, the following error message is displayed on the console:
%Error: Instance Id is not valid. Configured max snapshot
instances are 
If you configured the maximum number of instances as 5 and attempt to view the
buffer statistics tracking details for the instance ID of 6, the aforementioned error is
shown.
Example

Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 5 queue all history summary
Stack-unit 0 unit 0 port 5 (interface te 0/4)
-------------------------------------------------------------------------------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
Instance 1 Instance 2
Instance 3 Instance 4 Instance 5
10S
20S
30S
40S
50S
-------------------------------------------------------------------------------------------------------------UCAST
2
5
4
6
0
1
UCAST
3
2
0
1
5
0
UCAST
11
0
3
2
0
3
MCAST
4
0
0
0
0
3

If only two instances are available at the time the above show command is issued,
only two instances will be displayed in the summary output.
-------------------------------------------------------------------------------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
Instance 1 Instance 2
10S
20S
-------------------------------------------------------------------------------------------------------------UCAST
2
5
4
1
UCAST
3
2
0
UCAST
11
0
3
MCAST
4
0
0
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 5 prio-group all history summary
Stack-unit 0 unit 0 port 5 (interface te 0/4)
-------------------------------------------------------------------------------------------------------------PG#
Instance 1
Instance 2
Instance 3
Instance 4
Instance 5
Shared Hdrm Shared Hdrm Shared Hdrm Shared Hdrm

582

Data Center Bridging (DCB)

Shared Hdrm [in CELLS]
-------------------------------------------------------------------------------------------------------------6
9
2
0
0
1
0
4
1
7
1
7
0

0

0

0

0

0

0

0

0

1

In the following example, the Headroom Cells field indicates the amount of shared
buffer area that is allocated to store packets that are received after the pause frame
is received or a priority-based flow control pause frame is enabled. When an
inbound interface halts the sending of traffic, it must have the buffer space to save
all of the packets currently in the buffer, and also all of the packets that were
received before the device stops the sending of packets. Headroom space is used
for high-priority traffic that needs to be queued and preserved above the input
queue limit, such as keepalives and hello messages.
You can use the following sample command output to obtain a consolidated,
whole-scale set of statistical counters of buffer resource utilization in the system
and identify the ports that you want. All resources will be cleared after their values
are displayed.
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource all
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------PG#
SHARED CELLS
HEADROOM CELLS
--------------------------------------0
0
0
1
0
0
2
0
0
3
0
0
4
0
0
5
0
0
6
0
0
7
0
0
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------UCAST
0
0
UCAST
1
0
UCAST
2
0
UCAST
3
0
UCAST
4
0
UCAST
5
0
UCAST
6
0
UCAST
7
0
UCAST
8
0
UCAST
9
0
UCAST
10
0
UCAST
11
1
MCAST
0
0
MCAST
1
0
MCAST
2
0
MCAST
3
0

Data Center Bridging (DCB)

583

MCAST
MCAST
MCAST
MCAST
MCAST

4
5
6
7
8

0
0
0
0
0

Stack-unit: 0 unit: 0 port: 5 (interface Fo 0/4)
--------------------------------------PG#
SHARED CELLS
HEADROOM CELLS
--------------------------------------0
0
0
1
0
0
2
0
0
3
0
0
4
0
0
5
0
0
6
0
0
7
0
0
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------UCAST
0
0
UCAST
1
0
UCAST
2
0
UCAST
3
0
UCAST
4
0
UCAST
5
0
UCAST
6
0
UCAST
7
0
UCAST
8
0
UCAST
9
0
UCAST
10
0
UCAST
11
0
MCAST
0
0
MCAST
1
0
MCAST
2
0
MCAST
3
0
MCAST
4
0
MCAST
5
0
MCAST
6
0
MCAST
7
0
MCAST
8
0
<… snip …>
Stack-unit: 0 unit: 0 port: 104 (interface Te 0/124)
--------------------------------------PG#
SHARED CELLS
HEADROOM CELLS
--------------------------------------0
0
0
1
0
0
2
0
0
3
0
0
4
0
0
5
0
0
6
0
0
7
0
0
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------UCAST
0
0
UCAST
1
0
UCAST
2
0
UCAST
3
0

584

Data Center Bridging (DCB)

UCAST
UCAST
UCAST
UCAST
UCAST
UCAST
UCAST
UCAST
MCAST
MCAST
MCAST
MCAST
MCAST
MCAST
MCAST
MCAST
MCAST

4
5
6
7
8
9
10
11
0
1
2
3
4
5
6
7
8

0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0

To determine the port that is congested and monitor all queues (including
multicast and unicast queues] only on that port:
Dell#$show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 1 queue all
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------UCAST
0
0
UCAST
1
0
UCAST
2
0
UCAST
3
0
UCAST
4
0
UCAST
5
0
UCAST
6
0
UCAST
7
0
UCAST
8
0
UCAST
9
0
UCAST
10
0
UCAST
11
1
MCAST
0
0
MCAST
1
0
MCAST
2
0
MCAST
3
0
MCAST
4
0
MCAST
5
0
MCAST
6
0
MCAST
7
0
MCAST
8
0
Dell#
To examine the port that is congested and monitor all multicast queues on that
port:
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 1 queue mcast all
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------MCAST
0
0
MCAST
1
0
MCAST
2
0
MCAST
3
0

Data Center Bridging (DCB)

585

MCAST
MCAST
MCAST
MCAST
MCAST
Dell#

4
5
6
7
8

0
0
0
0
0

To determine the port that is congested and monitor all the unicast Queues on that
port:
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 1 queue ucast all
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------Q# TYPE
Q#
TOTAL BUFFERED CELLS
--------------------------------------UCAST
0
0
UCAST
1
0
UCAST
2
0
UCAST
3
0
UCAST
4
0
UCAST
5
0
UCAST
6
0
UCAST
7
0
UCAST
8
0
UCAST
9
0
UCAST
10
0
UCAST
11
0
Dell#
To identify the port that is congested and monitor all the priority groups on that
particular port:
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 1 prio all
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------PG#
SHARED CELLS
HEADROOM CELLS
--------------------------------------0
0
0
1
0
0
2
0
0
3
0
0
4
0
0
5
0
0
6
0
0
7
0
0
Dell#
To determine the specific priority group, unicast or multicast queue that is
congested and monitor that queue separately:
Dell#show hardware stack-unit 0 buffer-stats-snapshot unit 0
resource port 1 prio 6
Stack-unit: 0 unit: 0 port: 1 (interface Fo 0/0)
--------------------------------------PG#
SHARED CELLS
HEADROOM CELLS
--------------------------------------6
0
0

586

Data Center Bridging (DCB)

dcb pfc-total-buffer-size
Configure the total buffer size for PFC in kilobytes. This utility is supported on the S6000 platform.

Syntax
Parameters

dcb pfc-total—buffer—size KB
KB

Enter a number in the range of 0 to 7787.

Default

The default is 1 KB for S6000 platforms.

Command
Modes

CONFIGURATION mode

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S6000 platform.

Configure the maximum buffer available for PFC traffic. You can choose to
increase or decrease the buffer size that is currently allocated in the system by
default. However, if you modify the PFC buffer size to be lower than the previously
configured PFC buffer size, the system determines whether this reduction in size is
valid without disrupting the existing configuration. In such a scenario, you must
disable and re-enable DCB. For example, if you modify the total buffer size to be
4000 KB from the previous size of 5000 KB, an error message is displayed that this
reduction cannot be performed owing to existing system configuration because of
queues that are being currently processed.
The lossless queue limit per port is validated based on the dcb pfc-queues
command. PFC queue configuration identifies the maximum number of queues a
port can support. Although the queue limit per port is a baseline when dynamic
buffering is enabled, the limit per port for queues depends on the availability of the
buffer.

Example

Dell(conf)#dcb pfc-total-buffer-size 5000
Dell(conf)#dcb pfc-total-buffer-size 4000 %ERROR: Total pfc
buffer size configured cannot accommodate existing buffer
requirement in the system.

show running-config dcb-buffer-threshold
Displays the DCB buffer threshold details in the running configuration. This command is supported on the
platform.
Syntax

show running—config buffer-threshold

Command
Modes

EXEC
EXEC Privilege

Data Center Bridging (DCB)

587

Command
History
Usage
Information

Example

Version 9.3(0.0)

Introduced on the S6000 platform.

The following table describes the output fields displayed for the show runningconfig dcb-buffer-threshold command:
Field

Description

Profile name

Name of the DCB buffer threshold
profile

Priority

The priority of the queue for which the
buffer space settings apply

buffer-size

Ingress buffer size

pause-threshold-value

Buffer limit at which the port sends the
pause to peer in KB.

resume-threshold-value

Buffer offset limit at which the port
resumes the peer in KB.

Dell#show run buffer-threshold
!
dcb-buffer-threshold test1
pfc priority 0 buffer-size 40
pfc priority 3 buffer-size 50
!
dcb-buffer-threshold test2
pfc priority 0 buffer-size 80 pause-threshold 50
!
dcb-buffer-threshold test3
pfc priority 0 buffer-size 80 pause-threshold 60 resumethreshold 30
On interface on which PFC is enabled:
Show interface tengigabitethernet 0/0 pfc buffer-threshold
-------------------------------------------------------------------------------------------Queue#
Lossless
Buffer-size
Pause-threshold
Resumeoffset
Shared threshold
(KB)
(KB)
(KB)
weight
-------------------------------------------------------------------------------------------0
No
1
No
2
Yes
20
9
3
Yes
52
25
15
0
4
Yes
45
25
5
5
No
6
No
7
No
-

588

Data Center Bridging (DCB)

-

Denotes dynamic buffering is enabled in respective queues

On interface in which PFC is not enabled:
Dell#show interface tengigabitethernet 0/20 pfc bufferthreshold
The following table describes the output fields displayed for the show interface
pfc buffer-threshold command:
Field

Description

queue

Number of the queue

lossless

Whether the queue is a lossy or lossless
queue for which buffer threshold is
configured

buffer-size

Ingress buffer size

pause-threshold-value

Buffer limit at which the port sends the
pause to peer in KB.

resume-threshold-value

Buffer offset limit at which the port
resumes the peer in KB.

shared threshold weight

Weightage of the priorities on the
shared buffer size in the system.

dcb pfc-queues
Configure the number of PFC queues. This utility is supported on the S4810 and platforms.
Syntax
Parameters

dcb pfc-queues value
value

Enter the number of PFC queues in the range of 0 through 4.
The number of ports supported based on lossless queues
configured will depend on the buffer.

Default

The default number of PFC queues in the system is 2 for S4810 and 1 for S6000
platforms.

Command
Modes

CONFIGURATION mode

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810 and S6000 platforms.

You can configure up to a maximum of four lossless (PFC) queues. By configuring
four lossless queues, you can configure four different priorities and assign a
particular priority to each application that your network is used to process. For
example, you can assign a higher priority for time-sensitive applications and a
lower priority for other services, such as file transfers. You can configure the

Data Center Bridging (DCB)

589

amount of buffer space to be allocated for each priority and the pause or resume
thresholds for the buffer. This method of configuration enables you to effectively
manage and administer the behavior of lossless queues.
Example

Dell(conf)#dcb pfc-queues 4

dcb  enable
Enable priority flow control or enhanced transmission selection on interface.
This feature is supported on S4810 platform.
Syntax

dcb  enablepfc >enable
•

To disable ETS on interface, use “no dcb ets enable” command.

•

To disable PFC on interface, use “no dcb pfc enable” command.

Defaults

Enable

Command
Modes

INTERFACE

Command
History

Usage
Information

Limitations

Related
Commands

Version 9.3
(0.1)

Introduced on S6000, S4810, and S4820T.

PFC and ETS are enabled by default on the interfaces when DCB is globally enabled
(refer to dcb enable). In some network topology, you may want to disable PFC on
an interface and apply link level flow control; Similarly you may want to disable ETS
on an interface and apply QoS bandwidth configurations.

•

“dcb-map” CLI on interface is mutually exclusive to “no dcb ets enable” and
“no dcb pfc enable”.

•

“pfc priority” CLI is mutually exclusive to “no dcb pfc enable”
command.

•

Deprecated CLI “dcb-policy input” and “no dcb pfc enable” cannot
coexist at interface level.

•

Deprecated CLI “dcb-policy output” and “no dcb ets enable” cannot
coexist at interface level.

dcb-input—applies dcb-input profile on interface.
dcb-policy output—applies dcb-output profile on interface.
pfc priority—enable PFC on 802.1p priority traffic without using a dcb-map.
dcb-map—applies dcb-map profile on interface.

590

Data Center Bridging (DCB)

Debugging and Diagnostics

14

The basic debugging and diagnostic commands are supported by the Dell Networking Operating System
(OS) on the S4810 platform.
This chapter contains the following sections:
•

Offline Diagnostic Commands

•

Buffer Tuning Commands

•

Hardware Commands

Offline Diagnostic Commands
The offline diagnostics test suite is useful for isolating faults and debugging hardware. While tests are
running, Dell Networking OS results are saved as a text file (TestReport-SU-X.txt) in the flash directory.
This show file command is available only on master and standby.

Important Points to Remember
•

Offline diagnostics can only be run when the unit is offline.

•

You can only run offline diagnostics on a unit to which you are connected via the console. In other
words, you cannot run diagnostics on a unit to which you are connected to via a stacking link.

•

Diagnostic results are printed to the screen. Dell Networking OS does not write them to memory.

•

Diagnostics only test connectivity, not the entire data path.

diag stack-unit
Run offline diagnostics on a stack unit.

S4810
Syntax
Parameters

diag stack-unit number [alllevels | level0 | level1 | level2]
verbose testname
number

Enter the stack-unit id.
Range: S4810 - 0 to 11
Enter the stack-unit number. The range is from 0 to 7.

alllevels

Enter the keyword alllevels to run the complete set of
offline diagnostic tests.

level0

Enter the keyword level0 to run Level 0 diagnostics. Level
0 diagnostics check for the presence of various components

Debugging and Diagnostics

591

and perform essential path verifications. In addition, they
verify the identification registers of the components on the
board.
level1

Enter the keyword Level1 to run Level 1 diagnostics. Level 1
diagnostics is a smaller set of diagnostic tests with support
for automatic partitioning. They perform status/self test for
all the components on the board and test their registers for
appropriate values. In addition, they perform extensive tests
on memory devices (for example, SDRAM, flash, NVRAM,
EEPROM, and CPLD) wherever possible. There are no tests
on 10G links. At this level, stack ports are shut down
automatically.

level2

Enter the keyword level2 to run Level 2 diagnostics. Level 2
diagnostics are a full set of diagnostic tests with no support
for automatic partitioning. Level 2 diagnostics are used
primarily for on-board loopback tests and more extensive
component diagnostics. Various components on the board
are put into Loopback mode and test packets are transmitted
through those components. These diagnostics also perform
snake tests using VLAN configurations. To test 10G links,
physically remove the unit from the stack.

verbose

Enter the keyword verbose to run the diagnostic in Verbose
mode. Verbose mode gives more information in the output
than Standard mode.

testname

Enter the keyword level2 to run a specific test case.
Enclose the test case name in double quotes (“ “). For
example: diag stack-unit 1 level1 testname
“first”.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

592

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced the verbose option.

Debugging and Diagnostics

Version 7.7.1.0

Introduced on the S-Series.

offline stack-unit
Place a stack unit in the offline state.

S4810
Syntax
Parameters

offline stack-unit number
number

Enter the stack-unit id.
Range: S4810 - 0 to 11

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added a warning message to the off-line diagnostic.

Version 7.7.1.0

Introduced on the S-Series.

You cannot enter this command on a Master or Standby unit.
The system reboots when the off-line diagnostics complete. This reboot is an
automatic process. A warning message appears when the offline stack-unit
command is implemented.
Warning - Diagnostic execution will cause stack-unit to reboot
after completion of diags.
Proceed with Offline-Diags [confirm yes/no]:y

Related
Commands

show environment (S-Series) — views the S-Series system component status (for
example, temperature, voltage).

Debugging and Diagnostics

593

online stack-unit
Place a stack unit in the online state.

S4810
Syntax
Parameters

online stack-unit number
number

Enter the stack-unit number. The S4810 range is from 0 to
11.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

You cannot enter this command on a Master or Standby unit.
The system reboots when the off-line diagnostics complete. This reboot is an
automatic process. A warning message appears when the offline stack-unit
command is implemented.
Warning - Diagnostic execution will cause stack-unit to reboot
after completion of diags.
Proceed with Offline-Diags [confirm yes/no]:y

Related
Commands

594

show environment (S-Series) — views the S-Series system component status (for
example, temperature, voltage).

Debugging and Diagnostics

Buffer Tuning Commands
The following sections detail the buffer tuning commands.
WARNING: Altering the buffer allocations is a sensitive operation. Do not use any buffer tuning
commands without first contacting the Dell Networking Technical Assistance Center (TAC).

buffer-profile (Configuration)
Create a buffer profile that can be applied to an interface.

S4810
Syntax
Parameters

buffer-profile {fp | csf] profile-name {global {1Q | | 4q}
fp

Enter the keyword fp to create a buffer profile for the Field
Processor.

csf

Enter the keyword csf to create a buffer profile for the
Switch Fabric Processor.

profile-name

Create a name for the buffer profile,

global

Apply one of two pre-defined buffer profiles to all of the
port-pipes in the system.

1Q

Enter the keyword 1Q to choose a pre-defined buffer profile
for single queue (for example, non-QoS) applications.

4Q

Enter the keyword 4q to choose a pre-defined buffer profile
for four queue (for example, QoS) applications.

Defaults

Dynamic

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Changed the default value from global 4q to Dynamic.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 7.8.1.0

Added the global keyword.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Debugging and Diagnostics

595

Usage
Information

The buffer-profile global command fails if you have already applied a
custom buffer-profile on an interface. Similarly, when you configure bufferprofile global, you cannot not apply buffer-profile on any interface.
If the default buffer-profile is active, Dell Networking OS displays an error message
instructing you to remove the default configuration using the no bufferprofile global command.
Reload the system for the global buffer-profile to take effect.

Hardware Commands
These commands display information from a hardware sub-component or ASIC.

clear hardware stack-unit
Clear statistics from selected hardware components.

S4810
Syntax

Parameters

Defaults

596

clear hardware stack-unit id {counters | unit 0–0 counters |
cpu data-plane statistics | cpu i2c statistics | cpu party-bus
statistics | cpu sata-interface statistics | stack-port 0–127}

stack-unit id

Enter the keywords stack-unit then a number to select a
particular stack member and then enter one of the following
command options to clear a specific collection of data. The
range is 0 to 11 for the S4810.

counters

Enter the keyword counters to clear the counters on the
selected stack member.

unit number
counters

Enter the keyword unit along with a port-pipe number,
then the keyword counters to clear the counters on the
selected port-pipe. The range is 0 to 0 for the S4810.

cpu data-plane
statistics

Enter the keywords cpu data-plane statistics to clear
the data plane statistics.

cpu party-bus
statistics

Enter the keywords cpu party-bus statistics to clear
the management statistics.

stack-port

Enter the keywords stack-port then the port number of
the stacking port to clear the statistics of the particular
stacking port. The range is 0 to 63 for the S4810.

none

Debugging and Diagnostics

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

show hardware stack-unit — displays the data plane or management plane input
and output statistics of the designated component of the designated stack
member.

clear hardware system-flow
Clear system-flow statistics from selected hardware components.

S4810
Syntax
Parameters

clear hardware system-flow layer2 stack-unit number port-set 0–
0 counters
stack-unit
number

Enter the keywords stack-unit then a number to select a
particular stack member and then enter one of the following
command options to clear a specific collection of data. The
range is 0 to 11 for the S4810.

port-set 0–0
counters

Enter the keywords port-set along with a port-pipe
number, then the keyword counters to clear the system-flow
counters on the selected port-pipe. The range is 0 to 0 for
the S4810.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Debugging and Diagnostics

Introduced on the S6000.

597

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

show hardware stack-unit — displays the data plane or management plane input
and output statistics of the designated component of the designated stack
member.

hardware watchdog
To trigger a reboot and restart the system, set the watchdog timer.

S4810
Syntax

hardware watchdog stack-unit {<0-5> | all}

Defaults

Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

This command enables a hardware watchdog mechanism that automatically
reboots an Dell Networking OS switch/ router with a single unresponsive unit. This
behavior is a last-resort mechanism intended to prevent a manual power cycle.

show hardware layer2
Display Layer 2 ACL or eg data for the selected stack member and stack member port-pipe.

S4810
Syntax

598

show hardware layer2 {eg-acl | in-acl} stack-unit id port-set
0–0

Debugging and Diagnostics

Parameters

eg-acl | in-acl

Enter either the keyword eg-acl or the keyword in-acl to
select between ingress or egress ACL data.

stack-unit id

Enter the keyword stack-unit to select a stack ID. The
range is 0 to 11 for the S4810.

port-set 0–0

Enter the keywords port-set with a port-pipe number. .
The range is 0 for the S4810.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

The unit numbers given are internal port numbers.

show hardware layer3
Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe.

S4810
Syntax
Parameters

show hardware layer3 {acl | qos} stack-unit number port-set 0–0
acl | qos

Enter either the keyword acl or the keyword qos to select
between ACL or QoS data.

stack-unit
number

Enter the keywords stack-unit then a number to select a
stack ID. The range is 0 to 11 for the S4810.

port-set 0–0

Enter the keyword port-set with a port-pipe number. The
range is 0 to 0 for the S4810.

Defaults

none

Command
Modes

EXEC Privilege

Debugging and Diagnostics

599

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

show hardware stack-unit
Display the data plane or management plane input and output statistics of the designated component of
the designated stack member.

S4810
Syntax

Parameters

stack-unit  {cpu data-plane statistics | cpu management
statistics | [ drops [unit number [port 1-104] | user-port
0-127] | fpga register | party-bus statistics | stack-port |
ti-monitor | unit 0-1 {counters | details | port-stats [detail]
| register}}
stack-unit
stack-unit
{commandoption}

Enter the keywords stack-unit to select a particular stack
member and then enter one of the following command
options to display a collection of data based on the option
entered. The range is 0 to 11.

buffer

Enter the keyword buffer. To display the total buffer
statistics for the stack unit, enter the keyword totalbuffer. To display the buffer statistics for a specific unit,
enter the keyword unit and a unit number 0 .
To display the buffer statistics for a specific port, enter the
keyword port and a port number from 1 to 64.
To display total buffer information for the port, enter the
keywords buffer-info. To display a queue range, enter 0
to 14 for a specfic queue or all.

cpu data-plane
statistics

600

(Optional) Enter the keywords cpu data-plane
statistics then the keywords stack port and its
number, from 0 to 63 to display the data plane statistics,
which shows the High Gig (Higig) port raw input/output
counter statistics to which the stacking module is
connected.

Debugging and Diagnostics

cpu
management
statistics

Enter the keywords cpu management statistics to
display the counters of the management port.

cpu party-bus
statistics

Enter the keywords cpu party-bus statistics, to
display the Management plane input/output counter
statistics of the pseudo party bus interface.

drops [unit
unit-number
[port portnumber | no]]

Enter the keyword drops to display internal drops on the
selected stack member. Enter the drops keyword to display
internal drops on the selected stack member. Option unit 0
followed by port 1-104 (in S6000) is based on internal/
hardware port number” and “option user-port 0-127 is to see
the drop using user port numbering convention.

fpga register

Enter the keyword to display the register value of fpga
resgister details in S4810, Z9000 and S6000.

stack-port
port-number

Enter the keywords stack-port and a stacking port number
to select a stacking port for which to display statistics. The
range is 0 to 63.

unit unitnumber
{counters |
details | portstats [detail] |
register}

Enter the keyword unit then 0 to 3 and then enter one of
the following keywords to troubleshoot errors on the
selected port-pipe and to give status on why a port is not
coming up to register level: counters, details, portstats [detail], or register.

TI monitor

Enter the unit keyword to show information regarding the TI
register.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Modified the drops keyword range, unit keyword range and
added the buffer and cpu management statistics
options.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.5

Added i2c statistics and sata-interfaces statistics.

Debugging and Diagnostics

601

Version 8.3.11.4

Added user port information.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Example (DataPlane)

Dell#show hardware stack-unit 0 cpu data-plane statistics
Input Statistics:
1856 packets, 338262 bytes
141 64-byte pkts, 1248 over 64-byte pkts, 11 over 127-byte
pkts
222 over 255-byte pkts, 236 over 511-byte pkts, 0 over 1023byte pkts
919 Multicasts, 430 Broadcasts
0 runts, 0 giants, 0 throttles
0 CRC, 0 overrun, 0 discarded
Output Statistics:
325 packets, 27629 bytes, 0 underruns
9 64-byte pkts, 310 over 64-byte pkts, 1 over 127-byte pkts
1 over 255-byte pkts, 2 over 511-byte pkts, 2 over 1023-byte
pkts
0 Multicasts, 3 Broadcasts, 322 Unicasts
0 throttles, 0 discarded, 0 collisions
Rate info (interval 299 seconds):
Input 00.00 Mbits/sec
Output 00.00 Mbits/sec
Dell#

Example
(Party-Bus)

Dell#show hardware stack-unit 0 cpu party-bus statistics
Input Statistics:
8189 packets, 8076608 bytes
0 dropped, 0 errors
Output Statistics:
366 packets, 133100 bytes
0 errors
Dell#

Example
(Drops)

Dell#sh hard stack-unit 0 drops
UNIT No: 0
Total Ingress Drops: 0
Total IngMacDrops:
0
Total MmuDrops:
0
Total EgMacDrops:
0
Total Egress Drops: 0
Dell#

Example (Drops
Unit)

Dell#sh hard stack-unit 0 drops unit 0
PortNumberIngress Drops IngMac Drops Total Mmu Drops
1
0
0
0
2
0
0
0
3
0
0
0
4
0
0
0
EgMac Drops Egress Drops
0
0
0
0
0
0
0
0
Dell#

602

Debugging and Diagnostics

Example (Drops
Unit, Port)

Dell#show hardware stack-unit 0 drops unit 1 port 27
--- Ingress Drops --Ingress Drops
: 0
IBP CBP Full Drops
: 0
PortSTPnotFwd Drops
: 0
IPv4 L3 Discards
: 0
Policy Discards
: 0
Packets dropped by FP
: 0
(L2+L3) Drops
: 0
Port bitmap zero Drops
: 0
Rx VLAN Drops
: 0
--- Ingress MAC counters--Ingress FCSDrops
: 0
Ingress MTUExceeds
: 0
--- MMU Drops --HOL DROPS
: 0
TxPurge CellErr
: 0
Aged Drops
: 0
--- Egress MAC counters--Egress FCS Drops
: 0
--- Egress FORWARD PROCESSOR Drops --IPv4 L3UC Aged & Drops
: 0
TTL Threshold Drops
: 0
INVALID VLAN CNTR Drops
: 0
L2MC Drops
: 0
PKT Drops of ANY Conditions : 0
Hg MacUnderflow
: 0
TX Err PKT Counter
: 0 25
Dell#

Example (PortStats)

Dell#show hardware stack-unit 0 unit 0
ena/ speed/ link auto STP
loop
port link duplex scan neg? state pause
back
ge0 down SW
Yes Block
ge1 !ena SW
Yes Block
ge2 !ena SW
Yes Block
ge3 !ena SW
Yes Block
ge4 !ena SW
Yes Forward
ge5 !ena SW
Yes Forward
ge6 !ena SW
Yes Forward
ge7 !ena SW
Yes Forward
ge8 !ena SW
Yes Forward
ge9 !ena SW
Yes Forward
ge10 !ena SW
Yes Forward
ge11 !ena SW
Yes Forward
ge12 !ena SW
Yes Forward
ge13 !ena SW
Yes Forward
ge14 !ena SW
Yes Forward
ge15 !ena SW
Yes Forward
ge16 !ena SW
Yes Forward
ge17 !ena SW
Yes Forward
ge18 !ena SW
Yes Forward
ge19 !ena SW
Yes Forward
ge20 !ena SW
Yes Forward
ge21 !ena SW
Yes Forward
ge22 !ena SW
Yes Forward
ge23 !ena SW
Yes Forward
hg0 up 12G FD
SW
No
Forward
hg1 up 12G FD
SW
No
Forward
hg2 down 10G FD SW
No
Forward

Debugging and Diagnostics

port-stats
lrn inter max
discrd ops face frame
Untag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
Tag
None
None
None

FA
FA
FA
FA
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F
F

SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
SGMII
XGMII
XGMII
XGMII

1554
1554
1554
1554
1554
1554
1554
1554
1554
1554
9252
9252
1554
1554
1554
1554
1554
1554
1554
1554
1554
1554
1554
1554
16360
16360
16360

603

hg3 down 10G FD
0
Dell#
Example
(Register)

604

SW

No

Forward

None

F

XGMII 16360

Dell#show hardware stack-unit 0 unit 1 register
0x0068003c AGINGCTRMEMDEBUG.mmu0 = 0x00000000
0x0068003d AGINGEXPMEMDEBUG.mmu0 = 0x00000000
0x00680017 ASFCONFIG.mmu0 = 0x0000000e
0x0060004c ASFPORTSPEED.ge0 = 0x00000000
0x0060104c ASFPORTSPEED.ge1 = 0x00000000
0x0060204c ASFPORTSPEED.ge2 = 0x00000000
0x0060304c ASFPORTSPEED.ge3 = 0x00000000
0x0060404c ASFPORTSPEED.ge4 = 0x00000000
0x0060504c ASFPORTSPEED.ge5 = 0x00000000
0x0060604c ASFPORTSPEED.ge6 = 0x00000000
0x0060704c ASFPORTSPEED.ge7 = 0x00000000
0x0060804c ASFPORTSPEED.ge8 = 0x00000000
0x0060904c ASFPORTSPEED.ge9 = 0x00000000
0x0060a04c ASFPORTSPEED.ge10 = 0x00000000
0x0060b04c ASFPORTSPEED.ge11 = 0x00000000
0x0060c04c ASFPORTSPEED.ge12 = 0x00000000
0x0060d04c ASFPORTSPEED.ge13 = 0x00000000
0x0060e04c ASFPORTSPEED.ge14 = 0x00000000
0x0060f04c ASFPORTSPEED.ge15 = 0x00000000
0x0061004c ASFPORTSPEED.ge16 = 0x00000000
0x0061104c ASFPORTSPEED.ge17 = 0x00000000
0x0061204c ASFPORTSPEED.ge18 = 0x00000000
0x0061304c ASFPORTSPEED.ge19 = 0x00000000
0x0061404c ASFPORTSPEED.ge20 = 0x00000000
0x0061504c ASFPORTSPEED.ge21 = 0x00000000
0x0061604c ASFPORTSPEED.ge22 = 0x00000000
0x0061704c ASFPORTSPEED.ge23 = 0x00000005
0x0061804c ASFPORTSPEED.hg0 = 0x00000007
0x0061904c ASFPORTSPEED.hg1 = 0x00000007
0x0061a04c ASFPORTSPEED.hg2 = 0x00000000
0x0061b04c ASFPORTSPEED.hg3 = 0x00000000
0x0061c04c ASFPORTSPEED.cpu0 = 0x00000000
0x00780000 AUX_ARB_CONTROL.ipipe0 = 0x0000001c
0x0e700102 BCAST_BLOCK_MASK.ge0 = 0x00000000
0x0e701102 BCAST_BLOCK_MASK.ge1 = 0x00000000
0x0e702102 BCAST_BLOCK_MASK.ge2 = 0x00000000
0x0e703102 BCAST_BLOCK_MASK.ge3 = 0x00000000
0x0e704102 BCAST_BLOCK_MASK.ge4 = 0x00000000
0x0e705102 BCAST_BLOCK_MASK.ge5 = 0x00000000
0x0e706102 BCAST_BLOCK_MASK.ge6 = 0x00000000
0x0e707102 BCAST_BLOCK_MASK.ge7 = 0x00000000
0x0e708102 BCAST_BLOCK_MASK.ge8 = 0x00000000
0x0e709102 BCAST_BLOCK_MASK.ge9 = 0x00000000
0x0e70a102 BCAST_BLOCK_MASK.ge10 = 0x00000000
0x0e70b102 BCAST_BLOCK_MASK.ge11 = 0x00000000
0x0e70c102 BCAST_BLOCK_MASK.ge12 = 0x00000000
0x0e70d102 BCAST_BLOCK_MASK.ge13 = 0x00000000
0x0e70e102 BCAST_BLOCK_MASK.ge14 = 0x00000000
0x0e70f102 BCAST_BLOCK_MASK.ge15 = 0x00000000
0x0e710102 BCAST_BLOCK_MASK.ge16 = 0x00000000
0x0e711102 BCAST_BLOCK_MASK.ge17 = 0x00000000
0x0e712102 BCAST_BLOCK_MASK.ge18 = 0x00000000
0x0e713102 BCAST_BLOCK_MASK.ge19 = 0x00000000
0x0e714102 BCAST_BLOCK_MASK.ge20 = 0x00000000
0x0e715102 BCAST_BLOCK_MASK.ge21 = 0x00000000
0x0e716102 BCAST_BLOCK_MASK.ge22 = 0x00000000
0x0e717102 BCAST_BLOCK_MASK.ge23 = 0x00000000
0x0e718102 BCAST_BLOCK_MASK.hg0 = 0x00000000

Debugging and Diagnostics

0x0e719102 BCAST_BLOCK_MASK.hg1 = 0x00000000
0x0e71a102 BCAST_BLOCK_MASK.hg2 = 0x00000000
0x0e71b102 BCAST_BLOCK_MASK.hg3 = 0x00000000
0x0e71c102 BCAST_BLOCK_MASK.cpu0 = 0x00000000
0x0b700001 BCAST_STORM_CONTROL.ge0 = 0x00000000
0x0b701001 BCAST_STORM_CONTROL.ge1 = 0x00000000
0x0b702001 BCAST_STORM_CONTROL.ge2 = 0x00000000
0x0b703001 BCAST_STORM_CONTROL.ge3 = 0x00000000
0x0b704001 BCAST_STORM_CONTROL.ge4 = 0x00000000
0x0b705001 BCAST_STORM_CONTROL.ge5 = 0x00000000
0x0b706001 BCAST_STORM_CONTROL.ge6 = 0x00000000
0x0b707001 BCAST_STORM_CONTROL.ge7 = 0x00000000
0x0b708001 BCAST_STORM_CONTROL.ge8 = 0x00000000
0x0b709001 BCAST_STORM_CONTROL.ge9 = 0x00000000
0x0b70a001 BCAST_STORM_CONTROL.ge10 = 0x00000000
!------------------ output truncated ---------------!
Example
(Details)

e10#
show hardware stack-unit 0 unit 1 details
******************************************************
The total no of FP & CSF Devices in the Card is 2
The total no of FP Devices in the Card is 2
The total no of CSF Devices in the Card is 0
The number of ports in device 0 is - 24
The number of Hg ports in devices 0 is - 4
The CPU Port of the device is 28
The number of ports in device 1 is - 24
The number of Hg ports in devices 1 is - 4
The CPU Port of the device is 28
The staring unit no the SWF in the device is 0
******************************************************
The Current Link Status Is
Front End Link Status 0x000000000000400000000000
Front End Port Present Status 0x000000000000000000000000
Back Plane Link Status 0x00000000
******************************************************
Link Status of
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus
The linkStatus

Debugging and Diagnostics

all the ports in the Device - 1
of Front End Port 0 is FALSE
of Front End Port 1 is FALSE
of Front End Port 2 is FALSE
of Front End Port 3 is FALSE
of Front End Port 4 is FALSE
of Front End Port 5 is FALSE
of Front End Port 6 is FALSE
of Front End Port 7 is FALSE
of Front End Port 8 is FALSE
of Front End Port 9 is FALSE
of Front End Port 10 is FALSE
of Front End Port 11 is FALSE
of Front End Port 12 is FALSE
of Front End Port 13 is FALSE
of Front End Port 14 is FALSE
of Front End Port 15 is FALSE
of Front End Port 16 is FALSE
of Front End Port 17 is FALSE
of Front End Port 18 is FALSE
of Front End Port 19 is FALSE

605

The linkStatus of Front End Port 20 is FALSE
The linkStatus of Front End Port 21 is FALSE
The linkStatus of Front End Port 22 is FALSE
The linkStatus of Front End Port 23 is TRUE
The linkStatus of Hg Port 24 is TRUE
The linkStatus of Hg Port 25 is TRUE
The linkStatus of Hg Port 26 is FALSE
The linkStatus of Hg Port 27 is FALSE
!------------------ output truncated ---------------!
Example
(Total-Buffer)

Dell(conf)#show hardware stack-unit 0 buffer total-buffer

Example
(Buffer-Info)

Dell(conf)#sh hardware stack-unit 0 buffer unit 0 port 1
buffer-info
----- Buffer Stats for Unit 0 Port 1 ----Maximum Shared Limit for the Port: 30720
Default Packet Buffer allocate for the Port: 120

Dell#sh hardware stack-unit 0 buffer total-buffer
----- Buffer Details for Stack-Unit 0 ----Total Buffers allocated per Stack-Unit 46080

Used Packet Buffer for the Port: 0
Example
(Queue2/
Buffer-Info)

Dell(conf)#sh hardware stack-unit 0 buffer unit 0 port 1 queue
2 buffer-info

Related
Commands

clear hardware system-flow — clears the statistics from selected hardware
components.

----- Buffer Stats for Unit 0 Port 1 Queue 2 ----Maximum Shared Limit: 30720
Default Packet Buffer allocate for the Queue: 8
Used Packet Buffer: 0

show interfaces stack-unit — displays information on all interfaces on a specific SSeries stack member.
show processes cpu (S-Series) — displays the CPU usage information based on the
processes running in an S-Series.
show system (S-Series and Z-Series) — displays the current status of all the stack
members or a specific member.

show hardware system-flow
Display Layer 3 ACL or QoS data for the selected stack member and stack member port-pipe.

S4810
Syntax
Parameters

606

show hardware system-flow layer2 stack-unit id port-set number
[counters]
acl | qos

For the selected stack member and stack member port-pipe,
display which system flow entry the packet hits and what

Debugging and Diagnostics

queue the packet takes as it dumps the raw system flow
tables.
stack-unit id

Enter the keywords stack-unit to select a stack member
ID. The range is 0 to 11 for the S4810.

port-set
number
[counters]

Enter the keywords port-set with a port-pipe number.
The range is 0 to 0 for the S4810.
(OPTIONAL) Enter the keyword counters to display hit
counters for the selected ACL or QoS option.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Dell#show hardware system-flow layer2 stack-unit 0 port-set 0
counters
----------------------------------------------------------EntryId Description
#HITS
----------------------------------------------------------2048
STP BPDU Redirects
0
2047
LLDP BPDU Redirects
0
2045
LACP traffic Redirects
0
2044
GVRP traffic Redirects
0
2043
ARP Reply Redirects
0
2042
802.1x frames Redirects
0
2041
VRRP frames Redirects
0
2040
GRAT ARP
0
2039
DROP Cases
0
2038
OSPF1 STUB
0
2037
OSPF2 STUB
0
2036
VRRP STUB
0
2035
L2_DST_HIT+BC MAC+VLAN 4095
0
2034
L2_DST_HIT+BC MAC
0
2033
Catch all
0
384
OSPF[224.0.0.5] Packets
0
383
OSPF[224.0.0.6] Packets
0
382
VRRP Packets
0
380
BCast L2_DST_HIT on VLAN 4095 0
379
BCAST L2_DST_HIT Packets
0
4
Unknown L2MC Packets
0

Debugging and Diagnostics

607

3
2
1
25
Dell#
Example

L2DLF Packets
L2UCAST Packets
L2BCASTPackets

0
0
0

param1=0(0x00)},
action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)},
action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)},
action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)},
meter=NULL,
counter={idx=1, mode=0x01, entries=1}
############## FP Entry for redirecting LACP traffic to CPU
Port ############
EID 2045: gid=1,
slice=15, slice_idx=0x02, prio=0x7fd, flags=0x82, Installed
tcam: color_indep=0, higig=0, higig_mask=0,
KEY=0x00000000 00000000 00000000 0180c200 00020000 00000000
00000000
, FPF4=0x00
MASK=0x00000000 00000000 00000000 ffffffff ffff0000
00000000 00000000
,
0x00
action={act=Drop, param0=0(0x00), param1=0(0x00)},
action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)},
action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)},
action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)},
meter=NULL,
counter={idx=2, mode=0x01, entries=1}
################# FP Entry for redirecting GVRP traffic to RSM
###########
EID 2044: gid=1,
slice=15, slice_idx=0x03, prio=0x7fc, flags=0x82, Installed
tcam: color_indep=0, higig=0, higig_mask=0,
KEY=0x00000000 00000000 00000000 0180c200 00210000 00000000
00000000
, FPF4=0x00
MASK=0x00000000 00000000 00000000 ffffffff ffff0000 00000000
00000000
,
0x00
action={act=Drop, param0=0(0x00), param1=0(0x00)},
action={act=CosQCpuNew, param0=7(0x07), param1=0(0x00)},
action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)},
action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)},
meter=NULL,
counter={idx=3, mode=0x01, entries=1}
################# FP Entry for redirecting ARP Replies to RSM
#############
EID 2043: gid=1,
slice=15, slice_idx=0x04, prio=0x7fb, flags=0x82, Installed
tcam: color_indep=0, higig=0, higig_mask=0,
KEY=0x00000000 00000000 00000000 00000000 00000000 00000806
00001600
, FPF4=0x00
MASK=0x00000000 00000000 00000000 00000000 00000000 0000ffff
00001600
,
0x00
action={act=Drop, param0=0(0x00), param1=0(0x00)},
action={act=CosQCpuNew, param0=6(0x06), param1=0(0x00)},
action={act=CopyToCpu, param0=0(0x00), param1=0(0x00)},

608

Debugging and Diagnostics

action={act=UpdateCounter, param0=1(0x01), param1=0(0x00)},
!--------- output truncated -----------------!

Debugging and Diagnostics

609

Dynamic Host Configuration Protocol
(DHCP)

15

Dynamic host configuration protocol (DHCP) is an application layer protocol that dynamically assigns IP
addresses and other configuration parameters to network end-stations (hosts) based on the
configuration policies the network administrators determine.
The Dell Networking operating system supports the basic DHCP commands on the S4810 platform.
This chapter contains the following sections:
•

Commands to Configure the System to be a DHCP Server

•

Commands to Configure Secure DHCP

Commands to Configure the System to be a DHCP Server
To configure the system to be a DHCP server, use the following commands.

clear ip dhcp
Reset the DHCP counters.

S4810
Syntax
Parameters

clear ip dhcp [binding {address} | conflict | server
statistics]
binding

Enter the keyword binding to delete all entries in the
binding table.

address

Enter the IP address to clear the binding entry for a single IP
address.

conflicts

Enter the keyword conflicts to delete all of the log entries
created for IP address conflicts.

server statistics

Enter the keywords server statistics to clear all the
server counter information.

Defaults

none

Command
Modes

EXEC Privilege

610

Dynamic Host Configuration Protocol (DHCP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Entering  after the clear ip dhcp binding command clears all the IPs
from the binding table.

debug ip dhcp server
Display FTOS debugging messages for DHCP.

S4810
Syntax
Parameters

debug ip dhcp server [events | packets]
events

Enter the keyword events to display the DHCP state
changes.

packet

Enter the keyword packet to display packet transmission/
reception.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

611

default-router
Assign a default gateway to clients based on the address pool.

S4810
Syntax
Parameters

default-router address [address2...address8]
address

Enter a list of routers that may be the default gateway for
clients on the subnet. You may specify up to eight routers.
List them in order of preference.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

disable
Disable the DHCP server.

S4810
Syntax

disable
DHCP Server is disabled by default. To enable the system to be a DHCP server, use
the no disable command.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

612

Dynamic Host Configuration Protocol (DHCP)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

dns-server
Assign a DNS server to clients based on address pool.

S4810
Syntax
Parameters

dns-server address [address2...address8]
address

Enter a list of DNS servers that may service clients on the
subnet. You may list up to eight servers, in order of
preference.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

domain-name
Assign a domain to clients based on the address pool.

S4810
Syntax
Parameters

domain-name name
name

Dynamic Host Configuration Protocol (DHCP)

Give a name to the group of addresses in a pool.

613

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

excluded-address
Prevent the server from leasing an address or range of addresses in the pool.

S4810
Syntax
Parameters

excluded-address [address | low-address high-address]
address

Enter a single address to be excluded from the pool.

low-address

Enter the lowest address in a range of addresses to be
excluded from the pool.

high-address

Enter the highest address in a range of addresses to be
excluded from the pool.

Defaults

none

Command
Modes

DHCP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

614

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dynamic Host Configuration Protocol (DHCP)

Version 8.2.1.0

Introduced on the C-Series and S-Series.

hardware-address
For manual configurations, specify the client hardware address.

S4810
Syntax
Parameters

hardware-address address
address

Enter the hardware address of the client.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

host
For manual (rather than automatic) configurations, assign a host to a single-address pool.

S4810
Syntax
Parameters

host address
address/mask

Enter the host IP address and subnet mask.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Dynamic Host Configuration Protocol (DHCP)

615

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

lease
Specify a lease time for the addresses in a pool.

S4810
Syntax
Parameters

lease {days [hours] [minutes] | infinite}
days

Enter the number of days of the lease. The range is from 0 to
31.

hours

Enter the number of hours of the lease. The range is from 0
to 23.

minutes

Enter the number of minutes of the lease. The range is from
0 to 59.

infinite

Specify that the lease never expires.

Defaults

24 hours

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

616

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

netbios-name-server
Specify the NetBIOS Windows Internet Naming Service (WINS) name servers, in order of preference, that
are available to Microsoft Dynamic Host Configuration Protocol (DHCP) clients.

S4810
Syntax
Parameters

netbios-name-server address [address2...address8]
address

Enter the address of the NETBIOS name server. You may
enter up to eight, in order of preference.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

netbios-node-type
Specify the NetBIOS node type for a Microsoft DHCP client. Dell Networking recommends specifying
clients as hybrid.

S4810
Syntax
Parameters

Defaults

netbios-node-type type
type

Enter the NETBIOS node type:
•

Broadcast: Enter the keyword b-node.

•

Hybrid: Enter the keyword h-node.

•

Mixed: Enter the keyword m-node.

•

Peer-to-peer: Enter the keyword p-node.

Hybrid

Dynamic Host Configuration Protocol (DHCP)

617

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

network
Specify the range of addresses in an address pool.

S4810
Syntax
Parameters

network network /prefix-length
network/
prefix-length

Specify a range of addresses. Prefix-length range is from 17
to 31.

Defaults

none

Command
Modes

DHCP 

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

618

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

pool
Create an address pool.

S4810
Syntax
Parameters

pool name
name

Enter the address pool’s identifying name.

Defaults

none

Command
Modes

DHCP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

show ip dhcp binding
Display the DHCP binding table.

S4810
Syntax

show ip dhcp binding

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Dynamic Host Configuration Protocol (DHCP)

619

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

show ip dhcp configuration
Display the DHCP configuration.

S4810
Syntax
Parameters

show ip dhcp configuration [global | pool name]
pool name

Display the configuration for a DHCP pool.

global

Display the DHCP configuration for the entire system.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

show ip dhcp conflict
Display the address conflict log.

S4810
Syntax
Parameters

show ip dhcp conflict address
address

Defaults

none

Command
Modes

EXEC Privilege

620

Display a particular conflict log entry.

Dynamic Host Configuration Protocol (DHCP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

show ip dhcp server
Display the DHCP server statistics.

S4810
Syntax

show ip dhcp server statistics

Defaults

none

Command
Modes

EXEC Privilege

Command
History

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Commands to Configure Secure DHCP
DHCP, as defined by RFC 2131, provides no authentication or security mechanisms. Secure DHCP is a
suite of features that protects networks that use dynamic address allocation from spoofing and attacks.

arp inspection
Enable dynamic arp inspection (DAI) on a VLAN.

S4810
Syntax

arp inspection

Dynamic Host Configuration Protocol (DHCP)

621

Defaults

Disabled

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

arp inspection-trust — specifies a port as trusted so that ARP frames are not
validated against the binding table.

arp inspection-trust
Specify a port as trusted so that ARP frames are not validated against the binding table.

S4810
Syntax

arp inspection-trust

Defaults

Disabled

Command
Modes
Command
History

•
•

INTERFACE
INTERFACE PORT-CHANNEL

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

622

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

Related
Commands

arp inspection — enables dynamic ARP inspection on a VLAN.

clear ip dhcp snooping
Clear the DHCP binding table.

S4810
Syntax

clear ip dhcp snooping binding

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

show ip dhcp snooping — displays the contents of the DHCP binding table.

ip dhcp relay
Enable Option 82.

S4810
Syntax
Parameters

ip dhcp relay information-option [remote-id | trust-downstream]
remote-id

Configure the system to enable the remote-id string in
option-82.

trustdownstream

Configure the system to trust Option 82 when it is received
from the previous-hop router.

Defaults

Disabled

Command
Modes

CONFIGURATION

Dynamic Host Configuration Protocol (DHCP)

623

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping
Enable DHCP snooping globally.

S4810
Syntax

[no] ip dhcp snooping

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Introduced on the S4810 and S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

Version 8.2.1.0

Introduced on the C-Series and S-Series on Layer 2
interfaces.

Version 7.8.1.0

Introduced on the C-Series and S-Series on Layer 3
interfaces.

When enabled, no learning takes place until you enable snooping on a VLAN. After
disabling DHCP snooping, the binding table deletes and Option 82, IP Source
Guard, and Dynamic ARP Inspection are disabled.
Introduced in Dell Networking OS version 7.8.1.0, DHCP snooping was available for
Layer 3 only and dependent on DHCP Relay Agent (ip helper-address). Dell

624

Dynamic Host Configuration Protocol (DHCP)

Networking OS version 8.2.1.0 extends DHCP Snooping to Layer 2. You do not
have to enable relay agent to snoop on Layer 2 interfaces.

ip dhcp snooping binding
Create a static entry in the DHCP binding table.

S4810
Syntax
Parameters

[no] ip dhcp snooping binding mac address vlan-id vlan-id ip
ip-address interface type slot/port lease number
mac address

Enter the keyword mac then the MAC address of the host to
which the server is leasing the IP address.

vlan-id vlan-id

Enter the keywords vlan-id then the VLAN to which the
host belongs. The range is from 2 to 4094.

ip ip-address

Enter the keyword ip then the IP address that the server is
leasing.

interface type

Enter the keyword interface then the type of interface to
which the host is connected:
•

For an 10/100 Ethernet interface, enter the keyword
fastethernet.

•

For a Gigabit Ethernet interface, enter the keyword
gigabitethernet.

•

For a Ten-Gigabit Ethernet interface, enter the keyword
tengigabitethernet.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE.

slot/port

Enter the slot and port number of the interface.

lease time

Enter the keyword lease then the amount of time the IP
address are leased. The range is from 1 to 4294967295.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Dynamic Host Configuration Protocol (DHCP)

Introduced on the S6000.

625

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

show ip dhcp snooping — displays the contents of the DHCP binding table.

ip dhcp snooping database
Delay writing the binding table for a specified time.

S4810
Syntax
Parameters

ip dhcp snooping database write-delay minutes
minutes

The range is from 5 to 21600.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

626

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

ip dhcp snooping database renew
Renew the binding table.

S4810
Syntax

ip dhcp snooping database renew

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping trust
Configure an interface as trusted.

S4810
Syntax

[no] ip dhcp snooping trust

Defaults

Untrusted

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Dynamic Host Configuration Protocol (DHCP)

627

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp source-address-validation
Enable the IP Source Guard.

S4810
Syntax
Parameters

[no] ip dhcp source-address-validation [ipmac]
ipmac

Enable IP+MAC Source Address Validation.

Defaults

Disabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

628

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 8.2.1.0

Added the keyword ipmac.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Allocate at least one FP block to ipmacacl before you can enable IP+MAC Source
Address Validation.
1.

Use the cam-acl l2acl command from CONFIGURATION mode.

2.

Save the running-config to the startup-config.

3.

Reload the system.

Dynamic Host Configuration Protocol (DHCP)

ip dhcp relay information-option
Enable Option 82.

S4810
Syntax
Parameters

ip dhcp relay information-option [trust-downstream] [vpn]
trustdownstream

Configure the system to trust Option 82 when it is received
from the previous-hop router.

vpn

Enter the keyword vpn to add VPN/VRF related sub-option
to relay agent information Option 82.
NOTE: Adds the VPN/VRF related sub-options into the
relay agent information option(82). When DHCP
broadcasts are forwarded by the relay agent from clients
to DHCP server.

Default

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on C-Series and S-Series.

Dell(conf)#ip dhcp relay information-option vpn

Dynamic Host Configuration Protocol (DHCP)

629

ip dhcp snooping verify mac-address
Validate a DHCP packet’s source hardware address against the client hardware address field (CHADDR) in
the payload.

S4810
Syntax

[no] ip dhcp snooping verify mac-address

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.2.1.0

Introduced on the C-Series and S-Series.

ip helper-address
Configures the destination broadcast address or the host address for DHCP server requests.

S4810
Syntax

ip helper-address [vrf vrf-name] ip-address
To disable the destination broadcast address or the host address for DHCP server
requests, use the ip helper-address [vrf vrf-name] ip-address
command.

Parameters

vrf vrf-name

(Optional) Enter the keyword vrf and then the name of the
VRF through which the host address can be reached.

ip-address

Enter an IP address through which the host address can be
reached.

Default

Disabled.

Command
Modes

INTERFACE

630

Dynamic Host Configuration Protocol (DHCP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command on the interfaces where the DHCP clients are connected to
forward the packets from clients to DHCP server and vice-versa.

Example

Dell(conf-if-fo-0/124)#ip helper-address vrf jay 10.0.0.2

show ip dhcp snooping
Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard.

S4810
Syntax
Parameters

show ip dhcp snooping [binding | source-address-validation]
binding

Display the binding table.

sourceaddressvalidation

Display the interfaces configured with IP Source Guard.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Dynamic Host Configuration Protocol (DHCP)

631

Commands to Configure DNS
To configure the Domain Names Systems (DNS) on the system, use the following commands:

ip name-server
Configures the name server IP addresses for VRF. Using this command, you can configure up to a
maximum of six IP addresses per VRF.

S4810
Syntax

ip name-server [vrf vrf-name] ip-address [ip-address2] [ipaddress3] [ip-address4] [ip-address5] [ip-address6]
To undo the name server ip address configuration for VRF, use the no ip nameserver [vrf vrf-name] ip-address command.

Parameters

vrf vrf-name

(Optional) Enter the key word vrf and then the name of the
VRF to configure the name server IP addresses for that VRF.

ip-address [ipaddress2] [ipaddress3] [ipaddress4] [ipaddress5] [ipaddress6]

Enter the IP address of the name server in dotted decimal
format.
NOTE: Use the additional ip-address parameters (ipaddress2 to ip-address6) in a sequential order to
specify up to a maximum of six IP addresses per VRF.

Defaults

None

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to associate name server IP addresses to a specific VRF.

Example

•
Dell(conf)#ip name-server vrf jay 2.2.2.2
•
Dell(conf)#ip name-server vrf jay 2.2.2.2 3.3.3.3 4.4.4.4
5.5.5.5 6.6.6.6 7.7.7.7

632

Dynamic Host Configuration Protocol (DHCP)

ip domain-name
Configures the default domain corresponding to a specific VRF. This domain is appended to the in
complete DNS requests corresponding to the specified VRF.

S4810
Syntax

ip domain-name [vrf vrf-name] name
To undo the domain name configuration corresponding to a specific VRF, use the
no ip domain-name [vrf vrf-name] name command.

Parameters

vrf vrf-name

(Optional) Enter the key word vrf and then the name of the
VRF to configure the domain corresponding to that VRF.

name

Enter the name of the domain to be appended to the in
complete DNS requests corresponding to the specified VRF.

Defaults

None

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to configure a domain name corresponding to a VRF. This
domain is appended to the in complete DNS requests corresponding to the
specified VRF.

Example

Dell(conf)#ip domain-name vrf jay dell.com

ip domain-list
Adds a domain name to the DNS list. This domain name is appended to incomplete host names in DNS
requests corresponding to a specific VRF.

S4810
Syntax

ip domain-list [vrf vrf-name] name
To remove a domain name from DNS list, use the no ip domain-list [vrf
vrf-name] name command.

Parameters

vrf vrf-name

Dynamic Host Configuration Protocol (DHCP)

(Optional) Enter the key word vrf and then the name of the
VRF to add a domain name to the DNS list corresponding to
that VRF.

633

name

Enter the name of the domain to be appended to the DNS
list corresponding to the VRF.

Defaults

None

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to add domain names to the DNS lists corresponding to a
specific VRF. You can add up to a maximum of six domain names to the DNS list
corresponding to a VRF. This domain is used to complete the unqualified host
names.

Example

Dell(conf)#ip domain-list
Dell(conf)#ip domain-list

vrf jay dell.com
vrf jay force10.com

ip host
Configures a mapping between the host name server and the IP address for a specific VRF. This mapping
information is used by the name-to-IP address table to resolve host names.

S4810
Syntax

ip host [vrf vrf-name] name ip-address
To undo the host name server to IP address mapping for VRFs, use the no ip
host [vrf vrf-name] name ip-address command.

Parameters

vrf vrf-name

(Optional) Enter the key word vrf and then the name of the
VRF to configure the name server to IP address mapping for
that VRF.

name

Enter the name od the host to be associated with an IP
address.

ip-address

Enter the IP address of the name server in dotted decimal
format.

Defaults

None

Command
Modes

CONFIGURATION

634

Dynamic Host Configuration Protocol (DHCP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to create a mapping between a host name server and its IP
addresses for a specific VRF.

Example

Dell(conf)#ip host vrf jay dell 1.1.1.1

clear host
Removes one or all dynamically learned host table entries for a specific VRF.

S4810
Syntax
Parameters

clear host [vrf vrf-name] {* | host-name}
vrf vrf-name

(Optional) Enter the key word vrf and then the name of the
VRF to delete dynamically learned host table entries
corresponding to that VRF.

host-name

Enter the name of the host corresponding to which you
want to delete the dynamically learnt host table entries.

*

Enter * to delete all host table entries.

Defaults

None

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

Use this command to delete one or all dynamically learned host table entries
corresponding to a specific VRF.

Example

Dell#clear host vrf jay dell
Dell#clear host vrf jay *

Dynamic Host Configuration Protocol (DHCP)

635

16

Equal Cost Multi-Path (ECMP)
Equal cost multi-path (ECMP) is supported on the Dell Networking S4810 platform.

ecmp-group
Provides a mechanism to monitor traffic distribution on an ECMP link bundle. A system log is generated
when the standard deviation of traffic distribution on a member link exceeds a defined threshold.

S4810
Syntax

ecmp-group {ecmp-group-id interface interface | link-bundlemonitor}
To remove the selected interface, use the ecmp-group no interface
command.
To disable link bundle monitoring, use the ecmp-group no link-bundlemonitor command.

Parameters

ecmp-group ID

Enter the identifier number for the ECMP group. The range is
from 2 to 64.

interface

Enter the following keywords and slot/port to add the
interface to the ECMP group:
•

10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information

•

For a LAG interface, enter the keywords port-channel
then the slot/port information. The range is from 1 to 128.

Defaults

Off

Command
Modes

•

CONFIGURATION

•

CONFIGURATION ECMP-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

636

Equal Cost Multi-Path (ECMP)

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Using CONFIGURATION mode, create an ECMP group ID. You can then assign
interfaces to the ECMP group using CONFIGURATION ECMP-GROUP mode. You
can also enable on the port-channel configuration using the CONFIGURATION
ECMP-GROUP command mode.

hash-algorithm
Changes the hash algorithm used to distribute traffic flows across a Port Channel. The ECMP and LAG
options are supported on the Z-Series.

S4810
Syntax

hash-algorithm {algorithm-number | {ecmp {crc16 | crc16cc |
crc32MSB | crc32LSB | crc-upper | dest-ip | lsb | xor1 | xor2 |
xor4 | xor8 | xor16} [number] hg {crc16 | crc16cc | crc32MSB |
crc32LSB | xor1 | xor2 | xor4 | xor8 | xor16} stack-unit stackunit-number | port-set port-pipe | hg-seed seed-value stackunit | lag {checksum | crc | xor} [number] nh-ecmp {checksum |
crc | xor}[number] stack—unit number ip-sa-mask value ip-damask value | seed seed-value }
To return to the default hash algorithm, use the no hash-algorithm command.
To return to the default ECMP hash algorithm, use the no hash-algorithm
ecmp algorithm-value command.
To remove the hash algorithm on a particular stack-unit, use the no hashalgorithm linecard number command.

Parameters

algorithmnumber

Equal Cost Multi-Path (ECMP)

Enter the algorithm number. The range is from 0 to 47.

637

ecmp crc16 |
crc16cc |
crc32MSB |
crc32LSB | crcupper | dest-ip
| lsb | xor1 |
xor2 | xor4 |
xor8 | xor16

hg {crc16 |
crc16cc |
crc32MSB |
crc32LSB | xor1
| xor2 | xor4 |
xor8 | xor16}
stack-unit
stack-unitnumber | portset port-pipe

TeraScale and ExaScale Only: Enter the keyword ecmp then
one of the following options:
•

crc16: Use CRC16_BISYNC — 16 bit CRC16-bisync
polynomial (default)

•

crc16cc: Use CRC16_CCITT — 16 bit CRC16 using
CRC16-CCITT polynomial

•

crc32MSB: Use CRC32_UPPER — MSB 16 bits of
computed CRC32

•

crc32LSB: Use CRC32_LOWER — LSB 16 bits of
computed CRC32

•

crc-upper: Uses the upper 32 bits of the key for the
hash computation

•

dest-ip: Uses the destination IP for ECMP hashing

•

lsb: Returns the LSB of the key as the hash

•

xor1: Use CRC16_BISYNC_AND_XOR1 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor1

•

xor2: Use CRC16_BISYNC_AND_XOR2 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor2

•

xor4: Use CRC16_BISYNC_AND_XOR4 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor4

•

xor8: Use CRC16_BISYNC_AND_XOR8 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor8

•

xor16: Use CR16 — 16 bit XOR

Z-Series only: Enter the keyword hg then one of the
following options:
•

crc16: Use CRC16_BISYNC — 16 bit CRC16-bisync
polynomial (default)

•

crc16cc: Use CRC16_CCITT — 16 bit CRC16 using
CRC16-CCITT polynomial

•

crc32MSB: Use CRC32_UPPER — MSB 16 bits of
computed CRC32

•

crc32LSB: Use CRC32_LOWER — LSB 16 bits of
computed CRC32

•

xor1: Use CRC16_BISYNC_AND_XOR1 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor1

•

xor2: Use CRC16_BISYNC_AND_XOR2 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor2

•

xor4: Use CRC16_BISYNC_AND_XOR4 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor4

•

xor8: Use CRC16_BISYNC_AND_XOR8 — Upper 8 bits of
CRC16-BISYNC and lower 8 bits of xor8

•

xor16: Use CR16 — 16 bit XOR

Enter the keywords stack-unit, then a stack-unit number,
to specify a stack-unit. The range is from 0 to 7.

638

Equal Cost Multi-Path (ECMP)

Enter the keywords port-set port-pipe then the port
pipe number. The range is from 0 to 5.
hg-seed seedvalue stackunit

Z-Series only: Enter the keywords hg-seed then the hash
algorithm seed value. The range is from 0 to 2147483646.
Enter the keywords stack-unit then the stack unit number.
The range is from 0 to 7.
Enter the keywords port-set then the stack-unit port-pipe
number. The range is from 0 to 5.

lag hash
algorithm

Z-Series only: Enter the keywords hg-seed . The range is
from 0 to 47.

nh-ecmp
hashalgorithm
value

(OPTIONAL) Enter the keyword nh-ecmp followed by the
ECMP hash algorithm value.

stack-unit
number

(OPTIONAL) : Enter the keywordstack—unit followed by the
stack—unit slot number.

ip-sa-mask
value

(OPTIONAL) Enter the keyword ip-sa-mask followed by the
ECMP/LAG hash mask value. The range is from 0 to FF.

ip-da-mask
value

(OPTIONAL) Enter the keyword ip-da-mask followed by the
ECMP/LAG hash mask value. The range is from 0 to FF.

Defaults

IPSA and IPDA mask value is FF for the stack-unit.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Added the nh-ecmp option.

Equal Cost Multi-Path (ECMP)

639

Version 7.7.1.1
Usage
Information

Added the nh-ecmp option.

To ensure that CRC is not used for LAG, set the default hash-algorithm method on
ExaScale systems. For example,hash-algorithm ecmp xor lag checksum
nh-ecmp checksum.
The hash value calculated with the hash-algorithm command is unique to the
entire chassis. The hash algorithm command with the stack—unit option changes
the hash for a particular stack—unit by applying the mask specified in the IPSA and
IPDA fields.
The stack-unit option is applicable with the lag-hash-align microcode only. Any
other microcode returns an error message as follows:
•

Dell(conf)#hash-algorithm linecard 5 ip-sa-mask ff ip-damask ff

•

% Error: This command is not supported in the current
microcode configuration

In addition, the linecard number ip-sa-mask value ip-da-mask value
option has the following behavior to maintain bi-directionality:
•

When hashing is done on both IPSA and IPDA, the ip-sa-mask and ip-damask values must be equal. (Single Linecard).

•

When hashing is done only on IPSA or IPDA, Dell Networking OS maintains bidirectionality with masks set to XX 00 for stack-unit 1 and 00 XX for stack-unit 2
(ip-sa-mask and ip-da-mask). The mask value must be the same for both
stack-units when using multiple stack-units as ingress (where XX is any value
from 00 to FF for both stack-units). For example, assume that traffic is flowing
between linecard 1 and linecard 2:

•

hash-algorithm linecard 1 ip-sa-mask aa ip-da-mask 00

•

hash-algorithm linecard 2 ip-sa-mask 00 ip-da-mask aa

The different hash algorithms are based on the number of Port Channel members
and packet values. The default hash algorithm (number 0) yields the most balanced
results in various test scenarios, but if the default algorithm does not provide a
satisfactory distribution of traffic, use the hash-algorithm command to designate
another algorithm.
When a Port Channel member leaves or is added to the Port Channel, the hash
algorithm is recalculated to balance traffic across the members.

640

Equal Cost Multi-Path (ECMP)

hash-algorithm ecmp
Change the hash algorithm used to distribute traffic flows across an ECMP (equal-cost multipath routing)
group.

S4810
Term heading

Description heading

Syntax

hash-algorithm ecmp {crc-upper} | {dest-ip} | {lsb}
To return to the default hash algorithm, use the no hash-algorithm ecmp
command.

Parameters

Defaults

crc-upper

Uses the upper 32 bits of the key for the hash computation.
The default is crc-lower.

dest-ip

Uses the destination IP for ECMP hashing. The default is
enabled.

lsb

Returns the LSB of the key as the hash. The default is crclower.

•

crc-lower

•

dest-ip enabled

Command Modes

CONFIGURATION

Command History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Usage Information The hash value calculated with the hash-algorithm command is unique to the
entire chassis. The default ECMP hash configuration is crc-lower. This command
takes the lower 32 bits of the hash key to compute the egress port and is the “fallback” configuration if you have not configured anything else.
The different hash algorithms are based on the number of ECMP group members
and packet values. The default hash algorithm yields the most balanced results in

Equal Cost Multi-Path (ECMP)

641

Term heading

Description heading
various test scenarios, but if the default algorithm does not provide satisfactory
distribution of traffic, use this command to designate another algorithm.
When a member leaves or is added to the ECMP group, the hash algorithm is
recalculated to balance traffic across the members.

hash-algorithm seed
Select the seed value for the ECMP, LAG, and NH hashing algorithm.

S4810
Syntax
Parameters

hash-algorithm seed value [linecard slot] [port-set number]
seed value

Enter the keyword seed then the seed value. The range is
from 0 to 4095.

linecard slot

Enter the keyword linecard then the linecard slot number.

port-set
number

Enter the keyword port-set then the linecard port-pipe
number.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

642

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the E-Series.

Deterministic ECMP sorts ECMPs in order even though RTM provides them in a
random order. However, the hash algorithm uses as a seed the lower 12 bits of the
chassis MAC, which yields a different hash result for every chassis. This behavior
means that for a given flow, even though the prefixes are sorted, two unrelated
chassis select different hops.

Equal Cost Multi-Path (ECMP)

FTOS provides a CLI-based solution for modifying the hash seed to ensure that on
each configured system, the ECMP selection is same. When configured, the same
seed is set for ECMP, LAG, and NH, and is used for incoming traffic only.
NOTE: While the seed is stored separately on each port-pipe, the same seed is
used across all CAMs.
You cannot separate LAG and ECMP but you can use different algorithms
across the chassis with the same seed. If LAG member ports span multiple
port-pipes and line cards, set the seed to the same value on each port-pipe to
achieve deterministic behavior.
If the hash algorithm configuration is removed, the hash seed does not go to
the original factory default setting.

ip ecmp-group
Enable and specify the maximum number of ecmp that the L3 CAM hold for a route, By default, when
maximum paths are not configured, the CAM can hold a maximum of 16 ecmp per route.

S4810
Syntax

ip ecmp-group {maximum-paths | {number} {path-fallback}
To negate a command, use the no ip ecmp-group maximum-paths {number}
command.

Parameters

maximumpaths

Specify the maximum number of ECMP for a route. The
range is 2 to 64.

path-fallback

Use the keywords path-fallback to enable this feature. If
you enable the feature, re-enter this keyword to disable the
feature.

Defaults

16

Command
Modes

CONFIGURATION

Command
History

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

You must save the new ECMP settings to the startup-config (write-mem) then
reload the system for the new settings to take effect.

Equal Cost Multi-Path (ECMP)

643

Related
Commands

show ip cam stack-unit – Display content-addressable memory (CAM) entries for
an S-Series switch.

link-bundle-monitor enable
Provides a mechanism to enable monitoring of traffic distribution on an ECMP link bundle.

S4810
Syntax

link-bundle-monitor enable
To exit from ECMP group mode, use the exit command.

Command
Modes

Command
History

•

ECMP-GROUP

•

PORT-CHANNEL INTERFACE

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

link-bundle-distribution trigger-threshold
Provides a mechanism to set the threshold to trigger when traffic distribution begins being monitored on
an ECMP link bundle.

S4810
Syntax

link-bundle-distribution trigger-threshold [percent]
To exit from ecmp group mode, use the exit command.

Parameters

644

percent

Indicate the threshold value when traffic distribution starts
being monitored on an ECMP link bundle. The range is from
1 to 90%. The default is 60%.

Equal Cost Multi-Path (ECMP)

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

show config
Display the ECMP configuration.

S4810
Syntax

show config

Command
Modes

CONFIGURATION-ECMP-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

show running-config ecmp-group — displays interfaces, LAG, or LAG link bundles
being monitored for uneven traffic distribution.

Equal Cost Multi-Path (ECMP)

645

show link-bundle distribution
Display the link-bundle distribution for the interfaces in the bundle, type of bundle (LAG or ECMP), and
the most recently calculated interface utilization (either bytes per second rate or maximum rate) for each
interface.

S4810
Syntax

show link-bundle-distribution

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

646

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dell#show link-bundle-distribution
Link-bundle trigger threshold - 60
ECMP bundle - 5 Utilization[In Percent] - 0 Alarm State Inactive
Interface Line Protocol Utilization[In Percent]
Te 0/4
Up
5
Te 0/3
Up
30

Equal Cost Multi-Path (ECMP)

FIPS Cryptography

17

To configure federal information processing standards (FIPS) cryptography, use the following commands
on the S4810 platform.

fips mode enable
Enable the FIPS cryptography mode on the platform.

S4810
Syntax

[no] fips mode enable
To disable the FIPS cryptography mode, use the no fips mode enable
command.

Default

Disabled

Command
Modes

CONFIGURATION

Example

Dell (conf)#fips mode enable
WARNING: Enabling FIPS mode will close all SSH/Telnet
connection, restart those servers, and destroy all configured
host keys.
proceed (y/n) ? y
Dell (conf)#

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

FIPS Cryptography

Version 9.1(0.0)

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

647

show fips status
Displays the status of the FIPS mode.

S4810
Syntax

show fips status

Defaults

None

Command
Modes

EXEC

Example

Dell #show fips status
FIPS Mode: Enabled
Dell#

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1(0.0)

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

show ip ssh
Display information about established SSH sessions

S4810
Syntax

show ip ssh

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

EXEC Privilege

The following is a list of the Dell Networking OS version history for this command.
Version 9.1(0.0)

648

Introduced on the Z9000.

FIPS Cryptography

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on S4810.

Dell #show ip ssh
SSH server
SSH server version
Password Authentication
Hostbased Authentication
RSA Authentication
Vty
Encryption
1
3des-cbc
2
3des-cbc

: enabled.
: v1 and v2.
: enabled.
: disabled.
: disabled.
HMAC
Remote IP
hmac-md5 10.1.20.48
hmac-md5 10.1.20.48

With FIPS Mode enabled:
Dell #show ip ssh
SSH server
: enabled.
SSH server version
: v2.
Password Authentication
: enabled.
Hostbased Authentication : disabled.
RSA Authentication
: disabled.
Vty
Encryption
HMAC
Remote IP
0
aes128-cbc
hmac-sha1 10.11.8.13
1
aes128-cbc
hmac-sha1 10.1.20.48

ssh
Open an SSH connection specifying the hostname, username, port number, and version of the SSH
client.

S4810
Syntax
Parameters

ssh {hostname|ipv4 address|ipv6 address} [-c encryption
cipher|-l username|-m HMAC alogorithm|-p port-number|-v {1|2}]
hostname

(OPTIONAL) Enter the IP address or the hostname of the
remote device.

ipv4 address

(OPTIONAL) Enter the IP address in dotted decimal format
A.B.C.D.

ipv6
addressprefix

(OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format
then the prefix length in the /x format. The range is from /0
to /128
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

FIPS Cryptography

649

-c encryption
cipher

Enter the following encryption cipher to use. (For v2 clients
only.) Without the FIPS mode enabled:
•

3des-cbc: Force ssh to use 3des-cbc encryption cipher.

With the FIPS mode enabled:
•

aes128–cbc: Force ssh to use the aes128–cbc
encryption cipher.

•

aes256–cbc: Force ssh to use the aes256–cbc
encryption cipher.

-l username

(OPTIONAL) Enter the keyword —l then the user name used
in this SSH session. The default is the user name of the user
associated with the terminal.

-m HMAC
algorithm

Enter one of the following HMAC algorithms to use. (For v2
clients only.):
Without the FIPS mode enabled:
•

hmac-sha1: Force ssh to use the hmac-sha1 HMAC
algorithm.

•

hmac-shal-96: Force ssh to use the hmac-sha1–96
HMAC algorithm.

•

hmac-md5: Force ssh to use the hmac-md5 HMAC
algorithm.

•

hmac-md5–96: Force ssh to use the hmac-md5–96
HMAC algorithm.

With the FIPS mode enabled:

-p portnumber

•

hmac-sha1: Force ssh to use the hmac-sha1 HMAC
algorithm.

•

hmac-sha1–96: Force ssh to use the hmac-sha1–96
HMAC algorithm.

(OPTIONAL) Enter the keyword —p then the port number.
The range is 1 to 65536
The default is 22

-v {1|2}

(OPTIONAL) Enter the keyword —v then the SSH version 1 or
2.
The default: The version from the protocol negotiation.
NOTE: If the FIPS mode is enabled, this option does not
display in the output.

Defaults

650

As indicated above.

FIPS Cryptography

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Usage
Information

Version 9.1(0.0)

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

ip ssh server

Configure an SSH server.

show ip ssh
client-pubkeys

Display the client-public keys.

Dell Networking OS supports both inbound and outbound SSH sessions using IPv4
or IPv6 addressing. Inbound SSH supports accessing the system through the
management interface as well as through a physical Layer 3 interface.
NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.

Example

If FIPS mode is not enabled:
Dell#ssh 10.11.8.12 ?
-c
Encryption cipher to use (for v2 client
-l
User name option
-m
HMAC algorithm to use (for v2 clients only)
-p
SSH server port option (default 22)
-v
SSH protocol version

Dell#ssh 10.11.8.12 -c ?
3des-cbc
Force ssh to use 3des-cbc encryption cipher
Dell #ssh 10.11.8.12 -m ?
hmac-sha1
Force ssh to use hmac-sha1 HMAC algorithm
hmac-sha1-96
Force ssh to use hmac-sha1-96 HMAC algorithm
hmac-md5
Force ssh to use hmac-md5 HMAC algorithm
hmac-md5-96
Force ssh to use hmac-md5-96 HMAC algorithm
With FIPS mode enabled:
Dell#ssh 10.11.8.12 ?
-c
Encryption cipher to use (for v2 client
-l
User name option
-m
HMAC algorithm to use (for v2 clients only)
-p
SSH server port option (default 22)

Dell#ssh 10.11.8.12 -c ?
aes128-cbc
Force ssh to use aes128-cbc encryption cipher

FIPS Cryptography

651

aes256-cbc
Force ssh to use aes256-cbc encryption cipher
Dell#ssh 10.11.8.12 -m ?
hmac-sha1
Force ssh to use hmac-sha1 HMAC algorithm
hmac-sha1-96
Force ssh to use hmac-sha1-96 HMAC algorithm

652

FIPS Cryptography

18

FCoE Transit

To enable the FCoE Transit feature and configure FIP snooping, use the following Dell Networking
Operating System commands on the S4810 platform.
In a converged Ethernet network, a switch can operate as an intermediate Ethernet bridge to snoop on
FIP packets during the login process on Fibre Channel over Ethernet (FCoE) forwarders (FCFs). Acting as a
transit FIP snooping bridge, the switch uses dynamically created access control lists (ACLs) to permit only
authorized FCoE traffic to transmit between an FCoE end-device and an FCF.

clear fip-snooping database interface vlan
Clear FIP snooping information on a VLAN for a specified FCoE MAC address, ENode MAC address, or
FCF MAC address, and remove the corresponding ACLs FIP snooping generates.

S4810
Syntax

Parameters

clear fip-snooping database interface vlan {vlan-id} enode
{enode-mac-address} | fcf {fcf-mac-address} | session {sessionmac-address}
enode-macaddress

Enter the ENode MAC address to be cleared of FIP snooping
information.

fcf-macaddress

Enter the FCF MAC address to be cleared of FIP snooping
information.

session-macaddress

Enter the MAC address for the session to be cleared of FIP
snooping information.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

FCoE Transit

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

653

clear fip-snooping statistics
Clears the statistics on the FIP packets snooped on all VLANs, a specified VLAN, or a specified port
interface.

S4810
Syntax

Parameters

clear fip-snooping statistics [interface vlan vlan-id |
interface port-type port/slot | interface port-channel portchannel-number]
vlan-id

Enter the VLAN ID of the FIP packet statistics to be cleared.

port-type port/
slot

Enter the port-type and slot number of the FIP packet
statistics to be cleared.

portchannelnumbe
r

Enter the port channel number of the FIP packet statistics to
be cleared.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

debug fip snooping
Enable debugging on FIP snooping.

S4810
Syntax
Parameters

654

debug fip-snooping [all | acl | error | ifm | info | ipc | tx]
all

Enter the keyword all to enable debugging on all the
options.

acl

Enter the keyword acl for ACL-specific debugging.

error

Enter the keyword error for error-specific debugging.

FCoE Transit

ifm

Enter the keyword ifm for IFM-specific debugging.

info

Enter the keyword info for information-specific debugging.

ipc

Enter the keyword ipc for IPC-specific debugging.

tx

Enter the keyword tx for packet transmit-specific
debugging.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Added the tx parameter.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

debug fip snooping rx
Enable debugging for FIP snooping receive-specific packets.

S4810
Syntax

Parameters

FCoE Transit

debug fip-snooping rx packet-type [all | discovery | virtuallink-instantiation | virtual-link-maintenance| vlan-discovery]
[interface]
packet-type

Enter the keyword packet-type and then the option type
on which to enable debugging. The options are:
•

all — Enter the keyword all to enable debugging on all
the options.

•

discovery — Enter the keyword discovery to enable
debugging on FCF advertisements and ENode
solicitation.

•

virtual-link-instantiation — Enter the keywords
virtual-link-instantiation to enable debugging
on FLOGI, FDISC, and FLOGO packets.

•

virtual-link-maintenance — Enter the keywords
virtual-link-maintenance to enable debugging on
FIP clear virtual link frames and keepalives.

655

•

interface

vlan-discovery — Enter the keywords vlandiscovery to enable debugging on VLAN requests and
notifications.

Enter the following keywords and slot/port or number
information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the S4810 and S4820T. Added the receive
parameters packet-type and interfaces and their
options.

feature fip-snooping
Enable FCoE transit and FIP snooping on a switch.

S4810
Syntax

feature fip-snooping
To disable the FCoE transit feature, use the no feature fip-snooping
command.

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

656

FCoE Transit

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

fip-snooping enable
Enable FIP snooping on all VLANs or on a specified VLAN.

S4810
Syntax

fip-snooping enable
To disable the FIP snooping feature on all or a specified VLAN, use the no fipsnooping enable command.

Defaults
Command
Modes
Command
History

FIP snooping is disabled on all VLANs.
•
•

CONFIGURATION
VLAN INTERFACE

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The maximum number of FCFs supported per FIP snooping-enabled VLAN is four.
The maximum number of FIP snooping sessions supported per ENode server is 16.

fip-snooping fc-map
Configure the FC-MAP value FIP snooping uses on all VLANs.

S4810
Syntax

fip-snooping fc-map fc-map-value
To return the configured FM-MAP value to the default value, use the no fipsnooping fc-map command.

FCoE Transit

657

Parameters

fc-map-value

Enter the FC-MAP value FIP snooping uses. The range is
from 0EFC00 to 0EFCFF.

Defaults

0x0EFC00

Command
Modes

•

CONFIGURATION

•

VLAN INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

fip-snooping max-sessions-per-enodemac
Configure the maximum session limit per ENode MAC address.

S4810
Syntax

fip-snooping max—sessions—per—enode—mac max-sessions-value
To return the configured maximum sessions to the default value, use the no fipsnooping max—sessions—per—enode—mac command.

Parameters

max-sessionsvalue

Enter the maximum number of sessions allowed per ENode
MAC address. The range is from 1 to 64.

Defaults

32

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

658

Introduced on the S4810 and S4820T.

FCoE Transit

fip-snooping port-mode fcf
Configure the port for bridge-to-FCF links.

S4810
Syntax

fip-snooping port-mode fcf
To disable the bridge-to-FCF link on a port, use the no fip-snooping portmode fcf command.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The maximum number of FCFs supported per FIP snooping-enabled VLAN is four.

fip-snooping port-mode fcoe-trusted
Configure the port for bridge-to-bridge links.

MXL Switch, S4810
Syntax

fip-snooping port-mode fcoe-trusted
To remove the bridge-to-bridge link configuration from the port, use the no fipsnooping port-mode fcoe-trusted command.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

FCoE Transit

Introduced on the S4820T.

659

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

The maximum number of FCoE VLANs supported on the switch is eight.

show fip-snooping config
Display the FIP snooping status and configured FC-MAP values.

S4810
Syntax

show fip-snooping config

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Dell# show fip-snooping config
FIP Snooping Feature enabled Status: Enabled
FIP Snooping Global enabled Status: Enabled
Global FC-MAP Value: 0X0EFC00
FIP Snooping enabled VLANs
VLAN
Enabled
FC-MAP
----------------100
TRUE
0X0EFC00

660

FCoE Transit

show fip-snooping enode
Display information on the ENodes in FIP-snooped sessions, including the ENode interface and MAC
address, FCF MAC address, VLAN ID and FC-ID.

S4810
Syntax
Parameters

show fip-snooping enode [enode-mac-address]
enode-macaddress

Enter the MAC address of the ENodes to display.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

FCoE Transit

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The following describes the show fip-snooping enode command shown in the
following example.
Field

Description

ENode MAC

MAC address of the ENode.

ENode Interface

Slot/ port number of the interface connected to the ENode.

FCF MAC

MAC address of the FCF.

VLAN

VLAN ID number the session uses.

FC-ID

Fibre Channel session ID the FCF assigns.

Dell# show fip-snooping enode
Enode MAC
Enode Interface FCF MAC
VLAN FC-ID
--------- --------------- ------- ---- ----d4:ae:52:1b:e3:cd Te 0/11
54:7f:ee:37:34:40 100
62:00:11

661

show fip-snooping fcf
Display information on the FCFs in FIP-snooped sessions, including the FCF interface and MAC address,
FCF interface, VLAN ID, FC-MAP value, FKA advertisement period, and number of ENodes connected.

S4810
Syntax
Parameters

show fip-snooping fcf [fcf-mac-address]
fcf-macaddress

Enter the MAC address of the FCF to display.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

662

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The following describes the show fip-snooping fcf command shown in the
following example.
Field

Description

FCF MAC

MAC address of the FCF.

FCF Interface

Slot/port number of the interface to which the FCF is
connected.

VLAN

VLAN ID number the session uses.

FC-MAP

FC-Map value the FCF advertises.

ENode Interface

Slot/ number of the interface connected to the ENode.

FKA_ADV_PERIO
D

Time (in milliseconds) during which FIP keep-alive
advertisements transmit.

No of ENodes

Number of ENodes connected to the FCF.

FC-ID

Fibre Channel session ID the FCF assigns.

Dell# show fip-snooping fcf
FCF MAC
FCF Interface VLAN FC-MAP FKA_ADV_PERIOD No. of
Enodes
------- ------------- ---- ------ -------------- -------------

FCoE Transit

54:7f:ee:37:34:40 Po 22
2

100 0e:fc:00 4000

show fip-snooping statistics
Display statistics on the FIP packets snooped on all interfaces, including VLANs, physical ports, and port
channels.

S4810
Syntax

Parameters

show fip-snooping statistics [interface vlan vlan-id |
interface port-type port/slot | interface port-channel portchannel-number]
vlan-id

Enter the VLAN ID of the FIP packet statistics displays.

port-type port/
slot

Enter the port-type and slot number of the FIP packet
statistics displays.

port-channelnumber

Enter the port channel number of the FIP packet statistics
displays.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

FCoE Transit

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The following describes the show fip-snooping statistics command shown
in the following example.
Field

Description

Number of VLAN
Requests

Number of FIP-snoop VLAN request frames received on the
interface.

Number of VLAN
Notifications

Number of FIP-snoop VLAN notification frames received on
the interface.

663

664

Field

Description

Number of
Multicast
Discovery Solicits

Number of FIP-snoop multicast discovery solicit frames
received on the interface.

Number of
Unicast Discovery
Solicits

Number of FIP-snoop unicast discovery solicit frames
received on the interface.

Number of FLOGI

Number of FIP-snoop FLOGI request frames received on the
interface.

Number of FDISC

Number of FIP-snoop FDISC request frames received on the
interface.

Number of
FLOGO

Number of FIP-snoop FLOGO frames received on the
interface

Number of ENode
Keep Alives

Number of FIP-snoop ENode keep-alive frames received on
the interface.

Number of VN
Port Keep Alives

Number of FIP-snoop VN port (Virtual N-port) keep-alive
frames received on the interface

Number of
Multicast
Discovery
Advertisements

Number of FIP-snoop multicast discovery advertisements
received on the interface.

Number of
Unicast Discovery
Advertisements

Number of FIP-snoop unicast discovery advertisements
received on the interface.

Number of FLOGI
Accepts

Number of FIP FLOGI accept frames received on the
interface.

Number of FLOGI
Rejects

Number of FIP FLOGI reject frames received on the
interface.

Number of FDISC
Accepts

Number of FIP FDISC accept frames received on the
interface.

Number of FDISC
Rejects

Number of FIP FDISC reject frames received on the
interface.

Number of
FLOGO Accepts

Number of FIP FLOGO accept frames received on the
interface.

Number of
FLOGO Rejects

Number of FIP FLOGO reject frames received on the
interface.

Number of CVLs

Number of FIP clear virtual link frames received on the
interface.

Number of FCF
Discovery
Timeouts

Number of FCF discovery timeouts that occurred on the
interface.

FCoE Transit

Example

Field

Description

Number of VN
Port Session
Timeouts

Number of VN port session timeouts that occurred on the
interface.

Number of
Session failures
due to Hardware
Config

Number of session failures due to hardware configuration
that occurred on the interface.

Dell# show fip-snooping statistics interface vlan 100
Number of Vlan Requests
:0
Number of Vlan Notifications
:0
Number of Multicast Discovery Solicits :2
Number of Unicast Discovery Solicits
:0
Number of FLOGI
:2
Number of FDISC
:16
Number of FLOGO
:0
Number of Enode Keep Alive
:9021
Number of VN Port Keep Alive
:3349
Number of Multicast Discovery Advertisement :4437
Number of Unicast Discovery Advertisement :2
Number of FLOGI Accepts
:2
Number of FLOGI Rejects
:0
Number of FDISC Accepts
:16
Number of FDISC Rejects
:0
Number of FLOGO Accepts
:0
Number of FLOGO Rejects
:0
Number of CVL
:0
Number of FCF Discovery Timeouts
:0
Number of VN Port Session Timeouts
:0
Number of Session failures due to Hardware Config :0
Dell(conf)#
Dell# show fip-snooping statistics int tengigabitethernet 0/11
Number of Vlan Requests
:1
Number of Vlan Notifications
:0
Number of Multicast Discovery Solicits :1
Number of Unicast Discovery Solicits
:0
Number of FLOGI
:1
Number of FDISC
:16
Number of FLOGO
:0
Number of Enode Keep Alive
:4416
Number of VN Port Keep Alive
:3136
Number of Multicast Discovery Advertisement :0
Number of Unicast Discovery Advertisement :0
Number of FLOGI Accepts
:0
Number of FLOGI Rejects
:0
Number of FDISC Accepts
:0
Number of FDISC Rejects
:0
Number of FLOGO Accepts
:0
Number of FLOGO Rejects
:0
Number of CVL
:0
Number of FCF Discovery Timeouts
:0
Number of VN Port Session Timeouts
:0
Number of Session failures due to Hardware Config :0

Example (Port
Channel)

FCoE Transit

Dell# show fip-snooping statistics interface port-channel 22
Number of Vlan Requests
:0
Number of Vlan Notifications
:2

665

Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number
Number

of
of
of
of
of
of
of
of
of
of
of
of
of
of
of
of
of
of
of

Multicast Discovery Solicits :0
Unicast Discovery Solicits
:0
FLOGI
:0
FDISC
:0
FLOGO
:0
Enode Keep Alive
:0
VN Port Keep Alive
:0
Multicast Discovery Advertisement :4451
Unicast Discovery Advertisement :2
FLOGI Accepts
:2
FLOGI Rejects
:0
FDISC Accepts
:16
FDISC Rejects
:0
FLOGO Accepts
:0
FLOGO Rejects
:0
CVL
:0
FCF Discovery Timeouts
:0
VN Port Session Timeouts
:0
Session failures due to Hardware Config :0

show fip-snooping system
Display information on the status of FIP snooping on the switch (enabled or disabled), including the
number of FCoE VLANs, FCFs, ENodes, and currently active sessions.

S4810
Syntax

show fip-snooping system

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

666

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Dell# show fip-snooping system
Global Mode : Enabled
FCOE VLAN List (Operational) :
FCFs
:
Enodes
:
Sessions
:

1, 100
1
2
17

FCoE Transit

show fip-snooping vlan
Display information on the FCoE VLANs on which FIP snooping is enabled.

S4810
Syntax

show fip-snooping vlan

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Dell# show fip-snooping vlan
* = Default VLAN
VLAN FC-MAP
FCFs Enodes Sessions
---- ------ ---- ------ -------*1
100
0X0EFC00 1
2
17

show fips status
Display the FIPs status on the platform.

S4810
Syntax

show fips status

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

FCoE Transit

Introduced on the S4820T.

667

Version
8.3.12.0

668

Introduced on the S4810.

FCoE Transit

19

Force10 Resilient Ring Protocol (FRRP)
Force10 resilient ring protocol (FRRP) is supported on Dell Networking S4810 platform.

FRRP is a proprietary protocol for that offers fast convergence in a Layer 2 network without having to run
the spanning tree protocol (STP). The resilient ring protocol is an efficient protocol that transmits a highspeed token across a ring to verify the link status. All the intelligence is contained in the master node with
practically no intelligence required of the transit mode.

Important Points to Remember
•

FRRP is media- and speed-independent.

•

FRRP is a Dell Networking proprietary protocol that does not interoperate with any other vendor.

•

Spanning Tree must be disabled on both primary and secondary interfaces before Resilient Ring
protocol is enabled.

•

A VLAN configured as the control VLAN for a ring cannot be configured as a control or member VLAN
for any other ring.

•

Member VLANs across multiple rings are not supported in Master nodes.

•

If multiple rings share one or more member VLANs, they cannot share any links between them.

•

Each ring can have only one Master node; all others are Transit nodes.

clear frrp
Clear the FRRP statistics counters.

S4810
Syntax
Parameters

clear frrp [ring-id]
ring-id

(Optional) Enter the ring identification number. The range is
from 1 to 255.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Force10 Resilient Ring Protocol (FRRP)

669

Usage
Information

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced.

Executing this command without the optional ring-id command clears the
statistics counters on all the available rings. Dell Networking OS requires a
command line confirmation before the command executes. This command clears
the following counters:
•

hello Rx and Tx counters

•

Topology change Rx and Tx counters

•

The number of state change counters

Dell#clear frrp
Clear frrp statistics counter on all ring [confirm] yes
Dell#clear frrp 4
Clear frrp statistics counter for ring 4 [confirm] yes
Dell#

Related
Commands

show frrp — displays the Resilient Ring Protocol configuration.

debug frrp
Clear the FRRP statistics counters.

S4810
Syntax

debug frrp {event | packet | detail} [ring-id] [count number]
To disable debugging, use the no debug frrp {event | packet | detail}
{ring-id} [countnumber] command.

Parameters

670

event

Enter the keyword event to display debug information
related to ring protocol transitions.

packet

Enter the keyword packet to display brief debug
information related to control packets.

Force10 Resilient Ring Protocol (FRRP)

detail

Enter the keyword detail to display detailed debug
information related to the entire ring protocol packets.

ring-id

(Optional) Enter the ring identification number. The range is
from 1 to 255.

count number

Enter the keyword count then the number of debug
outputs. The range is from 1 to 65534.

Defaults

Disabled.

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

Because the resilient ring protocol can potentially transmit 20 packets per
interface, restrict debug information.

description
Enter an identifying description of the ring.

S4810
Syntax

description Word
To remove the ring description, use the no description [Word] command.

Parameters

Word

Enter a description of the ring. Maximum: 255 characters.

Defaults

none

Command
Modes

CONFIGURATION (conf-frrp)

Force10 Resilient Ring Protocol (FRRP)

671

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

disable
Disable the resilient ring protocol.

S4810
Syntax

disable
To enable the Resilient Ring Protocol, use the no disable command.

Defaults

Disabled

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

672

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

Force10 Resilient Ring Protocol (FRRP)

interface
Configure the primary, secondary, and control-vlan interfaces.

S4810
Syntax

interface {primary interface secondary interface control-vlan
vlan-id}
To return to the default, use the no interface {primary interface
secondary interface control-vlan vlan-id} command.

Parameters

primary
interface

secondary
interface

control-vlan
vlan-id

Enter the keyword primary to configure the primary
interface then one of the following interfaces and slot/port
information:
•

Fast Ethernet interface: enter the keyword
FastEthernet then the slot/port information.

•

Port Channel interface: enter the keyword portchannel then a number. The range is from 1 to 128.

•

10-Gigabit Ethernet interface: enter the keyword
TenGigabitEthernet then the slot/port information

•

40-Gigabit Ethernet interface: enter the keyword
fortyGigE then the slot/port information

Enter the keyword secondary to configure the secondary
interface then one of the following interfaces and slot/port
information:
•

Fast Ethernet interface: enter the keyword
FastEthernet then the slot/port information.

•

Port Channel interface: enter the keyword portchannel then a number. The range is from 1 to 128.

•

10-Gigabit Ethernet interface: enter the keyword
TenGigabitEthernet then the slot/port information

•

40-Gigabit Ethernet interface: enter the keyword
fortyGigE then the slot/port information

Enter the keyword control-vlan then the VLAN ID. The
range is from 1 to 4094.

Defaults

none

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Force10 Resilient Ring Protocol (FRRP)

673

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

Usage
Information

This command causes the Ring Manager to take ownership of the two ports after
IFM validates the configuration. Ownership is relinquished for a port only when the
interface does not play a part in any control VLAN, that is, the interface does not
belong to any ring.

Related
Commands

show frrp — displays the Resilient Ring Protocol configuration information.

member-vlan
Specify the member VLAN identification numbers.

S4810
Syntax

member-vlan {vlan-range}
To return to the default, use the no member-vlan [vlan-range] command.

Parameters

vlan-range

Enter the member VLANs using VLAN IDs (separated by
commas), a range of VLAN IDs (separated by a hyphen), a
single VLAN ID, or a combination. For example: VLAN IDs
(comma-separated): 3, 4, 6. Range (hyphen-separated):
5-10. Combination: 3, 4, 5-10, 8.

Defaults

none

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

674

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Force10 Resilient Ring Protocol (FRRP)

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

mode
Set the Master or Transit mode of the ring.

S4810
Syntax

mode {master | transit}
To reset the mode, use the no mode {master | transit} command.

Parameters

master

Enter the keyword master to set the Ring node to Master
mode.

transit

Enter the keywordtransit to set the Ring node to Transit
mode.

Defaults

Mode None

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

Force10 Resilient Ring Protocol (FRRP)

675

protocol frrp
Enter the Resilient Ring Protocol and designate a ring identification.

S4810
Syntax

protocol frrp {ring-id}
To exit the ring protocol, use the no protocol frrp {ring-id} command.

Parameters

ring-id

Enter the ring identification number. The range is from 1 to
255.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced

This command places you into the resilient ring protocol. After executing this
command, the command line prompt changes to conf-frrp.

show frrp
Display the resilient ring protocol configuration.

S4810
Syntax
Parameters

676

show frrp [ring-id [summary]] | [summary]
ring-id

Enter the ring identification number. The range is from 1 to
255

Force10 Resilient Ring Protocol (FRRP)

summary

(OPTIONAL) Enter the keyword summary to view just a
summarized version of the Ring configuration.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

Executing this command without the optional ring-id command clears the
statistics counters on all the available rings. Dell Networking OS requires a
command line confirmation before the command executes. This command clears
the following counters:
•

hello Rx and Tx counters

•

Topology change Rx and Tx counters

•

The number of state change counters

Executing this command without the optional ring-id command clears the
statistics counters on all the available rings. Dell Networking OS requires a
command line confirmation before the command is executed. This command
clears the following counters:
•

hello Rx and Tx counters

•

Topology change Rx and Tx counters

•

The number of state change counters

Example
(Summary)

Dell#show frrp summary

Example (1)

Dell#show frrp 1
Ring protocol 1 is in Master mode
Ring Protocol Interface:

Ring-ID State Mode Ctrl_Vlan Member_Vlans
---------------------------------------------2
UP
Master
2
11-20, 25,27-30
31
UP
Transit 31
40-41
50
Down Transit 50
32
Dell#

Force10 Resilient Ring Protocol (FRRP)

677

Primary : GigabitEthernet 0/16 State: Forwarding
Secondary: Port-channel 100 State: Blocking
Control Vlan: 1
Ring protocol Timers: Hello-Interval 50 msec Dead-Interval 150
msec
Ring Master's MAC Address is 00:01:e8:13:a3:19
Topology Change Statistics: Tx:110 Rx:45
Hello Statistics: Tx:13028 Rx:12348
Number of state Changes: 34
Member Vlans: 1000-1009
Dell#
Example (2
Summary)

Dell#show frrp 2 summary

Related
Commands

protocol frrp — enters the resilient ring protocol and designate a ring identification.

Dell#show frrp 2 summary
Ring-ID State Mode Ctrl_Vlan Member_Vlans
----------------------------------------------2
Up
Master 2
11-20, 25, 27-30
Dell#

timer
Set the hello interval or dead interval for the Ring control packets.

S4810
Syntax

timer {hello-interval milliseconds}| {dead-interval
milliseconds}
To remove the timer, use the no timer {hello-interval
[milliseconds]}| {dead-interval milliseconds} command.

Parameters

hello-interval
milliseconds

Enter the keyword hello-interval then the time, in
milliseconds, to set the hello interval of the control packets.
The milliseconds must be entered in increments of 50
millisecond; for example, 50, 100, 150, and so on. If an
invalid value is entered, an error message is generated. The
range is from 50 to 2000 ms. Default: 500 ms.

dead-interval
milliseconds

Enter the keyword dead-interval then the time, in
milliseconds, to set the dead interval of the control packets.
The range is from 50 to 6000 ms. Default: 1500 ms.
NOTE: The configured dead interval must be at least
three times the hello interval.

Defaults

678

•

500 ms for hello-interval milliseconds

•

1500 ms for dead-intervalmilliseconds

Force10 Resilient Ring Protocol (FRRP)

Command
Modes

CONFIGURATION (conf-frrp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced.

The hello interval command is the interval at which ring frames are generated
from the primary interface of the master node. The dead interval command is
the time that elapses before a time-out occurs.

Force10 Resilient Ring Protocol (FRRP)

679

GARP VLAN Registration (GVRP)

20

The Dell Networking operating system supports the basic GVRP commands on the S4810 platform.
The generic attribute registration protocol (GARP) mechanism allows the configuration of a GARP
participant to propagate through a network quickly. A GARP participant registers or de-registers its
attributes with other participants by making or withdrawing declarations of attributes. At the same time,
based on received declarations or withdrawals, GARP handles attributes of other participants.
GVRP enables a device to propagate local VLAN registration information to other participant devices and
dynamically update the VLAN registration information from other devices. The registration information
updates local databases regarding active VLAN members and through which port the VLANs can be
reached.
GVRP ensures that all participants on a bridged LAN maintain the same VLAN registration information.
The VLAN registration information propagated by GVRP includes both manually configured local static
entries and dynamic entries from other devices.
GVRP participants have the following components:
•

The GVRP application

•

GARP information propagation (GIP)

•

GARP information declaration (GID)

Important Points to Remember
•

GVRP is supported on Layer 2 ports only.

•

All VLAN ports added by GVRP are tagged.

•

GVRP is supported on untagged ports belonging to a default VLAN and tagged ports.

•

GVRP cannot be enabled on untagged ports belonging to a non-default VLAN unless native VLAN is
turned on.

•

GVRP requires end stations with dynamic access NICs.

•

Based on updates from GVRP-enabled devices, GVRP allows the system to dynamically create a portbased VLAN (unspecified) with a specific VLAN ID and a specific port.

•

On a port-by-port basis, GVRP allows the system to learn about GVRP updates to an existing portbased VLAN with that VLAN ID and IEEE 802.1Q tagging.

•

GVRP allows the system to send dynamic GVRP updates about your existing port-based VLAN.

•

GVRP updates are not sent to any blocked spanning tree protocol (STP) ports. GVRP operates only on
ports that are in the forwarding state.

•

GVRP operates only on ports that are in the STP forwarding state. If you enable GVRP, a port that
changes to the STP Forwarding state automatically begin to participate in GVRP. A port that changes
to an STP state other than forwarding no longer participates in GVRP.

680

GARP VLAN Registration (GVRP)

•

VLANs created dynamically with GVRP exist only as long as a GVRP-enabled device is sending
updates. If the devices no longer send updates, or GVRP is disabled, or the system is rebooted, all
dynamic VLANs are removed.

•

GVRP manages the active topology, not non-topological data such as VLAN protocols. If a local
bridge must classify and analyze packets by VLAN protocols, manually configure protocol-based
VLANs, and simply rely on GVRP for VLAN updates. But if the local bridge must know only how to
reach a given VLAN, then GVRP provides all necessary information.

•

The VLAN topologies that GVRP learns are treated differently from VLANs that are statically
configured. The GVRP dynamic updates are not saved in NVRAM, while static updates are saved in
NVRAM. When GVRP is disabled, the system deletes all VLAN interfaces that were learned through
GVRP and leaves unchanged all VLANs that were manually configured.

clear gvrp statistics
Clear GVRP statistics on an interface.

S4810
Syntax
Parameters

clear gvrp statistics interface interface
interface
interface

Enter the following keywords and slot/port or number
information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

GARP VLAN Registration (GVRP)

681

Related
Commands

show gvrp statistics — displays the GVRP statistics.

debug gvrp
Enable debugging on GVRP.

S4810
Syntax

debug gvrp {config | events | pdu}
To disable debugging, use the no debug gvrp {config | events | pdu}
command.

Parameters

config

Enter the keyword config to enable debugging on the
GVRP configuration.

event

Enter the keyword event to enable debugging on the JOIN/
LEAVE events.

pdu

Enter the keyword pdu then one of the following Interface
keywords and slot/port or number information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Disabled.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

682

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

GARP VLAN Registration (GVRP)

disable
Globally disable GVRP.

S4810
Syntax

disable
To re-enable GVRP, use the no disable command.

Defaults

Enabled.

Command
Modes

CONFIGURATION-GVRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

gvrp enable — enables GVRP on physical interfaces and LAGs.
protocol gvrp — access GVRP protocol.

garp timers
Set the intervals (in milliseconds) for sending GARP messages.

S4810
Syntax

garp timers {join | leave | leave-all}
To return to the previous setting, use the no garp timers {join | leave |
leave-all} command.

Parameters

join

GARP VLAN Registration (GVRP)

Enter the keyword join then the number of milliseconds to
configure the join time. The range is from 100 to 147483647
milliseconds. The default is 200 milliseconds.

683

NOTE: Designate the milliseconds in multiples of 100.
leave

Enter the keyword leave then the number of milliseconds
to configure the leave time. The range is from 100 to
2147483647 milliseconds. The default is 600 milliseconds.
NOTE: Designate the milliseconds in multiples of 100.

leave-all

Enter the keywords leave-all then the number of
milliseconds to configure the leave-all time. The range is
from 100 to 2147483647 milliseconds. The default is 1000
milliseconds.
NOTE: Designate the milliseconds in multiples of 100.

Defaults

As above.

Command
Modes

CONFIGURATION-GVRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

684

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

•

Join Timer — Join messages announce the willingness to register some
attributes with other participants. For reliability, each GARP application entity
sends a Join message twice and uses a join timer to set the sending interval.

•

Leave Timer — Leave announces the willingness to de-register with other
participants. Together with Join, Leave messages help GARP participants
complete attribute reregistration and de-registration. The leave timer starts after
receipt of a leave message sent for de-registering some attribute information. If
a Join message is not received before the Leave time expires, the GARP
application entity removes the attribute information as requested.

•

Leave All Timer — The Leave All timer starts when a GARP application entity
starts. When this timer expires, the entity sends a Leave-all message so that
other entities can reregister their attribute information. Then the Leave-all
time begins again.

show garp timers — displays the current GARP times.

GARP VLAN Registration (GVRP)

gvrp enable
Enable GVRP on physical interfaces and LAGs.

S4810
Syntax

gvrp enable
To disable GVRP on the interface, use the no gvrp enable command.

Defaults

Disabled.

Command
Modes

CONFIGURATION-INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

disable — globally disables GVRP.

gvrp registration
Configure the GVRP register type.

S4810
Syntax

gvrp registration {fixed | normal | forbidden}
To return to the default, use the gvrp register normal command.

Parameters

fixed

Enter the keyword fixed then the VLAN range in a commaseparated VLAN ID set.

normal

Enter the keyword normal then the VLAN range in a
comma-separated VLAN ID set. This setting is the default.

forbidden

Enter the keyword forbidden then the VLAN range in a
comma-separated VLAN ID set.

GARP VLAN Registration (GVRP)

685

Defaults

normal

Command
Modes

CONFIGURATION-INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

Fixed registration prevents an interface, configured using the command line, to
belong to a VLAN (static configuration) from being unconfigured when it receives a
Leave message. Therefore, Registration mode on that interface is fixed.
Normal registration is the default registration. The port’s membership in the VLAN
depends on GVRP. The interface becomes a member of a VLAN after learning
about the VLAN through GVRP. If the VLAN is removed from the port that sends
GVRP advertisements to this device, the port stops being a member of the VLAN.
To advertise or learn about VLANs through GVRP, use the forbidden command
when you do not want the interface.

Related
Commands

show gvrp — displays the GVRP configuration including the registration.

protocol gvrp
Access GVRP protocol — (config-gvrp)#.

S4810
Syntax

protocol gvrp

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

686

GARP VLAN Registration (GVRP)

The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

disable — globally disables GVRP.

show config
Display the global GVRP configuration.

S4810
Syntax

show config

Command
Modes

CONFIGURATION-GVRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

gvrp enable — enables GVRP on physical interfaces and LAGs.
protocol gvrp — accesses the GVRP protocol.

GARP VLAN Registration (GVRP)

687

show garp timers
Display the GARP timer settings for sending GARP messages.

S4810
Syntax

show garp timers

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

Example

Dell#show garp timers
GARP Timers
Value (milliseconds)
---------------------------------------Join Timer
200
Leave Timer
600
LeaveAll Timer
10000
Dell#

Related
Commands

garp timers — sets the intervals (in milliseconds) for sending GARP messages.

show gvrp
Display the GVRP configuration.

S4810
Syntax
Parameters

688

show gvrp [brief | interface]
brief

(OPTIONAL) Enter the keyword brief to display a brief
summary of the GVRP configuration.

GARP VLAN Registration (GVRP)

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

Usage
Information

If no ports are GVRP participants, the message output changes from GVRP
Participants running on  to GVRP Participants running
on no ports.

Example

R3#show gvrp brief
GVRP Feature is currently enabled.
Port
GVRP Status
Edge-Port
---------------------------------------------Gi 3/0
Disabled
No
Gi 3/1
Disabled
No
Gi 3/2
Enabled
No
Gi 3/3
Disabled
No
Gi 3/4
Disabled
No
Gi 3/5
Disabled
No
Gi 3/6
Disabled
No
Gi 3/7
Disabled
No
Gi 3/8
Disabled
No
R3#show gvrp brief

Related
Commands

show gvrp statistics — displays the GVRP statistics.

GARP VLAN Registration (GVRP)

689

show gvrp statistics
Display the GVRP configuration statistics.

S4810
Syntax
Parameters

show gvrp statistics {interface interface | summary}
interface
interface

summary

(OPTIONAL) Enter the keyword interface then one of the
interface keywords and slot/ port or number information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Enter the keyword summary to display just a summary of the
GVRP statistics.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on C-Series, E-Series, and S-Series

Invalid messages/attributes skipped can occur in the following cases:
•

The incoming GVRP PDU has an incorrect length.

•

"End of PDU" was reached before the complete attribute could be parsed.

•

The Attribute Type of the attribute that was being parsed was not the GVRP VID
Attribute Type (0x01).

•

The attribute that was being parsed had an invalid attribute length.

•

The attribute that was being parsed had an invalid GARP event.

•

The attribute that was being parsed had an invalid VLAN ID. The valid range is
from 1 to 4095.

A failed registration can occur for the following reasons:
•

690

Join requests were received on a port that was blocked from learning dynamic
VLANs (GVRP Blocking state).

GARP VLAN Registration (GVRP)

•
Example

An entry for a new GVRP VLAN could not be created in the GVRP database.

Dell#show gvrp statistics int gi 1/0
Join Empty Received: 0
Join In Received: 0
Empty Received: 0
LeaveIn Received: 0
Leave Empty Received: 0
Leave All Received: 40
Join Empty Transmitted: 156
Join In Transmitted: 0
Empty Transmitted: 0
Leave In Transmitted: 0
Leave Empty Transmitted: 0
Leave All Transmitted: 41
Invalid Messages/Attributes skipped: 0
Failed Registrations: 0
Dell#

Related
Commands

show gvrp — displays the GVRP configuration.

GARP VLAN Registration (GVRP)

691

High Availability (HA)

21

High availability (HA) in the Dell Networking operating software is configuration synchronization to
minimize recovery time in the event of a route processor module (RPM) failure. The feature is available on
the S4810 platform.
In general, a protocol is defined as “hitless” in the context of an RPM failure/failover and not failures of a
line card, SFM, or power module. A protocol is defined as hitless if an RPM failover has no impact on the
protocol.
You must specifically enable some protocols for HA. Some protocols are only hitless if related protocols
are also enabled as hitless (for example, the redundancy protocol command).

patch flash://RUNTIME_PATCH_DIR
Insert an In-Service Modular Hot-Fix patch.

S4810
Syntax

patch flash://RUNTIME_PATCH_DIR/patch-filename
To remove the patch, use the no patch flash://RUNTIME_PATCH_DIR/
patch-filename command.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

692

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.2.1.0

Introduced.

The patch filename includes the Dell Networking OS version, the platform, the
CPU, and the process it affects (FTOS-platform-cpu-processpatchversion.rtp). For example, a patch labeled “7.8.1.0-EH-rp2-l2mgr-1.rtp”

High Availability (HA)

identifies that this patch applies to Dell Networking OS version 7.8.1.0 — E-Series
platform, for RP2, addressing the layer 2 management process, and this patch is
the first version of this patch.
There is no need to reload or reboot the system when you insert the patch. The InService Modular patch replaces the existing process code. After installation is
complete, the system executes the patch code as though it was always there.
Related
Commands

show patch — displays the system patches loaded with the in-service modular
hot fix command.

process restartable
Enable a process to be restarted. Restartability is subject to a maximum restart limit. This limit is defined
as a configured number of restarts within a configured amount of time. On the software exception that
exceeds the limit, the system reloads (for systems with a single RPM) or fails over (for systems with dual
RPMs).

S4810
Syntax
Parameters

process restartable [process] [count number] [period minutes]
process

Configure a process to be restartable.

count number

Enter the number of times a process can restart within the
configured period. The range is from 1 to 3. The default is 3.

period minutes

Enter the amount of time within which the process can
restart count times. The range is from 1 to 60 minutes. The
default is 60 minutes.

Default

By default, a process can be restarted a maximum of three times within one hour.
On the exception that exceeds this limit, the system reloads or fails over.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

High Availability (HA)

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.0

Introduced on the E-Series.

693

Related
Commands

show processes restartable

redundancy auto-failover-limit
Specify an auto-failover limit for RPMs. When a non-recoverable fatal error is detected, an automatic
RPM failover occurs. This command does not affect user-initiated (manual) failovers.

S4810
Syntax

redundancy auto-failover-limit [count number [period minutes] |
period minutes]]
To disable the auto-failover limit control, use the no redundancy autofailover-limit command.

Parameters

Default

count number

Enter the number of times the RPMs can automatically
failover within the period defined in the period parameter.
The range is from 2 to 10. The default is 3.

period minutes

Enter a duration in which to allow a number of automatic
failovers (limited to the number defined in the count
parameter). The range is from 5 to 9000 minutes. The
default is 60 minutes.

•

Count: 3

•

Period: 60 minutes

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

694

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series

High Availability (HA)

Usage
Information

If you disable auto failover, enter the redundancy auto-failover-limit
(without any parameters) to set auto failover to the default parameters (Count 3,
Period 60 minutes). To view the redundancy status, use the show redundancy
command.
When you change one or both of the optional parameters, Dell Networking OS
checks that the interval between auto failovers is more than five (5) minutes. If the
interval is less, Dell Networking OS returns a configuration error message.

redundancy disable-auto-reboot
Prevent the system from auto-rebooting the failed module.

S4810
Syntax

redundancy disable-auto-reboot [rpm| card number | all]
To return to the default, use the no redundancy disable-auto-reboot rpm
command.

Parameters

rpm

Enter the keyword rpm to disable auto-reboot of the failed
RPM.

Default

Disabled (that is, the failed module is automatically rebooted).

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

High Availability (HA)

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the all option.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the E-Series

695

Usage
Information

Enabling this command keeps the failed RPM in the failed state. If there are two
RPMs in the system, enabling this command prevents the failed RPM from
becoming a working Standby RPM. If there is only one RPM in the system, the failed
RPM does not recover and affects the system.

redundancy force-failover
Force the secondary stack unit to become the primary stack unit. You can also use this command to
upgrade the software on one stack unit from the other when the other has been loaded with the
upgraded software.

S4810
Syntax
Parameters

redundancy force-failover {stack-unit unit-number}
stack-unit unitnumber

Enter the keyword stack-unit then the stack-unit ID
number. The range is from 0 to 7.

Default

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

696

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

To provide a hitless or warm upgrade, use this command. A hitless upgrade means
that a software upgrade does not require a reboot of the line cards. A warm
upgrade means that a software upgrade requires a reset of the line cards. A warm
upgrade is possible for major releases and lower, while a hitless upgrade can only
support patch releases.

High Availability (HA)

redundancy primary
Set an RPM as the primary RPM.

S4810
Syntax

redundancy primary [rpm0 | rpm1]
To delete a configuration, use the no redundancy primary command.

Parameters

rpm0

Enter the keyword rpm0 to set the RPM in slot R0 as the
primary RPM.

rpm1

Enter the keyword rpm1 to set the RPM in slot R1 as the
primary RPM.

Default

The RPM in slot R0 is the Primary RPM.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

redundancy protocol
Enable hitless protocols.

S4810
Syntax

redundancy protocol {lacp | xstp}
To disable a hitless protocol, use the no redundancy protocol {lacp |
xstp} command.

High Availability (HA)

697

Parameters

lacp

Enter the keyword lacp to make LACP hitless.

xstp

Enter the keyword xstp to invoke hitless STP (all STP modes
— MSTP, PVST+, RSTP, and STP).

Default

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the E-Series.

•

show lacp — displays the lacp configuration.

•

show redundancy — displays the current redundancy configuration.

redundancy reset-counter
Reset failover counter and timestamp information displayed in the show redundancy command.

S4810
Syntax

redundancy reset-counter

Default

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

698

High Availability (HA)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the E-Series.

redundancy sfm standby
Place the SFM in an offline state.

S4810
Syntax

redundancy sfm standby
To place the SFM in an online state, use the no redundancy sfm standby
command.

Default

The SFM is online by default.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

When you insert or remove a secondary RPM with logical SFM, the system must
add or remove the backplane links to the switch fabric trunk. To avoid traffic
disruption, use this command when you insert the secondary RPM. When you
execute this command, the logical SFM on the standby RPM is immediately taken
offline and the SFM state is set as “standby”.
NOTE: This command could affect traffic when taking the secondary SFM
offline.

Example

Dell#show sfm all
Switch Fabric State: up

High Availability (HA)

699

-- Switch Fabric Modules -Slot Status
-------------------------------------0
active
1
active
Dell#configure
Dell(conf)#redundancy sfm standby
Taking secondary SFM offline...
!
Dell(conf)#do show sfm all
Switch Fabric State: up
-- Switch Fabric Modules -Slot Status
----------------------------------------0
active
1
standby
Dell(conf)#no redundancy sfm
Taking secondary SFM online...
!
10Dell(conf)#do show sfm all
Switch Fabric State: up
-- Switch Fabric Modules -Slot Status
------------------------------------------0
active
1
active

redundancy synchronize
Manually synchronize data once between the Primary RPM and the Secondary RPM.

S4810
Syntax
Parameters

redundancy synchronize [full | persistent-data | system-data]
full

Enter the keyword full to synchronize all data.

persistent-data

Enter the keywords persistent-data to synchronize the
startup configuration between RPMs.

system-data

Enter the keywords system-data to synchronize persistentdata and the running configuration file, event log, SFM and
line card states.

Default

Not configured.

Command
Modes

EXEC Privilege

700

High Availability (HA)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

show patch
Display the system patches loaded with the In-Service Modular Hot Fix command.

S4810
Syntax

show patch

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

High Availability (HA)

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series.

patch flash://RUNTIME_PATCH_DIR — inserts an In-Service Modular Hot-Fix
patch.

701

show processes restartable
Display the processes and tasks configured for restartability.

S4810
Syntax
Parameters

show processes restartable [history]
history

Display the last time the restartable processes crashed.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.0

Introduced on the E-Series.

Example

Dell#sho processes restartable
-----------------------------------------------------Process name State How many times restarted Timestamp last
restarted
------------------------------------------------------radius
enabled
0 [-]
tacplus
enabled
0 [-]
------------------------------------------------------Dell#show processes restartable history
-------------------------------------------------------Process name Timestamp last crashed
--------------------------------------------------------radius
[5/23/2001 10:11:47]
----------------------------------------------------------

Related
Commands

process restartable

show redundancy
Display the current redundancy configuration.

S4810
Syntax

702

show redundancy

High Availability (HA)

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

High Availability (HA)

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

The following describes the show redundancy command shown in the following
example.
Field

Description

RPM Status

Displays the following information:
•

Slot number of the RPM.

•

Whether the RPM is Primary or Standby.

•

The state of the RPM: Active, Standby, Booting, or
Offline.

•

Whether the link to the second RPM is up or down.

PEER RPM Status

Displays the state of the second RPM, if present

RPM Redundancy
Configuration

Displays the following information:
•

which RPM is the preferred Primary on next boot (the
redundancy primary command)

•

the data sync method configured (the redundancy
synchronize command)

•

the failover type (you cannot change this type; it is
software-dependent). Hot Failover means that the
running configuration and routing table are applied on
secondary RPM. Fast Failover means that the running
configuration is not applied on the secondary RPM until
failover occurs, and the routing table on line cards is
cleared during failover.

•

the status of auto booting the RPM (the redundancy
disable-auto-reboot command)

703

Field

Description
•

the parameter for auto failover limit control (the
redundancy auto-failover-limit command)

•
RPM Failover
Record

Last Data Sync
Record

Displays the following information:
•

RPM failover counter (to reset the counter, use the
redundancy reset-counter command)

•

the time and date of the last RPM failover

•

the reason for the last RPM failover

Displays the data sync information and the timestamp for
the data sync:
•

Start-up Config is the contents of the startup-config file.

•

Line Card Config is the line card types configured and
interfaces on those line cards.

•

Runtime Event Log is the contents of the Event log.

•

Running Config is the current running-config.

This field only appears when you enter the command from
the Primary RPM.

Example

Dell#show redundancy
-- RPM Status ------------------------------------------------RPM Slot ID:
1
RPM Redundancy Role: Primary
RPM State:
Active
RPM SW Version:
7.5.1.0
Link to Peer:
Up
-- PEER RPM Status ------------------------------------------------RPM State:
Standby
RPM SW Version: 7.5.1.0
-- RPM Redundancy Configuration ------------------------------------------------Primary RPM:
rpm0
Auto Data Sync:
Full
Failover Type:
Hot Failover
Auto reboot RPM:
Enabled
Auto failover limit: 3 times in 60 minutes
-- RPM Failover Record ------------------------------------------------Failover Count:
1
Last failover timestamp: Jul 13 2007 21:25:32
Last failover Reason:
User request
-- Last Data Block Sync Record: -------------------------------------------------

704

High Availability (HA)

Line Card Config:
Start-up Config:
SFM Config State:
Runtime Event Log:
Running Config:
Dell#

High Availability (HA)

succeeded
succeeded
succeeded
succeeded
succeeded

Jul
Jul
Jul
Jul
Jul

13
13
13
13
13

2007
2007
2007
2007
2007

21:28:53
21:28:53
21:28:53
21:28:53
21:28:53

705

22

ICMP Message Types

This chapter lists and describes the possible ICMP message type resulting from a ping. The first three
columns list the possible symbol or type/code. For example, you would receive a ! or 03 as an echo reply
from your ping.
ICMP Messages and Their Definitions.\
Symbol

Type

Code

.
0

U

3

4
5

706

Query

Error

Timeout (no reply)

!

C

Description

3

echo reply

.

destination unreachable:
0

network unreachable

.

1

host unreachable

.

2

protocol unreachable

.

3

port unreachable

.

4

fragmentation needed but don’t
fragment bit set

.

5

source route failed

.

6

destination network unknown

.

7

destination host unknown

.

8

source host isolated (obsolete)

.

9

destination network
administratively prohibited

.

10

destination host administratively
prohibited

.

11

network unreachable for TOS

.

12

host unreachable for TOS

.

13

communication administratively
prohibited by filtering

.

14

host precedence violation

.

15

precedence cutoff in effect

.

0

source quench

.

redirect

.

ICMP Message Types

Symbol

&

Type

Code

Description

0

redirect for network

.

1

redirect for host

.

2

redirect for type-of-service and
network

.

3

redirect for type-of-service and
host

.

8

0

echo request

.

9

0

router advertisement

.

10

0

router solicitation

.

11

Query

Error

time exceeded:
0

time-to-live equals 0 during transit

.

1

time-to-live equals 0 during
reassembly

.

12

parameter problem:
1

IP header bad (catchall error)

.

2

required option missing

.

13

0

timestamp request

.

14

0

timestamp reply

.

15

0

information request (obsolete)

.

16

0

information reply (obsolete)

.

17

0

address mask request

.

18

0

address mask reply

.

ICMP Message Types

707

Internet Group Management Protocol
(IGMP)

23

The IGMP commands are supported by the Dell Networking operating software on the S4810 platform.
This chapter contains the following sections:
•

IGMP Commands

•

IGMP Snooping Commands

IGMP Commands
Dell Networking OS supports IGMPv1/v2/v3 and is compliant with RFC-3376.

Important Points to Remember
•

Dell Networking OS supports protocol-independent multicast-sparse (PIM-SM) and protocolindependent source-specific multicast (PIM-SSM) include and exclude modes.

•

IGMPv2 is the default version of IGMP on interfaces. You can configure IGMPv3 on interfaces. It is
backward compatible with IGMPv2.

•

On the S-Series, the maximum number of interfaces supported 31.

•

There is no hard limit on the maximum number of groups supported.

•

IGMPv3 router interoperability with IGMPv2 and IGMPv1 routers on the same subnet is not supported.

•

An administrative command (ip igmp version) is added to manually set the IGMP version.

•

All commands previously used for IGMPv2 are compatible with IGMPv3.

clear ip igmp groups
Clear entries from the group cache table.

S4810
Syntax
Parameters

clear ip igmp groups [group-address | interface]
group-address

(OPTIONAL) Enter the IP multicast group address in dotted
decimal format.

interface
interface

Enter the following keywords and slot/port or number
information:
•

708

For a Port-Channel interface, enter the keyword portchannel then the slot/port information. The range is
from 1 to 128.

Internet Group Management Protocol (IGMP)

•

For a VLAN interface, enter the keyword vlan then the
slot/port information. The range is from 1 to 4094.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tengigabitethernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

IGMP commands accept only non-VLAN interfaces — specifying VLAN does not
yield results.

debug ip igmp
Enable debugging of IGMP packets.

S4810
Syntax

Parameters

debug ip igmp [group address | interface]
•

To disable IGMP debugging, use the no debug ip igmp [group address
| interface] command.

•

To disable all debugging, use the undebug all command.

group-address

Internet Group Management Protocol (IGMP)

(OPTIONAL) Enter the IP multicast group address in dotted
decimal format.

709

interface
interface

Enter the following keywords and slot/port or number
information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is from 1 to 128.

•

For a 10–Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Disabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

IGMP commands accept only non-VLAN interfaces — specifying VLAN does not
yield results. This command displays packets for IGMP and IGMP snooping.

ip igmp access-group
To specify access control for packets, use this feature.

S4810
Syntax

ip igmp access-group access-list
To remove the feature, use the no ip igmp access-group access-list
command.

710

Internet Group Management Protocol (IGMP)

Parameters

access-list

Enter the name of the extended ACL (16 characters
maximum).

Defaults

Not configured

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.6.1.0

Introduced on E-Series.

The access list accepted is an extended ACL. To block IGMP reports from hosts, on
a per-interface basis based on the group address and source address that you
specify in the access list, use this feature.

ip igmp group-join-limit
To limit the number of IGMP groups that can be joined in a second, use this feature.

S4810
Syntax
Parameters

ip igmp group-join-limit number
number

Enter the number of IGMP groups permitted to join in a
second. The range is from 1 to 10000.

Defaults

none

Command
Modes

CONFIGURATION (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Internet Group Management Protocol (IGMP)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

711

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.6.1.0

Introduced on the E-Series.

ip igmp immediate-leave
Enable IGMP immediate leave.

S4810
Syntax

ip igmp immediate-leave [group-list prefix-list-name]
To disable ip igmp immediate leave, use the no ip igmp immediateleave command.

Parameters

group-list
prefix-listname

Enter the keywords group-list then a string up to 16
characters long of the prefix-list-name.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

E-Series legacy
command

712

Internet Group Management Protocol (IGMP)

Usage
Information

Querier normally sends some group-specific queries when a leave message is
received for a group prior to deleting a group from the membership database.
There may be situations when you require immediate deletion of a group from the
membership database. This command provides a way to achieve the immediate
deletion. In addition, this command provides a way to enable immediate-leave
processing for specified groups.

ip igmp last-member-query-interval
Change the last member query interval, which is the Max Response Time inserted into Group-Specific
Queries sent in response to Leave Group messages. This interval is also the interval between GroupSpecific Query messages.

S4810
Syntax

ip igmp last-member-query-interval milliseconds
To return to the default value, use the no ip igmp last-member-queryinterval command.

Parameters

milliseconds

Enter the number of milliseconds as the interval. The range is
from 100 to 65535. The default is 1000 milliseconds.

Defaults

1000 milliseconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

E-Series legacy
command

Internet Group Management Protocol (IGMP)

713

ip igmp querier-timeout
Change the interval that must pass before a multicast router decides that there is no longer another
multicast router that should be the querier.
Syntax

ip igmp querier-timeout seconds
To return to the default value, use the no ip igmp querier-timeout
command.

Parameters

seconds

Enter the number of seconds the router must wait to
become the new querier. The range is from 60 to 300. The
default is 125 seconds.

Defaults

125 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the S-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

Version 7.5.1.0

Introduced on the C-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

E-Series legacy
command.

714

Internet Group Management Protocol (IGMP)

ip igmp query-interval
Change the transmission frequency of IGMP general queries the Querier sends.

S4810
Syntax

ip igmp query-interval seconds
To return to the default values, use the no ip igmp query-interval
command.

Parameters

seconds

Enter the number of seconds between queries sent out. The
range is from 1 to 18000. The default is 60 seconds.

Defaults

60 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the S-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

Version 7.5.1.0

Introduced on the C-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

E-Series legacy
command.

Internet Group Management Protocol (IGMP)

715

ip igmp query-max-resp-time
Set the maximum query response time advertised in general queries.

S4810
Syntax

ip igmp query-max-resp-time seconds
To return to the default values, use the no ip igmp query-max-resp-time
command.

Parameters

seconds

Enter the number of seconds for the maximum response
time. The range is from 1 to 25. The default is 10 seconds.

Defaults

10 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the S-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

Version 7.5.1.0

Introduced on the C-Series in Interface VLAN mode only to
enable the system to act as an IGMP Proxy Querier.

E-Series legacy
command.

716

Internet Group Management Protocol (IGMP)

ip igmp ssm-map
To translate (*,G) memberships to (S,G) memberships, use a statically configured list.

S4810
Syntax

ip igmp ssm-map std-access-list source-address
Undo this configuration, that is, remove SSM map (S,G) states and replace them
with (*,G) state, use the ip igmp ssm-map std-access-list sourceaddress command.

Parameters

std-access-list

Specify the standard IP access list that contains the mapping
rules for multicast groups.

source-address

Specify the multicast source address to which the groups are
mapped.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.7.1.0

Introduced on the E-Series.

Usage
Information

Mapping applies to both v1 and v2 IGMP joins; any updates to the ACL are reflected
in the IGMP groups. You may not use extended access lists with this command.
When you configure a static SSM map and the router cannot find any matching
access lists, the router continues to accept (*,G) groups.

Related
Commands

ip access-list standard — creates a standard access list to filter based on IP address.

Internet Group Management Protocol (IGMP)

717

ip igmp static-group
Configure an IGMP static group.

S4810
Syntax

ip igmp static-group {group address [exclude [source address]]
| [include {source address}]}
To delete a static address, use the no ip igmp static-group {group
address [exclude [source address]] | [include {source
address}]} command.

Parameters

group address

Enter the group address in dotted decimal format (A.B.C.D).

exclude source
address

(OPTIONAL) Enter the keyword exclude then the source
address, in dotted decimal format (A.B.C.D), for which a
static entry is added.

include source
address

(OPTIONAL) Enter the keyword include then the source
address, in dotted decimal format (A.B.C.D), for which a
static entry is added.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Expanded to support the exclude and include options.

E-Series legacy
command
Usage
Information

718

A group in include mode must have at least one source address defined. In
exclude mode, if you do not specify a source address, Dell Networking OS

Internet Group Management Protocol (IGMP)

implicitly assumes all sources are included. If you do not specify either include or
exclude, Dell Networking OS implicitly assumes a IGMPv2 static join.
Command Limitations

Related
Commands

•

Only one mode (include or exclude) is permitted per multicast group per
interface. To configure another mode, all sources belonging to the original
mode must be unconfigured.

•

If a static configuration is present and a packet for the same group arrives on an
interface, the dynamic entry completely overwrites all the static configuration
for the group.

show ip igmp groups — displays IGMP group information.

ip igmp version
Manually set the version of the router to IGMPv2 or IGMPv3.

S4810
Syntax
Parameters

ip igmp version {2 | 3}
2

Enter the number 2 to set the IGMP version number to
IGMPv2.

3

Enter the number 3 to set the IGMP version number to
IGMPv3.

Defaults

2 (that is, IGMPv2)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Internet Group Management Protocol (IGMP)

719

Version 7.5.1.0

Introduced on the E-Series.

show ip igmp groups
View the IGMP groups.

S4810
Syntax
Parameters

show ip igmp groups [group-address [detail] | detail |
interface [group-address [detail]]]
group-address

(OPTIONAL) Enter the group address in dotted decimal
format to view information on that group only.

interface

(OPTIONAL) Enter the interface type and slot/port
information:

detail

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a 100/1000 Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tengigabitethernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface enter the keyword vlan then a
number from 1 to 4094.

(OPTIONAL) Enter the keyword detail to display the
IGMPv3 source information.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

720

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Internet Group Management Protocol (IGMP)

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series and C-Series.

Version 7.5.1.0

Expanded to support the detail option.

E-Series legacy
command.
Usage
Information

This command displays the IGMP database, including configured entries for either
all groups on all interfaces, all groups on specific interfaces, or specific groups on
specific interfaces.
The following describes the show ip igmp groups command shown in the
following example.

Example

Example (VLT)

Field

Description

Group Address

Lists the multicast address for the IGMP group.

Interface

Lists the interface type, slot and port number.

Mode

Displays the IGMP version used.

Uptime

Displays the amount of time the group has been
operational.

Expires

Displays the amount of time until the entry expires.

Last Reporter

Displays the IP address of the last host to be a member of
the IGMP group.

Member Ports

Indicates the port channel. If the port channel is VLT, an
asterisk (*) after the port channel number indicates the port
channel is locally down and that a remote VLT port is up.

Dell#show ip igmp groups
Total Number of Groups: 5
IGMP Connected Group Membership
Group Address Interface Mode Uptime Expires Last Reporter
225.0.0.0
Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51
Member Ports: Po 2
225.0.0.1
Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51
Member Ports: Po 2
225.0.0.2
Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51
Member Ports: Po 2
225.0.0.3
Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51
Member Ports: Po 2
225.0.0.4
Vlan 100 IGMPv2 00:00:05 00:02:04 3.0.0.51
Member Ports: Po 2
NOTE: The asterisk (*) after the port channel number (Po 2) highlighted in the
following example indicates the port channel is VLT, that the local VLT port
channel is down and the remote VLT port is up.
Dell#show ip igmp groups
Total Number of Groups: 5
IGMP Connected Group Membership

Internet Group Management Protocol (IGMP)

721

Group Address Interface Mode
225.0.0.0
Vlan 100 IGMPv2
Member Ports: Po 2*
225.0.0.1
Vlan 100 IGMPv2
Member Ports: Po 2*
225.0.0.2
Vlan 100 IGMPv2
Member Ports: Po 2*
225.0.0.3
Vlan 100 IGMPv2
Member Ports: Po 2*
225.0.0.4
Vlan 100 IGMPv2
Member Ports: Po 2*

Uptime Expires Last Reporter
00:00:05 00:02:04 3.0.0.51
00:00:05 00:02:04 3.0.0.51
00:00:05 00:02:04 3.0.0.51
00:00:05 00:02:04 3.0.0.51
00:00:05 00:02:04 3.0.0.51

show ip igmp interface
View information on the interfaces participating in IGMP.

S4810
Syntax
Parameters

show ip igmp interface [interface]
interface

(OPTIONAL) Enter the interface type and slot/port
information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a 100/1000 Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tengigabitethernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

722

Introduced on the S6000.

Internet Group Management Protocol (IGMP)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command.
Usage
Information

IGMP commands accept only non-VLAN interfaces — specifying VLAN does not
yield results.

Example

Dell#show ip igmp interface
GigabitEthernet 0/0 is down, line protocol is down
Internet protocol processing disabled
GigabitEthernet 0/5 is down, line protocol is down
Internet protocol processing disabled
GigabitEthernet 0/6 is down, line protocol is down
Internet protocol processing disabled
GigabitEthernet 0/7 is up, line protocol is down
Internet protocol processing disabled
GigabitEthernet 7/9 is up, line protocol is up
Internet address is 10.87.5.250/24
IGMP is enabled on interface
IGMP query interval is 60 seconds
IGMP querier timeout is 120 seconds
IGMP max query response time is 10 seconds
IGMP last member query response interval is 1000 ms
IGMP activity: 0 joins, 0 leaves
IGMP querying router is 10.87.5.250 (this system)
IGMP version is 2

show ip igmp ssm-map
Display is a list of groups that are currently in the IGMP group table and contain SSM mapped sources.

S4810
Syntax
Parameters

Command
Modes
Command
History

show ip igmp ssm-map [group]
group

•
•

(OPTIONAL) Enter the multicast group address in the form
A.B.C.D to display the list of sources to which this group is
mapped.

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Internet Group Management Protocol (IGMP)

723

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.7.1.0

Introduced on the E-Series.

ip igmp ssm-map — uses a statically configured list to translate (*,G) memberships
to (S,G) memberships.

IGMP Snooping Commands
Dell Networking OS supports IGMP Snooping version 2 and 3 on all Dell Networking systems.

Important Points to Remember for IGMP Snooping
•

Dell Networking OS supports version 1, version 2, and version 3 hosts.

•

Dell Networking OS IGMP snooping implementation is based on IP multicast address (not based on
Layer 2 multicast mac address) and the IGMP snooping entries are in Layer 3 flow table not in Layer 2
forwarding information base (FIB).

•

Dell Networking OS IGMP snooping implementation is based on draft-ietf-magma-snoop-10.

•

Dell Networking OS supports IGMP snooping on JUMBO-enabled cards.

•

IGMP snooping is not enabled by default on the switch.

•

A maximum of 1800 groups and 600 VLAN are supported.

•

IGMP snooping is not supported on a default VLAN interface.

•

IGMP snooping is not supported over VLAN-Stack-enabled VLAN interfaces (you must disable IGMP
snooping on a VLAN interface before configuring VLAN-Stack-related commands).

•

IGMP snooping does not react to Layer 2 topology changes triggered by spanning tree protocol (STP).

•

IGMP snooping reacts to Layer 2 topology changes multiple spanning tree protocol (MSTP) triggers by
sending a general query on the interface that comes in the FWD state.

Important Points to Remember for IGMP Querier
•

The IGMP snooping Querier supports version 2.

•

You must configure an IP address to the VLAN interface for IGMP snooping Querier to begin. The
IGMP snooping Querier disables itself when a VLAN IP address is cleared, and then it restarts itself
when an IP address is reassigned to the VLAN interface.

•

When enabled, IGMP snooping Querier does not start if there is a statically configured multicast
router interface in the VLAN.

•

When enabled, IGMP snooping Querier starts after one query interval in case no IGMP general query
(with IP SA lower than its VLAN IP address) is received on any of its VLAN members.

•

When enabled, IGMP snooping Querier periodically sends general queries with an IP source address
of the VLAN interface. If it receives a general query on any of its VLAN member, it checks the IP
source address of the incoming frame.

724

Internet Group Management Protocol (IGMP)

If the IP SA in the incoming IGMP general query frame is lower than the IP address of the VLAN
interface, the switch disables its IGMP snooping Querier functionality.
If the IP SA of the incoming IGMP general query is higher than the VLAN IP address, the switch
continues to work as an IGMP snooping Querier.

ip igmp snooping enable
Enable IGMP snooping on all or a single VLAN. This command is the master on/off switch to enable IGMP
snooping.
Syntax

ip igmp snooping enable
To disable IGMP snooping, use the no ip igmp snooping enable command.

Defaults

Disabled.

Command
Modes

•

CONFIGURATION

•

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

To enable IGMP snooping, enter this command. When you enable this command
from CONFIGURATION mode, IGMP snooping enables on all VLAN interfaces
(except the default VLAN).
NOTE: Execute the no shutdown command on the VLAN interface for IGMP
Snooping to function.

Internet Group Management Protocol (IGMP)

725

ip igmp snooping fast-leave
Enable IGMP snooping fast-leave for this VLAN.

S4810
Syntax

ip igmp snooping fast-leave
To disable IGMP snooping fast leave, use the no igmp snooping fast-leave
command.

Defaults

Not configured.

Command
Modes

INTERFACE VLAN — (conf-if-vl-n)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command.
Usage
Information

Queriers normally send some queries when a leave message is received prior to
deleting a group from the membership database. There may be situations when
you require a fast deletion of a group. When you enable IGMP fast leave
processing, the switch removes an interface from the multicast group as soon as it
detects an IGMP version 2 leave message on the interface.

ip igmp snooping flood
This command controls the flooding behavior of unregistered multicast data packets.

S4810
Syntax

ip igmp snooping flood

Defaults

Enabled.

726

Internet Group Management Protocol (IGMP)

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Seris and S-Series.

Version 7.7.1.0

Introduced on the E-Series.

E-Series legacy
command
Usage
Information

On the C-Series and S-Series, unregistered multicast data traffic drops when you
disable flooding; they do not forward the packets to multicast router ports. On the
C-Series and S-Series, in order to disable Layer 2 multicast flooding, disable Layer 3
multicast (no ip multicast-routing).

ip igmp snooping last-member-query-interval
The last member query interval is the maximum response time inserted into Group-Specific queries sent
in response to Group-Leave messages.

S4810
Syntax

ip igmp snooping last-member-query-interval milliseconds
To return to the default value, use the no ip igmp snooping last-memberquery-interval command.

Parameters

milliseconds

Enter the interval in milliseconds. The range is from 100 to
65535. The default is 1000 milliseconds.

Defaults

1000 milliseconds

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Internet Group Management Protocol (IGMP)

727

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

This last-member-query-interval is also the interval between successive GroupSpecific Query messages. To change the last-member-query interval, use this
command.

ip igmp snooping mrouter
Statically configure a VLAN member port as a multicast router interface.

S4810
Syntax

ip igmp snooping mrouter interface interface
To delete a specific multicast router interface, use the no igmp snooping
mrouter interface interface command.

Parameters

Defaults

728

interface
interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

Not configured.

Internet Group Management Protocol (IGMP)

Command
Modes

INTERFACE VLAN — (conf-if-vl-n)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command.
Usage
Information

Dell Networking OS provides the capability of statically configuring the interface to
which a multicast router is attached. To configure a static connection to the
multicast router, enter the ip igmp snooping mrouter interface command
in the VLAN context. The interface to the router must be a part of the VLAN where
you are entering the command.

ip igmp snooping querier
Enable IGMP querier processing for the VLAN interface.

S4810
Syntax

ip igmp snooping querier
To disable IGMP querier processing for the VLAN interface, use the no ip igmp
snooping querier command.

Defaults

Not configured.

Command
Modes

INTERFACE VLAN — (conf-if-vl-n)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Internet Group Management Protocol (IGMP)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

729

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

This command enables the IGMP switch to send General Queries periodically. This
behavior is useful when there is no multicast router present in the VLAN because
the multicast traffic is not routed. Assign an IP address to the VLAN interface for the
switch to act as a querier for this VLAN.

show ip igmp snooping mrouter
Display multicast router interfaces.

S4810
Syntax
Parameters

Command
Modes
Command
History

show ip igmp snooping mrouter [vlan number]
vlan number

•
•

Enter the keyword vlan then the vlan number. The range is
from 1 to 4094.

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command.

730

Internet Group Management Protocol (IGMP)

Usage
Information

If the port channel is a VLT port channel, an asterisk (*) after the port channel
number (Po 100*) indicates the port channel is locally down and that a remote VLT
port is up.

Example

Dell#show ip igmp snooping mrouter
Interface Router Ports
Vlan 2 Gi 13/3, Po 1
Dell#

Related
Commands

•

ip igmp snooping mrouter — configures a static connection to the multicast
router.

•

show ip igmp groups — view groups.

Internet Group Management Protocol (IGMP)

731

24

Interfaces

The commands in this chapter are supported by Dell Networking operating software on the S4810
platform.
This chapter contains the following sections:
•

Basic Interface Commands

•

Port Channel Commands

•

Time Domain Reflectometer (TDR)

•

UDP Broadcast

Basic Interface Commands
The following commands are for Physical, Loopback, and Null interfaces.

clear counters
Clear the counters used in the show interfaces commands for all virtual router redundancy protocol
(VRRP) groups, virtual local area networks (VLANs), and physical interfaces, or selected ones.

S4810
Syntax
Parameters

clear counters [interface] [vrrp [ipv6 {vrid} | learning-limit]
interface

(OPTIONAL) Enter any of the following keywords and slot/
port or number to clear counters from a specified interface:
•

732

For IPv4 access-group counters, enter the keyword ip.

•

For IPv6 access-group counters, enter the keyword ipv6.

•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For MAC access-group counters, enter the keyword mac.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For the management interface on the RPM, enter the
keyword ManagementEthernet then slot/port
information. The slot range is from 0 to 1 and the port
range is 0.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tenGigE then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Interfaces

•

For a tunnel interface, enter the keyword tunnel. The
range is from 1 to 16383.

vrrp [[ipv6] vrid]

(OPTIONAL) Enter the keyword vrrp to clear the counters of
all VRRP groups. To clear the counters of VRRP groups on all
IPv6 interfaces, enter ipv6. To clear the counters of a
specified group, enter a VRID number from 1 to 255.

learning-limit

(OPTIONAL) Enter the keywords learning-limit to clear
unknown source address (SA) drop counters when MAC
learning limit is configured on the interface.

Defaults

Without an interface specified, the command clears all interface counters.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.4.1.0

Added support (E-Series only) for VRRP groups in a VRF
instance.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4093 VLANs on the E-Series ExaScale.
Prior to the release, 2094 was supported.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Updated the definition of the learning-limit option for
clarity.

Example

Dell#clear counters
Clear counters on all interfaces [confirm]

Related
Commands

mac learning-limit — allows aging of MACs even though a learning-limit is
configured or disallow station move on learned MACs.
show interfaces — displays information on the interfaces.

Interfaces

733

clear dampening
Clear the dampening counters on all the interfaces or just the specified interface.

S4810
Syntax
Parameters

clear dampening [interface]
interface

(OPTIONAL) Enter any of the following keywords and slot/
port or number to clear counters from a specified interface:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Without an interface specified, the command clears all interface dampening
counters.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

After you enter the clear counters command and verify the results with the
show interfaces command, the line rate is not reset to 0.00%.

Example

Dell#clear dampening tegigabitethernet 1/2
Clear dampening counters on TeGi 1/2 [confirm] y
Dell#

734

Interfaces

Related
Commands

show interfaces dampening — displays interface dampening information.
dampening — configures dampening on an interface.

dampening
Configure dampening on an interface.

S4810
Syntax
Parameters

dampening [[[[half-life] [reuse-threshold]] [suppressthreshold]] [max-suppress-time]]
half-life

Enter the number of seconds after which the penalty is
decreased. The penalty decreases half after the half-life
period expires. The range is from 1 to 30 seconds. The
default is 5 seconds.

reusethreshold

Enter a number as the reuse threshold, the penalty value
below which the interface state is changed to “up”. The
range is from 1 to 20000. The default is 750.

suppressthreshold

Enter a number as the suppress threshold, the penalty value
above which the interface state is changed to “error
disabled”. The range is from 1 to 20000. The default is 2500.

max-suppresstime

Enter the maximum number for which a route can be
suppressed. The default is four times the half-life value. The
range is from 1 to 86400. The default is 20 seconds.

Defaults

Disabled.

Command
Modes

INTERFACE (conf-if-)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

735

Usage
Information

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

With each flap, Dell Networking OS penalizes the interface by assigning a penalty
(1024) that decays exponentially depending on the configured half-life. After the
accumulated penalty exceeds the suppress threshold value, the interface moves to
the Error-Disabled state. This interface state is deemed as “down” by all static/
dynamic Layer 2 and Layer 3 protocols. The penalty is exponentially decayed based
on the half-life timer. After the penalty decays below the reuse threshold, the
interface enables. The configured parameters are as follows:
•

suppress-threshold should be greater than reuse-threshold

•

max-suppress-time should be at least 4 times half-life
NOTE: You cannot apply dampening on an interface that is monitoring traffic
for other interfaces.

Example

Dell(conf-if-gi-3/2)#dampening 20 800 4500 120
Dell(conf-if-gi-3/2)#

Related
Commands

clear dampening — clears the dampening counters on all the interfaces or just the
specified interface.
show interfaces dampening — displays interface dampening information.

description
Assign a descriptive text string to the interface.

S4810
Syntax

description desc_text
To delete a description, use the no description command.

Parameters

desc_text

Enter a text string up to 240 characters long.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

736

Introduced on the S6000.

Interfaces

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Modified for E-Series: Revised from 78 to 240 characters.

Important Points to Remember:
•

To use special characters as a part of the description string, you must enclose
the whole string in double quotes.

•

Spaces between characters are not preserved after entering this command
unless you enclose the entire description in quotation marks (“desc_text”).

•

Entering a text string after the description command overwrites any previous
text string that you previously configured as the description.

•

The shutdown and description commands are the only commands that you
can configure on an interface that is a member of a port-channel.

•

Use the show interfaces description command to display descriptions
configured for each interface.

duplex (10/100 Interfaces)
Configure duplex mode on any physical interfaces where the speed is set to 10/100.

Syntax

duplex {half | full}
To return to the default setting, use the no duplex command.

Parameters

half

Enter the keyword half to set the physical interface to
transmit only in one direction.

full

Enter the keyword full to set the physical interface to
transmit in both directions.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

737

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Introduced

Usage
Information

This command applies to any physical interface with speed set to 10/100.

Related
Commands

negotiation auto — enables or disables auto-negotiation on an interface.

NOTE: Starting with Dell Networking OS version 7.8.1.0, when you use a
copper SFP2 module with catalog number GP-SFP2-1T in the S25P model of
the S-Series, you can manually set its speed with the speed command. When
you set the speed to 10 Mbps or 100 Mbps, you can also execute the duplex
command.

flowcontrol
Control how the system responds to and generates 802.3x pause frames on 10 Gig and 40 Gig ports.

S4810
Syntax
Parameters

flowcontrol rx {off | on} tx {off | on}
rx on

Enter the keywords rx on to process the received flow
control frames on this port. This is the default value for the
receive side.

rx off

Enter the keywords rx off to ignore the received flow
control frames on this port.

tx on

Enter the keywords tx on to send control frames from this
port to the connected device when a higher rate of traffic is
received.

tx off

Enter the keywords tx off so that flow control frames are
not sent from this port to the connected device when a
higher rate of traffic is received.

Parameters
Defaults

738

rx on tx off

Interfaces

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Versions 6.5.1.9
and 7.4.1.0

Introduced on the E-Series.

Version 7.8.1.0

Introduced on the C-Series and S-Series with the
thresholds option.

The globally assigned 48-bit Multicast address 01-80-C2-00-00-01 is used to send
and receive pause frames. To allow full-duplex flow control, stations implementing
the pause operation instruct the MAC to enable the reception of frames with a
destination address equal to this multicast address.
When a port receives traffic at a higher rate than it can process, the frames are
stored in the port buffer. As a result, buffer usage increases. When the buffer usage
reaches the value specified in the “pause-threshold” argument, the port sends
PAUSE frame to the connected link partner to stop sending the traffic. Eventually
this reduces the buffer usage. When the buffer usage drops by the value specified
in the “resume-threshold”, the port again sends a PAUSE frame with 0 as wait-time.
This results in resume of the paused traffic flow.
Important Points to Remember
•

Do not enable tx pause when buffer carving is enabled. For information and
assistance, consult Dell Networking TAC.

•

The only configuration applicable to half duplex ports is rx off tx off. The
following error is returned:
Can’t configure flowcontrol when half duplex is configure,
config ignored

•

Half duplex cannot be configured when the flow control configuration is on
(default is rx on tx on). The following error is returned:
Can’t configure half duplex when flowcontrol is on, config
ignored
NOTE: The flow control must be off (rx off tx off) before configuring the
half duplex.

Interfaces

739

•

•

Speeds less than 1 Gig cannot be configured when the asymmetric flow control
configuration is on. The following error is returned:
Can’t configure speed <1G when Asymmetric flowcontrol is on,
config ignored
Dell Networking OS only supports rx on tx on and rx off tx off for
speeds less than 1 Gig (Symmetric).
NOTE: If you use the disable rx flow control command, Dell
Networking recommends rebooting the system.

Example

Dell(conf-if-Tegi-0/1)#show config
!
interface GigabitEthernet 0/1
no ip address
switchport
no negotiation auto
flowcontrol rx off tx on
no shutdown
...

Example
(Values)

This Example shows how Dell Networking OS negotiates the flow control values
between two Dell Networking chassis connected back-to-back using 1G copper
ports.
Configured
LocRxConf LocTxConf RemoteRxConf RemoteTxConf
off
off
off
off
off
on
on
off
on
on

740

off

on

off
off
on
on

off
on
off
on

on

off

off
off
on
on

off
on
off
on

on

on

off
off
on
on

off
on
off
on

LocNegRx
off
off
off
off

LocNegTx RemNegRx RemNegTx
off
off
off
off
off
off
off
off
off
off
off
off

off
off
off
off

off
off
on
off

off
off
on
off

off
off
off
off

off
on

off
off

off
off

off
on

Interfaces

Related
Commands

on
on

on
on

off
off
on
on

off
off
on
on

on
on
off
off
on
on

on
on
off
off
on
on

show running-config — displays the flow configuration parameters (non-default
values only).
show interfaces — displays the negotiated flow control parameters.

interface
Configure a physical interface on the switch.

S4810
Syntax
Parameters

interface interface range
interface

range

Enter one of the following keywords and slot/port or number
information:
•

For a null interface, enter the keyword null then the
slot/port information. The Null interface number is 0.

•

For a Management Ethernet interface, enter the keyword
managementethernet then the slot/port information.

•

For a Loopback interface, enter the keyword loopback
then the slot/port information. The range is from 0 to
16383.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Tunnel interface, enter the keyword tunnel then
the tunnel ID. The range is from 1 to 16383.

•

For a VLAN interface, enter the keyword vlan then the
slot/port information. The range is from 1 to 4094.

(Optional) Enter the keyword range to configure an
interface range.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

741

Usage
Information

Version 9.4(0.0)

Added the support for interfaces.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Introduced

You cannot delete a physical interface.
By default, physical interfaces are disabled (shutdown) and are not assigned to an
IP address or switchport. To place an interface in Layer 2 mode, ensure that the
interface’s configuration does not contain an IP address and enter the switchport
command.
You can create up to 64 tunnel interfaces. The tunnel is added as a logical interface
with no default configuration. To delete a tunnel interface, use the no interface
tunnel tunnel-id command.
The tunnel interface operates as an ECMP (equal cost multi path) only when the
next hop to the tunnel destination is over a physical interface. If you select any
other interface as the next hop to the tunnel destination, the tunnel interface does
not operate as an ECMP.

Example

Dell(conf)#int tengigabitethernet 0/0
Dell(conf-if-te-0/0)#exit
Dell(conf)#

Related
Commands

interface loopback — configures a Loopback interface.
interface null — configures a Null interface.
interface port-channel — configures a port channel.
interface vlan — configures a VLAN.
show interfaces — displays the interface configuration.

742

Interfaces

interface group
Create or delete group of VLANs with a single command. You can also use this command to apply a set
of configurations on a group of interfaces.

S4810
Syntax

interface group [fortyGigE slot/port { - port }|
gigabitethernet slot/port { - port }| tengigabitethernet slot/
port { - port } | vlan vlanid {- vlanid } ]
To delete a range of VLANs, use the following command: no interface group
vlan vlanid {- vlanid}

Parameters

interface,
interface,...

Enter the keywords interface group and one of the
interfaces — slot/port or VLAN number. Select the range of
interfaces for bulk configuration. Spaces are not required
between the commas. Comma-separated ranges can
include VLANs and physical interfaces.
Enter the member VLANs using VLAN IDs (separated by
commas), a range of VLAN IDs (separated by a hyphen), a
single VLAN ID, or a combination. For example: VLAN IDs
(comma-separated): 3, 4, 6. Range (hyphen-separated):
5-10.
Slot/Port information need not contain a space before and
after the dash. For example. both of the following
commands are valid: interface group
gigabitethernet 0/1 - 5 ; interface group
gigabitethernet 0/1-5.

Command
Modes
Command
History

Interfaces

•

For a Gigabit Ethernet interface, enter the keyword
gigabitethernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

CONFIGURATION

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

743

Usage
Information

The interface group command will create all the non-existent VLANs specified
in the range. On successful command execution, the CLI switches to the interface
group context.
The configuration commands inside the group context will be the similar to that of
the existing range command.
Note: For release 9.4(0.0), the group command is supported only for VLANs and
physical interfaces.

Example

Dell(conf)#interface group ?
fortyGigE
FortyGigabit Ethernet interface
gigabitethernet
GigabitEthernet interface IEEE 802.3z
tengigabitethernet
TenGigabit Ethernet interface
vlan
VLAN keyword
Dell(conf)# interface group vlan 1 - 2 , tengigabitethernet
0/0
Dell(conf-if-group-vl-1-2,te-0/0)# no shutdown
Dell(conf-if-group-vl-1-2,te-0/0)# end

interface loopback
Configure a Loopback interface.

S4810
Syntax

interface loopback number
To remove a loopback interface, use the no interface loopback number
command.

Parameters

number

Enter a number as the interface number. The range is from 0
to 16383.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

744

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Interfaces

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Introduced

Example

Dell(conf)#interface loopback 1655
Dell(conf-if-lo-1655)#

Related
Commands

interface — configures a physical interface.
interface null — configures a Null interface.
interface port-channel — configures a port channel.
interface vlan — configures a VLAN.

interface ManagementEthernet
Configure the Management port on the system (either the Primary or Standby RPM).

S4810
Syntax
Parameters

interface ManagementEthernet slot/port
slot/port

Enter the keyword ManagementEthernet, then the slot
number (0 or 1) and port number zero (0).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.11.1

Introduced on the S55, S60, and S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Introduced

745

Usage
Information

You cannot delete a Management port.
The Management port is enabled by default (no shutdown). To assign an IP
address to the Management port, use the ip address command.
If your system has two RPMs installed, use the show redundancy command to
display which RPM is the Primary RPM.

Example

Dell(conf)#interface managementethernet 0/0
Dell(conf-if-ma-0/0)#

Related
Commands

management route — configures a static route that points to the Management
interface or a forwarding router.
speed (Management interface) — clears the FIB entries on a specified line card.

interface null
Configure a Null interface on the switch.

S4810
Syntax
Parameters

interface null number
number

Enter zero (0) as the Null interface number.

Defaults

Not configured; number = 0

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

746

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Introduced

Interfaces

Usage
Information

You cannot delete the Null interface. The only configuration command possible in
a Null interface is ip unreachables.

Example

Dell(conf)#interface null 0
Dell(conf-if-nu-0)#

Related
Commands

interface — configures a physical interface.
interface loopback — configures a Loopback interface.
interface port-channel — configures a port channel.
interface vlan — configures a VLAN.
ip unreachables — enables generation of internet control message protocol (ICMP)
unreachable messages.

interface range
This command permits configuration of a range of interfaces to which subsequent commands are
applied (bulk configuration). Using the interface range command, you can enter identical commands
for a range of interface.

S4810
Syntax
Parameters

interface range interface, interface,...
interface,
interface,...

Enter the keywords interface range and one of the
interfaces — slot/port, port-channel, or VLAN number. Select
the range of interfaces for bulk configuration. You can enter
up to six comma-separated ranges. Spaces are not required
between the commas. Comma-separated ranges can
include VLANs, port-channels, and physical interfaces.
Slot/Port information must contain a space before and after
the dash. For example, interface range
gigabitethernet 0/1 - 5 is valid; interface range
gigabitethernet 0/1-5 is NOT valid.

Interfaces

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

•

For a Tunnel interface, enter the keyword Tunnel then a
number from 1 to 16383.

747

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Added support for 4093 VLANs on E-Series ExaScale. Prior
releases supported 2094.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

When creating an interface range, interfaces appear in the order they are entered;
they are not sorted. The command verifies that interfaces are present (physical) or
configured (logical).
Important Points to Remember:

Example (Bulk)

748

•

Bulk configuration is created if at least one interface is valid.

•

Non-existing interfaces are excluded from the bulk configuration with a
warning message.

•

The interface range prompt includes interface types with slot/port
information for valid interfaces. The prompt allows for a maximum of 32
characters. If the bulk configuration exceeds 32 characters, it is represented by
an ellipsis ( ... ).

•

When the interface range prompt has multiple port ranges, the smaller port
range is excluded from the prompt.

•

If overlapping port ranges are specified, the port range is extended to the
smallest start port and the biggest end port.

Dell(conf)#interface range so 2/0-1, te 10/0, gi 3/0, fa 0/0
% Warning: Non-existing ports (not configured) are ignored by
interface-range

Interfaces

Example
(Multiple Ports)

Dell(conf)#interface range gi 2/0 - 23, gi 2/1 - 10
Dell(conf-if-range-gi-2/0-23#

Example
(Overlapping
Ports)

Dell(conf)#interface range gi 2/1 - 11, gi 2/1 - 23
Dell(conf-if-range-gi-2/1-23#

Usage
Information

Only VLAN and port-channel interfaces created using the interface vlan and
interface port-channel commands can be used in the interface range
command.
Use the show running-config command to display the VLAN and port-channel
interfaces. VLAN or port-channel interfaces that are not displayed in the show
running-config command cannot be used with the bulk configuration feature of
the interface range command. You cannot create virtual interfaces (VLAN,
Port-channel) using the interface range command.
NOTE: If a range has VLAN, physical, port-channel, and SONET interfaces, only
commands related to physical interfaces can be bulk configured. To configure
commands specific to VLAN, port-channel, or SONET, only those respective
interfaces should be configured in a particular range.

Example (Single
Range)

This example shows a single range bulk configuration.
Dell(config)# interface range gigabitethernet 5/1 - 23
Dell(config-if-range)# no shutdown
Dell(config-if-range)#

Example
(Multiple
Range)

This example shows how to use commas to add different interface types to the
range enabling all Gigabit Ethernet interfaces in the range 5/1 to 5/23 and both
Ten-Gigabit Ethernet interfaces 1/1 and 1/2.
Dell(config-if)# interface range gigabitethernet5/1-23,
tengigabitethernet1/1-2
Dell(config-if-range)# no shutdown
Dell(config-if-range)#

Example
(Multiple
Range)

This example shows how to use commas to add SONET, VLAN, and port-channel
interfaces to the range.
Dell(config-if)# interface range gigabitethernet5/1-23,
tengigabitethernet1/1–2,
Vlan 2–100, Port 1–25
Dell(config-if-range)# no shutdown
Dell(config-if-range)#

Related
Commands

interface port-channel — configures a port channel group.
interface vlan — configures a VLAN interface.
show config (from INTERFACE RANGE mode) — shows the bulk configuration
interfaces.

Interfaces

749

show range — shows the bulk configuration ranges.
interface range macro (define) — defines a macro for an interface-range.

interface range macro (define)
Defines a macro for an interface range and then saves the macro in the running configuration.

S4810
Syntax
Parameters

define interface range macro name interface , interface , ...
name

Enter up to 16 characters for the macro name.

interface,
interface,...

Enter the keywords interface range and one of the
interfaces — slot/port, port-channel, or VLAN number. Select
the range of interfaces for bulk configuration. You can enter
up to six comma-separated ranges. Spaces are not required
between the commas. Comma-separated ranges can
include VLANs, port-channels, and physical interfaces.
Slot/Port information must contain a space before and after
the dash. For example, interface range
gigabitethernet 0/1 - 5 is valid; interface range
gigabitethernet 0/1-5 is NOT valid.
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Tunnel interface, enter the keyword tunnel then
the tunnel ID. The range is from 1 to 16383.

•

For a VLAN, enter the keyword vlan followed by a
number from 1 to 4094.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

750

Introduced on the S6000.

Interfaces

Example (Single
Range)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Added support for 4093 VLANs on E-Series ExaScale. Prior
releases supported 2094.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

This example shows how to define an interface range macro named test. Execute
the show running-config command to display the macro definition.
Dell(config)# define interface-range test
tengigabitethernet0/0-3,
gigabitethernet 5/0-47, gigabitethernet 13/0-89
Dell# show running-config | grep define
define interface-range test tengigabitethernet0/0-3,
gigabitethernet5/0-47,
gigabitethernet 13/0 - 89
Dell(config)#interface range macro test
Dell(config-if-range-te-0/0-3,gi-5/0-47,gi-13/0-89)#

Related
Commands

interface range – configures a range of command (bulk configuration)
interface range macro name – runs an interface range macro.

interface range macro name
Run the interface-range macro to automatically configure the pre-defined range of interfaces.

S4810
Syntax
Parameters

interface range macro name
name

Enter the name of an existing macro.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

Interfaces

751

The following is a list of the Dell Networking OS version history for this command.

Example (Single
Range)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.0

Introduced

This example shows the macro named test that was defined earlier.
Dell(config)#interface range macro test
Dell(config-if-range-te-0/0-3,gi-5/0-47,gi-13/0-89)#
Dell

Related
Commands

interface range — configures a range of command (bulk configuration).
interface range macro (define) — defines a macro for an interface range (bulk
configuration).

interface vlan
Configure a VLAN. You can configure up to 4094 VLANs.

S4810
Syntax
Parameters

interface vlan vlan-id [of-instance{of-id}]
of-instance{ofid}

Enter the keyword of-instance then the OpenFlow instance
ID to add the VLAN to the specified OpenFlow instance. The
range is from 1 to 8.
NOTE: Associate the OpenFlow instance with the VLAN
when the VLAN is created. An existing VLAN cannot be
associated with an OpenFlow instance.

Defaults

Not configured, except for the Default VLAN, which is configured as VLAN 1.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

752

Interfaces

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.1.
(0.0)

Introduced on the S4810; added support for OpenFlow.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

For more information about VLANs and the commands to configure them, refer to
the Virtual LAN (VLAN) Commands section of the Layer 2 chapter.
FTP, TFTP, and SNMP operations are not supported on a VLAN. MAC ACLs are not
supported in VLANs. IP ACLs are supported. For more information, refer to the
Access Control Lists (ACL) chapter.
The following features are not supported on VLANs associated with an OpenFlow
instance:
•

IPv4

•

IPv6

•

MTU

If OpenFlow VLANs are configured on the switch, spanning-tree protocols cannot
be enabled simultaneously.
Example (Single
Range)

Dell(conf)#int vlan 3
Dell(conf-if-vl-3)#

Related
Commands

interface — configures a physical interface.
interface loopback — configures a loopback interface.
interface null — configures a null interface.
interface port-channel — configures a port channel group.
show vlan — displays the current VLAN configuration on the switch.
shutdown — disables/enables the VLAN.
tagged — adds a Layer 2 interface to a VLAN as a tagged interface.
untagged — adds a Layer 2 interface to a VLAN as an untagged interface.

Interfaces

753

intf-type cr4 autoneg
Set the interface type as CR4 with auto-negotiation enabled.

S4810
Syntax

intf-type cr4 autoneg
If you configure intf-type cr4 autoneg, use the no intf-type cr4
autoneg command to set the interface type as cr4 with autonegotiation disabled.

Defaults

Not configured

Command
Modes

CONFIGURATION

Command
History

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.16.1

Introduced on the MXL 10/40GbE Switch IO Module.

If you configure interface type as CR4 with auto-negotiation enabled, also
configure CR4 with auto-negotiation. Many DAC cable link issues are resolved by
setting the interface type as CR4.

•

Interfaces — configures a physical interface.

•

interface loopback — configures a loopback interface.

•

interface null — configures a null interface.

•

interface port-channel — configures a port channel group.

keepalive
Send keepalive packets periodically to keep an interface alive when it is not transmitting data.

S4810
Syntax

keepalive [seconds]
To stop sending keepalive packets, use the no keepalive command.

Parameters

754

seconds

(OPTIONAL) For SONET interfaces with PPP encapsulation
enabled, enter the number of seconds between keepalive
packets. The range is from 0 to 23767. The default is 10
seconds.

Interfaces

Defaults

Enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.2

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you configure keepalive, the system sends a self-addressed packet out of
the configured interface to verify that the far end of a WAN link is up. When you
configure no keepalive, the system does not send keepalive packets and so the
local end of a WAN link remains up even if the remote end is down.

negotiation auto
Enable auto-negotiation on an interface.

S4810
Syntax

negotiation auto
To disable auto-negotiation, use the no negotiation auto command.

Defaults

Enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Interfaces

Introduced on the S6000.

755

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

This command is supported on C-Series, S-Series, and E-Series (TeraScale and
ExaScale) 10/100/1000 Base-T Ethernet interfaces.
The no negotiation auto command is only available if you first manually set
the speed of a port to 10Mbits or 100Mbits.
The negotiation auto command provides a mode option for configuring an
individual port to forced-master/forced slave after you enable auto-negotiation.
NOTE: The mode option is not available on non-10/100/1000 Base-T Ethernet
line cards.
If you do not use the mode option, the default setting is slave. If you do not
configure forced-master or forced-slave on a port, the port negotiates to either a
master or a slave state. Port status is one of the following:
•

Forced-master

•

Force-slave

•

Master

•

Slave

•

Auto-neg Error — typically indicates that both ends of the node are configured
with forced-master or forced-slave.
CAUTION: Ensure that one end of your node is configured as forced-master
and one is configured as forced-slave. If both are configured the same (that
is, forced-master or forced-slave), the show interfaces command flaps
between an auto-neg-error and forced-master/slave states.

You can display master/slave settings with the show interfaces command.
Example
(Master/Slave)

Dell(conf)# int gi 0/0
Dell(conf-if)#neg auto
Dell(conf-if-autoneg)# ?
end
Exit from configuration mode
exit
Exit from autoneg configuration mode
mode
Specify autoneg mode
no
Negate a command or set its defaults
show
Show autoneg configuration information
Dell(conf-if-autoneg)#mode ?

756

Interfaces

forced-master Force port to master mode
forced-slave Force port to slave mode
Dell(conf-if-autoneg)#
Example
(Configured)

Dell#show interfaces configured
GigabitEthernet 13/18 is up, line protocol is up
Hardware is Force10Eth, address is 00:01:e8:05:f7:fc
Current address is 00:01:e8:05:f7:fc
Interface index is 474791997
Internet address is 1.1.1.1/24
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 1000 Mbit, Mode full duplex, Master
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interfaces" counters 00:12:42
Queueing strategy: fifo
Input Statistics:
...

User
Information

Both sides of the link must have auto-negotiation enabled or disabled for the link
to come up.
The following details the possible speed and auto-negotiation combinations for a
line between two 10/100/1000 Base-T Ethernet interfaces.
Port 0
•

auto-negotiation enabled* speed 1000 or auto

•

auto-negotiation enabled speed 100

•

auto-negotiation disabled speed 100

•

auto-negotiation disabled speed 100

•

auto-negotiation enabled* speed 1000 or auto

Port 1
•

auto-negotiation enabled* speed 1000 or auto

•

auto-negotiation enabled speed 100

•

auto-negotiation disabled speed 100

•

auto-negotiation enabled speed 100

•

auto-negotiation disabled speed 100

Link Status Between Port 1 and Port 2
•

Up at 1000 Mb/s

•

Up at 100 Mb/s

•

Up at 100 Mb/s

•

Down

•

Down

* You cannot disable auto-negotiation when the speed is set to 1000 or auto.

Interfaces

757

monitor interface
Monitor counters on a single interface or all interfaces on a line card. The screen is refreshed every five
seconds and the CLI prompt disappears.

S4810
Syntax

monitor interface [interface]
To disable monitoring and return to the CLI prompt, press the q key.

Parameters

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For the management port, enter the keyword
managementethernet then the slot (0 or 1) and the port
(0).

•

For a Tunnel interface, enter the keyword tunnel then
the slot/port. The range is from 1 to 16383.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then the
slot/port. The range is from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

758

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Interfaces

pre-Version
6.2.1.0
Usage
Information

Example (Single
Interface)

Introduced on the E-Series.

In the Example, the delta column displays changes since the last screen refresh.
The following are the monitor command menu options.
Key

Description

systest-3

Displays the host name assigned to the system.

monitor time

Displays the amount of time since the monitor
interface command was entered.

time

Displays the amount of time the chassis is up (since last
reboot).

m

Change the view from a single interface to all interfaces on
the line card or visa-versa.

c

Refresh the view.

b

Change the counters displayed from Packets on the
interface to Bytes.

r

Change the [delta] column from change in the number of
packets/bytes in the last interval to rate per second.

l

Change the view to the next interface on the line card, or if
in line card mode, the next line card in the chassis.

a

Change the view to the previous interface on the line card,
or if in line card mode, the previous line card in the chassis.

T

Increase the screen refresh rate.

t

Decrease the screen refresh rate.

q

Return to the CLI prompt.

systest-3 Monitor time: 00:00:06 Refresh Intvl.: 2s Time:
03:26:26
Interface: Gi 0/3, Enabled, Link is Up, Linespeed is 1000 Mbit
Traffic statistics:
Input bytes:
Output bytes:
Input packets:
Output packets:
64B packets:
Over 64B packets:
Over 127B packets:
Over 255B packets:
Over 511B packets:
Over 1023B packets:
Error statistics:
Input underruns:
Input giants:
Input throttles:
Input CRC:

Interfaces

Current
9069828
606915800
54001
9401589
67
49166
350
1351
286
2781
0
0
0
0

Rate
43 Bps
43 Bps
0 pps
0 pps
0 pps
0 pps
0 pps
0 pps
0 pps
0 pps
0
0
0
0

pps
pps
pps
pps

Delta
86
86
1
1
0
1
0
0
0
0
0
0
0
0

759

Input IP checksum:
Input overrun:
Output underruns:
Output throttles:
m
l
T
q
Example (All
Interfaces)

-

0
0
0
0

Change mode
Page up
Increase refresh interval
Quit

0
0
0
0

pps
pps
pps
pps

0
0
0
0

c - Clear screen
a - Page down
t - Decrease refresh interval

systest-3 Monitor time: 00:01:31 Refresh Intvl.: 2s Time:
03:54:14
Interface Link
In Packets
[delta] Out Packets
[delta]
Gi 0/0 Down
0
0
0
0
Gi 0/1 Down
0
0
0
0
Gi 0/2 Up
61512
52
66160
42
Gi 0/3 Up
63086
20
9405888
24
Gi 0/4 Up
14697471418 2661481 13392989657
2661385
Gi 0/5 Up
3759
3 161959604
832816
Gi 0/6 Up
4070
3
8680346
5
Gi 0/7 Up
61934
34 138734357
72
Gi 0/8 Up
61427
1
59960
1
Gi 0/9 Up
62039
53 104239232
3
Gi 0/10 Up
17740044091
372 7373849244
79
Gi 0/11 Up
18182889225
44 7184747584
138
Gi 0/12 Up
18182682056
0
3682
1
Gi 0/13 Up
18182681434
43 6592378911
144
Gi 0/14 Up
61349
55
86281941
15
Gi 0/15 Up
59808
58
62060
27
Gi 0/16 Up
59889
1
61616
1
Gi 0/17 Up
0
0
14950126
81293
Gi 0/18 Up
0
0
0
0
Gi 0/19 Down
0
0
0
0
Gi 0/20 Up
62734
54
62766
18
Gi 0/21 Up
60198
9
200899
9
Gi 0/22 Up
17304741100 3157554 10102508511
1114221
Gi 0/23 Up
17304769659 3139507 7133354895
523329
m - Change mode
c - Clear screen
b - Display bytes
r - Display pkts/bytes per sec
l - Page up
a - Page down

mtu
Set the link maximum transmission unit (MTU) (frame size) for an Ethernet interface.

S4810
Syntax

mtu value
To return to the default MTU value, use the no mtu command.

Parameters

760

value

Enter a maximum frame size in bytes. The range is from 594
to 12000 for the S4810. The default is 1554.

Interfaces

Defaults

1554

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

If the packet includes a Layer 2 header, the difference between the link MTU and IP
MTU (ip mtu command) must be enough bytes to include the Layer 2 header.
When you enter the no mtu command, Dell Networking OS reduces the IP MTU
value to 1536 bytes.
Link MTU and IP MTU considerations for port channels and VLANs are as follows.
port channels:
•

All members must have the same link MTU value and the same IP MTU value.

•

The port channel link MTU and IP MTU must be less than or equal to the link
MTU and IP MTU values configured on the channel members. For example, if
the members have a link MTU of 2100 and an IP MTU 2000, the port channel’s
MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU.

VLANs:
•

All members of a VLAN must have same IP MTU value.

•

Members can have different Link MTU values. Tagged members must have a
link MTU 4 bytes higher than untagged members to account for the packet tag.

•

The VLAN link MTU and IP MTU must be less than or equal to the link MTU and
IP MTU values configured on the VLAN members. For example, the VLAN
contains tagged members with Link MTU of 1522 and IP MTU of 1500 and
untagged members with Link MTU of 1518 and IP MTU of 1500. The VLAN’s Link
MTU cannot be higher than 1518 bytes and its IP MTU cannot be higher than
1500 bytes.

The following shows the difference between Link MTU and IP MTU.

Interfaces

761

Layer 2 Overhead

Link MTU and IP MTU Delta

Ethernet
(untagged)

18 bytes

VLAN Tag

22 bytes

Untagged Packet
with VLAN-Stack
Header

22 bytes

Tagged Packet
with VLAN-Stack
Header

26 bytes

portmode hybrid
To accept both tagged and untagged frames, set a physical port or port-channel. A port configured this
way is identified as a hybrid port in report displays.

S4810
Syntax

portmode hybrid
To return a port to accept either tagged or untagged frames (non-hybrid), use the
no portmode hybrid command.

Defaults

non-hybrid

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

762

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

The following describes the interface command shown in the following
example. This example sets a port as hybrid, makes the port a tagged member of
VLAN 20, and an untagged member of VLAN 10, which becomes the native VLAN
of the port. The port now accepts:

Interfaces

•

untagged frames and classify them as VLAN 10 frames

•

VLAN 20 tagged frames

The following describes the do show interfaces command shown in the
following example. This example shows output with “Hybrid” as the newly added
value for 802.1QTagged. The options for this field are:
•

True — port is tagged

•

False — port is untagged

•

Hybrid — port accepts both tagged and untagged frames

The following describes the interface vlan command shown in the following
example. This example shows unconfiguration of the hybrid port using the no
portmode hybrid command.
NOTE: Remove all other configurations on the port before you can remove
the hybrid configuration from the port.
Example

Dell(conf)#interface gi 7/0
Dell(conf-if-gi-7/0)#portmode hybrid
Dell(conf-if-gi-7/0)#interface vlan 10
Dell(conf-if-vl-10)#untagged gi 7/0
Dell(conf-if-vl-10)#interface vlan 20
Dell(conf-if-vl-20)#tagged gi 7/0
Dell(conf-if-vl-20)#

Example

Dell(conf-if-vl-20)#do show interfaces switchport
Name: GigabitEthernet 7/0
802.1QTagged: Hybrid
Vlan membership:
Vlan 10,
Vlan 20
Native
VlanId: 10
Dell(conf-if-vl-20)#

Example (Vlan)

Dell(conf-if-vl-20)#interface vlan 10
Dell(conf-if-vl-10)#no untagged gi 7/0
Dell(conf-if-vl-10)#interface vlan 20
Dell(conf-if-vl-20)#no tagged gi 7/0
Dell(conf-if-vl-20)#interface gi 7/0
Dell(conf-if-gi-7/0)#no portmode hybrid
Dell(conf-if-vl-20)#

Related
Commands

show interfaces switchport — displays the configuration of switchport (Layer 2)
interfaces on the switch.
switchport — places the interface in a Layer 2 mode.
vlan-stack trunk — specifies an interface as a trunk port to the Stackable VLAN
network.

Interfaces

763

rate-interval
Configure the traffic sampling interval on the selected interface.

S4810
Syntax
Parameters

rate-interval seconds
seconds

Enter the number of seconds for which to collect traffic data.
The range is from 5 to 299 seconds.
NOTE: Because polling occurs every 15 seconds, the
number of seconds designated here rounds to the
multiple of 15 seconds lower than the entered value. For
example, if 44 seconds is designated, it rounds to 30; 45
to 59 seconds rounds to 45.

Defaults

299 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced

Usage
Information

The output of the show interfaces command displays the configured rate
interval, along with the collected traffic data.

Related
Commands

show interfaces — displays information on physical and virtual interfaces.

764

Interfaces

show config
Display the interface configuration.

S4810
Syntax

show config

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

Dell(conf-if-fo-0/4)#show config
!
interface fortyGigE 0/4
no ip address
mtu 12000
switchport
no shutdown
Dell(conf-if-fo-0/4)#

show config (from INTERFACE RANGE mode)
Display the bulk configured interfaces (interface range).

S4810
Syntax

show config

Command
Modes

CONFIGURATION INTERFACE (conf-if-range)

Interfaces

765

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Dell(conf)#interface range gigabitethernet 1/1 - 2
Dell(conf-if-range-gi-1/1-2)#show config
!
interface GigabitEthernet 1/1
no ip address
switchport
no shutdown
!
interface GigabitEthernet 1/2
no ip address
switchport
no shutdown
Dell(conf-if-range-gi-1/1-2)#

show interfaces
Display information on a specific physical interface or virtual interface.

S4810
Syntax
Parameters

766

show interfaces interface
interface

Enter one of the following keywords and slot/port or number
information:
•

For a Loopback interface, enter the keyword loopback
followed by a number from 0 to 16383.

•

For stack-units, enter the keywords stack-unit then
the slot/port information. The range is from 0 to 11.

•

For a Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

Interfaces

Command
Modes

Command
History

Usage
Information

•

EXEC

•

EXEC Privilege

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

•

For a tunnel interface, enter the keyword tunnel then
the tunnel ID. The range is from 1 to 16383.

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.2)

Added support for the tunnel interface type.

Version 9.1(0.0)

Updated ManagementEthernet output to include two global
IPv6 addresses on S4810 and Z9000 and added output
example showing OpenFlow instance ID.

Version 8.3.12.1

Updated command output to support multiple IPv6
addresses on S4810.

Version 8.3.11.4

Output expanded to support eSR4 optics in Z9000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.2

Included SFP and SFP+ optics power detail in the E-Series
and C-Series output.

Version 8.2.1.0

Added support for 4093 VLANs on the E-Series ExaScale.
Prior releases supported 2094.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Output expanded to include SFP+ media on the C-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Changed the organization of the display output.

Version 6.3.1.0

Added the Pluggable Media Type field in the E-Series
TeraScale output.

Use the show interfaces command for details on a specific interface.
On the S4810, the show interface output displays incorrect rate information
details over time for link monitoring when the rate-interval is configured for 5
seconds. Dell Networking recommends using higher rate-intervals such as 15 to
299 seconds to minimize the errors seen.

Interfaces

767

NOTE: In the CLI output, the power value is rounded to a 3-digit value. For
receive/transmit power that is less than 0.000, an snmp query returns the
corresponding dbm value even though the CLI displays as 0.000.
NOTE: After the counters are cleared, the line-rate continues to increase until
it reaches the maximum line rate. When the maximum line rate is reached,
there is no change in the line-rate.
User
Information

The following table describes the show interfaces command shown in the 10G
(TeraScale) Example below.
Line

Description

TenGigabitEthern
et 0/0...

Interface type, slot/port, and administrative and line
protocol status.

Hardware is...

Interface hardware information, assigned MAC address, and
current address.

Pluggable media
present...

Present pluggable media wavelength, type, and rate. The
error scenarios are:
•

Wavelength, Non-qualified — Dell Force10 ID is not
present, but wavelength information is available from
XFP or SFP serial data

•

Wavelength, F10 unknown—Dell Force10 ID is present,
but not able to determine the optics type

•

Unknown, Non-qualified— if wavelength is reading error,
and F10 ID is not present

Dell Networking allows unsupported SFP and XFP
transceivers to be used, but Dell Networking OS might not
be able to retrieve some data about them. In that case,
typically when the output of this field is “Pluggable media
present, Media type is unknown”, the Medium and the
XFP/SFP receive power reading data might not be present in
the output.

768

Interface index...

Displays the interface index number used by SNMP to
identify the interface.

Internet address...

States whether an IP address is assigned to the interface. If
an IP address is assigned, that address is displayed.

MTU 1554...

Displays link and IP MTU information.

LineSpeed

Displays the interface’s line speed, duplex mode, and Slave.

ARP type:...

Displays the ARP type and the ARP timeout value for the
interface.

Last clearing...

Displays the time when the show interfaces counters
where cleared.

Interfaces

Line

Description

Queuing
strategy...

States the packet queuing strategy. FIFO means first in first
out.

Input Statistics:

Displays all the input statistics including:
•

Number of packets and bytes into the interface

•

Number of packets with VLAN tagged headers

•

Packet size and the number of those packets inbound to
the interface

•

Number of Multicast and Broadcast packets:
– Multicasts = number of MAC multicast packets
– Broadcasts = number of MAC broadcast packets

•

Number of runts, giants, and throttles packets:
– runts = number of packets that are less than 64B
– giants = packets that are greater than the MTU size
– throttles = packets containing PAUSE frames

•

Number of CRC, overrun, and discarded packets:
– CRC = packets with CRC/FCS errors
– overrun = number of packets discarded due to FIFO
overrun conditions
– discarded = the sum of runts, giants, CRC, and
overrun packets discarded without any processing

Output Statistics:

Displays output statistics sent out of the interface including:
•

Number of packets, bytes, and underruns out of the
interface

•

Packet size and the number of those packets outbound
to the interface

•

Number of Multicast, Broadcast, and Unicast packets:
– Multicasts = number of MAC multicast packets
– Broadcasts = number of MAC broadcast packets
– Unicasts = number of MAC unicast packets

•

Number of VLANs, throttles, discards, and collisions::
– Vlans = number of VLAN tagged packets
– throttles = packets containing PAUSE frames
– discarded = number of packets discarded without
any processing
– collisions = number of packet collisions
– wred=count both packets discarded in the MAC and
in the hardware-based queues

Rate information...

Interfaces

Estimate of the input and output traffic rate over a
designated interval (30 to 299 seconds). Traffic rate is

769

Line

Description
displayed in bits, packets per second, and percent of line
rate.

Time since...

Elapsed time since the last interface status change
(hh:mm:ss format).

Example

Dell#show interfaces
TenGigabitEthernet 2/0 is down, line protocol is down
Hardware is DellForce10Eth, address is 00:01:e8:8b:3d:e7
Current address is 00:01:e8:8b:3d:e7
Pluggable media present, Media type is unknown
Wavelength unknown
Interface index is 100992002
Internet address is not set
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed auto
Flowcontrol rx on tx off
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 3d17h53m
Queueing strategy: fifo
Input Statistics:
0 packets, 0 bytes
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts
0 runts, 0 giants, 0 throttles
0 CRC, 0 overrun, 0 discarded
Output Statistics:
0 packets, 0 bytes, 0 underruns
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts, 0 Unicasts
0 throttles, 0 discarded, 0 collisions, 0 wreddrops
Rate info (interval 299 seconds):
Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Time since last interface status change: 3d17h51m

Usage
Information

The Management port is enabled by default (no shutdown). If necessary, use the
ip address command to assign an IP address to the Management port. If two
RPMs are installed in your system, use the show redundancy command to display
which RPM is the Primary RPM.
On the S4810 you can configure two global IPv6 addresses. To view the addresses,
use the show interface managementethernet command. If you try to
configure a third IPv6 address, a message displays. If auto-configuration is enabled,
all IPv6 addresses on that management interface are auto-configured. The first
IPv6 address that is configured on the management interface will be the primary
address. If deleted, it must be re-added; the secondary address is not promoted.

Example (1G
SFP)

770

Dell#show interfaces gigabitethernet 2/0
GigabitEthernet 2/0 is up, line protocol is down
Hardware is Force10Eth, address is 00:01:e8:41:77:95
Current address is 00:01:e8:41:77:95

Interfaces

Pluggable media present, SFP type is 1000BASE-SX
Wavelength is 850nm
Interface index is 100974648
Port will not be disabled on partial SFM failure
Internet address is not set
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 1000 Mbit
Flowcontrol rx on tx on
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 1w0d5h
Queueing strategy: fifo
Input Statistics:
0 packets, 0 bytes
0 Vlans
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts
0 runts, 0 giants, 0 throttles
0 CRC, 0 overrun, 0 discarded
Output Statistics:
0 packets, 0 bytes, 0 underruns
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts, 0 Unicasts
0 Vlans, 0 throttles, 0 discarded, 0 collisions, 0 wreddrops
Rate info (interval 299 seconds):
Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Output 00.00 Mbits/sec, 0 packets/sec,0.00% of line-rate
Time since last interface status change: 1w0d5h
Dell#
Example
(ManagementE
thernet)

Dell#show interfaces managementethernet 0/0

Example
(ManagementE
thernet, two
IPv6 addresses)

Dell#show interfaces managementethernet 0/0

Interfaces

ManagementEthernet 0/0 is up, line protocol is up
Hardware is Force10Eth, address is 00:01:e8:0b:a9:4c
Current address is 00:01:e8:0b:a9:4c
Pluggable media not present
Interface index is 503595208
Internet address is 10.11.201.5/16
Link local IPv6 address: fe80::201:e8ff:fe0b:a94c/64
Global IPv6 address: 2222::5/64
Virtual-IP is not set
Virtual-IP IPv6 address is not set
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 10 Mbit, Mode half duplex
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 04:01:08
Queueing strategy: fifo
Input 943 packets, 78347 bytes, 190 multicast
Received 0 errors, 0 discarded
Output 459 packets, 102388 bytes, 15 multicast
Output 0 errors, 0 invalid protocol
Time since last interface status change: 00:03:09

ManagementEthernet 0/0 is up, line protocol is up

771

Hardware is DellForce10Eth, address is 00:01:e8:a0:bf:f3
Current address is 00:01:e8:a0:bf:f3
Pluggable media not present
Interface index is 302006472
Internet address is 10.16.130.5/16
Link local IPv6 address: fe80::201:e8ff:fea0:bff3/64
Global IPv6 address: 1::1/
Global IPv6 address: 2::1/64
Virtual-IP is not set
Virtual-IP IPv6 address is not set
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 1000 Mbit, Mode full duplex
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 00:06:14
Queueing strategy: fifo
Input 791 packets, 62913 bytes, 775 multicast
Received 0 errors, 0 discarded
Output 21 packets, 3300 bytes, 20 multicast
Output 0 errors, 0 invalid protocol
Time since last interface status change: 00:06:03
Example
(OpenFlow
instance)

Dell#show interfaces vlan 6
Vlan 6 is down, line protocol is down
Address is 00:01:e8:8a:e1:8c, Current address is
00:01:e8:8a:e1:8c
Interface index is 1107525638
of-instance: 2
Internet address is not set

772

Interfaces

MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed auto
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 00:05:12
Queueing strategy: fifo
Time since last interface status change: 00:05:12
Related
Commands

show interfaces configured – displays any interface with a non-default
configuration.
show interfaces switchport – displays Layer 2 information about the interfaces.
show inventory (S-Series and Z-Series) – displays the S-Series and Z-Series switch
types, components (including media), Dell Networking OS version including
hardware identification numbers, and configured protocols.
show ip interface – displays Layer 3 information about the interfaces.
show range – displays all interfaces configured using the interface range
command.

show interfaces configured
Display any interface with a non-default configuration.

S4810
Syntax

show interfaces configured

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Changed the organization of the display output.

773

Example

Dell#show interfaces configured
GigabitEthernet 13/18 is up, line protocol is up
Hardware is Force10Eth, address is 00:01:e8:05:f7:fc
Current address is 00:01:e8:05:f7:fc
Interface index is 474791997
Internet address is 1.1.1.1/24
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 1000 Mbit, Mode full duplex, Master
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interfaces" counters 00:12:42
Queueing strategy: fifo
Input Statistics:
10 packets, 10000 bytes
0 Vlans
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 10 over 511-byte pkts, 0 over 1023byte pkts
0 Multicasts, 0 Broadcasts
0 runts, 0 giants, 0 throttles
0 CRC, 0 overrun, 0 discarded
Output Statistics:
1 packets, 64 bytes, 0 underruns
1 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 1 Broadcasts, 0 Unicasts
0 Vlans, 0 throttles, 0 discarded, 0 collisions
Rate info (interval 299 seconds):
Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Time since last interface status change: 00:04:59
Dell#

Related
Commands

show interfaces — displays information on a specific physical interface or virtual
interface.

show interfaces dampening
Display interface dampening information.

S4810
Syntax
Parameters

show interfaces dampening [[interface] [summary] [detail]]
interface

(Optional) Enter one of the following keywords and slot/port
or number information:
•
•
•

summary

774

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword summary to display the
current summary of dampening data, including the number
of interfaces configured and the number of interfaces
suppressed, if any.

Interfaces

detail

(OPTIONAL) Enter the keyword detail to display detailed
interface dampening data.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced

Example

Dell#show interfaces dampening
Interface Supp
Flaps Penalty Half-Life Reuse Suppress Max-Sup
State
Gi 3/2
Up
0
0
20
800
4500
120
Gi 3/10
Up
0
0
5
750
2500
20
Dell#

Related
Commands

dampening — configures dampening on an interface.
show interfaces — displays information on a specific physical interface or virtual
interface.
show interfaces configured — displays any interface with a non-default
configuration.

show interfaces phy
Display auto-negotiation and link partner information.

S4810
Syntax

Interfaces

show interfaces gigabitethernet slot/port phy

775

Parameters

gigabitethernet

Enter the keyword gigabitethernet then the slot/port
information.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

776

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 6.5.4.0

Introduced on the E-Series.

The following describes the show interfaces gigabitethernet command
following example.
Mode Control

Indicates if auto negotiation is enabled. If so, indicates
the selected speed and duplex.

Mode Status

Displays auto negotiation fault information. When the
interface completes auto negotiation successfully, the
autoNegComplete field and the linkstatus field read
“True.”

AutoNegotiatio
n Advertise

Displays the control words the local interface advertises
during negotiation. Duplex is either half or full. Asym- and
Sym Pause is the types of flow control the local interface
supports.

AutoNegotiatio
n Remote
Partner’s Ability

Displays the control words the remote interface advertises
during negotiation. Duplex is either half or full. Asym- and
Sym Pause is the types of flow control the remote interface
supports.

AutoNegotiatio
n Expansion

ParallelDetectionFault is the handshaking scheme in which
the link partner continuously transmit an “idle” data packet
using the Fast Ethernet MLT-3 waveform. Equipment that
does not support auto-negotiation must be configured to
exactly match the mode of operation as the link partner or
else no link can be established.

Interfaces

1000Base-T
Control

1000Base-T requires auto-negotiation. The IEEE Ethernet
standard does not support setting a speed to 1000 Mbps
with the speed command without auto-negotiation. ESeries line cards support both full-duplex and half-duplex
1000BaseT.

Phy Specific
Control

Values are:

Phy Specific
Status

•

0 - Manual MDI

•

1 - Manual MDIX

•

2 - N/A

•

3 - Auto MDI/MDIX

Displays PHY-specific status information. Cable length
represents a rough estimate in meters:
•

0 - < 50 meters

•

1 - 50 - 80 meters

•

2 - 80 - 110 meters

•

3 - 110 - 140 meters

•

4 - 140 meters

Link Status: Up or Down
Speed:

Example

Interfaces

•

Auto

•

1000MB

•

100MB

•

10MB

Dell#show int gigabitethernet 1/0 phy
Mode Control:
SpeedSelection:
10b
AutoNeg:
ON
Loopback:
False
PowerDown:
False
Isolate:
False
DuplexMode:
Full
Mode Status:
AutoNegComplete:
False
RemoteFault:
False
LinkStatus:
False
JabberDetect:
False
AutoNegotation Advertise:
100MegFullDplx:
True
100MegHalfDplx:
True
10MegFullDplx:
False
10MegHalfDplx:
True
Asym Pause:
False
Sym Pause:
False
AutoNegotiation Remote Partner's Ability:
100MegFullDplx:
False
100MegHalfDplx:
False
10MegFullDplx:
False

777

10MegHalfDplx:
False
Asym Pause:
False
Sym Pause:
False
AutoNegotiation Expansion:
ParallelDetectionFault: False
...
Related
Commands

show interfaces — displays information on a specific physical interface or virtual
interface.

show interfaces stack-unit
Display information on all interfaces on a specific S-Series or Z-Series stack member.

S4810
Syntax
Parameters

Command
Modes
Command
History

show interfaces stack-unit unit-number
unit-number

•
•

Enter the stack member number. The range is from 0 to 11
for the S4810.

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

778

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Dell#show interfaces stack-unit 0
GigabitEthernet 0/1 is down, line protocol is down
Hardware is Force10Eth, address is 00:01:e8:4c:f2:82
Current address is 00:01:e8:4c:f2:82
Pluggable media not present
Interface index is 34129154
Internet address is not set
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed auto, Mode auto
ARP type: ARPA, ARP Timeout 04:00:00
Last clearing of "show interface" counters 3w0d17h
Queueing strategy: fifo
Input Statistics:
0 packets, 0 bytes
5144 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts

Interfaces

0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts
0 runts, 0 giants, 0 throttles
0 CRC, 0 overrun, 0 discarded
Output Statistics:
0 packets, 0 bytes, 0 underruns
0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts
0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte
pkts
0 Multicasts, 0 Broadcasts, 0 Unicasts
0 throttles, 0 discarded, 0 collisions
Rate info (interval 299 seconds):
Input 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Output 00.00 Mbits/sec, 0 packets/sec, 0.00% of line-rate
Time since last interface status change: 3w0d17h
GigabitEthernet 0/2 is down, line protocol is down
Hardware is Force10Eth, address is 00:01:e8:4c:f2:83
Current address is 00:01:e8:4c:f2:83
!-------------output truncated ----------------!
Related
Commands

show hardware stack-unit — displays data plane and management plane input/
output statistics.
show interfaces — displays information on a specific physical interface or virtual
interface.

show interfaces status
S4810
Syntax
Parameters

show interfaces [interface | linecard slot-number] status
interface

linecard slotnumber
Defaults

none

Command
Modes

•

Interfaces

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Loopback interface, enter the keyword loopback
then the slot/port information. The range is from 0 to
16383.

•

For a Port-Channel interface, enter the keyword portchannel then the slot/port information. The range is
from 0 to 128.

(OPTIONAL) Enter the keyword linecard then the slot
number.

EXEC

779

•
Command
History

EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced on the E-Series.

Example

Dell#show interfaces status
Port
Description Status Speed
Duplex Vlan
Gi 0/0
Up
1000 Mbit Auto
-Gi 0/1
Down
Auto
Auto
1
Gi 0/2
Down
Auto
Auto
1
Gi 0/3
Down
Auto
Auto
-Gi 0/4 DellPort Up
1000 Mbit Auto
30-130
Gi 0/5
Down
Auto
Auto
-Gi 0/6
Down
Auto
Auto
-Gi 0/7
Up
1000 Mbit Auto
1502,1504,1506-1508,1602
Gi 0/8
Down
Auto
Auto
-Gi 0/9
Down
Auto
Auto
-Gi 0/10
Down
Auto
Auto
-Gi 0/11
Down
Auto
Auto
-Gi 0/12
Down
Auto
Auto
-Gi 0/13
Down
Auto
Auto
-Gi 0/14
Down
Auto
Auto
-Gi 0/15
Down
Auto
Auto
Dell#

Related
Commands

show interfaces — displays information on a specific physical interface or virtual
interface.

780

Interfaces

show interfaces switchport
Display only virtual and physical interfaces in Layer 2 mode. This command displays the Layer 2 mode
interfaces’ IEEE 802.1Q tag status and VLAN membership.

S4810
Syntax
Parameters

show interfaces switchport [interface | stack-unit unit-id ]
interface

stack-unit unitid

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

Enter the keyword backup to view the backup interface
for this interface.

(OPTIONAL) Enter the keywords stack-unit then the stack
member number. This option is available only on S-Series.
The range is from 0 to 5.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Added support for 4093 VLANs on E-Series ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Support added for hybrid port/native VLAN, introduced on
the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

781

E-Series legacy
command
Usage
Information

Example

The following describes the show interfaces switchport command for the
following example.
Items

Description

Name

Displays the interface’s type, slot, and port number.

802.1QTagged

Displays whether if the VLAN tagged (“True”), untagged
(“False”), or hybrid (“Hybrid”), which supports both untagged
and tagged VLANs by port 13/0.

Vlan membership

Lists the VLANs to which the interface is a member. Starting
with Dell Networking OS version 7.6.1, this field can display
native VLAN membership by port 13/0.

Dell#show interfaces switchport
Name: GigabitEthernet 13/0
802.1QTagged: Hybrid
Vlan membership:
Vlan
2, Vlan 20
Native VlanId: 20
Name: GigabitEthernet 13/1
802.1QTagged: True
Vlan membership:
Vlan
2
Name: GigabitEthernet 13/2
802.1QTagged: True
Vlan membership:
Vlan
2
Name: GigabitEthernet 13/3
802.1QTagged: True
Vlan membership:
Vlan
2
--More--

Related
Commands

interface — configures a physical interface on the switch.
show ip interface — displays Layer 3 information about the interfaces.
show interfaces — displays information on a specific physical interface or virtual
interface.
show interfaces transceiver — displays the physical status and operational status of
an installed transceiver. The output also displays the transceiver’s serial number.

782

Interfaces

show interfaces transceiver
Display the physical status and operational status of an installed transceiver. The output also displays the
transceiver’s serial number.

Syntax
Parameters

show interfaces [tengigabitethernet slot/port | fortyGigE slot/
port] transceiver
tengigabitether
net

For a 10G interface, enter the keyword
tengigabitethernet then the slot/port information.

fortyGigE

For a 40G interface, enter the keyword fortyGigE then the
slot/port information.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Interfaces

Version 9.0.2.0

Introduced on theS6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Output augmented with diagnostic data for pluggable media.

Version 7.7.1.0

Removed three fields in the output: Vendor Name, Vendor
OUI, and Vendor PN.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 6.5.4.0

Introduced on the E-Series.

The following describes the show interfaces transceiver command shown
in the following example.
Line

Description

Rx Power
measurement
type

Output depends on the vendor, typically either “Average” or
“OMA” (Receiver optical modulation amplitude).

783

784

Line

Description

Temp High Alarm
threshold

Factory-defined setting, typically in Centigrade. Value differs
between SFPs and SFP+.

Voltage High
Alarm threshold

Displays the interface index number used by SNMP to
identify the interface.

Bias High Alarm
threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

TX Power High
Alarm threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

RX Power High
Alarm threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Temp Low Alarm
threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Voltage Low
Alarm threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Bias Low Alarm
threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

TX Power Low
Alarm threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

RX Power Low
Alarm threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Temp High
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Voltage High
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Bias High Warning
threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

TX Power High
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

RX Power High
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Temp Low
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Voltage Low
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Bias Low Warning
threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

TX Power Low
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Interfaces

Interfaces

Line

Description

Power Low
Warning threshold

Factory-defined setting. Value can differ between SFP and
SFP+.

Temperature

Current temperature of the SFPs. If this temperature crosses
Temp High alarm/warning thresholds, the temperature high
alarm/warning flag is set to true.

Voltage

Current voltage of the SFPs. If this voltage crosses voltage
high alarm/warning thresholds, the voltage high alarm/
warning flag is set to true.

Tx Bias Current

Present transmission (Tx) bias current of the SFP. If this
crosses bias high alarm/warning thresholds, the TX bias high
alarm/warning flag is set to true. If it falls below the low
alarm/warning thresholds, the TX bias low alarm/warning
flag is set to true.

Tx Power

Present Tx power of the SFP. If this crosses Tx power alarm/
warning thresholds, the Tx power high alarm/warning flag is
set to true. If it falls below the low alarm/warning
thresholds, the Tx power low alarm/ warning flag is set to
true.

Rx Power

Present receiving (Rx) power of the SFP. This value is either
average Rx power or OMA. This depends on the Rx Power
measurement type displayed above. If this crosses Rx power
alarm/warning thresholds, the Rx power high alarm/warning
flag is set to true. If it falls below the low alarm/warning
thresholds, the Rx power low alarm/warning flag is set to
true.

Data Ready state
Bar

This field indicates that the transceiver has achieved power
up and data is ready. This is set to true if data is ready to be
sent and set to false if data is being transmitted.

Rx LOS state

This is the digital state of the Rx_LOS output pin. This is set
to true if the operating status is down.

Tx Fault state

This is the digital state of the Tx Fault output pin.

Rate Select state

This is the digital state of the SFP rate_select input pin.

RS state

This is the reserved digital state of the pin AS(1) per
SFF-8079 and RS(1) per SFF-8431.

Tx Disable state

If the admin status of the port is down then this flag is set to
true.

Temperature High
Alarm Flag

This can be either true or false, depending on the Current
voltage value displayed above.

Voltage High
Alarm Flag

This can be either true or false, depending on the Current
Temperature value displayed above.

785

Example

Line

Description

Tx Bias High
Alarm Flag

This can be either true or false, depending on the present Tx
bias current value displayed above.

Tx Power High
Alarm Flag

This can be either true or false, depending on the Current Tx
bias power value displayed above.

Rx Power High
Alarm Flag

This can be either true or false, depending on the Current Rx
power value displayed above.

Temperature Low
Alarm Flag

This can be either true or false, depending on the Current
Temperature value displayed above.

Voltage Low
Alarm Flag

This can be either true or false, depending on the Current
voltage value displayed above.

Tx Bias Low Alarm
Flag

This can be either true or false, depending on the Tx bias
current value displayed above.

Tx Power Low
Alarm Flag

This can be either true or false, depending on the Current Tx
power value displayed above.

Rx Power Low
Alarm Flag

This can be either true or false, depending on the Current Rx
power value displayed above.

Temperature High
Warning Flag

This can be either true or false, depending on the Current
Temperature value displayed above.

Voltage High
Warning Flag

This can be either true or false, depending on the Current
Voltage value displayed above.

Tx Bias High
Warning Flag

This can be either true or false, depending on the Tx bias
current value displayed above.

Tx Power High
Warning Flag

This can be either true or false, depending on the Current Tx
power value displayed above.

Rx Power High
Warning Flag

This can be either true or false, depending on the Current Tx
power value displayed above.

Temperature Low
Warning Flag

This can be either true or false, depending on the Current
Temperature value displayed above.

Voltage Low
Warning Flag

This can be either true or false, depending on the Current
Voltage value displayed above.

Tx Bias Low
Warning Flag

This can be either true or false, depending on the present Tx
bias current value displayed above.

Tx Power Low
Warning Flag

This can be either true or false, depending on the Current Tx
power value displayed above.

Rx Power Low
Warning Flag

This can be either true or false, depending on the Current Rx
power value displayed above.

Dell#show interfaces gigabitethernet 1/0 transceiver
SFP is present.
SFP 0 Serial Base ID fields

786

Interfaces

SFP 0
SFP 0
SFP 0
SFP 0
0x05
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0
SFP 0

Id
= 0x03
Ext Id
= 0x04
Connector
= 0x07
Transciever Code = 0x00 0x00 0x00 0x01 0x20 0x40 0x0c
Encoding
= 0x01
BR Nominal
= 0x15
Length(9um) Km
= 0x00
Length(9um) 100m
= 0x00
Length(50um) 10m
= 0x1e
Length(62.5um) 10m = 0x0f
Length(Copper) 10m = 0x00
Vendor Rev
= A
Laser Wavelength
= 850 nm
CheckCodeBase
= 0x66
Serial Extended ID fields
Options
= 0x00 0x12
BR max= 0
BR min= 0
Vendor SN= P5N1ACE
Datecode
= 040528
CheckCodeExt
= 0x5b

SFP 1 Diagnostic Information
===================================
SFP 1 Rx Power measurement type
=
===================================
SFP 1 Temp High Alarm threshold
SFP 1 Voltage High Alarm threshold
SFP 1 Bias High Alarm threshold
SFP 1 TX Power High Alarm threshold
SFP 1 RX Power High Alarm threshold
SFP 1 Temp Low Alarm threshold
SFP 1 Voltage Low Alarm threshold
SFP 1 Bias Low Alarm threshold
SFP 1 TX Power Low Alarm threshold
SFP 1 RX Power Low Alarm threshold
===================================
SFP 1 Temp High Warning threshold
SFP 1 Voltage High Warning threshold
SFP 1 Bias High Warning threshold
SFP 1 TX Power High Warning threshold
SFP 1 RX Power High Warning threshold
SFP 1 Temp Low Warning threshold
SFP 1 Voltage Low Warning threshold
SFP 1 Bias Low Warning threshold
SFP 1 TX Power Low Warning threshold
SFP 1 RX Power Low Warning threshold
===================================
SFP 1 Temperature
SFP 1 Voltage
SFP 1 Tx Bias Current
SFP 1 Tx Power
SFP 1 Rx Power
===================================
SFP 1 Data Ready state Bar
SFP 1 Rx LOS state
SFP 1 Tx Fault state
SFP 1 Rate Select state
SFP 1 RS state
SFP 1 Tx Disable state
===================================
SFP 1 Temperature High Alarm Flag
SFP 1 Voltage High Alarm Flag

Interfaces

Average
=
=
=
=
=
=
=
=
=
=

95.000C
3.900V
17.000mA
0.631mW
1.259mW
-25.000C
2.700V
1.000mA
0.067mW
0.010mW

=
=
=
=
=
=
=
=
=
=

90.000C
3.700V
14.000mA
0.631mW
0.794mW
-20.000C
2.900V
2.000mA
0.079mW
0.016mW

=
=
=
=
=

39.930C
3.293V
6.894mA
0.328mW
0.000mW

=
=
=
=
=
=

False
True
False
False
False
False

= False
= False

787

SFP 1 Tx Bias High Alarm Flag
= False
SFP 1 Tx Power High Alarm Flag
= False
SFP 1 Rx Power High Alarm Flag
= False
SFP 1 Temperature Low Alarm Flag
= False
SFP 1 Voltage Low Alarm Flag
= False
SFP 1 Tx Bias Low Alarm Flag
= False
SFP 1 Tx Power Low Alarm Flag
= False
SFP 1 Rx Power Low Alarm Flag
= True
===================================
!-------output truncated -------------------------!
Related
Commands

interface — configures a physical interface on the switch.
show ip interface — displays Layer 3 information about the interfaces.
show interfaces — displays information on a specific physical interface or virtual
interface.
show inventory (S-Series and Z-Series) — displays the switch type, components
(including media), Dell Networking OS version including hardware identification
numbers and configured protocols.

show range
Display all interfaces configured using the interface range command.

S4810
Syntax

show range

Command
Modes

INTERFACE RANGE (config-if-range)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

788

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4093 VLANs on E-Series ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced.

Interfaces

Example

Dell(conf-if-range-so-2/0-1,fa-0/0)#show range
interface sonet 2/0 - 1
interface fastethernet 0/0
Dell(conf-if-range-so-2/0-1,fa-0/0)#

Related
Commands

interface — configures a physical interface on the switch.
show ip interface — displays Layer 3 information about the interfaces.
show interfaces — displays information on a specific physical interface or virtual
interface.

show running-config ecmp-group
Display interfaces, LAG, or LAG link bundles being monitored for uneven traffic distribution using the
ecmp-group monitoring enable command. The ECMP group could have a LAG or a list of 10G/40
interfaces (not just LAG link-bundles).

S4810
Syntax

show running-config ecmp-group

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

ecmp-group — configures a mechanism to monitor traffic distribution.

shutdown
Disable an interface.

S4810
Syntax

shutdown
To activate an interface, use the no shutdown command.

Interfaces

789

Defaults

The interface is disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

The shutdown command marks a physical interface as unavailable for traffic. To
discover if an interface is disabled, use the show ip interface brief
command. Disabled interfaces are listed as down.
Disabling a VLAN or a port channel causes different behavior. When a VLAN is
disabled, the Layer 3 functions within that VLAN are disabled. Layer 2 traffic
continues to flow. Entering the shutdown command on a port channel disables all
traffic on the port channel and the individual interfaces within the port channel. To
enable a port channel, enter no shutdown on the port channel interface and at
least one interface within that port channel.
The shutdown and description commands are the only commands that you
can configure on an interface that is a member of a port channel.

Related
Commands

interface port-channel — creates a port channel interface.
interface vlan — creates a VLAN.
show ip interface — displays the interface routing status. Add the keyword brief
to display a table of interfaces and their status.

790

Interfaces

speed (for 10/100/1000 interfaces)
Set the speed for 10/100/1000 Base-T Ethernet interfaces. Set both sides of a link to the same speed
(10/100/1000) or to auto or the link may not come up.

S4810
Syntax

speed {10 | 100 | 1000 | auto}
To return to the default setting, use the no speed {10 | 100 | 1000}
command.

Parameters

10

Enter the keyword 10 to set the interface’s speed to 10 Mb/s.
NOTE: This interface speed is not supported on the LCEH-GE-50P or the LC-EJ-GE-50P card. If the command
is entered for these interfaces, an error message appears.

100

Enter the keyword 100 to set the interface’s speed to 10/100
Mb/s.
NOTE: When this setting is enabled, only 100Base-FX
optics are supported on the LC-EH-GE-50P or the LCEJ-GE-50P card.

1000

Enter the keyword 1000 to set the interface’s speed to 1000
Mb/s. Auto-negotiation is enabled. For more information,
refer to negotiation auto.
NOTE: When this setting is enabled, only 100oBase-FX
optics are supported on the LC-EH-GE-50P or the LCEJ-GE-50P card.

auto

Enter the keyword auto to set the interface to autonegotiate its speed. Auto-negotiation is enabled. For more
information, refer to negotiation auto.

Defaults

auto

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

791

Version 8.3.1.0

Supported on LC-EH-GE-50P or the LC-EJ-GE-50P cards.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

This command is found on the 10/100/1000 Base-T Ethernet interfaces.
When you enable auto, the system performs an automatic discovery to determine
the optics installed and configure the appropriate speed.
When you configure a speed for the 10/100/1000 interface, confirm the
negotiation auto command setting. Both sides of the link must have autonegotiation either enabled or disabled. For speed settings of 1000 or auto, the
software sets the link to auto-negotiation and you cannot change that setting.
NOTE: Starting with Dell Networking OS version 7.8.1.0, when you use a
copper SFP2 module with catalog number GP-SFP2-1T in the S25P model of
the S-Series, you can manually set its speed with the speed command. When
you set the speed to 10 or 100 Mbps, you can also use the duplex command.

Related
Commands

duplex (10/100 Interfaces) — configures duplex mode on physical interfaces with
the speed set to 10/100.
negotiation auto — enables or disables auto-negotiation on an interface.

speed (Management interface)
Set the speed for the Management interface.

S4810
Syntax

speed {10 | 100 | 1000 | auto}
To return to the default setting, use the no speed command.

Parameters

792

10

Enter the keyword 10 to set the interface’s speed to 10 Mb/s.

100

Enter the keyword 100 to set the interface’s speed to 10/100
Mb/s.

1000

Enter the keyword 1000 to set the interface to autonegotiate its speed.

auto

Enter the keyword auto to set the interface to autonegotiate its speed.

Interfaces

Defaults

auto

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.11.1

Introduced on the S55, S60, and S4810

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

Usage
Information

This command is found on the Management interface only.

Related
Commands

interface ManagementEthernet — configures the Management port on the system
(either the Primary or Standby RPM).
duplex (10/100 Interfaces) — configures duplex mode on physical interfaces with
the speed set to 10/100.
management route — configures a static route that points to the Management
interface or a forwarding router.

stack-unit portmode
You can split a single 40G port into four-10G ports.

S4810
Syntax
Parameters

Defaults

Interfaces

stack-unit stack-unit port number portmode quad
stack-unit

Enter the stack member unit identifier of the stack member
to reset. For the S4810, the range is from 0 to 11.

number

Enter the port number of the 40G port to be split. Enter one
of the following port numbers: 48, 52, 56, or 60.

Disabled.

793

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Splitting a 40G port into 4x10G port is supported on standalone and stacked units.
Split ports cannot be used as stack-link to stack an S4810 system.
The quad port must be in a default configuration before it can be split into 4x10G
ports. The 40G port is lost in the config when the port is split, so be sure that the
port is also removed from other L2/L3 feature configurations.
The system must be reloaded after issuing the CLI for the change to take effect.
This command cannot be used if LR4 optics are inserted on the 40G interface.

Example (stack
unit – Warning
message when
13 ports are
configured in
any port range)

Dell(conf)#stack-unit 0 po 48 po q
Maximum number of ports that can be made Quad mode in the
range <0-63> is configured. Ports 52,56,60, will be disabled
on reload.
Do you wish to continue? [confirm yes/no]:yes
Please save and reset unit 0 for the changes to take effect.
Dell(conf)#

switchport
Place an interface in Layer 2 mode.

S4810
Syntax

switchport [backup interface {gigabit slot/port | tengigabit
slot/port | fortyGigE slot/port | port-channel number}]
To remove an interface from Layer 2 mode and place it in Layer 3 mode, enter the
no switchport command. If a switchport backup interface is configured, first
remove the backup configuration. To remove a switchport backup interface, enter
the no switchport backup interface {gigabit slot/port |
tengigabit slot/port | fortyGigE slot/port | port-channel
number} command.

794

Interfaces

Parameters

backup
interface

Use this option to configure a redundant Layer 2 link without
using Spanning Tree. The keywords backup interface
configures a backup port so that if the primary port fails, the
backup port changes to the up state. If the primary later
comes up, it becomes the backup.

gigabit

Enter the keyword gigabit if the backup port is a 1G port.

tengigabit

Enter the keyword tengigabit if the backup port is a 10G
port.

fortyGigE

Enter the keyword fortyGigE if the backup port is a 40G
port.

port-channel

Enter the keywords port-channel if the backup port is a
static or dynamic port channel.

slot/port

Specify the line card and port number of the backup port.

Defaults

Disabled (The interface is in Layer 3 mode.)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.4.1.0

Added support for port-channel interfaces (the portchannel number option).

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Added the backup interface option.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

If an IP address or VRRP group is assigned to the interface, you cannot use the
switchport command on the interface. To use the switchport command on an

795

interface, only the no ip address and no shutdown statements must be
listed in the show config output.
When you enter the switchport command, the interface is automatically added
to the default VLAN.
To use the switchport backup interface command on a port, first enter the
switchport command. For more information, refer to the “Configuring
Redundant Links” section in the “Layer 2” chapter of the Dell Networking OS
Configuration Guide.
Related
Commands

interface port-channel — creates a port channel interface.
show interfaces switchport — displays information about switchport interfaces.

Egress Interface Selection (EIS) Commands
The following commands are Egress Interface Selection (EIS) commands.

application
Configure the management egress interface selection.

S4810
Syntax

application {all | application-type}
To remove a management application configuration, use the no application
{all | application-type} command.

Parameters

796

applicationtype

Enter any of the following keywords:
•

For DNS, enter the keyword dns.

•

For FTP, enter the keyword ftp.

•

For NTP, enter the keyword ntp.

•

For Radius, enter the keyword radius.

•

For sFlow collectors, enter the keyword sflowcollector.

•

For SNMP (traps and MIB responses), enter the keywords
snmp .

•

For SSH, enter the keyword ssh .

•

For Syslog, enter the keyword syslog.

•

For TACACS, enter the keyword tacacs.

•

For Telnet, enter the keyword telnet.

•

For TFTP, enter the keyword tftp.

Interfaces

all

Configure all applications.

Defaults

None.

Command
Modes

EIS Mode (conf-mgmt-eis)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Introduced on the Z9000, S4810, and S4820T.

application (for HTTP and ICMP)
Configure the management egress interface selection for HTTP and ICMP.
NOTE: Only the options that have been newly introduced are described here. For a complete
description on all of the keywords and variables that are available with this command, refer the
respective Command Reference Guide of the applicable platform of the Release 9.2(0.0)
documentation set.

S4810
Syntax

application {all | application-type}
To remove a management application configuration, use the no application
{all | application-type} command.

Parameters

applicationtype

all

Enter any of the following keywords:
•

For HTTP, enter the keyword http.

•

For ICMP, enter the keyword icmp.

Configure all applications.

Defaults

None.

Command
Modes

EIS Mode (conf-mgmt-eis)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.3.
(0.0)

Interfaces

Added support for the HTTP and ICMP traffic on the Z9000,
S4810, and S4820T.

797

clear management application pkt-cntr
Clear management application packet counters for all management application types.

S4810
Syntax

clear management application pkt-cntr

Defaults

None.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Introduced on the Z9000, S4810, and S4820T.

clear management application pkt-fallback-cntr
Clear management application packet fallback counters for all management application types.

S4810
Syntax

clear management application pkt—fallback-cntr

Defaults

None.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Introduced on the Z9000, S4810, and S4820T.

management egress-interface-selection
To make configured application traffic egress through the management port instead of the front-end (FE)
port, enable and configure a management egress interface.

S4810
Syntax

798

management egress-interface-selection

Interfaces

To disable and remove management egress interface selection (EIS) configurations,
use the no management egress-interface-selection command.
Defaults

None.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

show ip management-eis-route
Display the management routes used by EIS.

S4810
Syntax

show ip management-eis-route

Defaults

None.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Example

Introduced on the Z9000, S4810, and S4820T.

Dell#show ip management-eis-route
Destination
Gateway
----------------10.11.0.0/16
ManagementEthernet 0/0
172.16.1.0/24 10.11.192.4

State
----Connected
Active

Route Source
-----------Connected
Static

show management application pkt-cntr
Display the number of packets for each application type that have taken the management route.

S4810
Syntax

show management application pkt-cntr

Defaults

None.

Interfaces

799

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Example

Introduced on the Z9000, S4810, and S4820T.

Dell#show management
dns
:
ftp
:
ntp
:
radius
:
sflow-collector :
snmp
:
ssh
:
syslog
:
tacacs
:
telnet
:
tftp
:

application pkt-cntr
2
0
0
0
0
0
0
0
0
0
0

show management application pkt-fallback-cntr
Display the number of packets for each application type that have been rerouted to the default routing
table due to management port or route lookup failure.

S4810
Syntax

show management application pkt—fallback-cntr

Defaults

None.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Example

800

Introduced on the Z9000, S4810, and S4820T.

Dell#show management
dns
:
ftp
:
ntp
:
radius
:
sflow-collector :
snmp
:
ssh
:
syslog
:
tacacs
:

application pkt-fallback-cntr
0
0
0
0
0
0
2
0
0

Interfaces

telnet
tftp

:
:

0
0

Port Channel Commands
A Link Aggregation Group (LAG) is a group of links that appear to a MAC client as if they were a single link
according to IEEE 802.3ad. In Dell Networking OS, a LAG is referred to as a Port Channel.
•

For the S-Series, the maximum port channel ID is 128 and the maximum members per port channel is
8.

Because each port can be assigned to only one Port Channel, and each Port Channel must have at least
one port, some of those nominally available Port Channels might have no function because they could
have no members if there are not enough ports installed. In the S-Series, stack members can provide
those ports.
NOTE: The Dell Networking OS implementation of LAG or Port Channel requires that you configure
a LAG on both switches manually. For information about Dell Networking OS link aggregation
control protocol (LACP) for dynamic LAGs, refer to the Link Aggregation Control Protocol (LACP)
chapter. For more information about configuring and using Port Channels, refer to the Dell
Networking OS Configuration Guide.

channel-member
Add an interface to the Port Channel, while in INTERFACE PORTCHANNEL mode.

S4810
Syntax

channel-member interface
To delete an interface from a Port Channel, use the no channel-member
interface command.

Parameters

interface

(OPTIONAL) Enter any of the following keywords and slot/
port or number information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Not configured.

Command
Modes

INTERFACE PORTCHANNEL

Interfaces

801

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

Use the interface port-channel command to access this command.
You cannot add an interface to a Port Channel if the interface contains an IP
address in its configuration. Only the shutdown, description, mtu, and ip mtu
commands can be configured on an interface if it is added to a Port Channel. The
mtu and ip mtu commands are only available when the chassis is in Jumbo mode.
Link MTU and IP MTU considerations for Port Channels are:
•

All members must have the same link MTU value and the same IP MTU value.

•

The Port Channel link MTU and IP MTU must be less than or equal to the link
MTU and IP MTU values configured on the channel members. For example, if
the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s
MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU.

When an interface is removed from a Port Channel with the no channel-member
command, the interface reverts to its configuration prior to joining the Port
Channel.
An interface can belong to only one Port Channel.
On the E-Series TeraScale, you can add up to 16 interfaces to a Port Channel; ESeries ExaScale can add up to 64. You can have eight interfaces per Port Channel
on the C-Series and S-Series. The interfaces can be located on different line cards
but must be the same physical type and speed (for example, all 1-Gigabit Ethernet
interfaces). However, you can combine 100/1000 interfaces and GE interfaces in
the same Port Channel.
If the Port Channel contains a mix of interfaces with 100 Mb/s speed and 1000
Mb/s speed, the software disables those interfaces whose speed does not match

802

Interfaces

the speed of the first interface configured and enabled in the Port Channel. If that
first interface goes down, the Port Channel does not change its designated speed;
disable and re-enable the Port Channel or change the order of the channel
members configuration to change the designated speed. If the Port Channel
contains a mix of interfaces with 100 Mb/s speed and 1000 Mb/s speed, the
software disables those interfaces whose speed does not match the speed of the
first interface configured and enabled in the Port Channel. If that first interface
goes down, the Port Channel does not change its designated speed; disable and
re-enable the Port Channel or change the order of the channel members
configuration to change the designated speed. For more information about Port
Channels, refer to the Dell Networking OS Configuration Guide.
Related
Commands

description — assigns a descriptive text string to the interface.
interface port-channel — creates a Port Channel interface.
shutdown — disables/enables the port channel.

group
Group two LAGs in a supergroup (“fate-sharing group” or “failover group”).

S4810
Syntax

group group_number port-channel number port-channel number
To remove an existing LAG supergroup, use the no group group_number
command.

Parameters

group_number

Enter an integer from 1 to 32 that uniquely identifies this LAG
fate-sharing group.

port-channel
number

Enter the keywords port-channel then an existing LAG
number. Enter this keyword/variable combination twice,
identifying the two paired LAGs.

Defaults

none

Command
Modes

PORT-CHANNEL FAILOVER-GROUP (conf-po-failover-grp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

803

Related
Commands

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series, E-Series, and S-Series.

port-channel failover-group — accesses PORT-CHANNEL FAILOVER-GROUP
mode to configure a LAG failover group.
show interfaces port-channel — displays information on configured Port Channel
groups.

interface port-channel
Create a Port Channel interface, which is a link aggregation group (LAG) containing eight physical
interfaces on the S-Series.

S4810
Syntax

interface port-channel channel-number
To delete a Port Channel, use the no interface port-channel channelnumber command.

Parameters

channelnumber

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

804

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on S4810.

Version 8.3.11.1

Introduced on Z9000.

Version 8.1.1.0

Introduced on E-Series ExaScale.

Version 7.6.1.0

Introduced on S-Series.

Version 7.5.1.0

Introduced on C-Series.

Interfaces

pre-Version
6.2.1.0
Usage
Information

Introduced on E-Series.

Port Channel interfaces are logical interfaces and can be either in Layer 2 mode (by
using the switchport command) or Layer 3 mode (by configuring an IP address).
You can add a Port Channel in Layer 2 mode to a VLAN.
The shutdown, description, and name commands are the only commands that
you can configure on an interface while it is a member of a Port Channel. To add a
physical interface to a Port Channel, the interface can only have the shutdown,
description, and name commands configured. The Port Channel’s configuration
is applied to the interfaces within the Port Channel.
A Port Channel can contain both 100/1000 interfaces and GE interfaces. Based on
the first interface configured in the Port Channel and enabled, Dell Networking OS
determines if the Port Channel uses 100 Mb/s or 1000 Mb/s as the common speed.
For more information, refer to channel-member.
If the line card is in a Jumbo mode chassis, you can also configure the mtu and ip
mtu commands. The Link MTU and IP MTU values configured on the channel
members must be greater than the Link MTU and IP MTU values configured on the
Port Channel interface.
NOTE: In a Jumbo-enabled system, all members of a Port Channel must be
configured with the same link MTU values and the same IP MTU values.

Example

Dell(conf)#int port-channel 2
Dell(conf-if-po-2)#

Related
Commands

channel-member — adds a physical interface to the LAG.
interface — configures a physical interface.
interface loopback — configures a Loopback interface.
interface null — configures a null interface.
interface vlan — configures a VLAN.
shutdown — disables/enables the port channel.

minimum-links
Configure the minimum number of links in a LAG (Port Channel) that must be in “oper up” status for the
LAG to be also in “oper up” status.

S4810
Syntax

Interfaces

minimum-links number

805

Parameters

number

Enter the number of links in a LAG that must be in “oper up”
status. The range is from 1 to 16. The default is 1.

Defaults

1

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

If you use this command to configure the minimum number of links in a LAG that
must be in “oper up” status, the LAG must have at least that number of “oper up”
links before it can be declared as up. For example, if the required minimum is four,
and only three are up, the LAG is considered down.

port-channel failover-group
To configure a LAG failover group, access PORT-CHANNEL FAILOVER-GROUP mode.

S4810
Syntax

port-channel failover-group
To remove all LAG failover groups, use the no port-channel failover-group
command.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

806

Interfaces

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Usage
Information

This feature groups two LAGs to work in tandem as a supergroup. For example, if
one LAG goes down, the other LAG is taken down automatically, providing an
alternate path to reroute traffic, avoiding oversubscription on the other LAG. You
can use both static and dynamic (LACP) LAGs to configure failover groups. For
more information, refer to the “Port Channel” chapter in the Dell Networking OS
Configuration Guide.

Related
Command

group — groups two LAGs in a supergroup (“fate-sharing group”).
show interfaces port-channel — displays information on configured Port Channel
groups.

show config
Display the current configuration of the selected LAG.

S4810
Syntax

show config

Command
Modes

INTERFACE PORTCHANNEL

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

807

pre-Version
6.2.1.0
Example

Introduced on the E-Series.

Dell(conf-if-po-1)#show config
!
interface Port-channel 1
no ip address
shutdown
Dell(conf-if-po-1)#

show interfaces port-channel
Display information on configured Port Channel groups.

S4810
Syntax
Parameters

show interfaces port-channel [channel-number] [brief]
channelnumber

For a Port Channel interface, enter the keyword portchannel then a number. For the C-Series and S-Series, the
range is from 1 to 128.

brief

(OPTIONAL) Enter the keyword brief to display only the
port channel number, the state of the port channel, and the
number of interfaces in the port channel.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series. Modified to display the LAG
failover group status.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command

808

Interfaces

Usage
Information

Interfaces

The following describes the show interfaces port-channel command shown
in the following example.
Field

Description

Port-Channel 1...

Displays the LAG’s status. In the Example, the status of the
LAG’s LAG fate-sharing group (“Failover-group”) is listed.

Hardware is...

Displays the interface’s hardware information and its
assigned MAC address.

Port-channel is
part...

Indicates whether the LAG is part of a LAG fate-sharing
group (“Failover-group”).

Internet address...

States whether an IP address is assigned to the interface. If
an IP address is assigned, that address is displayed.

MTU 1554...

Displays link and IP MTU.

LineSpeed

Displays the interface’s line speed. For a port channel
interface, it is the line speed of the interfaces in the port
channel.

Members in this...

Displays the interfaces belonging to this port channel.

ARP type:...

Displays the ARP type and the ARP timeout value for the
interface.

Last clearing...

Displays the time when the show interfaces counters
were cleared.

Queueing
strategy.

States the packet queuing strategy. FIFO means first in first
out.

packets input...

Displays the number of packets and bytes into the interface.

Input 0 IP
packets...

Displays the number of packets with IP headers, VLAN
tagged headers, and MPLS headers. The number of packets
may not add correctly because a VLAN tagged IP packet
counts as both a VLAN packet and an IP packet.

0 64-byte...

Displays the size of packets and the number of those
packets entering that interface. This information is displayed
over two lines.

Received 0...

Displays the type and number of errors or other specific
packets received. This information is displayed over three
lines.

Output 0...

Displays the type and number of packets sent out the
interface. This information is displayed over three lines.

Rate information...

Displays the traffic rate information into and out of the
interface. Traffic rate is displayed in bits and packets per
second.

Time since...

Displays the time since the last change in the configuration
of this interface.

809

Example

Dell#show interfaces port-channel 20
Port-channel 20 is up, line protocol is up (Failover-group 1
is down)
Hardware address is 00:01:e8:01:46:fa
Port-channel is part of failover-group 1
Internet address is 1.1.120.1/24
MTU 1554 bytes, IP MTU 1500 bytes
LineSpeed 2000 Mbit
Members in this channel: Gi 0/5 Gi 0/18
ARP type: ARPA, ARP timeout 04:00:00
Last clearing of "show interfaces" counters 00:00:00
Queueing strategy: fifo
44507301 packets input, 3563070343 bytes
Input 44506754 IP Packets, 0 Vlans 0 MPLS
41 64-byte pkts, 44502871 over 64-byte pkts, 249 over 127byte pkts
407 over 255-byte pkts, 3127 over 511-byte pkts, 606 over
1023-byte pkts
Received 0 input symbol errors, 0 runts, 0 giants, 0
throttles
0 CRC, 0 IP Checksum, 0 overrun, 0 discarded
1218120 packets output, 100745130 bytes, 0 underruns
Output 5428 Multicasts, 4 Broadcasts, 1212688 Unicasts
1216142 IP Packets, 0 Vlans, 0 MPLS
0 throttles, 0 discarded
Rate info (interval 299 sec):
Input 01.50Mbits/sec, 2433 packets/sec
Output 00.02Mbits/sec,4 packets/sec
Time since last interface status change: 00:22:34
Dell#

User
Information

The following describes the show interfaces port-channel brief
command shown in the following example.
Field

Description

LAG

Lists the port channel number.

Mode

Lists the mode:

Status

•

L3 — for Layer 3

•

L2 — for Layer 2

Displays the status of the port channel.
•

down — if the port channel is disabled (shutdown)

•

up — if the port channel is enabled (no shutdown)

Uptime

Displays the age of the port channel in
hours:minutes:seconds.

Ports

Lists the interfaces assigned to this port channel.

(untitled)

Displays the status of the physical interfaces (up or down).
•

810

In Layer 2 port channels, an * (asterisk) indicates which
interface is the primary port of the port channel. The
primary port sends out interface PDU.

Interfaces

Field

Description
•

Example

In Layer 3 port channels, the primary port is not
indicated.

Dell#sh int por 1 br
LAG Mode Status Uptime
1
L2
up
00:00:08
Dell#

Related
Commands

Ports
Gi 3/0 (Up) *
Gi 3/1 (Down)
Gi 3/2 (Up)

show lacp — displays the LACP matrix.

show port-channel-flow
Display an egress port in a given port-channel flow.

S4810
Syntax

Parameters

Interfaces

show port-channel-flow outgoing-port-channel number incominginterface interface {source-ip address destination-ip address}
| {source-port number destination-port number} | {source-mac
address destination-mac address {vlan vlanid | ether-type}}
outgoing-portchannel
number

Enter the keywords outgoing-port-channel then the
number of the port channel to display flow information.

incominginterface
interface

Enter the keywords incoming-interface then the
interface type and slot/port or number information:

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

source-ip
address

Enter the keywords source-ip then the IP source address
in IP address format.

destination-ip
address

Enter the keywords destination-ip then the IP
destination address in IP address format.

source-port
number

Enter the keywords source-port then the source port
number. The range is from 1 to 65536. The default is None.

destinationport number

Enter the keywords destination-port then the
destination port number. The range is from 1 to 65536. The
default is None.

811

source-mac
address

Enter the keywords source-mac then the MAC source
address in the nn:nn:nn:nn:nn:nn format.

destinationmac address

Enter the keywords destination-mac then the MAC
destination address in the nn:nn:nn:nn:nn:nn format.

vlan vlan-id

Enter the keywords vlan then the VLAN-id. The range is
from 0 to 4094.

ether-type

Enter the keywords ether-type in the XX:XX format.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Because this command calculates based on a Layer 2 hash algorithm, use this
command to display flows for switched Layer 2 packets, not for routed packets
(use the show ip flow command to display routed packets).
The show port-channel-flow command returns the egress port identification
in a given port-channel if a valid flow is entered. A mismatched flow error occurs if
MAC-based hashing is configured for a Layer 2 interface and you are trying to
display a Layer 3 flow.
The output displays three entries:
•

Egress port for unfragmented packets.

•

In the event of fragmented packets, the egress port of the first fragment.

•

In the event of fragmented packets, the egress port of the subsequent
fragments.
NOTE: In the show port channel flow command output, the egress port
for an unknown unicast, multicast, or broadcast traffic is not displayed.

The following example shows the show port-channel-flow outgoing-portchannel number incoming-interface interface source-mac address
destination-mac address

812

•

Load-balance is configured for MAC

•

Load-balance is configured for IP 4-tuple/2-tuple

Interfaces

•

Example

A non-IP payload is going out of Layer 2 LAG interface that is a member of
VLAN with an IP address

Dell#show port-channel-flow outgoing-port-channel 1 incominginterface gi 3/0
source-mac 00:00:50:00:00:00 destination-mac 00:00:a0:00:00:00
Egress Port for port-channel 1, for the given flow, is Te
13/01

Time Domain Reflectometer (TDR)
TDR is useful for troubleshooting an interface that is not establishing a link; either it is flapping or not
coming up at all. TDR detects open or short conditions of copper cables on 100/1000 Base-T modules.

Important Points to Remember
•

The interface and port must be enabled (configured—refer to the interface command) before
running TDR. An error message is generated if you have not enabled the interface.

•

The interface on the far-end device must be shut down before running TDR.

•

Because TDR is an intrusive test on an interface that is not establishing a link, do not run TDR on an
interface that is passing traffic.

•

When testing between two devices, do not run the test on both ends of the cable.

tdr-cable-test
Test the condition of copper cables on 100/1000 Base-T modules.

S4810
Syntax
Parameters

tdr-cable-test interface
interface

Enter the keyword GigabitEthernet then the slot/port
information for the 100/1000 Ethernet interface.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Interfaces

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

813

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

The interface must be enabled to run the test or an error message is generated:
Dell#tdr-cable-test gigabitethernet 5/2
%Error: Interface is disabled GI 5/2
The S-Series does not generate log messages is generated when the link flaps
down/up during TDR tests.

Related
Commands

show tdr — displays the results of the TDR test.

show tdr
Display the TDR test results.

S4810
Syntax
Parameters

show tdr interface
interface

Enter the keyword GigabitEthernet then the slot/port
information for the 100/1000 Ethernet interface.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

814

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Interfaces

Version 6.1.1.0
Usage
Information

Introduced.

If the TDR test has not been run, an error message is generated:
%Error: Please run the TDR test first
The following describes the TDR test status.
Status

Definition

OK Status:
Terminated

TDR test is complete, no fault is detected on the cable, and
the test is terminated.

Length: 92 (+/- 1)
meters, Status:
Shorted

A short is detected on the cable. The location, in this
Example is 92 meters. The short is accurate to plus or minus
one meter.

Length: 93 (+/- 1)
meters, Status:
Open

An opening is detected on the cable. The location, in this
Example is 93 meters. The open is accurate to plus or minus
one meter.

Status:
Impedance
Mismatch

There is an impedance mismatch in the cables.

Example

Dell#show tdr gigabitethernet 10/47
Time since last test: 00:00:02
Pair A, Length: OK Status: Terminated
Pair B, Length: 92 (+/- 1) meters, Status: Short
Pair C, Length: 93 (+/- 1) meters, Status: Open
Pair D, Length: 0 (+/- 1) meters, Status: Impedance Mismatch

Related
Commands

tdr-cable-test — runs the TDR test.

UDP Broadcast
The user datagram protocol (UDP) broadcast feature is a software-based method to forward low
throughput (not to exceed 200 pps) IP/UDP broadcast traffic arriving on a physical or VLAN interface.

Important Points to Remember
•

This feature is available only on the S4810 platform.

•

Routing information protocol (RIP) is not supported with the UDP Broadcast feature.

•

If you configure this feature on an interface using the ip udp-helper udp-port command, the ip
directed-broadcast command becomes ineffective on that interface.

•

The existing show interface command has been modified to display the configured broadcast
address.

Interfaces

815

debug ip udp-helper
Enable UDP debug and display the debug information on a console.

S4810
Syntax

debug ip udp-helper
To disable debug information, use the no debug ip udp-helper command.

Defaults

Debug disabled.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Pre-version
8.3.7.0

Introduced on the E-Series ExaScale.

Dell#debug ip udp-helper
UDP helper debugging is on
01:20:22: Pkt rcvd on Gi 5/0 with IP DA (0xffffffff) will be
sent on Gi 5/1 Gi 5/2
Vlan 3
01:44:54: Pkt rcvd on Gi 7/0 is handed over for DHCP
processing.

Related
Commands

ip udp-broadcast-address — configures a UDP IP address for broadcast.
ip udp-helper udp-port — enables the UDP broadcast feature on an interface.
show ip udp-helper — displays the configured UDP helper(s) on all interfaces.

816

Interfaces

ip udp-broadcast-address
Configure an IP UDP address for broadcast.

S4810
Syntax

ip udp-broadcast-address address
To delete the configuration, use the no ip udp-broadcast-address address
command.

Parameters

address

Enter an IP broadcast address in dotted decimal format
(A.B.C.D).

Defaults

Not configured.

Command
Modes

INTERFACE (config-if)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Pre-version
8.3.7.0

Introduced on the E-Series ExaScale.

Usage
Information

When a UDP broadcast packet is flooded out of an interface, and the outgoing
interface is configured using this command, the outgoing packet’s IP destination
address is replaced with the configured broadcast address.

Related
Commands

debug ip udp-helper — enables debug and displays the debug information on a
console.
show ip udp-helper — displays the configured UDP helpers on all interfaces.

ip udp-helper udp-port
Enable the UDP broadcast feature on an interface either for all UDP ports or a specified list of UDP ports.

S4810
Syntax

ip udp-helper udp-port [udp-port-list]
To disable the UDP broadcast on a port, use the no ip udp-helper udp-port
[udp-port-list] command.

Interfaces

817

Parameters

udp-port-list

(OPTIONAL) Enter up to 16 comma-separated UDP port
numbers.
NOTE: If you do not use this option, all UDP ports are
considered by default.

Defaults

none

Command
Modes

INTERFACE (config-if)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Pre-version
8.3.7.0

Introduced on the E-Series ExaScale.

If you configure the ip helper-address command and ip udp-helper udpport command, the behavior is that the UDP broadcast traffic with port numbers
67/68 is unicast relayed to the DHCP server per the ip helper-address
configuration. This occurs regardless if the ip udp-helper udp-port command
contains port numbers 67/68 or not.
If you only configure the ip udp-helper udp-port command, all the UDP
broadcast traffic is flooded, including ports 67/68 traffic if those ports are part of
the udp-port-list.

Related
Commands

ip helper-address — configures the destination broadcast or host address for the
DHCP server.
debug ip udp-helper — enables debug and displays the debug information on a
console.
show ip udp-helper — displays the configured UDP helpers on all interfaces.

818

Interfaces

show ip udp-helper
Display the configured UDP helpers on all interfaces.

S4810
Syntax

show ip udp-helper

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Pre-version
8.3.7.0

Introduced on the E-Series ExaScale.

Example

Dell#show ip udp-helper
-------------------------------------------------Port
UDP port list
-------------------------------------------------Gi 10/0 656, 658
Gi 10/1 All

Related
Commands

debug ip udp-helper — enables debug and displays the debug information on a
console.
ip udp-broadcast-address — configures a UDP IP address for broadcast.
ip udp-helper udp-port — enables the UDP broadcast feature on an interface either
for all UDP ports or a specified list of UDP ports.

ip http source-interface
Specify an interface as the source interface for HTTP connections.
This feature is supported on S4810 platform.
Syntax

ip http source-interface interface
To delete an interface, use theno ip http source-interface interface command.

Interfaces

819

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE followed by the slot/port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
followed by a number from zero (0) to 16383.

•

For a Port Channel interface, enter the keyword portchannel followed by a number:
– S-Series: 1-128

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet followed by the slot/port
information.

•

For a VLAN interface, enter the keyword vlan followed by
a number from 1 to 4094.

Defaults

The IP address on the system that is closest to the Telnet address is used in the
outgoing packets.

Command
Modes

CONFIGURATION

Command
History

Related
Commands

820

Version 9.3(0.1)

Introduced on the S4810, S4820T, S6000, and Z9000.

Version 8.3.11.1

Introduced on the Z9000

Version 8.2.1.0

Increased number of VLANs on ExaScale to 4094 (was 2094)

Version 8.1.1.0

Introduced on E-Series ExaScale

Version 7.6.1.0

Support added for S-Series

Version 7.5.1.0

Introduced on C-Series

ip ftp source interface
Configuring source interface for ftp communications.

Interfaces

25

Enhanced Validation of Interface Ranges
This functionality is supported on the S4810 platform.

You can avoid specifying spaces between the range of interfaces, separated by commas, that you
configure by using the interface range command. For example, if you enter a list of interface ranges,
such as interface range fo 2/0-1,te 10/0,gi 3/0,fa 0/0, this configuration is considered
valid. The comma-separated list is not required to be separated by spaces in between the ranges. You
can associate multicast MAC or hardware addresses to an interface range and VLANs by using the macaddress-table static multicast-mac-address vlan vlan-id output-range interface
command.

Enhanced Validation of Interface Ranges

821

Internet Protocol Security (IPSec)

26

Internet protocol security (IPSec) is an end-to-end security scheme for securing IP communications by
authenticating and encrypting all packets in a session. Use IPSec between hosts, gateways, or hosts and
gateways.
IPSec uses a series of protocol functions to achieve information security:
•

Authentication Headers (AH) — Connectionless integrity and origin authentication for IP packets.

•

Encapsulating Security Payloads (ESP) — Confidentiality, authentication, and data integrity for IP
packets.

•

Security Associations (SA) — Algorithm-provided parameters required for AH and ESP protocols.

IPSec capability is available on control (protocol) and management traffic; end-node support is required.
IPSec supports two operational modes: Transport and Tunnel.
•

Transport is the default mode for IPSec and encrypts only the payload of the packet. Routing
information is unchanged.

•

Tunnel mode is used to encrypt the entire packet, including the routing information in the IP header.
Tunnel mode is typically used in creating virtual private networks (VPNs).

Transport mode provides IP packet payload protection using ESP. You can use ESP alone or in
combination with AH to provide additional authentication. AH protects data from modification but does
not provide confidentiality.
SA is the configuration information that specifies the type of security provided to the IPSec flow. The SA is
a set of algorithms and keys used to authenticate and encrypt the traffic flow. The AH and ESP use SA to
provide traffic protection for the IPSec flow.
NOTE:
Due to performance limitations on the control processor, you cannot enable IPSec on all packets in
a communication session.

crypto ipsec transform-set
Create a transform set, or combination of security algorithms and protocols, of cryptos.

S4810
Syntax

822

crypto ipsec transform-set name {ah-authentication {md5|sha1|
null} | esp-authentication {md5|sha1|null} | esp-encryption
{3des|cbc|des|null}}

Internet Protocol Security (IPSec)

To delete a transform set, use the no crypto ipsec transform-set name
{ah-authentication {md5|sha1|null} | esp-authentication {md5|
sha1|null} | esp-encryption {3des|cbc|des|null}} command.
Parameters

name

Enter the name for the transform set.

ahauthentication

Enter the keywords ah-authentication then the
transform type of operation to apply to traffic. The transform
type represents the encryption or authentication applied to
traffic.

espauthentication

esp-encryption

•

md5 — Use Message Digest 5 (MD5) authentication.

•

sha1 — Use Secure Hash Algorithm 1 (SHA-1)
authentication.

•

null — Causes an encryption policy configured for the
area to not be inherited on the interface.

Enter the keywords esp-authentication then the
transform type of operation to apply to traffic. The transform
type represents the encryption or authentication applied to
traffic.
•

md5 — Use Message Digest 5 (MD5) authentication.

•

sha1 — Use Secure Hash Algorithm 1 (SHA-1)
authentication.

•

null — Causes an encryption policy configured for the
area to not be inherited on the interface.

Enter the keywords esp-encryption then the transform
type of operation to apply to traffic. The transform type
represents the encryption or authentication applied to traffic.
•

3des — Use 3DES encryption.

•

cbc — Use CDC encryption.

•

des — Use DES encryption.

•

null — Causes an encryption policy configured for the
area to not be inherited on the interface.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Internet Protocol Security (IPSec)

Introduced on the Z9000, S4810, and S4820T.

823

Usage
Information

Example

•

Both sides of the link must specify the same transform set.

•

You can create up to 64 transform sets.

Dell(conf)#int ten 0/4
Dell(conf-if-te-0/4)#ipv6 address 200:1::/64 eui64
Dell(conf)#int ten 0/6
Dell(conf-if-te-0/6)#ipv6 address 801:10::/64 eui64

crypto ipsec policy
Create a crypto policy used by ipsec.

S4810
Syntax

crypto ipsec policy name seq-num ipsec-manual
To delete a crypto policy entry, use the no crypto ipsec policy name seqnum ipsec-manual command.

Parameters

name

Enter the name for the crypto policy set.

seq-num

Enter the sequence number assigned to the crypto policy
entry.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

Usage
Information

This command creates a crypto policy entry and enters the crypto policy
configuration mode for configuring the flow parameters.

Example

Dell(conf)#crypto ipsec policy West 10 ipsec-manual
Dell(conf-crypto-policy)#

824

Internet Protocol Security (IPSec)

management crypto-policy
Apply the crypto policy to management traffic.

S4810
Syntax

management crypto-policy name
To remove the management traffic crypto policy, use the no management
crypto-policy name command.

Parameters

name

Enter the name for the crypto policy..

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

match
Apply an match filter to the crypto policy.

S4810
Syntax

match seq-num tcp [sourceip address | ipv6 address {mask}
{source-port number}] [destination ip address | ipv6 address
{mask} {destination-port number}]
To remove the match filter for the crypto map, use the no match seq-num tcp
[source ip address | ipv6 address {mask} {source-port number}]
[destination ip address | ipv6 address {mask} {destination-port
number}] command.

Parameters

seq-num

Enter the match command sequence number.

sourceipaddress | ipv6
address

Enter the keyword source then the IPv4 or IPv6 address for
the source.

mask

Enter the mask prefix length in /nn format.

Internet Protocol Security (IPSec)

825

source-port
number

Enter the source port number.

destinationport number

Enter the destination port number.

Defaults

none

Command
Modes

CONFIG-CRYPTO-POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Usage
Information

Example

•

Introduced on the Z9000, S4810, and S4820T.

IPv4 addresses support only -/32 mask types.

•

IPv6 addresses support only -/128 mask types.

•

Configure match for bi-directional traffic for optimal routing.

•

Only TCP is supported.

match
match
match
match
match
match
match
match

0
1
2
3
4
5
6
7

tcp
tcp
tcp
tcp
tcp
tcp
tcp
tcp

a::1 /128 0 a::2 /128 23
a::1 /128 23 a::2 /128 0
a::1 /128 0 a::2 /128 21
a::1 /128 21 a::2 /128 0
1.1.1.1 /32 0 1.1.1.2 /32 23
1.1.1.1 /32 23 1.1.1.2 /32 0
1.1.1.1 /32 0 1.1.1.2 /32 21
1.1.1.1 /32 21 1.1.1.2 /32 0

session-key
Specify the session keys used in the crypto policy entry.

S4810
Syntax

session-key {inbound | outbound} {ah spi hex-key-string | esp
spi encrypt hex-key-string auth hex-key-string
To delete the session key information from the crypto policy, use the no
session-key {inbound | outbound} {ah | esp} command.

Parameters

826

name

Enter the name for the transform set.

inbound

Specify the inbound session key for IPSec.

Internet Protocol Security (IPSec)

outbound

Specify the outbound session key for IPSec.

ah

Use the AH protocol when you select the AH transform set in
the crypto policy.

esp

Use the ESP protocol when you select the ESP transform set
in the crypto policy.

spi

Enter the security parameter index number.

hex-key-string

Enter the session key in hex format (a string of 8, 16, or 20
bytes). For DES algorithms, specify at least 16 bytes per key.
For SHA algorithms, specify at least 20 bytes per key.

encrypt

Indicates the ESP encryption transform set key string.

auth

Indicates the ESP authentication transform set key string.

Defaults

none

Command
Modes

CONF-CRYPTO-POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Usage
Information

Introduced on the Z9000, S4810, and S4820T.

•

This command is only available in the ipsec-manual model.

•

The key information entry is associated with the global method for enabling
clear text or encrypted display in the running config.

show crypto ipsec transform-set
Display the transform set configuration.

S4810
Syntax
Parameters

show crypto ipsec transform-set name
name

Enter the name of the transform set.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Internet Protocol Security (IPSec)

827

Version 9.2(0.2)
Example

Introduced on the Z9000, S4810, and S4820T.

Dell#show crypto ipsec transform-set
Transform-Set Name
Transform-Set refCnt
AH Transform
ESP Auth Transform
ESP Encry Transform
Dell#

: dallas
: 0
:
:
: 3des

show crypto ipsec policy
Display the crypto policy configuration.

S4810
Syntax

show crypto ipsec policy

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Example

Introduced on the Z9000, S4810, and S4820T.

Dell#show crypto ipsec policy
Policy name
: West
Policy refcount
: 1
Sequence Num
: 10
SA Mode
: IPSEC-MANUAL
Transform-Set Name
: dallas
Peer IP Address
:
Inbound AH SPI
: 0
Inbound ESP Auth SPI : 0
Inbound ESP Encry SPI : 256
Inbound AH Key
: [0]::
Inbound ESP Auth Key : [0]::
Inbound ESP Encry Key :
[96]::a5b6b42009d47895b420a5b6789509d4b420a5b6789509d4b420a5b67
89509d4b420a5b6789509d4b420a5b6789509d4
Outbound AH SPI
: 0
Outbound ESP Auth SPI : 0
Outbound ESP Encry SPI: 257
Outound AH Key
: [0]::
Outound ESP Auth Key : [0]::
Outound ESP Encry Key :
[96]::a5b6b42009d47895b420a5b6789509d4b420a5b6789509d4b420a5b67
89509d4b420a5b6789509d4b420a5b6789509d4
Match sequence Num

828

: 0

Internet Protocol Security (IPSec)

Protocol type
IP or IPv6
Source address
Source mask
Source port
Destination address
Destination mask
Destination port
source-interface name
source-interface num

:
:
:
:
:
:
:
:
:
:

tcp
IPv6
a::1
/128
0
a::2
/128
23

Match sequence Num
Protocol type
IP or IPv6
Source address
Source mask
Source port
Destination address
Destination mask
Destination port
source-interface name
source-interface num

:
:
:
:
:
:
:
:
:
:
:

1
tcp
IPv6
a::1
/128
23
a::2
/128
0

Match sequence Num
Protocol type
IP or IPv6
Source address
Source mask
Source port
Destination address
Destination mask
Destination port
source-interface name
source-interface num

:
:
:
:
:
:
:
:
:
:
:

2
tcp
IPv6
a::1
/128
0
a::2
/128
21

Match sequence Num
Protocol type
IP or IPv6
Source address
Source mask
Source port
Destination address
Destination mask
Destination port
source-interface name
source-interface num

:
:
:
:
:
:
:
:
:
:
:

3
tcp
IPv6
a::1
/128
21
a::2
/128
0

Dell#

Internet Protocol Security (IPSec)

829

transform-set
Specify the transform set the crypto policy uses.

S4810
Syntax

transform-set transform-set-name
To delete a transform set from the crypto policy, use the no transform-set
transform-set-name command.

Parameters

transform-setname

Enter the name for the crypto policy transform set.

Defaults

none

Command
Modes

CONFIG-CRYPTO-POLICY

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

830

Introduced on the Z9000, S4810, and S4820T.

Internet Protocol Security (IPSec)

27

IPv4 Routing

The basic IPv4 commands are supported by Dell Networking operating system on the S4810 platform.

arp
To associate an IP address with a MAC address in the switch, use address resolution protocol (ARP).

S4810
Syntax

arp [vrf vrf-name] ip-address mac-address interface
To remove an ARP address, use the no arp ip-address command.

Parameters

vrf vrf-name

Enter a VRF name to configure an ARP entry for that VRF.
Use the VRF option after the keyword arp to configure a
static arp on that particular VRF.

ip-address

Enter an IP address in dotted decimal format.

mac-address

Enter a MAC address in nnnn.nnnn.nnnn format.

interface

(OPTIONAL) Enter any of the following keywords and slot/
port or number information:
•

For the Management interface, enter the keyword
ManagementEthernet then the slot/port information.
The slot range is from 0 to 1 and the port range is 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

831

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

You cannot use Class D or Class E IP addresses or zero IP address (0.0.0.0) when
creating a static ARP. Zero MAC addresses (00:00:00:00:00:00) are also invalid.
You can use the vrf attribute of this command to create a static ARP entry on
either a default or a non-default VRF. You cannot use this parameter to create any
static ARPs corresponding to management VRFs. When a VRF is deleted using the
no ip vrf command, all the static ARP configurations that belong to that VRF
are removed automatically.

Related
Commands

clear arp-cache — clears dynamic ARP entries from the ARP table.
show arp — displays the ARP table.

arp backoff-time
Set the exponential timer for resending unresolved ARPs.

S4810
Syntax
Parameters

arp backoff-time seconds
seconds

Defaults

30

Command
Mode

CONFIGURATION

832

Enter the number of seconds an ARP entry is black-holed.
The range is from 1 to 3600. The default is 30.

IPv4 Routing

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

Usage
Information

This timer is an exponential backoff timer. Over the specified period, the time
between ARP requests increases. This behavior reduces the potential for the
system to slow down while waiting for a multitude of ARP responses.

Related
Commands

show arp retries — displays the configured number of ARP retries.

arp learn-enable
Enable ARP learning using gratuitous ARP.

S4810
Syntax

arp learn-enable

Defaults

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced.

In Dell Networking OS versions prior to 8.3.1.0, if a gratuitous ARP is received some
time after an ARP request is sent, only RP2 installs the ARP information. For
example:

833

1.

At time t=0, Dell Networking OS sends an ARP request for IP A.B.C.D.

2.

At time t=1, Dell Networking OS receives an ARP request for IP A.B.C.D.

3.

At time t=2, Dell Networking OS installs an ARP entry for A.B.C.D only on RP2.

Beginning with Dell Networking OS version 8.3.1.0, when a gratuitous ARP is
received, Dell Networking OS installs an ARP entry on all three CPUs.

arp max-entries
Enables you to configure the maximum number of ARP entries per VRF that are allowed for IPv4..

S4810
Syntax
Parameters

arp max-entries [vrf vrf-name] max-number
vrf vrf-name

Enter the name of a specific VRF for which you want to
configure maximum number of ARP entries that IPv4 allows.

max-number

Enter the maximum number of ARP entries that a VRF RTM
can hold. The range is from 0 to 65535.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

834

Introduced on the S4810 and S4820T.

Use this command to specify the maximum number of ARP entries that the Route
Table Manager can hold for a specific VRF. This command does not apply to the
management VRFs.

IPv4 Routing

arp retries
Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP
request.

S4810
Syntax

arp retries number

Parameters

number

Enter the number of retries. The range is from 1 to 20. The
default is 5.

Defaults

5

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced.

Usage
Information

Retries are 20 seconds apart.

Related
Commands

show arp retries — displays the configured number of ARP retries.

arp timeout
Set the time interval for an ARP entry to remain in the ARP cache.

S4810
Syntax
Parameters

IPv4 Routing

arp timeout minutes
minutes

Enter the number of minutes. The range is from 0 to 35790.
The default is 240 minutes.

835

Defaults

240 minutes (4 hours)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

show interfaces — displays the ARP timeout value for all available interfaces.

clear arp-cache
Clear the dynamic ARP entries from a specific interface or optionally delete (no-refresh) ARP entries
from the content addressable memory (CAM).

S4810
Syntax
Parameters

clear arp-cache [vrf vrf-name | interface | ip ip-address] [norefresh]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to clear the ARP cache corresponding to that VRF.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

•
•

836

For the Management interface, enter the keyword
ManagementEthernet then the slot/port information.
The slot range is from 0 to 1 and the port range is 0.
For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

IPv4 Routing

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

ip ip-address

(OPTIONAL) Enter the keyword ip then the IP address of the
ARP entry you wish to clear.

no-refresh

(OPTIONAL) Enter the keywords no-refresh to delete the
ARP entry from CAM. Or use this option with interface or
ip ip-address to specify which dynamic ARP entries you
want to delete.
NOTE: Transit traffic may not be forwarded during the
period when deleted ARP entries are resolved again and
re-installed in CAM. Use this option with extreme
caution.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

837

clear host
Remove one or all dynamically learned host table entries.

S4810
Syntax
Parameters

clear host name
name

Enter the name of the host to delete. Enter * to delete all
host table entries.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

clear ip fib stack-unit
Clear all FIB entries in the specified stack unit (use this command with caution, refer to Usage
Information.)

S4810
Syntax
Parameters

clear ip fib stack-unit unit-number
unit-number

Enter the number of the stack unit. The range is from 0 to 7.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

838

IPv4 Routing

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version
8.3.19.0

Introduced on the S4820T.

Usage
Information

To clear Layer 3 CAM inconsistencies, use this command.

Related
Commands

show ip fib stack-unit — shows FIB entries on a specified stack-unit.

CAUTION: Executing this command causes traffic disruption.

clear ip route
Clear one or all routes in the routing table.

S4810
Syntax
Parameters

clear ip route [vrf vrf-name] {* | ip-address mask}
vrf vrf-name

(Optional) Enter the keyword vrf and then the name of the
VRF to clear the routes corresponding to that VRF.

*

Enter an asterisk (*) to clear all learned IP routes.

ip-address
mask

Enter a specific IP address and mask in dotted decimal
format to clear that IP address from the routing table.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

839

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Use the vrf vrf-name attribute of this command to clear routes corresponding
to either a specific VRF or the default VRF.
You cannot use this attribute to clear routes corresponding to a management VRF.

Related
Commands

ip route — assigns an IP route to the switch.
show ip route — views the routing table.
show ip route summary — views a summary of the routing table.

clear tcp statistics
Clear TCP counters.

S4810
Syntax
Parameters

clear tcp statistics [all | cp | rp1 | rp2]
all

Enter the keyword all to clear all TCP statistics maintained
on all switch processors.

cp

(OPTIONAL) Enter the cp to clear only statistics from the
Control Processor.

rp1

(OPTIONAL) Enter the keyword rp1 to clear only the
statistics from Route Processor 1.

rp2

(OPTIONAL) Enter the keyword rp2 to clear only the
statistics from Route Processor 2.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

840

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

debug arp
View information on ARP transactions.

S4810
Syntax

debug arp [interface] [count value]
To stop debugging ARP transactions, use the no debug arp command.

Parameters

interface

count value

Defaults

none

Command
Modes

EXEC Privilege

IPv4 Routing

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
Gigabitethernet then the slot/port information.

•

For the Management interface, enter the keyword
ManagementEthernet then the slot/port information.
The slot range is from 0 to 1 and the port range is 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

(OPTIONAL) Enter the keyword count then the count value.
The range is from 1 to 65534.

841

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Added the count option.

To stop packets from flooding the user terminal when debugging is turned on, use
the count option.

debug ip dhcp
Enable debug information for dynamic host configuration protocol (DHCP) relay transactions and display
the information on the console.

S4810
Syntax

debug ip dhcp
To disable debug, use the no debug ip dhcp command.

Defaults

Debug disabled

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

842

Introduced on the S6000.

IPv4 Routing

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.10

Introduced on the E-Series.

Example

Dell#debug ip dhcp
00:12:21 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received
at interface 113.3.3.17 BOOTP
Request, hops = 0, XID = 0xbf05140f, secs = 0, hwaddr =
00:60:CF:20:7B:8C, giaddr = 0.0.0.0
00:12:21 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for
00:60:CF:20:7B:8C to 14.4.4.2
00:12:26 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received
at interface 113.3.3.17 BOOTP
Request, hops = 0, XID = 0xbf05140f, secs = 5, hwaddr =
00:60:CF:20:7B:8C, giaddr = 0.0.0.0
00:12:26 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for
00:60:CF:20:7B:8C to 14.4.4.2
00:12:40 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received
at interface 113.3.3.17 BOOTP
Request, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr =
00:60:CF:20:7B:8C, giaddr = 0.0.0.0
00:12:40 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for
00:60:CF:20:7B:8C to 14.4.4.2
00:12:42 : %RELAY-I-PACKET: BOOTP REPLY (Unicast) received at
interface 14.4.4.1 BOOTP Reply,
hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:
8C, giaddr = 113.3.3.17
00:12:42 : %RELAY-I-BOOTREPLY: Forwarded BOOTREPLY for
00:60:CF:20:7B:8C to 113.3.3.254
00:12:42 : %RELAY-I-PACKET: BOOTP REQUEST (Unicast) received
at interface 113.3.3.17 BOOTP
Request, hops = 0, XID = 0xda4f9503, secs = 0, hwaddr =
00:60:CF:20:7B:8C, giaddr = 0.0.0.0
00:12:42 : %RELAY-I-BOOTREQUEST: Forwarded BOOTREQUEST for
00:60:CF:20:7B:8C to 14.4.4.2
00:12:42 : %RELAY-I-PACKET: BOOTP REPLY (Unicast) received at
interface 14.4.4.1 BOOTP Reply,
hops = 0, XID = 0xda4f9503, secs = 0, hwaddr = 00:60:CF:20:7B:
8C, giaddr = 113.3.3.17
00:12:42 : %RELAY-I-BOOTREPLY: Forwarded BOOTREPLY for
00:60:CF:20:7B:8C to 113.3.3.254
Dell#

Related
Commands

ip helper-address – specifies the destination broadcast or host address for the
DHCP server request.

IPv4 Routing

843

ip helper-address hop-count disable – disables the hop-count increment for the
DHCP relay agent.

debug ip icmp
View information on the internal control message protocol (ICMP).

S4810
Syntax

debug ip icmp [interface] [count value]
To disable debugging, use the no debug ip icmp command.

Parameters

interface

count value

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For the Management interface, enter the keyword
ManagementEthernet then the slot/port information.
The slot range is from 0 to 1 and the port range is 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a Tunnel interface, enter the keywords tunnel then a
number. The range is from 1 to 16383.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

(OPTIONAL) Enter the keyword count then the count value.
The range is from 1 to 65534. The default is Infinity.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

844

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

IPv4 Routing

Example

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Added the count option.

ICMP:
ICMP:
ICMP:
ICMP:
ICMP:
ICMP:
ICMP:
ICMP:

echo request rcvd from src 40.40.40.40
src 40.40.40.40, dst 40.40.40.40, echo
src 40.40.40.40, dst 40.40.40.40, echo
echo request sent to dst 40.40.40.40
echo request rcvd from src 40.40.40.40
src 40.40.40.40, dst 40.40.40.40, echo
src 40.40.40.40, dst 40.40.40.40, echo
echo request sent to dst 40.40.40.40

reply
reply
reply
reply

To stop packets from flooding the user terminal when debugging is turned on, use
the count option.

debug ip packet
View a log of IP packets sent and received.

S4810
Syntax

debug ip packet [access-group name] [count value] [interface]
To disable debugging, use the no debug ip packet [access-group name]
[count value] [interface] command.

Parameters

access-group
name

Enter the keyword access-group then the access list name
(maximum 16 characters) to limit the debug output based on
the defined rules in the ACL.

count value

(OPTIONAL) Enter the keyword count then the count value.
The range is from 1 to 65534. The default is Infinity.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

IPv4 Routing

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

845

•

For the Management interface, enter the keyword
ManagementEthernet then the slot/port information.
The slot range is from 0 to 1 and the port range is 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

846

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Added the access-group option.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Added the count option.

The following describes the debug ip packet command in the following
example.
Field

Description

s=

Lists the source address of the packet and the name of the
interface (in parentheses) that received the packet.

IPv4 Routing

Field

Description

d=

Lists the destination address of the packet and the name of
the interface (in parentheses) through which the packet is
being sent out on the network.

len

Displays the packet’s length.

sending, rcvd,
fragment, sending
broad/multicast
proto, unroutable

The last part of each line lists the status of the packet.

TCP src=

Displays the source and destination ports, the sequence
number, the acknowledgement number, and the window
size of the packets in that TCP packets.

UDP src=

Displays the source and destination ports for the UDP
packets.

ICMP type=

Displays the ICMP type and code.

IP Fragment

States that it is a fragment and displays the unique number
identifying the fragment (Ident) and the offset (in 8-byte
units) of this fragment (fragment offset) from the beginning
of the original datagram.

Example

IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 54, sending
TCP src=23, dst=40869, seq=2112994894, ack=606901739,
win=8191 ACK PUSH
IP: s=10.1.2.206 (Ma 0/0), d=10.1.2.62, len 40, rcvd
TCP src=0, dst=0, seq=0, ack=0, win=0
IP: s=10.1.2.62 (local), d=10.1.2.206 (Ma 0/0), len 226,
sending
TCP src=23, dst=40869, seq=2112994896, ack=606901739,
win=8192 ACK PUSH
IP: s=10.1.2.216 (Ma 0/0), d=10.1.2.255, len 78, rcvd
UDP src=0, dst=0
IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500,
sending fragment
IP Fragment, Ident = 4741, fragment offset = 0
ICMP type=0, code=0
IP: s=10.1.2.62 (local), d=10.1.2.3 (Ma 0/0), len 1500,
sending fragment
IP Fragment, Ident = 4741, fragment offset = 1480
IP: s=40.40.40.40 (local), d=224.0.0.5 (Gi 4/11), len 64,
sending broad/multicast
proto=89
IP: s=40.40.40.40 (local), d=224.0.0.6 (Gi 4/11), len 28,
sending broad/multicast
proto=2
IP: s=0.0.0.0, d=30.30.30.30, len 100, unroutable
ICMP type=8, code=0
IP: s=0.0.0.0, d=30.30.30.30, len 100, unroutable
ICMP type=8, code=0

Usage
Information

To stop packets from flooding the user terminal when debugging is turned on, use
the count option.

IPv4 Routing

847

The access-group option supports only the equal to (eq) operator in TCP ACL
rules. Port operators not equal to (neq), greater than (gt), less than (lt), or range
are not supported in access-group option (refer to the following example). ARP
packets (arp) and Ether-type (ether-type) are also not supported in the accessgroup option. The entire rule is skipped to compose the filter.
The access-group option pertains to:
•

IP protocol number: from 0 to 255

•

Internet control message protocol (icmp) but not the ICMP message type (from
0 to 255)

•

Any internet protocol (ip)

•

Transmission Control Protocol (tcp) but not on the rst, syn, or urg bits

•

User Datagram Protocol (udp)

In the case of ambiguous access control list rules, the debug ip packet
access-control command is disabled. A message appears identifying the error
(refer to the Example below).
Example (Error
Messages)

Dell#debug ip packet access-group test
%Error: port operator GT not supported in access-list debug
%Error: port operator LT not supported in access-list debug
%Error: port operator RANGE not supported in access-list debug
%Error: port operator NEQ not supported in access-list debug
Dell#00:10:45: %RPM0-P:CP
%IPMGR-3-DEBUG_IP_PACKET_ACL_AMBIGUOUS_EXP: Ambiguous rules not
supported in access-list debug, access-list debugging is
turned off
Dell#

ip address
Assign a primary and secondary IP address to the interface.

S4810
Syntax

ip address ip-address mask [secondary]
To delete an IP address from an interface, use the no ip address [ipaddress] command.

Parameters

848

ip-address

Enter an IP address in dotted decimal format.

mask

Enter the mask of the IP address in slash prefix format (for
example, /24).

secondary

(OPTIONAL) Enter the keyword secondary to designate the
IP address as the secondary address.

IPv4 Routing

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

You must be in INTERFACE mode before you add an IP address to an interface.
Assign an IP address to an interface prior to entering ROUTER OSPF mode.

ip directed-broadcast
Enables the interface to receive directed broadcast packets.

S4810
Syntax

ip directed-broadcast
To disable the interface from receiving directed broadcast packets, use the no ip
directed-broadcast command.

Defaults

Disabled (that is, the interface does not receive directed broadcast packets)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

849

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

ip domain-list
Configure names to complete unqualified host names.

S4810
Syntax

ip domain-list name
To remove the name, use the no ip domain-list name command.

Parameters

name

Enter a domain name to be used to complete unqualified
names (that is, incomplete domain names that cannot be
resolved).

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

To configure a list of possible domain names, configure the ip domain-list
command up to six times.
If you configure both the ip domain-name and ip domain-list commands,
the software tries to resolve the name using the ip domain-name command. If

850

IPv4 Routing

the name is not resolved, the software goes through the list of names configured
with the ip domain-list command to find a match.
To enable dynamic resolution of hosts, use the following steps:
•

specify a domain name server with the ip name-server command

•

enable DNS with the ip domain-lookup command

To view current bindings, use the show hosts command. To view a DNS-related
configuration, use the show running-config resolve command.
Related
Commands

ip domain-name — specifies a DNS server.

ip domain-lookup
To address resolution (that is, DNS), enable dynamic host-name.

S4810
Syntax

ip domain-lookup
To disable DNS lookup, use the no ip domain-lookup command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

To fully enable DNS, also specify one or more domain name servers with the ip
name-server command.

851

Dell Networking OS does not support sending DNS queries over a VLAN. DNS
queries are sent out all other interfaces, including the Management port.
To view current bindings, use the show hosts command.
Related
Commands

ip name-server — specifies a DNS server.
show hosts — Views the current bindings.

ip domain-name
Configure one domain name for the switch.

S4810
Syntax

ip domain-name name
To remove the domain name, use the no ip domain-name command.

Parameters

name

Enter one domain name to be used to complete unqualified
names (that is, incomplete domain names that cannot be
resolved).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

852

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

IPv4 Routing

Usage
Information

You can only configure one domain name with the ip domain-name command.
To configure more than one domain name, configure the ip domain-list
command up to six times.
To enable dynamic resolution of hosts, use the following steps:
•

specify a domain name server with the ip name-server command

•

enable DNS with the ip domain-lookup command

To view current bindings, use the show hosts command.
Related
Commands

ip domain-list — configures additional names.

ip helper-address
Specify the address of a DHCP server so that DHCP broadcast messages can be forwarded when the
DHCP server is not on the same subnet as the client.

S4810
Syntax

ip helper-address ip-address
To remove a DHCP server address, use the no ip helper-address command.

Parameters

ip-address

Enter an IP address in dotted decimal format (A.B.C.D).

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Added support for IPv6.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

853

Usage
Information

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

You can add multiple DHCP servers by entering the ip helper-address
command multiple times. If multiple servers are defined, an incoming request is
sent simultaneously to all configured servers and the reply is forwarded to the
DHCP client.
Dell Networking OS uses standard DHCP ports, that is UDP ports 67 (server) and 68
(client) for DHCP relay services. It listens on port 67 and if it receives a broadcast,
the software converts it to unicast, and forwards to it to the DHCP-server with
source port=68 and destination port=67.
The server replies with source port=67, destination port=67 and Dell Networking
OS forwards to the client with source port=67, destination port=68.

ip helper-address hop-count disable
Disable the hop-count increment for the DHCP relay agent.

S4810
Syntax

ip helper-address hop-count disable
To re-enable the hop-count increment, use the no ip helper-address hopcount disable command.

Defaults

Enabled; the hops field in the DHCP message header is incremented by default.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

854

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

IPv4 Routing

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced for the E-Series.

Usage
Information

This command disables the incrementing of the hops field when boot requests are
relayed to a DHCP server through Dell Networking OS. If the incoming boot
request already has a non-zero hops field, the message is relayed with the same
value for hops. However, the message is discarded if the hops field exceeds 16, to
comply with the relay agent behavior specified in RFC 1542.

Related
Commands

ip helper-address — specifies the destination broadcast or host address for DHCP
server requests.
show running-config — displays the current configuration and changes from the
default values.

ip host
Assign a name and IP address the host-to-IP address mapping table uses.

S4810
Syntax

ip host name ip-address
To remove an IP host, use the no ip host name [ip-address] command.

Parameters

name

Enter a text string to associate with one IP address.

ip address

Enter an IP address, in dotted decimal format, to be mapped
to the name.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

855

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced for the E-Series.

ip icmp source-interface
Enable the ICMP error and unreachable messages to be sent with the source interface IP address, such as
the loopback address, instead of the hops of the preceding devices along the network path to be used for
easy debugging and diagnosis of network disconnections and reachability problems with IPv4 packets.
This functionality is supported on the S4810, , , and platforms.
Syntax
Parameters

ip icmp source-interface interface
interface

Enter one of the following keywords and slot/port or number
information:
•

For a Management Ethernet interface, enter the keyword
managementethernet.
NOTE: When you configure the capability to enable
the loopback IP address to be sent for easy
debugging and diagnosis (IP addresses of the devices
for which the ICMP source interface is configured),
the source IP address of the outgoing ICMP error
message is modified, although the packets are not
sent out using the configured interface. Because the
management interface is configured without any
parameters such as the IP address, it is treated to the
management interface of the primary unit or the
existing unit.

Defaults

856

•

For a Loopback interface, enter the keyword loopback.
The range is from 0 to 16383.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE.

•

For a VLAN interface, enter the keyword vlan. The range
is from 1 to 4094.

Not configured.

IPv4 Routing

Command
Modes
Command
History

Usage
Information

CONFIGURATION

Version 9.3(0.0)

Introduced on the S4810, S4820T, S6000, and Z9000
platforms.

You can enable the mechanism to configure the source or the originating interface
from which the packet (the device that generates the ICMP error messages) is
received by the switch to send the loopback address instead of its source IP
address to be used in the ICMP unreachable messages and in the traceroute
command output. The loopback address must be unique in a particular domain.
In network environments that contain a large number of devices, ranging up to
thousands of systems, and with each device configured for equal-cost multipath
(ECMP) links, you cannot effectively and optimally use the traceroute and ping
applications to examine the network reachablity and identify any broken links for
diagnostic purposes. In such cases, if the reply that is obtained from each hop on
the network path contains the IP address of the adjacent, neighboring interface
from which the packet is received, it is difficult to employ the ping and traceroute
utilites. You can enable the ICMP unreachable messages to contain the loopback
address of the source device instead of the previous hop's IP address to be able to
easily and quickly identify the device and devices along the path because the DNS
server maps the loopback IP address to the hostname and does not translate the IP
address of every interface of the switch to the hostname.

Example

Dell(conf)#ip icmp source-interface tengigabitethernet 0/0
Dell(conf)#

ipv6 icmp source-interface
Enable the ICMP error and unreachable messages to be sent with the source interface IP address, such as
the loopback address, instead of the hops of the preceding devices along the network path to be used for
easy debugging and diagnosis of network disconnections and reachability problems with IPv6 packets.
This functionality is supported on the S4810, , , and platforms.
Syntax
Parameters

ipv6 icmp source-interface interface
interface

Enter one of the following keywords and slot/port or number
information:
•

IPv4 Routing

For a Management Ethernet interface, enter the keyword
managementethernet.

857

NOTE: When you configure the capability to enable
the loopback IP address to be sent for easy
debugging and diagnosis (IP addresses of the devices
for which the ICMP source interface is configured),
the source IP address of the outgoing ICMP error
message is modified, although the packets are not
sent out using the configured interface. Because the
management interface is configurable only without
any parameters such as the IP address, it is treated to
the management interface of the primary unit or the
existing unit.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

Usage
Information

Version 9.3(0.0)

•

For a Loopback interface, enter the keyword loopback.
The range is from 0 to 16383.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE.

•

For a VLAN interface, enter the keyword vlan. The range
is from 1 to 4094.

Introduced on the S4810, S4820T, S6000, and Z9000
platforms.

You can enable the mechanism to configure the source or the originating interface
from which the packet (the device that generates the ICMP error messages) is
received by the switch to send the loopback address instead of its source IP
address to be used in the ICMP unreachable messages and in the traceroute
command output. The loopback address must be unique in a particular domain.
In network environments that contain a large number of devices, ranging up to
thousands of systems, and with each device configured for equal-cost multipath
(ECMP) links, you cannot effectively and optimally use the traceroute and ping
applications to examine the network reachablity and identify any broken links for
diagnostic purposes. In such cases, if the reply that is obtained from each hop on
the network path contains the IP address of the adjacent, neighboring interface
from which the packet is received, it is difficult to employ the ping and traceroute
utilites. You can enable the ICMP unreachable messages to contain the loopback
address of the source device instead of the previous hop's IP address to be able to
easily and quickly identify the device and devices along the path because the DNS
server maps the loopback IP address to the hostname and does not translate the IP
address of every interface of the switch to the hostname.

858

IPv4 Routing

Example

Dell(conf)#ipv6 icmp source-interface tengigabitethernet 0/0
Dell(conf)#

ip max-frag-count
Set the maximum number of fragments allowed in one packet for packet re-assembly.

S4810
Syntax

ip max-frag-count count
To place no limit on the number of fragments allowed, use the no ip max-fragcount command.

Parameters

count

Enter a number for the number of fragments allowed for reassembly. The range is from 2 to 256.

Defaults

No limit is set on number of fragments allowed.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced for the E-Series.

To avoid denial of service (DOS) attacks, keep the number of fragments allowed for
re-assembly low.

859

ip max-routes
Enables you to configure the maximum number of protocol routes per VRF that are allowed for IPv4.

S4810
Syntax
Parameters

ip max-routes [vrf vrf-name] max-number
vrf vrf-name

Enter the keyword vrf and then the name of the VRF for
which you want to configure maximum number of protocol
routes that IPv4 allows.

max-number

Enter the maximum number of protocol routes that a VRF
RTM can hold. The range is from 0 to 7500.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S4810 and S4820T.

Usage
Information

Use this command to specify the maximum number of protocol routes that the
Route Table Manager can hold for a specific VRF. This command does not apply to
the management VRFs.

Related
Commands

show ip route — views the switch routing table.
show ipv6 route — displays the IPv6 routes.

ip mtu
Set the IP MTU (frame size) of the packet the RPM transmits for the line card interface. If the packet must
be fragmented, Dell Networking OS sets the size of the fragmented packets to the size specified in this
command.

S4810
Syntax

ip mtu value
To return to the default IP MTU value, use the no ip mtu command.

Parameters

860

value

Enter the maximum MTU size if the IP packet is fragmented.
The range is from 576 to 9234. The default is 1500 bytes.

IPv4 Routing

Defaults

1500 bytes

Command
Modes

INTERFACE (Gigabit Ethernet and 10-Gigabit Ethernet interfaces)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

pre-Version
6.1.1.0

Introduced on the E-Series.

When you enter the no mtu command, Dell Networking OS reduces the ip mtu
value to 1536 bytes. To return the IP MTU value to the default, use the no ip mtu
command.
Starting with Dell Networking OS Release 9.2(0.2), the ip mtu command is not
supported to configure the IP MTU value that is used when the IP packet is
fragmented. Instead of having to configure the IP MTU value, this value is
automatically computed by the software when you configure an interface. As a
result, the ip mtu command is not available for configuration. However, you can
continue to specify the link MTU value by using the mtu command.
Compensate for Layer 2 header when configuring link MTU on an Ethernet
interface or Dell Networking OS may not fragment packets. If the packet includes a
Layer 2 header, the difference between the link MTU and IP MTU (the ip mtu
command) must be enough bytes to include for the Layer 2 header.
Link MTU and IP MTU considerations for Port Channels and VLANs are as follows
Port Channels:
•

All members must have the same link MTU value and the same IP MTU value.

•

The Port Channel link MTU and IP MTU must be less than or equal to the link
MTU and IP MTU values configured on the channel members. For example, if
the members have a link MTU of 2100 and an IP MTU 2000, the Port Channel’s
MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU.

VLANs:

IPv4 Routing

•

All members of a VLAN must have same IP MTU value.

•

Members can have different Link MTU values. Tagged members must have a
link MTU 4 bytes higher than untagged members to account for the packet tag.

•

The VLAN link MTU and IP MTU must be less than or equal to the link MTU and
IP MTU values configured on the VLAN members. For example, the VLAN
contains tagged members with Link MTU of 1522 and IP MTU of 1500 and
untagged members with Link MTU of 1518 and IP MTU of 1500. The VLAN’s Link

861

MTU cannot be higher than 1518 bytes and its IP MTU cannot be higher than
1500 bytes.
The following describes the difference between Link MTU and IP MTU.

Related
Commands

Layer 2 Overhead

Difference between Link MTU and IP MTU

Ethernet
(untagged)

18 bytes

VLAN Tag

Tag 22 bytes

Untagged Packet
with VLAN-Stack
Header

22 bytes

Tagged Packet
with VLAN-Stack
Header

26 bytes

mtu — sets the link MTU for an Ethernet interface.

ip name-server
Enter up to six IPv4 addresses of name servers. The order you enter the addresses determines the order
of their use.

S4810
Syntax

ip name-server ipv4-address [ipv4-address2...ipv4-address6]
To remove a name server, use the no ip name-server ip-address command.

Parameters

ipv4-address

Enter the IPv4 address, in dotted decimal format, of the
name server to be used.

ipv4-address2...
ipv4-address6

(OPTIONAL) Enter up five more IPv4 addresses, in dotted
decimal format, of name servers to be used. Separate the
addresses with a space.

Defaults

No name servers are configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

862

IPv4 Routing

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell Networking OS does not support sending DNS queries over a VLAN. DNS
queries are sent out on all other interfaces, including the Management port.
You can separately configure both IPv4 and IPv6 domain name servers.

ip proxy-arp
Enable proxy ARP on an interface.

S4810
Syntax

ip proxy-arp
To disable proxy ARP, use the no ip proxy-arp command.

Defaults

Enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

863

Related
Commands

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

show ip interface — displays the interface routing status and configuration.

ip route
Assign a static route to the switch.

S4810
Syntax

ip route [vrf vrf-name] ip-address mask {ip-address | interface
[ip-address]} [distance] [permanent] [tag tag-value] [vrf vrfname]
To delete a specific static route, use the no ip route destination mask
command.
To delete all routes matching a certain route, use the no ip route
destination mask command.

Parameters

864

vrf vrf-name

(Optoinal) Enter the keyword vrf and then the name of the
VRF to configure a static route corresponding to that VRF.
Use this VRF option after the ip route keyword to
configure a static route on that particular VRF.

destination

Enter the IP address in dotted decimal format of the
destination device.

mask

Enter the mask in the slash prefix format (/x) of the
destination IP address.

ip-address

Enter the IP address of the forwarding router in dotted
decimal format.

interface ipaddress

Enter the keyword interface then the IP address.

distance

(OPTIONAL) Enter the value of the distance metric assigned
to the route. The range is from 1 to 255.

permanent

(OPTIONAL) Enter the keyword permanent to specify that
the route must not be removed even if the interface assigned
to that route goes down. The route must be currently active
to be installed in the routing table. If you disable the
interface, the route is removed from the routing table.

IPv4 Routing

tag tag-value

(OPTIONAL) Enter the keyword tag then a number to assign
to the route. The range is from 1 to 4294967295.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF. Use
this VRF option after the next hop to specify which VRF the
next hop belongs to. This setting is used in route leaking
cases. Refer to Route Leaking.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Added support for tunnel interface type.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Using the following example of a static route: ip route 33.33.33.0 /24
tengigabitethernet 0/0 172.31.5.43
•

The software installs a next hop that is not on the directly connected subnet but
which recursively resolves to a next hop on the interface’s configured subnet. In
the example, if gig 0/0 has an ip address on subnet 2.2.2.0 and if 172.31.5.43
recursively resolves to 2.2.2.0, Dell Networking OS installs the static route.

•

When the interface goes down, Dell Networking OS withdraws the route.

•

When the interface comes up, Dell Networking OS re-installs the route.

865

•

When recursive resolution is “broken,” Dell Networking OS withdraws the route.

•

When recursive resolution is satisfied, Dell Networking OS re-installs the route.

You cannot use the VRF attribute of this command to configure routes in a
management VRF. When a specific VRF is deleted, all the configured static routes
corresponding to that VRF are automatically removed.
Related
Commands

show ip route — views the switch routing table.

ip source-route
Enable Dell Networking OS to forward IP packets with source route information in the header.

S4810
Syntax

ip source-route
To drop packets with source route information, use the no ip route-source
command.

Defaults

Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

866

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

IPv4 Routing

ip unreachables
Enable the generation of internet control message protocol (ICMP) unreachable messages.

S4810
Syntax

ip unreachables
To disable the generation of ICMP messages, use the no ip unreachables
command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

load-balance
By default, for C-Series and S-Series, Dell Networking OS uses an IP 4-tuple (IP SA, IP DA, Source Port,
and Destination Port) to distribute IP traffic over members of a Port Channel as well as equal-cost paths.
To designate another method to balance traffic over Port Channel members, use the load-balance
command.

S4810
Syntax

load-balance {ip-selection [dest-ip | source-ip]} | {mac [destmac | source-dest-mac | source-mac]} | {tcp-udp | ingress-port
[enable]}
To return to the default setting (IP 4-tuple), use the no load-balance {ipselection [dest-ip | source-ip]} | {mac [dest-mac | source-

IPv4 Routing

867

dest-mac | source-mac]} | {tcp-udp | ingress-port
[enable]}command.
Parameters

ip-selection
{dest-ip |
source-ip}

mac {dest-mac
| source-destmac | sourcemac}

tcp-udp enable

Enter the keywords to distribute IP traffic based on the
following criteria:
•

dest-ip — Uses destination IP address and destination
port fields to hash. The hashing mechanism returns a 3bit index indicating which port the packet should be
forwarded.

•

source-ip — Uses source IP address and source port
fields to hash. The hashing mechanism returns a 3-bit
index indicating which port the packet should be
forwarded.

Enter the keywords to distribute MAC traffic based on the
following criteria:
•

dest-mac — Uses the destination MAC address, VLAN,
Ethertype, source module ID and source port ID fields to
hash. The hashing mechanism returns a 3-bit index
indicating which port the packet should be forwarded.

•

source-dest-mac — Uses the destination and source
MAC address, VLAN, Ethertype, source module ID and
source port ID fields to hash. The hashing mechanism
returns a 3-bit index indicating which port the packet
should be forwarded.

•

source-mac — Uses the source MAC address, VLAN,
Ethertype, source module ID and source port ID fields to
hash. The hashing mechanism returns a 3-bit index
indicating which port the packet should be forwarded.

Enter the keywords to distribute traffic based on the
following:
•

ingress-port
enable

enable — Takes the TCP/UDP source and destination
ports into consideration when doing hash computations.
This option is enabled by default.

Enter the keywords to distribute traffic based on the
following:
•

enable — Takes the source port into consideration when
doing hash computations. This option is disabled by
default.

Defaults

IP 4-tuple (IP SA, IP DA, Source Port, Destination Port)

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

868

IPv4 Routing

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Added the ingress-port parameter for the S4810.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

By default, Dell Networking OS distributes incoming traffic based on a hash
algorithm using the following criteria:
•

IP source address

•

IP destination address

•

TCP/UDP source port

•

TCP/UDP destination port

load-balance hg
Choose the traffic flow parameters the hash calculation uses while distributing the traffic across internal
higig links.

S4810
Syntax

IPv4 Routing

[no] load-balance hg { ip-selection | ipv6-selection [source-ip
| source-ipv6 | source-port-id | source-module-id | dest-ip |
dest-ipv6 | dest-port-id | dest-module-id | protocol | vlan |
L4-source-port | L4-dest-port ] | mac [source-mac | sourceport-id | source-module-id | dest-mac | dest-port-id | destmodule-id | vlan | ethertype | source-dest-mac ] | tunnel
[ipv4-over-ipv4 | ipv4-over-gre-ipv4 | mac-in-mac]}

869

Parameters

{ip-selection|
ipv6-selection
[source-ip |
source-ipv6 |
source-port-id
| sourcemodule-id |
dest-ip | destipv6 | destport-id | destmodule-id |
protocol | vlan |
L4-source-port
| L4-dest-port ]

mac [sourcemac | sourceport-id |
sourcemodule-id |
dest-mac |
dest-port-id |
dest-moduleid | vlan |
ethertype |
source-destmac ]

tunnel [ipv4over-ipv4 |
ipv4-over-greipv4 | mac-inmac]}

870

To use IPv4 key fields in hash computation, enter the
keyword ip-selection then one of the parameters. To use
IPv6 key fields in hash computation, enter the keyword
ipv6-selection then one of the parameters.
•

source-ip — Use IPv4 src-ip field in hash calculation.

•

source-ipv6 — Use IPv6 src-ip field in hash calculation

•

source-port-id — Use src-port-id field in hash
calculation.

•

source-module-id — Use src-module-id field in hash
calculation.

•

dest-ip — Use IPv4 dest-ip field in hash calculation.

•

dest-ipv6 — Use IPv6 dest-ip field in hash calculation

•

dest-port-id — Use dest-port-id field in hash calculation.

•

dest-module-id — Use dest-module-id field in hash
calculation.

•

protocol — Use IPv4 protocol field in hash calculation.

•

vlan — Use vlan field in hash calculation.

•

L4-source-port — Use IPv4 L4-source-port field in hash
calculation.

•

L4-dest-port — Use IPv4 L4-dest-port field in hash
calculation.

To use MAC key fields in hash computation, enter the
keyword mac then one of the parameters:
•

source-mac — Use source-mac field in hash calculation.

•

source-port-id — Use src-port-id field in hash
calculation.

•

source-module-id — Use src-module-id field in hash
calculation.

•

dest-mac — Use dest-mac field in hash calculation.

•

dest-port-id — Use dest-port-id field in hash calculation.

•

dest-module-id — Use dest-module-id field in hash
calculation.

•

vlan — Use vlan field in hash calculation .

•

ethertype — Use Ethertype field in hash calculation.

•

source-dest-mac — Use SMAC and DMAC fields in hash
calculation.

To use tunnel key fields in hash computation, enter the
keyword tunnel then one of the parameters:
•

ipv4-over-ipv4 — Use ipv4-over-ipv4 field in hash
calculation.

•

ipv4-over-gre-ipv4 — Use ipv4-over-gre-ipv4 field in
hash calculation.

•

mac-in-mac — Use mac-in-mac field in hash calculation.

IPv4 Routing

Defaults

IP selection 5-tuples (source-ip dest-ip vlan protocol L4-source-port L4-destport).

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Added support for IPv6.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

management route
Configure a static route that points to the Management interface or a forwarding router.

S4810
Syntax

management route {{ip-address mask | {ipv6-address prefixlength}} {forwarding-router-address | managementethernet}
To remove a static route, use the no management route{{ip-address mask
| {ipv6-address prefix-length}}{forwarding-router-address |
managementethernet} command.

Parameters

ip-address
mask

Enter an IP address (dotted decimal format) and mask (/prefix
format) of the destination subnet.

ipv6-address
prefix-length

Enter an IPv6 address (x:x:x:x::x format) and mask (/prefix
format) of the destination subnet. Enter the IPv6 address in
the x:x:x:x::x format followed by the prefix length in the /x
format.
The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

forwardingrouter-address

IPv4 Routing

Enter an IP address (dotted decimal format) or an IPv6
address (x:x:x:x::x format) of a forwarding router.

871

managementet
hernet

Enter the keyword managementethernet for the
Management interface on the Primary RPM.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000 and added support for IPv6.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

When a static route (or a protocol route) overlaps with Management static route,
the static route (or a protocol route) is preferred over the Management Static route.
Also, Management static routes and the Management Connected prefix are not
reflected in the hardware routing tables. Separate routing tables are maintained for
IPv4 and IPv6 management routes. This command manages both tables.

Related
Commands

interface ManagementEthernet — configures the Management port on the system
(either the Primary or Standby RPM).
speed (Management interface) — sets the speed for the Management interface.

show arp
Display the ARP table.

S4810
Syntax

872

show arp [vrf vrf-name] [interface interface | ip ip-address
[mask] | macaddress mac-address [mac-address mask]] [retries]
[static | dynamic] [inspection {database | statistics][summary]

IPv4 Routing

Parameters

vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF.
NOTE: Use this attribute to start a BGP instance for either
a specific address family corresponding to the default
VRF or an IPv4 address family corresponding to a nondefault VRF.

interface
interface

Command
Modes

IPv4 Routing

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For the Management interface, enter the keyword
managementethernet then the slot/port information.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

ip ip-address
mask

(OPTIONAL) Enter the keyword ip then an IP address in the
dotted decimal format. Enter the optional IP address mask in
the slash prefix format (/ x).

inspection

Enter the keyword inspection with one of the following
keywords to view ARP entries:
•

database — view a list of ARP entries learned using DAI

•

statistics — view DAI statistics

macaddress
mac-address
mask

(OPTIONAL) Enter the keyword macaddress then a MAC
address in nn:nn:nn:nn:nn:nn format. Enter the optional
MAC address mask in nn:nn:nn:nn:nn format also.

static

(OPTIONAL) Enter the keyword static to view entries
entered manually.

retries

(OPTIONAL) Enter the keyword retries to show the
number of ARP retries before a 20–second back off.

dynamic

(OPTIONAL) Enter the keyword dynamic to view dynamic
entries.

summary

(OPTIONAL) Enter the keyword summary to view a summary
of ARP entries.

EXEC Privilege

873

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF and added usage information for the
clear arp-cache command.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added support for 4094 VLANs on the E-Series ExaScale (the
prior limit was 2094).

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.8.1.0

Augmented to display local ARP entries learned from private
VLANs (PVLANs).

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following example shows two VLANs that are associated with a private VLAN
(PVLAN) (refer to Private VLAN (PVLAN)).
If you have entered the clear arp-cache command to remove a large number
of ARP entries and the command is still being processed in the background, an
error message display if you attempt to enter the show arp command:
Clear arp in-progress. Please try after sometime!
The following describes the show arp command shown in the following example.
Description

874

Protocol

Displays the protocol type.

Address

Displays the IP address of the ARP entry.

Age(min)

Displays the age (in minutes) of the ARP entry.

Hardware Address

Displays the MAC address associated with the ARP entry.

Interface

Displays the first two letters of the interfaces type and the
slot/port associated with the ARP entry.

IPv4 Routing

Description

Example

VLAN

Displays the VLAN ID, if any, associated with the ARP entry.

CPU

Lists which CPU the entries are stored on.

Dell>show arp
Protocol Address Age(min) Hardware Address Interface VLAN CPU
------------------------------------------------------------Internet 192.2.1.254 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.253 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.252 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.251 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.250 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.251 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.250 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.249 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.248 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.247 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.246 1 00:00:c0:02:01:02 Gi 9/13 CP
Internet 192.2.1.245 1 00:00:c0:02:01:02 Gi 9/13 CP

Example
(Private VLAN)

NOTE: In this example, Line 1 shows community VLAN 200 (in primary VLAN
10) in a PVLAN. Line 2 shows primary VLAN 10.
Dell#show arp
Protocol Address Age(min) Hardware Address Interface VLAN
CPU
--------------------------------------------------------------Internet 5.5.5.1
- 00:01:e8:43:96:5e Vl 10 pv
200 CP
Internet 5.5.5.10
- 00:01:e8:44:99:55 Vl
10
CP
Internet 10.1.2.4
1 00:01:e8:d5:9e:e2 Ma 0/0
CP
Internet 10.10.10.4
1 00:01:e8:d5:9e:e2 Ma 0/0
CP
Internet 10.16.127.53 1 00:01:e8:d5:9e:e2 Ma 0/0
CP
Internet 10.16.134.254 20 00:01:e8:d5:9e:e2 Ma 0/0
CP
Internet 133.33.33.4
1 00:01:e8:d5:9e:e2 Ma 0/0
CP

Usage
Information

The following describes the show arp summary command shown in the
following example.
Description

Example
(Summary)

IPv4 Routing

Total Entries

Lists the total number of ARP entries in the ARP table.

Static Entries

Lists the total number of configured or static ARP entries.

Dynamic Entries

Lists the total number of learned or dynamic ARP entries.

CPU

Lists which CPU the entries are stored on.

#show arp summary
TotalEntries Static Entries Dynamic Entries CPU

875

---------------------------------------------83
0
83
CP
Dell
Related
Commands

ip local-proxy-arp — enables/disables Layer 3 communication in secondary VLANs.
switchport mode private-vlan — sets PVLAN mode of the selected port.

show arp retries
Display the configured number of ARP retries.

S4810
Syntax

show arp retries

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced.

arp retries — sets the number of ARP retries in case the system does not receive an
ARP reply in response to an ARP request.

show hosts
View the host table and DNS configuration.

S4810
Syntax

876

show hosts

IPv4 Routing

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Added support for IPv6 addresses.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show hosts command in the following example.
Field

Description

Default domain...

Displays the domain name (if configured).

Name/address
lookup...

States if DNS is enabled on the system.
•

If DNS is enabled, the Name/Address lookup is domain
service.

•

If DNS is not enabled, the Name/Address lookup is static
mapping

Name servers
are...

Lists the name servers, if configured.

Host

Displays the host name assigned to the IP address.

Flags

Classifies the entry as one of the following:
•

perm — the entry was manually configured and will not
time out

•

temp — the entry was learned and will time out after 72
hours of inactivity.

Also included in the flag is an indication of the validity of the
route:

IPv4 Routing

•

ok — the entry is valid.

•

ex — the entry expired.

877

Field

Description
•

Example

Related
Commands

?? — the entry is suspect.

TTL

Displays the amount of time until the entry ages out of the
cache. For dynamically learned entries only.

Type

Displays IP as the type of entry.

Address

Displays the IP addresses assigned to the host.

Dell#show hosts
Default domain is not set
Name/address lookup uses static
Name servers are not set
Host
Flags
TTL
Type
-------- -------- ---ks
(perm, OK) IP
4200-1 (perm, OK) IP
1230-3 (perm, OK) IP
ZZr
(perm, OK) IP
Z10-3
(perm, OK) IP
Dell#

mappings
Address
------2.2.2.2
192.68.69.2
192.68.99.2
192.71.18.2
192.71.23.1

traceroute — views the DNS resolution.
ip host — configures a host.

show ip cam linecard
View CAM entries for a port pipe on a line card.

S4810
Syntax

Parameters

878

show ip cam linecard number port-set pipe-number [ip-address
mask [longer-prefixes] | index index-number | summary | vrf vrf
instance]
number

Enter the number of the line card.

pipe-number

Enter the number of the line card’s port-pipe. The range is
from 0 to 1.

ip-address
mask [longerprefix]

(OPTIONAL) Enter the IP address and mask of a route to
CAM entries for that route only. Enter the keyword longerprefixes to view routes with a common prefix.

index indexnumber

(OPTIONAL) Enter the keyword index then the CAM index
number. The range depends on CAM size.

summary

(OPTIONAL) Enter the keyword summary to view a table
listing route prefixes and the total number of routes that can
be entered into the CAM.

IPv4 Routing

vrf instance

(OPTIONAL) E-Series Only: Enter the keyword vrf then the
VRF instance name to show CAM information as it applies to
that VRF instance.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.2

Introduced on the E-Series ExaScale E600i.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip cam command shown in the following
example.
Field

Description

Index

Displays the CAM index number of the entry.

Destination

Displays the destination route of the index.

EC

Displays the number of equal cost multipaths (ECMP)
available for the default route for non-Jumbo line cards. For
Jumbo line cards, displays 0,1 when ECMP is more than
eight.

CG

Displays 0.

V

Displays a 1 if the entry is valid and a 0 if the entry is for a
line card with Catalog number beginning with LC-EF.

C

Displays the CPU bit. 1 indicates that a packet hitting this
entry is forwarded to the CP or RP2, depending on Egress
port.

Next-Hop

Displays the next hop IP address of the entry.

VId

Displays the VLAN ID. If the entry is 0, the entry is not part of
a VLAN.

879

Field

Description

Mac Addr

Displays the next-hop router’s MAC address.

Port

Displays the egress interface. Use the second half of the
entry to determine the interface. For example, in the entry
17cl CP, the CP is the pertinent portion.
•

CP = control processor

•

RP2 = route processor 2

•

Gi = Gigabit Ethernet interface

•

So = SONET interface

•

Te = 10-Gigabit Ethernet interface

Example

Dell#show ip cam linecard 13 port-set 0
Index Destination EC CG V C Next-Hop VId Mac-Addr
Port
------ ----------------------------------- ---- ------------3276
6.6.6.2
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP
3277
5.5.5.2
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP
3278
4.4.4.2
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP
3279
3.3.3.2
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP
3280
2.2.2.2
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c1 CP
11144 6.6.6.0
0 0 1 1 0.0.0.0 6 00:00:00:00:00:00 17c5 RP2
11145 5.5.5.0
0 0 1 1 0.0.0.0 5 00:00:00:00:00:00 17c5 RP2
11146 4.4.4.0
0 0 1 1 0.0.0.0 4 00:00:00:00:00:00 17c5 RP2
11147 3.3.3.0
0 0 1 1 0.0.0.0 3 00:00:00:00:00:00 17c5 RP2
11148 2.2.2.0
0 0 1 1 0.0.0.0 2 00:00:00:00:00:00 17c5 RP2
65535 0.0.0.0
0 0 1 1 0.0.0.0 0 00:00:00:00:00:00 17c5 RP2
Dell#

Usage
Information

The following describes the show ip cam summary command shown in the
following example.

Example
(Summary)

Field

Description

Prefix Length

Displays the prefix-length or mask for the IP address
configured on the linecard 0 port pipe 0.

Current Use

Displays the number of routes currently configured for the
corresponding prefix or mask on the linecard 0 port pipe 0.

Initial Size

Displays the CAM size Dell Networking OS allocates for the
corresponding mask. Dell Networking OS adjusts the CAM
size if the number of routes for the mask exceeds the initial
allocation.

Dell#show ip cam linecard 4 port-set 0 summary
Total Number of Routes in the CAM is 13
Total Number of Routes which can be entered in CAM is 131072
Prefix Len Current Use Initial Sz
---------- ----------- ---------32
7
37994
31
0
1312
30
0
3932
29
0
1312
28
0
1312

880

IPv4 Routing

27
26
25
24
23
22
21
20
19
18
17
16
15
14
13
12
11
10
9
8
7
6
5
4
3
2
1
0
Dell#

0
0
0
6
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0

1312
1312
1312
40610
3932
2622
2622
2622
2622
1312
1312
3932
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
1312
8

show ip cam stack-unit
Display CAM entries for an S-Series or Z-Series switch.

S4810
Syntax

Parameters

IPv4 Routing

show ip cam stack-unit {id} [port-set {pipe-number} | hostname
{ip-address mask [longer-prefixes [ecmp-group detail]]}| ecmpgroup {detail | member-info [detail [group-index indexnumber]]}| summary]
id

Enter the stack-unit ID. The unit ID range is from 0 to 11 for
the S4810.

port-set pipenumber

Enter the keyword port-set then the number of the stack
unit’s port-pipe. The unit ID range is from 0 to 0 for the
S4810.

hostname

Enter the hostname in A.B.C.D format.

network mask
[longerprefixes [ecmpgroup detail]]

(OPTIONAL) Enter the IP address and mask of a route to
CAM entries for that route only. You can enter one of the
following keywords to filter results.
•

Enter the keyword longer-prefixes to view routes
with a common prefix.

881

•

ecmp-group
{detail |
member-info
[detail [groupindex indexnumber]]}

summary

Enter the keyword ecmp-group detail to view the
ECMP group index.

(OPTIONAL) Enter the keyword ecmp-group then one of the
following keywords to filter results.
•

Enter the keyword detail to view the ECMP group
index.

•

Enter the keyword member-info to view the member
information for the ECMP group.

•

Enter the keyword member-info detail to view
detailed ECMP membership and n-hop information.

•

Enter the keyword group-index then the index number
to show ECMP membership per group. The range is from
0 to 1022.

(OPTIONAL) Enter the keyword summary to view a table
listing route prefixes and the total number routes which can
be entered in to CAM.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

882

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Added support for up to seven stack members.

Version 7.6.1.0

Introduced on the S-Series.

The following describes the show ip cam command shown in the following
example.
Field

Description

Destination

Displays the destination route of the index.

EC

Displays the number of equal cost multipaths (ECMP)
available for the default route for non-Jumbo line cards. For
Jumbo line cards, displays 0,1 when ECMP is more than
eight.

CG

Displays 0.

IPv4 Routing

Example

Field

Description

V

Displays a 1 if the entry is valid and a 0 otherwise.

C

Displays the CPU bit. 1 indicates that a packet hitting this
entry is forwarded to the CP or RP2, depending on Egress
port.

V Id

Displays the VLAN ID. If the entry is 0, the entry is not part of
a VLAN.

Mac Addr

Displays the next-hop router’s MAC address.

Port

Displays the egress interface. Use the second half of the
entry to determine the interface. For example, in the entry
17cl CP, the CP is the pertinent portion.
•

CP = control processor

•

Gi = Gigabit Ethernet interface

•

Te = 10–Gigabit Ethernet interface

Dell#show ip cam stack-unit 0 port-set 0 10.10.10.10/32 longerprefixes
Destination
EC CG V C VId Mac-Addr
Port
----------------- -- -- - ------ -------------------10.10.10.10
0 0 1 1 0
00:00:00:00:00:00 3f01 CP
Dell#

Usage
Information

Example
(ECMP-Group)

IPv4 Routing

The following describes the show ip cam ecmp-group command shown in the
following example.
Field

Description

Prefix Length

Displays the prefix-length or mask for the IP address
configured on the linecard 0 port pipe 0.

Current Use

Displays the number of routes currently configured for the
corresponding prefix or mask on the linecard 0 port pipe 0.

Initial Size

Displays the CAM size Dell Networking OS allocates for the
corresponding mask. Dell Networking OS adjusts the CAM
size if the number of routes for the mask exceeds the initial
allocation.

Dell#show ip cam stack-unit 0 po 0 ecmp-group detail
Destination EC CG
----------------1.1.1.2
0 0
2.1.1.2
0 0
1.1.1.1
0 0
2.1.1.1
0 0
1.1.1.0
0 0
2.1.1.0
0 0
100.1.1.
0 1
100.1.1.
0 1

V C VId
-- -- 1 0
0
1 0
0
1 1
0
1 1
0
1 1
0
1 1
0
0 1
0
0 1
0

Mac-Addr
Port ECMP Group-Index
----- ---------------- ------------00:01:e8:8a:d6:58
0004 Te 0/3
00:01:e8:8a:d6:58
0009 Te 0/8
00:00:00:00:00:00
3f01 CP
00:00:00:00:00:00
3f01 CP
00:00:00:00:00:00
3f01 CP
00:00:00:00:00:00
3f01 CP
0 00:01:e8:8a:d6:58 0004 Te 0/3
0
0 00:01:e8:8a:d6:58 0009 Te 0/8
0

883

0.0.0.0
Dell#
Example
(Member-Info)

0 0 1 1

0 00:00:00:00:00:00

3f01 CP

-

Dell#show ip cam stack-unit 0 po 0 ecmp-group member-info
detail
Group Index Member Count Mac-Addr
Port
VLan ID Gateway
----------- ------------------------------- -----------------0
2
00:01:e8:8a:d6:58 Te 0/3
0
1.1.1.2
00:01:e8:8a:d6:58 Te 0/8
0
2.1.1.2
Dell#

show ip fib linecard
View all forwarding information base (FIB) entries.

S4810
Syntax
Parameters

show ip fib linecard slot-number [vrf vrf instance | ipaddress/prefix-list | summary]
vrf instance

(OPTIONAL) E-Series Only: Enter the keyword vrf then the
VRF instance name to show the FIB cache entries tied to that
VRF instance.

slot-number

Enter the number of the line card slot.

ip-address
mask

(OPTIONAL) Enter the IP address of the network destination
to view only information on that destination. Enter the IP
address is dotted decimal format (A.B.C.D). Enter the mask in
slash prefix format (/X).

longer-prefixes

(OPTIONAL) Enter the keywords longer-prefixes to view
all routes with a common prefix.

summary

(OPTIONAL) Enter the keyword summary to view the total
number of prefixes in the FIB.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

884

Introduced on the S4820T.

IPv4 Routing

Usage
Information

Example

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip fib command shown in the following
example.
Field

Description

Destination

Lists the destination IP address.

Gateway

Displays either the word “direct” and an interface for a
directly connected route or the remote IP address used to
forward the traffic.

First-Hop

Displays the first hop IP address.

Mac-Addr

Displays the MAC address.

Port

Displays the egress-port information.

VId

Displays the VLAN ID. If no VLAN is assigned, zero (0) is
listed.

Index

Displays the internal interface number.

EC

Displays the number of ECMP paths.

Dell>show ip fib linecard 12
Destination
Gateway
First-Hop
Mac-Addr
Port
VId Index EC
------------------------------------------------------------------------------3.0.0.0/8
via 100.10.10.10, So 2/8 100.10.10.10
00:01:e8:00:03:ff So 2/8 0 60260 0
3.0.0.0/8
via 101.10.10.10, So 2/9
00.10.10.0/24 Direct, So 2/8 0.0.0.0
00:01:e8:00:03:ff So 2/8 0 11144 0
100.10.10.1/32 via 127.0.0.1 127.0.0.1
00:00:00:00:00:00 CP
0 3276 0
100.10.10.10/32 via 100.10.10.10, So 2/8 100.10.10.10
00:01:e8:00:03:ff So 2/8 0 0
0
101.10.10.0/24 Direct, So 2/9 0.0.0.0
00:00:00:00:00:00 RP2
0 11145 0
101.10.10.1/32 via 127.0.0.1 127.0.0.1
00:00:00:00:00:00 CP
0 3277 0
101.10.10.10/32 via 101.10.10.10, So 2/9 101.10.10.10
00:01:e8:01:62:32 So 2/9 0 1
0
Dell>

IPv4 Routing

885

show ip fib stack-unit
View all FIB entries.

S4810
Syntax
Parameters

show ip fib stack-unit id [ip-address [mask] [longer-prefixes]
| summary]
id

Enter the S-Series stack unit ID. The unit ID range is from 0
to 11 for the S4810.

ip-address
mask

(OPTIONAL) Enter the IP address of the network destination
to view only information on that destination. Enter the IP
address in dotted decimal format (A.B.C.D). Enter the mask in
slash prefix format (/X).

longer-prefixes

(OPTIONAL) Enter the keywords longer-prefixes to view
all routes with a common prefix.

summary

(OPTIONAL) Enter the keyword summary to view the total
number of prefixes in the FIB.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

886

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Added support for up to seven stack members.

Version 7.6.1.0

Introduced on the S-Series.

The following describes the show ip fib stack-unit command shown in the
following example.
Field

Description

Destination

Lists the destination IP address.

Gateway

Displays either the word “direct” and an interface for a
directly connected route or the remote IP address used to
forward the traffic.

IPv4 Routing

Example

Field

Description

First-Hop

Displays the first hop IP address.

Mac-Addr

Displays the MAC address.

Port

Displays the egress-port information.

VId

Displays the VLAN ID. If no VLAN is assigned, zero (0) is
listed.

EC

Displays the number of ECMP paths.

Dell#show ip fib stack-unit 0
Destination
Gateway
First-Hop
Mac-Addr
-----------------------------------------------------10.10.10.10/32 Direct, Nu 0 0.0.0.0
00:00:00:00:00:00
Port
VId EC
------------BLK HOLE 0 0
Dell>

Related
Commands

clear ip fib stack-unit — clear FIB entries on a specified stack-unit.

show ip flow
Show how a Layer 3 packet is forwarded when it arrives at a particular interface.

S4810
Syntax

Parameters

IPv4 Routing

show ip flow interface interface {source-ip address
destination-ip address} {protocol number [tcp | udp]} {src-port
number destination-port number}
interface
interface

Enter the keyword interface then one of the following
interface keywords.
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

source-ip
address

Enter the keywords source-ip then the IP source address
in IP address format.

destination-ip
address

Enter the keywords destination-ip then the IP
destination address in IP address format.

887

protocol
number [tcp |
udp]

Enter the keyword protocol then one of the protocol type
keywords: tcp, udp, or protocol number The protocol
number range is from 0 to 255. .

src-port
number

Enter the keywords src-port then the source port number.

destinationport number

Enter the keywords destination-port then the destination
port number.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

This command provides egress port information for a given IP flow. This
information is useful in identifying which interface the packet follows in the case of
Port-channel and Equal Cost Multi Paths. Use this command for routed packed
only. For switched packets, use the show port-channel-flow command.
The show ip flow command does not compute the egress port information
when load-balance mac hashing is also configured due to insufficient
information (the egress MAC is not available).
S-Series produces the following error message: %Error: Unable to read IP
route table.

Example

Dell#show ip flow interface Gi 1/8 189.1.1.1 63.0.0.1 protocol
tcp source-port 7898 destination-port 8
flow: 189.1.1.1 63.0.0.1 protocol 6 7868 8976

888

IPv4 Routing

Ingress interface:Gi 1/20
Egress interface:Gi 1/14 to 1.7.1.2[CAM hit 103710]
unfragmented packet
Gi 1/10 to 1.2.1.2[CAM hit 103710] fragmented
packet

show ip interface
View IP-related information on all interfaces.

S4810
Syntax
Parameters

show ip interface [interface | brief] [configured]
interface

(OPTIONAL)
Enter the following keywords and slot/port or number
information:

IPv4 Routing

•

For a Loopback interface, enter the keyword Loopback
then a number from 0 to 16383.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For the Management interface, enter the keyword
ManagementEthernet then zero (0).

•

For the Null interface, enter the keyword null then zero
(0).

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a stack-unit interface, enter the keyword stackunit then the stack unit number. The range is from 0 to
7.

•

For a tunnel interface, enter the keyword tunnel then
the tunnel interface number. The range is from 1 to
16383.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

brief

(OPTIONAL) Enter the keyword brief to view a brief
summary of the interfaces and whether an IP address is
assigned.

configured

(OPTIONAL) Enter the keyword configured to display the
physical interfaces with non-default configurations only.

889

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

890

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.2

Supported on the E-Series ExaScale E600i.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip interface command shown in the
following example.
Lines

Description

TenGigabitEthern
et 0/0...

Displays the interface’s type, slot/port, and physical and line
protocol status.

Internet address...

States whether an IP address is assigned to the interface. If
an IP address is assigned, that address is displayed.

IP MTU is...

Displays IP MTU value.

Inbound access...

Displays the name of the configured incoming access list. If
none is configured, the phrase “not set” is displayed.

Proxy ARP...

States whether proxy ARP is enabled on the interface.

Split horizon...

States whether split horizon for RIP is enabled on the
interface.

Poison Reverse...

States whether poison for RIP is enabled on the interface.

ICMP redirects...

States if ICMP redirects are sent.

ICMP
unreachables...

States if ICMP unreachable messages are sent.

IPv4 Routing

Example

Dell#show ip int te 0/0
TenGigabitEthernet 0/0 is down, line protocol is down
Internet address is not set
IP MTU is 1500 bytes
Inbound access list is not set
Proxy ARP is enabled
Split Horizon is enabled
Poison Reverse is disabled
ICMP redirects are not sent
ICMP unreachables are not sent
Dell#

Usage
Information

Example (Brief)

IPv4 Routing

The following describes the show ip interface brief command shown in the
following example.
Fields

Description

Interface

Displays type of interface and the associated slot and port
number.

IP-Address

Displays the IP address for the interface, if configured.

Ok?

Indicates if the hardware is functioning properly.

Method

Displays “Manual” if the configuration is read from the saved
configuration.

Status

States whether the interface is enabled (up) or disabled
(administratively down).

Protocol

States whether IP is enabled (up) or disabled (down) on the
interface.

Dell#show ip int brief
Interface
IP-Address
Status
Protocol
GigabitEthernet 1/0 unassigned
down down
GigabitEthernet 1/1 unassigned
down down
GigabitEthernet 1/2 unassigned
up
up
GigabitEthernet 1/3 unassigned
up
up
GigabitEthernet 1/4 unassigned
up
up
GigabitEthernet 1/5 10.10.10.1
up
up
GigabitEthernet 1/6 unassigned
down down

OK? Method
NO

Manual

administratively

NO

Manual

administratively

YES Manual
YES Manual
YES Manual
YES Manual
NO

Manual

administratively

891

show ip management-route
View the IP addresses assigned to the Management interface.

S4810
Syntax
Parameters

show ip management-route [all | connected | summary | static]
all

(OPTIONAL) Enter the keyword all to view all IP addresses
assigned to all Management interfaces on the switch.

connected

(OPTIONAL) Enter the keyword connected to view only
routes directly connected to the Management interface.

summary

(OPTIONAL) Enter the keyword summary to view a table
listing the number of active and non-active routes and their
sources.

static

(OPTIONAL) Enter the keyword static to view non-active
routes also.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell#show ip management-route
Destination
----------10.1.2.0/24
172.16.1.0/24
Dell#

892

Gateway
------ManagementEthernet 0/0
10.1.2.4

State
----Connected
Active

IPv4 Routing

show ipv6 management-route
Display the IPv6 static routes configured for the management interface.

S4810
Syntax
Parameters

show ipv6 management-route [all | connected | summary | static]
all

(OPTIONAL) Enter the keyword all to view all IP addresses
assigned to all Management interfaces on the switch.

connected

(OPTIONAL) Enter the keyword connected to view only
routes directly connected to the Management interface.

summary

(OPTIONAL) Enter the keyword summary to view a table
listing the number of active and non-active routes and their
sources.

static

(OPTIONAL) Enter the keyword static to view non-active
routes also.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.4.1.0

Introduced on the C- and E-Series.

Version 8.3.7.0

Introduced on the S4810.

Dell#show ipv6 management-route
IPv6 Destination
Gateway
---------------------2001:34::0/64
ManagementEthernet 0/0
2001:68::0/64
2001:34::16
Dell#

State
----Connected
Active

893

show ip protocols
View information on all routing protocols enabled and active on the switch.

S4810
Syntax

show ip protocols

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

894

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Regular evaluation optimization enabled/disabled added to
display output.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell#show ip protocols
Routing Protocol is "bgp 1"
Cluster Id is set to 20.20.20.3
Router Id is set to 20.20.20.3
Fast-external-fallover enabled
Regular expression evaluation optimization enabled
Capable of ROUTE_REFRESH
For Address Family IPv4 Unicast
BGP table version is 0, main routing table version 0
Distance: external 20 internal 200 local 200
Neighbor(s):
Address : 20.20.20.2
Filter-list in : foo
Route-map in : foo
Weight : 0
Address : 5::6
Weight : 0
Dell#

IPv4 Routing

show ip route
View information, including how they were learned, about the IP routes on the switch.

S4810
Syntax

Parameters

show ip route [vrf vrf-name] hostname | ip-address [mask]
[longer-prefixes] | list prefix-list | protocol [process-id |
routing-tag] | all | connected | static | summary]
vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to enable BGPv4 multicast mode for that VRF.

ip-address

(OPTIONAL) Specify a name of a device or the IP address of
the device to view more detailed information about the
route.

mask

(OPTIONAL) Specify the network mask of the route. Use this
parameter with the IP address parameter.

longer-prefixes

(OPTIONAL) Enter the keywords longer-prefixes to view
all routes with a common prefix.

list prefix-list

(OPTIONAL) Enter the keyword list and the name of a
configured prefix list. For more information, refer to the
show ip route list command.

protocol

(OPTIONAL) Enter the name of a routing protocol (bgp,
isis, ospf, rip) or the keywords connected or static.
NOTE: bgp, isis, ospf, and rip.

IPv4 Routing

•

If you enter bgp, you can include the BGP as-number .

•

If you enter isis, you can include the ISIS routingtag.

•

If you enter ospf, you can include the OSPF processid.

process-id

(OPTIONAL) Specify that only OSPF routes with a certain
process ID must be displayed.

routing-tag

(OPTIONAL) Specify that only ISIS routes with a certain
routing tag must be displayed.

connected

(OPTIONAL) Enter the keyword connected to view only the
directly connected routes.

all

(OPTIONAL) Enter the keyword all to view both active and
non-active routes.

static

(OPTIONAL) Enter the keyword static to view only routes
the ip route command configures.

summary

(OPTIONAL) Enter the keyword summary. For more
information, refer to the show ip route summary command.

895

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

896

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.9.1.0

Introduced VRF on the E-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip route all command in the following
example.
Field

Description

(undefined)

Identifies the type of route:
•

C = connected

•

S = static

•

R = RIP

•

B = BGP

•

IN = internal BGP

•

EX = external BGP

•

LO = Locally Originated

•

O = OSPF

•

IA = OSPF inter area

•

N1 = OSPF NSSA external type 1

•

N2 = OSPF NSSA external type 2

•

E1 = OSPF external type 1

•

E2 = OSPF external type 2

•

i = IS-IS

IPv4 Routing

Field

Example

Description
•

L1 = IS-IS level-1

•

L2 = IS-IS level-2

•

IA = IS-IS inter-area

•

* = candidate default

•

> = non-active route

•

+ = summary routes

Destination

Identifies the route’s destination IP address

Gateway

Identifies whether the route is directly connected and on
which interface the route is configured.

Dist/Metric

Identifies if the route has a specified distance or metric.

Last Change

Identifies when the route was last changed or configured.

Dell#show ip route all
Codes:C- connected, S - static, R - RIP
B- BGP, IN - internal BGP, EX - external BGP, LO Locally Originated
O- OSPF, IA - OSPF inter area N1 - OSPF NSSA external
type 1
N2- OSPF NSSA external type 2, E1 - OSPF external type 1
E2- OSPF external type 2, i - IS-IS, L1 - IS-IS level-1
L2- IS-IS level-2, IA - IS-IS inter area, * - candidate
default
>- non-active route + - summary route
Gateway of last resort is not set
Destination
Gateway
Dist/Metric Last Change
----------- ------- ----------- ----------R
3.0.0.0/8
via 100.10.10.10, So 2/8 120/1
00:07:12
via 101.10.10.10, So 2/9
100.10.10.0/24 Direct, So 2/8
0/0
00:08:54
> R 100.10.10.0/24 Direct, So 2/8
120/0
00:08:54
C
101.10.10.0/24 Direct, So 2/9
0/0
00:09:15
> R 101.10.10.0/24 Direct, So 2/9
120/0
00:09:15
Dell#

Example
(Summary)

IPv4 Routing

Dell#show ip route summary
Route Source Active Routes
Non-active Routes
connected
2
0
static
1
0
Total
3
0
Total 3 active route(s) using 612 bytes
R1_E600i>show ip route static ?
|
Pipe through a command

R1_E600i>show ip route static
Destination
Gateway
Dist/Metric Last Change
----------- ------- ----------- ----------*S 0.0.0.0/0
via 10.10.91.9, Gi 1/2
1/0
3d2h
Dell>

897

Example (vrf)

Dell#show ip route vrf test1
Codes: C - connected, S - static, R - RIP,
B - BGP, IN - internal BGP, EX - external BGP,LO Locally Originated,
O - OSPF, IA - OSPF inter area, N1 - OSPF NSSA external
type 1,
N2 - OSPF NSSA external type 2, E1 - OSPF external type 1,
E2 - OSPF external type 2, i - IS-IS, L1 - IS-IS level-1,
L2 - IS-IS level-2, IA - IS-IS inter area, * candidate default,
> - non-active route, + - summary route
Gateway of last resort is not set

C

Destination
----------13.0.0.0/24

Gateway
Dist/Metric Last Change
----------------- ----------Direct, Te 0/17
0/0
00:00:04

show ip route list
Display IP routes in an IP prefix list.

S4810
Syntax
Parameters

show ip route list prefix-list
prefix-list

Enter the name of a configured prefix list.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

898

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

IPv4 Routing

pre-Version
6.1.1.0
Example

Introduced on the E-Series.

Dell#show ip route list test
Codes:C- connected, S - static, R - RIP,
B- BGP, IN - internal BGP, EX - external BGP,LO Locally Originated,
O- OSPF, IA - OSPF inter area, N1 - OSPF NSSA external
type 1,
N2- OSPF NSSA external type 2, E1 - OSPF external type 1,
E2- OSPF external type 2, i - IS-IS, L1 - IS-IS level-1,
L2- IS-IS level-2, IA - IS-IS inter area, * - candidate
default,
>- non-active route, + - summary route
Gateway of last resort is not set

R
R
R
R
C
Related
Commands

Destination
----------2.1.0.0/24
2.1.1.0/24
2.1.2.0/24
2.1.3.0/24
2.1.4.0/24

Gateway
------via 2.1.4.1, Gi
via 2.1.4.1, Gi
via 2.1.4.1, Gi
via 2.1.4.1, Gi
Direct, Gi 4/43

4/43
4/43
4/43
4/43

Dist/Metric Last Change
----------- ----------120/2
3d0h
120/2
3d1h
120/1
3d0h
120/1
3d1h
0/0
3d1h

ip prefix-list — enters CONFIGURATION-IP PREFIX-LIST mode and configures a
prefix list.
show ip prefix-list summary — displays a summary of the configured prefix lists.

show ip route summary
View a table summarizing the IP routes in the switch.

S4810
Syntax

show ip route summary

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

IPv4 Routing

Introduced on the S6000.

899

Usage
Information

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip route summary shown in the following
example.
Column Heading

Description

Route Source

Identifies how the route is configured in Dell Networking
OS.

Active Routes

Identifies the best route if a route is learned from two
protocol sources.

Non-active
Routes

Identifies the back-up routes when a route is learned by two
different protocols. If the best route or active route goes
down, the non-active route becomes the best route.

ospf 100

If routing protocols (OSPF, RIP) are configured and routes
are advertised, then information on those routes is
displayed.

Total 1388
active...

Displays the number of active and non-active routes and
the memory usage of those routes. If there are no routes
configured in the Dell Networking OS, this line does not
appear.

Dell>show ip route summary
Route Source
Active Routes
Non-active Routes
connected
17
0
static
3
0
ospf 100
1368
2
Intra-area: 762 Inter-area: 1 External-1: 600 External-2: 5
Total
1388
2
Total 1388 active route(s) using 222440 bytes
Total 2 non-active route(s) using 128 bytes
Dell>

Related
Commands

900

show ip route — displays information about the routes found in the switch.

IPv4 Routing

show ip traffic
View IP, ICMP, UDP, TCP and ARP traffic statistics.

S4810
Syntax

show ip traffic [all | cp | rp1 | rp2]
NOTE: These options are supported only on the E-Series.

Parameters

all

(OPTIONAL) Enter the keyword all to view statistics from all
processors. If you do not enter a keyword, you also view all
statistics from all processors.

cp

(OPTIONAL) Enter the keyword cp to view only statistics
from the Control Processor.

rp1

(OPTIONAL) Enter the keyword rp1 to view only the
statistics from Route Processor 1.

rp2

(OPTIONAL) Enter the keyword rp2 to view only the
statistics from Route Processor 2.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

IPv4 Routing

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

F10 Monitoring MIB available for the ip traffic
statistics command.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ip traffic summary shown in the following
example.

901

Keyword

Definition

unknown
protocol...

No receiver for these packets. Counts packets whose
protocol type field is not recognized by Dell Networking OS.

not a gateway...

Packets can not be routed; the host/network is unreachable.

security failures...

Counts the number of received unicast/multicast packets
that could not be forwarded due to:
•

route not found for unicast/multicast; ingress interfaces
do not belong to the destination multicast group

•

destination IP address belongs to reserved prefixes; the
host/network is unreachable

bad options...

Unrecognized IP option on a received packet.

Frags:

IP fragments received.

... reassembled

Number of IP fragments that were reassembled.

... timeouts

Number of times a timer expired on a reassembled queue.

... too big

Number of invalid IP fragments received.

... couldn’t
fragment

Number of packets that could not be fragmented and
forwarded.

...encapsulation
failed

Counts packets which could not be forwarded due to ARP
resolution failure. Dell Networking OS sends an arp request
prior to forwarding an IP packet. If a reply is not received,
Dell Networking OS repeats the request three times. These
packets are counted in encapsulation failed.

Rcvd:
...short packets

The number of bytes in the packet are too small.

...bad length

The length of the packet was not correct.

...no port
broadcasts

The incoming broadcast/multicast packet did not have any
listener.

...socket full

The applications buffer is full and the incoming packet are
dropped.

The Dell Monitoring MIB provides access to the following statistics.

902

•

IP Statistics: Bcast: Received: Object = f10BcastPktRecv, OIDs =
1.3.6.1.4.1.6027.3.3.5.1.1

•

IP Statistics: Bcast: Sent: Object = f10BcastPktSent, OIDs =
1.3.6.1.4.1.6027.3.3.5.1.2

•

IP Statistics: Mcast: Received: Object = f10McastPktRecv, OIDs =
1.3.6.1.4.1.6027.3.3.5.1.3

•

IP Statistics: Mcast: Sent: Object = f10McastPktSent, OIDs =
1.3.6.1.4.1.6027.3.3.5.1.4

•

ARP Statistics: Rcvd: Request: Object = f10ArpReqRecv, OIDs =
1.3.6.1.4.1.6027.3.3.5.2.1

IPv4 Routing

Example

•

ARP Statistics: Rcvd: Replies: Object = f10ArpReplyRecv, OIDs =
1.3.6.1.4.1.6027.3.3.5.2.3

•

ARP Statistics: Sent: Request: Object = f10ArpReqSent, OIDs =
1.3.6.1.4.1.6027.3.3.5.2.2

•

ARP Statistics: Sent: Replies: Object = f10ArpReplySent, OIDs =
1.3.6.1.4.1.6027.3.3.5.2.4

•

ARP Statistics: Sent: Proxy: Object = f10ArpProxySent, OIDs =
1.3.6.1.4.1.6027.3.3.5.2.5

Dell#show ip traffic
Control Processor IP Traffic:
IP statistics:
Rcvd: 23857 total, 23829 local destination
0 format errors, 0 checksum errors, 0 bad hop count
0 unknown protocol, 0 not a gateway
0 security failures, 0 bad options
Frags: 0 reassembled, 0 timeouts, 0 too big
0 fragmented, 0 couldn't fragment
Bcast: 28 received, 0 sent; Mcast: 0 received, 0 sent
Sent: 16048 generated, 0 forwarded
21 encapsulation failed, 0 no route
ICMP statistics:
Rcvd: 0 format errors, 0 checksum errors, 0 redirects, 0
unreachable
0 echo, 0 echo reply, 0 mask requests, 0 mask replies, 0
quench
0 parameter, 0 timestamp, 0 info request, 0 other
Sent: 0 redirects, 0 unreachable, 0 echo, 0 echo reply
0 mask requests, 0 mask replies, 0 quench, 0 timestamp
0 info reply, 0 time exceeded, 0 parameter problem
UDP statistics:
Rcvd: 0 total, 0 checksum errors, 0 no port
0 short packets, 0 bad length, 0 no port broadcasts, 0
socket full
Sent: 0 total, 0 forwarded broadcasts
TCP statistics:
Rcvd: 23829 total, 0 checksum errors, 0 no port
Sent: 16048 total
ARP statistics:
Rcvd: 156 requests, 11 replies
Sent: 21 requests, 10 replies (0 proxy)
Routing Processor1 IP Traffic:

show tcp statistics
View information on TCP traffic through the switch.

S4810
Syntax
Parameters

IPv4 Routing

show tcp statistics {all | cp | rp1 | rp2}
all

Enter the keyword all to view all TCP information.

903

cp

Enter the keyword cp to view only TCP information from the
Control Processor.

rp1

Enter the keyword rp1 to view only TCP statistics from
Route Processor 1.

rp2

Enter the keyword rp2 to view only TCP statistics from
Route Processor 2.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 6.4.1.0

Introduced

The following describes the show tcp statistics cp command shown in the
following example.
Field

Description

Rcvd:

Displays the number and types of TCP packets received by
the switch.

0 checksum
error...

904

•

Total = total packets received

•

no port = number of packets received with no
designated port

Displays the number of packets received with the following:
•

checksum errors

•

bad offset to data

•

too short

329 packets...

Displays the number of packets and bytes received in
sequence.

17 dup...

Displays the number of duplicate packets and bytes
received.

IPv4 Routing

Example

Field

Description

0 partially...

Displays the number of partially duplicated packets and
bytes received.

7 out-of-order...

Displays the number of packets and bytes received out of
order.

0 packets with
data after window

Displays the number of packets and bytes received that
exceed the switch’s window size.

0 packets after
close

Displays the number of packet received after the TCP
connection was closed.

0 window probe
packets...

Displays the number of window probe and update packets
received.

41 dup ack...

Displays the number of duplicate acknowledgement packets
and acknowledgement packets with data received.

10184 ack...

Displays the number of acknowledgement packets and
bytes received.

Sent:

Displays the total number of TCP packets sent and the
number of urgent packets sent.

25 control
packets...

Displays the number of control packets sent and the
number retransmitted.

11603 data
packets...

Displays the number of data packets sent.

24 data packets
retransmitted

Displays the number of data packets resent.

355 ack..

Displays the number of acknowledgement packets sent and
the number of packet delayed.

0 window probe...

Displays the number of window probe and update packets
sent.

7 Connections
initiated...

Displays the number of TCP connections initiated, accepted,
and established.

14 Connections
closed...

Displays the number of TCP connections closed, dropped.

20 Total rxmt...

Displays the number of times the switch tried to re-send
data and the number of connections dropped during the
TCP retransmit timeout period.

0 Keepalive....

Lists the number of keepalive packets in timeout, the
number keepalive probes and the number of TCP
connections dropped during keepalive.

Dell#show tcp stat cp
Control Processor TCP:
Rcvd: 10585 Total, 0 no port
0 checksum error, 0 bad offset, 0 too short

IPv4 Routing

905

329 packets (1263 bytes) in sequence
17 dup packets (6 bytes)
0 partially dup packets (0 bytes)
7 out-of-order packets (0 bytes)
0 packets ( 0 bytes) with data after window
0 packets after close
0 window probe packets, 41 window update packets
41 dup ack packets, 0 ack packets with unsend data
10184 ack packets (12439508 bytes)
Sent: 12007 Total, 0 urgent packets
25 control packets (including 24 retransmitted)
11603 data packets (12439677 bytes)
24 data packets (7638 bytes) retransmitted
355 ack only packets (41 delayed)
0 window probe packets, 0 window update packets
7 Connections initiated, 8 connections accepted, 15
connections established
14 Connections closed (including 0 dropped, 0 embryonic
dropped)
20 Total rxmt timeout, 0 connections dropped in rxmt timeout
0 Keepalive timeout, 0 keepalive probe, 0 Connections
dropped in keepalive
Dell#
Related
Commands

906

show ip cam stack-unit — displays the CAM table.

IPv4 Routing

IPv6 Access Control Lists (IPv6 ACLs)

28

IPv6 ACLs and IPv6 Route Map commands are supported on Dell Networking S4810 platform.
NOTE: For IPv4 ACL commands, refer to the Access Control Lists (ACL) chapter.

Important Points to Remember
•

Certain platforms require manual CAM usage space allotment. For more information, refer to the
cam-acl command.

•

Egress IPv6 ACL and IPv6 ACL on the Loopback interface is not supported.

•

Reference to an empty ACL permits any traffic.

•

ACLs are not applied to self-originated traffic (for example, Control Protocol traffic not affected by
IPv6 ACL because the routed bit is not set for Control Protocol traffic and for egress ACLs the routed
bit must be set).

•

You can use the same access list name for both IPv4 and IPv6 ACLs.

•

You can apply both IPv4 and IPv6 ACLs on an interface at the same time.

•

You can apply IPv6 ACLs on physical interfaces and a logical interfaces (Port-channel/VLAN).

•

Non-contiguous masks are not supported in source or destination addresses in IPv6 ACL entries.

•

Because the prefix mask is specified in /x format in IPv6 ACLs, inverse mask is not supported.

show cam-acl-egress
Show information on FP groups allocated for egress ACLs.

S4810
Syntax

show cam-acl-egress

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

IPv6 Access Control Lists (IPv6 ACLs)

Introduced on the S6000.

907

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 7.8.1.0

Introduced on the C-Series.

Dell#show cam-acl-egress
-- Chassis Egress Cam ACL -Current Settings(in block sizes)
L2Acl
:
1
Ipv4Acl :
1
Ipv6Acl :
2
-- Stack unit 0 -Current Settings(in block sizes)
L2Acl
:
1
Ipv4Acl :
1
Ipv6Acl :
2
Dell#show cam-acl

Related
Commands

cam-acl — configures CAM profiles to support IPv6 ACLs.

show cam-acl
Show space allocated for IPv6 ACLs.

S4810
Syntax

show cam-acl

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

908

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

IPv6 Access Control Lists (IPv6 ACLs)

Example

Version 8.4.2.1

Introduced on the S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 7.8.1.0

Introduced on the C-Series.

Dell#show cam-acl
-- Chassis Cam ACL -Current Settings(in block sizes)
L2Acl
:
5
Ipv4Acl :
6
Ipv6Acl :
0
Ipv4Qos :
1
L2Qos
:
1
-- Line card 4 -Current Settings(in block sizes)
L2Acl
:
5
Ipv4Acl :
6
Ipv6Acl :
0
Ipv4Qos :
1
L2Qos
:
1
Dell#show cam-acl

Example
(Manual
Profiles)

Dell#show cam-acl
-- Chassis Cam ACL -Current Settings(in block sizes)
L2Acl
:
2
Ipv4Acl :
2
Ipv6Acl :
4
Ipv4Qos :
2
L2Qos
:
3
-- Line card 4 -Current
L2Acl
:
Ipv4Acl :
Ipv6Acl :
Ipv4Qos :
L2Qos
:

Settings(in block sizes)
2
2
4
2
3

Dell#show cam-acl
Related
Commands

cam-acl — configures CAM profiles to support IPv6 ACLs.

IPv6 Access Control Lists (IPv6 ACLs)

909

permit icmp
To allow all or specific internet control message protocol (ICMP) messages, configure a filter.

S4810
Syntax

permit icmp {source address mask | any | host ipv6-address}
{destination address | any | host ipv6-address} [message-type]
[count [byte]] | [log] [monitor]
To remove this filter, you have two choices:
•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

Use the no permit icmp {source address mask | any | host ipv6address} {destination address | any | host ipv6-address}
command.

Parameters
Defaults

Not configured.

Command
Modes

ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

910

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale. Added the monitor
option.

IPv6 Access Control Lists (IPv6 ACLs)

permit
To configure a filter that matches the filter criteria, select an IPv6 protocol number, ICMP, IPv6, TCP, or
UDP.

S4810
Syntax

permit {ipv6-protocol-number | icmp | ipv6 | tcp | udp}
To remove this filter, you have two choices:

Parameters

•

Use the no seq sequence-number command syntax if you know the filter’s
sequence number

•

Use the no permit {ipv6-protocol-number | icmp | ipv6 | tcp |
udp} command

ip-protocolnumber

Enter an IPv6 protocol number. The range is from 0 to 255.

icmp

Enter the keyword icmp to filter internet Control Message
Protocol version 6.

ipv6

Enter the keyword ipv6 to filter any internet Protocol
version 6.

tcp

Enter the keyword tcp to filter the Transmission Control
protocol.

udp

Enter the keyword udp to filter the User Datagram Protocol.

Defaults

Not configured.

Command
Modes

ACCESS-LIST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

IPv6 Access Control Lists (IPv6 ACLs)

911

ipv6 control-plane egress-filter
Enable egress Layer 3 ACL lookup for IPv6 CPU traffic.

S4810
Syntax

ipv6 control-plane egress-filter

Defaults

Not enabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

ipv6 access-list
Configure an access list based on IPv6 addresses or protocols.

S4810
Syntax

ipv6 access-list access-list-name cpu-qos {permit | deny}
ospfv3
To delete an access list, use the no ipv6 access-list access-list-name
command.

Parameters

912

access-listname

Enter the access list name as a string, up to 140 characters.

cpu-qos

Enter the keyword cpu-qos to assign this ACL to control
plane traffic only (CoPP).

permit

Enter the keyword permit to configure a filter to forward
packets meeting this condition.

deny

Enter the keyword deny to configure a filter to drop packets
meeting this condition.

IPv6 Access Control Lists (IPv6 ACLs)

ospfv3

Specify that this ACL is for OSPFv3 control plane traffic

Defaults

All access lists contain an implicit “deny any”; that is, if no match occurs, the packet
is dropped.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4(0.0)

Added support for CoPP for OSPFv3 on the S4810, S4820T,
S6000, and Z9000 platforms.

Version 9.0.2.0

Introduced on the S6000

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series. Increased the name string to
accept up to 140 characters. Prior to version 7.8.1.0, names
are up to 16 characters long.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

The number of entries allowed per ACL is hardware-dependent. For detailed
specification on entries allowed per ACL, refer to your line card documentation.
You can create an IPv6 ACL for control-plane traffic policing for OSPFv3, in
addition to the CoPP support for VRRP, BGP, and ICMP.

cam-acl-egress
Allocate space for IPv6 egress ACLs.

S4810
Syntax
Parameters

cam-acl-egress {default | l2acl 1-4 ipv4acl 1-4 ipv6acl 0-4}
default

Use the default CAM profile settings, and set the CAM as
follows:
•

IPv6 Access Control Lists (IPv6 ACLs)

L2 ACL(l2acl): 1

913

l2acl 1-4
ipv4acl 1- 4
ipv6acl 0-4

•

L3 ACL (ipv4acl: 1

•

IPv6 L3 ACL (ipv6acl): 2

Allocate space to support IPv6 ACLs. Enter all of the profiles
and a range. Enter the CAM profile name then the amount to
be allotted. The total space allocated must equal 4. The
ipv6acl range must be a factor of 2.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

For the new settings to take effect, save the new CAM settings to the startupconfig (write-mem or copy run start), then reload the system.
The total amount of space allowed is 4 FP Blocks.

Example

914

Dell#
Dell#configure
Dell(conf)#cam-acl-egress ?
default
Reset Egress CAM ACL entries to default setting
l2acl
Set L2-ACL entries
Dell(conf)#cam-acl-egress l2acl ?
<1-4>
Number of FP blocks for l2acl
Dell(conf)#cam-acl-egress l2acl 1 ?
ipv4acl
Set IPV4-ACL entries
Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ?
ipv6acl
Set IPV6-ACL entries
Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl ?
<0-4>
Number of FP blocks for IPV6 (multiples of 2)
Dell(conf)#cam-acl-egress l2acl 1 ipv4acl 1 ipv6acl 2

IPv6 Access Control Lists (IPv6 ACLs)

cam-acl
Allocate space for IPv6 ACLs.

S4810
Syntax
Parameters

cam-acl {default | l2acl 1-10 ipv4acl 1-10 ipv6acl 0-10 ipv4qos
1-10 l2qos 1-10}
default

Use the default CAM profile settings, and set the CAM as
follows:
•
•
•
•
•

l2acl 1-10
ipv4acl 1-10
ipv6acl 0-10
ipv4qos 1-10
l2qos 1-10

L3 ACL (ipv4acl): 6
L2 ACL(l2acl): 5
IPv6 L3 ACL (ipv6acl): 0
L3 QoS (ipv4qos): 1
L2 QoS (l2qos): 1

Allocate space to support IPv6 ACLs. Enter all of the profiles
and a range. Enter the CAM profile name then the amount to
be allotted. The total space allocated must equal 13. The
ipv6acl range must be a factor of 2.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

For the new settings to take effect, save the new CAM settings to the startupconfig (write-mem or copy run start), then reload the system.
The total amount of space allowed is 16 FP blocks. System flow requires three
blocks and these blocks cannot be reallocated.
When configuring space for IPv6 ACLs, the total number of Blocks must equal 13.

IPv6 Access Control Lists (IPv6 ACLs)

915

Ranges for the CAM profiles are from 1 to 10, except for the ipv6acl profile
which is from 0 to 10. The ipv6acl allocation must be a factor of 2 (2, 4, 6, 8, 10).

916

IPv6 Access Control Lists (IPv6 ACLs)

29

IPv6 Basics
IPv6 basic commands are supported on the Dell Networking S4810 platform.

NOTE: For information about the Dell Networking operating software version and platform that
supports IPv6 in each software feature, refer to the IPv6 Addressing chapter of the Dell Networking
OS Configuration Guide.

clear ipv6 fib
Clear (refresh) all forwarding information base (FIB) entries on a linecard or stack unit.

S4810
Syntax
Parameters

clear ipv6 fib linecard slot | stack-unit unit-number
slot

Enter the slot number to clear the FIB for a linecard.

unit-number

Enter the stack member number.
The range is from 0 to 11 for the S4810.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv6 Basics

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

917

clear ipv6 route
Clear (refresh) all or a specific route from the IPv6 routing table.

S4810
Syntax
Parameters

clear ipv6 route {* | ipv6-address prefix-length}
*

Enter the * to clear (refresh) all routes from the IPv6 routing
table.

ipv6-address
prefix-length

Enter the IPv6 address in the x:x:x:x::x format then the prefix
length in the /x format. The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

clear ipv6 mld_host
Clear the IPv6 MLD host counters and reset the elapsed time.

S4810
Syntax

clear ipv6 mld_host

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

918

IPv6 Basics

The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

ipv6 address autoconfig
Configure IPv6 address auto-configuration for the management interface.

S4810
Syntax

ipv6 address autoconfig
To disable the address autoconfig operation on the management interface, use the
no ipv6 address autoconfig command.

Default

Disabled

Command
Modes

INTERFACE (management interface only)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Infomation

IPv6 Basics

Version 9.1.
(0.0)

Updated Usage Information section.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

•

SAA can configure up to two addresses. If any preferred prefix or valid timers
time out, the corresponding address are deprecated or removed. If an address
is removed due to a time-out, an address from the current unused prefix is used
to create a new address. If there are no remaining prefixes, the software waits
to receive a new prefix from the RA.

•

If auto-configuration is enabled, all IPv6 addresses on that management
interface are auto-configured. Manual and auto-configurations are not
supported on a single management interface.

919

•

Removing auto-configuration removes all auto-configured IPv6 addresses and
the link-local IPv6 address from that management interface.

•

IPv6 addresses on a single management interface cannot be members of the
same subnet.

•

IPv6 secondary addresses on management interfaces across a platform must be
members of the same subnet.

•

IPv6 secondary addresses on management interfaces should not match the
virtual IP address and should not be in the same subnet as the virtual IP.

ipv6 address
Configure an IPv6 address to an interface.

S4810
Syntax

ipv6 address {ipv6-address prefix-length}
To remove the IPv6 address, use the no ipv6 address {ipv6-address
prefix-length} command.

Parameters

ipv6-address
prefix-length

Enter the IPv6 address in the x:x:x:x::x format then the prefix
length in the /x format. The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

920

Version 9.1(0.0)

Updated Usage Information.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.1.0

Added support on the management Ethernet port.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

IPv6 Basics

Usage
Information

Example

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

•

If two addresses are configured, delete an existing address before configuring a
new address.

•

If the last manually-configured global IPv6 address is removed using the “no”
form of the command, the link-local IPv6 address is removed automatically.

•

IPv6 addresses on a single management interface cannot be members of the
same subnet.

•

IPv6 secondary addresses on management interfaces across platform must be
members of the same subnet.

•

IPv6 secondary addresses on management interfaces should not match the
virtual IP address and should not be in the same subnet as the virtual IP.

Dell(conf)#interface gigabitethernet 10/0
Dell(conf-if-gi-10/0)#ipv6 address ?
X:X:X:X::X IPv6 address
Dell(conf-if-gi-10/0)#ipv6 address 2002:1:2::3 ?
<0-128> Prefix length in bits
Dell(conf-if-gi-10/0)#ipv6 address 2002:1:2::3 /96 ?

Dell(conf-if-gi-10/0)#ipv6 address 2002:1:2::3 /96
Dell(conf-if-gi-10/0)#show config
!
interface GigabitEthernet 10/0
no ip address
ipv6 address 2002:1:2::3 /96
no shutdown
Dell(conf-if-gi-10/0)#

ipv6 address eui64
Configure IPv6 EUI64 address configuration on the interface.

S4810
Syntax

ipv6 address {ipv6-address prefix-length} eui64
To disable IPv6 EUI64 address autoconfiguration, use the no ipv6 address
{ipv6-address prefix-length} eui64 command.

Parameters

ipv6-address
prefix-length

Enter the IPv6 prefix in the x:x:x:x::x format then the prefix
length in the /x format. The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

IPv6 Basics

921

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced.

Usage
Information

This command allows you to create an EUI64 address based on the specified prefix
and MAC address only. Prefixes may be configured on the interface using the ipv6
nd prefix command without creating an EUI64 address.

Example

Dell(conf)#int ten 0/4
Dell(conf-if-te-0/4)#ipv6 address 200:1::/64 eui64
Dell(conf)#int ten 0/6
Dell(conf-if-te-0/6)#ipv6 address 801:10::/64 eui64

ipv6 control-plane icmp error-rate-limit
Configure the maximum number of ICMP error packets per second that can be sent per second.

S4810
Syntax

ipv6 control-plane icmp error-rate-limit {1-200}
To restore the default value, use the no ipv6 control-plane icmp errorrate-limit command.

Parameters

pps

Enter the maximum number of error packets generated per
second. The range is from 1 to 200, where 0 disables the
rate-limiting.

Default

100 pps

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

922

Introduced on the S4820T.

IPv6 Basics

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

ipv6 flowlabel-zero
Configure system to set the flow label field in the packets to zero.

S4810
Syntax

ipv6 flowlabel-zero
To disable the 0 from being set in the field and allow the rotocol operations to fill
the field, use the no ipv6 flowlabel-zero command.

Default

Disabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

If the flowlabel value is already set for BGP or SSH, the system defaults to the
already configured value. All packets on the same connection are considered part
of the same flow by the system. For new connections, set the new flowlabel to
zero.

ipv6 host
Assign a name and IPv6 address the host-to-IPv6 address mapping table uses.

S4810
Syntax

ipv6 host name ipv6-address
To remove an IP host, use the no ipv6 host name {ipv6–address}.

IPv6 Basics

923

Parameters

name

Enter a text string to associate with one IP address.

ipv6-address

Enter the IPv6 address (X:X:X:X::X) to be mapped to the
name.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.1.0

Introduced on the E-Series TeraScale.

ipv6 name-server
Enter up to six IPv6 addresses of name servers. The order you enter the addresses determines the order
of their use.

S4810
Syntax

ipv6 name-server ipv6-address [ipv6-address2... ipv6-address6]
To remove a name server, use the no ipv6 name—server ipv6–address
command.

Parameters

ipv6-address

Enter the IPv6 address (X:X:X:X::X) of the name server to be
used.
Note: The :: notation specifics successive hexadecimal fields
of zeros.

ipv6-address2...
ipv6-address6

Defaults

924

(OPTIONAL) Enter up to five more IPv6 addresses, in the
x:x:x:x::x format, of name servers to be used. Separate the
IPv6 addresses with a space.

none

IPv6 Basics

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.1.0

Introduced on the E-Series TeraScale.

You can separately configure both IPv4 and IPv6 domain name servers.

ipv6 nd dad attempts
To perform duplicate address detection (DAD) on the management interface, configure the number of
neighbor solicitation messages that are sent.

S4810
Syntax

ipv6 nd dad attempts {number of attempts}
To restore the default value, use the no ipv6 nd dad attempts command.

Parameters

number of
attempts

Enter the number of attempts to be made to detect a
duplicate address. The range is from 0 to 15. Setting the
value to 0 disables DAD on the interface.

Default

3 attempts

Command
Modes

INTERFACE (management interface only)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

IPv6 Basics

Introduced on the S4820T.

925

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

ipv6 nd dns-server
Configures Recursive DNS Server (RDNSS) addresses to be distributed via IPv6 router advertisements to
an IPv6 device.

Syntax

ipv6 nd dns-server {ipv6-RDNSS-address} {lifetime | infinite}
To remove the IPv6 RDSS configuration, use no ipv6 nd dns-server {ipv6RDNSS-address} {lifetime | infinite}

Parameters

ipv6-RDNSSaddress

Enter the IPv6 Recursive DNS Server’s (RDNSS) address. You
can specify up to 4 IPv6 RDNSS server addresses.

lifetime

Enter the lifetime in seconds. The amount of time the IPv6
host can use the IPv6 RDNSS address for name resolution.
The range is 0 to 4294967295 seconds. When you specify
the maximum lifetime value of 4294967295 or infinite,
the lifetime does not expire. A value of 0 indicates to the host
that the RDNSS address should not be used. You must
specify a lifetime using the lifetime or infinite
parameter.

infinite

Enter the keyword infinite to specify that the RDNSS
lifetime does not expire.

Defaults

Not Configured

Command
Modes

INTERFACE CONFIG

Command
History

Version 9.5(0.0)

Added support for roles on the Z9000.
Added support for roles on the S6000.
Added support for roles on the S4820T.
Added support for roles on the S4810.
Added support for roles on the MXL.

Usage
Information

926

Use this command to add, edit, or delete an IPv6 RDNSS address and lifetime value.
You can configure up to four IPv6 RDNSS addresses. You must specify a lifetime
using the lifetime or infinite parameter.

IPv6 Basics

Example

Dell(conf-if-te-0/1)#ipv6 nd dns-server 1000::1 1

ipv6 nd prefix
Specify which IPv6 prefixes are included in Neighbor Advertisements.

S4810
Syntax

Parameters

ipv6 nd prefix {ipv6-prefix | prefix-length | default} [noadvertise] | [no-autoconfig] [no-rtr-address] [off-link]
[lifetime {valid | infinite} {preferred | infinite}]
ipv6-prefix

Enter an IPv6 prefix.

prefix-length

Enter the prefix then the prefix length. The length range is
from 0 to 128.

default

Enter the keyword default to set default parameters for all
prefixes.

no-advertise

Enter the keyword no-advertise to prevent the specified
prefix from being advertised.

no-autoconfig

Enter the keywords no-autoconfig to disable Stateless
Address Autoconfiguration.

no-rtr-address

Enter the keyword no-rtr-address to exclude the full
router address from router advertisements (the R bit is not
set).

off-link

Enter the keywords off-link to advertise the prefix without
stating to recipients that the prefix is either on-link or offlink.

valid-lifetime |
infinite

Enter the amount of time that the prefix is advertised, or
enter infinite for an unlimited amount of time. The range
is from 0 to 4294967295. The default is 2592000. The
maximum value means that the preferred lifetime does not
expire for the valid-life time parameter.

preferredlifetime |
infinite

Enter the amount of time that the prefix is preferred, or enter
infinite for an unlimited amount of time. The range is
from 0 to 4294967295. The default is 604800. The
maximum value means that the preferred lifetime and does
not expire.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

IPv6 Basics

927

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.2.0

Introduced on the E-Series TeraScale, C-Series, and S-Series.

By default, all prefixes configured as addresses on the interface are advertised. This
command allows control over the individual parameters per prefix; you can use the
default keyword to use the default parameters for all prefixes. If a prefix has been
configured with lifetime parameter values, the default values cannot be applied
using the ipv6 nd prefix default no-autoconfig command.

ipv6 route
Establish a static IPv6 route.

S4810
Syntax

ipv6 route ipv6-address prefix-length {ipv6-address | interface
| interface ipv6-address} [distance] [tag value] [permanent]
To remove the IPv6 route, use the no ipv6 route ipv6-address prefixlength {ipv6-address | interface | interface ipv6-address}
[distance] [tag value] [permanent] command.

Parameters

ipv6-address
prefix-length

Enter the IPv6 address in the x:x:x:x::x format then the prefix
length in the /x format. The range is from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

interface

928

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a loopback interface, enter the keyword loopback
then a number from zero (0) to 16383.

•

For the null interface, enter the keyword null then zero
(0).

•

For a port channel interface, enter the keyword portchannel then the port channel number. The range is
from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

IPv6 Basics

•
•

For a tunnel interface, enter the keyword tunnel then
the tunnel interface number. The range is from 1 to
16383.
For a VLAN interface, enter the keyword VLAN then the
vlan number. The range is from 1 to 4094.

If you configure a static IPv6 route using an egress interface
and enter the ping command to reach the destination IPv6
address, the ping operation may not work. Configure the
IPv6 route using a next-hop IPv6 address in order for the
ping command to detect the destination address.
ipv6-address

(OPTIONAL) Enter the forwarding router IPv6 address in the
x:x:x:x::x format.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

distance

(OPTIONAL) Enter a number as the metric distance assigned
to the route. The range is from 1 to 255.

tag value

(OPTIONAL) Enter the keyword tag then a tag value number.
The range is from 1 to 4294967295.

permanent

(OPTIONAL) Enter the keyword permanent to specify that
the route is not to be removed, even if the interface assigned
to that route goes down.
NOTE: If you disable the interface with an IPv6 address
associated with the keyword permanent, the route
disappears from the routing table.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

IPv6 Basics

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

929

Usage
Information

When the interface goes down, Dell Networking OS withdraws the route. The route
is re-installed, by Dell Networking OS, when the interface comes back up. When a
recursive resolution is “broken,” Dell Networking OS withdraws the route. The route
is re-installed, by Dell Networking OS, when the recursive resolution is satisfied.
After an IPv6 static route interface is created, if an IP address is not assigned to a
peer interface, the peer must be manually pinged to resolve the neighbor
information.

Example

Dell(conf)#ipv6 route 44::0 /64 33::1 ?
<1-255>
Distance metric for this route
permanent
Permanent route
tag
Set tag for this route
Dell(conf)#ipv6 route 55::0 /64 ?
X:X:X:X::X
Forwarding router's address
gigabitethernet
Gigabit Ethernet interface
loopback
Loopback interface
null
Null interface
port-channel
Port channel interface
sonet
Sonet interface
tenGigabitethernet
TenGigabit Ethernet interface
vlan
VLAN interface
Dell(conf)#ipv6 route 55::0 /64 gigabitethernet 9/0 ?
<1-255>
Distance metric for this route
X:X:X:X::X
Forwarding router's address
permanent
Permanent route
tag
Set tag for this route
Dell(conf)#ipv6 route 55::0 /64 gigabitethernet 9/0 66::1 ?
<1-255>
Distance metric for this route
permanent
Permanent route
tag
Set tag for this route
Dell#

Related
Commands

show ipv6 route — views the IPv6 configured routes.

ipv6 unicast-routing
Enable IPv6 Unicast routing.

S4810
Syntax

ipv6 unicast-routing
To disable unicast routing, use the no ipv6 unicast-routing command.

Defaults

Enabled

Command
Modes

CONFIGURATION

930

IPv6 Basics

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

Because this command is enabled by default, it does not appear in the running
configuration. When you disable unicast routing, the no ipv6 unicast-routing
command is included in the running configuration. Whenever unicast routing is
disabled or re-enabled, Dell Networking OS generates a syslog message indicating
the action.
Disabling unicast routing on an E-Series chassis causes the following behavior:
•

static and protocol learned routes are removed from RTM and from the CAM;
packet forwarding to these routes is terminated

•

connected routes and resolved neighbors remain in the CAM and new IPv6
neighbors are still discoverable

•

additional protocol adjacencies (OSPFv3 and BGP4) are brought down and no
new adjacencies are formed

•

the IPv6 address family configuration (under router bgp) is deleted

•

IPv6 Multicast traffic continues to flow unhindered

show ipv6 cam stack-unit
Displays the IPv6 CAM entries for the specified stack-unit.

S4810
Syntax
Parameters

IPv6 Basics

show ipv6 cam stack-unit unit-number port-set {0-1} [summary |
index | ipv6 address]
unit-number

Enter the stack unit’s ID number. The range is from 0 to 11.

port-set

Enter the keyword Port Set.

931

summary

(OPTIONAL) Enter the keyword summary to display a table
listing network prefixes and the total number prefixes which
can be entered into the IPv6 CAM.

index

(OPTIONAL) Enter the index in the IPv6 CAM.

ipv6-address

Enter the IPv6 address in the x:x:x:x::x/n format to display
networks that have more specific prefixes. The range is
from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.1

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

First-Hop information is not shown for installed routes in the IPv6 content
addressable memory (CAM). However, the same is shown in the forwarding
information base (FIB).
NOTE: If a route has a mask greater than 64, no output is displayed and no
output is displayed for show ipv6 cam stack-unit unit-number portset {0-1} ipv6-address, but an equivalent /64 entry would be listed in
the show ipv6 cam stack-unit unit-number port-set {0-1}
output. Similarly, if there is more than one ECMP object with a destination
route that has a mask greater than 64, if the first 64 bits in the destination
routes of the ECMP objects are the same, only one route is installed in CAM
even though multiple ECMP path entries exist.
NOTE: The self address is displayed in the neighbor portion for the show
ipv6 cam stack-unit unit-number port-set command.

932

IPv6 Basics

show ipv6 control-plane icmp
Displays the status of the icmp control-plane setting for the error eate limit setting.

S4810
Syntax

show ipv6 control-plane icmp

Default

100

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

ipv6 flowlabel-zero — Configure IPv6 address auto-configuration for the
management interface.

show ipv6 fib stack-unit
View all FIB entries.

S4810
Syntax
Parameters

show ipv6 fib stack-unit unit-number [summary | ipv6-address]
slot-number

Enter the number of the stack unit. The range is from 0 to 11.

summary

(OPTIONAL) Enter the keyword summary to view a summary
of entries in IPv6 cam.

ipv6-address

Enter the IPv6 address in the x:x:x:x::x/n format to display
networks that have more specific prefixes. The range is
from /0 to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Command
Modes

IPv6 Basics

•
•

EXEC
EXEC Privilege

933

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the S-Series.

Host tables are not stored in CAM tables on S-Series platforms. Entries for
camIndex displays as zero (0) on the show ipv6 fib stack-unit output for
neighbor entries, such as address resolution protocol (ARP) entries.

show ipv6 flowlabel-zero
Display the flow label zero setting.

S4810
Syntax

show ipv6 flowlabel-zero

Default

Disabled

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

934

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

ipv6 nd dad attempts — Configure system to set the flow label field in the packets
to zero.

IPv6 Basics

show ipv6 interface
Display the status of interfaces configured for IPv6.

S4810
Syntax

Parameters

IPv6 Basics

show ipv6 interface interface [brief] [configured]
[gigabitethernet slot | slot/port] [loopback interface-number]
[managementethernet slot/port] [port-channel number] [stackunit id] [tengigabitethernet slot | slot/port] [fortyGigE slot
| slot/port] [tunnel tunnel-id] [vlan vlan-id]
interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a Loopback interface, enter the keyword Loopback
then a number from 0 to 16383.

•

For the Null interface, enter the keyword null then zero
(0).

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For stacking, enter the keywords stack-unit then the
stack-unit ID.

•

For a tunnel interface, enter the keyword tunnel then
the tunnel ID.

•

For a VLAN interface, enter the keyword VLAN.

•

For a port channel interface, enter the keywords portchannel.

brief

(OPTIONAL) View a summary of IPv6 interfaces.

configured

(OPTIONAL) View information on all IPv6 configured
interfaces.

gigabitethernet

(OPTIONAL) View information for an IPv6 gigabitethernet
interface.

managementet
hernet slot/
port

(OPTIONAL) View information on an IPv6 Management port.
Enter the slot number (0-1) and port number zero (0).

loopback

(OPTIONAL) View information for IPv6 Loopback interfaces.

port-channel

(OPTIONAL) View information for IPv6 port channels.

tengigabitether
net

(OPTIONAL) View information for an IPv6 tengigabitethernet
interface.

fortyGigE

(OPTIONAL) View information for an IPv6
fortygigabitethernet interface.

stack-unit id

(OPTIONAL) View information for stacking.

935

Defaults
Command
Modes
Command
History

tunnel tunnelid

(OPTIONAL) View information for a tunnel interface.

vlan

(OPTIONAL) View information for IPv6 VLANs.

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Added support for tunnel interface.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.4.2.1

Introduced on the S-Series.

Version 8.2.1.0

Introduced on the E-Series ExaScale. Added support for the
managementethernet slot/port parameter.

Version 7.8.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

Usage
Information

The Management port is enabled by default (no shutdown). If necessary, use the
ipv6 address command to assign an IPv6 address to the Management port.

Example

Dell#
Dell#show ipv6 int te 0/5
TenGigabitEthernet 0/5 is up, line protocol is up
IPV6 is enabled
Link Local address: fe80::201:e8ff:fe8a:e8f7
Global Unicast address(es):
2001::1, subnet is 2001::/64
2002::1, subnet is 2002::/120
2003::1, subnet is 2003::/120
2004::1, subnet is 2004::/32
Global Anycast address(es):
Joined Group address(es):
ff02::1
ff02::2
ff02::1:ff00:1
ff02::1:ff8a:e8f7
ND MTU is 0
ICMP redirects are not sent
DAD is enabled, number of DAD attempts: 3
ND reachable time is 0 milliseconds

936

IPv6 Basics

ND
ND
ND
ND

advertised reachable time is 0
advertised retransmit interval
router advertisements are sent
router advertisements live for

milliseconds
is 0 milliseconds
every 200 to 600 seconds
1800 seconds

Dell#
Example
(Managementet
hernet)

Dell#
Dell#show ipv6 int man 0/0
ManagementEthernet 0/0 is up, line protocol is up
IPV6 is enabled
Link Local address: fe80::201:e8ff:fe8a:e8f7
Global Unicast address(es):
Actual address is 600::1, subnet is 600::/64
Virtual-IP IPv6 address is not set
Global Anycast address(es):
Joined Group address(es):
IPv6 Basics | 785
ff02::1
ff02::1:ff00:1
ff02::1:ff8a:e8f7
ND MTU is 1500
ICMP redirects are not sent
DAD is enabled, number of DAD attempts: 3
ND reachable time is 31000 milliseconds
ND base reachable time is 30000 milliseconds
ND retransmit interval is 1000 milliseconds
ND hop limit is 64
Dell#

Example (Brief)

Example
(tunnel)

IPv6 Basics

Dell#show ipv6 interface brief
TenGigabitEthernet 0/44
fe80::201:e8ff:fe8b:3883
4001:2::3/64
ManagementEthernet 0/0
fe80::201:e8ff:fe8b:3883
33::1/64
Tunnel 45
fe80::201:e8ff:fe8b:3883
333::1/64
Port-channel 23
fe80::201:e8ff:fe8b:3883
110::1/64
Vlan 12
fe80::201:e8ff:fe8b:3883
400::1/64
Dell#

[up/up]
[up/up]
[up/up]
[up/up]
[up/up]

Dell#show ipv6 interface tunnel 1
Tunnel 1 is up, line protocol is up
IPV6 is enabled
Link Local address: fe80::201:e8ff:fe04:62c4
Global Unicast address(es):
2001:db8::1, subnet is 2001::/64
Global Anycast address(es):
Joined Group address(es):
ff02::1
ff02::2
ff02::1:ff00:1
ff02::1:ff04:62c4

937

MTU is 1500
ICMP redirects are not sent
DAD is enabled: number of DAD attempts: 1
ND reachable time is 30 seconds
ND advertised reachable time is 30 seconds
ND advertised retransmit interval is 30 seconds
ND router advertisements are sent every 200 seconds
ND router advertisements live for 1800 seconds

show ipv6 mld_host
Display the IPv6 MLD host counters.

S4810
Syntax

show ipv6 mld_host

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

938

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

The following describes the show ipv6 mld-host command shown in the
following example.
Field

Description

Valid MLD Packets

The total number of packets received and sent from the last
time the elapsed time was cleared.

Reports

The total number of reports (queries and unsolicited reports
generated from joins or leaves) that have been received or
sent.

Leaves

The number of Multicast leaves that have been sent.

MLDv1 queries

The number of MLDv1 queries that have been received.

MLDv2 queries

The number of MLDv2 queries that have been received.

Malformed
Packets

The number of MLDv1 and MLDv2 packets that do not
match the requirement for a valid MLD packet.

IPv6 Basics

Example

MLD Host Traffic Counters
Elapsed time since counters cleared: 0028:33:52
Received
Sent
Valid MLD Packets 97962
18036
Reports
79962
18034
Leaves
---0
MLDv2 Queries
18000
---MLDv1 Queries
0
---Errors:
Malformed Packets: 4510

show ipv6 route
Displays the IPv6 routes.

S4810
Syntax

Parameters

show ipv6 route [ipv6-address prefix-length] [hostname] [all]
[bgp as number] [connected] [isis tag] [list prefix-list name]
[ospf process-id] [rip] [static] [summary]
ipv6-address
prefix-length

(OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format
then the prefix length in the /x format. The range is from /0
to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

Defaults

IPv6 Basics

hostname

(OPTIONAL) View information for this IPv6 routes with Host
Name.

all

(OPTIONAL) View information for all IPv6 routes.

bgp

(OPTIONAL) View information for all IPv6 BGP routes.

connected

(OPTIONAL) View only the directly connected IPv6 routes.

isis

(OPTIONAL) View information for all IPv6 IS-IS routes.

list

(OPTIONAL) View the IPv6 prefix list.

ospf

(OPTIONAL) View information for all IPv6 OSPF routes.

rip

(OPTIONAL for E-Series only) View information for all IPv6
RIP routes.

static

(OPTIONAL) View only routes configured by the ipv6
route command.

summary

(OPTIONAL) View a brief list of the configured IPv6 routes.

none

939

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

940

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

The following describes the show ipv6 route command shown in the following
examples.
Field

Description

(undefined)

Identifies the type of route:
•

L = Local

•

C = connected

•

S = static

•

R = RIP

•

B = BGP

•

IN = internal BGP

•

EX = external BGP

•

LO = Locally Originated

•

O = OSPF

•

IA = OSPF inter-area

•

N1 = OSPF NSSA external type 1

•

N2 = OSPF NSSA external type 2

•

E1 = OSPF external type 1

•

E2 = OSPF external type 2

•

i = IS-IS

•

L1 = IS-IS level-1

•

L2 = IS-IS level-2

•

IA = IS-IS inter-area

•

* = candidate default

•

> = non-active route

IPv6 Basics

Field

Description
•

Example (ESeries)

+ = summary routes

Destination

Identifies the route’s destination IPv6 address.

Gateway

Identifies whether the route is directly connected and on
which interface the route is configured.

Dist/Metric

Identifies if the route has a specified distance or metric.

Last Change

Identifies when the route was last changed or configured.

Dell#show ipv6 route
Codes:C-connected, L-local, S-static, R-RIP,
B-BGP, IN-internal BGP, EX-external BGP, LO-Locally
Originated,
O-OSPF, IA-OSPF inter area, N1-OSPF NSSA external type 1,
N2-OSPF NSSA external type 2, E1-OSPF external type 1,
E2-OSPF external type 2, i-IS-IS, L1-IS-IS level-1,
L2-IS-IS level-2, IA-IS-IS inter area, *-candidate default,
Gateway of last resort is not set
Destination Dist/Metric, Gateway, Last Change
------------------------------------------------C 2001::/64 [0/0]
Direct, Gi 1/1, 00:28:49
C 2002::/120 [0/0]
Direct, Gi 1/1, 00:28:49
C 2003::/120 [0/0]
Direct, Gi 1/1, 00:28:49
C 2004::/32 [0/0]
Direct, Gi 1/1, 00:28:49
L fe80::/10 [0/0]
Direct, Nu 0, 00:29:09

Example (SSeries)

Dell#show ipv6 route
Codes:C-connected, L-local, S-static, R-RIP,
B-BGP, IN-internal BGP, EX-external BGP,LO-Locally Originated,
O-OSPF, IA-OSPF inter area, N1-OSPF NSSA external type 1,
N2-OSPF NSSA external type 2, E1-OSPF external type 1,
E2-OSPF external type 2, i-IS-IS, L1-IS-IS level-1,
L2-IS-IS level-2, IA- IS-IS inter area, *-candidate default,
Gateway of last resort is not set
Destination Dist/Metric, Gateway, Last Change
---------------------------------------------C 2001::/64 [0/0]
Direct, Gi 1/1, 00:28:49
C 2002::/120 [0/0]
Direct, Gi 1/1, 00:28:49
C 2003::/120 [0/0]
Direct, Gi 1/1, 00:28:49
C 2004::/32 [0/0]
Direct, Gi 1/1, 00:28:49
L fe80::/10 [0/0]
Direct, Nu 0, 00:29:09

IPv6 Basics

941

Example
(Summary)

Dell#show ipv6 route summary
Route Source Active Routes Non-active Routes
connected
5
0
static
0
0
Total
5
0
Total 5 active route(s) using 952 bytes

trust ipv6-diffserv
Allows the dynamic classification of IPv6 DSCP.

S4810
Syntax

trust ipv6-diffserv
To remove the definition, use the no trust ipv6-diffserv command.

Defaults

none

Command
Modes

CONFIGURATION-POLICY-MAP-IN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.4.1.0

Introduced on the E-Series TeraScale.

When you configure trust IPv6 diffserv, matched bytes/packets counters are not
incremented in the show qos statistics command.
Trust diffserv (IPv4) can co-exist with trust ipv6-diffserv in an Input Policy Map.
Dynamic classification happens based on the mapping as shown:

942

IPv6 Service Class
Field

Queue ID

111XXXXX

7

110XXXXX

6

IPv6 Basics

IPv6 Basics

IPv6 Service Class
Field

Queue ID

101XXXXX

5

100XXXXX

4

011XXXXX

3

010XXXXX

2

001XXXXX

1

000XXXXX

0

943

30

iSCSI Optimization

Internet small computer system interface (iSCSI) optimization enables quality-of-service (QoS) treatment
for iSCSI storage traffic on an S4810 system.
To configure and verify the iSCSI optimization feature, use the following Dell Networking OS commands.

advertise dcbx-app-tlv
Configure DCBX to send iSCSI TLV advertisements.

S4810
Syntax

advertise dcbx-app-tlv iscsi
To disable DCBX iSCSI TLV advertisements, use the no advertise dcbx-apptlv iscsi command.

Defaults

Disabled.

Command
Modes

PROTOCOL LLDP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

944

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

You can configure iSCSI TLVs to send either globally or on a specified interface.
The interface configuration takes priority over global configuration.

iSCSI Optimization

iscsi aging time
Set the aging time for iSCSI sessions.

S4810
Syntax

iscsi aging time time
To remove the iSCSI session aging time, use the no iscsi aging time
command.

Parameters

time

Enter the aging time for the iSCSI session. The range is from
5 to 43,200 minutes.

Defaults

10 minutes

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

iscsi cos
Set the QoS policy that is applied to the iSCSI flows.

S4810
Syntax

iscsi cos {enable | disable | dot1p vlan-priority-value
[remark] | dscp dscp-value [remark]}
To disable the QoS policy, use the no iscsi cos command.

Parameters

iSCSI Optimization

enable

Enter the keyword enable to allow the application of
preferential QoS treatment to iSCSI traffic so that the iSCSI
packets are scheduled in the switch with a dot1p priority 4
regardless of the VLAN priority tag in the packet. The default

945

is: the iSCSI packets are handled with dotp1 priority 4
without remark.
disable

Enter the keyword disable to disable the application of
preferential QoS treatment to iSCSI frames.

dot1p vlanpriority-value

Enter the dot1p value of the VLAN priority tag assigned to the
incoming packets in an iSCSI session. The range is from 0 to
7. The default is the dot1p value in ingress iSCSI frames is not
changed and is the same priority is used in iSCSI TLV
advertisements if you did not enter the iscsi prioritybits command.

dscp dscpvalue

Enter the DSCP value assigned to the incoming packets in an
iSCSI session. The valid range is from 0 to 63. The default is:
the DSCP value in ingress packets is not changed.

remark

Marks the incoming iSCSI packets with the configured dot1p
or DSCP value when they egress to the switch. The default is:
the dot1and DSCP values in egress packets are not changed.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

By default, iSCSI flows are assigned to dot1p priority 4.

iscsi enable
Globally enable iSCSI optimization.

S4810
Syntax

iscsi enable
To disable iSCSI optimization, use the no iscsi enable command.

946

iSCSI Optimization

Parameters

enable

Enter the keyword enable to enable the iSCSI optimization
feature.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

iscsi priority-bits
Configure the priority bitmap that advertises in the iSCSI application TLVs.

S4810
Syntax

iscsi priority-bits
To remove the configured priority bitmap, use the no iscsi priority-bits
command.

Defaults

4 (0x10 in the bitmap)

Command
Modes

PROTOCOL LLDP (only on the global, not on the interface)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

iSCSI Optimization

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

947

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

iscsi profile-compellant
Configure the auto-detection of Dell Compellent arrays on a port.

S4810
Syntax

iscsi profile-compellent

Defaults

Dell Compellent disk arrays are not detected.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

iscsi target port
Configure the iSCSI target ports and optionally, the IP addresses on which iSCSI communication is
monitored.

S4810
Syntax

iscsi target port [tcp-port-2...tcp-port-16]ip-address [ipaddress]
To remove the configured iSCSI target ports or IP addresses, use the no iscsi
target port command.

948

iSCSI Optimization

Parameters

tcpport-2...tcpport
- 16

Enter the tcp-port number of the iSCSI target ports. The
tcp-port-n is the TCP port number or a list of TCP port
numbers on which the iSCSI target listens to requests.
Separate port numbers with a comma. The default is 860,
3260.

ip-address
(Optional)

Enter the ip-address that the iSCSI monitors. The ip-address
specifies the IP address of the iSCSI target.

Defaults

860, 3260

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

You can configure up to 16 target TCP ports on the switch in one command or
multiple commands.
When you use the no iscsi target port command and the TCP port you wish
to delete is one bound to a specific IP address, the IP address value must be
included in the command.

show iscsi
Display the currently configured iSCSI settings.

S4810
Syntax

show iscsi

Command
Modes

•

EXEC

•

EXEC Privilege

iSCSI Optimization

949

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

Dell#show iscsi
iSCSI is enabled
iSCSI session monitoring is disabled
iSCSI COS : dot1p is 4 no-remark
Session aging time: 10
Maximum number of connections is 256
-----------------------------------------------iSCSI Targets and TCP Ports:
-----------------------------------------------TCP Port Target IP Address
3260
860
•

show iscsi session — displays information about active iSCSI sessions on the
switch.

•

show iscsi session detailed — displays detailed information about active iSCSI
sessions on the switch.

•

show run iscsi — shows run iscsi.

show iscsi session
Display information about active iSCSI sessions on the switch.

S4810
Syntax

show iscsi session

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

950

iSCSI Optimization

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

Dell# show isci session
Session 0:
-----------------------------------------------------Target: iqn.2001-05.com.equallogic:
0-8a0906-0e70c2002-10a0018426a48c94-iom010
Initiator: iqn.1991-05.com.microsoft:win-x9l8v27yajg
ISID: 400001370000
Session 1:
--------------------------------------------------------Target: iqn.2001-05.com.equallogic:
0-8a0906-0f60c2002-0360018428d48c94-iom011
Initiator: iqn.1991-05.com.microsoft:win-x9l8v27yajg
ISID: 400001370000.

Usage
Information

Only sessions the switch observes are learned; sessions flowing through an
adjacent switch are not learned.
After the switch is reloaded, any information exchanged during the initial
handshake is not available. If the switch picks up the communication after
reloading, it would detect a session was in progress but could not obtain complete
information for it. Any incomplete information of this type would not be available in
the show commands.

Related
Commands

•

show iscsi — displays the currently configured iSCSI settings.

•

show iscsi session detailed — displays detailed information about active iSCSI
sessions on the switch.

•

show run iscsi — shows run iscsi.

show iscsi session detailed
Display detailed information on active iSCSI sessions on the switch.

S4810
Syntax
Parameters

iSCSI Optimization

show iscsi session detailed [session isid]
isid

Enter the session’s iSCSi ID to display detailed information
about the specified iSCSi session.

951

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Related
Commands

952

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

Dell# show isci session detailed
Session 0 :
--------------------------------------------------Target:iqn.2010-11.com.ixia:ixload:iscsi-TG1
Initiator:iqn.2010-11.com.ixia.ixload:initiator-iscsi-2c
Up Time:00:00:01:28(DD:HH:MM:SS)
Time for aging out:00:00:09:34(DD:HH:MM:SS)
ISID:806978696102
Initiator Initiator Target
Target Connection
IP Address TCP Port IP Address TCPPort ID
10.10.0.44 33345
10.10.0.101 3260
0
Session 1 :
---------------------------------------------------Target:iqn.2010-11.com.ixia:ixload:iscsi-TG1
Initiator:iqn.2010-11.com.ixia.ixload:initiator-iscsi-35
Up Time:00:00:01:22(DD:HH:MM:SS)
Time for aging out:00:00:09:31(DD:HH:MM:SS)
ISID:806978696102
Initiator Initiator Target
Target Connection
IP Address TCP Port IP Address TCPPort ID
10.10.0.53 33432
10.10.0.101 3260
0
•

show iscsi — displays the currently configured iSCSI settings.

•

show iscsi session — displays information about active iSCSI sessions on the
switch.

•

show run iscsi — shows run iscsi.

iSCSI Optimization

show run iscsi
Display all globally configured non-default iSCSI settings in the current Dell Networking OS session.

S4810
Syntax

show run iscsi

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

iSCSI Optimization

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version
8.3.16.0

Introduced on MXL 10/40GbE Switch IO Module.

•

show iscsi — displays the currently configured iSCSI settings.

•

show iscsi session — displays detailed information about active iSCSI sessions
on the switch.

•

show iscsi session detailed — displays detailed information on active iSCSI
sessions on the switch.

953

Intermediate System to Intermediate
System (IS-IS)

31

The intermediate system to intermediate system (IS-IS) protocol for IPv4 and IPv6 is supported on the
S4810 platform.
IS-IS is an interior gateway protocol that uses a shortest-path-first algorithm. IS-IS facilitates the
communication between open systems, supporting routers passing both IP and OSI traffic.
A router is considered an intermediate system. Networks are partitioned into manageable routing
domains, called areas. Intermediate systems send, receive, and forward packets to other routers within
their area (Level 1 and Level 1-2 devices). Only Level 1-2 and Level 2 devices communicate with other
areas.
IS-IS protocol standards are listed in the Standard Compliance chapter in the Dell Networking OS
Configuration Guide.
NOTE: The fundamental mechanisms of IS-IS are the same between IPv4 and IPv6. Where there are
differences between the two versions, they are identified and clarified in this chapter. Except where
identified, the information in this chapter applies to both protocol versions.

adjacency-check
Verify that the “protocols supported” field of the IS-IS neighbor contains matching values to this router.

S4810
Syntax

adjacency-check
To disable adjacency check, use the no adjacency-check command.

Defaults

Enabled.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

954

Introduced on the S6000.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Introduced on the E-Series.

To perform protocol-support consistency checks on hello packets, use this
command. The adjacency-check is enabled by default.

advertise
Leak routes between levels (distribute IP prefixes between Level 1 and Level 2 and vice versa).

S4810
Syntax

advertise {level1-into-level2 | level2-into-level1} prefixlist-name
To return to the default, use the no advertise {level1-into-level2 |
level2-into-level1}[prefix-list-name] command.

Parameters

level1-intolevel2

Enter the keywords level1-into-level2 to advertise
Level 1 routes into Level 2 LSPs. This setting is the default.

level2-intolevel1

Enter the keywords level2-into-level1 to advertise
Level 2 inter-area routes into Level 1 LSPs. This behavior is
described in RFC 2966.

prefix-listname

Enter the name of a configured IP prefix list. Routes meeting
the criteria of the IP Prefix list are leaked.

Defaults

level1-into-level2 (Level 1 to Level 2 leaking enabled.)

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

955

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added IPv6 ISIS support.

Version 6.3.1.0

Version 6.3.1.0 Introduced

You cannot disable leaking from one level to another; however, you can regulate
the rate flow from one level to another using an IP Prefix list. If you do not
configure the IP Prefix list, all routes are leaked.
You can find more information in IETF RFC 2966, Domain-wide Prefix Distribution
with Two-Level IS-IS.

area-password
Configure a hash message authentication code (HMAC) password for an area.

S4810
Syntax

area-password [hmac-md5 | encryption-type] password
To delete a password, use the no area-password command.

Parameters

hmac-md5

(OPTIONAL) Enter the keywords hmac-md5 to encrypt the
password.

encryptiontype

(OPTIONAL) Enter 7 to encrypt the password using DES.

password

Enter a 1 to 16-character length alphanumeric string to
prevent unauthorized access or incorrect routing
information corrupting the link state database. The password
is processed as plain text, which only provides limited
security.

Defaults

Not configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

956

Introduced on the S6000.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

To prevent the link state database from receiving incorrect routing information
from unauthorized routers, use the area-password command on routers within
an area.
The configured password injects into Level 1 LSPs, CSNPs, and PSNPs.

Related
Commands

•

domain-password — allows you to set the authentication password for a
routing domain.

•

isis password — allows you to configure an authentication password for an
interface.

clear config
Clear IS-IS configurations that display under the router isis heading of the show running-config
command output.

S4810
Syntax

clear config

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

CAUTION: Use caution when you enter this command. Back up your
configuration prior to using this command or your IS-IS configuration will
be erased.

Intermediate System to Intermediate System (IS-IS)

957

Related
Commands

copy — saves the current configuration to another location.

clear isis
Restart the IS-IS process. All IS-IS data is cleared.

S4810
Syntax
Parameters

clear isis [tag] {* | database | traffic}
tag

(Optional) Enter an alphanumeric string to specify the IS-IS
routing tag area.

*

Enter the keyword * to clear all IS-IS information and restart
the IS-IS process. This command removes IS-IS neighbor
information and IS-IS LSP database information and the full
SPF calculation is done.

database

Clears IS-IS LSP database information.

traffic

Clears IS-IS counters.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

958

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Intermediate System to Intermediate System (IS-IS)

clns host
Define a name-to-network service mapping point (NSAP) that you use with commands that require
NSAPs and system IDs.

S4810
Syntax
Parameters

clns host name nsap
name

Enter an alphanumeric string to identify the name-to-NSAP
mapping.

nsap

Enter a specific NSAP address that is associated with the
name parameter.

Defaults

Not configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

To configure a shortcut name that you can use instead of entering a long string of
numbers associated with an NSAP address, use this command.

Related
Commands

hostname dynamic — enables dynamic learning of host names from routers in the
domain and allows the routers to advertise the host names in LSPs.

debug isis
Enable debugging for all IS-IS operations.

S4810
Syntax

debug isis
To disable debugging of IS-IS, use the no debug isis command.

Intermediate System to Intermediate System (IS-IS)

959

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Entering debug isis enables all debugging parameters.
To display all debugging information in one output, use this command. To turn off
debugging, you normally enter separate no forms of each command. To disable all
debug messages for IS-IS at once, enter the no debug isis command.

debug isis adj-packets
Enable debugging on adjacency-related activity such as hello packets that are sent and received on IS-IS
adjacencies.

S4810
Syntax

debug isis adj-packets [interface]
To turn off debugging, use the no debug isis adj-packets [interface]
command.

Parameters

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•
•
•
•
•

960

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.
For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.
For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Intermediate System to Intermediate System (IS-IS)

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

debug isis local-updates
To debug IS-IS local update packets, enable debugging on a specific interface and provides diagnostic
information.

S4810
Syntax

debug isis local-updates [interface]
To turn off debugging, use the no debug isis local-updates [interface]
command.

Parameters

Command
Modes

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

EXEC Privilege

Intermediate System to Intermediate System (IS-IS)

961

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 6.3.1.0

Introduced.

debug isis snp-packets
To debug IS-IS complete sequence number PDU (CSNP) and partial sequence number PDU (PSNP)
packets, enable debugging on a specific interface and provides diagnostic information.

S4810
Syntax

debug isis snp-packets [interface]
To turn off debugging, use the no debug isis snp-packets [interface]
command.

Parameters

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking Command Line Reference Guide.

962

Intermediate System to Intermediate System (IS-IS)

The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 6.3.1.0

Introduced.

debug isis spf-triggers
Enable debugging on the events that triggered IS-IS shortest path first (SPF) events for debugging
purposes.

S4810
Syntax

debug isis spf-triggers
To turn off debugging, use the no debug isis spf-triggers command.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 6.3.1.0

Introduced.

Intermediate System to Intermediate System (IS-IS)

963

debug isis update-packets
Enable debugging on link state PDUs (LSPs) that a router detects.

S4810
Syntax

debug isis update-packets [interface]
To turn off debugging, use the no debug isis update-packets
[interface] command.

Parameters

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

964

Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 6.3.1.0

Introduced.

Intermediate System to Intermediate System (IS-IS)

default-information originate
Generates a default route into an IS-IS routing domain and controls the distribution of default
information.

S4810
Syntax

default-information originate [always] [metric metric] [routemap map-name]
To disable the generation of a default route into the specified IS-IS routing domain,
use the no default-information originate [always] [metric metric]
[route-map map-name] command.

Parameters

Defaults
Command
Modes
Command
History

always

(OPTIONAL) Enter the keyword always to have the default
route always advertised.

metric metric

(OPTIONAL) Enter the keyword metric then a number to
assign to the route. The range is from 0 to 16777215.

route-map
map-name

(OPTIONAL) A default route the routing process generates if
the route map is satisfied.

Not configured.
•
•

ROUTER ISIS (for IPv4)
CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added IPv6 ISIS support.

Version 6.3.1.0

Introduced.

When you use this command to redistribute routes into a routing domain, the
router becomes an autonomous system (AS) boundary router. An AS boundary
router does not always generate a default route into a routing domain. The router
still requires its own default route before it can generate one.
How a metric value assigned to a default route advertises depends on the metricstyle command configuration. If the metric-style command is set for Narrow

Intermediate System to Intermediate System (IS-IS)

965

mode and the metric value in the default-information originate command
is set to a number higher than 63, the metric value advertised in the LSPs is 63. If
the metric-style command is set for Wide mode, the metric value in the
default-information originate command is advertised.
Related
Commands

•

redistribute — redistributes routes from one routing domain to another routing
domain.

•

isis metric — configures a metric for an interface.

•

metric-style — sets the metric style for the router.

•

show isis database — displays the IS-IS link state database.

description
Enter a description of the IS-IS routing protocol.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Defaults

none

Command
Modes

ROUTER ISIS

Command
History

Related
Commands

966

Enter a description to identify the IS-IS protocol (80
characters maximum).

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

pre-7.7.1.0

Introduced.

router isis — Enter ROUTER mode on the switch.

Intermediate System to Intermediate System (IS-IS)

distance
Define the administrative distance for learned routes.

S4810
Syntax

distance weight [ip-address mask [prefix-list]]
To return to the default values, use the no distance weight command.

Parameters

Defaults
Command
Modes

Command
History

weight

The administrative distance value indicates the reliability of a
routing information source. The range is from 1 to 255. (A
higher relative value indicates lower reliability. Routes with
smaller values are given preference.) The default is 115.

ip-address
mask

(OPTIONAL) Enter an IP address in dotted decimal format
and enter a mask in either dotted decimal or /prefix format.

prefix-list

(OPTIONAL) Enter the name of a prefix list name.

weight = 115
•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 6.3.1.0

Introduced.

The administrative distance indicates the trust value of incoming packets. A low
administrative distance indicates a high trust rate. A high value indicates a lower
trust rate. For example, a weight of 255 is interpreted that the routing information
source is not trustworthy and should be ignored.

Intermediate System to Intermediate System (IS-IS)

967

distribute-list in
Filter network prefixes received in updates.

S4810
Syntax

distribute-list prefix-list-name in [interface]
To return to the default values, use the no distribute-list prefix-listname in [interface] command.

Parameters

prefix-listname

Specify the prefix list to filter prefixes in routing updates.

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a 1- Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

968

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Added IPv6 ISIS support.

Version 6.3.1.0

Introduced.

Intermediate System to Intermediate System (IS-IS)

Related
Commands

•

distribute-list out — suppresses networks from being advertised in updates.

•

redistribute — redistributes routes from one routing domain to another routing
domain.

distribute-list out
Suppress network prefixes from being advertised in outbound updates.

S4810
Syntax

distribute-list prefix-list-name out [connected | bgp as number
| ospf process-id | rip | static]
To return to the default values, use the no distribute-list prefix-listname out [bgp as number connected | ospf process-id | rip |
static] command.

Parameters

prefix-listname

Specify the prefix list to filter prefixes in routing updates.

connected

(OPTIONAL) Enter the keyword connected for directly
connected routing process.

ospf process-id

(OPTIONAL) Enter the keyword ospf then the OSPF
process-ID number. The range is from 1 to 65535.

bgp as number

(OPTIONAL) Enter the BGP then the AS Number. The range is
from 1 to 65535.

rip

(OPTIONAL) Enter the keyword rip for RIP routes.

static

(OPTIONAL) Enter the keyword static for user-configured
routing process.

Defaults

Not configured.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

969

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Added IPv6 ISIS support.

Version 6.3.1.0

Introduced.

Usage
Information

You can assign a name to a routing process so a prefix list IS applied to only the
routes derived from the specified routing process.

Related
Commands

•

distribute-list in — filters the networks received in updates.

•

redistribute — redistributes routes from one routing domain to another routing
domain.

distribute-list redistributed-override
Suppress flapping of routes when the same route is redistributed into IS-IS from multiple routers in the
network.

S4810
Syntax

distribute-list redistributed-override in
To return to the default, use the no distribute-list redistributedoverride in command.

Defaults

none

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

970

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.8.1.0

Added IPv6 ISIS support.

Version 6.3.1.0

Introduced.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

When you execute this command, IS-IS does not download the route to the
routing table if the same route was redistributed into IS-IS routing protocol on the
same router.

domain-password
Set the authentication password for a routing domain.

S4810
Syntax

domain-password [hmac-md5 | encryption-type] password
To disable the password, use the no domain-password command.

Parameters

hmac-md5

(OPTIONAL) Enter the keywords hmac-md5 to encrypt the
password using MD5.

encryptiontype

(OPTIONAL) Enter 7 to encrypt the password using DES.

password

Enter an alphanumeric string up to 16 characters long. If you
do not specify an encryption type or hmac-md5
keywords, the password is processed as plain text which
provides limited security.

Defaults

No default password.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 6.3.1.0

Introduced.

The domain password is inserted in Level 2 link state PDUs (LSPs), complete
sequence number PDUs (CSNPs), and partial sequence number PDUs (PSNPs).

Intermediate System to Intermediate System (IS-IS)

971

Related
Commands

•

area-password — configures an IS-IS area authentication password.

•

isis priority — configures the authentication password for an interface.

graceful-restart ietf
Enable graceful restart on an IS-IS router.

S4810
Syntax

graceful-restart ietf
To return to the default, use the no graceful-restart ietf command.

Parameters

ietf

Enter ietf to enable graceful restart on the IS-IS router.

Defaults

Graceful restart disabled.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 6.3.1.0

Introduced on the E-Series.

Every graceful restart enabled router’s HELLO PDUs includes a restart TLV. This
restart enables (re)starting as well as the existing ISIS peers to detect the GR
capability of the routers on the connected network. A flag in the Restart TLV
contains restart request (RR), restart acknowledge (RA) and suppress adjacency
advertisement (SA) bit flags.
The ISIS graceful restart-enabled router can co-exist in mixed topologies where
some routers are graceful restart-enabled and others are not. For neighbors that
are not graceful restart-enabled, the restarting router brings up the adjacency per
the usual methods.

972

Intermediate System to Intermediate System (IS-IS)

graceful-restart interval
Set the graceful restart grace period, the time during that all graceful restart attempts are prevented.

S4810
Syntax

graceful-restart interval minutes
To return to the default, use the no graceful-restart interval command.

Parameters

minutes

Enter the graceful-restart interval minutes. The range is from
1 to 20 minutes. The default is 5 minutes.

Defaults

5 minutes

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

graceful-restart restart-wait
Enable the graceful restart maximum wait time before a restarting peer comes up.

S4810
Syntax

NOTE: Set the t3 timer to adjacency on the restarting router when
implementing this command.
graceful-restart restart-wait seconds
To return to the default, use the no graceful-restart restart-wait
command.

Intermediate System to Intermediate System (IS-IS)

973

Parameters

seconds

Enter the graceful restart time in seconds. The range is from
5 to 300 seconds. The default is 30 seconds.

Defaults

30 seconds

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

graceful-restart t3 — configures the overall wait time before graceful restart
completes.

graceful-restart t1
Set the graceful restart wait time before unacknowledged restart requests are generated. This wait time is
the interval before the system sends a restart request (an IIH with RR bit set in Restart TLV) until the CSNP
is received from the helping router.

S4810
Syntax

graceful-restart t1 {interval seconds | retry-times value}
To return to the default, use the no graceful-restart t1 command.

Parameters

Defaults

974

interval

Enter the keyword interval to set the wait time. The range
is from 5 to 120 seconds. The default is 5 seconds.

retry-times

Enter the keywords retry-times to set the number of
times the request interval is extended until a CSNP is
received from the helping router. The range is from 1 to 10
attempts. The default is 1.

Refer to Parameters.

Intermediate System to Intermediate System (IS-IS)

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

graceful-restart t2
Configure the wait time for the graceful restart timer T2 that a restarting router uses as the wait time for
each database to synchronize.

S4810
Syntax

graceful-restart t2 {level-1 | level-2} seconds
To return to the default, use the no graceful-restart t2 command.

Parameters

level-1, level-2

Enter the keywords level-1 or level-2 to identify the
database instance type to which the wait interval applies.

seconds

Enter the gracefule-restart t2 time in seconds. The
range is from 5 to 120 seconds. The default is 30 seconds.

Defaults

30 seconds

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Intermediate System to Intermediate System (IS-IS)

975

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

graceful-restart t3
Configure the overall wait time before graceful restart completes.

S4810
Syntax

graceful-restart t3 {adjacency | manual} seconds
To return to the default, use the no graceful-restart t3 command.

Parameters

adjacency

Enter the keyword adjacency so that the restarting router
receives the remaining time value from its peer and adjusts
its T3 value so if you have configured this option.

manual

Enter the keyword manual to specify a time value that the
restarting router uses. The range is from 50 to 120 seconds.
The default is 30 seconds.

Defaults

manual, 30 seconds

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

976

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

The running router sets the remaining time value to the current adjacency hold
time. You can override this setting by implementing this command.
Override the default restart-wait time by entering the no graceful-restart
restart-wait command. When you disable restart-wait, the current
adjacency hold time is used.
Set the t3 timer to adjacency on the restarting router when implementing this
command. The restarting router gets the remaining time value from its peer and
adjusts its T3 value so only when you have configured graceful-restart t3
adjacency.

Related
Commands

graceful-restart restart-wait — enables the graceful restart maximum wait time
before a restarting peer comes up.

hello padding
Use to turn ON or OFF padding for LAN and point-to-point hello PDUs or to selectively turn padding ON
or OFF for LAN or point-to-point hello PDUs.

S4810
Syntax

hello padding [multi-point | point-to-point]
To return to the default, use the no hello padding [multi-point | pointto-point] command.

Parameters

multi-point

(OPTIONAL) Enter the keywords multi-point to pad only
LAN hello PDUs.

point-to-point

(OPTIONAL) Enter the keywords point-to-point to pad
only point-to-point PDUs.

Defaults

Both LAN and point-to-point hello PDUs are padded.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

977

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

IS-IS hellos are padded to the full maximum transmission unit (MTU) size. Padding
IS-IS Hellos (IIHS) to the full MTU provides early error detection of large frame
transmission problems or mismatched MTUs on adjacent interfaces.

Related
Commands

isis hello padding — turns ON or OFF hello padding on an interface basis.

hostname dynamic
Enables dynamic learning of hostnames from routers in the domain and allows the routers to advertise
the hostname in LSPs.

S4810
Syntax

hostname dynamic
To disable this command, use the no hostname dynamic command.

Defaults

Enabled.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

To build name-to-systemID mapping tables through the protocol, use this
command. All show commands that display systems also display the hostname.

Related
Commands

clns host — defines a name-to-NSAP mapping.

978

Intermediate System to Intermediate System (IS-IS)

ignore-lsp-errors
Ignore LSPs with bad checksums instead of purging those LSPs.

S4810
Syntax

ignore-lsp-errors
To return to the default values, use the no ignore-lsp-errors command.

Defaults

In IS-IS, the default deletes LSPs with internal checksum errors (no ignore-lsperrors).

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

IS-IS normally purges LSPs with an incorrect data link checksum causing the LSP
source to regenerate the message. A cycle of purging and regenerating LSPs can
occur when a network link continues to deliver accurate LSPs even though there is
a link causing data corruption. This process could cause disruption to your system
operation.

ip router isis
Configure IS-IS routing processes on an interface and attach an area tag name to the routing process.

S4810
Syntax

ip router isis [tag]
To disable IS-IS on an interface, use the no ip router isis [tag] command.

Parameters

tag

(OPTIONAL) The tag you specify identifies a specific area
routing process. If you do not specify a tag, a null tag is
assigned.

Intermediate System to Intermediate System (IS-IS)

979

Defaults

No processes are configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information
Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Introduced.

To assign a network entity title to enable IS-IS, use the net command.

•

net — configures an IS-IS network entity title (NET) for the routing process.

•

router isis — enables the IS-IS routing protocol.

ipv6 router isis
Enable the IPv6 IS-IS routing protocol and specify an IPv6 IS-IS process.

S4810
Syntax

ipv6 router isis [tag]
To disable IS-IS routing, use the no router isis [tag] command.

Parameters

tag

Defaults

Not configured.

Command
Modes

ROUTER ISIS

980

(OPTIONAL) This parameter is a unique name for a routing
process. A null tag is assumed if the tag option is not
specified. The tag name must be unique for all IP router
processes for a given router.

Intermediate System to Intermediate System (IS-IS)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Introduced on the E-Series.

Configure a network entity title (the net command) to specify the area address and
the router system ID.
To establish adjacencies and establish dynamic routing, enable routing on one or
more interfaces.
You can configure only one IS-IS routing process to perform Level 2 routing. A
level-1-2 designation performs Level 1 and Level 2 routing at the same time.

Related
Commands

•

net — configures an IS-IS network entity title (NET) for the routing process.

•

is-type — assigns a type for a given area.

isis circuit-type
Configure the adjacency type on interfaces.

S4810
Syntax

isis circuit-type {level-1 | level-1-2 | level-2-only}
To return to the default values, use the no isis circuit-type command.

Parameters

level-1

You can form a Level 1 adjacency if there is at least one
common area address between this system and neighbors.
You cannot form Level 2 adjacencies on this interface.

level-1-2

You can form a Level 1 and Level 2 adjacencies when the
neighbor is also configured as Level-1-2 and there is at least
one common area, if not, a Level 2 adjacency is established.
This setting is the default.

Intermediate System to Intermediate System (IS-IS)

981

level-2-only

You can form a Level 2 adjacencies when other Level 2 or
Level 1-2 routers and their interfaces are configured for Level
1-2 or Level 2. Level 1 adjacencies cannot be established on
this interface.

Defaults

level-1-2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Because the default establishes Level 1 and Level 2 adjacencies, you do not need to
configure this command. Routers in an IS-IS system must be configured as a Level
1-only, Level 1-2, or Level 2-only system.
Only configure interfaces as Level 1 or Level 2 on routers that are between areas
(for example, a Level 1-2 router) to prevent the software from sending unused hello
packets and wasting bandwidth.

isis csnp-interval
Configure the IS-IS complete sequence number PDU (CSNP) interval on an interface.

S4810
Syntax

isis csnp-interval seconds [level-1 | level-2]
To return to the default values, use the no isis csnp-interval [seconds]
[level-1 | level-2] command.

Parameters

982

seconds

Interval of transmission time between CSNPs on multiaccess networks for the designated intermediate system. The
range is from 0 to 65535. The default is 10.

level-1

(OPTIONAL) Independently configures the interval of time
between transmission of CSNPs for Level 1.

Intermediate System to Intermediate System (IS-IS)

level-2

(OPTIONAL) Independently configures the interval of time
between transmission of CSNPs for Level 2.

Defaults

seconds = 10; level-1 (if not otherwise specified)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

The default values of this command are typically satisfactory transmission times for
a specific interface on a designated intermediate system. To maintain database
synchronization, the designated routers send CSNPs.
You can configure Level 1 and Level 2 CSNP intervals independently.

isis hello-interval
Specify the length of time between hello packets sent.

S4810
Syntax

isis hello-interval seconds [level-1 | level-2]
To return to the default values, use the no isis hello-interval [seconds]
[level-1 | level-2] command.

Parameters

seconds

Allows you to set the length of time between hello packet
transmissions. The range is from 1 to 65535. The default is
10.

level-1

(OPTIONAL) Select this value to configure the hello interval
for Level 1. This value is the default.

level-2

(OPTIONAL) Select this value to configure the hello interval
for Level 2.

Intermediate System to Intermediate System (IS-IS)

983

Defaults

seconds = 10; level-1 (if not otherwise specified)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

Hello packets are held for a length of three times the value of the hello interval. To
conserve bandwidth and CPU usage, use a high hello interval seconds. Use a low
hello interval seconds for faster convergence (but uses more bandwidth and CPU
resources).

Related
Commands

isis hello-multiplier — specifies the number of IS-IS hello packets a neighbor must
miss before the router declares the adjacency as down.

isis hello-multiplier
Specify the number of IS-IS hello packets a neighbor must miss before the router declares the adjacency
down.

S4810
Syntax

isis hello-multiplier multiplier [level-1 | level-2]
To return to the default values, use the no isis hello-multiplier
[multiplier] [level-1 | level-2] command.

Parameters

984

multiplier

Specifies an integer that sets the multiplier for the hello
holding time. Never configure a hello-multiplier lower than
the default (3). The range is from 3 to 1000. The default is 3.

level-1

(OPTIONAL) Select this value to configure the hello multiplier
independently for Level 1 adjacencies. This value is the
default.

level-2

(OPTONAL) Select this value to configure the hello multiplier
independently for Level 2 adjacencies.

Intermediate System to Intermediate System (IS-IS)

Defaults

multiplier = 3; level-1 (if not otherwise specified)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

The holdtime (the product of the hello-multiplier multiplied by the hello-interval)
determines how long a neighbor waits for a hello packet before declaring the
neighbor is down so routes can be recalculated.

Related
Commands

isis hello-interval — specifies the length of time between hello packets.

isis hello padding
Turn ON or OFF padding of hello PDUs from INTERFACE mode.

S4810
Syntax

isis hello padding
To return to the default, use the no isis hello padding command.

Defaults

Padding of hello PDUs is enabled (ON).

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

985

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Usage
Information

Hello PDUs are “padded” only when both the global and interface padding options
are ON. Turning either one OFF disables padding for the corresponding interface.

Related
Commands

hello padding — turns ON or OFF padding for LAN and point-to-point hello PDUs.

isis ipv6 metric
Assign metric to an interface for use with IPv6 information.

S4810
Syntax

isis ipv6 metric default-metric [level-1 | level-2]
To return to the default values, use the no ipv6 isis metric [defaultmetric] [level-1 | level-2] command.

Parameters

default-metric

Metric assigned to the link and used to calculate the cost
from each other router via the links in the network to other
destinations. You can configure this metric for Level 1 or
Level 2 routing. The range is from 0 to 16777215. The default
is 10.

level-1

(OPTIONAL) Enter the keywords level-1 to configure the
shortest path first (SPF) calculation for Level 1 (intra-area)
routing. This value is the default.

level-2

(OPTIONAL) Enter the keywords level-2 to configure the
SPF calculation for Level 2 (inter-area) routing.

Defaults

default-metric = 10; level-1 (if not otherwise specified)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

986

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Introduced on the E-Series.

Dell Networking recommends configuring metrics on all interfaces. Without
configuring this command, the IS-IS metrics are similar to hop-count metrics.

isis metric
Assign a metric to an interface.

S4810
Syntax

isis metric default-metric [level-1 | level-2]
To return to the default values, use the no isis metric [default-metric]
[level-1 | level-2] command.

Parameters

default-metric

Metric assigned to the link and used to calculate the cost
from each other router via the links in the network to other
destinations. You can configure this metric for Level 1 or
Level 2 routing. The range is from 0 to 63 for narrow and
transition metric styles and from 0 to 16777215 for wide
metric styles. The default is 10.

level-1

(OPTIONAL) Enter the keywords level-1 to configure the
shortest path first (SPF) calculation for Level 1 (intra-area)
routing. This setting is the default.

level-2

(OPTIONAL) Enter the keywords level-2 to configure the
SPF calculation for Level 2 (inter-area) routing.

Defaults

default-metric = 10; level-1 (if not otherwise specified)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Intermediate System to Intermediate System (IS-IS)

987

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Dell Networking recommends configuring metrics on all interfaces. Without
configuring this command, the IS-IS metrics are similar to hop-count metrics.

isis network point-to-point
Enable the software to treat a broadcast interface as a point-to-point interface.

S4810
Syntax

isis network point-to-point
To disable the feature, use the no isis network point-to-point command.

Defaults

Not enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

isis password
Configure an authentication password for an interface.

S4810
Syntax

988

isis password [hmac-md5] password [level-1 | level-2]

Intermediate System to Intermediate System (IS-IS)

To delete a password, use the no isis password [password] [level-1 |
level-2] command.
Parameters

encryptiontype

(OPTIONAL) Enter 7 to encrypt the password using DES.

hmac-md5

(OPTIONAL) Enter the keywords hmac-md5 to encrypt the
password using MD5.

password

Assign the interface authentication password.

level-1

(OPTIONAL) Independently configures the authentication
password for Level 1. The router acts as a station router for
Level 1 routing. This setting is the default.

level-2

(OPTIONAL) Independently configures the authentication
password for Level 2. The router acts as an area router for
Level 2 routing.

Defaults

No default password. level-1 (if not otherwise specified).

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

To protect your network from unauthorized access, use this command to prevent
unauthorized routers from forming adjacencies.
You can assign different passwords for different routing levels by using the
keywords level-1 and level-2.
The no form of this command disables the password for Level 1 or Level 2 routing,
using the respective keywords level-1 or level-2.
This password provides limited security as it is processed as plain text.

Intermediate System to Intermediate System (IS-IS)

989

isis priority
Set the priority of the designated router you select.

S4810
Syntax

isis priority value [level-1 | level-2]
To return to the default values, use the no isis priority [value] [level-1
| level-2] command.

Parameters

value

This value sets the router priority. The higher the value, the
higher the priority. The range is from 0 to 127. The default is
64.

level-1

(OPTIONAL) Specify the priority for Level 1. This setting is the
default.

level-2

(OPTIONAL) Specify the priority for Level 2.

Defaults

value = 64; level-1 (if not otherwise specified).

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OSCommand Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

You can configure priorities independently for Level 1 and Level 2. Priorities
determine which router on a LAN is the designated router. Priorities are advertised
within hellos. The router with the highest priority becomes the designated
intermediate system (DIS).
NOTE: Routers with a priority of 0 cannot be a designated router.
Setting the priority to 0 lowers the chance of this system becoming the DIS, but
does not prevent it. If all the routers have priority 0, one with highest MAC address
becomes DIS even though its priority is 0.

990

Intermediate System to Intermediate System (IS-IS)

is-type
Configure IS-IS operating level for a router.

S4810
Syntax

is-type {level-1 | level-1-2 | level-2-only}
To return to the default values, use the no is-type command.

Parameters

level-1

Allows a router to act as a Level 1 router.

level-1-2

Allows a router to act as both a Level 1 and Level 2 router.
This setting is the default.

level-2-only

Allows a router to act as a Level 2 router.

Defaults

level-1-2

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

The IS-IS protocol automatically determines area boundaries and are able to keep
Level 1 and Level 2 routing separate. Poorly planned use of this feature may cause
configuration errors, such as accidental area partitioning.
If you are configuring only one area in your network, you do not need to run both
Level 1 and Level 2 routing algorithms. You can configure the IS type as Level 1.

Intermediate System to Intermediate System (IS-IS)

991

log-adjacency-changes
Generate a log messages for adjacency state changes.

S4810
Syntax

log-adjacency-changes
To disable this function, use the no log-adjacency-changes command.

Defaults

Adjacency changes are not logged.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

This command allows you to monitor adjacency state changes, which are useful
when you monitor large networks. Messages are logged in the system’s error
message facility.

lsp-gen-interval
Set the minimum interval between successive generations of link-state packets (LSPs).

S4810
Syntax

lsp-gen-interval [level-l | level-2] interval seconds
[initial_wait_interval seconds [second_wait_interval seconds]]
To restore default values, use the no lsp-gen-interval [level-l |
level-2] interval seconds [initial_wait_interval seconds
[second_wait_interval seconds]] command.

Parameters

992

level-l

(OPTIONAL) Enter the keywords level-1 to apply the
configuration to generation of Level-1 LSPs.

Intermediate System to Intermediate System (IS-IS)

level-2

(OPTIONAL) Enter the keywords level-2 to apply the
configuration to generation of Level-2 LSPs.

interval
seconds

Enter the maximum number of seconds between LSP
generations. The range is from 0 to 120 seconds. The default
is 5 seconds.

initial_wait_inte
rval seconds

(OPTIONAL) Enter the initial wait time, in seconds, before
running the first LSP generation. The range is from 0 to 120
seconds. The default is 1 second.

second_wait_i
nterval seconds

(OPTIONAL) Enter the wait interval, in seconds, between the
first and second LSP generation. The range is from 0 to 120
seconds. The default is 5 seconds.

Defaults

Refer to Parameters.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added support for LSP Throttling Enhancement.

LSP throttling slows down the frequency at which LSPs are generated during
network instability. Even though throttling LSP generations slows down network
convergence, no throttling can result in a network not functioning as expected. If
network topology is unstable, throttling slows down the scheduling of LSP
generations until the topology regains its stability.
The first generation is controlled by the initial wait interval and the second
generation is controlled by the second wait interval. Each subsequent wait interval
is twice as long as the previous one until the wait interval reaches the maximum
wait time specified (interval seconds). After the network calms down and there
are no triggers for two times the maximum interval, fast behavior is restored (the
initial wait time).

Intermediate System to Intermediate System (IS-IS)

993

lsp-mtu
Set the maximum transmission unit (MTU) of IS-IS link-state packets (LSPs). This command only limits the
size of LSPs this router generates.

S4810
Syntax

lsp-mtu size
To return to the default values, use the no lsp-mtu command.

Parameters

size

The maximum LSP size, in bytes. The range is from 128 to
1497 for Non-Jumbo mode and from 128 to 9195 for Jumbo
mode. The default is 1497.

Defaults

1497 bytes.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added support for LSP Throttling Enhancement.

The link MTU and the LSP MTU size must be the same.
Because each device can generate a maximum of 255 LSPs, consider carefully
whether you use the lsp-mtu command.

994

Intermediate System to Intermediate System (IS-IS)

lsp-refresh-interval
Set the link state PDU (LSP) refresh interval. LSPs must be refreshed before they expire. When the LSPs are
not refreshed after a refresh interval, they are kept in a database until their max-lsp-lifetime reaches
zero and then LSPs is purged.

S4810
Syntax

lsp-refresh-interval seconds
To restore the default refresh interval, use the no lsp-refresh-interval
command.

Parameters

seconds

The LSP refresh interval, in seconds. This value has to be less
than the seconds value specified with the max-lsplifetime command. The range is from 1 to 65535 seconds.
The default is 900.

Defaults

900 seconds

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added support for LSP Throttling Enhancement.

The refresh interval determines the rate at which route topology information is
transmitted preventing the information from becoming obsolete.
The refresh interval must be less than the LSP lifetime specified with the max-lsplifetime command. A low value reduces the amount of time that undetected link
state database corruption can persist at the cost of increased link utilization. A
higher value reduces the link utilization the flooding of refreshed packets causes.

Related
Commands

max-lsp-lifetime — sets the maximum interval that LSPs persist without being
refreshed.

Intermediate System to Intermediate System (IS-IS)

995

max-area-addresses
Configure manual area addresses.

S4810
Syntax

max-area-addresses number
To return to the default values, use the no max-area-addresses command.

Parameters

number

Set the maximum number of manual area addresses. The
range is from 3 to 6. The default is 3.

Defaults

3 addresses

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.5.1.0

Added support for LSP Throttling Enhancement.

To configure the number of area addresses on router, use this command. This
value must be consistent with routers in the same area, otherwise the router forms
only Level 2 adjacencies. The value must be same among all the routers to form
Level 1 adjacencies.

max-lsp-lifetime
Set the maximum time that link-state packets (LSPs) exist without being refreshed.

S4810
Syntax

max-lsp-lifetime seconds
To restore the default time, use the no max-lsp-lifetime command.

996

Intermediate System to Intermediate System (IS-IS)

Parameters

seconds

The maximum lifetime of LSP in seconds. This value must be
greater than the lsp-refresh-interval command. The
higher the value the longer the LSPs are kept. The range is
from 1 to 65535. The default is 1200.

Defaults

1200 seconds

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Change the maximum LSP lifetime with this command. The maximum LSP lifetime
must always be greater than the LSP refresh interval.
The seconds parameter enables the router to keep LSPs for the specified length of
time. If the value is higher, the overhead is reduced on slower-speed links.

Related
Commands

lsp-refresh-interval — sets the link-state packet (LSP) refresh interval.

maximum-paths
Allows you to configure the maximum number of equal cost paths allowed in a routing table.

S4810
Syntax

maximum-paths number
To return to the default values, use the no maximum-paths command.

Parameters

number

Enter a number as the maximum number of parallel paths an
IP routing installs in a routing table. The range is from 1 to 16.
The default is 4.

Intermediate System to Intermediate System (IS-IS)

997

Defaults
Command
Modes

Command
History

4
•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.8.1.0

Added support for multi-topology ISIS.

Version 6.3.1.0

Introduced.

metric-style
To generate and accept old-style, new-style, or both styles of type, length, and values (TLV), configure a
router.

S4810
Syntax

metric-style {narrow [transition] | transition | wide
[transition]} [level-1 | level-2]
To return to the default values, use the no metric-style {narrow
[transition] | transition | wide [transition]} [level-1 |
level-2] command.

Parameters

998

narrow

Allows you to generate and accept old-style TLVs. The
metric range is from 0 to 63.

transition

Allows you to generate both old-style and new-style TLVs.
The metric range is from 0 to 63.

wide

Allows you to generate and accept only new-style TLVs. The
metric range is from 0 to 16777215.

level-1

Enables the metric style on Level 1.

level-2

Enables the metric style on Level 2.

Intermediate System to Intermediate System (IS-IS)

Defaults

narrow; if no Level is specified, Level-1 and Level-2 are configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

If you enter the metric-style wide command, the Dell Networking OS
generates and accepts only new-style TLVs. The router uses less memory and
other resources rather than generating both old-style and new-style TLVs.
The new-style TLVs have wider metric fields than old-style TLVs.

Related
Commands

isis metric — configures a metric for an interface.

multi-topology
Enables multi-topology IS-IS. It also allows enabling/disabling of old and new style TLVs for IP prefix
information in the LSPs.

S4810
Syntax

multi-topology [transition]
To return to a single topology configuration, use the no multi-topology
[transition] command.

Parameters

transition

Defaults

Disabled

Command
Modes

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

Intermediate System to Intermediate System (IS-IS)

999

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.8.1.0

Introduced.

net
To configure an IS-IS network entity title (NET) for a routing process, use this mandatory command. If
you did not configure a NET, the IS-IS process does not start.

S4810
Syntax

net network-entity-title
To remove a net, use the no net network-entity-title command.

Parameters

networkentity-title

Specify the area address and system ID for an IS-IS routing
process. The first 1 to 13 bytes identify the area address. The
next 6 bytes identify the system ID. The last 1 byte is the
selector byte, always identified as zero zero (00). This
argument can be applied to an address or a name.

Defaults

Not configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1000

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Intermediate System to Intermediate System (IS-IS)

passive-interface
Suppress routing updates on an interface. This command stops the router from sending updates on that
interface.

S4810
Syntax

passive-interface interface
To delete a passive interface configuration, use the no passive-interface
interface command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Although the passive interface does not send nor receive routing updates, the
network on that interface is still included in the IS-IS updates sent using other
interfaces.

Intermediate System to Intermediate System (IS-IS)

1001

redistribute
Redistribute routes from one routing domain to another routing domain.

S4810
Syntax

redistribute {static | connected | rip} [level-1 | level-1-2 |
level-2] [metric metric-value] [metric-type {external |
internal}] [route-map map-name]
To end redistribution or disable any of the specified keywords, use the no
redistribute {static | connected | rip} [metric metric-value]
[metric-type {external | internal}] [level-1 | level-1-2 |
level-2] [route-map map-name] command.

Parameters

Defaults

Command
Modes

1002

connected

Enter the keyword connected to redistribute active routes
into IS-IS.

rip

Enter the keyword rip to redistribute RIP routes into IS-IS.

static

Enter the keyword static to redistribute user-configured
routes into IS-IS.

metric metricvalue

(OPTIONAL) Assign a value to the redistributed route. The
range is from 0 to 16777215. The default is 0. Use a value that
is consistent with the destination protocol.

metric-type
{external |
internal}

(OPTIONAL) The external link type associated with the
default route advertised into a routing domain. Specify one
of the following:
•

external

•

internal

level-1

(OPTIONAL) Routes are independently redistributed into ISIS as Level 1 routes.

level-1-2

(OPTIONAL) Routes are independently redistributed into ISIS as Level-1-2 routes.

level-2

(OPTIONAL) Routes are independently redistributed into ISIS as Level 2 routes. This setting is the default.

route-map
map-name

(OPTIONAL) If you do not enter the route-map argument, all
routes are redistributed. If a map-name value is not specified,
no routers are imported.

•

metric metric-value = 0

•

metric-type= internal; level-2

•

ROUTER ISIS (for IPv4)

Intermediate System to Intermediate System (IS-IS)

•
Command
History

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Added support for IPv6 ISIS.

Version 6.3.1.0

Introduced.

To redistribute a default route (0.0.0.0/0), configure the default-information
originate command.
Changing or disabling a keyword in this command does not affect the state of the
other command keywords.
When an LSP with an internal metric is received, the Dell Networking OS considers
the route cost while considering the advertised cost to reach the destination.
Redistributed routing information is filtered with the distribute-list out
command to ensure that the routes are properly are passed to the receiving
routing protocol.
How a metric value assigned to a redistributed route is advertised depends on how
on the configuration of the metric-style command. If the metric-style
command is set for Narrow or Transition mode and the metric value in the
redistribute command is set to a number higher than 63, the metric value
advertised in LSPs is 63. If the metric-style command is set for Wide mode, the
metric value in the redistribute command is advertised.

Related
Commands

•

default-information originate — generates a default route for the IS-IS domain.

•

distribute-list out — suppresses networks from being advertised in updates. This
command filters redistributed routing information.

Intermediate System to Intermediate System (IS-IS)

1003

redistribute bgp
Redistribute routing information from a BGP process.

S4810
Syntax

redistribute bgp AS number [level-1| level-1-2 | level-2]
[metric metric-value] [metric-type {external| internal}]
[route-map map-name]
To return to the default values, use the no redistribute bgp command with
the appropriate parameters.

Parameters

AS number

Enter a number that corresponds to the autonomous system
number. The range is from 1 to 65355.

level-1

(OPTIONAL) Routes are independently redistributed into ISIS Level 1 routes only.

level-1-2

(OPTIONAL) Routes are independently redistributed into ISIS Level 1 and Level 2 routes.

level-2

(OPTIONAL) Routes are independently redistributed into ISIS as Level 2 routes only. This setting is the default.

metric metricvalue

(OPTIONAL) The value used for the redistributed route. Use a
metric value that is consistent with the destination protocol.
The range is from 0 to 16777215. The default is 0.

metric-type
{external|
internal}

(OPTIONAL) The external link type associated with the
default route advertised into a routing domain. The two
options are:

route-map
map-name

•

external

•

internal

map-name is an identifier for a configured route map. The
route map filters imported routes from the source routing
protocol to the current routing protocol.
If you do not specify a map-name, all routes are
redistributed. If you specify a keyword, but fail to list route
map tags, no routes are imported.

Defaults
Command
Modes
Command
History

IS-IS Level 2 routes only
•
•

ROUTER ISIS (for IPv4)
CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1004

Intermediate System to Intermediate System (IS-IS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Added support for IPv6 ISIS.

Version 6.3.1.0

Introduced.

Usage
Information

BGP to IS-IS redistribution supports “match” options using route maps. You can set
the metric value, level, and metric-type of redistributed routes by the redistribution
command. You can “set” more advanced options using route maps.

Example

FTOS(conf)#router is
FTOS(conf-router_isis)#redistribute bgp 1 level-1 metric 32
metric-type
external route-map rmap-isis-to-bgp
FTOS(conf-router_bgp)#show running-config isis
!
router isis
redistribute bgp 1 level-1 metric 32 metric-type external
route-map
rmap-isis-to-bgp

redistribute ospf
Redistribute routing information from an OSPF process.

S4810
Syntax

redistribute ospf process-id [level-1| level-1-2 | level-2]
[match {internal | external}] [metric metric-value] [metrictype {external | internal}] [route-map map-name]
To return to the default values, use the no redistribute ospf process-id
[level-1| level-1-2 | level-2] [match {internal | external}]
[metric metric-value][metric-type {external | internal}]
[route-map map-name] command.

Parameters

process-id

Enter a number that corresponds to the OSPF process ID to
be redistributed. The range is from 1 to 65355.

metric metricvalue

(OPTIONAL) The value used for the redistributed route. Use a
metric value that is consistent with the destination protocol.
The range is from 0 to 16777215. The default is 0.

Intermediate System to Intermediate System (IS-IS)

1005

metric-type
{external |
internal}

(OPTIONAL) The external link type associated with the
default route advertised into a routing domain. The two
options are:
•

external

•

internal

level-1

(OPTIONAL) Routes are independently redistributed into ISIS as Level 1 routes.

level-1-2

(OPTIONAL) Routes are independently redistributed into ISIS as Level-1-2 routes.

level-2

(OPTIONAL) Routes are independently redistributed into ISIS as Level 2 routes. This setting is the default.

match {external
| internal}

(OPTIONAL) The command used for OSPF to route and
redistribute into other routing domains. The values are

route-map
map-name

•

internal

•

external

map-name is an identifier for a configured route map. The
route map should filter imported routes from the source
routing protocol to the current routing protocol.
If you do not specify a map-name, all routes are
redistributed. If you specify a keyword, but fail to list route
map tags, no routes are imported.

Defaults

Refer to Parameters.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1006

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.5.1.0

Added support for IPv6 ISIS.

Version 6.3.1.0

Introduced.

Intermediate System to Intermediate System (IS-IS)

Usage
Information

How a metric value assigned to a redistributed route is advertised depends on how
on the configuration of the metric-style command. If the metric-style
command is set for Narrow mode and the metric value in the redistribute
ospf command is set to a number higher than 63, the metric value advertised in
LSPs is 63. If the metric-style command is set for wide mode, the metric value
in the redistribute ospf command is advertised.

router isis
Allows you to enable the IS-IS routing protocol and to specify an IP IS-IS process.

S4810
Syntax

router isis [tag]
To disable IS-IS routing, use the no router isis [tag] command.

Parameters

tag

(OPTIONAL) This is a unique name for a routing process. A
null tag is assumed if the tag option is not specified. The tag
name must be unique for all IP router processes for a given
router.

Defaults

Not configured.

Command
Modes

ROUTER ISIS

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Configure a network entity title (the net command) to specify the area address and
the router system ID.
Enable routing on one or more interfaces to establish adjacencies and establish
dynamic routing.

Intermediate System to Intermediate System (IS-IS)

1007

You can configure only one IS-IS routing process to perform Level 2 routing. A
level-1-2 designation performs Level 1 and Level 2 routing at the same time.
Related
Commands

•

ip router isis — configures IS-IS routing processes for IP on interfaces and
attaches an area designator to the routing process.

•

net — configures an IS-IS network entity title (NET) for a routing process.

•

is-type — assigns a type for a given area.

set-overload-bit
To set the overload bit in its non-pseudonode LSPs, configure the router. This setting prevents other
routers from using it as an intermediate hop in their shortest path first (SPF) calculations.

S4810
Syntax

set-overload-bit
To return to the default values, use the no set-overload-bit command.

Defaults

Not set.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1008

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.8.1.0

Added support for multi-topology ISIS.

Version 6.3.1.0

Introduced.

Set the overload bit when a router experiences problems, such as a memory
shortage due to an incomplete link state database which can result in an
incomplete or inaccurate routing table. If you set the overload bit in its LSPs, other
routers ignore the unreliable router in their SPF calculations until the router has
recovered.

Intermediate System to Intermediate System (IS-IS)

show config
Display the changes you made to the IS-IS configuration. Default values are not shown.

S4810
Syntax
Command
Modes

Command
History

show config
•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example
(Router-Isis)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode.
FTOS(conf-router_isis)#show config
!
router isis
clns host ISIS 49.0000.0001.F100.E120.0013.00
log-adjacency-changes
net 49.0000.0001.F100.E120.0013.00
!
address-family ipv6 unicast
maximum-paths 16
multi-topology transition
set-overload-bit
spf-interval level-1 100 15 20
spf-interval level-2 120 20 25
exit-address-family

Example
(AddressFamily_IPv6)

The bold section identifies that Multi-Topology IS-IS is enabled in Transition mode.
FTOS(conf-router_isis-af_ipv6)#show conf
!
address-family ipv6 unicast
maximum-paths 16
multi-topology transition
set-overload-bit
spf-interval level-1 100 15 20
spf-interval level-2 120 20 25
exit-address-family

Intermediate System to Intermediate System (IS-IS)

1009

show isis database
Display the IS-IS link state database.

S4810
Syntax
Parameters

show isis database [level-1 | level-2] [local] [detail |
summary] [lspid]
level-1

(OPTIONAL) Displays the Level 1 IS-IS link-state database.

level-2

(OPTIONAL) Displays the Level 2 IS-IS link-state database.

local

(OPTIONAL) Displays local link-state database information.

detail

(OPTIONAL) Detailed link-state database information of each
LSP displays when specified. If not specified, a summary
displays.

summary

(OPTIONAL) Summary of link-state database information
displays when specified.

lspid

(OPTIONAL) Display only the specified LSP.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1010

Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.1

Introduced on the S4810.

The following describes the show isis database command shown in the
following example.
Field

Description

IS-IS Level-1/
Level-2 Link State
Database

Displays the IS-IS link state database for Level 1 or Level 2.

LSPID

Displays the LSP identifier.

Intermediate System to Intermediate System (IS-IS)

Field

Description
The first six octets are the System ID of the originating
router.
The first six octets are the System ID of the originating
router. The next octet is the pseudonode ID. If this byte is
not zero, the LSP describes system links. If this byte is zero
(0), the LSP describes the state of the originating router.
The designated router for a LAN creates and floods a
pseudonode LSP and describes the attached systems.
The last octet is the LSP number. An LSP is divided into
multiple LSP fragments if there is more data than cannot fit
in a single LSP. Each fragment has a unique LSP number.
An * after the LSPID indicates that the system originates an
LSP where this command was issued.

Example

LSP Seq Num

This value is the sequence number for the LSP that allows
other systems to determine if they have received the latest
information from the source.

LSP Checksum

This is the checksum of the entire LSP packet.

LSP Holdtime

This value is the amount of time, in seconds, that the LSP
remains valid. A zero holdtime indicates that this is a purged
LSP and is being removed from the link state database. A
value between brackets indicates the duration that the
purged LSP stays in the database before being removed.

ATT

This value represents the Attach bit. This value indicates that
the router is a Level 2 router and can reach other areas.
Level 1-only routers and Level 1-2 routers that have lost
connection to other Level 2 routers use the Attach bit to
find the closest Level 2 router. They point a default route to
the closest Level 2 router.

P

This value represents the P bit. This bit is always set to zero
as Dell Networking does not support area partition repair.

OL

This value represents the overload bit, determining
congestion. If the overload bit is set, other routers do not
use this system as a transit router when calculating routes.

The bold sections identify that MultiTopology IS-IS is enabled.
FTOS#show isis database
IS-IS Level-1 Link State Database
LSPID
LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL
ISIS.00-00 * 0x00000006 0xCF43
580
0/0/0
IS-IS Level-2 Link State Database
LSPID
LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL

Intermediate System to Intermediate System (IS-IS)

1011

ISIS.00-00 * 0x00000006 0xCF43
580
!
FTOS#show isis database detail ISIS.00-00

0/0/0

IS-IS Level-1 Link State Database
LSPID
LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL
ISIS.00-00 * 0x0000002B 0x853B
1075
0/0/0
Area Address: 49.0000.0001
NLPID: 0xCC 0x8E
IP Address: 10.1.1.1
IPv6 Address: 1011::1
Topology: IPv4 (0x00) IPv6 (0x8002)
Metric: 10
IS OSPF.00
Metric: 10 IS (MT-IPv6) OSPF.00
Metric: 10
IP 15.1.1.0 255.255.255.0
Metric: 10 IPv6 (MT-IPv6) 1511::/64
Metric: 10 IPv6 (MT-IPv6) 2511::/64
Metric: 10 IPv6 (MT-IPv6) 1011::/64
Metric: 10
IPv6 1511::/64
Metric: 10
IP 10.1.1.0 255.255.255.0
Hostname: ISIS
IS-IS Level-2 Link State Database
LSPID
LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OL
ISIS.00-00 * 0x0000002D 0xB2CD
1075
0/0/0
Area Address: 49.0000.0001
NLPID: 0xCC 0x8E
IP Address: 10.1.1.1
IPv6 Address: 1011::1
Topology: IPv4 (0x00) IPv6 (0x8002)
Metric: 10
IS OSPF.00
Metric: 10 IS (MT-IPv6) OSPF.00
Metric: 10
IP 10.1.1.0 255.255.255.0
Metric: 10
IP 15.1.1.0 255.255.255.0
Metric: 20
IP 10.3.3.0 255.255.255.0
Metric: 10 IPv6 (MT-IPv6) 1011::/64
Metric: 10 IPv6 (MT-IPv6) 1511::/64
Metric: 10 IPv6 (MT-IPv6) 2511::/64
Metric: 20 IPv6 (MT-IPv6) 1033::/64
Metric: 10
IPv6 2511::/64
Metric: 20
IPv6 1033::/64
Hostname: ISIS
FTOS#

show isis graceful-restart detail
Display detailed IS-IS graceful restart related settings.

S4810
Syntax

show isis graceful-restart detail

Command
Modes

•

EXEC

•

EXEC Privilege

1012

Intermediate System to Intermediate System (IS-IS)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Introduced on the E-Series.

FTOS#show isis graceful-restart detail
Configured Timer Value
======================
Graceful Restart
: Enabled
T3 Timer
: Manual
T3 Timeout Value
: 30
T2 Timeout Value
: 30 (level-1), 30 (level-2)
T1 Timeout Value
: 5, retry count: 1
Adjacency wait time : 30
Operational Timer Value
======================
Current Mode/State
:
T3 Time left
:
T2 Time left
:
Restart ACK rcv count :
Restart Req rcv count :
Suppress Adj rcv count :
Restart CSNP rcv count :
Database Sync count
:
FTOS#

Normal/RUNNING
0
0 (level-1), 0
0 (level-1), 0
0 (level-1), 0
0 (level-1), 0
0 (level-1), 0
0 (level-1), 0

(level-2)
(level-2)
(level-2)
(level-2)
(level-2)
(level-2)

show isis hostname
Display IS-IS host names configured or learned on the E-Series.

S4810
Syntax

show isis hostname

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

Intermediate System to Intermediate System (IS-IS)

1013

The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

FTOS#show isis hostname
System Id
Dynamic Name Static Name
*F100.E120.0013 Force10
ISIS
FTOS#

show isis interface
Display detailed IS-IS interface status and configuration information.

S4810
Syntax
Parameters

show isis interface [interface]
interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1014

Intermediate System to Intermediate System (IS-IS)

Example

Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

FTOSF>show isis int
GigabitEthernet 0/7 is up, line protocol is up
MTU 1497, Encapsulation SAP
Routing Protocol: IS-IS
Circuit Type: Level-1-2
Interface Index 37847070, Local circuit ID 1
Level-1 Metric: 10, Priority: 64, Circuit ID: systest-3.01
Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10
Number of active level-1 adjacencies: 1
Level-2 Metric: 10, Priority: 64, Circuit ID: systest-3.01
Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10
Number of active level-2 adjacencies: 1
Next IS-IS LAN Level-1 Hello in 2 seconds
Next IS-IS LAN Level-2 Hello in 1 seconds
LSP Interval: 33
GigabitEthernet 0/8 is up, line protocol is up
MTU 1497, Encapsulation SAP
Routing Protocol: IS-IS
Circuit Type: Level-1-2
Interface Index 38371358, Local circuit ID 2
Level-1 Metric: 10, Priority: 64, Circuit ID: systest-3.02
Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10
Number of active level-1 adjacencies: 1
Level-2 Metric: 10, Priority: 64, Circuit ID: systest-3.02
Hello Interval: 10, Hello Multiplier: 3, CSNP Interval: 10
--More--

show isis neighbors
Display information about neighboring (adjacent) routers.

S4810
Syntax
Parameters

show isis neighbors [level-1 | level-2] [detail] [interface]
level-1

(OPTIONAL) Displays information about Level 1 IS-IS
neighbors.

level-2

(OPTIONAL) Displays information about Level 2 IS-IS
neighbors.

detail

(OPTIONAL) Displays detailed information about neighbors.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:

Intermediate System to Intermediate System (IS-IS)

1015

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Use this command to confirm that the neighbor adjacencies are operating
correctly. If you suspect that they are not, you can verify the specified area
addresses of the routers by using the show isis neighbors command.
The following describes the show isis neighbors command shown in the
following example.

1016

Field

Description

System Id

The value that identifies a system in an area.

Interface

The interface, slot, and port in which the router was
discovered.

State

The value providing status about the adjacency state. The
range is Up and Init.

Type

This value displays the adjacency type (Layer 2, Layer 2 or
both).

Priority

IS-IS priority the neighbor advertises. The neighbor with
highest priority becomes the designated router for the
interface.

Uptime

Displays the interfaces uptime.

Intermediate System to Intermediate System (IS-IS)

Example

Field

Description

Circuit Id

The neighbor’s interpretation of the designated router for
the interface.

The bold sections below identify that Multi-Topology IS-IS is enabled.
FTOS#show isis neighbors
System Id Interface State Type Priority Uptime Circuit Id
TEST Gi 7/1 Up L1L2(M) 127 09:28:01 TEST.02
!
FTOS#show isis neighbors detail
System Id Interface State Type Priority Uptime Circuit Id
TEST Gi 7/1 Up L1L2(M) 127 09:28:04 TEST.02 Area Address(es):
49.0000.0001
IP Address(es): 25.1.1.3*
MAC Address: 0000.0000.0000
Hold Time: 28
Link Local Address: fe80::201:e8ff:fe00:492c
Topology: IPv4 IPv6 , Common (IPv4 IPv6 )
Adjacency being used for MTs: IPv4 IPv6
FTOS#

show isis protocol
Display IS-IS routing information.

S4810
Syntax
Command
Modes
Command
History

show isis protocol
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The bold section identifies that Multi-Topology IS-IS is enabled.
FTOS#show isis protocol
IS-IS Router: 

Intermediate System to Intermediate System (IS-IS)

1017

System Id: F100.E120.0013 IS-Type: level-1-2
Manual area address(es):
49.0000.0001
Routing for area address(es):
49.0000.0001
Interfaces supported by IS-IS:
GigabitEthernet 1/0 - IP - IPv6
GigabitEthernet 1/1 - IP - IPv6
GigabitEthernet 1/10 - IP - IPv6
Loopback 0 - IP - IPv6
Redistributing:
Distance: 115
Generate narrow metrics: level-1-2
Accept narrow metrics:
level-1-2
Generate wide metrics:
none
Accept wide metrics:
none
Multi Topology Routing is enabled in transition mode.
FTOS#

show isis traffic
This command allows you to display IS-IS traffic interface information.

S4810
Syntax
Parameters

show isis traffic [interface]
interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1018

Intermediate System to Intermediate System (IS-IS)

Usage
Information

Example

Version 9.2(0.2)

Introduced on the Z9000.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

The following describes the show isis traffic command shown in the
following example.
Item

Description

Level-1/Level-2
Hellos (sent/rcvd)

Displays the number of Hello packets sent and received.

PTP Hellos (sent/
rcvd)

Displays the number of point-to-point Hellos sent and
received.

Level-1/Level-2
LSPs sourced
(new/refresh)

Displays the number of new and refreshed LSPs.

Level-1/Level-2
LSPs flooded
(sent/rcvd)

Displays the number of flooded LSPs sent and received.

Level-1/Level-2
LSPs CSNPs (sent/
rcvd)

Displays the number of CSNP LSPs sent and received.

Level-1/Level-2
LSPs PSNPs (sent/
rcvd)

Displays the number of PSNP LPSs sent and received.

Level-1/Level-2
DR Elections

Displays the number of times designated router elections
ran.

Level-1/Level-2
SPF Calculations

Displays the number of shortest path first calculations.

LSP checksum
errors received

Displays the number of checksum errors LSPs received.

LSP
authentication
failures

Displays the number of LSP authentication failures.

FTOS#sho
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:

is traffic
Level-1 Hellos (sent/rcvd) : 0/721
Level-2 Hellos (sent/rcvd) : 900/943
PTP Hellos (sent/rcvd) : 0/0
Level-1 LSPs sourced (new/refresh) : 0/0
Level-2 LSPs sourced (new/refresh) : 1/3
Level-1 LSPs flooded (sent/rcvd) : 0/0
Level-2 LSPs flooded (sent/rcvd) : 5934/5217
Level-1 LSPs CSNPs (sent/rcvd) : 0/0

Intermediate System to Intermediate System (IS-IS)

1019

IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
IS-IS:
FTOS#

Level-2 LSPs CSNPs (sent/rcvd) : 472/238
Level-1 LSPs PSNPs (sent/rcvd) : 0/0
Level-2 LSPs PSNPs (sent/rcvd) : 10/337
Level-1 DR Elections : 4
Level-2 DR Elections : 4
Level-1 SPF Calculations : 0
Level-2 SPF Calculations : 389
LSP checksum errors received : 0
LSP authentication failures : 0

spf-interval
Specify the minimum interval between shortest path first (SPF) calculations.

S4810
Syntax

spf-interval [level-l | level-2] interval seconds
[initial_wait_interval seconds [second_wait_interval seconds]]
To restore default values, use the no spf-interval [level-l | level-2]
interval seconds [initial_wait_interval seconds
[second_wait_interval seconds]] command.

Parameters

level-l

(OPTIONAL) Enter the keyword level-1 to apply the
configuration to Level-1 SPF calculations.

level-2

(OPTIONAL) Enter the keyword level-2 to apply the
configuration to Level-2 SPF calculations.

interval
seconds

Enter the maximum number of seconds between SPF
calculations. The range is from 0 to 120 seconds. The default
is 10 seconds.

initial_wait_inte
rval seconds

(OPTIONAL) Enter the initial wait time, in seconds, before
running the first SPF calculations. The range is from 0 to 120
seconds. The default is 5 seconds.

second_wait_i
nterval seconds

(OPTIONAL) Enter the wait interval, in seconds, between the
first and second SPF calculations. The range is from 0 to 120
seconds. The default is 5 seconds.

Defaults

Refer to Parameters.

Command
Modes

•

ROUTER ISIS (for IPv4)

•

CONFIGURATION-ROUTER-ISIS-ADDRESS-FAMILY-IPV6 (for IPv6)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1020

Intermediate System to Intermediate System (IS-IS)

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.8.1.0

Added support for multi-topology ISIS.

Version 7.5.1.0

Added support for SPF Throttling Enhancement.

This command spf-interval in CONFIG-ROUTER-ISIS-AF-IPV6 mode is used
for IPv6 Multi-Topology route computation only. If using Single Topology mode,
use the spf-interval command in CONFIG-ROUTER-ISIS mode for both IPv4
and IPv6 route computations.
SPF throttling slows down the frequency at which route calculations are performed
during network instability. Even though throttling route calculations slows down
network convergence, not throttling can result in a network not functioning as
expected. If network topology is unstable, throttling slows down the scheduling of
route calculations until the topology regains its stability.
The first route calculation is controlled by the initial wait interval and the second
calculation is controlled by the second wait interval. Each subsequent wait interval
is twice as long as the previous one until the wait interval reaches the maximum
wait time specified (interval seconds). After the network calms down and there
are no triggers for two times the maximum interval, fast behavior is restored (the
initial wait time).

Intermediate System to Intermediate System (IS-IS)

1021

32

Link Aggregation Control Protocol (LACP)
This chapter contains commands for Dell Networks’s implementation of the link aggregation control
protocol (LACP) for creating dynamic link aggregation groups (LAGs) — known as “port-channels” in the
Dell Networking operating software. The LACP commands in this chapter are supported by Dell
Networking OS on the S4810 platform.
NOTE: For static LAG commands, refer to Port Channel Commands in the Interfaces chapter),
based on the standards specified in the IEEE 802.3 Carrier sense multiple access with collision
detection (CSMA/CD) access method and physical layer specifications.

clear lacp counters
Clear port channel counters.

S4810
Syntax
Parameters

clear lacp port-channel-number counters
port-channelnumber

Enter a port-channel number. The range is from 1 to 128.

Defaults

Without a Port Channel specified, the command clears all Port Channel counters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1022

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Link Aggregation Control Protocol (LACP)

Version 6.2.1.1
Related
Commands

Introduced on the E-Series.

show lacp — displays the LACP configuration.

debug lacp
Debug LACP (configuration, events, and so on).

S4810
Syntax

debug lacp [config | events | pdu [interface-type [in | out]]]
To disable LACP debugging, use the no [config | events | pdu
[interface-type [in | out]]] command.

Parameters

config

(OPTIONAL) Enter the keyword config to debug the LACP
configuration.

events

(OPTIONAL) Enter the keyword events to debug the LACP
event information.

pdu

(OPTIONAL) Enter the keyword pdu to debug the LACP
Protocol Data Unit information.

interface-type
in | out

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Optionally, enter an in or out parameter:
•

Receive enter in

•

Transmit enter out

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Link Aggregation Control Protocol (LACP)

1023

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

lacp long-timeout
Configure a long timeout period (30 seconds) for an LACP session.

S4810
Syntax

lacp long-timeout
To reset the timeout period to a short timeout (1 second), use the no lacp longtimeout command.

Defaults

1 second

Command
Modes

INTERFACE (conf-if-po-number)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1024

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

This command applies to dynamic port-channel interfaces only. When applied on a
static port-channel, this command has no effect.

Link Aggregation Control Protocol (LACP)

Related
Commands

show lacp — displays the LACP configuration.

lacp port-priority
To influence which ports will be put in Standby mode when there is a hardware limitation that prevents all
compatible ports from aggregating, configure the port priority.

S4810
Syntax

lacp port-priority priority-value
To return to the default setting, use the no lacp port-priority priorityvalue command.

Parameters

priority-value

Enter the port-priority value. The higher the value number,
the lower the priority. The range is from 1 to 65535. The
default is 32768.

Defaults

32768

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Link Aggregation Control Protocol (LACP)

1025

lacp system-priority
Configure the LACP system priority.

S4810
Syntax
Parameters

lacp system-priority priority-value
priority-value

Enter the port-priority value. The higher the value number,
the lower the priority. The range is from 1 to 65535. The
default is 32768.

Defaults

32768

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

port-channel-protocol lacp
Enable LACP on any LAN port.

S4810
Syntax

port-channel-protocol lacp
To disable LACP on a LAN port, use the no port-channel-protocol lacp
command.

Command
Modes

1026

INTERFACE

Link Aggregation Control Protocol (LACP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced on the E-Series.

show lacp — displays the LACP information.
show interfaces port-channel — displays information on configured Port Channel
groups.

show lacp
Display the LACP matrix.

S4810
Syntax
Parameters

show lacp port-channel-number [sys-id | counters]
port-channelnumber

Enter a port-channel number. The range is from 1 to 128.

sys-id

(OPTIONAL) Enter the keywords sys-id and the value that
identifies a system.

counters

(OPTIONAL) Enter the keyword counters to display the
LACP counters.

Defaults

Without a Port Channel specified, the command clears all Port Channel counters.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Link Aggregation Control Protocol (LACP)

1027

Example (PortChannelNumber)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Dell#show lacp
Port-channel 1
Actor
System
Partner System
Key 1

1
admin up, oper up,
ID:Priority 32768,
ID:Priority 32768,
Actor Admin Key

mode lacp
Address 0001.e800.a12b
Address 0001.e801.45a5
1, Oper Key 1, Partner Oper

LACP LAG 1 is an aggregatable link

A-Active LACP, B-Passive LACP, C-Short Timeout, D-Long Timeout
E-Aggregatable Link, F-Individual Link, G-IN_SYNC, HOUT_OF_SYNC
I-Collection enabled, J-Collection disabled, K-Distribution
enabled L-Distribution disabled,
M-Partner Defaulted, N-Partner Non-defaulted, O-Receiver is in
expired state,
P-Receiver is not in expired state
Port Gi 10/6 is enabled, LACP is enabled
Actor
Admin: State ACEHJLMP Key 1
Oper: State ACEGIKNP Key 1
Partner Admin: State BDFHJLMP Key 0
Oper: State BCEGIKNP Key 1
Dell#
Example (Sysid)

and mode
Priority
Priority
Priority
Priority

is lacp
128
128
0
128

Dell#show lacp 1 sys-id
Actor
System ID: Priority 32768, Address 0001.e800.a12b
Partner System ID: Priority 32768, Address 0001.e801.45a5
Dell#

Example
(Counter)

Dell#show lacp 1 counters
---------------------------------------------------LACP PDU
Marker PDU
Unknown
Illegal
Port
Xmit Recv
Xmit Recv
Pkts Rx
Pkts Rx
----------------------------------------------------Gi 10/6 200 200
0
0
0
0
Dell#

Related
Commands

clear lacp counters — clears the LACP counters.
show interfaces port-channel — displays information on configured Port Channel
groups.

1028

Link Aggregation Control Protocol (LACP)

33

Layer 2
This chapter describes commands to configure Layer 2 features.
This chapter contains the following sections:
•

MAC Addressing Commands

•

Virtual LAN (VLAN) Commands

•
The VLAN commands are supported on all the S4810 platform.

MAC Addressing Commands
The following commands are related to configuring, managing, and viewing MAC addresses.

clear mac-address-table
Clear the MAC address table of all MAC address learned dynamically.

S4810
Syntax
Parameters

Layer 2

clear mac-address-table {dynamic | sticky }{address mac-address
| all | interface interface | vlan vlan-id}
dynamic

Enter the keyword dynamic to specify dynamically-learned
MAC addresses.

sticky

Enter the keyword sticky to specify sticky MAC addresses.

address macaddress

Enter the keyword address then a MAC address in
nn:nn:nn:nn:nn:nn format.

all

Enter the keyword all to delete all MAC address entries in
the MAC address table.

interface
interface

Enter the following keywords and slot/port or number
information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

1029

vlan vlan-id

Enter the keyword vlan then a VLAN ID number from 1 to
4094.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Added support for sticky MAC addresses.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.1

Introduced on the E-Series.

mac-address-table aging-time
Specify an aging time for MAC addresses to remove from the MAC address table.

S4810
Syntax
Parameters

mac-address-table aging-time seconds
seconds

Enter either zero (0) or a number as the number of seconds
before MAC addresses are relearned. To disable aging of the
MAC address table, enter 0. The range is from 10 to
1000000. The default is 1800 seconds.

Defaults

1800 seconds

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1030

Layer 2

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

On the E-Series, available in INTERFACE VLAN context,
reduced the minimum aging time in the INTERFACE VLAN
context from 10 seconds to 1 second.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

mac learning-limit — sets the MAC address learning limits for a selected interface.
show mac-address-table aging-time — displays the MAC aging time.

mac-address-table static
Associate specific MAC or hardware addresses to an interface and VLANs.

S4810
Syntax

mac-address-table static mac-address {multicast vlan vlan-id
output—range interface}{output interface vlan vlan-id}
To remove a MAC address, use the no mac-address-table static macaddress output interface vlan vlan-id command.

Parameters

mac-address

Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn
format.

multicast

Enter a vlan port to where L2 multicast MAC traffic is
forwarded.
NOTE: Use this option if you want multicast functionality
in an L2 VLAN without IGMP protocols.

output
interface

Layer 2

For a unicast MAC address, enter the keyword output then
one of the following interfaces for which traffic is forwarded:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

1031

output-range
interface

vlan vlan-id

For a multicast MAC address, enter the keyword outputrange then one of the following interfaces to indicate a
range of ports for which traffic is forwarded:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Enter the keyword vlan then a VLAN ID number from 1 to
4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.1(0.0)

Added support for output range parameter for S4810 and
Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Example
(Unicast)

mac-address-table static 00:01:00:00:00:01 {output Te 0/2 vlan
2}

Example
(Multicast)

mac-address-table static 01:00:5E:01:00:01 {multicast vlan
2 output—range Te 0/2,Te 0/3}

Related
Commands

show mac-address-table — displays the MAC address table.

1032

Layer 2

mac-address-table station-move threshold
Change the frequency with which the MAC address station-move trap is sent after a MAC address
changes in a VLAN. A trap is sent if a station move is detected above a threshold number of times in a
given interval.

S4810
Syntax
Parameters

[no] mac-address-table station-move threshold number interval
count
threshold
number

Enter the keyword threshold then the number of times
MAC addresses in VLANs can change before an SNMP trap is
sent. The range is from 1 to 10.

interval
seconds

Enter the keyword interval then the number of seconds.
The range is from 5 to 60.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

For information about the specific trap sent and the corresponding Syslog, refer to
the SNMP Traps chapter.

mac-address-table station-move refresh-arp
Ensure that address resolution protocol (ARP) refreshes the egress interface when a station move occurs
due to a topology change.

S4810
Syntax

[no] mac-address-table station-move refresh-arp

Defaults

none

Command
Modes

CONFIGURATION

Layer 2

1033

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

For details about using this command, refer to the “NIC Teaming” section of the
Layer 2 chapter in the Dell Networking OS Configuration Guide.

mac learning-limit
Limit the maximum number of MAC addresses (static + dynamic) learned on a selected interface.

S4810
Syntax
Parameters

Defaults

mac learning-limit address_limit [vlan vlan-id] [station-moveviolation [dynamic]] [dynamic [no-station-move| station-move]]
address_limit

Enter the maximum number of MAC addresses that can be
learned on the interface. The range is from 1 to 1000000.

vlan vlan-id

Enter the keyword then the VLAN ID. The range is from 1 to
4094.

dynamic

(OPTIONAL) Enter the keyword dynamic to allow aging of
MACs even though a learning limit is configured.

station-moveviolation

(OPTIONAL) Enter the keywords station-move to allow a
station move on learned MAC addresses.

•

On S-Series, the default behavior is dynamic.
NOTE: “Static” means manually entered addresses, which do not age.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1034

Layer 2

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Deprecated the no-station-move command (replaced by
the mac-learning-limit mac-address-sticky
command).

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the vlan option on the E-Series.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series. Added the station-move
option.

Version 6.5.1.0

Added support for MAC Learning-Limit on the LAG.

This command and its options are supported on physical interfaces, static LAGs,
LACP LAGs, and VLANs.
If you do not specify the vlan option, the MAC address counters are not VLANbased. That is, the sum of the addresses learned on all VLANs (not having any
learning limit configuration) is counted against the MAC learning limit.
MAC Learning Limit violation logs and actions are not available on a per-VLAN
basis.
With the keyword no-station-move option, MAC addresses learned through this
feature on the selected interface persist on a per-VLAN basis, even if received on
another interface. Enabling or disabling this option has no effect on already learned
MAC addresses.
After the MAC address learning limit is reached, the MAC addresses do not age out
unless you add the dynamic option. To clear statistics on MAC address learning,
use the clear counters command with the learning-limit parameter.
NOTE: If you configure this command on an interface in a routed VLAN, and
after the MAC addresses learned reaches the limit set in the mac learninglimit command, IP protocols are affected. For example, VRRP sets multiple
VRRP Masters and OSPF may not come up.
When a channel member is added to a port-channel and there is not enough ACL
CAM space, the MAC limit functionality on that port-channel is undefined. When
this occurs, un-configure the existing configuration first and then reapply the limit
with a lower value.

Related
Commands

Layer 2

mac learning-limit mac-address-sticky — Replaces deprecated no-station-move
parameter.

1035

show mac learning-limit — displays MAC learning-limit configuration.

mac learning-limit learn-limit-violation
Configure an action for a MAC address learning-limit violation.

S4810
Syntax

mac learning-limit learn-limit-violation {log | shutdown}
To return to the default, use the no mac learning-limit learn-limitviolation {log | shutdown} command.

Parameters

log

Enter the keyword log to generate a syslog message on a
learning-limit violation.

shutdown

Enter the keyword shutdown to shut down the port on a
learning-limit violation.

Defaults

none

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced on the E-Series.

Usage
Information

This command is supported on physical interfaces, static LAGs, and LACP LAGs.

Related
Commands

show mac learning-limit — displays details of the mac learning-limit.

1036

Layer 2

mac learning-limit mac-address-sticky
Maintain the dynamically learned mac addresses as sticky MAC addresses on the selected port.

S4810
Syntax

mac learning-limit mac-address-sticky
To convert the sticky MAC addresses to dynamic MAC addresses, use the no mac
learning-limit command.

Parameters

mac-addresssticky

Configures the dynamic MAC addresses as sticky on an
interface.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Usage
Information

If you configure mac-learn-limit and the sticky MAC feature is enabled,
dynamically learned MAC addresses are converted to sticky for that port. Any new
MAC address that is learned also becomes sticky for that port.

Related
Commands

show mac learning-limit — displays the details of the mac learning-limit.

mac learning-limit station-move-violation
Specify the actions for a station move violation.

S4810
Syntax

mac learning-limit station-move-violation {log | shutdown-both
| shutdown-offending | shutdown-original}
To disable a configuration, use the no mac learning-limit station-moveviolation command, then the configured keyword.

Layer 2

1037

Parameters

log

Enter the keyword log to generate a syslog message on a
station move violation.

shutdown-both

Enter the keyword shutdown to shut down both the original
and offending interface and generate a syslog message.

shutdownoffending

Enter the keywords shutdown-offending to shut down
the offending interface and generate a syslog message.

shutdownoriginal

Enter the keywords shutdown-original to shut down the
original interface and generate a syslog message.

Defaults

none

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.8.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced on the E-Series.

Usage
Information

This command is supported on physical interfaces, static LAGs, and LACP LAGs.

Related
Commands

show mac learning-limit — displays details of the mac learning-limit.

mac learning-limit reset
Reset the MAC address learning-limit error-disabled state.

S4810
Syntax

mac learning-limit reset

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

1038

Layer 2

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Introduced on the E-Series.

show cam mac linecard (count)
Display the content addressable memory (CAM) size and the portions allocated for MAC addresses and
for MAC ACLs.

S4810
Syntax
Parameters

Layer 2

show cam mac linecard slot port-set port-pipe count [vlan vlanid] [interface interface]
linecard slot

(REQUIRED) Enter the keyword linecard then a slot
number to select the linecard for which to gather
information.

port-set portpipe

(REQUIRED) Enter the keywords port-set then a Port-Pipe
number to select the Port-Pipe for which to gather
information.

count

(REQUIRED) Enter the keyword count to display CAM usage
by interface type.

interface
interface

(OPTIONAL) Enter the keyword interface then the
interface type, slot and port information:
•

For a Port Channel interface, enter the keywords portchannel then a number.

•

For a SONET interface, enter the keyword sonet then the
slot/ port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

1039

vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display the MAC address assigned to the VLAN. The range is
from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
6.2.1.1

Introduced on the E-Series.

show cam mac linecard (dynamic or static)
Display the CAM size and the portions allocated for MAC addresses and for MAC ACLs.

S4810
Syntax
Parameters

1040

show cam mac linecard slot port-set port-pipe [address mac_addr
| dynamic | interface interface | static | vlan vlan-id]
linecard slot

(REQUIRED) Enter the keyword linecard then a slot
number to select the linecard for which to gather
information.

port-set portpipe

(REQUIRED) Enter the keywords port-set then a Port-Pipe
number to select the Port-Pipe for which to gather
information. The range is from 0 or 1.

address macaddr

(OPTIONAL) Enter the keyword address then a MAC
address in the nn:nn:nn:nn:nn:nn format to display
information on that MAC address.

dynamic

(OPTIONAL) Enter the keyword dynamic to display only
those MAC addresses the switch dynamically learns.

interface
interface

(OPTIONAL) Enter the keyword interface then the
interface type, slot and port information:
•

For a Port Channel interface, enter the keywords portchannel then a number.

•

For a SONET interface, enter the keyword sonet then the
slot/ port information.

Layer 2

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

static

(OPTIONAL) Enter the keyword static to display only those
MAC addresses specifically configured on the switch.

vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display the MAC address assigned to the VLAN. The range is 1
to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Layer 2

Version
8.3.19.0

Introduced on the S4820T.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell#show cam mac linecard 1 port-set 0
Port - (TableID) assignments:
00(01) 01(01) 02(01) 03(01) 04(01) 05(01) 06(01) 07(01) 08(01)
09(01) 10(01) 11(01)
12(01) 13(01) 14(01) 15(01) 16(01) 17(01) 18(01) 19(01) 20(01)
21(01) 22(01) 23(01)
Index Table ID VlanId Mac Address
Region
Interface
0
1
0
00:01:e8:0d:b7:3b LOCAL_DA
1e000
1
1
0
00:01:e8:0d:b7:3a LOCAL_DA
1e000
101
0
0
00:01:e8:00:04:00 SYSTEM_STATIC 01c05
102
0
0
01:80:00:00:00:00 SYSTEM_STATIC 01c05
103
0
0
01:00:0c:cc:cc:cc SYSTEM_STATIC 01c01
104
0
0
01:80:c2:00:00:02 SYSTEM_STATIC 01c02
105
0
0
01:80:c2:00:00:0e SYSTEM_STATIC 01c01
106
0
0
00:01:e8:0d:b7:68 SYSTEM_STATIC DROP
107
0
0
00:01:e8:0d:b7:67 SYSTEM_STATIC DROP
108
0
0
00:01:e8:0d:b7:66 SYSTEM_STATIC DROP
109
0
0
00:01:e8:0d:b7:65 SYSTEM_STATIC DROP
110
0
0
00:01:e8:0d:b7:64 SYSTEM_STATIC DROP
111
0
0
00:01:e8:0d:b7:63 SYSTEM_STATIC DROP
112
0
0
00:01:e8:0d:b7:62 SYSTEM_STATIC DROP
113
0
0
00:01:e8:0d:b7:61 SYSTEM_STATIC DROP
114
0
0
00:01:e8:0d:b7:60 SYSTEM_STATIC DROP
115
0
0
00:01:e8:0d:b7:5f SYSTEM_STATIC DROP
116
0
0
00:01:e8:0d:b7:5e SYSTEM_STATIC DROP

1041

117
Dell#

0

0

00:01:e8:0d:b7:5d

SYSTEM_STATIC

DROP

show mac-address-table
Display the MAC address table.

S4810
Syntax

Parameters

1042

show mac-address-table [address mac-address | interface
interface | vlan vlan-id] [aging-time] [dynamic | static]
[count [vlan vlan-id] [interface interface-type [slot [/
port]]]]
address macaddress

(OPTIONAL) Enter the keyword address then a MAC
address in the nn:nn:nn:nn:nn:nn format to display
information on that MAC address.

dynamic

(OPTIONAL) Enter the keyword dynamic to display only
those MAC addresses the switch dynamically learns.
Optionally, you can also add one of these combinations:
address/mac-address, interface/interface, or vlan
vlan-id.

static

(OPTIONAL) Enter the keyword static to display only those
MAC addresses specifically configured on the switch.
Optionally, you can also add one of these combinations:
address/mac-address, interface/interface, or vlan
vlan-id.

aging-time

Enter the keyword aging-time to display only aging-time
information.

interface
interface

(OPTIONAL) Enter the keyword interface then the
interface type, slot and port information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

interface
interface-type

(OPTIONAL) Instead of entering the keyword interface
then the interface type, slot and port information, as above,
you can enter the interface type, then just a slot number.

vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display the MAC address assigned to the VLAN. The range is 1
to 4094.

count

(OPTIONAL) Enter the keyword count, then optionally, by an
interface or VLAN ID, to display total or interface-specific

Layer 2

static addresses, dynamic addresses, and MAC addresses in
use.
Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Layer 2

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Updated the output.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The following describes the show mac-address-table command shown in the
following example.
Column Heading

Description

VlanId

Displays the VLAN ID number.

Mac Address

Displays the MAC address in nn:nn:nn:nn:nn:nn format.

Type

Lists whether the MAC address was manually configured
(Static), learned dynamically (Dynamic), or associated with a
specific port (Sticky).

Interface

Displays the interface type and slot/port information. The
following abbreviations describe the interface types:
•

gi — Gigabit Ethernet then a slot/port.

•

po — Port Channel then a number. The range is from 1
to 255 for TeraScale.

•

so —SONET then a slot/port.

•

te — 10 Gigabit Ethernet then a slot/port.

1043

Example

Usage
Information

Column Heading

Description

State

Lists if the MAC address is in use (Active) or not in use
(Inactive).

Dell(conf)#do show mac-address-table
Codes: *N - VLT Peer Synced MAC
VlanId
Mac
Address
Type
Interface
2
00:00:00:00:00:01
Dynamic (N)
128
Active
2
00:00:00:00:00:02
Dynamic (N)
10
Active
2
00:00:00:00:00:03
Dynamic
100
Active
2
00:00:00:00:00:04
Dynamic
10
Active

State

Po

Po
Po
Po

The following describes the show mac-address-table command shown in the
following example.
Column Heading

Description

VlanId

Displays the VLAN ID number.

Mac Address

Displays the MAC address in nn:nn:nn:nn:nn:nn format.

Type

Lists whether the MAC address was manually configured
(Static), learned (Dynamic), or associated with a specific port
(Sticky). An (N) indicates that the specified MAC address has
been learnt by a neighbor and is synced to the node.

Interface

Displays the interface type and slot/port information. The
following abbreviations describe the interface types:

State

•

gi — Gigabit Ethernet followed by a slot/port

•

po — Port Channel followed by a number. Range for
Terascale is from 1 to 255. \

•

so — Sonet followed by a slot/port.

•

te — 10–Gigabit Ethernet followed by a slot/port.

Lists if the MAC address is in use (Active) or not in use
(Inactive).

The following describes the show mac-address-table count command shown
in the following example.

1044

Line Beginning
With

Description

MAC Entries...

Displays the number of MAC entries learned per VLAN.

Dynamic
Address...

Lists the number of dynamically learned MAC addresses.

Static Address...

Lists the number of user-defined MAC addresses.

Layer 2

Line Beginning
With

Description

Total MAC...

Lists the total number of MAC addresses the switch uses.

Example
(Count)

Dell# show mac-address-table count
MAC Entries for all vlans :
Dynamic Address Count :
110
Static Address (User-defined) Count : 0
Sticky Address Count :
0
Total Synced Mac from Peer(N):
100
Total MAC Addresses in Use:
110
Dell#

Related
Commands

show mac-address-table aging-time — displays MAC aging time.

show mac-address-table aging-time
Display the aging times assigned to the MAC addresses on the switch.

S4810
Syntax
Parameters

show mac-address-table aging-time [vlan vlan-id]
vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display the MAC address assigned to the VLAN. The range is
from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Layer 2

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the vlan option on the E-Series.

Version 7.7.1.0

Introduced on the C-Series and S-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

1045

Example

Dell#show mac-address-table aging-time
Mac-address-table aging time : 1800
Dell#

Related
Commands

show mac-address-table — displays the current MAC address configuration.

show mac accounting destination
Display destination counters for Layer 2 traffic (available on physical interfaces only).

S4810
Syntax

Parameters

show mac accounting destination [mac-address vlan vlan-id]
[interface interface [mac-address vlan vlan-id] [vlan vlan-id]]
[vlan vlan-id]
mac-address

(OPTIONAL) Enter the MAC address in the
nn:nn:nn:nn:nn:nn format to display information on that
MAC address.

interface
interface

(OPTIONAL) Enter the keyword interface then the
interface type, slot and port information:

vlan vlan-id

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display the MAC address assigned to the VLAN. The range is
from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1046

Version
8.3.19.0

Introduced on the S4820T.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
6.2.1.1

Introduced on the E-Series.

Layer 2

Usage
Information

MAC Accounting information can be accessed using SNMP via the Force10 Monitor
MIB. For more information about enabling SNMP, refer to the Dell Networking OS
Configuration Guide.
NOTE: Currently, the Force10 MONITOR MIB does not return the MAC
addresses in an increasing order using SNMP. As a workaround, you can use
the -C c option in snmpwalk or snmpbulkwalk to access the Force10
MONITOR MIB. For example: % snmpwalk -C c -v 2c -c public 133.33.33.131
enterprise.6027.3.3.3

Example

Dell-1#sh mac accounting destination interface gigabitethernet
2/1
Destination

Out Port

VLAN

Packets Bytes

00:44:00:00:00:02
00:44:00:00:00:01
00:22:00:00:00:00
00:44:00:00:00:02
00:44:00:00:00:01

Te
Te
Te
Te
Te

1000
1000
1000
2000
2000

10000
10000
10000
10000
10000

11/0
11/0
11/0
11/0
11/0

5120000
5120000
5120000
5120000
5120000

Dell-1#
Related
Commands

show mac accounting access-list — displays the MAC access list configurations
and counters (if configured).

show mac learning-limit
Display MAC address learning limits set for various interfaces.

S4810
Syntax
Parameters

show mac learning-limit [violate-action] [detail] [interface
interface]
violate-action

(OPTIONALY) Enter the keywords violate-action to
display the MAC learning limit violation status.

detail

(OPTIONAL) Enter the keyword detail to display the MAC
learning limit in detail.

interface
interface

(OPTIONAL) Enter the keyword interface with the
following keywords and slot/port or number information:
•
•
•

Command
Modes

Layer 2

•
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.
For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

EXEC
EXEC Privilege

1047

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the vlan option on the E-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.5.1.0

Added support for the violate-action and detail
options.

Version 6.5.1.0

Added support for Port Channel.

Dell#show mac learning-limit
Interface Learning Dynamic
Static
Slot/port Limit
MAC count MAC count
Gi 1/0
10
0
0
Gi 1/1
5
0
0
Dell#show mac learning-limit interface gig
Interface Learning Dynamic
Static
Slot/port Limit
MAC count MAC count
Gi 1/0
10
0
0

Unknown SA
Drops
0
0
1/0
Unknown SA
Drops
0

Virtual LAN (VLAN) Commands
The following commands configure and monitor virtual LANs (VLANs). VLANs are a virtual interface and
use many of the same commands as physical interfaces.
You can configure an IP address and Layer 3 protocols on a VLAN called Inter-VLAN routing. FTP, TFTP,
ACLs and SNMP are not supported on a VLAN.
Occasionally, while sending broadcast traffic over multiple Layer 3 VLANs, the VRRP state of a VLAN
interface may continually switch between Master and Backup.
NOTE: For more information, refer to VLAN Stacking and VLAN-related commands, such as
portmode hybrid in the Interfaces chapter.

1048

Layer 2

default vlan-id
Specify a VLAN as the Default VLAN.

S4810
Syntax

default vlan-id vlan-id
To remove the default VLAN status from a VLAN and VLAN 1 does not exist, use the
no default vlan-id vlan-id syntax.

Parameters

vlan-id

Enter the VLAN ID number of the VLAN to become the new
Default VLAN. The range is from 1 to 4094. The default is 1.

Defaults

The Default VLAN is VLAN 1.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

To return VLAN 1 as the Default VLAN, use this command syntax (default-vlanid 1).
The Default VLAN contains only untagged interfaces.

Related
Commands

Layer 2

interface vlan — configures a VLAN.

1049

default-vlan disable
Disable the default VLAN so that all switchports are placed in the Null VLAN until they are explicitly
configured as a member of another VLAN.

S4810
Defaults

Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced

The no default vlan disable command is not listed in the runningconfiguration, but when the default VLAN is disabled, default-vlan disable is
listed in the running-configuration.

name
Assign a name to the VLAN.

S4810
Syntax

name vlan-name
To remove the name from the VLAN, use the no name command.

Parameters

vlan-name

Enter up to 32 characters as the name of the VLAN.

Defaults

Not configured.

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1050

Layer 2

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

To display information about a named VLAN, enter the show vlan command with
the name parameter or the show interfaces description command.

Related
Commands

interface vlan — configures a VLAN.
show vlan — displays the current VLAN configurations on the switch.

show config
Display the current configuration of the selected VLAN.

S4810
Syntax

show config

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Layer 2

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell(conf-if-vl-100)#show config
!
interface Vlan 100

1051

no ip address
no shutdown
Dell(conf-if-vl-100)#

show vlan
Display the current VLAN configurations on the switch.

S4810
Syntax
Parameters

show vlan [brief | id vlan-id | name vlan-name]
brief

(OPTIONAL) Enter the keyword brief to display the
following information:
•

VLAN ID

•

VLAN name (left blank if none is configured)

•

Spanning Tree Group ID

•

MAC address aging time

•

IP address

id vlan-id

(OPTIONAL) Enter the keyword id then a number from 1 to
4094. Only information on the VLAN specified is displayed.

name vlanname

(OPTIONAL) Enter the keyword name then the name
configured for the VLAN. Only information on the VLAN
named is displayed.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1052

Version 9.0.2.0

Introduced on the S6000.

Version 9.1.
(0.0)

Updated to support OpenFlow.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Augmented to display PVLAN data for the C-Series and SSeries and revised the output to include the Description field
to display a user-entered VLAN description.

Layer 2

Usage
Information

Version 7.6.1.0

Introduced on the S-Series and revised the output to display
Native VLAN.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The following describes the show vlan command shown in the following
example.
Column Heading

Description

(Column 1 — no
heading)

•

asterisk symbol (*) = Default VLAN

•

G = GVRP VLAN

•

P = primary VLAN
C = community VLAN
I = isolated VLAN

•

O = OpenFlow

NUM

Displays existing VLAN IDs.

Status

Displays the word Inactive for inactive VLANs and the word
Active for active VLANs.

Q

Ports

Example

•
•

•

Displays G for GVRP tagged

•

M for member of a VLAN-Stack VLAN

•

T for tagged interface

•

U for untagged interface

•

x (not capitalized x) for Dot1x untagged

•

X (capitalized X) for Dot1x tagged

•

o (not capitalized o) for OpenFlow untagged

•

O (capitalized O) for OpenFlow tagged

•

H for VSN tagged

•

i (not capitalized i) for Internal untagged

•

I (capitalized I) for Internal tagged

•

v (not capitalized v) for VLT untagged

•

V (capitalized V) for VLT tagged

Displays the type, slot, and port information.
•

Po = port channel

•

Gi = gigabit Ethernet

•

Te = ten-gigabit Ethernet

Dell#show vlan
Codes: * - Default VLAN, G - GVRP VLANs, P - Primary, C Community, I - Isolated

Layer 2

1053

Q: U - Untagged, T - Tagged, O - Openflow
x - Dot1x untagged, X - Dot1x tagged
o - OpenFlow untagged, O - OpenFlow tagged
G - GVRP tagged, M - Vlan-stack
i - Internal untagged, I - Internal tagged, v - VLT
untagged, V - VLT tagged
NUM Status
Description
Q Ports
*
1
Inactive
2
Active
U Po1(Gi 13/0)
T Po20(Gi 13/6), Gi 13/25
T Gi 13/7
3
Active T Po20(Gi 13/6)
T Gi 13/7
U Gi 13/1
4
Active U Po2(Gi 13/2)
T Po20(Gi 13/6)
T Gi 13/7
5
Active T Po20(Gi 13/6)
T Gi 13/7
U Gi 13/3
6
Active U Po3(Gi 13/4)
T Po20(Gi 13/6)
T Gi 13/7
7
Active T Po20(Gi 13/6)
T Gi 13/7
U Gi 13/5
P 100
Active T Po1(Gi 0/1)
T Gi 0/2
C 101
Inactive T Gi 0/3
I 102
Inactive T Gi 0/4
Dell#
Example (VLAN
ID)

Dell# show vlan id 40
Codes:
Q: U x G -

* - Default VLAN, G - GVRP VLANs
Untagged, T - Tagged
Dot1x untagged, X - Dot1x tagged
GVRP tagged, M - Vlan-stack

NUM
40

Status Description Q Ports
Active
M Gi 13/47

Dell#show vlan id 41
Codes:
Q: U x G -

* - Default VLAN, G - GVRP VLANs
Untagged, T - Tagged
Dot1x untagged, X - Dot1x tagged
GVRP tagged, M - Vlan-stack

NUM
41

Status Description Q Ports
Active
T Gi 13/47

Dell#show vlan id 42
Codes:
Q: U x G -

* - Default VLAN, G - GVRP VLANs
Untagged, T - Tagged
Dot1x untagged, X - Dot1x tagged
GVRP tagged, M - Vlan-stack

NUM
42
Dell#

1054

Status Description Q Ports
Active
U Gi 13/47

Layer 2

Example (Brief)

Dell#show vlan br
VLAN Name STG MAC Aging
IP Address
---- -----------------------------------1
0
1800
unassigned
2
0
1800
2.2.2.2/24
3
0
1800
3.3.3.2/24
Dell#

Example
(Name)

Dellconf)#interface vlan 222
Dell(conf-if-vl-222)#name test
Dell(conf-if-vl-222)#do show vlan name test
Codes:
Q: U x G -

* - Default VLAN, G - GVRP VLANs
Untagged, T - Tagged
Dot1x untagged, X - Dot1x tagged
GVRP tagged, M - Vlan-stack

NUM Status Description
222 Inactive
Dell(conf-if-vl-222)#
Example
(OpenFlow
instance)

Related
Commands

*
O
O
O

NUM
1
3
6
8
12

Status
Inactive
Inactive
Inactive
Inactive
Inactive

Q Ports
U Gi 1/22

Description

Q Ports

O Te 0/10

vlan-stack compatible — enables the Stackable VLAN feature on the selected
VLAN.
interface vlan — configures a VLAN.

tagged
Add a Layer 2 interface to a VLAN as a tagged interface.

S4810
Syntax

tagged interface
To remove a tagged interface from a VLAN, use the no tagged interface
command.

Parameters

Layer 2

interface

Enter the following keywords and slot/port or number
information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

1055

Defaults

All interfaces in Layer 2 mode are untagged.

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

When you use the no tagged command, the interface is automatically placed in
the Default VLAN as an untagged interface unless the interface is a member of
another VLAN. If the interface belongs to several VLANs, remove it from all VLANs
to change it to an untagged interface.
Tagged interfaces can belong to multiple VLANs, while untagged interfaces can
only belong to one VLAN at a time.

Related
Commands

interface vlan — configures a VLAN.
untagged — specifies which interfaces in a VLAN are untagged.

track ip
Track the Layer 3 operational state of a Layer 3 VLAN, using a subset of the VLAN member interfaces.

S4810
Syntax

track ip interface
To remove the tracking feature from the VLAN, use the no track ip interface
command.

Parameters

1056

interface

Enter the following keywords and slot/port or number
information:

Layer 2

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Not configured.

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

When this command is configured, the VLAN is operationally UP if any of the
interfaces specified in the track ip command are operationally UP, and the VLAN
is operationally DOWN if none of the tracking interfaces are operationally UP.
If the track ip command is not configured, the VLAN's Layer 3 operational state
depends on all the members of the VLAN.
The Layer 2 state of the VLAN, and hence the Layer 2 traffic, is not affected by the
track ip command configuration.

Related
Commands

interface vlan — configures a VLAN.
tagged — specifies which interfaces in a VLAN are tagged.

Layer 2

1057

untagged
Add a Layer 2 interface to a VLAN as an untagged interface.

S4810
Syntax

untagged interface
To remove an untagged interface from a VLAN, use the no untagged interface
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•
•
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

All interfaces in Layer 2 mode are untagged.

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Untagged interfaces can only belong to one VLAN.
In the Default VLAN, you cannot use the no untagged interface command. To
remove an untagged interface from all VLANs, including the Default VLAN, enter
INTERFACE mode and use the no switchport command.

1058

Layer 2

Related
Commands

interface vlan — configures a VLAN.
tagged — specifies which interfaces in a VLAN are tagged.

Far-End Failure Detection (FEFD)
The Dell Networking operating software supports far-end failure detection (FEFD) on the Ethernet
interfaces of the S4810 platform.
The FEFD feature detects and reports far-end link failures.
•

FEFD is not supported on the Management interface.

•

During an RPM failover, FEFD is operationally disabled for approximately 8 to 10 seconds.

•

By default, FEFD is disabled.

debug fefd
Enable debugging of FEFD.

S4810
Syntax

debug fefd {events | packets} [interface]
To disable debugging of FEFD, use the no debug fefd {events | packets}
[interface] command.

Parameters

events

Enter the keyword events to enable debugging of FEFD
state changes.

packets

Enter the keyword packets to enable debugging of FEFD to
view information on packets sent and received.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Layer 2

Introduced on the S6000.

1059

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Legacy ESeries
command.
Related
Commands

•

fefd — enables far-end failure detection on an interface.

•

fefd reset — enables FEFD globally on the system.

fefd
Enable Far-End Failure Detection on an interface, set the FEFD interval, or select the FEFD mode.

S4810
Syntax
Parameters

fefd {disable|interval|mode {aggressive|normal}
disable

Enter the keyword disable to disable FEFD for the specified
interface.

interval

Enter the keyword interval, followed by a value to specify the
FEFD interval in seconds. Range is from 3 to 300. Default is
15.

mode

Enter the keyword mode followed by the mode type to
specify the FEFD mode.
•

normal: Change the link state to “unknown” when a farend failure is detected by the software on that interface.
When the interface is placed in an “unknown” state, the
software brings down the line protocol.

•

aggressive: Change the link state to “error-disabled”
when a far-end failure is detected by the software on that
interface. When an interface is placed in an “errordisabled” state, you must enter the fefd reset
command to reset the interface state. Range is normal or
aggressive. Default is normal.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1060

Layer 2

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

When you enter no fefd for an interface and fefd-global, FEFD is enabled on
the interface because the no fefd command is not retained in the configuration
file. To keep the interface FEFD disabled when the global configuration changes,
use the fefd reset command.
•
•
•

fefd disable — disables far-end failure detection on an interface.
fefd reset — enables FEFD globally on the system.
fefd mode — changes FEFD mode on an interface.

fefd disable
Disable FEFD on an interface only. This command overrides the fefd reset command for the interface.

S4810
Syntax

fefd disable
To re-enable FEFD on an interface, use the no fefd disable command.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Legacy ESeries
command.
Usage
Information

Layer 2

When you enter no fefd for an interface and fefd-global, FEFD is enabled on the
interface because the no fefd command is not retained in the configuration file.
To keep the interface FEFD disabled when the global configuration changes, use
the fefd reset command.

1061

Related
Commands

•

fefd reset — enables FEFD globally on the system.

•

fefd mode — changes FEFD mode on an interface.

fefd interval
Set an interval between control packets.

S4810
Syntax

fefd interval seconds
To return to the default value, use the no fefd interval command.

Parameters

seconds

Enter a number as the time between FEFD control packets.
The range is from 3 to 300 seconds. The default is 15
seconds.

Defaults

15 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Legacy ESeries
command.
Related
Commands

•

fefd — enables far-end failure detection.

fefd mode
Change the FEFD mode on an interface.

S4810
Syntax

fefd mode {normal | aggressive}]
To return the FEFD mode to the default of normal, use the no fefd mode
command.

1062

Layer 2

Parameters

normal

(OPTIONAL) Enter the keyword normal to change the link
state to “unknown” when a far-end failure the software
detects on that interface. When the interface is placed in
“unknown” state, the software brings down the line protocol.

aggressive

(OPTIONAL) Enter the keyword aggressive to change the
link state to “error-disabled” when a far-end failure the
software detects on that interface. When an interface is
placed in “error-disabled” state, enter the fefd reset
command to reset the interface state.

Defaults

normal

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Legacy ESeries
command.
Related
Commands

•

fefd — enables far-end failure detection.

fefd reset
Reset all interfaces or a single interface that was in “error-disabled” mode.

S4810
Syntax
Parameters

Layer 2

fefd reset [interface]
interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

1063

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Legacy ESeries
command.
Related
Commands

•

fefd — enables far-end failure detection.

fefd-global interval
Configure an interval between FEFD control packets.

S4810
Syntax

fefd-global interval seconds
To return to the default value, use the no fefd-global interval command.

Parameters

seconds

Enter a number as the time between FEFD control packets.
The range is from 3 to 300 seconds. The default is 15
seconds.

Defaults

15 seconds

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

1064

Introduced on the S4820T.

Layer 2

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Legacy ESeries
command.
Related
Commands

•

fefd — enables far-end failure detection.

•

fefd-global — enables FEFD globally on the system.

fefd-global
Enable FEFD globally on the system.

S4810
Syntax

fefd-global [interval seconds][mode {normal | aggressive}]
To disable FEFD globally, use the no fefd-global [mode {normal |
aggressive}] command.

Parameters

interval
seconds

Enter the keyword interval followed by the number of
seconds to wait between FEFD control packets. Range is
from 3 to 300 seconds. Default is 15 seconds.

normal

(OPTIONAL) Enter the keywords mode normal to change
the link state to “unknown” when a far-end failure the
software detects on that interface. When the interface is
placed in “unknown” state, the software brings down the line
protocol. The default is Normal mode.

aggressive

(OPTIONAL) Enter the keywords mode aggressive to
change the link state to “error-disabled” when a far-end
failure the software detects on that interface. When an
interface is placed in “error-disabled” state, t enter the fefd
reset command to reset the interface state.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Layer 2

Introduced on the S6000.

1065

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Legacy ESeries
command.
Usage
Information

If you enter only the fefd-global syntax, the mode is normal and the default
interval is 15 seconds.
If you disable FEFD globally (no fefd-global), the system does not remove the
FEFD interface configuration.

Related
Commands

•

fefd — enables far-end failure detection.

•

fefd-global interval — configures an interval between FEFD control packets.

•

show fefd — shows the FEFD command output.

show fefd
View FEFD status globally or on a specific interface.

S4810
Syntax
Parameters

show fefd [interface]
interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1066

Introduced on the S6000.

Layer 2

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Legacy ESeries
command.
Usage
Information

Example

The following describes the show fefd command shown in the following
example.
Field

Description

Interface

Displays the interfaces type and number.

Mode

Displays the mode (aggressive or normal) or NA if the
interface contains fefd reset in its configuration.

Interval

Displays the interval between FEFD packets.

State

Displays the state of the interface and can be one of the
following:
•

bi-directional (interface is up, connected and hearing
neighbor’s echoes).

•

err-disabled (only found when FEFD mode is aggressive
and when the interface has not hearing its neighbor’s
echoes for three times the message interval. To reset an
interface in this state, use the fefd reset command.)

•

unknown (only found when FEFD mode is normal.

•

locally disabled (interface contains the fefd reset
command in its configuration).

•

Admin Shutdown (interface is disabled with the
shutdown command).

Dell#sh fefd
FEFD is globally 'ON', interval is 10 seconds, mode is
'Aggressive'.
INTERFACE MODE
Gi 5/0
Gi 5/1
Gi 5/2
Gi 5/3
Gi 5/4
Gi 5/5
Gi 5/6
Gi 5/7
Gi 5/8
Gi 5/9
Gi 5/10
Gi 5/11
Dell#

Layer 2

Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
Aggressive
NA
Aggressive

INTERVAL
(second)
10
10
10
10
10
10
10
10
10
10
NA
10

STATE
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Admin Shutdown
Locally disabled
Err-disabled

1067

Related
Commands

1068

•

fefd — enables far-end failure detection.

•

fefd disable — disables FEFD on an interface only.

•

fefd-global — enables FEFD globally on the system.

•

fefd reset — resets all interfaces or a single interface that was in “error-disabled”
mode.

Layer 2

Link Layer Discovery Protocol (LLDP)

34

The link layer discovery protocol (LLDP) advertises connectivity and management from the local station
to the adjacent stations on an IEEE 802 LAN.
This chapter contains the following sections:
•

LLPD Commands

•

LLDP-MED Commands

LLDP facilitates multi-vendor interoperability by using standard management tools to discover and make
available a physical topology for network management. The Dell Networking operating software
implementation of LLDP is based on IEEE standard 801.1ab.
TheDell Networking OS supports the basic LLDP commands on S4810 platform.
The starting point for using LLDP is invoking LLDP with the protocol lldp command in either
CONFIGURATION or INTERFACE mode.
The information LLDP distributes is stored by its recipients in a standard management information base
(MIB). You can access the information by a network management system through a management
protocol such as simple network management protocol (SNMP).

LLPD Commands
The following are LLDP commands.

advertise dot1-tlv
Advertise dot1 TLVs (Type, Length, Value).

S4810
Syntax

advertise dot1-tlv {port-protocol-vlan-id | port-vlan-id |
vlan-name}
To remove advertised dot1-tlv, use the no advertise dot1-tlv {portprotocol-vlan-id | port-vlan-id | vlan-name} command.

Parameters

port-protocolvlan-id

Enter the keywords port-protocol-vlan-id to advertise
the port protocol VLAN identification TLV.

port-vlan-id

Enter the keywords port-vlan-id to advertise the port
VLAN identification TLV.

Link Layer Discovery Protocol (LLDP)

1069

vlan-name

Enter the keywords vlan-name to advertise the vlan-name
TLV. This keyword is only supported on the C-Series and SSeries.

Defaults

Disabled.

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series. Added the vlan-name option.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

protocol lldp (Configuration) — enables LLDP globally.
debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise dot3-tlv
Advertise dot3 TLVs (Type, Length, Value).

S4810
Syntax

advertise dot3-tlv {max-frame-size}
To remove advertised dot3-tlv, use the no advertise dot3-tlv {max-framesize} command.

Parameters

max-framesize

Enter the keywords max-frame-size to advertise the dot3
maximum frame size.

Defaults

none

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

1070

Link Layer Discovery Protocol (LLDP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

advertise management-tlv
Advertise management TLVs (Type, Length, Value).

S4810
Syntax

advertise management-tlv {management-address | systemcapabilities | system-description | system-name}
To remove advertised management TLVs, use the no advertise managementtlv {management-address | system-capabilities | systemdescription | system-name} command.

Parameters

managementaddress

Enter the keyword management-address to advertise the
management IP address TLVs to the LLDP peer.

systemcapabilities

Enter the keywords system-capabilities to advertise the
system capabilities TLVs to the LLDP peer.

systemdescription

Enter the keywords system-description to advertise the
system description TLVs to the LLDP peer.

system-name

Enter the keywords system-name to advertise the system
name TLVs to the LLDP peer.

Defaults

none

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Link Layer Discovery Protocol (LLDP)

1071

Usage
Information

Version 9.1.
(0.0)

Modified to support management-address parameter.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

The command options management-address,system-capabilities, systemdescription, and system-name can be invoked individually or together, in any
sequence.

advertise management-tlv (Interface)
Advertise management type, length, values (TLVs) to the specified interface.

S4810
Syntax

advertise management-tlv {management-address | systemcapabilities | system-description | system-name}
To remove advertised management TLVs, use the no advertise managementtlv {management-address | system-capabilities | systemdescription | system-name} command.

Parameters

managementaddress

Enter the keywords management-address to advertise the
management IP address TLVs to the specified interface.

systemcapabilities

Enter the keywords system-capabilities to advertise the
system capabilities TLVs to the specified interface.

systemdescription

Enter the keywords system-description to advertise the
system description TLVs to the specified interface.

system-name

Enter the keywords system-name to advertise the system
name TLVs to the specified interface.

Defaults

none

Command
Modes

INTERFACE (conf-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1072

Link Layer Discovery Protocol (LLDP)

Version 9.1.
(0.0)

Introduced on the Z9000 and S4810.

Version
8.3.19.0

Introduced on the S4820T.

clear lldp counters
Clear LLDP transmitting and receiving counters for all physical interfaces or a specific physical interface.

S4810
Syntax
Parameters

clear lldp counters interface
interface

Enter the following keywords and slot/port or number
information:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Link Layer Discovery Protocol (LLDP)

1073

clear lldp neighbors
Clear LLDP neighbor information for all interfaces or a specific interface.

S4810
Syntax
Parameters

clear lldp neighbors {interface}
interface

Defaults

none

Command
Modes

EXEC Privilege

Command
History

Enter the following keywords and slot/port or number
information:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

debug lldp interface
To display timer events, neighbor additions or deletions, and other information about incoming and
outgoing packets, enable LLDP debugging.

S4810
Syntax

1074

debug lldp interface {interface | all}{events | packet {brief |
detail} {tx | rx | both}}

Link Layer Discovery Protocol (LLDP)

To disable debugging, use the no debug lldp interface {interface |
all}{events} {packet {brief | detail} {tx | rx | both}}
command.
Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.
NOTE: The FastEthernet option is not supported on
the S-Series.

all

(OPTIONAL) Enter the keyword all to display information
on all interfaces.

events

(OPTIONAL) Enter the keyword events to display major
events such as timer events.

packet

(OPTIONAL) Enter the keyword packet to display
information regarding packets coming in or going out.

brief

(OPTIONAL) Enter the keyword brief to display brief packet
information.

detail

(OPTIONAL) Enter the keyword detail to display detailed
packet information.

tx

(OPTIONAL) Enter the keyword tx to display transmit-only
packet information.

rx

(OPTIONAL) Enter the keyword rx to display receive-only
packet information.

both

(OPTIONAL) Enter the keyword both to display both receive
and transmit packet information.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Link Layer Discovery Protocol (LLDP)

1075

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

disable
Enable or disable LLDP.

S4810
Syntax

disable
To enable LLDP, use the no disable command.

Defaults

Enabled, that is no disable.

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

protocol lldp (Configuration) — enables LLDP globally.
debug lldp interface — debugs LLDP.

1076

Link Layer Discovery Protocol (LLDP)

show lldp neighbors — displays the LLDP neighbors.

hello
Configure the rate at which the LLDP control packets are sent to its peer.

S4810
Syntax

hello seconds
To revert to the default, use the no hello seconds command.

Parameters

seconds

Enter the rate, in seconds, at which the control packets are
sent to its peer. The rate is from 5 to 180 seconds. The
default is 30 seconds.

Defaults

30 seconds

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

management-interface
Enable and configure LLDP protocol parameters on the management interface.

S4810
Syntax

management-interface
To remove LLDP configuration on a management interface, use the no
management-interface command.

Link Layer Discovery Protocol (LLDP)

1077

Command
Modes

LLDP (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.2)

Usage
Information

Introduced on the Z9000 and S4810.

To enable LLDP on the management interface, use the no disable command in
LLDP-MANAGEMENT-INTERFACE mode (conf-lldp-mgmtIf).

mode
To receive or transmit, set LLDP.

S4810
Syntax

mode {tx | rx}
To return to the default, use the no mode {tx | rx} command.

Parameters

tx

Enter the keyword tx to set the mode to transmit.

rx

Enter the keyword rx to set the mode to receive.

Defaults

Both transmit and receive.

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1078

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Link Layer Discovery Protocol (LLDP)

Related
Commands

protocol lldp (Configuration) — enables LLDP globally.
show lldp neighbors — displays the LLDP neighbors.

multiplier
Set the number of consecutive misses before LLDP declares the interface dead.

S4810
Syntax

multiplier integer
To return to the default, use the no multiplier integer command.

Parameters

integer

Enter the number of consecutive misses before the LLDP
declares the interface dead. The range is from 2 to 10.

Defaults

4 x hello

Command
Modes

CONFIGURATION (conf-lldp) and INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

protocol lldp (Configuration)
Enable the LLDP globally on the switch.

S4810
Syntax

protocol lldp
To disable LLDP globally on the chassis, use the no protocol lldp command.

Defaults

Enabled.

Link Layer Discovery Protocol (LLDP)

1079

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

protocol lldp (Interface)
Enter the LLDP protocol in INTERFACE mode.

S4810
Syntax

[no] protocol lldp
To return to the global LLDP configuration mode, use the no protocol lldp
command from Interface mode.

Defaults

LLDP is not enabled on the interface.

Command
Modes

INTERFACE (conf-if-interface-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1080

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Link Layer Discovery Protocol (LLDP)

Version 7.4.1.0
Usage
Information

Introduced on the E-Series.

Before LLDP can be configured on an interface, it must be enabled globally from
CONFIGURATION mode. This command places you in LLDP mode on the
interface; it does not enable the protocol.
When you enter the LLDP protocol in the Interface context, it overrides global
configurations. When you execute the no protocol lldp from INTERFACE
mode, interfaces begin to inherit the configuration from global LLDP
CONFIGURATION mode.

show lldp neighbors
Display LLDP neighbor information for all interfaces or a specified interface.

S4810
Syntax
Parameters

show lldp neighbors [interface] [detail]
interface

detail

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
tenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword detail to display all the TLV
information, remote management IP addresses, timers, and
LLDP tx and rx counters.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.1.
(0.0)

Modified output of detail parameter to display remote
management IP addresses.

Link Layer Discovery Protocol (LLDP)

1081

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

Omitting the keyword detail displays only the remote chassis ID, Port ID, and
Dead Interval.

Example

R1(conf-if-gi-1/31)#do show lldp neighbors
Loc PortID Rem Host Name
Rem
Port Id Rem Chassis Id
-------------------------------------------------------------Gi 1/21
R2 GigabitEthernet 2/11
00:01:e8:06:95:3e
Gi 1/31
R3 GigabitEthernet 3/11
00:01:e8:09:c2:4a

show lldp statistics
Display the LLDP statistical information.

S4810
Syntax

show lldp statistics

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1082

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell#show lldp statistics
Total number of neighbors: 300
Last table change time
:
Mon Oct 02 16:00:52 2006
Number of Table Inserts :
1621
Number of Table Deletes :
200

Link Layer Discovery Protocol (LLDP)

Number of Table Drops
:
Number of Table Age Outs :
Dell#

0
400

show management-interface
Display LLDP management interface configuration information.

S4810
Syntax

show management-interface

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Introduced on the Z9000 and S4810.

show running-config lldp
Display the current global LLDP configuration.

S4810
Syntax

show running-config lldp

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S8420T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Link Layer Discovery Protocol (LLDP)

1083

Example

Dell#show running-config lldp
!
protocol lldp
advertise dot1-tlv port-protocol-vlan-id port-vlan-id
advertise dot3-tlv max-frame-size
advertise management-tlv system-capabilities systemdescription
hello 15
multiplier 3
no disable
Dell#

LLDP-MED Commands
The following are the LLDP-MED (Media Endpoint Discovery) commands.
Dell Networking OS LLDP-MED commands are an extension of the set of LLDP TLV advertisement
commands. The C-Series and S-Series support all commands.
The E-Series generally supports the commands. However, LLDP-MED commands are more useful on the
C-Series and the S50V model of the S-Series, because they support Power over Ethernet (PoE) devices.
As defined by ANSI/TIA-1057, LLDP-MED provides organizationally specific TLVs (Type Length Value), so
that endpoint devices and network connectivity devices can advertise their characteristics and
configuration information. The Organizational Unique Identifier (OUI) for the Telecommunications
Industry Association (TIA) is 00-12-BB.
•

LLDP-MED Endpoint Device — any device that is on an IEEE 802 LAN network edge, can
communicate using IP, and uses the LLDP-MED framework.

•

LLDP-MED Network Connectivity Device — any device that provides access to an IEEE 802 LAN to an
LLDP-MED endpoint device, and supports IEEE 802.1AB (LLDP) and TIA-1057 (LLDP-MED). The Dell
Networking system is an LLDP-MED network connectivity device.

Regarding connected endpoint devices, LLDP-MED provides network connectivity devices with the ability
to:
•

manage inventory

•

manage Power over Ethernet (POE)

•

identify physical location

•

identify network policy

advertise med guest-voice
To advertise a separate limited voice service for a guest user with their own IP telephony handset or other
appliances that support interactive voice services, configure the system.

S4810
Syntax

1084

advertise med guest-voice {vlan-id layer2_priority DSCP_value}
| {priority-tagged number}

Link Layer Discovery Protocol (LLDP)

To return to the default, use the no advertise med guest-voice {vlan-id
layer2_priority DSCP_value} | {priority-tagged number} command.
Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority. The range is from 0 to 7.

DSCP_value

Enter the DSCP value. The range is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged followed the Layer 2
priority. The range is from 0 to 7.

Defaults

Unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

protocol lldp (Configuration) — enables LLDP globally.
debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med guest-voice-signaling
To advertise a separate limited voice service for a guest user when the guest voice control packets use a
separate network policy than the voice data, configure the system.

S4810
Syntax

advertise med guest-voice-signaling {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med guest-voice-signaling
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Link Layer Discovery Protocol (LLDP)

1085

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority. The range is from 0 to 7.

DSCP_value

Enter the DSCP value. The range is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med location-identification
To advertise a location identifier, configure the system.

S4810
Syntax

advertise med location-identification {coordinate-based value |
civic-based value | ecs-elin value}
To return to the default, use the no advertise med locationidentification {coordinate-based value | civic-based value |
ecs-elin value} command.

Parameters

1086

coordinatebased value

Enter the keywords coordinate-based then the
coordinated based location in hexadecimal value of 16 bytes.

Link Layer Discovery Protocol (LLDP)

civic-based
value

Enter the keywords civic-based then the civic based
location in hexadecimal format. The range is from 6 to 255
bytes.

ecs-elin value

Enter the keywords ecs-elin then the Emergency Call
Service (ecs) Emergency Location Identification Number
(elin) numeric location string. The range is from 10 to 25
characters.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

•

ECS — Emergency call service such as defined by TIA or the national
emergency numbering association (NENA)

•

ELIN — Emergency location identification number, a valid North America
Numbering Plan format telephone number supplied for ECS purposes.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med power-via-mdi
To advertise the Extended Power via MDI TLV, configure the system.

S4810
Syntax

advertise med power-via-mdi
To return to the default, use the no advertise med power-via-mdi command.

Defaults

unconfigured.

Link Layer Discovery Protocol (LLDP)

1087

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Usage
Information

Advertise the Extended Power via MDI on all ports that are connected to an 802.3af
powered, LLDP-MED endpoint device.

Related
Commands

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med softphone-voice
To advertise softphone to enable IP telephony on a computer so that the computer can be used as a
phone, configure the system.

S4810
Syntax

advertise med softphone-voice {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med softphone-voice
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Parameters

Defaults

1088

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

unconfigured.

Link Layer Discovery Protocol (LLDP)

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med streaming-video
To advertise streaming video services for broadcast or multicast-based video, configure the system. This
command does not include video applications that rely on TCP buffering.

S4810
Syntax

advertise med streaming-video {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med streaming-video
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Link Layer Discovery Protocol (LLDP)

1089

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med video-conferencing
To advertise dedicated video conferencing and other similar appliances that support real-time interactive
video, configure the system.

S4810
Syntax

advertise med video-conferencing {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med video-conferencing
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1090

Link Layer Discovery Protocol (LLDP)

The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med video-signaling
To advertise video control packets that use a separate network policy than video data, configure the
system.

S4810
Syntax

advertise med video-signaling {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med video-signaling
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Link Layer Discovery Protocol (LLDP)

1091

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med voice
To advertise a dedicated IP telephony handset or other appliances supporting interactive voice services,
configure the system.

S4810
Syntax

advertise med voice {vlan-id layer2_priority DSCP_value} |
{priority-tagged number}
To return to the default, use the no advertise med voice {vlan-id
layer2_priority DSCP_value} | {priority-tagged number} command.

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1092

Introduced on the S6000.

Link Layer Discovery Protocol (LLDP)

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

advertise med voice-signaling
To advertise when voice control packets use a separate network policy than voice data, configure the
system.

S4810
Syntax

advertise med voice-signaling {vlan-id layer2_priority
DSCP_value} | {priority-tagged number}
To return to the default, use the no advertise med voice-signaling
{vlan-id layer2_priority DSCP_value} | {priority-tagged number}
command.

Parameters

vlan-id

Enter the VLAN ID. The range is from 1 to 4094.

layer2_priority

Enter the Layer 2 priority (C-Series and E-Series only). The
range is from 0 to 7.

DSCP_value

Enter the DSCP value (C-Series and E-Series only). The range
is from 0 to 63.

priority-tagged
number

Enter the keywords priority-tagged then the Layer 2
priority. The range is from 0 to 7.

Defaults

unconfigured.

Command
Modes

CONFIGURATION (conf-lldp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Link Layer Discovery Protocol (LLDP)

1093

Related
Commands

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series and E-Series.

debug lldp interface — debugs LLDP.
show lldp neighbors — displays the LLDP neighbors.

1094

Link Layer Discovery Protocol (LLDP)

Microsoft Network Load Balancing

35

This functionality is supported on the S4810 platform.
Network Load Balancing (NLB) is a clustering functionality that is implemented by Microsoft on Windows
2000 Server and Windows Server 2003 operating systems. NLB uses a distributed methodology or
pattern to equally split and balance the network traffic load across a set of servers that are part of the
cluster or group. NLB combines the servers into a single multicast group and attempts to use the
standard multicast IP or unicast IP addresses, and MAC addresses for the transmission of network traffic.
At the same time, it also uses a single virtual IP address for all clients as the destination IP address, which
enables servers to join the same multicast group in a way that is transparent to the clients (the clients do
not notice the addition of new servers to the group). The clients use a cluster IP address to connect to
the server. The NLB functionality enables flooding of traffic over the VLAN ports (for unicast mode) or a
subset of ports in a VLAN (for multicast mode) to avoid overloading and effective performance of the
servers for optimal processing of data packets.
NLB functions in two modes, namely unicast mode and multicast mode. The cluster IP address and the
associated cluster MAC address are configured in the NLB application running on the Windows Server. In
the unicast mode, when the server IP address is attempted to be resolved to the MAC address using the
ARP application, the switch determines whether the ARP reply, obtained from the server, is of an NLB
type. The switch then maps the IP address (cluster IP) with the MAC address (cluster MAC address). In
multicast mode, the cluster IP address is mapped to a cluster multicast MAC address that is configured
using a static ARP CLI configuration command. After the NLB entry is learned, the traffic is forwarded to
all the servers in the VLAN corresponding to the cluster virtual IP address.

NLB Unicast Mode Scenario
Consider a sample topology in which four servers, namely S1 through S4, are configured as a cluster or a
farm. This set of servers is connected to a Layer 3 switch, which in turn is connected to the end-clients.
The servers contain a single IP address (IP-cluster address of 172.16.2.20) and a single unicast MAC
address (MAC-Cluster address of 00-bf-ac-10-00-01) for load-balancing. Because multiple ports of a
switch cannot learn a single MAC address, the servers are assigned with MAC addresseses of MAC-s1 to
MAC-s4) respectively on S1 through S4 in addition to the MAC cluster address. All the servers of the
cluster belong to the VLAN named VLAN1.
In unicast NLB mode, the following sequence of events occurs:
•

The switch sends an ARP request to resolve the IP address to the cluster MAC address.

•

The ARP servers send an ARP response with the MAC cluster address in the ARP header and a MAC
address of MAC-s1/s2/s3/s4 (for servers S1 through S4) in the Ethernet header.

•

The switch associates the IP address with the MAC cluster address with the last ARP response it
obtains. Assume that in this case, the last ARP reply is obtained from MAC-s4.(assuming that the ARP

Microsoft Network Load Balancing

1095

response with MAC-s4 is received as the last one). The interface associated with server, S4, is added
to the ARP table.
•

With NLB feature enabled, after learning the NLB ARP entry, all the subsequent traffic is flooded on all
ports in VLAN1.

With NLB, the data frame is forwarded to all the servers for them to perform load-balancing.

NLB Multicast Mode Scenario
Consider a sample topology in which four servers, namely S1 through S4, are configured as a cluster or a
farm. This set of servers is connected to a Layer 3 switch, which in turn is connected to the end-clients.
They contain a single multicast MAC address (MAC-Cluster: 03-00-5E-11-11-11).
In the multicast NLB mode, a static ARP configuration command is configured to associate the cluster IP
address with a multicast cluster MAC address.
With multicast NLB mode, the data is forwarded to all the servers based on the port specified using the
Layer 2 multicast command, which is the mac-address-table static 
multicast vlan  output-range ,  command in CONFIGURATION
mode.

Limitations With Enabling NLB on Switches
The following limitations apply to switches on which you configure NLB:
•

The NLB unicast mode uses switch flooding to transmit all packets to all the servers that are part of
the VLAN. When a large volume of traffic is processed, the clustering performance might be impacted
in a small way. This limitation is applicable to switches that perform unicast flooding in the software.

•

The ip vlan-flooding command applies globally across the system and for all VLANs. In cases
where the NLB is applicable and the ARP replies contain a discrepancy in the Ethernet SHA and ARP
header SHA frames, a flooding of packets over the relevant VLAN occurs.

•

The maximum number of concurrent clusters that is supported is eight.

Benefits and Working of Microsoft Clustering
Microsoft clustering allows multiple servers using Microsoft Windows to be represented by one MAC
address and IP address in order to provide transparent failover or balancing. Dell Networking OS does not
recognize server clusters by default; it must be configured to do so. When an ARP request is sent to a
server cluster, either the active server or all the servers send a reply, depending on the cluster
configuration. If the active server sends a reply, the Dell switch learns the active server’s MAC address. If
all servers reply, the switch registers only the last received ARP reply, and the switch learns one server’s
actual MAC address; the virtual MAC address is never learned. Because the virtual MAC address is never

1096

Microsoft Network Load Balancing

learned, traffic is forwarded to only one server rather than the entire cluster, and failover and balancing
are not preserved.
To preserve failover and balancing, the switch forwards the traffic destined for the server cluster to all
member ports in the VLAN connected to the cluster. To ensure that this happens, you must configure the
ip vlan-flooding command on the Dell switch at the time that the Microsoft cluster is configured.
The server MAC address is given in the Ethernet frame header of the ARP reply, while the virtual MAC
address representing the cluster is given in the payload. Then, all the traffic destined for the cluster is
flooded out of all member ports. Since all the servers in the cluster receive traffic, failover and balancing
are preserved.

Enable and Disable VLAN Flooding
•

The older ARP entries are overwritten whenever newer NLB entries are learned.

•

All ARP entries, learned after the feature is enabled, are deleted when the feature is disabled, and RP2
triggers an ARP resolution. The feature is disabled with the no ip vlan-flooding command.

•

When a port is added to the VLAN, the port automatically receives traffic if the feature is enabled. Old
ARP entries are not deleted or updated.

•

When a member port is deleted, its ARP entries are also deleted from the CAM.

•

Port channels in the VLAN also receive traffic.

•

There is no impact on the configuration from saving the configuration.

•

The feature, if enabled, is displayed in the show running-config command output that displays the
ip vlan-flooding CLI configuration. Apart from it, there is no indication of the enabling of this
capability.

arp (for Multicast MAC Address)
To associate an IP address with a multicast MAC address in the switch when you configure multicast
mode of network load balancing (NLB), use address resolution protocol (ARP).
Syntax

arp ip-address multicast-mac-address interface
To remove an ARP address, use the no arp ip-address command.

Parameters

ip-address

Enter an IP address in dotted decimal format.

multicast-macaddress

Enter a 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn
format for the static MAC address to be used to switch
multicast traffic.

interface

Enter any of the following keywords and slot/port or number
information:
•

Microsoft Network Load Balancing

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

1097

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

Version 9.3(0.0)

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

The interface specified here must be one of the
interfaces configured using the {output-range |
output} interface option with the mac-addresstable static command.

Added support for association of an IP address with multicast
MAC address on the S4810, S4820T, S6000, and Z9000
platforms.

Usage
Information

For multicast mode of NLB, to associate an IP address with a multicast MAC
address in the switch, use address resolution protocol (ARP) by entering the arp
ip-address multicast-mac-address command in Global configuration
mode. This setting causes the multicast MAC address to be mapped to the cluster
IP address for NLB mode of operation of the switch.

Related
Commands

clear arp-cache — clears dynamic ARP entries from the ARP table.
show arp — displays the ARP table.

mac-address-table static (for Multicast MAC Address)
For multicast mode of network load balancing (NLB), configure a static multicast MAC address, associate
the multicast MAC address with the VLAN used to switch Layer 2 multicast traffic, and add output ports
that will receive multicast streams on the VLAN. To delete a configured static multicast MAC address from
the MAC address table on the router, enter the no mac-address-table static multicast-macaddress command.
Syntax

mac-address-table static multicast-mac-address multicast vlan
vlan-id range-output {single-interface | interface-list |
interface-range}
To remove a MAC address, use the no mac-address-table static
multicast-mac-address output interface vlan vlan-id command.

Parameters

1098

multicast-macaddress

Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn
format.

multicast

Enter a vlan port to where L2 multicast MAC traffic is
forwarded.

Microsoft Network Load Balancing

NOTE: Use this option if you want multicast functionality
in an L2 VLAN without IGMP protocols.
output
interface

output-range
interface

vlan vlan-id

For a multicast MAC address, enter the keyword output
then one of the following interfaces for which traffic is
forwarded:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

For a multicast MAC address, enter the keyword outputrange then one of the following interfaces to indicate a
range of ports for which traffic is forwarded:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Enter the keyword vlan then a VLAN ID number from 1 to
4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

The following is a list of the Dell Networking OS version history for this command.
Version 9.3(0.0)

Added support for multicast MAC address on the MXL
platform.

Usage
Information

When a multicast source and multicast receivers are in the same VLAN, you can
configure a router so that multicast traffic is switched only to the ports assigned to
a VLAN that is associated with a static multicast MAC address. However, before you
can configure a static MAC address and associate it with a VLAN used to switch
Layer 2 multicast traffic, you must first enable the router for Layer 2 multicast
switching with the ip multicast-mode l2 command.

Example
(Multicast)

mac-address-table static 01:00:5E:01:00:01 {multicast vlan
2 output—range Te 0/2,Te 0/3}

Microsoft Network Load Balancing

1099

ip vlan-flooding
Enable unicast data traffic flooding on VLAN member ports.
Syntax

ip vlan-flooding
To disable, use the no ip vlan-flooding command.

Command
Modes
Command
History

CONFIGURATION

Version 9.3(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
platforms

Default

Disabled

Usage
Information

By default this command is disabled. There might be some ARP table entries which
are resolved through ARP packets which had Ethernet MAC SA different from MAC
information inside the ARP packet. This unicast data traffic flooding occurs only for
those packets which use these ARP entries.

1100

Microsoft Network Load Balancing

Multicast Source Discovery Protocol
(MSDP)

36

Multicast source discovery protocol (MSDP) connects multiple PIM Sparse-Mode (PIM-SM) domains
together.
MSDP peers connect using TCP port 639. Peers send keepalives every 60 seconds. A peer connection is
reset after 75 seconds if no MSDP packets are received. MSDP connections are parallel with MBGP
connections.
The Dell Networking operating system supports MSDP commands on the S4810 platform.

clear ip msdp peer
Reset the TCP connection to the peer and clear all the peer statistics.

S4810
Syntax
Parameters

clear ip msdp peer {peer address}
peer address

Enter the peer address in a dotted decimal format (A.B.C.D.)

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

1101

clear ip msdp sa-cache
Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected,
or local source-active entries.

S4810
Syntax
Parameters

clear ip msdp sa-cache [group-address | rejected-sa | local]
group-address

Enter the group IP address in dotted decimal format
(A.B.C.D.).

rejected-sa

Enter the keywords rejected-sa to clear the cache
source-active entries that are rejected because the RPF
check failed, an SA filter or limit is configured, the RP or
MSDP peer is unreachable, or because of a format error.

local

Enter the keyword local to clear out local PIM advertised
entries. It applies the redistribute filter (if present) while
adding the local PIM SA entries to the SA cache.

Defaults

Without any options, this command clears the entire source-active cache.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1102

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Version 7.8.1.0

Added the local option.

Version 7.7.1.0

Added the rejected-sa option.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

clear ip msdp statistic
Clears the entire source-active cache, the source-active entries of a particular multicast group, rejected,
or local source-active entries.

S4810
Syntax
Parameters

clear ip msdp sa-cache [group-address | rejected-sa | local]
group-address

Enter the group IP address in dotted decimal format
(A.B.C.D.).

rejected-sa

Enter the keyword rejected-sa to clear the cache sourceactive entries that are rejected because the RPF check failed,
an SA filter or limit is configured, the RP or MSDP peer is
unreachable, or because of a format error.

local

Enter the keyword local to clear out local PIM advertised
entries. It applies the redistribute filter (if present) while
adding the local PIM SA entries to the SA cache.

Defaults

Without any options, this command clears the entire source-active cache.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Version 7.8.1.0

Added the local option.

Version 7.7.1.0

Added the rejected-sa option.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

1103

debug ip msdp
Turn on MSDP debugging.

S4810
Syntax

debug ip msdp {event peer address | packet peer address | pim}
To turn debugging off, use the no debug ip msdp {event peer address |
packet peer address | pim} command.

Parameters

event peer
address

Enter the keyword event then the peer address in a dotted
decimal format (A.B.C.D.).

packet peer
address

Enter the keyword packet then the peer address in a dotted
decimal format (A.B.C.D.).

pim

Enter the keyword pim to debug advertisement from PIM.

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

ip msdp cache-rejected-sa
Enable an MSDP cache for the rejected source-active entries.

S4810
Syntax

ip msdp cache-rejected-sa {number}
To clear the MSDP rejected source-active entries, use the no ip msdp cacherejected-sa {number} command then the ip msdp cache-rejected-sa
{number} command.

1104

Multicast Source Discovery Protocol (MSDP)

Parameters

number

Enter the number of rejected SA entries to cache. The range
is from 0 to 32766.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.4.1.0

Introduced

show ip msdp sa-cache rejected-sa

ip msdp default-peer
Define a default peer from which to accept all source-active (SA) messages.

S4810
Syntax

ip msdp default-peer peer address [list name]
To remove the default peer, use the no ip msdp default-peer {peer
address} list name command.

Parameters

peer address

Enter the peer address in a dotted decimal format (A.B.C.D.)

list name

Enter the keywords list name and specify a standard
access list that contains the RP address that should be
treated as the default peer. If no access list is specified, then
all SAs from the peer are accepted.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Multicast Source Discovery Protocol (MSDP)

1105

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added the list option and removed the prefix-list
option.

Version 7.4.1.0

Introduced

If a list is not specified, all SA messages received from the default peer are
accepted. You can enter multiple default peer commands.

ip msdp log-adjacency-changes
Enable logging of MSDP adjacency changes.

S4810
Syntax

ip msdp log-adjacency-changes
To disable logging, use the no ip msdp log-adjacency-changes command.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1106

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

ip msdp mesh-group
To be a member of a mesh group, configure a peer.

S4810
Syntax

ip msdp mesh-group {name} {peer address}
To remove the peer from a mesh group, use the no ip msdp mesh-group
{name} {peer address} command.

Parameters

name

Enter a string of up to 16 characters long for as the mesh
group name.

peer address

Enter the peer address in a dotted decimal format (A.B.C.D.).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

An MSDP mesh group is a mechanism for reducing SA flooding, typically in an
intra-domain setting. When some subset of a domain’s MSDP speakers are fully
meshed, they can be configured into a mesh-group. If member X of a mesh-group
receives a SA message from an MSDP peer that is also a member of the meshgroup, member X accepts the SA message and forwards it to all of its peers that are
not part of the mesh-group. However, member X cannot forward the SA message
to other members of the mesh-group.

Multicast Source Discovery Protocol (MSDP)

1107

ip msdp originator-id
Configure the MSDP Originator ID.

S4810
Syntax

ip msdp originator-id {interface}
To remove the originator-id, use the no ip msdp originator-id
{interface} command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1108

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

ip msdp peer
Configure an MSDP peer.

S4810
Syntax

ip msdp peer peer address [connect-source] [description] [salimit number]
To remove the MSDP peer, use the no ip msdp peer peer address
[connect-source interface] [description name] [sa-limit number]
command.

Parameters

peer address

Enter the peer address in a dotted decimal format (A.B.C.D.).

connectsource
interface

Enter the keywords connect-source then one of the
interfaces and slot/port or number information:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

description
name

(OPTIONAL) Enter the keyword description then a
description name (maximum 80 characters) to designate a
description for the MSDP peer.

sa-limit
number

(OPTIONAL) Enter the maximum number of SA entries in SAcache. The range is from 1 to 500000. The default it
500000.

Defaults

As described in the Parameters section.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Multicast Source Discovery Protocol (MSDP)

Introduced on the S6000.

1109

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 7.5.1.0

Added option for SA upper limit and the description
option.

Version 6.2.1.1

Introduced

The connect-source option is used to supply a source IP address for the TCP
connection. When an interface is specified using the connect-source option, the
primary configured address on the interface is used.
If the total number of SA messages received from the peer is already larger than the
limit when this command is applied, those SA messages continue to be accepted.
To enforce the limit in such situation, use the clear ip msdp peer command to
reset the peer.

Related
Commands

ip msdp sa-limit — configures the MSDP SA Limit.
clear ip msdp peer — clears the MSDP peer.
show ip msdp — displays the MSDP information.

ip msdp redistribute
Filter local PIM SA entries in the SA cache. SAs which the ACL denies time out and are not refreshed. Until
they time out, they continue to reside in the MSDP SA cache.

S4810
Syntax
Parameters

ip msdp redistribute [list acl-name]
list acl-name

Enter the name of an extended ACL that contains permitted
SAs. If you do not use this option, all local entries are
blocked.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1110

Multicast Source Discovery Protocol (MSDP)

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced

Modifications to the ACL do not have an immediate effect on the sa-cache.
To apply the redistribute filter to entries already present in the SA cache, use the
clear ip msdp sa-cache local command.

ip msdp sa-filter
Permit or deny MSDP source active (SA) messages based on multicast source and/or group from the
specified peer.

S4810
Syntax

ip msdp sa-filter {in | out} peer-address list [access-list
name]
Remove this configuration using the no ip msdp sa-filter {in | out}
peer address list [access-list name] command.

Parameters

in

Enter the keyword in to enable incoming SA filtering.

out

Enter the keyword out to enable outgoing SA filtering.

peer-address

Enter the peer address of the MSDP peer in a dotted decimal
format (A.B.C.D.).

access-list
name

Enter the name of an extended ACL that contains permitted
SAs. If you do not use this option, all local entries are
blocked.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Multicast Source Discovery Protocol (MSDP)

1111

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the E-Series.

ip msdp sa-limit
Configure the upper limit of source-active (SA) entries in SA-cache.

S4810
Syntax

ip msdp sa-limit number
To return to the default, use the no ip msdp sa-limit number command.

Parameters

number

Enter the maximum number of SA entries in SA-cache. The
range is from 0 to 40000.

Defaults

50000

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the E-Series.

Dell Networking OS counts the SA messages originated by itself and those
messages received from the MSDP peers. When the total SA messages reach this
limit, the subsequent SA messages are dropped (even if they pass RPF checking and
policy checking).
If the total number of SA messages is already larger than the limit when this
command is applied, those SA messages that are already in Dell Networking OS

1112

Multicast Source Discovery Protocol (MSDP)

continue to be accepted. To enforce the limit in such situation, use the clear ip
msdp sa-cache command.
Related
Commands

ip msdp peer — configures the MSDP peer.
clear ip msdp peer — clears the MSDP peer.
show ip msdp — displays the MSDP information

ip msdp shutdown
Administratively shut down a configured MSDP peer.

S4810
Syntax
Parameters

ip msdp shutdown {peer address}
peer address

Enter the peer address in a dotted decimal format (A.B.C.D.).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

Multicast Source Discovery Protocol (MSDP)

1113

ip multicast-msdp
Enable MSDP.

S4810
Syntax

ip multicast-msdp
To exit MSDP, use the no ip multicast-msdp command.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

show ip msdp
Display the MSDP peer status, SA cache, or peer summary.

S4810
Syntax
Parameters

Defaults

1114

show ip msdp {peer peer address | sa-cache | summary}
peer peer
address

Enter the keyword peer then the peer address in a dotted
decimal format (A.B.C.D.).

sa-cache

Enter the keywords sa-cache to display the Source-Active
cache.

summary

Enter the keyword summary to display an MSDP peer
summary.

Not configured.

Multicast Source Discovery Protocol (MSDP)

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced

Dell#show ip msdp peer 100.1.1.1
Peer Addr: 100.1.1.1
Local Addr: 100.1.1.2(639) Connect Source: none
State: Established Up/Down Time: 00:00:08
Timers: KeepAlive 60 sec, Hold time 75 sec
SourceActive packet count (in/out): 0/0
SAs learned from this peer: 0
SA Filtering:
Input (S,G) filter: none
Output (S,G) filter: none
Dell#

Example (Sacache)

Example
(Summary)

Dell#show ip msdp sa-cache
MSDP Source-Active Cache - 1 entries
GroupAddr SourceAddr
RPAddr
UpTime
224.1.1.1 172.21.220.10 172.21.3.254
00:02:52
Dell#
Dell#show ip msdp summary
Peer Addr Local Addr State
Source
72.30.1.2 72.30.1.1 Established none
72.30.2.2 72.30.2.1 Established none
72.30.3.2 72.30.3.1 Established none
Dell#

Multicast Source Discovery Protocol (MSDP)

LearnedFrom Expire
172.21.3.254 102

SA Up/Down Description
0 00:00:03 peer1
0 00:00:03 peer2
0 00:00:02 test-peer-3

1115

show ip msdp sa-cache rejected-sa
Display the rejected SAs in the SA cache.

S4810
Syntax

show ip msdp sa-cache rejected-sa

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1116

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Version 7.4.1.0

Introduced.

Dell#sh ip msdp sa-cache rejected-sa
MSDP Rejected SA Cache 200 rejected SAs
1000
UpTime
GroupAddr SourceAddr RPAddr
00:00:13 225.1.2.1 10.1.1.3
110.1.1.1
00:00:13 225.1.2.2 10.1.1.4
110.1.1.1
00:00:13 225.1.2.3 10.1.1.3
110.1.1.1
00:00:13 225.1.2.4 10.1.1.4
110.1.1.1
00:00:13 225.1.2.5 10.1.1.3
110.1.1.1
00:00:13 225.1.2.6 10.1.1.4
110.1.1.1
00:00:13 225.1.2.7 10.1.1.3
110.1.1.1
00:00:13 225.1.2.8 10.1.1.4
110.1.1.1
00:00:13 225.1.2.9 10.1.1.3
110.1.1.1
00:00:13 225.1.2.10 10.1.1.4 110.1.1.1
00:00:13 225.1.2.11 10.1.1.3 110.1.1.1
00:00:13 225.1.2.11 10.1.1.3 110.1.1.1
00:00:13 225.1.2.12 10.1.1.4 110.1.1.1
00:00:13 225.1.2.13 10.1.1.3 110.1.1.1
00:00:13 225.1.2.14 10.1.1.4 110.1.1.1
00:00:13 225.1.2.15 10.1.1.3 110.1.1.1
00:00:13 225.1.2.16 10.1.1.4 110.1.1.1
00:00:13 225.1.2.17 10.1.1.3 110.1.1.1
00:00:13 225.1.2.18 10.1.1.4 110.1.1.1
00:00:13 225.1.2.19 10.1.1.3 110.1.1.1
Dell#

received, cache-size
LearnedFrom Reason
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail
13.1.1.2 Rpf-Fail

Multicast Source Discovery Protocol (MSDP)

37

Multiple Spanning Tree Protocol (MSTP)
Multiple spanning tree protocol (MSTP), as implemented by the Dell Networking operating system,
conforms to IEEE 802.1s.
This command supports the Dell Networking S4810 platform.

debug spanning-tree mstp
Enable debugging of the multiple spanning tree protocol and view information on the protocol.

S4810
Syntax

debug spanning-tree mstp [all | bpdu interface {in | out} |
events]
To disable debugging, enter no debug spanning-tree mstp

Parameters

all

(OPTIONAL) Enter the keyword all to debug all spanning
tree operations.

bpdu
interface {in
| out}

(OPTIONAL) Enter the keyword bpdu to debug bridge
protocol data units (BPDU).
(OPTIONAL) Enter the interface keyword along with the type
slot/port of the interface you want displayed. Type slot/port
options are the following:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Optionally, enter an in or out parameter with the optional
interface:

events

Multiple Spanning Tree Protocol (MSTP)

•

For Receive, enter the keyword in.

•

For Transmit, enter the keyword out.

(OPTIONAL) Enter the keyword events to debug MSTP
events.

1117

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell#debug spanning-tree mstp bpdu gigabitethernet 2/0 ?
in Receive (in)
out Transmit (out)

disable
Globally disable the multiple spanning tree protocol on the switch.

S4810
Syntax

disable
To enable MSTP, enter the no disable command.

Defaults

disabled.

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1118

Introduced on the S6000.

Multiple Spanning Tree Protocol (MSTP)

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

protocol spanning-tree mstp — enters MULTIPLE SPANNING TREE mode.

forward-delay
The amount of time the interface waits in the Blocking State and the Learning State before transitioning
to the Forwarding State.

S4810
Syntax

forward-delay seconds
To return to the default setting, use the no forward-delay command.

Parameters

seconds

Enter the number of seconds the interface waits in the
Blocking State and the Learning State before transiting to the
Forwarding State. The range is from 4 to 30. The default is 15
seconds.

Defaults

15 seconds

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Multiple Spanning Tree Protocol (MSTP)

1119

Related
Commands

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

max-age — changes the wait time before MSTP refreshes protocol configuration
information.
hello-time — changes the time interval between bridge protocol data units
(BPDUs).

hello-time
Set the time interval between generation of MSTB bridge protocol data units (BPDUs).

S4810
Syntax

hello-time seconds
To return to the default value, use the no hello-time command.

Parameters

seconds

Enter a number as the time interval between transmission of
BPDUs. The range is from 1 to 10. The default is 2 seconds.

Defaults

2 seconds

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

1120

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

forward-delay — the amount of time the interface waits in the Blocking State and
the Learning State before transitioning to the Forwarding State.

Multiple Spanning Tree Protocol (MSTP)

max-age — changes the wait time before MSTP refreshes protocol configuration
information.

max-age
To maintain configuration information before refreshing that information, set the time interval for the
MSTB.

S4810
Syntax

max-age seconds
To return to the default values, use the no max-age command.

Parameters

max-age

Enter a number of seconds the Dell Networking OS waits
before refreshing configuration information. The range is
from 6 to 40. The default is 20 seconds.

Defaults

20 seconds

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

forward-delay — the amount of time the interface waits in the Blocking State and
the Learning State before transitioning to the Forwarding State.
hello-time — changes the time interval between BPDUs.

Multiple Spanning Tree Protocol (MSTP)

1121

msti
Configure multiple spanning tree instance, bridge priority, and one or multiple VLANs mapped to the MST
instance.

S4810
Syntax

msti instance {vlan range | bridge-priority priority}
To disable mapping or bridge priority, use the no msti instance {vlan range
| bridge-priority priority} command.

Parameters

msti instance

Enter the MSTP instance. The range is from zero (0) to 63.

vlan range

Enter the keyword vlan then the identifier range value. The
range is from 1 to 4094.

bridge-priority
priority

Enter the keywords bridge-priority then a value in
increments of 4096 as the bridge priority. The range is from
zero (0) to 61440.
Valid priority values are: 0, 4096, 8192, 12288, 16384, 20480,
24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248,
57344, and 61440. All other values are rejected.

Defaults

default bridge-priority is 32768.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1122

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

By default, all VLANs are mapped to MST instance zero (0) unless you use the vlan
range command to map it to a non-zero instance.

Multiple Spanning Tree Protocol (MSTP)

name
The name you assign to the multiple spanning tree region.

S4810
Syntax

name region-name
To remove the region name, use the no name command.

Parameters

region-name

Enter the MST region name. The range is 32 character limit.

Defaults

no default name.

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

Usage
Information

For two MSTP switches to be within the same MSTP region, the switches must
share the same region name (including matching case).

Related
Commands

msti — maps the VLAN(s) to an MST instance.
revision — assigns the revision number to the MST configuration.

Multiple Spanning Tree Protocol (MSTP)

1123

protocol spanning-tree mstp
To enable and configure the multiple spanning tree group, enter MULTIPLE SPANNING TREE mode.

S4810
Syntax

protocol spanning-tree mstp
To disable the multiple spanning tree group, use the no protocol spanningtree mstp command.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

MSTP is not enabled when you enter MULTIPLE SPANNING TREE mode. To enable
MSTP globally on the switch, enter the no disable command while in MULTIPLE
SPANNING TREE mode.
For more information about the multiple spanning tree protocol, refer to the Dell
Networking OS Configuration Guide.

Example

Dell(conf)#protocol spanning-tree mstp
Dell(config-mstp)#no disable

Related
Commands

disable — disables multiple spanning tree.

1124

Multiple Spanning Tree Protocol (MSTP)

revision
The revision number for the multiple spanning tree configuration.

S4810
Syntax

revision range
To return to the default values, use the no revision command.

Parameters

range

Enter the revision number for the MST configuration. The
range is from 0 to 65535. The default is 0.

Defaults

0

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

For two MSTP switches to be within the same MST region, the switches must share
the same revision number.

Related
Commands

msti — maps the VLAN(s) to an MST instance.
name — assigns the region name to the MST region.

Multiple Spanning Tree Protocol (MSTP)

1125

show config
View the current configuration for the mode. Only non-default values are shown.

S4810
Syntax

show config

Command
Modes

MULTIPLE SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

Dell(conf-mstp)#show config
!
protocol spanning-tree mstp
no disable
name CustomerSvc
revision 2
MSTI 10 VLAN 101-105
max-hops 5
Dell(conf-mstp)#

show spanning-tree mst configuration
View the multiple spanning tree configuration.

S4810
Syntax

show spanning-tree mst configuration

Command
Modes

•

EXEC

•

EXEC Privilege

1126

Multiple Spanning Tree Protocol (MSTP)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

Enable the multiple spanning tree protocol prior to using this command.

Example

Dell#show spanning-tree mst configuration
MST region name: CustomerSvc
Revision: 2
MSTI VID
10 101-105
Dell#

show spanning-tree msti
View the multiple spanning tree instance.

S4810
Syntax
Parameters

Command
Modes

show spanning-tree msti [instance-number [brief]] [guard]
instancenumber

(Optional) Enter the multiple spanning tree instance number.
The range is from 0 to 63.

brief

(Optional) Enter the keyword brief to view a synopsis of the
MST instance.

guard

(Optional) Enter the keyword guard to display the type of
guard enabled on an MSTP interface and the current port
state.

•
•

EXEC
EXEC Privilege

Multiple Spanning Tree Protocol (MSTP)

1127

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Support for the optional keyword guard was added on the
C-Series, S-Series, and E-Series TeraScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Expanded to display the port error disable state (EDS)
loopback BPDU inconsistency causes.

Usage
Information

Enable the multiple spanning tree protocol prior to using this command.

Example

Dell#show spanning-tree msti 10
MSTI 10 VLANs mapped 101-105
Bridge Identifier has priority 32768, Address 0001.e802.3506
Configured hello time 2, max age 20, forward delay 15, max
hops 5
Current root has priority 16384, Address 0001.e800.0a5c
Number of topology changes 0, last change occurred 3058087
Port 82 (GigabitEthernet 2/0) is designated Forwarding
Port path cost 0, Port priority 128, Port Identifier 128.82
Designated root has priority 16384, address 0001.e800.0a:5c
Designated bridge has priority 32768, address 0001.e802.35:06
Designated port id is 128.82, designated path cost
Number of transitions to forwarding state 1
BPDU (Mrecords): sent 1109, received 0
The port is not in the portfast mode
Port 88 (GigabitEthernet 2/6) is root Forwarding
Port path cost 0, Port priority 128, Port Identifier 128.88
Designated root has priority 16384, address 0001.e800.0a:5c
Designated bridge has priority 16384, address 0001.e800.0a:5c
Designated port id is 128.88, designated path cost
Number of transitions to forwarding state 4
BPDU (Mrecords): sent 19, received 1103
The port is not in the portfast mode
Port 89 (GigabitEthernet 2/7) is alternate Discarding
Port path cost 0, Port priority 128, Port Identifier 128.89
Designated root has priority 16384, address 0001.e800.0a:5c
Designated bridge has priority 16384, address 0001.e800.0a:5c
Designated port id is 128.89, designated path cost
Number of transitions to forwarding state 3

1128

Multiple Spanning Tree Protocol (MSTP)

BPDU (Mrecords): sent 7, received 1103
The port is not in the portfast mode
Example (EDS
and LBK)

The bold line shows the loopback BPDU inconsistency (LBK_INC).
Dell#show spanning-tree msti 0 brief
MSTI 0 VLANs mapped 1-4094
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 32768, Address 0001.e801.6aa8
Root Bridge hello time 2, max age 20, forward delay 15, max
hops 20
Bridge ID Priority 32768, Address 0001.e801.6aa8
We are the root of MSTI 0 (CIST)
Configured hello time 2, max age 20, forward delay 15, max
hops 20
CIST regional root ID Priority 32768, Address 0001.e801.6aa8
CIST external path cost 0
Interface
Designated
Name
PortID
Prio Cost Sts Cost Bridge ID
PortID
---------------------------------------------------------Gi 0/0 128.257 128 20000 EDS 0 32768 0001.e801.6aa8 128.257
Interface
Name Role PortID Prio Cost Sts Cost Link-type Edge Boundary
---------------------------------------------------------Gi 0/0 ErrDis 128.257 128 20000 EDS 0
P2P
No
No
Dell#show spanning-tree msti 0
MSTI 0 VLANs mapped 1-4094
Root Identifier has priority 32768, Address 0001.e801.6aa8
Root Bridge hello time 2, max age 20, forward delay 15, max
hops 20
Bridge Identifier has priority 32768, Address 0001.e801.6aa8
Configured hello time 2, max age 20, forward delay 15, max
hops 20
We are the root of MSTI 0 (CIST)
Current root has priority 32768, Address 0001.e801.6aa8
CIST regional root ID Priority 32768, Address 0001.e801.6aa8
CIST external path cost 0
Number of topology changes 1, last change occured 00:00:15 ago
on Gi 0/0
Port 257 (GigabitEthernet 0/0) is LBK_INC Discarding
Port path cost 20000, Port priority 128, Port Identifier
128.257
Designated root has priority 32768, address 0001.e801.6aa8
Designated bridge has priority 32768, address 0001.e801.6aa8
Designated port id is 128.257, designated path cost 0
Number of transitions to forwarding state 1
BPDU (MRecords): sent 21, received 9
The port is not in the Edge port mode

Usage
Information

The following describes the show spanning-tree msti 5 guard command
shown in the following example.
Field

Description

Interface Name

MSTP interface.

Multiple Spanning Tree Protocol (MSTP)

1129

Example
(Guard)

Field

Description

Instance

MSTP instance.

Sts

Port state: root-inconsistent (INCON Root), forwarding
(FWD), listening (LIS), blocking (BLK), or shut down (EDS
Shut).

Guard Type

Type of STP guard configured (Root, Loop, or BPDU guard).

Dell#show spanning-tree msti 5 guard
Interface
Name
Instance Sts Guard
type
-----------------------------------Gi 0/1 5
INCON(Root) Rootguard
Gi 0/2 5
FWD
Loopguard
Gi 0/3 5
EDS(Shut)
Bpduguard

spanning-tree
Enable the multiple spanning tree protocol on the interface.

S4810
Syntax

spanning-tree
To disable the multiple spanning tree protocol on the interface, use the no
spanning-tree command.

Parameters

spanning-tree

Enter the keywords spanning-tree to enable the MSTP on
the interface.

Defaults

Enable.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1130

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Multiple Spanning Tree Protocol (MSTP)

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

spanning-tree msti
Configure multiple spanning tree instance cost and priority for an interface.

S4810
Syntax
Parameters

spanning-tree msti instance {cost cost | priority priority}
msti instance

Enter the keyword msti and the MST instance number. The
range is from zero (0) to 63.

cost cost

(OPTIONAL) Enter the keyword cost then the port cost
value. The range is from 1 to 200000. The defaults are:

priority priority

Defaults

•

100 Mb/s Ethernet interface = 200000

•

1-Gigabit Ethernet interface = 20000

•

10-Gigabit Ethernet interface = 2000

•

Port Channel interface with one 100 Mb/s Ethernet =
200000

•

Port Channel interface with one 1 Gigabit Ethernet =
20000

•

Port Channel interface with one 10 Gigabit Ethernet =
2000

•

Port Channel with two 1 Gigabit Ethernet = 18000

•

Port Channel with two 10 Gigabit Ethernet = 1800

•

Port Channel with two 100 Mbps Ethernet = 180000

Enter keyword priority then a value in increments of 16 as
the priority. The range is from 0 to 240. The default is 128.

•

cost = depends on the interface type

•

priority = 128

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Multiple Spanning Tree Protocol (MSTP)

1131

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

tc-flush-standard
Enable the MAC address flushing after receiving every topology change notification.

S4810
Syntax

tc-flush-standard
To disable, use the no tc-flush-standard command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1132

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced

By default, Dell Networking OS implements an optimized flush mechanism for
MSTP. This mechanism helps in flushing the MAC addresses only when necessary
(and less often) allowing for faster convergence during topology changes.
However, if a standards-based flush mechanism is needed, this knob command

Multiple Spanning Tree Protocol (MSTP)

can be turned on to enable flushing MAC addresses after receiving every topology
change notification.

Multiple Spanning Tree Protocol (MSTP)

1133

38

Multicast

The multicast commands are supported by Dell Networking operating system (OS) on all S4810 platform.
This chapter contains the following sections:
•

IPv4 Multicast Commands

IPv4 Multicast Commands
The following section contains the IPv4 multicast commands.

clear ip mroute
Clear learned multicast routes on the multicast forwarding table. To clear the protocol-independent
multicast (PIM) tree information base, use the clear ip pim tib command.

S4810
Syntax
Parameters

clear ip mroute {group-address [source-address] | * | snooping}
group-address
[sourceaddress]

Enter the multicast group address and source address (if
desired), in dotted decimal format, to clear information on a
specific group.

*

Enter * to clear all multicast routes.

snooping

Enter the keyword snooping to delete multicast snooping
route table entries.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1134

Version 9.2.
(0.0)

Added support for keyword snooping on the Z9000, S4810,
and S4820T.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Multicast

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

show ip pim tib — shows the PIM tree information base.

ip mroute
Assign a static mroute.

S4810
Syntax

ip mroute destination mask {ip-address | null 0| {{bgp| ospf}
process-id | isis | rip | static} {ip-address | tag | null 0}}
[distance]
To delete a specific static mroute, use the ip mroute destination mask {ipaddress | null 0| {{bgp| ospf} process-id | isis | rip |
static} {ip-address | tag | null 0}} [distance] command.
To delete all mroutes matching a certain mroute, use the no ip mroute
destination mask command.

Parameters

Multicast

destination

Enter the IP address in dotted decimal format of the
destination device.

mask

Enter the mask in slash prefix formation ( /x ) or in dotted
decimal format.

null 0

(OPTIONAL) Enter the keyword null then zero (0).

[protocol
[process-id |
tag] ip-address]

(OPTIONAL) Enter one of the routing protocols:
•

Enter the BGP as-number then the IP address in dotted
decimal format of the reverse path forwarding (RPF)
neighbor. The range is from 1 to 65535.

•

Enter the OSPF process identification number then the IP
address in dotted decimal format of the RPF neighbor.
the range is from 1 to 65535.

•

Enter the IS-IS alphanumeric tag string then the IP
address in dotted decimal format of the RPF neighbor.

•

Enter the RIP IP address in dotted decimal format of the
RPF neighbor.

static ipaddress

(OPTIONAL) Enter the Static IP address in dotted decimal
format of the RPF neighbor.

ip-address

(OPTIONAL) Enter the IP address in dotted decimal format of
the RPF neighbor.

1135

distance

(OPTIONAL) Enter a number as the distance metric assigned
to the mroute. The range is from 0 to 255.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

E-Series legacy
command
Related
Commands

show ip mroute — views the E-Series routing table.

ip multicast-limit
To limit the number of multicast entries on the system, use this feature.

S4810
Syntax
Parameters

ip multicast-limit limit
limit

Enter the desired maximum number of multicast entries on
the system. The S-Series range is from 1 to 2000.

Defaults

The S-Series default is 400.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1136

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Multicast

Usage
Information

Version 7.8.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

This feature allows you to limit the number of multicast entries on the system. This
number is the total of all the multicast entries on all line cards in the system. On
each line card, the multicast module only installs the maximum number of entries,
depending on the configured CAM profile.
To store multicast routes, use the IN-L3-McastFib CAM partition. It is a separate
hardware limit that exists per port-pipe. This hardware space limitation can
supersede any software-configured limit. The opposite is also true, the CAM
partition might not be exhausted at the time the system-wide route limit set by the
ip multicast-limit command is reached.

Related
Commands

show ip igmp groups — shows the IGMP groups.

ip multicast-routing
Enable IP multicast forwarding.

S4810
Syntax

ip multicast-routing
To disable multicast forwarding, use the no ip multicast-routing command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

E-Series legacy
command
Usage
Information

Multicast

After you enable multicast, you can enable IGMP and PIM on an interface. In
INTERFACE mode, enter the ip pim sparse-mode command to enable IGMP
and PIM on the interface.

1137

Related
Commands

ip pim sparse-mode — enables IGMP and PIM on an interface.

show ip mroute
View the multicast routing table.

S4810
Syntax

Parameters

show ip mroute [static | group-address [source-address] | count
| snooping [vlan vlan-id] [group-address [source-address]] |
summary | vlt [group-address [source-address] | count]
static

(OPTIONAL) Enter the keyword static to view static
multicast routes.

group-address
[sourceaddress]

(OPTIONAL) Enter the multicast group-address to view only
routes associated with that group.
Enter the source-address to view routes with that groupaddress and source-address.

count

(OPTIONAL) Enter the keyword count to view the number of
multicast routes and packets.

snooping [vlan
vlan-id]
[group-address
[sourceaddress]]

Enter the keyword snooping to display information on the
multicast routes PIM-SM snooping discovers.
Enter a VLAN ID to limit the information displayed to the
multicast routes PIM-SM snooping discovers on a specified
VLAN. The VLAN ID range is from 1 to 4094.
Enter a multicast group address and, optionally, a source
multicast address in dotted decimal format (A.B.C.D) to limit
the information displayed to the multicast routes PIM-SM
snooping discovers for a specified multicast group and
source.

1138

summary

(OPTIONAL) Enter the keyword summary to view a summary
of all routes.

vlt

(OPTIONAL) Enter the keyword vlt to view multicast routes
with a spanned incoming interface. Enter a multicast group
address in dotted decimal format (A.B.C.D) to limit the
information displayed to the multicast routes for a specified
multicast group and optionally a source multicast address in
dotted decimal format (A.B.C.D) to limit the information
displayed for a specified multicast source. Enter the keyword
count to display the total number of multicast routes with
the spanned IIF.

Multicast

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2.
(0.0)

Added support for keyword vlt to the Z9000, S4810, and
S4820T.

Version 8.4.1.1

Support for the keyword snooping and the optional vlan
vlan-id, group-address, and source-address
parameters were added on E-Series ExaScale.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Example
(Static)

Dell#show ip mroute static

Example
(Snooping)

Dell#show ip mroute snooping

Mroute: 23.23.23.0/24, interface: Lo 2
Protocol: static, distance: 0, route-map: none, last change:
00:00:23

IPv4 Multicast Snooping Table
(*, 224.0.0.0), uptime 17:46:23
Incoming vlan: Vlan 2
Outgoing interface list:
GigabitEthernet 4/13
(*, 225.1.2.1), uptime 00:04:16
Incoming vlan: Vlan 2
Outgoing interface list:
GigabitEthernet 4/11
GigabitEthernet 4/13
(165.87.1.7, 225.1.2.1), uptime 00:03:17
Incoming vlan: Vlan 2
Outgoing interface list:
GigabitEthernet 4/11
GigabitEthernet 4/13
GigabitEthernet 4/20

Multicast

1139

Example (VLT)

Dell#show ip mroute vlt
IP Multicast Routing Table
Flags: S – Synced
(*, 225.1.1.1), uptime 00:39:33 flags: S
Incoming interface: Vlan 10
Spanned outgoing interface list:
Vlan 20 (S)
Vlan 30
(50.1.1.2, 225.1.1.1), uptime 00:39:33 flags: S
Incoming interface: Vlan 10
Spanned outgoing interface list:
Vlan 20 (S)

Usage
Information

Example

The following describes the show ip mroute command shown in the following
example.
Field

Description

(S, G)

Displays the forwarding entry in the multicast route table.

uptime

Displays the amount of time the entry has been in the
multicast forwarding table.

Incoming
interface

Displays the reverse path forwarding (RPF) information
towards the source for (S,G) entries and the RP for (*,G)
entries.

Outgoing
interface list:

Lists the interfaces that meet one of the following:
•

a directly connected member of the Group

•

statically configured member of the Group

•

received a (*,G) or (S,G) Join message

Dell#show ip mroute
IP Multicast Routing Table
(*, 224.10.10.1), uptime 00:05:12
Incoming interface: GigabitEthernet 3/12
Outgoing interface list:
GigabitEthernet 3/13
(1.13.1.100, 224.10.10.1), uptime 00:04:03
Incoming interface: GigabitEthernet 3/4
Outgoing interface list:
GigabitEthernet 3/12
GigabitEthernet 3/13
(*, 224.20.20.1), uptime 00:05:12
Incoming interface: GigabitEthernet 3/12
Outgoing interface list:
GigabitEthernet 3/4

1140

Multicast

show ip rpf
View reverse path forwarding.

S4810
Syntax

show ip rpf

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

E-Series legacy
command
Usage
Information

Network administrators use static mroutes to control the reach-ability of the
multicast sources. If a PIM-registered multicast source is reachable using static
mroute as well as unicast route, the distance of each route is examined and the
route with shorter distance is the one the PIM selects for reach-ability.
NOTE: The default distance of mroutes is zero (0) and is CLI configurable on a
per route basis.

Example

Multicast

Dell#show ip rpf
RPF information for 10.10.10.9
RPF interface: Gi 3/4
RPF neighbor: 165.87.31.4
RPF route/mask: 10.10.10.9/255.255.255.255
RPF type: unicast

1141

Neighbor Discovery Protocol (NDP)

39

The Dell Networking operating software supports the network discovery protocol for IPv6 on the S4810
platform.
The neighbor discovery protocol for IPv6 is defined in RFC 2461 as part of the Stateless Address
Autoconfiguration protocol. It replaces the Address Resolution Protocol used with IPv4. NDP defines
mechanisms for solving the following problems:
•

Router discovery: Hosts can locate routers residing on a link

•

Prefix discovery: Hosts can discover address prefixes for the link

•

Parameter discovery

•

Address autoconfiguration — configuration of addresses for an interface

•

Address resolution — mapping from IP address to link-layer address

•

Next-hop determination

•

Neighbor unreachability detection (NUD): Determine that a neighbor is no longer reachable on the
link.

•

Duplicate address detection (DAD): Allow a node to check whether a proposed address is already in
use.

•

Redirect: The router can inform a node about a better first-hop.

NDP uses the following five ICMPv6 packet types in its implementation:
•

Router Solicitation

•

Router Advertisement

•

Neighbor Solicitation

•

Neighbor Advertisement

•

Redirect

clear ipv6 neighbors
Delete all entries in the IPv6 neighbor discovery cache or neighbors of a specific interface. Static entries
are not removed using this command.

S4810
Syntax
Parameters

clear ipv6 neighbors [ipv6-address] [interface]
ipv6-address

Enter the IPv6 address of the neighbor in the x:x:x:x::x format
to remove a specific IPv6 neighbor.
NOTE: The :: notation specifies successive hexadecimal
fields of zero.

1142

Neighbor Discovery Protocol (NDP)

interface
interface

To remove all neighbor entries learned on a specific
interface, enter the keyword interface then the interface
type and slot/port or number information of the interface:
•

For a Fast Ethernet interface, enter the keyword
fastEthernet then the slot/port information.

•

• For a Port Channel interface, enter the keywords portchannel then a number.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then the VLAN ID.
The range is from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

ipv6 neighbor
Configure a static entry in the IPv6 neighbor discovery.

S4810
Syntax

ipv6 neighbor {ipv6-address} {interface interface}
{hardware_address}
To remove a static IPv6 entry from the IPv6 neighbor discovery, use the no ipv6
neighbor {ipv6-address} {interface interface} command.

Parameters

ipv6-address

Enter the IPv6 address of the neighbor in the x:x:x:x::x
format.
NOTE: The :: notation specifies successive hexadecimal
fields of zero.

Neighbor Discovery Protocol (NDP)

1143

interface
interface

hardware_addr
ess

Enter the keyword interface then the interface type and
slot/port or number information:
•

For a Fast Ethernet interface, enter the keyword
fastEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Enter a 48-bit hardware MAC address in nn:nn:nn:nn:nn:nn
format.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

show ipv6 neighbors
Display IPv6 discovery information. Entering the command without options shows all IPv6 neighbor
addresses stored on the control processor (CP).

S4810
Syntax
Parameters

show ipv6 neighbors [ipv6-address] [cpu {rp1 [ipv6-address] |
rp2 [ipv6-address]}] [interface interface]
ipv6-address

Enter the IPv6 address of the neighbor in the x:x:x:x::x
format.
NOTE: The :: notation specifies successive hexadecimal
fields of zero.

1144

Neighbor Discovery Protocol (NDP)

CPU

Enter the keyword cpu then either rp1 or rp2 (Route
Processor 1 or 2), optionally then an IPv6 address to display
the IPv6 neighbor entries stored on the designated RP.

interface
interface

Enter the keyword interface then the interface type and
slot/port or number information:
•

For a Fast Ethernet interface, enter the keyword
fastEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then the VLAN ID.
The range is from 1 to 4094.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.1

Introduced on the S4810.

Dell#show ipv6 neighbors
IPv6 Address Expires(min) HardwareAddress State Interface/VLAN/
CPU
--------------------------------------------------------fe80::201:e8ff:fe17:5bc6
1439
00:01:e8:17:5b:c6 STALE Gi 1/9
CP
fe80::201:eff:fe17:5bc7
1439
00:01:e8:17:5b:c7 STALE Gi 1/10
CP
fe80::201:e8ff:fe17:5bc8
1439
00:01:e8:17:5b:c8 STALE Gi 1/11
CP
fe80::201:e8ff:fe17:5caf
0.3
00:01:e8:17:5c:af REACH Po 1
CP
fe80::201:e8ff:fe17:5cb0
1439
00:01:e8:17:5c:b0 STALE Po 32
CP
fe80::201:e8ff:fe17:5cb1
1439
00:01:e8:17:5c:b1 STALE Po 255
CP
fe80::201:e8ff:fe17:5cae
1439
00:01:e8:17:5c:ae STALE Gi 1/3 Vl 100 CP
fe80::201:e8ff:fe17:5cae

Neighbor Discovery Protocol (NDP)

1145

1439
00:01:e8:17:5c:ae STALE Gi 1/5 Vl 1000 CP
fe80::201:e8ff:fe17:5cae
1439
00:01:e8:17:5c:ae STALE Gi 1/7 Vl 2000 CP
Dell#

1146

Neighbor Discovery Protocol (NDP)

Open Shortest Path First (OSPFv2 and
OSPFv3)

40

Open Shortest Path First version 2 for IPv4 is supported on S4810 Dell Networking Operating System (OS)
platform. Open Shortest Path First version 3 (OSPFv3) for IPv6 is supported on the S4810 platform.
OSPF is an Interior Gateway Protocol (IGP), which means that it distributes routing information between
routers in a single Autonomous System (AS). OSPF is also a link-state protocol in which all routers contain
forwarding tables derived from information about their links to their neighbors.
The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, and so on)
are the same for OSPFv2 and OSPFv3. OSPFv3 runs on a per-link basis instead of on a per-IP-subnet
basis.
This chapter is divided into two sections. There is no overlap between the two sets of commands. You
cannot use an OSPFv2 command in the IPv6 OSPFv3 mode.
•

OSPFv2 Commands
NOTE: Dell Networking Operating System (OS) version 7.8.1.0 introduces Multi-Process OSPF on
IPv4 (OSPFv2) only. It is not supported on OSPFv3 (IPv6).
The CLI requires that you include the Process ID when entering ROUTER-OSPF mode. Each
command entered applies to the specified OSPFv2 process only.

OSPFv2 Commands
The Dell Networking implementation of OSPFv2 is based on IETF RFC 2328. .

area default-cost
Set the metric for the summary default route the area border router (ABR) generates into the stub area.
Use this command on the border routers at the edge of a stub area.

S4810
Syntax

area area-id default-cost cost
To return default values, use the no area area-id default-cost command.

Parameters

area-id

Specify the OSPF area in dotted decimal format (A.B.C.D.) or
enter a number from zero (0) to 65535.

cost

Specifies the stub area’s advertised external route metric. The
range is from zero (0) to 65535.

Open Shortest Path First (OSPFv2 and OSPFv3)

1147

Defaults

cost = 1; no areas are configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

In the Dell Networking operating software (OS), cost is defined as reference
bandwidth/bandwidth.

Related
Commands

area stub — creates a stub area.

area nssa
Specify an area as a not so stubby area (NSSA).

S4810
Syntax

area area-id nssa [default-information-originate] [noredistribution] [no-summary]
To delete an NSSA, use the no area area-id nssa command.

Parameters

1148

area-id

Specify the OSPF area in dotted decimal format (A.B.C.D.) or
enter a number from zero (0) to 65535.

noredistribution

(OPTIONAL) Specify that the redistribute command does
not distribute routes into the NSSA. Only use this command
in an NSSA area border router (ABR).

defaultinformationoriginate

(OPTIONAL) Allows external routing information to be
imported into the NSSA by using Type 7 default.

Open Shortest Path First (OSPFv2 and OSPFv3)

no-summary

(OPTIONAL) Specify that no summary LSAs should be sent
into the NSSA.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

area range
Summarize routes matching an address/mask at an area border router (ABR).

S4810
Syntax

area area-id range ip-address mask [not-advertise]
To disable route summarization, use the no area area-id range ip-address
mask command.

Parameters

area-id

Specify the OSPF area in dotted decimal format (A.B.C.D.) or
enter a number from zero (0) to 65535.

ip-address

Specify an IP address in dotted decimal format.

mask

Specify a mask for the destination prefix. Enter the full mask
(for example, 255.255.255.0).

not-advertise

(OPTIONAL) Enter the keywords not-advertise to set the
status to DoNotAdvertise (that is, the Type 3 summary-LSA is
suppressed and the component networks remain hidden
from other areas.)

Open Shortest Path First (OSPFv2 and OSPFv3)

1149

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

Only the routes within an area are summarized, and that summary is advertised to
other areas by the ABR. External routes are not summarized.

Related
Commands

area stub — creates a stub area.
router ospf — enters ROUTER OSPF mode to configure an OSPF instance.

area stub
Configure a stub area, which is an area not connected to other areas.

S4810
Syntax

area area-id stub [no-summary]
To delete a stub area, use the no area area-id stub command.

Parameters

Defaults

1150

area-id

Specify the OSPF area in dotted decimal format (A.B.C.D.) or
enter a number from zero (0) to 65535.

no-summary

(OPTIONAL) Enter the keywords no-summary to prevent the
ABR from sending summary Link State Advertisements (LSAs)
into the stub area.

Disabled.

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

To configure all routers and access servers within a stub, use this command.

Related
Commands

router ospf — enters ROUTER OSPF mode to configure an OSPF instance.

auto-cost
Specify how the OSPF interface cost is calculated based on the reference bandwidth method.

S4810
Syntax

auto-cost [reference-bandwidth ref-bw]
To return to the default bandwidth or to assign cost based on the interface type,
use the no auto-cost [reference-bandwidth] command.

Parameters

ref-bw

(OPTIONAL) Specify a reference bandwidth in megabits per
second. The range is from 1 to 4294967. The default is 100
megabits per second.

Defaults

100 megabits per second.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1151

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

clear ip ospf
Clear all OSPF routing tables.

S4810
Syntax
Parameters

clear ip ospf process-id [vrf vrf-name] [process]
process-id

Enter the OSPF Process ID to clear a specific process. If no
Process ID is entered, all OSPF processes are cleared.

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
clear all OSPF routing tables corresponding to that VRF.

process

(OPTIONAL) Enter the keyword process to reset the OSPF
process.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1152

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

clear ip ospf statistics
Clear the packet statistics in interfaces and neighbors.

S4810
Syntax
Parameters

clear ip ospf [process-id] [vrf vrf-name] statistics [interface
name {neighbor router-id}]
process-id

Enter the OSPF Process ID to clear a specific process. If no
Process ID is entered, all OSPF processes are cleared.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
clear all OSPF routing tables corresponding to that VRF.

statistics

Enter the keyword statistics to clear the packet statistics in
interfaces and neighbors.

interface name

(OPTIONAL) Enter the keyword interface then one of the
following interface keywords and slot/port or number
information:

neighbor
router-id

•

For Port Channel groups, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/ port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword neighbor then the
neighbor’s router-id in dotted decimal format (A.B.C.D.).

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1153

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show ip ospf statistics — displays the OSPF statistics.

debug ip ospf
Display debug information on OSPF. Entering the debug ip ospf commands enables OSPF debugging
for the first OSPF process.

S4810
Syntax

debug ip ospf [process-id] [vrf vrf-name] [bfd |event | packet
| spf | database-timer rate-limit]
To cancel the debug command, use the no debug ip ospf command.

Parameters

1154

process-id

Enter the OSPF Process ID to clear a specific process. If no
Process ID is entered, all OSPF processes are cleared.

vrf vrf-name

Enter the keyword vrf to view debugging information on
OSPF corresponding to that VRF.

bfd

(OPTIONAL) Enter the keyword bfd to debug only OSPF BFD
information.

event

(OPTIONAL) Enter the keyword event to debug only OSPF
event information.

packet

(OPTIONAL) Enter the keyword packet to debug only OSPF
packet information.

spf

(OPTIONAL) Enter the keyword spf to display the Shortest
Path First information.

database-timer
rate-limit

(OPTIONAL) Enter the keywords database-timer ratelimit to display the LSA throttling timer information. This
applies to the S4810 platform only.

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Added the database-timer rate-limit option for the
S4810.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the debug ip ospf command shown in the Example
below.
Field

Description

8:14

Displays the time stamp.

OSPF

Displays the OSPF process ID: instance ID.

v:

Displays the OSPF version. Dell Networking OS supports
version 2 only.

t:

Displays the type of packet sent:
•

1 - Hello packet

•

2 - database description

•

3 - link state request

•

4 - link state update

•

5 - link state acknowledgement

l:

Displays the packet length.

rid:

Displays the OSPF router ID.

aid:

Displays the Autonomous System ID.

chk:

Displays the OSPF checksum.

Open Shortest Path First (OSPFv2 and OSPFv3)

1155

Example

Field

Description

aut:

States if OSPF authentication is configured. One of the
following is listed:
•

0 - no authentication configured

•

1 - simple authentication configured using the ip ospf
authentication-key command

•

2 - MD5 authentication configured using the ip ospf
message-digest-key command

auk:

If the ip ospf authentication-key command is
configured, this field displays the key used.

keyid:

If the ip ospf message-digest-key command is
configured, this field displays the MD5 key

to:

Displays the interface to which the packet is intended.

dst:

Displays the destination IP address.

netmask:

Displays the destination IP address mask.

pri:

Displays the OSPF priority

N, MC, E, T

Displays information available in the Options field of the
HELLO packet:
•

N + (N-bit is set)

•

N - (N-bit is not set)

•

MC+ (bit used by MOSPF is set and router is able to
forward IP multicast packets)

•

MC- (bit used by MOSPF is not set and router cannot
forward IP multicast packets)

•

E + (router is able to accept AS External LSAs)

•

E - (router cannot accept AS External LSAs)

•

T + (router can support TOS)

•

T - (router cannot support TOS)

hi:

Displays the amount of time configured for the HELLO
interval.

di:

Displays the amount of time configured for the DEAD
interval.

dr:

Displays the IP address of the designated router.

bdr:

Displays the IP address of the Border Area Router.

Dell#debug ip ospf 1 packet
OSPF process 90, packet debugging is on
Dell#
08:14:24 : OSPF(100:00):
Xmt. v:2 t:1(HELLO) l:44 rid:192.1.1.1
aid:0.0.0.1 chk:0xa098 aut:0 auk: keyid:0 to:Gi 4/3 dst:

1156

Open Shortest Path First (OSPFv2 and OSPFv3)

224.0.0.5
netmask:255.255.255.0 pri:1 N-, MC-, E+, T-,
hi:10 di:40 dr:90.1.1.1 bdr:0.0.0.0

default-information originate
To generate a default external route into an OSPF routing domain, configure Dell Networking Operating
System (OS).

S4810
Syntax

default-information originate [always] [metric metric-value]
[metric-type type-value] [route-map map-name]
To return to the default values, use the no default-information originate
command.

Parameters

always

(OPTIONAL) Enter the keyword always to specify that
default route information must always be advertised.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number to
configure a metric value for the route. The range is from 1 to
16777214.

metric-type
type-value

(OPTIONAL) Enter the keywords metric-type then an
OSPF link state type of 1 or 2 for default routes. The values
are:

route-map
map-name

•

1 = Type 1 external route

•

2 = Type 2 external route

(OPTIONAL) Enter the keywords route-map then the name
of an established route map.

Defaults

Disabled.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

1157

Related
Commands

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

redistribute — redistributes routes from other routing protocols into OSPF.

default-metric
Change the metrics of redistributed routes to a value useful to OSPF. Use this command with the
redistribute command.

S4810
Syntax

default-metric number
To return to the default values, use the no default-metric [number]
command.

Parameters

number

Enter a number as the metric. The range is from 1 to
16777214.

Defaults

Disabled.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

1158

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

redistribute — redistributes routes from other routing protocols into OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

description
Add a description about the selected OSPF configuration.

S4810
Syntax

description description
To remove the OSPF description, use the no description command.

Parameters

description

Enter a text string description to identify the OSPF
configuration (80 characters maximum).

Defaults

none

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show ip ospf asbr — displays the VLAN configuration.

distance
Define an administrative distance for particular routes to a specific IP address.

S4810
Syntax

distance weight [ip-address mask access-list-name]
To delete the settings, use the no distance weight [ip-address mask
access-list-name] command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1159

Parameters

weight

Specify an administrative distance. The range is from 1 to
255. The default is 110.

ip-address

(OPTIONAL) Enter a router ID in the dotted decimal format. If
you enter a router ID, include the mask for that router
address.

mask

(OPTIONAL) Enter a mask in dotted decimal format or /n
format.

access-listname

(OPTIONAL) Enter the name of an IP standard access list, up
to 140 characters.

Defaults

110

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

distance ospf
Configure an OSPF distance metric for different types of routes.

S4810
Syntax

distance ospf [external dist3] [inter-area dist2] [intra-area
dist1]
To delete these settings, use the no distance ospf command.

Parameters

1160

external dist3

(OPTIONAL) Enter the keyword external then a number to
specify a distance for external type 5 and 7 routes. The range
is from 1 to 255. The default is 110.

Open Shortest Path First (OSPFv2 and OSPFv3)

Defaults

inter-area dist2

(OPTIONAL) Enter the keywords inter-area then a number
to specify a distance metric for routes between areas. The
range is from 1 to 255. The default is 110.

intra-area dist1

(OPTIONAL) Enter the keywords intra-area then a number
to specify a distance metric for all routes within an area. The
range is from 1 to 255. The default is 110.

•

external dist3 = 110

•

inter-area dist2 = 110

•

intra-area dist1 = 110

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

To specify a distance for routes learned from other routing domains, use the
redistribute command.

distribute-list in
Apply a filter to incoming routing updates from OSPF to the routing table.

S4810
Syntax

distribute-list prefix-list-name in [interface]
To delete a filter, use the no distribute-list prefix-list-name in
[interface] command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1161

Parameters

prefix-listname

Enter the name of a configured prefix list.

interface

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For Port Channel groups, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

distribute-list out
To restrict certain routes destined for the local routing table after the SPF calculation, apply a filter.

S4810
Syntax

1162

distribute-list prefix-list-name out [bgp | connected | isis |
rip | static]

Open Shortest Path First (OSPFv2 and OSPFv3)

To remove a filter, use the no distribute-list prefix-list-name out
[bgp | connected | isis | rip | static] command.
Parameters

prefix-listname

Enter the name of a configured prefix list.

bgp

(OPTIONAL) Enter the keyword bgp to specify that BGP
routes are distributed.
NOTE: BGP and ISIS routes are not available on the CSeries. BGP, ISIS, and RIP routes are not available on the
S-Series.

connected

(OPTIONAL) Enter the keyword connected to specify that
connected routes are distributed.

isis

(OPTIONAL) Enter the keyword isis to specify that IS-IS
routes are distributed.
NOTE: BGP and ISIS routes are not available on the CSeries. BGP, ISIS, and RIP routes are not available on the
S-Series.

rip

(OPTIONAL) Enter the keyword rip to specify that RIP
routes are distributed.
NOTE: BGP and ISIS routes are not available on the CSeries. BGP, ISIS, and RIP routes are not available on the
S-Series.

static

(OPTIONAL) Enter the keyword static to specify that only
manually configured routes are distributed.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for the Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Open Shortest Path First (OSPFv2 and OSPFv3)

1163

Usage
Information

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The distribute-list out command applies to routes autonomous system
boundary routers (ASBRs) redistributes into OSPF. It can be applied to external type
2 and external type 1 routes, but not to intra-area and inter-area routes.

fast-convergence
This command sets the minimum LSA origination and arrival times to zero (0), allowing more rapid route
computation so that convergence takes less time.

S4810
Syntax

fast-convergence {number}
To cancel fast-convergence, use the no fast convergence command.

Parameters

number

Enter the convergence level desired. The higher this
parameter is set, the faster OSPF converge takes place. The
range is from 1 to 4.

Defaults

none.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1164

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on all platforms.

The higher this parameter is set, the faster OSPF converge takes place.
NOTE: The faster the convergence, the more frequent the route calculations
and updates. This behavior impacts CPU utilization and may impact adjacency
stability in larger topologies.

Open Shortest Path First (OSPFv2 and OSPFv3)

Generally, convergence level 1 meets most convergence requirements. Higher
convergence levels should only be selected following consultation with Dell
Networking technical support.

graceful-restart grace-period
Specifies the time duration, in seconds, that the router’s neighbors continue to advertise the router as
fully adjacent regardless of the synchronization state during a graceful restart.
NOTE: This command enables OSPFv2 graceful restart globally by setting the grace period (in
seconds) that an OSPFv2 router’s neighbors continues to advertise the router as adjacent during a
graceful restart.

S4810
Syntax

graceful-restart grace-period seconds
To disable the grace period, use the no graceful-restart grace-period
command.

Parameters

seconds

Time duration, in seconds, that specifies the duration of the
restart process before OSPF terminates the process. The
range is from 40 to 1800 seconds.

Defaults

Not Configured

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series. Added support for Multi-Process
OSPF.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The Helper mode is enabled by default on the device. To enable the restart mode
also on the device, you must configure the grace period using this command. After

Open Shortest Path First (OSPFv2 and OSPFv3)

1165

you enable restart mode the router advertises the neighbor as fully adjacent during
a restart.

graceful-restart helper-reject
Specify the OSPF router to not act as a helper during graceful restart.

S4810
Syntax

graceful-restart helper-reject ip-address
To return to default value, use the no graceful-restart helper-reject
command.

Parameters

ip-address

Enter the OSPF router-id, in IP address format, of the restart
router that will not act as a helper during graceful restart.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1166

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.8.1.0

Restart role enabled on the S-Series (Both Helper and
Restart roles now supported on S-Series). Added support
for Multi-Process OSPF.

Version 7.7.1.0

Added Helper-Role support on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Open Shortest Path First (OSPFv2 and OSPFv3)

graceful-restart mode
Enable the graceful restart mode.

S4810
Syntax

graceful-restart mode [planned-only | unplanned-only]
To disable graceful restart mode, use the no graceful-restart mode
command.

Parameters

planned-only

(OPTIONAL) Enter the keywords planned-only to indicate
graceful restart is supported in a planned restart condition
only.

unplannedonly

(OPTIONAL) Enter the keywords unplanned-only to
indicate graceful restart is supported in an unplanned restart
condition only.

Defaults

Support for both planned and unplanned failures.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

graceful-restart role
Specify the role for your OSPF router during graceful restart.

S4810
Syntax

graceful-restart role [helper-only | restart-only]

Open Shortest Path First (OSPFv2 and OSPFv3)

1167

To disable graceful restart role, use the no graceful-restart role command.
Parameters

role helperonly

(OPTIONAL) Enter the keywords helper-only to specify
the OSPF router is a helper only during graceful restart.

role restartonly

(OPTIONAL) Enter the keywords restart-only to specify
the OSPF router is a restart only during graceful-restart.

Defaults

By default, OSPF routers are both helper and restart routers during a graceful
restart.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF. Added Restart and
Helper roles support on the S-Series.

Version 7.7.1.0

Added Helper-Role support on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

ip ospf auth-change-wait-time
OSPF provides a grace period while OSPF changes its interface authentication type. During the grace
period, OSPF sends out packets with new and old authentication scheme until the grace period expires.

S4810
Syntax

ip ospf auth-change-wait-time seconds
To return to the default, use the no ip ospf auth-change-wait-time
command.

Parameters

1168

seconds

Enter the seconds. The range is from 0 to 300.

Open Shortest Path First (OSPFv2 and OSPFv3)

Defaults

zero (0) seconds.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

ip ospf authentication-key
Enable authentication and set an authentication key on OSPF traffic on an interface.

S4810
Syntax

ip ospf authentication-key [encryption-type] key
To delete an authentication key, use the no ip ospf authentication-key
command.

Parameters

encryptiontype

(OPTIONAL) Enter 7 to encrypt the key.

key

Enter an eight-character string. Strings longer than eight
characters are truncated.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Open Shortest Path First (OSPFv2 and OSPFv3)

Introduced on the S6000.

1169

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

All neighboring routers in the same network must use the same password to
exchange OSPF information.

ip ospf cost
Change the cost associated with the OSPF traffic on an interface.

S4810
Syntax

ip ospf cost cost
To return to default value, use the no ip ospf cost command.

Parameters

cost

Enter a number as the cost. The range is from 1 to 65535.

Defaults

The default cost is based on the reference bandwidth.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1170

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

If this command is not configured, cost is based on the auto-cost command.
When you configure OSPF over multiple vendors, to ensure that all routers use the
same cost, use the ip ospf cost command. Otherwise, OSPF routes improperly.

Related
Commands

auto-cost — controls how the OSPF interface cost is calculated.

ip ospf dead-interval
Set the time interval since the last hello-packet was received from a router. After the interval elapses, the
neighboring routers declare the router dead.

S4810
Syntax

ip ospf dead-interval seconds
To return to the default values, use the no ip ospf dead-interval command.

Parameters

seconds

Enter the number of seconds for the interval. The range is
from 1 to 65535. The default is 40 seconds.

Defaults

40 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

By default, the dead interval is four times the default hello-interval.

Related
Commands

ip ospf hello-interval — sets the time interval between the hello packets.

Open Shortest Path First (OSPFv2 and OSPFv3)

1171

ip ospf hello-interval
Specify the time interval between the hello packets sent on the interface.

S4810
Syntax

ip ospf hello-interval seconds
To return to the default value, use the no ip ospf hello-interval command.

Parameters

seconds

Enter the number of seconds for the interval. The range is
from 1 to 65535. The default is 10 seconds.

Defaults

10 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

The time interval between the hello packets must be the same for routers in a
network.

Related
Commands

ip ospf dead-interval — sets the time interval before a router is declared dead.

ip ospf message-digest-key
Enable OSPF MD5 authentication and send an OSPF message digest key on the interface.

S4810
Syntax

ip ospf message-digest-key keyid md5 key
To delete a key, use the no ip ospf message-digest-key keyid command.

1172

Open Shortest Path First (OSPFv2 and OSPFv3)

Parameters

keyid

Enter a number as the key ID. The range is from 1 to 255.

key

Enter a continuous character string as the password.

Defaults

No MD5 authentication is configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 9.1(0.0)

Included usage information on maximum number of digest
keys per interface.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

You can configure a maximum of six digest keys on an interface. Of the available
six digest keys, the switches select the MD5 key that is common. The remaining
MD5 keys are unused.
To change to a different key on the interface, enable the new key while the old key
is still enabled. Dell Networking OS sends two packets: the first packet
authenticated with the old key and the second packet authenticated with the new
key. This process ensures that the neighbors learn the new key and communication
is not disrupted by keeping the old key enabled.
After the reply is received and the new key is authenticated, delete the old key. Dell
recommends keeping only one key per interface.
NOTE: The MD5 secret is stored as plain text in the configuration file with
service password encryption. Write down or otherwise record the key. You
cannot learn the key once it is configured. Use caution when changing the
key.

Open Shortest Path First (OSPFv2 and OSPFv3)

1173

ip ospf mtu-ignore
Disable OSPF MTU mismatch detection upon receipt of database description (DBD) packets.

S4810
Syntax

ip ospf mtu-ignore
To return to the default, use the no ip ospf mtu-ignore command.

Defaults

Enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

ip ospf network
Set the network type for the interface.

S4810
Syntax

ip ospf network {broadcast | point-to-point}
To return to the default, use the no ip ospf network command.

Parameters

Defaults

1174

broadcast

Enter the keyword broadcast to designate the interface as
part of a broadcast network.

point-to-point

Enter the keywords point-to-point to designate the
interface as part of a point-to-point network.

Broadcast.

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

ip ospf priority
To determine the designated router for the OSPF network, set the priority of the interface.

S4810
Syntax

ip ospf priority number
To return to the default setting, use the no ip ospf priority command.

Parameters

number

Enter a number as the priority. The range is from 0 to 255.
The default is 1.

Defaults

1

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Open Shortest Path First (OSPFv2 and OSPFv3)

1175

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Setting a priority of 0 makes the router ineligible for election as a designated router
or backup designated router.
Use this command for interfaces connected to multi-access networks, not pointto-point networks.

ip ospf retransmit-interval
Set the retransmission time between lost link state advertisements (LSAs) for adjacencies belonging to the
interface.

S4810
Syntax

ip ospf retransmit-interval seconds
To return to the default values, use the no ip ospf retransmit-interval
command.

Parameters

seconds

Enter the number of seconds as the interval between
retransmission. The range is from 1 to 3600. The default is 5
seconds.
This interval must be greater than the expected round-trip
time for a packet to travel between two routers.

Defaults

5 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1176

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Set the time interval to a number large enough to prevent unnecessary
retransmissions. For example, the interval must be larger for interfaces connected
to virtual links.

ip ospf transmit-delay
To send a link state update packet on the interface, set the estimated time elapsed.

S4810
Syntax

ip ospf transmit-delay seconds
To return to the default value, use the no ip ospf transmit-delay command.

Parameters

seconds

Enter the number of seconds as the interval between
retransmission. The range is from 1 to 3600. The default is 1
second.
This value must be greater than the transmission and
propagation delays for the interface.

Defaults

1 second

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Open Shortest Path First (OSPFv2 and OSPFv3)

1177

log-adjacency-changes
To send a Syslog message about changes in the OSPF adjacency state, set Dell Networking OS.

S4810
Syntax

log-adjacency-changes
To disable the Syslog messages, use the no log-adjacency-changes
command.

Defaults

Disabled.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

maximum-paths
Enable the software to forward packets over multiple paths.

S4810
Syntax

maximum-paths number
To disable packet forwarding over multiple paths, use the no maximum-paths
command.

Parameters

1178

number

Specify the number of paths. The range for OSPFv2 is from 1
to 64. The default for OSPFv2 is 4 paths. The range for
OSPFv3 is from 1 to 64. The default for OSPFv3 is 8 paths.

Open Shortest Path First (OSPFv2 and OSPFv3)

Defaults

4

Command
Modes

ROUTER OSPF for OSPFv2

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

ROUTER OSPFv3 for OSPFv3

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.1(0.0)

Introduced support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

network area
Define which interfaces run OSPF and the OSPF area for those interfaces.

S4810
Syntax

network ip-address mask area area-id
To disable an OSPF area, use the no network ip-address mask area areaid command.

Parameters

ip-address

Specify a primary or secondary address in dotted decimal
format. The primary address is required before adding the
secondary address.

mask

Enter a network mask in /prefix format. (/x)

area-id

Enter the OSPF area ID as either a decimal value or in a valid
IP address. Decimal value range is from 0 to 65535. IP
address format is dotted decimal format A.B.C.D.
NOTE: If the area ID is smaller than 65535, it is converted
to a decimal value. For example, if you use an area ID of
0.0.0.1, it is converted to 1.

Open Shortest Path First (OSPFv2 and OSPFv3)

1179

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced to all platforms.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

To enable OSPF on an interface, the network area command must include, in its
range of addresses, the primary IP address of an interface.
NOTE: An interface can be attached only to a single OSPF area.
If you delete all the network area commands for Area 0, the show ip ospf
command output does not list Area 0.

passive-interface
Suppress both receiving and sending routing updates on an interface.

S4810
Syntax

passive-interface {default | interface}
To enable both the receiving and sending routing, use the no passiveinterface interface command.
To return all OSPF interfaces (current and future) to active, use the no passiveinterface default command.

Parameters

1180

default

Enter the keyword default to make all OSPF interfaces
(current and future) passive.

interface

Enter the following keywords and slot/port or number
information:

Open Shortest Path First (OSPFv2 and OSPFv3)

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Port Channel groups, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Modified to include the keyword default.

pre-Version
6.1.1.1

Introduced on the E-Series.

Although the passive interface does not send or receive routing updates, the
network on that interface is still included in OSPF updates sent using other
interfaces.
The default keyword sets all interfaces as passive. You can then configure
individual interfaces, where adjacencies are desired, using the no passiveinterface interface command. The no form of this command is inserted into
the configuration for individual interfaces when the no passive-interface
interface command is issued while passive-interface default is
configured.
This command behavior has changed as follows:
passive-interface interface

Open Shortest Path First (OSPFv2 and OSPFv3)

1181

•

The previous no passive-interface interface is removed from the
running configuration.

•

The ABR status for the router is updated.

•

Save passive-interface interface into the running configuration.

passive-interface default
•

All present and future OSPF interfaces are marked as passive.

•

Any adjacency is explicitly terminated from all OSPF interfaces.

•

All previous passive-interface interface commands are removed from
the running configuration.

•

All previous no passive-interface interface commands are removed
from the running configuration.

no passive-interface interface
•

Remove the interface from the passive list.

•

The ABR status for the router is updated.

•

If passive-interface default is specified, then save no passiveinterface interface into the running configuration.

No passive-interface default
•

Clear everything and revert to the default behavior.

•

All previously marked passive interfaces are removed.

•

May update ABR status.

On configuring suppression using the passive-interface command, the state of the
OSPF neighbor does not change to INIT; instead, the state of the OSPF neighbor
changes to DOWN after the dead-timer expires.

redistribute
Redistribute information from another routing protocol throughout the OSPF process.

S4810
Syntax

redistribute {connected | isis | ospf | rip | static} [metric
metric-value | metric-type type-value] [route-map map-name]
[tag tag-value]
To disable redistribution, use the no redistribute {connected | isis |
rip | static} command.

Parameters

1182

connected

Enter the keyword connected to specify that information
from active routes on interfaces is redistributed.

isis

Enter the keyword isis to specify that ISO IS-IS information is
redistributed.

ospf

Enter the keyword ospf to specify that information
corresponding to OSPF is redistributes.

Open Shortest Path First (OSPFv2 and OSPFv3)

rip

Enter the keyword rip to specify that RIP routing
information is redistributed.

static

Enter the keyword static to specify that information from
static routes is redistributed.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number. The
range is from 0 (zero) to 16777214.

metric-type
type-value

(OPTIONAL) Enter the keywords metric-type then one of
the following:
•

1 = OSPF External type 1

•

2 = OSPF External type 2

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of the route map.

tag tag-value

(OPTIONAL) Enter the keyword tag then a number. The
range is from 0 to 4294967295.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

To redistribute the default route (0.0.0.0/0), configure the default-information
originate command.
Despite removing an OSPF process globally, the OSPF process is not completely
removed from the BGP configuration.

Open Shortest Path First (OSPFv2 and OSPFv3)

1183

Related
Commands

default-information originate — generates a default route into the OSPF routing
domain.

redistribute bgp
Redistribute BGP routing information throughout the OSPF instance.

S4810
Syntax

redistribute bgp as number [metric metric-value] | [metric-type
type-value] | [tag tag-value]
To disable redistribution, use the no redistribute bgp as number [metric
metric-value] | [metric-type type-value] [route-map map-name]
[tag tag-value] command.

Parameters

as number

Enter the autonomous system number. The range is from 1
to 65535.

metric metricvalue

(OPTIONAL) Enter the keyword metric then the metricvalue number. The range is from 0 to16777214.

metric-type
type-value

(OPTIONAL) Enter the keywords metric-type then one of
the following:
•

1 = for OSPF External type 1

•

2 = for OSPF External type 2

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of the route map.

tag tag-value

(OPTIONAL) Enter the keyword tag to set the tag for routes
redistributed into OSPF. The range is from 0 to 4294967295.

Defaults

none

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1184

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.3

Added Route Map for BGP Redistribution to OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the keyword default.

pre-Version
6.1.1.1

Introduced on the E-Series.

redistribute isis
Redistribute IS-IS routing information throughout the OSPF instance.

S4810
Syntax

redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric
metric-value | metric-type type-value] [route-map map-name]
[tag tag-value]
To disable redistribution, use the no redistribute isis [tag] [level-1 |
level-1-2 | level-2] [metric metric-value | metric-type typevalue] [route-map map-name] [tag tag-value] command.

Parameters

Defaults

tag

(OPTIONAL) Enter the name of the IS-IS routing process.

level-1

(OPTIONAL) Enter the keywords level-1 to redistribute
only IS-IS Level-1 routes.

level-1-2

(OPTIONAL) Enter the keywords level-1-2 to redistribute
both IS-IS Level-1 and Level-2 routes.

level-2

(OPTIONAL) Enter the keywords level-2 to redistribute
only IS-IS Level-2 routes.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number. The
range is from 0 (zero) to 4294967295.

metric-type
type-value

(OPTIONAL) Enter the keywords metric-type then one of
the following:
•

1 = for OSPF External type 1

•

2 = for OSPF External type 2

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of the route map.

tag tag-value

(OPTIONAL) Enter the keyword tag to set the tag for routes
redistributed into OSPF. The range is from 0 to 4294967295.

Not configured.

Open Shortest Path First (OSPFv2 and OSPFv3)

1185

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

router-id
To configure a fixed router ID, use this command.

S4810
Syntax

router-id ip-address
To remove the fixed router ID, use the no router-id ip-address command.

Parameters

ip-address

Enter the router ID in the IP address format.

Defaults

none.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1186

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

You can configure an arbitrary value in the IP address format for each router.
However, each router ID must be unique. If you use this command on an OSPF
router process, which is already active (that is, has neighbors), a prompt reminding
you that changing the router-id brings down the existing OSPF adjacency. The new
router ID is effective at the next reload.

Example

Dell(conf)#router ospf 100
Dell(conf-router_ospf)#router-id 1.1.1.1
Changing router-id will bring down existing OSPF adjacency [y/
n]:
Dell(conf-router_ospf)#show config
!
router ospf 100
router-id 1.1.1.1
Dell(conf-router_ospf)#no router-id
Changing router-id will bring down existing OSPF adjacency [y/
n]:
Dell#

router ospf
To configure an OSPF instance, enter ROUTER OSPF mode.

S4810
Syntax

router ospf process-id [vrf {vrf name}]
To clear an OSPF instance, use the no router ospf process-id command.

Parameters

process-id

Enter a number for the OSPF instance. The range is from 1 to
65535.

vrf name

(Optional) Enter the VRF process identifier to tie the OSPF
instance to the VRF. All network commands under this OSPF
instance are then tied to the VRF instance.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1187

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.1(0.0)

Added support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.9.1.0

Added support for VRF.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

You must have an IP address assigned to an interface to enter ROUTER OSPF mode
and configure OSPF.
After the OSPF process and the VRF are tied together, you cannot use the OSPF
Process ID again in the system.

Example

Dell(conf)#router ospf 2
Dell(conf-router_ospf)#

show config
Display the non-default values in the current OSPF configuration.

S4810
Syntax

show config

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1188

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Open Shortest Path First (OSPFv2 and OSPFv3)

Example

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Dell(conf-router_ospf)#show config
!
router ospf 3
passive-interface FastEthernet 0/1
Dell(conf-router_ospf)#

show ip ospf
Display information on the OSPF process configured on the switch.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf name]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf name

Show only the OSPF information tied to the VRF process.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Added output for LSA throttling timers.

Version 8.3.7.0

Introduced on the S4810.

Version 7.9.1.0

Added support for VRF.

Version 7.8.1.0

Added support of Multi-Process OSPF.

Version 7.8.1.0

Added the process-id option, in support of Multi-Process
OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

1189

Usage
Information

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

If you delete all the network area commands for Area 0, the show ip ospf
command output does not list Area 0.
The following describes the show ip ospf command shown in the following
example.
Line Beginning
with

Description

“Routing
Process...”

Displays the OSPF process ID and the IP address associated
with the process ID.

“Supports only...”

Displays the number of Type of Service (TOS) rouse
supported.

“SPF schedule...”

Displays the delay and hold time configured for this process
ID.

“Convergence
Level”
“Min LSA....”

Displays the intervals set for LSA transmission and
acceptance.

“Number of...”

Displays the number and type of areas configured for this
process ID.

Example

Dell#show ip ospf 10
Routing Process ospf 10 with ID 1.1.1.1 Virtual router defaultvrf
Supports only single TOS (TOS0) routes
SPF schedule delay 5 secs, Hold time between two SPFs 10 secs
Convergence Level 0
Min LSA origination 0 msec, Min LSA arrival 1000 msec
Min LSA hold time 5000 msec, Max LSA wait time 5000 msec
Number of area in this router is 1, normal 1 stub 0 nssa 0
Area BACKBONE (0)
Number of interface in this area is 1
SPF algorithm executed 205 times
Area ranges are
Dell#

Related
Commands

show ip ospf database — displays information about the OSPF routes configured.
show ip ospf interface — displays the OSPF interfaces configured.
show ip ospf neighbor — displays the OSPF neighbors configured.

1190

Open Shortest Path First (OSPFv2 and OSPFv3)

show ip ospf asbr
Display all autonomous system boundary router (ASBR) routers visible to OSPF.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] asbr
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
show all ASBR routers visible to the OSPF process that is tied
to a specific VRF.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support of Multi-Process OSPF.

Version 7.8.1.0

Added the process-id option, in support of Multi-Process
OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

To isolate problems with external routes, use this command. In OSPF, external
routes are calculated by adding the LSA cost to the cost of reaching the ASBR
router. If an external route does not have the correct cost, use this command to
determine if the path to the originating router is correct. The display output is not
sorted in any order.
NOTE: ASBRs that are not in directly connected areas are also displayed.

Open Shortest Path First (OSPFv2 and OSPFv3)

1191

You can determine if an ASBR is in a directly connected area (or not) by the flags.
For ASBRs in a directly connected area, E flags are set. In the following example,
router 1.1.1.1 is in a directly connected area since the Flag is E/-/-/. For remote
ASBRs, the E flag is clear (-/-/-/).
Example

Dell#show ip ospf 1asbr
RouterID
3.3.3.3
1.1.1.1
Dell#

Flags
-/-/-/
E/-/-/

Cost Nexthop
2
10.0.0.2
0
0.0.0.0

Interface Area
Gi 0/1
1
0

show ip ospf database
Display all LSA information. If you do not enable OSPF on the switch, no output is generated.

S4810
Syntax
Parameters

show ip ospf process-id [vrf vrf-name] database [databasesummary]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to view
LSA information on OSPF processes corresponding to that
VRF.

databasesummary

(OPTIONAL) Enter the keywords database-summary to the
display the number of LSA types in each area and the total
number of LSAs.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1192

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

Example

Version 7.8.1.0

Added support of Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database command
shown in the following example.
Field

Description

Link ID

Identifies the router ID.

ADV Router

Identifies the advertising router’s ID.

Age

Displays the link state age.

Seq#

Identifies the link state sequence number. This number
allows you to identify old or duplicate link state
advertisements.

Checksum

Displays the Fletcher checksum of an LSA’s complete
contents.

Link count

Displays the number of interfaces for that router.

Dell>show ip ospf 1 database
OSPF Router with ID (11.1.2.1) (Process ID 1)
Router (Area 0.0.0.0)
Link ID
ADV Router
Age Seq#
Checksum
11.1.2.1
11.1.2.1
673 0x80000005 0x707e
13.1.1.1
13.1.1.1
676 0x80000097 0x1035
192.68.135.2 192.68.135.2 1419 0x80000294 0x9cbd
Link ID
10.2.3.2
10.2.4.2
Link ID
0.0.0.0
1.1.1.1
10.1.1.0
10.1.2.0
10.2.2.0
10.2.3.0
10.2.4.0
11.1.1.0
11.1.2.0
12.1.2.0
13.1.1.0
13.1.2.0
172.16.1.0
Dell>

Link count
2
2
1

Network (Area 0.0.0.0)
ADV Router
Age Seq#
Checksum
13.1.1.1
676 0x80000003 0x6592
192.68.135.2 908 0x80000055 0x683e
Type-5 AS External
ADV Router
Age Seq#
192.68.135.2 908 0x80000052
192.68.135.2 908 0x8000002a
11.1.2.1
718 0x80000002
11.1.2.1
718 0x80000002
11.1.2.1
718 0x80000002
11.1.2.1
718 0x80000002
13.1.1.1
1184 0x80000068
11.1.2.1
718 0x80000002
11.1.2.1
718 0x80000002
192.68.135.2 1663 0x80000054
13.1.1.1
1192 0x8000006b
13.1.1.1
1184 0x8000006b
13.1.1.1
148 0x8000006d

Open Shortest Path First (OSPFv2 and OSPFv3)

Checksum
0xeb83
0xbd27
0x9012
0x851c
0x7927
0x6e31
0x45db
0x831e
0x7828
0xd8d6
0x2718
0x1c22
0x533b

Tag
100
0
0
0
0
0
0
0
0
0
0
0
0

1193

Related
Commands

show ip ospf database asbr-summary — displays only ASBR summary LSA
information.

show ip ospf database asbr-summary
Display information about autonomous system (AS) boundary LSAs.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] database asbr-summary
[link-state-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view display information about AS boundary LSAs
corresponding to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1194

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

Example

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf database asbr-summary
command shown in the following example.
Field

Description

LS Age

Displays the LSA’s age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA’s type.

Link State ID

Displays the Link State ID.

Advertising Router

Identifies the advertising router’s ID.

Checksum

Displays the Fletcher checksum of the LSA’s complete
contents.

Length

Displays the length in bytes of the LSA.

Network Mask

Displays the network mask implemented on the area.

TOS

Displays the Type of Service (TOS) options. Option 0 is the
only option.

Metric

Displays the LSA metric.

Dell#show ip ospf 100 database asbr-summary
OSPF Router with ID (1.1.1.10) (Process ID 100)
Summary Asbr (Area 0.0.0.0)
LS age: 1437
Options: (No TOS-capability, No DC, E)
LS type: Summary Asbr
Link State ID: 103.1.50.1
Advertising Router: 1.1.1.10
LS Seq Number: 0x8000000f
Checksum: 0x8221
Length: 28

Open Shortest Path First (OSPFv2 and OSPFv3)

1195

Network Mask: /0
TOS: 0 Metric: 2
LS age: 473
Options: (No TOS-capability, No DC, E)
LS type: Summary Asbr
Link State ID: 104.1.50.1
Advertising Router: 1.1.1.10
LS Seq Number: 0x80000010
Checksum: 0x4198
Length: 28
--More-Related
Commands

show ip ospf database — displays OSPF database information.

show ip ospf database external
Display information on the AS external (type 5) LSAs.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] database external
[link-state-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view information on AS external LSAs corresponding to the
OSPF processes that are tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1196

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database external
command shown in the following example.
Field

Description

LS Age

Displays the LSA’s age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA’s type.

Link State ID

Displays the Link State ID.

Advertising Router

Identifies the router ID of the LSA’s originating router.

LS Seq Number

Identifies the link state sequence number. This number
enables you to identify old or duplicate LSAs.

Checksum

Displays the Fletcher checksum of the LSA’s complete
contents.

Length

Displays the length in bytes of the LSA.

Network Mask

Displays the network mask implemented on the area.

Metrics Type

Displays the external type.

TOS

Displays the Type of Service (TOS) options. Option 0 is the
only option.

Open Shortest Path First (OSPFv2 and OSPFv3)

1197

Example

Field

Description

Metric

Displays the LSA metric.

Forward Address

Identifies the address of the forwarding router. Data traffic is
forwarded to this router. If the forwarding address is 0.0.0.0,
data traffic is forwarded to the originating router.

External Route
Tag

Displays the 32-bit field attached to each external route.
The OSPF protocol does not use this field, but you can use
the field for external route management.

Dell#show ip ospf 1 database external
OSPF Router with ID (20.20.20.5) (Process ID 1)
Type-5 AS External
LS age: 612
Options: (No TOS-capability, No DC, E)
LS type: Type-5 AS External
Link State ID: 12.12.12.2
Advertising Router: 20.31.3.1
LS Seq Number: 0x80000007
Checksum: 0x4cde
Length: 36
Network Mask: /32
Metrics Type: 2
TOS: 0
Metrics: 25
Forward Address: 0.0.0.0
External Route Tag: 43
LS age: 1868
Options: (No TOS-capability, DC)
LS type: Type-5 AS External
Link State ID: 24.216.12.0
Advertising Router: 20.20.20.8
LS Seq Number: 0x80000005
Checksum: 0xa00e
Length: 36
Network Mask: /24
Metrics Type: 2
TOS: 0
Metrics: 1
Forward Address: 0.0.0.0
External Route Tag: 701
Dell#

Related
Commands

1198

show ip ospf database — displays OSPF database information.

Open Shortest Path First (OSPFv2 and OSPFv3)

show ip ospf database network
Display the network (type 2) LSA information.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] database network
[link-state-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view the network LSA information corresponding to an OSPF
process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

1199

Usage
Information

Example

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database network
command shown in the following example.
Field

Description

LS Age

Displays the LSA’s age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA’s type.

Link State ID

Displays the Link State ID.

Advertising Router

Identifies the router ID of the LSA’s originating router.

Checksum

Identifies the link state sequence number. This number
enables you to identify old or duplicate LSAs.

Length

Displays the Fletcher checksum of an LSA’s complete
contents.

Network Mask

Displays the length in bytes of the LSA.

Attached Router

Identifies the IP address of routers attached to the network.

Dell#show ip ospf 1 data network
OSPF Router with ID (20.20.20.5) (Process ID 1)
Network (Area 0.0.0.0)
LS age: 1372
Options: (No TOS-capability, DC, E)
LS type: Network
Link State ID: 202.10.10.2
Advertising Router: 20.20.20.8
LS Seq Number: 0x80000006
Checksum: 0xa35
Length: 36
Network Mask: /24
Attached Router: 20.20.20.8
Attached Router: 20.20.20.9
Attached Router: 20.20.20.7

1200

Open Shortest Path First (OSPFv2 and OSPFv3)

Network (Area 0.0.0.1)
LS age: 252
Options: (TOS-capability, No DC, E)
LS type: Network
Link State ID: 192.10.10.2
Advertising Router: 192.10.10.2
LS Seq Number: 0x80000007
Checksum: 0x4309
Length: 36
Network Mask: /24
Attached Router: 192.10.10.2
Attached Router: 20.20.20.1
Attached Router: 20.20.20.5
Dell#
Related
Commands

show ip ospf database — displays OSPF database information.

show ip ospf database nssa-external
Display NSSA-External (type 7) LSA information.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] database nssa-external
[link-state-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followeed by the name of the VRF to
view NSSA-External LSA information corresponding to the
OSPF process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

Command
Modes

•

EXEC

•

EXEC Privilege

Open Shortest Path First (OSPFv2 and OSPFv3)

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

1201

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show ip ospf database — displays OSPF database information.

show ip ospf database opaque-area
Display the opaque-area (type 10) LSA information.

S4810
Syntax
Parameters

1202

show ip ospf [process-id | vrf vrf-name] database opaque-area
[link-state-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view opaque-area LSA information corresponding to the
OSPF process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:
•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

Open Shortest Path First (OSPFv2 and OSPFv3)

adv-router ipaddress

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database opaquearea command shown in the following example.
Item

Description

LS Age

Displays the LSA’s age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA’s type.

Link State ID

Displays the Link State ID.

Open Shortest Path First (OSPFv2 and OSPFv3)

1203

Example

Item

Description

Advertising Router

Identifies the advertising router’s ID.

Checksum

Displays the Fletcher checksum of the LSA’s complete
contents.

Length

Displays the length in bytes of the LSA.

Opaque Type

Displays the Opaque type field (the first 8 bits of the Link
State ID).

Opaque ID

Displays the Opaque type-specific ID (the remaining 24 bits
of the Link State ID).

Dell>show ip ospf 1 database opaque-area
OSPF Router with ID (3.3.3.3) (Process ID 1)
Type-10 Opaque Link Area (Area 0)
LS age: 1133
Options: (No TOS-capability, No DC, E)
LS type: Type-10 Opaque Link Area
Link State ID: 1.0.0.1
Advertising Router: 10.16.1.160
LS Seq Number: 0x80000416
Checksum: 0x376
Length: 28
Opaque Type: 1
Opaque ID: 1
Unable to display opaque data
LS age: 833
Options: (No TOS-capability, No DC, E)
LS type: Type-10 Opaque Link Area
Link State ID: 1.0.0.2
Advertising Router: 10.16.1.160
LS Seq Number: 0x80000002
Checksum: 0x19c2
--More--

Related
Commands

show ip ospf database — displays OSPF database information.

show ip ospf database opaque-as
Display the opaque-as (type 11) LSA information.

Syntax
Parameters

1204

show ip ospf process-id database opaque-as [link-state-id]
[adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

Open Shortest Path First (OSPFv2 and OSPFv3)

link-state-id

adv-router ipaddress

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:
•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router and the ipaddress to display only the LSA information about that
router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show ip ospf database — displays OSPF database information.

show ip ospf database opaque-link
Display the opaque-link (type 9) LSA information.

S4810
Syntax

show ip ospf [process-id | vrf vrf-name] database opaque-link
[link-state-id] [adv-router ip-address]

Open Shortest Path First (OSPFv2 and OSPFv3)

1205

Parameters

process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view opaque-link LSA information corresponding to the
OSPF process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router then the IP
address of an Advertising Router to display only the LSA
information about that router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

1206

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show ip ospf database — displays OSPF database information.

Open Shortest Path First (OSPFv2 and OSPFv3)

show ip ospf database router
Display the router (type 1) LSA information.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] database router [linkstate-id] [adv-router ip-address]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view the router LSA information corresponding to the OSPF
process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router followed by
the IP address of an Advertising Router to display only the
LSA information about that router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added supported for VRF.

Version 9.0.20

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Open Shortest Path First (OSPFv2 and OSPFv3)

1207

Usage
Information

Example

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database router
command shown in the following example.
Item

Description

LS Age

Displays the LSA age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA type.

Link State ID

Displays the Link State ID.

Advertising Router

Identifies the router ID of the LSA’s originating router.

LS Seq Number

Displays the link state sequence number. This number
detects duplicate or old LSAs.

Checksum

Displays the Fletcher checksum of an LSA’s complete
contents.

Length

Displays the length in bytes of the LSA.

Number of Links

Displays the number of active links to the type of router
(Area Border Router or AS Boundary Router) listed in the
previous line.

Link connected
to:

Identifies the type of network to which the router is
connected.

(Link ID)

Identifies the link type and address.

(Link Data)

Identifies the router interface address.

Number of TOS
Metric

Lists the number of TOS metrics.

TOS 0 Metric

Lists the number of TOS 0 metrics.

Dell#show ip ospf 100 database router
OSPF Router with ID (1.1.1.10) (Process ID 100)

1208

Open Shortest Path First (OSPFv2 and OSPFv3)

Router (Area 0)
LS age: 967
Options: (No TOS-capability, No DC, E)
LS type: Router
Link State ID: 1.1.1.10
Advertising Router: 1.1.1.10
LS Seq Number: 0x8000012f
Checksum: 0x3357
Length: 144
AS Boundary Router
Area Border Router
Number of Links: 10
Link connected to: a Transit Network
(Link ID) Designated Router address: 192.68.129.1
(Link Data) Router Interface address: 192.68.129.1
Number of TOS metric: 0
TOS 0 Metric: 1
Link connected to: a Transit Network
(Link ID) Designated Router address: 192.68.130.1
(Link Data) Router Interface address: 192.68.130.1
Number of TOS metric: 0
TOS 0 Metric: 1
Link connected to: a Transit Network
(Link ID) Designated Router address: 192.68.142.2
(Link Data) Router Interface address: 192.68.142.2
Number of TOS metric: 0
TOS 0 Metric: 1
Link connected to: a Transit Network
(Link ID) Designated Router address: 192.68.141.2
(Link Data) Router Interface address: 192.68.141.2
Number of TOS metric: 0
TOS 0 Metric: 1
Link connected to: a Transit Network
(Link ID) Designated Router address: 192.68.140.2
(Link Data) Router Interface address: 192.68.140.2
Number of TOS metric: 0
TOS 0 Metric: 1
Link connected to: a Stub Network
(Link ID) Network/subnet number: 11.1.5.0
--More-Related
Commands

show ip ospf database — displays OSPF database information.

show ip ospf database summary
Display the network summary (type 3) LSA routing information.

S4810
Syntax

show ip ospf [process-id | vrf vrf-name] database summary
[link-state-id] [adv-router ip-address]

Open Shortest Path First (OSPFv2 and OSPFv3)

1209

Parameters

process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view LSA routing information corresponding to the OSPF
process that is tied to a specific VRF.

link-state-id

(OPTIONAL) Specify LSA ID in dotted decimal format. The
LSA ID value depends on the LSA type, and it can be one of
the following:

adv-router ipaddress

•

the network’s IP address for Type 3 LSAs or Type 5 LSAs

•

the router’s OSPF router ID for Type 1 LSAs or Type 4
LSAs

•

the default destination (0.0.0.0) for Type 5 LSAs

(OPTIONAL) Enter the keywords adv-router then the IP
address of an Advertising Router to display only the LSA
information about that router.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1210

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id database summary
command shown in the following example.

Open Shortest Path First (OSPFv2 and OSPFv3)

Example

Item

Description

LS Age

Displays the LSA age.

Options

Displays the optional capabilities available on router. The
following options can be found in this item:
•

TOS-capability or No TOS-capability is displayed
depending on whether the router can support Type of
Service.

•

DC or No DC is displayed depending on whether the
originating router can support OSPF over demand
circuits.

•

E or No E is displayed on whether the originating router
can accept AS External LSAs.

LS Type

Displays the LSA type.

Link State ID

Displays the Link State ID.

Advertising Router

Identifies the router ID of the LSA’s originating router.

LS Seq Number

Displays the link state sequence number. This number
allows you to identify old or duplicate LSAs.

Checksum

Displays the Fletcher checksum of an LSA’s complete
contents.

Length

Displays the length in bytes of the LSA.

Network Mask

Displays the network mask implemented on the area.

TOS

Displays the TOS options. Option 0 is the only option.

Metric

Displays the LSA metrics.

Dell#show ip ospf 100 database summary
OSPF Router with ID (1.1.1.10) (Process ID 100)
Summary Network (Area 0.0.0.0)
LS age: 1551
Options: (No TOS-capability, DC, E)
LS type: Summary Network
Link State ID: 192.68.16.0
Advertising Router: 192.168.17.1
LS Seq Number: 0x80000054
Checksum: 0xb5a2
Length: 28
Network Mask: /24
TOS: 0 Metric: 1
LS age: 9
Options: (No TOS-capability, No DC, E)
LS type: Summary Network
Link State ID: 192.68.32.0
Advertising Router: 1.1.1.10
LS Seq Number: 0x80000016
Checksum: 0x987c
Length: 28

Open Shortest Path First (OSPFv2 and OSPFv3)

1211

Network Mask: /24
TOS: 0 Metric: 1
LS age: 7
Options: (No TOS-capability, No DC, E)
LS type: Summary Network
Link State ID: 192.68.33.0
Advertising Router: 1.1.1.10
LS Seq Number: 0x80000016
Checksum: 0x1241
Length: 28
Network Mask: /26
TOS: 0 Metric: 1
Dell#
Related
Commands

show ip ospf database — displays OSPF database information.

show ip ospf interface
Display the OSPF interfaces configured. If OSPF is not enabled on the switch, no output is generated.

S4810
Syntax
Parameters

Command
Modes

1212

show ip ospf [process-id | vrf vrf-name] interface [interface]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
show the OSPF processes that are tied to a specific VRF.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:

•

•

For the null interface, enter the keyword null then zero
(0).

•

For loopback interfaces, enter the keyword loopback
then a number from 0 to 16383.

•

For tunnel interfaces, enter the keyword tunnel then a
number from 0 to 16383.

•

For Port Channel groups, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then the VLAN ID.
The range is from 1 to 4094.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

EXEC

Open Shortest Path First (OSPFv2 and OSPFv3)

•
Command
History

EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id interface command
shown in the following example.
Item

Description

GigabitEthernet...

This line identifies the interface type slot/port and the status
of the OSPF protocol on that interface.

Internet Address...

This line displays the IP address, network mask and area
assigned to this interface.

Process ID...

This line displays the OSPF Process ID, Router ID, Network
type and cost metric for this interface.

Transmit Delay...

This line displays the interface’s settings for Transmit Delay,
State, and Priority. In the State setting, BDR is Backup
Designated Router.

Designated
Router...

This line displays the ID of the Designated Router and its
interface address.

Backup
Designated...

This line displays the ID of the Backup Designated Router
and its interface address.

Timer intervals...

This line displays the interface’s timer settings for Hello
interval, Dead interval, Transmit Delay (Wait), and Retransmit
Interval.

Hello due...

This line displays the amount time until the next Hello
packet is sent out this interface.

Open Shortest Path First (OSPFv2 and OSPFv3)

1213

Example

Item

Description

Neighbor Count...

This line displays the number of neighbors and adjacent
neighbors. Listed below this line are the details about each
adjacent neighbor.

Dell>show ip ospf int
GigabitEthernet 13/17 is up, line protocol is up
Internet Address 192.168.1.2/30, Area 0.0.0.1
Process ID 1, Router ID 192.168.253.2, Network Type
BROADCAST, Cost: 1
Transmit Delay is 1 sec, State DR, Priority 1
Designated Router (ID) 192.168.253.2, Interface address
192.168.1.2
Backup Designated Router (ID) 192.168.253.1, Interface
address 192.168.1.1
Timer intervals configured, Hello 10, Dead 40, Wait 40,
Retransmit 5
Hello due in 00:00:02
Neighbor Count is 1, Adjacent neighbor count is 1
Adjacent with neighbor 192.168.253.1 (Backup Designated
Router)
GigabitEthernet 13/23 is up, line protocol is up
Internet Address 192.168.0.1/24, Area 0.0.0.1
Process ID 1, Router ID 192.168.253.2, Network Type
BROADCAST, Cost: 1
Transmit Delay is 1 sec, State DROTHER, Priority 1
Designated Router (ID) 192.168.253.5, Interface address
192.168.0.4
Backup Designated Router (ID) 192.168.253.3, Interface
address 192.168.0.2
Timer intervals configured, Hello 10, Dead 40, Wait 40,
Retransmit 5
Hello due in 00:00:08
Neighbor Count is 3, Adjacent neighbor count is 2
Adjacent with neighbor 192.168.253.5 (Designated Router)
Adjacent with neighbor 192.168.253.3 (Backup Designated
Router)
Loopback 0 is up, line protocol is up
Internet Address 192.168.253.2/32, Area 0.0.0.1
Process ID 1, Router ID 192.168.253.2, Network Type
LOOPBACK, Cost: 1
Loopback interface is treated as a stub Host.
Dell>

show ip ospf neighbor
Display the OSPF neighbors connected to the local router.

S4810
Syntax
Parameters

1214

show ip ospf [process-id | vrf vrf-name] neighbor
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

Open Shortest Path First (OSPFv2 and OSPFv3)

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
show information corresponding to the OSPF neighbors that
are tied to a specific VRF.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000..

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The following describes the show ip ospf process-id neighbor command
shown in the following example.
Item

Description

Neighbor ID

Displays the neighbor router ID.

Pri

Displays the priority assigned neighbor.

State

Displays the OSPF state of the neighbor.

Dead Time

Displays the expected time until FTOS declares the neighbor
dead.

Address

Displays the IP address of the neighbor.

Interface

Displays the interface type slot/port information.

Area

Displays the neighbor’s area (process ID).

Dell#show ip ospf 34 neighbor
Neighbor ID Pri State
20.20.20.7 1 FULL/DR
192.10.10.2 1 FULL/DR

Open Shortest Path First (OSPFv2 and OSPFv3)

Dead Time Address Interface Area
00:00:32 182.10.10.3 Gi 0/0 0.0.0.2
00:00:37 192.10.10.2 Gi 0/1 0.0.0.1

1215

20.20.20.1
Dell#

1 FULL/DROTHER00:00:36 192.10.10.4 Gi 0/1 0.0.0.1

show ip ospf routes
Display routes OSPF calculates and stores in OSPF RIB.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] routes
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
show the OSPF RIB information corresponding to the OSPF
processes that are tied to a specific VRF.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

This command is useful in isolating routing problems between the OSPF and the
RTM. For example, if a route is missing from the RTM/FIB but is visible from the
display output of this command, the problem is with downloading the route to the
RTM.
This command has the following limitations:

1216

Open Shortest Path First (OSPFv2 and OSPFv3)

•

The display output is sorted by prefixes; intra-area ECMP routes are not
displayed together.

•

For Type 2 external routes, Type 1 cost is not displayed.
NOTE: Starting with Version 9.4(0.0), the loopback IP address advertised to the
neighbor is not displayed in the output because they are not accounted as
inactive OSPF routes, whereas the loopback IP address is displayed until Dell
Networking OS Version 9.3(0.0). Starting with Version 9.4(0.0), the show ip
ospf routes command displays the interface and area ID information of
connected networks in addition to the other settings, whereas these details
are not displayed until Dell Networking OS Version 9.3(0.0). Starting with
Version 9.4(0.0), the metric of E2 routes in the output is displayed as an
external metric, whereas until Dell Networking OS Version 9.3(0.0), the
number of hops to the ASBR for E2 routes are displayed in the output.

Example

Dell#show ip ospf 100 route
Prefix
Cost Nexthop
1.1.1.1
1
0.0.0.0
3.3.3.3
2
13.0.0.3
13.0.0.0
1
0.0.0.0
150.150.150.0 2
13.0.0.3
172.30.1.0
2
13.0.0.3
Dell#

Interface
Lo 0
Gi 0/47
Gi 0/47
Gi 0/47
Gi 0/47

Area
0
1
0
1

Type
Intra-Area
Intra-Area
Intra-Area
External
Intra-Area

show ip ospf statistics
Display OSPF statistics.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] statistics global |
[interface name {neighbor router-id}]
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
display statistics corresponding to the OSPF process that is
tied to a specific VRF.

global

Enter the keyword global to display the packet counts
received on all running OSPF interfaces and packet counts
OSPF neighbors receive and transmit.

interface name

(OPTIONAL) Enter the keyword interface then one of the
following interface keywords and slot/port or number
information:
•

Open Shortest Path First (OSPFv2 and OSPFv3)

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

1217

neighbor
router-id

•

For Port Channel groups, enter the keywords portchannel then a number. For the C-Series and S-Series,
the range is from 1 to 128.

•

For a SONET interface, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword neighbor then the
neighbor’s router-id in dotted decimal format (A.B.C.D.).

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1218

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

The following describes the show ip ospf statistics process-id global
command shown in the following example.
Row Heading

Description

Total

Displays the total number of packets the OSPF process
receives/transmits.

Error

Displays the error count while receiving and transmitting
packets by the OSPF process.

Open Shortest Path First (OSPFv2 and OSPFv3)

Row Heading

Description

Hello

Number of OSPF Hello packets.

DDiscr

Number of database description packets.

LSReq

Number of link state request packets.

LSUpd

Number of link state update packets.

LSAck

Number of link state acknowledgement packets.

TxQ-Len

The transmission queue length.

RxQ-Len

The reception queue length.

Tx-Mark

The highest number mark in the transmission queue.

Rx-Mark

The highest number mark in the reception queue.

Hello-Q

The queue, for transmission or reception, for the hello
packets.

LSR-Q

The queue, for transmission or reception, for the link state
request packets.

Other-Q

The queue, for transmission or reception, for the link state
acknowledgement, database description, and update
packets.

The following describes the error definitions for the show ip ospf statistics
process-id global command.
Error Type

Description

Intf_Down

Received packets on an interface that is either down or
OSPF is not enabled.

Non-Dr

Received packets with a destination address of ALL_DRS
even though SELF is not a designated router.

Self-Org

Receive the self originated packet.

Wrong_Len

The received packet length is different to what was
indicated in the OSPF header.

Invld-Nbr

LSA, LSR, LSU, and DDB are received from a peer which is
not a neighbor peer.

Nbr-State

LSA, LSR, and LSU are received from a neighbor with stats
less than the loading state.

Auth-Error

Simple authentication error.

MD5-Error

MD5 error

Cksum-Err

Checksum Error

Version

Version mismatch

AreaMismatch

Area mismatch

Open Shortest Path First (OSPFv2 and OSPFv3)

1219

Example

Error Type

Description

Conf-Issue

The received hello packet has a different hello or dead
interval than the configuration.

No-Buffer

Buffer allocation failure.

Seq-no

A sequence no errors occurred during the database
exchange process.

Socket

Socket Read/Write operation error.

Q-overflow

Packets dropped due to queue overflow.

Unknown-Pkt

Received packet is not an OSPF packet.

Dell#show ip ospf 1 statistics global
OSPF Packet Count
Total Error Hello DDiscr LSReq LSUpd LSAck
RX 10
0
8
2
0
0
0
TX 10
0
10
0
0
0
0
OSPF Global Queue Length
TxQ-Len RxQ-Len
Hello-Q 0
0
LSR-Q
0
0
Other-Q 0
0

Tx-Mark
0
0
0

Rx-Mark
2
0
0

Error packets (Only for RX)
Intf-Down
Wrong-Len
Auth-Err
Version
No-Buffer
Q-OverFlow

0
0
0
0
0
0

Non-Dr
Invld-Nbr
MD5-Err
AreaMis
Seq-No
Unkown-Pkt

0
0
0
0
0
0

Self-Org 0
Nbr-State 0
Chksum 0
Conf-Issues 0
Socket 0

Error packets (Only for TX)
Socket Errors
Dell#
Usage
Information

Example
(Statistics)

1220

0

The show ip ospf process-id statistics command displays the error
packet count received on each interface as:
•

The hello-timer remaining value for each interface

•

The wait-timer remaining value for each interface

•

The grace-timer remaining value for each interface

•

The packet count received and transmitted for each neighbor

•

Dead timer remaining value for each neighbor

•

Transmit timer remaining value for each neighbor

•

The LSU Q length and its highest mark for each neighbor

•

The LSR Q length and its highest mark for each neighbor

Dell(conf-if-te-0/6)#do show ip ospf statistics
Interface TenGigabitEthernet 0/6
Error packets (Receive statistics)

Open Shortest Path First (OSPFv2 and OSPFv3)

Intf-Down 0 Non-Dr 0 Self-Org 0
Wrong-Len 0 Invld-Nbr 0 Nbr-State 0
Auth-Error 0 MD5-Error 0 Cksum-Err 0
Version 0 AreaMisMatch 0 Conf-Issue 0
SeqNo-Err 0 Unknown-Pkt 0 Bad-LsReq 0
RtidZero 0
Neighbor ID 4.4.4.4
Packet Statistics
Hello DDiscr LSReq LSUpd LSAck
RX 5 2 1 3 2
TX 6 5 1 3 3
Timers
Hello 0 Wait 0 Grace 0
Dead 39 Transmit 4
Queue Statistics
LSU-Q-Len 0 LSU-Q-Wmark 1
LSR-Q-Len 0 LSR-Q-Wmark 1
Dell(conf-if-te-0/6)#
Related
Commands

clear ip ospf statistics — clears the packet statistics in all interfaces and neighbors.

show ip ospf timers rate-limit
Show the LSA currently in the queue waiting for timers to expire.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] timers rate-limit
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
view LSAs corresponding to a specific VRF that are currently
in queue waiting for timers to expire.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Open Shortest Path First (OSPFv2 and OSPFv3)

1221

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

Dell#show ip ospf 10 timers rate-limit
List of LSAs in rate limit Queue
LSA id: 1.1.1.0 Type: 3 Adv Rtid: 3.3.3.3 Expiry time:
00:00:09.111
LSA id: 3.3.3.3 Type: 1 Adv Rtid: 3.3.3.3 Expiry time:
00:00:23.96
Dell#

show ip ospf topology
Display routers in directly connected areas.

S4810
Syntax
Parameters

show ip ospf [process-id | vrf vrf-name] topology
process-id

Enter the OSPF Process ID to show a specific process. If no
Process ID is entered, command applies only to the first
OSPF process.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF to
information on routers corresponding to a specific VRF that
are in directly connected areas.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1222

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series and E-Series.

Usage
Information

To isolate problems with inter-area and external routes, use this command. In
OSPF inter-area and external routes are calculated by adding LSA cost to the cost
of reaching the router. If an inter-area or external route is not of correct cost, the
display can determine if the path to the originating router is correct or not.

Example

Dell#show ip ospf 1 topology
Router ID
3.3.3.3
1.1.1.1
Dell#

Flags Cost
E/B/-/ 1
E/-/-/ 1

Nexthop
20.0.0.3
10.0.0.1

Interface Area
Gi 13/1
0
Gi 7/1
1

summary-address
To advertise one external route, set the OSPF ASBR.

S4810
Syntax

summary-address ip-address mask [not-advertise] [tag tag-value]
To disable summary address, use the no summary-address ip-address mask
command.

Parameters

ip-address

Specify the IP address in dotted decimal format of the
address to summarize.

mask

Specify the mask in dotted decimal format of the address to
summarize.

not-advertise

(OPTIONAL) Enter the keywords not-advertise to
suppress that match the network prefix/mask pair.

tag tag-value

(OPTIONAL) Enter the keyword tag then a value to match
on routes redistributed through a route map. The range is
from 0 to 4294967295.

Defaults

Not configured.

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Open Shortest Path First (OSPFv2 and OSPFv3)

Introduced on the S6000.

1223

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The area range command summarizes routes for the different areas.
With the not-advertise parameter configured, you can use this command to
filter out some external routes. For example, if you want to redistribute static routes
to OSPF, but you don't want OSPF to advertise routes with prefix 1.1.0.0, you can
configure the summary-address 1.1.0.0 255.255.0.0 not-advertise to filter out all
the routes fall in range 1.1.0.0/16.

Related
Commands

area range — summarizes routes within an area.

timers spf
Set the time interval between when the switch receives a topology change and starts a shortest path first
(SPF) calculation.

S4810
Syntax

timers spf delay holdtime
To return to the default, use the no timers spf command.

Parameters

Defaults

delay

Enter a number as the delay. The range is from 0 to
4294967295. The default is 5 seconds.

holdtime

Enter a number as the hold time. The range is from 0 to
4294967295. The default is 10 seconds.

•

delay = 5 seconds

•

holdtime = 10 seconds

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1224

Open Shortest Path First (OSPFv2 and OSPFv3)

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Setting the delay and holdtime parameters to a low number enables the switch to
an alternate path quickly but requires more CPU usage.

timers throttle lsa all
Configure LSA transmit intervals.

S4810
Syntax

timers throttle lsa all {start-interval | hold-interval | maxinterval}
To return to the default, use the no timers throttle lsa command.

Parameters

Defaults

Command
Modes

start-interval

Set the minimum interval between initial sending and
resending the same LSA. The range is from 0 to 600,000
milliseconds.

hold-interval

Set the next interval to send the same LSA. This interval is the
time between sending the same LSA after the start-interval
has been attempted. The range is from 1 to 600,000
milliseconds.

max-interval

Set the maximum amount of time the system waits before
sending the LSA. The range is from 1 to 600,000
milliseconds.

•

start-interval: 0 msec

•

hold-interval: 5000 msec

•

max-interval: 5000 msec

ROUTER OSPF

Open Shortest Path First (OSPFv2 and OSPFv3)

1225

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 9.0.2.0

Introduced on the S6000..

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

LSAs are sent after the start-interval and then after hold-interval until the maximum
interval is reached. In throttling, exponential backoff is used when sending same
LSA, so that the interval is multiplied until the maximum time is reached. For
example, if the start-interval 5000 and hold-interval 1000 and max-interval
100,000, the LSA is sent at 5000 msec, then 1000 msec, then 2000 msec, them
4000 until 100,000 msec is reached.

timers throttle lsa arrival
Configure the LSA acceptance intervals.

S4810
Syntax

timers throttle lsa arrival arrival-time
To return to the default, use the no timers throttle lsa command.

Parameters

arrival-time

Set the interval between receiving the same LSA repeatedly,
to allow sufficient time for the system to accept the LSA. The
range is from 0 to 600,000 milliseconds.

Defaults

1000 msec

Command
Modes

ROUTER OSPF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1226

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version 8.3.8.0

Introduced on the S4810.

OSPFv3 Commands
Open shortest path first version 3 (OSPFv3) for IPv6 is supported on the S4810 platform.
The fundamental mechanisms of OSPF (flooding, DR election, area support, SPF calculations, and so on)
remain unchanged. However, OSPFv3 runs on a per-link basis instead of on a per-IP-subnet basis. Most
changes were necessary to handle the increased address size of IPv6.
The Dell Networking implementation of OSPFv3 is based on IETF RFC 2740.

area authentication
Configure an IPsec authentication policy for OSPFv3 packets in an OFSPFv3 area.

S4810
Syntax
Parameters

area area-id authentication ipsec spi number {MD5 | SHA1} [keyencryption-type] key
area area-id

Area for which OSPFv3 traffic is to be authenticated. For
area-id, you can enter a number.
The range is from 0 to 4294967295.

ipsec spi
number

Security Policy index (SPI) value that identifies an IPsec
security policy.
The range is from 256 to 4294967295.

MD5 | SHA1

Authentication type: Message Digest 5 (MD5) or Secure Hash
Algorithm 1 (SHA-1).

keyencryptiontype

(OPTIONAL) Specifies if the key is encrypted.

key

Text string used in authentication.

The values are 0 (key is not encrypted) or 7 (key is
encrypted).

For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted).
For SHA-1 authentication, the key must be 40 hex digits
(non-encrypted) or 80 hex digits (encrypted).

Open Shortest Path First (OSPFv2 and OSPFv3)

1227

Defaults

Not configured.

Command
Modes

ROUTER OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Before you enable IPsec authentication on an OSPFv3 area, you must first enable
OSPFv3 globally on the router. Configure the same authentication policy (same SPI
and key) on each interface in an OSPFv3 link.
An SPI number must be unique to one IPsec security policy (authentication or
encryption) on the router.
If you have enabled IPsec encryption in an OSPFv3 area with the area
encryption command, you cannot use the area authentication command in
the area at the same time.
The configuration of IPsec authentication on an interface-level takes precedence
over an area-level configuration. If you remove an interface configuration, an area
authentication policy that has been configured is applied to the interface.
To remove an IPsec authentication policy from an OSPFv3 area, enter the no area
area-id authentication spi number command.

Related
Commands

ipv6 ospf authentication – configures an IPsec authentication policy on an OSPFv3
interface.
show crypto ipsec policy – displays the configuration of IPsec authentication
policies.

area encryption
Configure an IPsec encryption policy for OSPFv3 packets in an OSPFv3 area.

S4810
Syntax

1228

area area-id encryption ipsec spi number esp encryptionalgorithm [key-encryption-type] key authentication-algorithm
[key-encryption-type] key

Open Shortest Path First (OSPFv2 and OSPFv3)

Parameters

area area-id

Area for which OSPFv3 traffic is to be encrypted. For area-id,
enter a number.
The range is from 0 to 4294967295.

ipsec spi
number

Security Policy index (SPI) value that identifies an IPsec
security policy.
The range is from 256 to 4294967295.

esp
encryptionalgorithm

Encryption algorithm used with ESP.
Valid values are: 3DES, DES, AES-CBC, and NULL.
For AES-CBC, only the AES-128 and AES-192 ciphers are
supported.

keyencryptionalgorithm

(OPTIONAL) Specifies if the key is encrypted.

key

Text string used in encryption.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

The required lengths of a non-encrypted or encrypted key
are:
3DES - 48 or 96 hex digits; DES - 16 or 32 hex digits; AESCBC -32 or 64 hex digits for AES-128 and 48 or 96 hex digits
for AES-192.
authenticationalgorithm

Specifies the authentication algorithm to use for encryption.
Valid values are MD5 or SHA1.

keyencryptiontype

(OPTIONAL) Specifies if the authentication key is encrypted.

key

Text string used in authentication.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted).
For SHA-1 authentication, the key must be 40 hex digits
(non-encrypted) or 80 hex digits (encrypted).

Open Shortest Path First (OSPFv2 and OSPFv3)

1229

null

Causes an encryption policy configured for the area to not
be inherited on the interface.

Defaults

Not configured.

Command
Modes

ROUTER OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

Before you enable IPsec encryption on an OSPFv3 interface, first enable OSPFv3
globally on the router. Configure the same encryption policy (same SPI and keys)
on each interface in an OSPFv3 link.
An SPI value must be unique to one IPsec security policy (authentication or
encryption) on the router.
When you configure encryption for an OSPFv3 area with the area encryption
command, you enable both IPsec encryption and authentication. However, when
you enable authentication on an area with the area authentication command,
you do not enable encryption at the same time.
If you have enabled IPsec authentication in an OSPFv3 area with the area
authentication command, you cannot use the area encryption command in
the area at the same time.
The configuration of IPsec encryption on an interface-level takes precedence over
an area-level configuration. If you remove an interface configuration, an area
encryption policy that has been configured is applied to the interface.
To remove an IPsec encryption policy from an interface, enter the no area area-id
encryption spi number command.

Related
Commands

ipv6 ospf encryption – configures an IPsec encryption policy on an OSPFv3
interface.
show crypto ipsec policy – display the configuration of IPsec encryption policies.

1230

Open Shortest Path First (OSPFv2 and OSPFv3)

clear ipv6 ospf process
Reset an OSPFv3 router process without removing or re-configuring the process.

S4810
Syntax
Command
Modes
Command
History

clear ipv6 ospf process
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for C-Series.

Version 7.4.1.0

Introduced on the E-Series.

debug ipv6 ospf bfd
Display debug information and interface types for bidirectional forwarding detection (BFD) on OSPF IPv6
packets.

S4810
Syntax
Parameters

[no] debug ipv6 ospf bfd [interface]
interface

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a tunnel interface, enter the keyword tunnel then a
number. The range is from 1 to 16383.
For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

Open Shortest Path First (OSPFv2 and OSPFv3)

1231

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.
(0.0)

Usage
Information

Example

1232

Introduced on the S4820T, S4810, and Z9000.

The following section describes the command fields.
Lines Beginning
With or Including

Description

OSPFv3...

Debugging is on for all OSPFv3 packets and all interfaces.

05:21:01

Displays the time stamp.

Sending Ver:3

Sending OSPF3 version..

Dell(conf-if-te-0/2)#do debug ipv6 ospf bfd te 0/2
OSPFv3 bfd related debugging is on for TenGigabitEthernet 0/2
00:59:26 : OSPFv3INFO: Received Interface mode bfd config
command on interface Te 0/2 Enable 1, interval 0, min_rx 0,
Multiplier 0, role 0, Disable 0
00:59:26 : OSPFv3INFO: Enabling BFD on interface Te 0/2 Cmd
Add Session
00:59:27 : OSPFv3INFO: Enabling BFD for NBRIP
fe80:0000:0000:0000:0201:e8ff:fe8b:7720
00:59:27 : OSPFv3INFO: Completed Enabling BFD on interface Te
0/2
00:59:27 : OSPFv3INFO: Completed Interface mode BFD
configuration on Te 0/2!!
00:59:27 : OSPFv3INFO: Enabling BFD for NBRIP
fe80:0000:0000:0000:0201:e8ff:fe8b:7720
00:59:27 : OSPFv3INFO: Ospf3_register_bfd ospf key 27648
00:59:27 : OSPFv3INFO: OSPFV3 Enabling BFD for NBRIP
fe80:0000:0000:0000:0201:e8ff:fe8b:7720 Interface Te 0/2
IfIndex 34145282
00:59:27 : OSPFv3INFO: BFD parameters interval 100 min_rx 100
mult 3 role active
00:59:27 : OSPFv3INFO: BFD parameters interval 100 min_rx 100
mult 3 role active
00:59:27 : OSPFv3INFO: Completed Enabling BFD for NBRIP
fe80:0000:0000:0000:0201:e8ff:fe8b:7720
Aug 25 11:19:59: %STKUNIT0-M:CP %BFDMGR-1-BFD_STATE_CHANGE:
Changed session state to Init for neighbor fe80::201:e8ff:fe8b:
7720 on interface Te 0/2 (diag: NBR_DN)
Aug 25 11:20:00: %STKUNIT0-M:CP %BFDMGR-1-BFD_STATE_CHANGE:
Changed session state to Up for neighbor fe80::201:e8ff:fe8b:
7720 on interface Te 0/2 (diag: NO_DIAG)
00:59:45 : OSPFv3INFO: OSPFV3 got BFD msg
00:59:45 : OSPFv3INFO: Bfd Msg Type Up for interface Te 0/2
00:59:45 : OSPFv3INFO: OSPFV3 updating NBR state

Open Shortest Path First (OSPFv2 and OSPFv3)

debug ipv6 ospf packet
Display debug information and interface types on OSPF IPv6 packets.

S4810
Syntax
Parameters

debug ipv6 ospf {packet | events} [interface]
interface

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keyword portchannel then a number. The range is 1 to 128.

•

For a tunnel interface, enter the keyword tunnel then a
number. The range is 1 to 16383.
For a VLAN, enter the keyword vlan then a number from
1 to 4094.

•

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for C-Series.

Version 7.4.1.0

Introduced on E-Series.

Dell#debug ipv6 ospf packet
OSPFv3 packet related debugging is on for all interfaces
05:21:01 : OSPFv3: Sending, Ver:3, Type:1(Hello), Len:40,
Router
ID:223.255.255.254, Area ID:0, Inst:0, on Po 255
05:21:03 : OSPFv3: Received, Ver:3, Type:1(Hello), Len:40,
Router
ID:223.255.255.255, Area ID:0, Chksum:a177, Inst:0, from Vl 100
05:20:25 : OSPFv3: Sending, Ver:3, Type:4(LS Update), Len:580,
Router
ID:223.255.255.254, Area ID:0, Inst:0, on Vl 1000
07:21:40 : OSPFv3: Received, Ver:3, Type:1(Hello), Len:40,

Open Shortest Path First (OSPFv2 and OSPFv3)

1233

Router ID:223.255.255.254, Area ID:0, Chksum:af8f, Inst:0,
from Te 0/36
Dell#
Command
Fields

Lines Beginning
With or Including

Description

OSPFv3...

Debugging is on for all OSPFv3 packets and all interfaces.

05:21:01

Displays the time stamp.

Sending Ver:3

Sending OSPF3 version..

type:

Displays the type of packet sent:
•

1 - Hello packet

•

2 - database description

•

3 - link state request

•

4 - link state update

•

5 - link state acknowledgement

•

7 - external LSA

•

8 - link-state advertisement (OSPFv3)

•

9 - link local LSA (OSPFv2), Intra-Area-Prefix LSA
(OSPFv3)

•

11 - grace LSA (OSPFv3)

Length:

Displays the packet length.

Router ID:

Displays the OSPF3 router ID.

Area ID:

Displays the Area ID.

Chksum:

Displays the OSPF3 checksum.

default-information originate
Configure the Dell Networking OS to generate a default external route into an OSPFv3 routing domain.

S4810
Syntax

default-information originate [always] [metric metric-value]
[metric-type type-value] [route-map map-name]
To return to the default values, use the no default-information originate
command.

Parameters

1234

always

(OPTIONAL) Enter the keyword always to specify that
default route information must always be advertised.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number to
configure a metric value for the route. The range is from 1 to
16777214.

Open Shortest Path First (OSPFv2 and OSPFv3)

metric-type
type-value

route-map
map-name

(OPTIONAL) Enter the keywords metric-type then an
OSPFv3 link state type of 1 or 2 for default routes. The values
are:
•

1 = Type 1 external route

•

2 = Type 2 external route

(OPTIONAL) Enter the keywords route-map then the name
of an established route map.

Defaults

Disabled.

Command
Modes

ROUTER OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for C-Series.

Version 7.4.1.0

Introduced on the E-Series.

redistribute — redistributes routes from other routing protocols into OSPFv3.

graceful-restart grace-period
Enable OSPFv3 graceful restart globally by setting the grace period (in seconds) that an OSPFv3 router’s
neighbors continues to advertise the router as adjacent during a graceful restart.

S4810
Syntax

graceful-restart grace-period seconds
To disable OSPFv3 graceful restart, enter no graceful-restart graceperiod.

Parameters

Defaults

seconds

Time duration, in seconds, that specifies the duration of the
restart process before OSPFv3 terminates the process. The
range is from 40 to 1800 seconds.

OSPFv3 graceful restart is disabled and functions in a helper-only role.

Open Shortest Path First (OSPFv2 and OSPFv3)

1235

Command
Modes

ROUTER OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.2

Introduced on the E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

By default, OSPFv3 graceful restart is disabled and functions only in a helper role to
help restarting neighbor routers in their graceful restarts when it receives a Grace
LSA.
To enable OSPFv3 graceful restart, enter the ipv6 router ospf command to enter
OSPFv3 configuration mode and then configure a grace period using the gracefulrestart grace-period command. The grace period is the length of time that OSPFv3
neighbors continue to advertise the restarting router as though it is fully adjacent.
When graceful restart is enabled (restarting role), an OSPFv3 restarting expects its
OSPFv3 neighbors to help when it restarts by not advertising the broken link.
When you enable the helper-reject role on an interface with the ipv6 ospf gracefulrestart helper-reject command, you reconfigure OSPFv3 graceful restart to
function in a “restarting-only” role. In a “restarting-only” role, OSPFv3 does not
participate in the graceful restart of a neighbor.

graceful-restart mode
Specify the type of events that trigger an OSPFv3 graceful restart.

S4810
Syntax

graceful-restart mode {planned-only | unplanned-only}
To disable graceful restart mode, enter no graceful-restart mode.

Parameters

Defaults

1236

planned-only

(OPTIONAL) Enter the keywords planned-only to indicate
graceful restart is supported in a planned restart condition
only.

unplannedonly

(OPTIONAL) Enter the keywords unplanned-only to
indicate graceful restart is supported in an unplanned restart
condition only.

OSPFv3 graceful restart supports both planned and unplanned failures.

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
Modes

ROUTER OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.2

Introduced on the E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

OSPFv3 graceful restart supports planned-only and/or unplanned-only restarts.
The default is support for both planned and unplanned restarts.
•

A planned restart occurs when you enter the redundancy force-failover
rpm command to force the primary RPM to switch to the backup RPM. During a
planned restart, OSPF sends out a Type-11 Grace LSA before the system
switches over to the backup RPM.

•

An unplanned restart occurs when an unplanned event causes the active RPM
to switch to the backup RPM, such as when an active process crashes, the
active RPM is removed, or a power failure happens. During an unplanned
restart, OSPF sends out a Grace LSA when the backup RPM comes online.

By default, both planned and unplanned restarts trigger an OSPFv3 graceful restart.
Selecting one or the other mode restricts OSPFv3 to the single selected mode.

ipv6 ospf area
Enable IPv6 OSPF on an interface.

S4810
Syntax

ipv6 ospf process id areaarea id
To disable OSPFv6 routing for an interface, use the no ipv6 ospf process-id
area area-id command.

Parameters

process-id

Enter the process identification number.

area area-id

Specify the OSPF area. The range is from 0 to 65535.

Defaults

none

Command
Modes

INTERFACE

Open Shortest Path First (OSPFv2 and OSPFv3)

1237

Command
History

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.4.1.0

Introduced on the E-Series and C-Series.

ipv6 ospf authentication
Configure an IPsec authentication policy for OSPFv3 packets on an IPv6 interface.

S4810
Syntax
Parameters

ipv6 ospf authentication {null | ipsec spi number {MD5 | SHA1}
[key-encryption-type] key}}
null

Causes an authentication policy configured for the area to
not be inherited on the interface.

ipsec spi
number

Security Policy index (SPI) value that identifies an IPsec
security policy. The range is from 256 to 4294967295.

MD5 | SHA1

Authentication type: Message Digest 5 (MD5) or Secure Hash
Algorithm 1 (SHA-1).

keyencryptiontype

(OPTIONAL) Specifies if the key is encrypted.

key

Text string used in authentication.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted).
For SHA-1 authentication, the key must be 40 hex digits
(non-encrypted) or 80 hex digits (encrypted).

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

1238

Introduced on S4810 and Z9000.

Open Shortest Path First (OSPFv2 and OSPFv3)

Usage
Information

Version 8.4.2.0

Introduced on the E-Series.

Version
8.3.19.0

Introduced on the S4820T.

Before you enable IPsec authentication on an OSPFv3 interface, first enable IPv6
unicast routing globally, configure an IPv6 address and enable OSPFv3 on the
interface, and assign the interface to an area.
An SPI value must be unique to one IPsec security policy (authentication or
encryption) on the router. Configure the same authentication policy (same SPI and
key) on each OSPFv3 interface in a link.
To remove an IPsec authentication policy from an interface, enter the no ipv6 ospf
authentication spi number command. To remove null authentication on an
interface to allow the interface to inherit the authentication policy configured for
the OSPFv3 area, enter the no ipv6 ospf authentication null command.

Related
Commands

area authentication – configures an IPsec authentication policy for an OSPFv3
area.
show crypto ipsec policy – displays the configuration of IPsec authentication
policies.
show crypto ipsec sa ipv6 – displays the security associations set up for OSPFv3
interfaces in authentication policies.

ipv6 ospf bfd all-neighbors
Establish BFD sessions with all OSPFv3 neighbors on a single interface or use non-default BFD session
parameters.

S4810
Syntax

ipv6 ospf bfd all-neighbors [disable | [interval interval
min_rx min_rx multiplier value role {active | passive}]]
To disable all BFD sessions on an OSPFv3 interface implicitly, use the no ipv6
ospf bfd all-neighbors disable command in interface mode..

Parameters

disable

(OPTIONAL) Enter the keyword disable to disable BFD on
this interface.

interval
milliseconds

(OPTIONAL) Enter the keyword interval to specify nondefault BFD session parameters beginning with the
transmission interval. The range is from 50 to 1000. The
default is 100.

min_rx
milliseconds

Enter the keywords min_rx to specify the minimum rate at
which the local system receives control packets from the

Open Shortest Path First (OSPFv2 and OSPFv3)

1239

remote system. The range is from 50 to 100. The default is
100.
multiplier value

Enter the keyword multiplier to specify the number of
packets that must be missed in order to declare a session
down. The range is from 3 to 50. The default is 3.

role [active |
passive]

Enter the role that the local system assumes:
•

Active — The active system initiates the BFD session.
Both systems can be active for the same session.

•

Passive — The passive system does not initiate a
session. It only responds to a request for session
initialization from the active system.

The default is Active.

Defaults

See Parameters

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2.0.0

Usage
Information

Introduced on the Z9000, S4820T, and S4810.

This command provides the flexibility to fine-tune the timer values based on
individual interface needs when you configure ipv6 ospf BFD in CONFIGURATION
mode. Any timer values specified with this command overrides timers set using the
bfd all-neighbors command. Using the no form of this command does not
disable BFD if you configure BFD in CONFIGURATION mode.
To disable BFD on a specific interface while you configure BFD in
CONFIGURATION mode, use the keyword disable.

ipv6 ospf cost
Explicitly specify the cost of sending a packet on an interface.

S4810
Syntax
Parameters

Defaults

1240

ipv6 ospf interface-cost
interface-cost

Enter a unsigned integer value expressed as the link-state
metric. The range is from 1 to 65535.

Default cost based on the bandwidth.

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 7.8.1.0

Added support for C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Version
8.3.19.0

Introduced on the S4820T.

In general, the path cost is calculated as:
10^8 / bandwidth
Using this formula, the default path cost is calculated as:
•

GigabitEthernet—Default cost is 1

•

TenGigabitEthernet—Default cost is 1

•

FortygigEthernet — Default cost is 1

•

Ethernet—Default cost is 10

ipv6 ospf dead-interval
Set the time interval since the last hello-packet was received from a router. After the time interval elapses,
the neighboring routers declare the router down.

S4810
Syntax

ipv6 ospf dead-interval seconds
To return to the default time interval, use the no ipv6 ospf dead-interval
command.

Parameters

seconds

Enter the time interval in seconds. The range is from 1 to
65535 seconds.

Defaults

40 seconds (Ethernet).

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

Open Shortest Path First (OSPFv2 and OSPFv3)

1241

The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 7.8.1.0

Added support for C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Version
8.3.19.0

Introduced on the S4820T.

Usage
Information

By default, the dead interval is four times longer than the default hello-interval.

Related
Commands

ipv6 ospf hello-interval – specifies the time interval between hello packets.

ipv6 ospf encryption
Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface.

S4810
Syntax

Parameters

ipv6 ospf encryption {null | ipsec spi number esp encryptionalgorithm [key-encryption-type] key athentication-algorithm
[key-encryption-type] key}}
null

Causes an encryption policy configured for the area to not
be inherited on the interface.

ipsec spi
number

Security Policy index (SPI) value that identifies an IPsec
security policy. The range is from 256 to 4294967295.

esp
encryptionalgorithm

Encryption algorithm used with ESP.
Valid values are: 3DES, DES, AES-CBC, and NULL.
For AES-CBC, only the AES-128 and AES-192 ciphers are
supported.

keyencryptiontype

(OPTIONAL) Specifies if the key is encrypted.

key

Text string used in authentication.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

The required lengths of a non-encrypted or encrypted key
are:

1242

Open Shortest Path First (OSPFv2 and OSPFv3)

3DES - 48 or 96 hex digits; DES - 16 or 32 hex digits; AESCBC -32 or 64 hex digits for AES-128 and 48 or 96 hex digits
for AES-192.
authenticationalgorithm

Specifies the authentication algorithm to use for encryption.
Valid values are MD5 or SHA1.

keyencryptiontype

(OPTIONAL) Specifies if the authentication key is encrypted.

key

Text string used in authentication.

Valid values: 0 (key is not encrypted) or 7 (key is encrypted).

For MD5 authentication, the key must be 32 hex digits (nonencrypted) or 64 hex digits (encrypted).
For SHA-1 authentication, the key must be 40 hex digits
(non-encrypted) or 80 hex digits (encrypted).

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

Before you enable IPsec encryption on an OSPFv3 interface, first enable IPv6
unicast routing globally, configure an IPv6 address and enable OSPFv3 on the
interface, and assign the interface to an area.
An SPI value must be unique to one IPsec security policy (authentication or
encryption) on the router. Configure the same encryption policy (same SPI and key)
on each OSPFv3 interface in a link.
To remove an IPsec encryption policy from an interface, enter the no ipv6 ospf
encryption spi number command. To remove null authentication on an
interface to allow the interface to inherit the authentication policy configured for
the OSPFv3 area, enter the no ipv6 ospf no ipv6 ospf encryption null
command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1243

Related
Commands

area encryption – configures an IPsec encryption policy for an OSPFv3 area.
show crypto ipsec policy – displays the configuration of IPsec encryption policies.
show crypto ipsec sa ipv6 – displays the security associations set up for OSPFv3
interfaces in encryption policies.

ipv6 ospf graceful-restart helper-reject
Configure an OSPFv3 interface to not act upon the Grace LSAs that it receives from a restarting OSPFv3
neighbor.

S4810
Syntax

ipv6 ospf graceful-restart helper-reject
To disable the helper-reject role, enter no ipv6 ospf graceful-restart
helper-reject.

Defaults

The helper-reject role is not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.2

Introduced on E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

By default, OSPFv3 graceful restart is disabled and functions only in a helper role to
help restarting neighbor routers in their graceful restarts when it receives a Grace
LSA.
When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs
that it receives from a restarting OSPFv3 neighbor.
The graceful-restart role command is not supported in OSPFv3. When you enable
the helper-reject role on an interface, you reconfigure an OSPFv3 router to
function in a “restarting-only” role.

1244

Open Shortest Path First (OSPFv2 and OSPFv3)

ipv6 ospf hello-interval
Specify the time interval between the hello packets sent on the interface.

S4810
Syntax

ipv6 ospf hello—interval seconds
To return to the default time interval, enter no ipv6 ospf hello—interval.

Parameters

seconds

Enter the time interval in seconds as the time between hello
packets. The range is from 1 to 65525 seconds.

Defaults

10 seconds (Ethernet).

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Version
8.3.19.0

Introduced on the S4820T.

Usage
Information

The time interval between hello packets must be the same for routers in a network.

Related
Commands

ipv6 ospf dead-interval – specifies the time interval between hello packets was
received from a router.

ipv6 ospf priority
To determine the Designated Router for the OSPFv3 network, set the priority of the interface.

S4810
Syntax

ipv6 ospf priority number
To return to the default time interval, use the no ipv6 ospf priority
command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1245

Parameters

number

Defaults

1

Command
Modes

INTERFACE

Command
History

Usage
Information

Enter the number as the priority. The range is from 1 to 255.

Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Setting a priority of 0 makes the router ineligible for election as a Designated
Router or Backup Designated Router.
Use this command for interfaces connected to multi-access networks, not pointto-point networks.

ipv6 router ospf
Enable OSPF for IPv6 router configuration.

S4810
Syntax

ipv6 router ospf process-id
To exit OSPF for IPv6, use the no ipv6 router ospf process-id command.

Parameters

process-id

Enter the process identification number. The range is from 1
to 65535.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

1246

Introduced on the S4810 and Z9000.

Open Shortest Path First (OSPFv2 and OSPFv3)

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

maximum-paths
Enable the software to forward packets over multiple paths.

S4810
Syntax

maximum-paths number
To disable packet forwarding over multiple paths, use the no maximum-paths
command.

Parameters

number

Defaults

8

Command
Modes

ROUTER OSPF

Command
History

Specify the number of paths. The range is from 1 to 64. The
default is 8 paths.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Added support for Multi-Process OSPF.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

passive-interface
Disable (suppress) sending routing updates on an interface.

S4810
Syntax

passive—interface interface
To enable sending routing updates on an interface, use the no passiveinterface interface command.

Open Shortest Path First (OSPFv2 and OSPFv3)

1247

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Enabled, that is sending of routing updates are enabled by default.

Command
Modes

ROUTER OSPF for OSPFv2
ROUTER OSPFv3 for OSPFv3

Command
History

Usage
Information

Version 9.1.
(0.0)

Introduced support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

By default, no interfaces are passive. Routing updates are sent to all interfaces on
which the routing protocol is enabled.
If you disable the sending of routing updates on an interface, the particular address
prefix continues to be advertised to other interfaces, and updates from other
routers on that interface continue to be received and processed.
OSPFv3 for IPv6 routing information is not sent or received through the specified
router interface. The specified interface address appears as a stub network in the
OSPFv3 for IPv6 domain.
On configuring suppression using the passive-interface command, the state of the
OSPF neighbor does not change to INIT; instead, the state of the OSPF neighbor
changes to DOWN after the dead-timer expires.

1248

Open Shortest Path First (OSPFv2 and OSPFv3)

redistribute
Redistribute into OSPFv3.

S4810
Syntax

redistribute {bgp as number}{connected | static}[metric metricvalue | metric-type type-value] [route-map map-name] [tag tagvalue]
To disable redistribution, use the no redistribute {connected | static}
command.

Parameters

bgp as number

Enter the keyword bgp then the autonomous system
number.
The range is from 1 to 65535.

connected

Enter the keyword connected to redistribute routes from
physically connected interfaces.

static

Enter the keyword static to redistribute manually
configured routes.

metric metricvalue

Enter the keyword metric then the metric value.
The range is from 0 to 16777214.
The default is 20.

metric-type
type-value

(OPTIONAL) Enter the keywords metric-type then the
OSPFv3 link state type of 1 or 2 for default routes. The values
are:
•

1 for a type 1 external route

•

2 for a type 2 external route

The default is 2.
route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of an established route map. If the route map is not
configured, the default is deny (to drop all routes).

tag tag-value

(OPTIONAL) Enter the keyword tag to set the tag for routes
redistributed into OSPFv3.
The range is from 0 to 4294967295

Open Shortest Path First (OSPFv2 and OSPFv3)

1249

The default is 0.

Defaults

Not configured.

Command
Modes

ROUTER OSPF for OSPFv2
ROUTER OSPFv3 for OSPFv3

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

To redistribute the default route (x:x:x:x::x), use the default-information
originate command.

Related
Commands

default-information originate – configures default external route into OSPFv3.

router-id
Designate a fixed router ID.

S4810
Syntax

router-id ip-address
To return to the previous router ID, use the no router-id ip-address
command.

Parameters

ip-address

Enter the router ID in the dotted decimal format.

Defaults

The router ID is selected automatically from the set of IPv4 addresses configured
on a router.

Command
Modes

ROUTER OSPF for OSPFv2
ROUTER OSPFv3 for OSPFv3

1250

Open Shortest Path First (OSPFv2 and OSPFv3)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.1.
(0.0)

Introduced support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

You can configure an arbitrary value in the IP address for each router. However,
each router ID must be unique.
If this command is used on an OSPFv3 process that is already active (has
neighbors), all the neighbor adjacencies are brought down immediately and new
sessions are initiated with the new router ID.

Related
Commands

clear ipv6 ospf process – resets an OSPFv3 router process.

show crypto ipsec policy
Display the configuration of IPsec authentication and encryption policies.

S4810
Syntax
Parameters

show crypto ipsec policy [name name]
name name

(OPTIONAL) Displays configuration details about a specified
policy.

Defaults

No default behavior or values.

Command
Modes

EXEC
EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Open Shortest Path First (OSPFv2 and OSPFv3)

1251

Version
8.3.19.0
Usage
Information

Introduced on the S4820T.

The show crypto ipsec policy command output displays the AH and ESP
parameters configured in IPsec security policies, including the SPI number, keys,
and algorithms used.
When configured in a helper-reject role, an OSPFv3 router ignores the Grace LSAs
that it receives from a restarting OSPFv3 neighbor.

Related
Commands

show crypto ipsec sa ipv6– displays the IPsec security associations used on
OSPFv3 interfaces.

Example

Dell#show crypto ipsec policy
Crypto IPSec client security policy data
Policy name : OSPFv3-1-502
Policy refcount : 1
Inbound ESP SPI : 502 (0x1F6)
Outbound ESP SPI : 502 (0x1F6)
Inbound ESP Auth Key : 123456789a123456789b123456789c12
Outbound ESP Auth Key : 123456789a123456789b123456789c12
Inbound ESP Cipher Key :
123456789a123456789b123456789c123456789d12345678
Outbound ESP Cipher Key :
123456789a123456789b123456789c123456789d12345678
Transform set : esp-3des esp-md5-hmac
Crypto IPSec client security policy data
Policy name : OSPFv3-0-501
Policy refcount : 1
Inbound ESP SPI : 501 (0x1F5)
Outbound ESP SPI : 501 (0x1F5)
Inbound ESP Auth Key :
bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba8ed8bb5efe91e97
eb7c0
c30808825fb5
Outbound ESP Auth Key :
bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba8ed8bb5efe91e97
eb7c0
c30808825fb5
Inbound ESP Cipher Key :
bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8
a
Outbound ESP Cipher Key :
bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8
a
Transform set : esp-128-aes esp-sha1-hmac

1252

Open Shortest Path First (OSPFv2 and OSPFv3)

show crypto ipsec policy Command Fields
Field

Description

Policy name

Displays the name of an IPsec policy.

Policy refcount

Number of interfaces on the router that use the
policy.

Inbound ESP SPI

The encapsulating security payload (ESP) security
policy index (SPI) for inbound and outbound links.

Outbound ESP SPI
Inbound ESP Auth Key

The ESP authentication key for inbound and
outbound links.

Outbound ESP Auth Key
Inbound ESP Cipher Key

The ESP encryption key for inbound and outbound
links.

Outbound ESP Cipher Key
Transform set

The set of security protocols and algorithms used
in the policy.

Inbound AH SPI

The authentication header (AH) security policy
index (SPI) for inbound and outbound links.

Outbound AH SPI
Inbound AH Key

The AH key for inbound and outbound links.

Outbound AH Key

show crypto ipsec sa ipv6
Display the IPsec security associations (SAs) used on OSPFv3 interfaces.

S4810
Syntax
Parameters

show crypto ipsec sa ipv6 [interface interface]
interface
interface

(OPTIONAL) Displays information about the SAs used on a
specified OSPFv3 interface, where interface is one of the
following values:
•
•
•
•
•

Open Shortest Path First (OSPFv2 and OSPFv3)

For a 1-Gigabit Ethernet interface, enter
GigabitEthernet slot/port.
For a Port Channel interface, enter port-channel
number.
For a 10-Gigabit Ethernet interface, enter
TenGigabitEthernet slot/port.
For a 40–Gigabit Ethernet interface, enter fortyGigE
slot/port.
For a VLAN interface, enter vlan vlan-id. The valid
VLAN IDs range is from 1 to 4094.

1253

Defaults

No default behavior or values.

Command
Modes

EXEC
EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.1.
(0.0)

Introduced on the S4810 and Z9000.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version
8.3.19.0

Introduced on the S4820T.

Usage
Information

The show crypto ipsec sa ipv6 command output displays security
associations set up for OSPFv3 links in IPsec authentication and encryption policies
on the router.

Related
Commands

show crypto ipsec policy – displays the configuration of IPsec authentication and
encryption policies.

Example
Dell#show crypto ipsec policy
Dell#show crypto ipsec sa ipv6
Interface: TenGigabitEthernet 0/0
Link Local address: fe80::201:e8ff:fe40:4d10
IPSecv6 policy name: OSPFv3-1-500
inbound ah sas
spi : 500 (0x1f4)
transform : ah-md5-hmac
in use settings : {Transport, }
replay detection support : N
STATUS : ACTIVE
outbound ah sas
spi : 500 (0x1f4)
transform : ah-md5-hmac
in use settings : {Transport, }
replay detection support : N
STATUS : ACTIVE
inbound esp sas
outbound esp sas
Interface: TenGigabitEthernet 0/1
Link Local address: fe80::201:e8ff:fe40:4d11
IPSecv6 policy name: OSPFv3-1-600

1254

Open Shortest Path First (OSPFv2 and OSPFv3)

inbound ah sas
outbound ah sas
inbound esp sas
spi : 600 (0x258)
transform : esp-des esp-sha1-hmac
in use settings : {Transport, }
replay detection support : N
STATUS : ACTIVE
outbound esp sas
spi : 600 (0x258)
transform : esp-des esp-sha1-hmac
in use settings : {Transport, }
replay detection support : N
STATUS : ACTIVE

show crypto ipsec sa ipv6 Command Fields
Field

Description

Interface

IPv6 interface

Link local address

IPv6 address of interface

IPSecv6 policy name

Name of the IPsec security policy applied to the
interface.

inbound/outbound ah

Authentication policy applied to inbound or
outbound traffic.

inbound/outbound esp

Encryption policy applied to inbound or outbound
traffic.

spi

Security policy index number used to identify the
policy.

transform

Security algorithm that is used to provide
authentication, integrity, and confidentiality.

in use settings

Transform that the SA uses (only transport mode is
supported).

replay detection support

Y: An SA has enabled the replay detection feature.
N: The replay detection feature is not enabled.

STATUS

Open Shortest Path First (OSPFv2 and OSPFv3)

ACTIVE: The authentication or encryption policy is
enabled on the interface.

1255

show ipv6 ospf database
Display information in the OSPFv3 database, including link-state advertisements (LSAs).

S4810
Syntax
Parameters

show ipv6 ospf database [database-summary | grace-lsa]
databasesummary

(OPTIONAL) Enter the keywords database-summary to
view a summary of database LSA information.

grace-lsa

(OPTIONAL): Enter the keywords grace-lsa to display the
Type-11 Grace LSAs sent and received on an OSPFv3 router.

Defaults

none

Command
Modes

EXEC
EXEC Privilege

Command
History

Version 9.1.
(0.0)

Added support for OSPFv3 on the S4810 and Z9000.

Version 8.4.2.2

Added support for the display of graceful restart parameters
and Type-11 Grace LSAs on E-Series TeraScale routers.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for C-Series.

Usage
Information

The show crypto ipsec sa ipv6 command output displays security
associations set up for OSPFv3 links in IPsec authentication and encryption policies
on the router.

Related
Commands

show crypto ipsec policy – displays the configuration of IPsec authentication and
encryption policies.

Example
(grace-lsa)

Dell#show ipv6 ospf database grace-lsa
!
Type-11 Grace LSA (Area 0)
LS Age : 10
Link State ID : 6.16.192.66
Advertising Router : 100.1.1.1
LS Seq Number : 0x80000001
Checksum : 0x1DF1
Length : 36
Associated Interface : Gi 5/3
Restart Interval : 180
Restart Reason : Switch to Redundant Processor

1256

Open Shortest Path First (OSPFv2 and OSPFv3)

Example
(databasesummary)

Dell#show ipv6 ospf database database-summary
OSPFv3 Router with ID (1.1.1.1) (Process ID 1)
Process 1 database summary
Type
Count/Status
Oper Status
1
Admin Status
1
Area Bdr Rtr Status
1
AS Bdr Rtr Status
1
AS Scope LSA Count
0
AS Scope LSA Cksum sum
0
Originate New LSAS
50
Rx New LSAS
22
Ext LSA Count
0
Rte Max Eq Cost Paths
10
GR grace-period
180
GR mode
planned and unplanned
Area 0 database summary
Type
Count/Status
Brd Rtr Count
1
AS Bdr Rtr Count
1
LSA count
6
Rtr LSA Count
2
Net LSA Count
1
Inter Area Pfx LSA Count 1
Inter Area Rtr LSA Count
0
Group Mem LSA Count
0
Type-7 LSA count
0
Intra Area Pfx LSA Count
2
Intra Area TE LSA Count
2
Area 1 database summary
Type
Count/Status
Brd Rtr Count
1
AS Bdr Rtr Count
1
LSA count
8
Rtr LSA Count
1
Net LSA Count
0
Inter Area Pfx LSA Count
5
Inter Area Rtr LSA Count
0
Group Mem LSA Count
0
Type-7 LSA count
0
Intra Area Pfx LSA Count
2
Intra Area TE LSA Count
2
E1200-T2C2#sh ipv6 ospf neighbor
Neighbor ID
ID
Interface
63.114.8.36

Pri
1

State
FULL/DR

Dead Time
00:00:37

Interface
4 Gi 9/0

show ipv6 ospf interface
View OSPFv3 interface information.

S4810
Syntax

show ipv6 ospf [interface]

Open Shortest Path First (OSPFv2 and OSPFv3)

1257

Parameters

interface

Defaults

none

Command
Modes

EXEC

Command
History

Usage
Information

(OPTIONAL) Enter one of the following keywords and slot/
port or number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet and the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet and the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE and the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel and a number. The range is from 1 to 128.

•

For a Tunnel interface, enter the keywords tunnel and a
number. The range is from 1 to 16383.

•

For a VLAN, enter the keyword vlan and a number from
1 to 4094.

Version 9.2.
(0.0)

Added support for showing BFD status on the S4820T,
S4810, and Z9000.

Version 9.1.
(0.0)

Added support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

If you enable BFD at the global level, show ipv6 ospf interface shows the BFD
provisioning.
If you enable BFD at the interface level, show ipv6 ospf interface shows the BFD
interval timers.

Example

Dell#show ipv6 ospf interface gigabitethernet 1/0
GigabitEthernet 1/0 is up, line protocol is up
Link Local Address fe80::201:e8ff:fe17:5bbd, Interface ID
67420217
Area 0, Process ID 1, Instance ID 0, Router ID 11.1.1.1
NetworkType BROADCAST, Cost: 1, Passive: No
Transmit Delay is 100 sec, State DR, Priority 1
Interface is using OSPF global mode BFD configuration.
Designated router on this network is 11.1.1.1 (local)
No backup designated router on this network
Timer intervals configured, Hello 10, Dead 40, Wait 1,
Retransmit 5

1258

Open Shortest Path First (OSPFv2 and OSPFv3)

Dell#

show ipv6 ospf neighbor
Display the OSPF neighbor information on a per-interface basis.

S4810
Syntax
Parameters

show ipv6 ospf neighbor [interface]
interface

Defaults

none

Command
Modes

EXEC

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. For the C-Series, Z-Series, and
S4810, the range is 1 to 128.

•

For a VLAN, enter the keyword vlan then the VLAN ID.
The range is 1 to 4094.

EXEC Privilege
Command
History

Example

Version 9.1.
(0.0)

Introduced support for OSPFv3 on the S4810 and Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 7.8.1.0

Added support for the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell#show ipv6 ospf neighbor gi 9/0
Neighbor ID
Interface
63.114.8.36
9/0

Pri
1

State
FULL/DR

Dead Time
00:00:38

Interface
4

ID
Gi

Dell#

Open Shortest Path First (OSPFv2 and OSPFv3)

1259

41

Policy-based Routing (PBR)

Policy-based routing (PBR) allows you to apply routing policies to specific interfaces. To enable PBR,
create a redirect list and apply it to the interface. After the redirect list is applied to the interface, all traffic
passing through the interface is subject to the rules defined in the redirect list. PBR is supported by the
Dell Networking Operating System (OS).
The commands in this chapter are supported on the S4810 platform.
You can apply PBR to physical interfaces and logical interfaces (such as a link aggregation group [LAG] or
virtual local area network [VLAN]). Trace lists and redirect lists do not function correctly when you
configure both in the same configuration.
NOTE: Apply PBR to Layer 3 interfaces only.

description
Add a description to this redirect list.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Defaults

none

Command
Modes

REDIRECT-LIST

Command
History

1260

Enter a description to identify the IP redirect list (80
characters maximum).

Version 9.4.0.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

pre-Version
7.7.1.0

Introduced on the E-Series ExaScale.

Policy-based Routing (PBR)

Related
Commands

ip redirect-list – enables an IP Redirect List.

ip redirect-group
Apply a redirect list (policy-based routing) on an interface. You can apply multiple redirect lists to an
interface by entering this command multiple times.

S4810
Syntax

ip redirect-group redirect-list-name
To remove a redirect list from an interface, use the no ip redirect-group
name command.

Parameters

redirect-listname

Enter the name of a configured redirect list.

Defaults

none

Command
Modes

INTERFACE (conf-if-vl-)

Command
History

Usage
Information

Version 9.4.0.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 7.4.2.0

Added support for LAG and VLAN interfaces.

pre-Version
7.7.1.0

Introduced on the E-Series ExaScale.

You can apply any number of redirect-groups to an interface. A redirect list can
contain any number of configured rules. These rules includes the next-hop IP
address where the incoming traffic is to be redirected.
If the next hop address is reachable, traffic is forwarded to the specified next hop.
Otherwise, the normal routing table is used to forward traffic. When a redirectgroup is applied to an interface and the next-hop is reachable, the rules are added
into the PBR CAM region. When incoming traffic hits an entry in the CAM, the
traffic is redirected to the corresponding next-hop IP address specified in the rule.
NOTE: Apply the redirect list to physical, VLAN, or LAG interfaces only.

Related
Commands

•

Policy-based Routing (PBR)

show cam pbr – displays the content of the PBR CAM.

1261

•

show ip redirect-list – displays the redirect-list configuration.

ip redirect-list
Configure a redirect list and enter REDIRECT-LIST mode.

S4810
Syntax

ip redirect-list redirect-list-name
To remove a redirect list, use the no ip redirect-list command.

Parameters

redirect-listname

Defaults

none

Command
Modes

CONFIGURATION

Command
History

Enter the name of a redirect list.

Version 9.4.0.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 6.5.3.0

Introduced on the E-Series ExaScale.

permit
Configure a rule for the redirect list.

S4810
Syntax

permit {ip-protocol-number | protocol-type} {source mask | any
| host ip-address} {destination mask | any | host ip-address}
[bit] [operators]
To remove the rule, use one of the following:

1262

•

If you know the filter sequence number, use the no seq sequence-number
syntax command.

•

You can also use the no permit {ip-protocol-number | protocoltype} {source mask | any | host ip-address} {destination
mask | any | host ip-address} [bit] [operators] command.

Policy-based Routing (PBR)

Parameters

ip-protocolnumber

Enter a number from 0 to 255 for the protocol identified in
the IP protocol header.

protocol-type

Enter one of the following keywords as the protocol type:
icmp for internet control message protocol

•

ip for any internet protocol

•

tcp for transmission control protocol

•

udp for user datagram protocol

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x).

any

Enter the keyword any to specify that all traffic is subject to
the filter.

host ip-address

Enter the keyword host then he IP address to specify a host
IP address.

destination

Enter the IP address of the network or host to which the
packets are sent.

bit

(OPTIONAL) For the TCP protocol type only, enter one or a
combination of the following TCP flags:

operator

Defaults

none

Command
Modes

REDIRECT-LIST

Command
History

•

Version 9.4.0.0

Policy-based Routing (PBR)

•

ack = acknowledgement

•

fin = finish (no more data from the user)

•

psh = push function

•

rst = reset the connection

•

syn = synchronize sequence number

•

urg = urgent field

(OPTIONAL) For TCP and UDP parameters only. Enter one of
the following logical operand:
•

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt= less than

•

range = inclusive range of ports (you must specify two
ports for the portcommand parameter.)

Introduced on the S4810.

1263

Version 8.4.2.1

Introduced on the C-Series and S-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

Version 7.5.1.0

Introduced on the E-Series ExaScale.

redirect
Configure a rule for the redirect list.

S4810
Syntax

redirect {ip-address | slot/port} {ip-protocol-number |
protocol-type [bit]} {source mask | any | host ip-address}
{destination mask | any | host ip-address} [operator]
To remove this filter, use one of the following:

Parameters

•

Use the no seq sequence-number command if you know the filter’s
sequence number.

•

You can also use the no redirect {ip-address | slot/port} {ipprotocol-number [bit] | protocol-type} {source mask | any |
host ip-address} {destination mask | any | host ip-address}
[operator] command.

ip-address

Enter the IP address of the forwarding router.

slot/port

Enter the keyword slot / port followed by the slot/port
information.

ip-protocolnumber

Enter a number from 0 to 255 for the protocol identified in
the IP protocol header.

protocol-type

Enter one of the following keywords as the protocol type:

bit

•

icmp for internet control message protocol

•

ip for any internet protocol

•

tcp for transmission control protocol

•

udp for user datagram protocol

(OPTIONAL) For the TCP protocol type only, enter one or a
combination of the following TCP flags:
•

1264

ack = acknowledgement

•

fin = finish (no more data from the user)

•

psh = push function

•

rst = reset the connection

•

syn = synchronize sequence number

•

urg = urgent field

Policy-based Routing (PBR)

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x).

any

Enter the keyword any to specify that all traffic is subject to
the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

destination

Enter the IP address of the network or host to which the
packets are sent.

operator

(OPTIONAL) For TCP and UDP parameters only. Enter one of
the following logical operand:
•

Defaults

none

Command
Modes

REDIRECT-LIST

Command
History

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt = less than

•

range = inclusive range of ports (you must specify two
ports for theport command parameter.)

Version 9.4.0.0

Introduced on the S4810.

Version 8.4.2.1

Introduced on the C-Series.

Version 8.4.2.0

Introduced on the E-Series TeraScale.

seq
Configure a filter with an assigned sequence number for the redirect list.

S4810
Syntax

seq sequence-number {permit | redirect {ip-address}} {ipprotocol-number | protocol-type} {source mask | any | host ipaddress} {destination mask | any | host ip-address} [bit]
[operator]{source-port source-port| source-port-range startport - end-port} {destination-port destination-port|
destination-port-range start-port - end-port}
To delete a filter, use the no seq sequence-number command.

Policy-based Routing (PBR)

1265

Parameters

sequencenumber

Enter a number from 1 to 65535.

permit

Enter the keyword permit assign the sequence to the
permit list.

redirect

Enter the keyword redirect to assign the sequence to the
redirect list.

ip-address

Enter the IP address of the forwarding router.

ip-protocolnumber

Enter the keyword ip-protocol-number then the number
from 0 to 255 for the protocol identified in the IP protocol
header.

protocol-type

Enter one of the following keywords as the protocol type:
•

icmp for internet control message protocol

•

ip for any internet protocol

•

tcp for transmission control protocol

•

udp for user datagram protocol

source

Enter the IP address of the network or host from which the
packets were sent.

mask

Enter a network mask in /prefix format (/x).

any

Enter the keyword any to specify that all traffic is subject to
the filter.

host ip-address

Enter the keyword host then the IP address to specify a host
IP address.

destination

Enter the IP address of the network or host to which the
packets are sent.

bit

(OPTIONAL) For the TCP protocol type only, enter one or a
combination of the following TCP flags:
•

operator

1266

ack = acknowledgement

•

fin = finish (no more data from the user)

•

psh = push function

•

rst = reset the connection

•

syn = synchronize sequence number

•

urg = urgent field

(OPTIONAL) For the TCP and UDP parameters only. Enter
one of the following logical operand:
•

eq = equal to

•

neq = not equal to

•

gt = greater than

•

lt= less than

Policy-based Routing (PBR)

•

source port

Enter the keywords source-port then the port number to
be matched in the ACL rule in the ICAP rule

destinationport

Enter the keywords destination-port then the port
number to be matched in the ACL rule in the ICAP rule.

source-portrange

Enter the keywords Source-port-range then the range of
the start port to end port to be matched in the ACL rule in
the ICAP rule.

destinationport-range

Enter the keywords destination-port-range then the
range of the start port to end port to be matched in the ACL
rule in the ICAP rule.

Defaults

none

Command
Modes

REDIRECT-LIST

Command
History

range = inclusive range of ports (you must specify two
ports for the port command parameter.)

Version 9.4.0.0

Introduced on the S4810.

show cam pbr
Display the PBR CAM content.

S4810
Syntax
Parameters

show cam pbr {[interface interface] | stack—unit slot-number
port-set number]} [summary]
interface
interface

Enter the keyword interface then the name of the
interface.

stack–unit
number

Enter the keyword stack-unit then the slot number. The
range is from 0 to 11 .

port-set
number

Enter the keywords port-set then the port-pipe number.
The range is from 0 to 1.

summary

Enter the keyword summary to view only the total number of
CAM entries.

Defaults

none

Command
Modes

EXEC

Policy-based Routing (PBR)

1267

Command
History

Version 9.4.
(0.0)

Added support for removing SONET interface on the S6000,
S4810, S4820T and Z9000 platforms.

Version 7.4.1.0

Introduced.

Usage
Information

The show cam pbr command displays the PBR CAM content.

Example

Dell#show cam pbr st 0 po0
TCP Flag: Bit 5 - URG, Bit 4 - ACK, Bit 3 - PSH, Bit 2 - RST,
Bit 1 - SYN, Bit 0 - FIN
Cam
Port VlanID Proto Tcp
Src
Dst
SrcIp
DstIp
Next-hop
Egress
Index Flag Port Port
MAC
Port
--------------------------------------------------------------------------------------------------------------------00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:00:ab:9c:ed Vl 1001(0/2)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:24 Vl 1002(0/2)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:25 Vl 1003(0/2)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:26 Vl 1004(0/2)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:00:78:58:11 Vl 1005(0/3)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:27 Vl 1006(0/3)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:28 Vl 1007(0/3)
00000 1
100
IP
0x0
0
0
0.0.0.0/0
0.0.0.0/0
00:00:04:b7:14:29 Vl 1008(0/3)
Dell#

Related
Commands

•

ip redirect-group – applies a redirect group to an interface.

•

show ip redirect-list – displays the redirect-list configuration.

show ip redirect-list
View the redirect list configuration and the interfaces it is applied to.

S4810
Syntax
Parameters

1268

show ip redirect-list redirect-list-name
redirect-listname

Enter the name of a configured Redirect list.

Policy-based Routing (PBR)

Command
Modes

Command
History

Example

•

EXEC

•

EXEC Privilege

Version 9.4.
(0.0)

Added support for removing SONET interface on the S6000,
S4810, S4820T and Z9000 platforms.

Dell#show ip redirect-list
IP redirect-list ecmp:
Defined as:
seq 5 redirect 100.1.1.1 ip any any,
Vl 1001), ARP resolved
,
Vl 1002), ARP resolved
,
Vl 1003), ARP resolved
,
Vl 1004), ARP resolved
,
Vl 1005), ARP resolved
,
Vl 1006), ARP resolved
,
Vl 1007), ARP resolved
,
Vl 1008), ARP resolved
Applied interfaces:
Vl 100
Dell#

Policy-based Routing (PBR)

Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via
Next-hop reachable (via

1269

PIM-Sparse Mode (PIM-SM)

42

The protocol-independent multicast (PIM) commands are supported by the Dell Networking operating
software on the S4810 platform.

IPv4 PIM-Sparse Mode Commands
The following describes the IPv4 PIM-sparse mode (PIM-SM) commands.

clear ip pim rp-mapping
The bootstrap router (BSR) feature uses this command to remove all or particular rendezvous point (RP)
advertisement.

S4810
Syntax
Parameters

clear ip pim rp-mapping rp-address
rp-address

(OPTIONAL) Enter the RP address in dotted decimal format
(A.B.C.D).

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1270

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

PIM-Sparse Mode (PIM-SM)

clear ip pim tib
Clear PIM tree information from the PIM database.

S4810
Syntax
Parameters

clear ip pim tib [group]
group

(OPTIONAL) Enter the multicast group address in dotted
decimal format (A.B.C.D).

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

If you use this command on a local VLT node, all multicast routes from the local
PIM TIB, the entire multicast route table, and all the entries in the data plane are
deleted. The local VLT node sends a request to the peer VLT node to download
multicast routes learned by the peer. Both local and synced routes are removed
from the local VLT node multicast route table. The peer VLT node clears synced
routes from the node.
If you use this command on a peer VLT node, only the synced routes are deleted
from the multicast route table.

debug ip pim
View IP PIM debugging messages.

S4810
Syntax

debug ip pim [bsr | events | group | packet [in | out] |
register | state | timer [assert | hello | joinprune |
register]]

PIM-Sparse Mode (PIM-SM)

1271

To disable PIM debugging, use the no debug ip pim command or use the
undebug all to disable all debugging command.
Parameters

bsr

(OPTIONAL) Enter the keyword bsr to view PIM Candidate
RP/BSR activities.

events

(OPTIONAL) Enter the keyword group to view PIM messages
for a specific group.

group

(OPTIONAL) Enter the keyword group to view PIM messages
for a specific group.

packet [in | out]

(OPTIONAL) Enter the keyword packet to view PIM packets.
Enter one of the optional parameters:
•

in: to view incoming packets

•

out: to view outgoing packets

register

(OPTIONAL) Enter the keyword register to view PIM
register address in dotted decimal format (A.B.C.D).

state

(OPTIONAL) Enter the keyword state to view PIM state
changes.

timer [assert |
hello |
joinprune |
register]

(OPTIONAL) Enter the keyword timer to view PIM timers.
Enter one of the optional parameters:
•

assert: to view the assertion timer

•

hello: to view the PIM neighbor keepalive timer

•

joinprune: to view the expiry timer (join/prune timer)

•

register: to view the register suppression timer

Defaults

Disabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1272

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

PIM-Sparse Mode (PIM-SM)

Version 7.8.1.0

Introduced on the S-Series.

ip pim bsr-border
Define the border of PIM domain by filtering inbound and outbound PIM-BSR messages per interface.

S4810
Syntax

ip pim bsr-border
To return to the default value, use the no ip pim bsr-border command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

This command is applied to the subsequent PIM-BSR. Existing BSR advertisements
are cleaned up by time-out. To clean the candidate RP advertisements, use the
clear ip pim rp-mapping command.

ip pim bsr-candidate
To join the Bootstrap election process, configure the PIM router.

S4810
Syntax

ip pim bsr-candidate interface [hash-mask-length] [priority]
To return to the default value, use the no ip pim bsr-candidate command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

PIM-Sparse Mode (PIM-SM)

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

1273

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

hash-masklength

(OPTIONAL) Enter the hash mask length. The range is from
zero (0) to 32. The default is 30.

priority

(OPTIONAL) Enter the priority used in Bootstrap election
process. The range is from zero (0) to 255. The default is
zero (0).

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 6.1.1.0

Added support for the VLAN interface.

ip pim dr-priority
Change the designated router (DR) priority for the interface.

S4810
Syntax

ip pim dr-priority priority-value
To remove the DR priority value assigned, use the no ip pim dr-priority
command.

Parameters

Defaults

1274

priority-value

Enter a number. Preference is given to larger/higher number.
The range is from 0 to 4294967294. The default is 1.

1

PIM-Sparse Mode (PIM-SM)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series on port-channels and the SSeries.

The router with the largest value assigned to an interface becomes the designated
router. If two interfaces contain the same designated router priority value, the
interface with the largest interface IP address becomes the designated router.

ip pim join-filter
Permit or deny PIM Join/Prune messages on an interface using an extended IP access list. This command
prevents the PIM-SM router from creating state based on multicast source and/or group.

S4810
Syntax

ip pim join-filter ext-access-list {in | out}
To remove the access list, use the no ip pim join-filter ext-access-list
{in | out} command.

Parameters

ext-access-list

Enter the name of an extended access list.

in

Enter this keyword to apply the access list to inbound traffic.

out

Enter this keyword to apply the access list to outbound
traffic.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

PIM-Sparse Mode (PIM-SM)

1275

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series for the port-channels and the SSeries.

Version 7.7.1.0

Introduced on the E-Series.

Example

Dell(conf)# ip access-list extended iptv-channels
Dell(config-ext-nacl)# permit ip 10.1.2.3/24 225.1.1.0/24
Dell(config-ext-nacl)# permit ip any 232.1.1.0/24
Dell(config-ext-nacl)# permit ip 100.1.1.0/16 any
Dell(config-if-gi-1/1)# ip pim join-filter iptv-channels in
Dell(config-if-gi-1/1)# ip pim join-filter iptv-channels out

Related
Commands

ip access-list extended — configure an access list based on IP addresses or
protocols.

ip pim ingress-interface-map
When the Dell Networking system is the RP, statically map potential incoming interfaces to (*,G) entries
to create a lossless multicast forwarding environment.

S4810
Syntax
Parameters

ip pim ingress-interface-map std-access-list
std-access-list

Enter the name of a standard access list.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1276

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.0

Introduced

PIM-Sparse Mode (PIM-SM)

Example

Dell(conf)# ip access-list standard map1
Dell(config-std-nacl)# permit 224.0.0.1/24
Dell(config-std-nacl)#exit
Dell(conf)#int gig 1/1
Dell(config-if-gi-1/1)# ip pim ingress-interface-map map1

ip pim neighbor-filter
To prevent a router from participating in protocol independent multicast (PIM), configure this feature.

S4810
Syntax

ip pim neighbor-filter {access-list}
To remove the restriction, use the no ip pim neighbor-filter {accesslist} command.

Parameters

access-list

Enter the name of a standard access list. Maximum 16
characters.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.6.1.0

Introduced on the E-Series.

Do not enter this command before creating the access-list.

PIM-Sparse Mode (PIM-SM)

1277

ip pim query-interval
Change the frequency of PIM Router-Query messages.

S4810
Syntax

ip pim query-interval seconds
To return to the default value, use the no ip pim query-interval seconds
command.

Parameters

seconds

Enter a number as the number of seconds between router
query messages. The range is from 0 to 65535. The default is
30 seconds.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series for the port-channels and the SSeries.

ip pim register-filter
To prevent a PIM source DR from sending register packets to an RP for the specified multicast source and
group, use this feature.

S4810
Syntax

ip pim register-filter access-list
To return to the default, use the no ip pim register-filter access-list
command.

Parameters

1278

access-list

Enter the name of an extended access list. Maximum 16
characters.

PIM-Sparse Mode (PIM-SM)

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Version 7.6.1.0

Introduced

The access name is an extended IP access list that denies PIM register packets to
RP at the source DR based on the multicast and group addresses. Do not enter this
command before creating the access-list.

ip pim rp-address
Configure a static PIM rendezvous point (RP) address for a group or access-list.

S4810
Syntax

ip pim rp-address address {group-address group-address mask}
override
To remove an RP address, use the no ip pim rp-address address {groupaddress group-address mask} override command.

Parameters

address

Enter the RP address in dotted decimal format (A.B.C.D).

group-address
group-address
mask

Enter the keywords group-address then a group-address
mask, in dotted decimal format (/xx), to assign that group
address to the RP.

override

Enter the keyword override to override the BSR updates
with static RP. The override takes effect immediately during
enable/disable.
NOTE: This option is applicable to multicast group range.

Defaults

Not configured.

PIM-Sparse Mode (PIM-SM)

1279

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

First-hop routers use this address by to send register packets on behalf of source
multicast hosts. The RP addresses are stored in the order in which they are entered.
RP addresses learned using BSR take priority over static RP addresses. Without the
override option, RPs advertised by the BSR updates take precedence over the
statically configured RPs.

ip pim rp-candidate
To send out a Candidate-RP-Advertisement message to the bootstrap (BS) router or define group
prefixes that are defined with the RP address to PIM BSR, configure a PIM router.

S4810
Syntax

ip pim rp-candidate {interface [priority]
To return to the default value, use the no ip pim rp-candidate {interface
[priority] command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•
•
•
•
•

1280

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.
For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.
For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.
For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.
For a VLAN, enter the keyword vlan then a number from
1 to 4094.

PIM-Sparse Mode (PIM-SM)

priority

(OPTIONAL) Enter the priority used in Bootstrap election
process. The range is zero (0) to 255. The default is 192.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Priority is stored at BSR router when receiving a Candidate-RP-Advertisement.

ip pim sparse-mode
Enable PIM sparse mode and IGMP on the interface.

S4810
Syntax

ip pim sparse-mode
To disable PIM sparse mode and IGMP, use the no ip pim sparse-mode
command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

PIM-Sparse Mode (PIM-SM)

Introduced on the S6000.

1281

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the C-Series for the port-channels and the SSeries.

The interface must be enabled (the no shutdown command) and not have the
switchport command configured. Multicast must also be enabled globally (using
the ip multicast-lag-hashing command). PIM is supported on the portchannel interface.

ip pim sparse-mode sg-expiry-timer
Enable expiry timers globally for all sources, or for a specific set of (S,G) pairs an access list defines.

S4810
Syntax

ip pim sparse-mode sg-expiry-timer seconds [access-list name]
To disable configured timers and return to default mode, use the no ip pim
sparse-mode sg-expiry-timer command.

Parameters

seconds

Enter the number of seconds the S, G entries are retained.
The range is from 211 to 86400.

access-list
name

(OPTIONAL) Enter the name of a previously configured
Extended ACL to enable the expiry time to specified S,G
entries.

Defaults

Disabled. The default expiry timer (with no times configured) is 210 sec.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1282

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

PIM-Sparse Mode (PIM-SM)

Usage
Information

Version 7.8.1.0

Introduced on the C-Series for the port-channels and the SSeries.

Version 7.7.1.1

Introduced

This command configures an expiration timer for all S.G entries, unless they are
assigned to an Extended ACL.

ip pim spt-threshold
To switch to the shortest path tree when the traffic reaches the specified threshold value, configure the
PIM router.

S4810
Syntax

ip pim spt-threshold value | infinity
To return to the default value, use the no ip pim spt-threshold command.

Parameters

value

(OPTIONAL) Enter the traffic value in kilobits per second. The
default is 10 packets per second. A value of zero (0) causes a
switchover on the first packet.

infinity

(OPTIONAL) Enter the keyword infinity to never switch to
the source-tree.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

This command is applicable to last hop routers on the shared tree towards the
rendezvous point (RP).

PIM-Sparse Mode (PIM-SM)

1283

no ip pim snooping dr-flood
Disable the flooding of multicast packets to the PIM designated router.

S4810
Syntax

no ip pim snooping dr-flood
To re-enable the flooding of multicast packets to the PIM designated router, use
the ip pim snooping dr-flood command.

Defaults

Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.0

Introduced on the E-Series ExaScale.

By default, when you enable PIM-SM snooping, a switch floods all multicast traffic
to the PIM designated router (DR), including unnecessary multicast packets. To
minimize the traffic sent over the network to the designated router, you can disable
designated-router flooding.
When designated-router flooding is disabled, PIM-SM snooping only forwards the
multicast traffic, which belongs to a multicast group for which the switch receives
a join request, on the port connected towards the designated router.
If the PIM DR flood is not disabled (default setting):

1284

•

Multicast traffic is transmitted on the egress port towards the PIM DR if the port
is not the incoming interface.

•

Multicast traffic for an unknown group is sent on the port towards the PIM DR.
When DR flooding is disabled, multicast traffic for an unknown group is
dropped.

PIM-Sparse Mode (PIM-SM)

show ip pim bsr-router
View information on the Bootstrap router.

S4810
Syntax

show ip pim bsr-router

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

E600-7-rpm0#show ip pim bsr-router
PIMv2 Bootstrap information
This system is the Bootstrap Router (v2)
BSR address: 7.7.7.7 (?)
Uptime: 16:59:06, BSR Priority: 0, Hash mask length: 30
Next bootstrap message in 00:00:08
This system is a candidate BSR
Candidate BSR address: 7.7.7.7, priority: 0, hash mask
length: 30

show ip pim interface
View information on the interfaces with IP PIM enabled.

S4810
Syntax

show ip pim interface

Command
Modes

•

EXEC

•

EXEC Privilege

PIM-Sparse Mode (PIM-SM)

1285

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

1286

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

The following describes the show ip pim interface command shown in the
following example.
Field

Description

Address

Lists the IP addresses of the interfaces participating in PIM.

Interface

List the interface type, with either slot/port information or ID
(VLAN or Port Channel), of the interfaces participating in
PIM.

Ver/Mode

Displays the PIM version number and mode for each
interface participating in PIM:
•

v2 = PIM version 2

•

S = PIM Sparse mode

Nbr Count

Displays the number of PIM neighbors discovered over this
interface.

Query Intvl

Displays the query interval for Router Query messages on
that interface (configured with ip pim query-interval
command).

DR Prio

Displays the Designated Router priority value configured on
the interface (use the ip pim dr-priority command).

DR

Displays the IP address of the Designated Router for that
interface.

E600-7-RPM0#show ip pim interface
Address
Interface Ver/ Nbr
Mode Count
172.21.200.254 Gi 7/9
v2/S 0
172.60.1.2
Gi 7/11
v2/S 0
192.3.1.1
Gi 7/16
v2/S 1
192.4.1.1
Gi 13/5
v2/S 0

Query
Intvl
30 1
30 1
30 1
30 1

DR
DR
Prio
172.21.200.254
172.60.1.2
192.3.1.1
192.4.1.1

PIM-Sparse Mode (PIM-SM)

172.21.110.1
172.21.203.1

Gi 13/6
Gi 13/7

v2/S 0
v2/S 0

30 1
30 1

172.21.110.1
172.21.203.1

show ip pim neighbor
View PIM neighbors.

S4810
Syntax

show ip pim neighbor

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

The following describes the show ip pim neighbor command shown in the
following example.
Field

Description

Neighbor address

Displays the IP address of the PIM neighbor.

Interface

List the interface type, with either slot/port information or ID
(VLAN or Port Channel), on which the PIM neighbor was
found.

Uptime/expires

Displays the amount of time the neighbor has been up then
the amount of time until the neighbor is removed from the
multicast routing table (that is, until the neighbor hold time
expires).

Ver

Displays the PIM version number.
•

DR prio/Mode

PIM-Sparse Mode (PIM-SM)

v2 = PIM version 2

Displays the Designated Router priority and the mode.

1287

Field

Example

Description
•

1 = default Designated Router priority (use the ip pim
dr-priority command)

•

DR = Designated Router

•

S = Sparse mode

Dell#show ip pim neighbor
Neighbor
Interface Uptime/Expires
Ver
Address
127.87.3.4 Gi 7/16
09:44:58/00:01:24 v2
Dell#

DR
Prio/Mode
1 / S

show ip pim rp
View all multicast groups-to-RP mappings.

S4810
Syntax
Parameters

Command
Modes
Command
History

show ip pim rp [mapping | group-address]
mapping

(OPTIONAL) Enter the keyword mapping to display the
multicast groups-to-RP mapping and information on how
RP is learnt.

group-address

(OPTIONAL) Enter the multicast group address mask in
dotted decimal format to view RP for a specific group.

•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1288

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

Dell#sh ip pim rp
Group
RP
224.2.197.115
165.87.20.4

PIM-Sparse Mode (PIM-SM)

224.2.217.146
224.3.3.3
225.1.2.1
225.1.2.2
229.1.2.1
229.1.2.2
Dell#
Example
(Mapping)

165.87.20.4
165.87.20.4
165.87.20.4
165.87.20.4
165.87.20.4
165.87.20.4

Dell#sh ip pim rp mapping
Group(s): 224.0.0.0/4
RP: 165.87.20.4, v2
Info source: 165.87.20.5, via bootstrap, priority 0
Uptime: 00:03:11, expires: 00:02:46
RP: 165.87.20.3, v2
Info source: 165.87.20.5, via bootstrap, priority 0
Uptime: 00:03:11, expires: 00:03:03
Dell#

Example
(Address)

Dell#sh ip pim rp 229.1.2.1
Group
RP
229.1.2.1
165.87.20.4
Dell#

show ip pim snooping interface
Display information on VLAN interfaces with PIM-SM snooping enabled.

S4810
Syntax
Parameters

show ip pim snooping interface [vlan vlan-id]
vlan vlan-id

(OPTIONAL) Enter a VLAN ID to display information about a
specified VLAN configured for PIM-SM snooping. The valid
VLAN IDs range is from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.1

Introduced on the E-Series ExaScale.

PIM-Sparse Mode (PIM-SM)

1289

Usage
Information

Example (#2)

The following describes the show ip pim snooping interface commands
shown in the following example.
Field

Description

Interface

Displays the VLAN interfaces with PIM-SM snooping
enabled.

Ver/Mode

Displays the PIM version number for each VLAN interface
with PIM-SM snooping enabled:
•

v2 = PIM version 2

•

S = PIM Sparse mode

Nbr Count

Displays the number of neighbors learned through PIM-SM
snooping on the interface.

DR Prio

Displays the Designated Router priority value configured on
the interface (ip pim dr-priority command).

DR

Displays the IP address of the Designated Router for that
interface.

Dell#show ip pim snooping interface
Interface Ver Nbr
DR
DR
Count Prio
Vlan 2
v2 3
1
165.87.32.2

show ip pim snooping neighbor
Display information on PIM neighbors learned through PIM-SM snooping.

S4810
Syntax
Parameters

show ip pim snooping neighbor [vlan vlan-id]
vlan vlan-id

(OPTIONAL) Enter a VLAN ID to display information about
PIM neighbors that PIM-SM snooping discovered on a
specified VLAN. The valid VLAN IDs range is from 1 to 4094.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

1290

Introduced on the S4820T.

PIM-Sparse Mode (PIM-SM)

Usage
Information

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.1

Introduced on the E-Series ExaScale.

The following describes the show ip pim snooping neighbor commands
shown in the following example.
Field

Description

Neighbor address

Displays the IP address of the neighbor learned through
PIM-SM snooping.

Interface

Displays the VLAN ID number and slot/port on which the
PIM-SM-enabled neighbor was discovered.

Uptime/expires

Displays the amount of time the neighbor has been up then
the amount of time until the neighbor is removed from the
multicast routing table (that is, until the neighbor hold time
expires).

Ver

Displays the PIM version number:
•

DR prio/Mode

Example

v2 = PIM version 2

Displays the Designated Router priority and the mode:
•

1 = default Designated Router priority (use the ip pim
dr-priority command)

•

DR = Designated Router

•

S = Sparse mode

Dell#show ip pim snooping neighbor
Neighbor
Interface
Address
165.87.32.2
Vl 2 [Gi 4/13 ]
165.87.32.10 Vl 2 [Gi 4/11 ]
165.87.32.12 Vl 2 [Gi 4/20 ]

Uptime/Expires
00:04:03/00:01:42
00:00:46/00:01:29
00:00:51/00:01:24

Ver
v2
v2
v2

DR Prio
1
0
0

show ip pim snooping tib
Display information from the tree information base (TIB) PIM-SM snooping discovered about multicast
group members and states.

S4810
Syntax
Parameters

show ip pim snooping tib [vlan vlan-id] [group-address [sourceaddress]]
vlan vlan-id

PIM-Sparse Mode (PIM-SM)

(OPTIONAL) Enter a VLAN ID to display TIB information PIMSM snooping discovered on a specified VLAN. The valid
VLAN IDs range is from 1 to 4094.

1291

group-address

(OPTIONAL) Enter the group address in dotted decimal
format (A.B.C.D) to display TIB information PIM-SM snooping
discovered for a specified multicast group.

source-address

(OPTIONAL) Enter the source address in dotted decimal
format (A.B.C.D) to display TIB information PIM-SM snooping
discovered for a specified multicast source.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1292

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.1.1

Introduced on the E-Series ExaScale.

The following describes the show ip pim snooping tib commands shown in
the following example.
Field

Description

(S, G)

Displays the entry in the PIM multicast snooping database.

uptime

Displays the amount of time the entry has been in the PIM
multicast route table.

expires

Displays the amount of time until the entry expires and is
removed from the database.

RP

Displays the IP address of the RP/source for this entry.

flags

List the flags to define the entries:
•

S = PIM Sparse Mode

•

C = directly connected

•

L = local to the multicast group

•

P = route was pruned

•

R = the forwarding entry is pointing toward the RP

•

F = Dell Networking OS is registering this entry for a
multicast source

•

T = packets were received via Shortest Tree Path

•

J = first packet from the last hop router is received and
the entry is ready to switch to SPT

PIM-Sparse Mode (PIM-SM)

Field

Description
•

Example

K=acknowledge pending state

Incoming
interface

Displays the reverse path forwarding (RPF) interface towards
the RP/ source.

RPF neighbor

Displays the next hop from this interface towards the RP/
source.

Outgoing
interface list:

Lists the interfaces that meet one of the following criteria:
•

a directly connect member of the Group

•

statically configured member of the Group

•

received a (*,G) Join message

Dell#show ip pim snooping tib
PIM Multicast Snooping Table
Flags: J/P - (*,G) Join/Prune, j/p - (S,G) Join/Prune
SGR-P - (S,G,R) Prune
Timers: Uptime/Expires
* : Inherited port
(*, 225.1.2.1), uptime 00:00:01, expires 00:02:59, RP
165.87.70.1, flags: J
Incoming interface: Vlan 2, RPF neighbor 0.0.0.0
Outgoing interface list:
GigabitEthernet 4/11 RPF 165.87.32.2 00:00:01/00:02:59
GigabitEthernet 4/13 Upstream Port
-/Dell#show ip pim snooping tib vlan 2 225.1.2.1 165.87.1.7
PIM Multicast Snooping Table
Flags: J/P - (*,G) Join/Prune, j/p - (S,G) Join/Prune
SGR-P - (S,G,R) Prune
Timers: Uptime/Expires
* : Inherited port
(165.87.1.7, 225.1.2.1), uptime 00:00:08, expires 00:02:52,
flags: j
Incoming interface: Vlan 2, RPF neighbor 0.0.0.0
Outgoing interface list:
GigabitEthernet 4/11 Upstream Port
-/GigabitEthernet 4/13 DR Port
-/GigabitEthernet 4/20 RPF 165.87.32.10 00:00:08/00:02:52

show ip pim summary
View information about PIM-SM operation.

S4810
Syntax

show ip pim summary

Command
Modes

•

PIM-Sparse Mode (PIM-SM)

EXEC

1293

•
Command
History

EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.1

Support for the display of PIM-SM snooping status was
added on E-Series ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

Dell# show ip pim summary
PIM TIB version 495
Uptime 22:44:52
Entries in PIM-TIB/MFC : 2/2
Active Modes :
PIM-SNOOPING
Interface
1
0
3

summary:
active PIM interface
passive PIM interfaces
active PIM neighbors

TIB summary:
1/1 (*,G) entries in PIM-TIB/MFC
1/1 (S,G) entries in PIM-TIB/MFC
0/0 (S,G,Rpt) entries in PIM-TIB/MFC
0
0
0
0

PIM nexthops
RPs
sources
Register states

Message summary:
2582/2583 Joins sent/received
5/0 Prunes sent/received
0/0 Candidate-RP advertisements sent/received
0/0 BSR messages sent/received
0/0 State-Refresh messages sent/received
0/0 MSDP updates sent/received
0/0 Null Register messages sent/received
0/0 Register-stop messages sent/received
Data path event summary:
0 no-cache messages received
0 last-hop switchover messages received
0/0 pim-assert messages sent/received
0/0 register messages sent/received

1294

PIM-Sparse Mode (PIM-SM)

Memory usage:
TIB
Nexthop cache
Interface table
Neighbor table
RP Mapping

:
:
:
:
:

3768 bytes
0 bytes
992 bytes
528 bytes
0 bytes

show ip pim tib
View the PIM tree information base (TIB).

S4810
Syntax
Parameters

show ip pim tib [group-address [source-address]]
group-address

(OPTIONAL) Enter the group address in dotted decimal
format (A.B.C.D).

source-address

(OPTIONAL) Enter the source address in dotted decimal
format (A.B.C.D).

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.8.1.0

Introduced on the S-Series.

The following describes the show ip pim tib command shown in the following
example.
Field

Description

(S, G)

Displays the entry in the multicast PIM database.

uptime

Displays the amount of time the entry has been in the PIM
route table.

PIM-Sparse Mode (PIM-SM)

1295

Example

Field

Description

expires

Displays the amount of time until the entry expires and is
removed from the database.

RP

Displays the IP address of the RP/source for this entry.

flags

List the flags to define the entries:
•

D = PIM Dense Mode

•

S = PIM Sparse Mode

•

C = directly connected

•

L = local to the multicast group

•

P = route was pruned

•

R = the forwarding entry is pointing toward the RP

•

F = Dell Networking OS is registering this entry for a
multicast source

•

T = packets were received via Shortest Tree Path

•

J = first packet from the last hop router is received and
the entry is ready to switch to SPT

•

K = acknowledge pending state

Incoming
interface

Displays the reverse path forwarding (RPF) interface towards
the RP/ source.

RPF neighbor

Displays the next hop from this interface towards the RP/
source.

Outgoing
interface list:

Lists the interfaces that meet one of the following criteria:
•

a directly connect member of the Group

•

statically configured member of the Group

•

received a (*,G) Join message

Dell#show ip pim tib
PIM Multicast Routing Table
Flags:D- Dense, S- Sparse, C- Connected, L- Local, P- Pruned,
R- RP-bit set, F- Register flag, T- SPT-bit set, J- Join
SPT,
M- MSDP created entry, A- Candidate for MSDP
Advertisement,
K- Ack-Pending State
Timers: Uptime/Expires
Interface state: Interface, next-Hop, State/Mode
(*, 226.1.1.1), uptime 01:29:19, expires 00:00:52, RP
10.211.2.1, flags: SCJ
Incoming interface: GigabitEthernet 4/23, RPF neighbor
10.211.1.2
Outgoing interface list:
GigabitEthernet 8/0
(*, 226.1.1.2), uptime 00:18:08, expires 00:00:52, RP
10.211.2.1, flags: SCJ

1296

PIM-Sparse Mode (PIM-SM)

Incoming interface: GigabitEthernet 4/23, RPF neighbor
10.211.1.2
Outgoing interface list:
GigabitEthernet 8/0
(*, 226.1.1.3), uptime 00:18:08, expires 00:00:52, RP
10.211.2.1, flags: SCJ
Incoming interface: GigabitEthernet 4/23, RPF neighbor
10.211.1.2
Outgoing interface list:
GigabitEthernet 8/0
(*, 226.1.1.4), uptime 00:18:08, expires 00:00:52, RP
10.211.2.1, flags: SCJ
Incoming interface: GigabitEthernet 4/23, RPF neighbor
10.211.1.2
Outgoing interface list:
GigabitEthernet 8/0

show running-config pim
Display the current configuration of PIM-SM snooping.

S4810
Syntax

show running-config pim

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Introduced on the E-Series ExaScale.

Dell#show running-config pim
!
ip pim snooping enable

PIM-Sparse Mode (PIM-SM)

1297

43

Port Monitoring
The port monitoring feature allows you to monitor network traffic by forwarding a copy of each
incoming or outgoing packet from one port to another port.
The commands in this chapter are supported on the S4810 platform.

Important Points to Remember
•

Port monitoring is supported on physical ports and logical interfaces, such as Port Channels and
virtual local area networks (VLANs).

•

The monitoring (destination, “MG”) and monitored (source, “MD”) ports must be on the same switch.

•

In general, a monitoring port should have no ip address and no shutdown as the only
configuration; Dell Networking operating software permits a limited set of commands for monitoring
ports; display them using the ? command. A monitoring port also may not be a member of a VLAN.

•

A total of 4 MG may be configured in a single port-pipe.

•

MG and MD ports can be reside anywhere across a port-pipe.

•

Dell Networking operating software supports multiple source ports to be monitored by a single
destination port in one monitor session.

•

One monitor session can have only one MG port.
NOTE: The monitoring port should not be a part of any other configuration.

description
Enter a description of this monitoring session.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

Defaults

1298

description

Enter a description regarding this session (80 characters
maximum).

none

Port Monitoring

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-7.7.1.0

Introduced on the E-Series.

monitor session — enables a monitoring session.

monitor session
Create a session for monitoring traffic with port monitoring.

S4810
Syntax

monitor session session-ID (type { rpm | erpm })
To delete a session, use the no monitor session session-ID command.
To delete all monitor sessions, use the no monitor session all command.

Parameters

Defaults

Port Monitoring

session-ID

Enter a session identification number. The range is from 0 to
65535.

type rpm |
erpm

Specifies one of the following type:
•

rpm: to create remote port monitoring session.

•

erpm: to create encapsulated remote port monitoring
session.

none

1299

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4(0.0)

Added support for the rpm/erpm option on the S4810.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.2.0

Introduced on the MXL.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Usage
Information

The monitor command is saved in the running configuration at Monitor Session
mode level and can be restored after a chassis reload.

Example

Dell(conf)# monitor session 60
Dell(conf-mon-sess-60)

Related
Command

show monitor session — displays the monitor session.
show running-config monitor session — displays the running configuration of a
monitor session.

show config
Display the current monitor session configuration.

S4810
Syntax

show config

Defaults

none

Command
Modes

MONITOR SESSION (conf-mon-sess-session-ID)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1300

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Port Monitoring

Example

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell(conf-mon-sess-2)#show config
!
monitor session 2 type rpm
source fortyGigE 0/60 destination remote-vlan 300 direction rx
source Port-channel 10 destination remote-vlan 300 direction
rx
no disable
Dell#

show monitor session
Display the monitor information of a particular session or all sessions.

S4810
Syntax

show monitor session {session-ID}
To display monitoring information for all sessions, use the show monitor
session command.

Parameters

session-ID

(OPTIONAL) Enter a session identification number. The range
is from 0 to 65535.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Port Monitoring

Version 9.4.0.0

Added support for the RPM / ERPM.

Version 9.0.2.0

Introduced on the S6000.

1301

Example

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell#show monitor session
SessID Source
Destination
IP
Dest IP
------ ------------------------------1
Te 0/1
Te 0/4
A
N/A
2
Po 128
remote-vlan 100
A
N/A
3
Te 0/2
remote-ip
36.36.36.1
72.72.72.2

Dir

Mode

---

----

Source

both Port

N/

tx

Port

N/

rx

Port

monitor session — creates a session for monitoring.

show running-config monitor session
Display the running configuration of all monitor sessions or a specific session.

S4810
Syntax

show running-config monitor session {session-ID}
To display the running configuration for all monitor sessions, use the show
running-config monitor session command.

Parameters

session-ID

(OPTIONAL) Enter a session identification number. The range
from 0 to 65535.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1302

Port Monitoring

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

The monitoring command is saved in the running configuration at the Monitor
Session mode level and can be restored after a chassis reload.

Example

Dell(conf-mon-sess-0)#do show running-config monitor session
!
monitor session 0
source Port-channel 10 destination TenGigabitEthernet 0/33
direction tx
!

Related
Commands

monitor session — creates a session for monitoring.
show monitor session — displays a monitor session.

source (port monitoring)
Configure a port monitor source.

S4810
Syntax

source interface | range destination interface direction {rx |
tx | both}
To disable a monitor source, use the no source interface destination
interface direction {rx | tx | both} command.

Parameters

Port Monitoring

source
interface

Enter the one of the following keywords and slot/port
information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

1303

•

For a VLAN interface enter the keyword VLAN followed by
a number from 1 to 4094.

•

For a port channel interface, enter the keyword portchannel followed by the port-channel id .

range

Enter the keyword range to specify the list of interfaces.

destination

Enter the keyword destination to specify the destination
interface.

interface

direction {rx | tx
| both}

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a port channel interface, enter the keyword portchannel followed by the port-channel id .

Enter the one of the following keywords and slot/port
information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN interface enter the keyword VLAN followed by
a number from 1 to 4094.

•

For a port channel interface, enter the keyword portchannel followed by the port-channel id .

Enter the keyword direction then one of the packet
directional indicators.
•

rx: to monitor receiving packets only.

•

tx: to monitor transmitting packets only.

•

both: to monitor both transmitting and receiving
packets.

Defaults

none

Command
Modes

MONITOR SESSION (conf-mon- sess-session-ID)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1304

Version 9.4.0.0

Added support for Source and destination.

Version 9.0.2.0

Introduced on the S6000.

Port Monitoring

Example

Port Monitoring

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Dell# monitor session 0
source Port-channel 10 destination TenGigabitEthernet 0/33
direction tx

1305

Private VLAN (PVLAN)

44

The private VLAN (PVLAN) feature of the Dell Networking operating software is supported on the S4810
platforms.
Private VLANs extend the Dell Networking OS security suite by providing Layer 2 isolation between ports
within the same private VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a
primary and secondary VLAN pair. The Dell Networking OS private VLAN implementation is based on RFC
3069.
For more information, refer to the following commands. The command output is augmented in Dell
Networking OS version 7.8.1.0 at later to provide PVLAN data:
•

show arp

•

show vlan

Private VLAN Concepts
Primary VLAN:
The primary VLAN is the base VLAN and can have multiple secondary VLANs. There are two types of
secondary VLAN — community VLAN and isolated VLAN:
•

A primary VLAN can have any number of community VLANs and isolated VLANs.

•

Private VLANs block all traffic to isolated ports except traffic from promiscuous ports. Traffic received
from an isolated port is forwarded only to promiscuous ports or trunk ports.

Community VLAN:
A community VLAN is a secondary VLAN of the primary VLAN:
•

Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all
promiscuous ports in the primary VLAN and vice versa.

•

Devices on a community VLAN can communicate with each other using member ports, while devices
in an isolated VLAN cannot.

Isolated VLAN:
An isolated VLAN is a secondary VLAN of the primary VLAN:
•

Ports in an isolated VLAN cannot talk to each other. Servers would be mostly connected to isolated
VLAN ports.

•

Isolated ports can talk to promiscuous ports in the primary VLAN, and vice versa.

1306

Private VLAN (PVLAN)

Port Types:
•

Community port: A community port is a port that belongs to a community VLAN and is allowed to
communicate with other ports in the same community VLAN and with promiscuous ports.

•

Isolated port: An isolated port is a port that, in Layer 2, can only communicate with promiscuous ports
that are in the same PVLAN.

•

Promiscuous port: A promiscuous port is a port that is allowed to communicate with any other port
type.

•

Trunk port: A trunk port carries VLAN traffic across switches:
– A trunk port in a PVLAN is always tagged.
– A trunk port in Tagged mode carries primary or secondary VLAN traffic. The tag on the packet
helps identify the VLAN to which the packet belongs.
– A trunk port can also belong to a regular VLAN (non-private VLAN).

ip local-proxy-arp
Enable/disable Layer 3 communication between secondary VLANs in a private VLAN.

S4810
Syntax

[no] ip local-proxy-arp
To disable Layer 3 communication between secondary VLANs in a private VLAN,
use the no ip local-proxy-arp command in INTERFACE VLAN mode for the
primary VLAN.
To disable Layer 3 communication in a particular secondary VLAN, use the no ip
local-proxy-arp command in INTERFACE VLAN mode for the selected
secondary VLAN.
NOTE: Even after you disable ip-local-proxy-arp (use no ip-localproxy-arp) in a secondary VLAN, Layer 3 communication may happen
between some secondary VLAN hosts, until the address resolution protocol
(ARP) timeout happens on those secondary VLAN hosts.

Defaults

Layer 3 communication is disabled between secondary VLANs in a private VLAN.

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Private VLAN (PVLAN)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

1307

Related
Commands

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

private-vlan mode — sets the mode of the selected VLAN to community, isolated,
or primary.
private-vlan mapping secondary-vlan — maps secondary VLANs to the selected
primary VLAN.
show arp — displays the ARP table.
switchport mode private-vlan — sets PVLAN mode of the selected port.

private-vlan mode
Set PVLAN mode of the selected VLAN to community, isolated, or primary.

S4810
Syntax

[no] private-vlan mode {community | isolated | primary}
To remove the PVLAN configuration, use the no private-vlan mode
{community | isolated | primary} command syntax.

Parameters

community

Enter the keyword community to set the VLAN as a
community VLAN.

isolated

Enter the keyword isolated to configure the VLAN as an
isolated VLAN.

primary

Enter the keyword primary to configure the VLAN as a
primary VLAN.

Defaults

none

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1308

Introduced on the S6000.

Private VLAN (PVLAN)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

The VLAN:
•

can be in only one mode, either community, isolated, or primary.

•

mode ode to community or isolated even before associating it to a primary
VLAN. This secondary VLAN continues to work normally as a normal VLAN even
though it is not associated to a primary VLAN. (A syslog message indicates this.)

•

must not have a port in it when VLAN mode is being set.

Only ports (and port channels) configured as promiscuous, host, or PVLAN trunk
ports (as previously described) can be added to the PVLAN. No other regular ports
can be added to the PVLAN.
After using this command to configure a VLAN as a primary VLAN, use the
private-vlan mapping secondary-vlan command to map secondary VLANs
to this VLAN.
Related
Commands

private-vlan mapping secondary-vlan — maps secondary VLANs to the selected
primary VLAN.
switchport mode private-vlan — sets PVLAN mode of the selected port.

private-vlan mapping secondary-vlan
Map secondary VLANs to the selected primary VLAN.

S4810
Syntax

[no] private-vlan mapping secondary-vlan vlan-list
To remove specific secondary VLANs from the configuration, use the no
private-vlan mapping secondary-vlan vlan-list command syntax.

Parameters

Defaults

Private VLAN (PVLAN)

vlan-list

Enter the list of secondary VLANs to associate with the
selected primary VLAN. The list can be in comma-delimited
or hyphenated-range format, following the convention for
the range input.

none

1309

Command
Modes

INTERFACE VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

The list of secondary VLANs can be:
•

Specified in comma-delimited or hyphenated-range format.

•

Specified with this command even before they have been created.

•

Amended by specifying the new secondary VLAN to be added to the list.

private-vlan mode — sets the mode of the selected VLAN to community, isolated,
or primary.
switchport mode private-vlan — sets PVLAN mode of the selected port.

switchport mode private-vlan
Set PVLAN mode of the selected port.

S4810
Syntax

[no] switchport mode private-vlan {host | promiscuous | trunk}
To remove PVLAN mode from the selected port, use the no switchport mode
private-vlan command.

Parameters

1310

host

Enter the keyword host to configure the selected port or
port channel as an isolated interface in a PVLAN.

promiscuous

Enter the keyword promiscuous to configure the selected
port or port channel as an promiscuous interface.

trunk

Enter the keyword trunk to configure the selected port or
port channel as a trunk port in a PVLAN.

Private VLAN (PVLAN)

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

Usage
Information

The assignment of the various PVLAN port types to port and port channel (LAG)
interfaces is shown in the following example.

Example

Dell#conf
Dell(conf)#interface GigabitEthernet 2/1
Dell(conf-if-gi-2/1)#switchport mode private-vlan promiscuous
Dell(conf)#interface GigabitEthernet 2/2
Dell(conf-if-gi-2/2)#switchport mode private-vlan host
Dell(conf)#interface GigabitEthernet 2/3
Dell(conf-if-gi-2/3)#switchport mode private-vlan trunk
Dell(conf)#interface port-channel 10
Dell(conf-if-gi-2/3)#switchport mode private-vlan promiscuous

Related
Commands

private-vlan mode — sets the mode of the selected VLAN to community, isolated,
or primary.
private-vlan mapping secondary-vlan — sets the mode of the selected VLAN to
primary and then associates the secondary VLANs to it.

Private VLAN (PVLAN)

1311

Per-VLAN Spanning Tree Plus (PVST+)

45

The Dell Networking operating software implementation of per-VLAN spanning tree plus (PVST+) is based
on the IEEE 802.1w standard spanning tree protocol.
Dell Networking OS supports PVST+ on the S4810 platform.
NOTE: For easier command line entry, the plus (+) sign is not used at the command line.

description
Enter a description of the PVST+.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Enter a description to identify the spanning tree (80
characters maximum).

Defaults

none

Command
Modes

SPANNING TREE PVST+ (The prompt is “config-pvst”.)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1312

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
7.7.1.1

Introduced.

Per-VLAN Spanning Tree Plus (PVST+)

Related
Commands

protocol spanning-tree pvst — enter SPANNING TREE mode on the switch.

disable
Disable PVST+ globally.

S4810
Syntax

disable
To enable PVST+, use the no disable command.

Defaults

Disabled.

Command
Modes

CONFIGURATION (conf-pvst)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

protocol spanning-tree pvst — enter PVST+ mode.

Per-VLAN Spanning Tree Plus (PVST+)

1313

extend system-id
To augment the Bridge ID with a VLAN ID so that PVST+ differentiate between BPDUs for each VLAN, use
extend system ID. If the VLAN receives a BPDU meant for another VLAN, PVST+ does not detect a loop,
and both ports can remain in Forwarding state.

S4810
Syntax

extend system-id

Defaults

Disabled

Command
Modes

PROTOCOL PVST

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced.

Dell(conf-pvst)#do show spanning-tree pvst vlan 5 brief
VLAN 5
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 32773, Address 0001.e832.73f7
Root Bridge hello time 2, max age 20, forward delay 15
Bridge ID Priority 32773 (priority 32768 sys-id-ext 5),
Address 0001.e832.73f7
We are the root of Vlan 5
Configured hello time 2, max age 20, forward delay 15
Interface Designated
Name
PortID Prio Cost Sts Cost Bridge ID
PortID
------------------------------------------------------------Gi 0/10 128.140 128 200000 FWD 0
32773 0001.e832.73f7
128.140
Gi 0/12 128.142 128 200000 DIS 0
32773 0001.e832.73f7
128.142
Interface
Name
Role PortID Prio Cost Sts Cost Link-type Edge
-------------------------------------------------------Gi 0/10 Desg 128.140 128 200000 FWD 0
P2P
No
Gi 0/12 Dis 128.142 128 200000 DIS 0
P2P
No

Related
Commands

1314

protocol spanning-tree pvst – enter SPANNING TREE mode on the switch.

Per-VLAN Spanning Tree Plus (PVST+)

protocol spanning-tree pvst
To enable PVST+ on a device, enter the PVST+ mode.

S4810
Syntax

protocol spanning-tree pvst
To disable PVST+, use the disable command.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 8.3.1.0

Introduced.

Example

Dell#conf
Dell(conf)#protocol spanning-tree pvst
Dell(conf-pvst)#no disable
Dell(conf-pvst)#vlan 2 bridge-priority 4096
Dell(conf-pvst)#vlan 3 bridge-priority 16384
Dell(conf-pvst)#
Dell(conf-pvst)#show config
!
protocol spanning-tree pvst
no disable
vlan 2 bridge-priority 4096
vlan 3 bridge-priority 16384
Dell#

Usage
Information

After you enable PVST+, the device runs an STP instance for each VLAN it supports.

Related
Commands

disable — disables PVST+.
show spanning-tree pvst — displays the PVST+ configuration.

Per-VLAN Spanning Tree Plus (PVST+)

1315

show spanning-tree pvst
View the Per-VLAN spanning tree configuration.

S4810
Syntax
Parameters

show spanning-tree pvst [vlan vlan-id] [brief] [guard]
vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID. The
range is 1 to 4094.

brief

(OPTIONAL) Enter the keyword brief to view a synopsis of
the PVST+ configuration information.

interface

(OPTIONAL) Enter one of the interface keywords along with
the slot/port information:

guard

•

For a Port Channel interface, enter the keyword portchannel then a number: The range is 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

(OPTIONAL) Enter the keyword guard to display the type of
guard enabled on a PVST interface and the current port state.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1316

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.4.2.1

Support for the optional guard keyword was added on the
C-Series, S-Series, and E-Series TeraScale.

Per-VLAN Spanning Tree Plus (PVST+)

Usage
Information

Example (Brief)

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Expanded to display port error disable state (EDS) caused by
loopback BPDU inconsistency and Port VLAN ID
inconsistency.

Version 6.2.1.1

Introduced.

The following describes the show spanning-tree pvst command shown in the
following examples.
Field

Description

Interface Name

PVST interface.

Instance

PVST instance.

Sts

Port state: root-inconsistent (INCON Root), forwarding
(FWD), listening (LIS), blocking (BLK), or shut down (EDS
Shut).

Guard Type

Type of STP guard configured (Root, Loop, or BPDU guard).

Dell#show spanning-tree pvst vlan 3 brief
VLAN 3
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 4096, Address 0001.e801.6aa8
Root Bridge hello time 2, max age 20, forward delay 15
Bridge ID Priority 16384, Address 0001.e805.e306
Configured hello time 2, max age 20, forward delay 15
Interface
Designated
Name
PortID Prio Cost Sts Cost
Bridge ID
PortID
---------------------------------------------------------Gi 1/0 128.130 128 20000 FWD 20000 4096 0001.e801.6aa8
128.426
Gi 1/1 128.131 128 20000 BLK 20000 4096 0001.e801.6aa8
128.427
Gi 1/16 128.146 128 20000 FWD 20000 16384 0001.e805.e306
128.146
Gi 1/17 128.147 128 20000 FWD 20000 16384 0001.e805.e306
128.147
Interface
Name
Role PortID
Prio Cost Sts Cost Link-type Edge
----------------------------------------------------Gi 1/0 Root 128.130 128 20000 FWD 20000 P2P
No
Gi 1/1 Altr 128.131 128 20000 BLK 20000 P2P
No
Gi 1/16 Desg 128.146 128 20000 FWD 20000 P2P
Yes
Gi 1/17 Desg 128.147 128 20000 FWD 20000 P2P
Yes

Example

Dell#show spanning-tree pvst vlan 2
VLAN 2
Root Identifier has priority 4096, Address 0001.e805.e306
Root Bridge hello time 2, max age 20, forward delay 15
Bridge Identifier has priority 4096, Address 0001.e805.e306
Configured hello time 2, max age 20, forward delay 15
We are the root of VLAN 2
Current root has priority 4096, Address 0001.e805.e306

Per-VLAN Spanning Tree Plus (PVST+)

1317

Number of topology changes 3, last change occured 00:57:00
Port 130 (GigabitEthernet 1/0) is designated Forwarding
Port path cost 20000, Port priority 128, Port Identifier
128.130
Designated root has priority 4096, address 0001.e805.e3:06
Designated bridge has priority 4096, address 0001.e805.e3:06
Designated port id is 128.130, designated path cost 0
Number of transitions to forwarding state 1
BPDU sent 1567, received 3
The port is not in the Edge port mode
Port 131 (GigabitEthernet 1/1) is designated Forwarding
Port path cost 20000, Port priority 128, Port Identifier
128.131
Designated root has priority 4096, address 0001.e805.e3:06
Designated bridge has priority 4096, address 0001.e805.e3:06
Designated port id is 128.131, designated path cost 0
Number of transitions to forwarding state 1
BPDU sent 1567, received 0
The port is not in the Edge port mode
Port 146 (GigabitEthernet 1/16) is designated Forwarding
Port path cost 20000, Port priority 128, Port Identifier
128.146
Designated root has priority 4096, address 0001.e805.e3:06
Designated bridge has priority 4096, address 0001.e805.e3:06
Designated port id is 128.146, designated path cost 0
Number of transitions to forwarding state 1
BPDU sent 1578, received 0
The port is in the Edge port mode
Port 147 (GigabitEthernet 1/17) is designated Forwarding
Port path cost 20000, Port priority 128, Port Identifier
128.147
Designated root has priority 4096, address 0001.e805.e3:06
Designated bridge has priority 4096, address 0001.e805.e3:06
Designated port id is 128.147, designated path cost 0
Number of transitions to forwarding state 1
BPDU sent 1579, received 0
The port is in the Edge port mode
Example (EDS/
LBK)

Dell#show spanning-tree pvst vlan 2 interface gigabitethernet
1/0
GigabitEthernet 1/0 of VLAN 2 is LBK_INC discarding
Edge port:no (default) port guard :none (default)
Link type: point-to-point (auto) bpdu filter:disable (default)
Bpdu guard :disable (default)
Bpdus sent 152, received 27562
Interface Designated
Name
PortID
Prio Cost Sts Cost Bridge ID
PortID
----------------------------------------------------------Gi 1/0 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.1223

Example (EDS/
PVID)

Dell#show spanning-tree pvst vlan 2 interface gigabitethernet
1/0
GigabitEthernet 1/0 of VLAN 2 is PVID_INC discarding

1318

Per-VLAN Spanning Tree Plus (PVST+)

Edge port:no (default) port guard :none (default)
Link type: point-to-point (auto) bpdu filter:disable (default)
Bpdu guard :disable (default)
Bpdus sent 1, received 0
Interface Designated
Name
PortID
Prio Cost Sts Cost Bridge ID
PortID
--------------------------------------------------------Gi 1/0 128.1223 128 20000 EDS 0 32768 0001.e800.a12b 128.1223
Example
(Guard)

Dell#show spanning-tree pvst vlan 5 guard
Interface
Name
Instance Sts
Guard type
----------------------------------Gi 0/1 5
INCON(Root) Rootguard
Gi 0/2 5
FWD
Loopguard
Gi 0/3 5
EDS(Shut)
Bpduguard

Related
Commands

spanning-tree pvst — configure PVST+ on an interface.

spanning-tree pvst
Configure a PVST+ interface with one of these settings: edge port with optional bridge port data unit
(BPDU) guard, port disablement if an error condition occurs, port priority or cost for a VLAN range, loop
guard, or root guard.

S4810
Syntax

Parameters

spanning-tree pvst {edge-port [bpduguard [shutdown-onviolation]] | err-disable | vlan vlan-range {cost number |
priority value} | loopguard | rootguard}
edge-port

Enter the keywords edge-port to configure the interface as
a PVST+ edge port.

bpduguard

Enter the keyword portfast to enable Portfast to move the
interface into Forwarding mode immediately after the root
fails.
Enter the keyword bpduguard to disable the port when it
receives a BPDU.

shutdown-onviolation

(OPTIONAL) Enter the keywords shutdown-on-violation
to hardware disable an interface when a BPDU is received
and the port is disabled.

err-disable

Enter the keywords err-disable to enable the port to be
put into the error-disable state (EDS) if an error condition
occurs.

Per-VLAN Spanning Tree Plus (PVST+)

1319

vlan vlan-range

Enter the keyword vlan then the VLAN numbers. The range
is from 1 to 4094.

cost number

Enter the keyword cost then the port cost value. The range
is from 1 to 200000.
Defaults:
•

100 Mb/s Ethernet interface = 200000.

•

1-Gigabit Ethernet interface = 20000.

•

10-Gigabit Ethernet interface = 2000.

•

Port Channel interface with one 100 Mb/s Ethernet =
200000.

•

Port Channel interface with one 1 Gigabit Ethernet =
20000.

•

Port Channel interface with one 10 Gigabit Ethernet =
2000.

•

Port Channel with two 1 Gigabit Ethernet = 18000.

•

Port Channel with two 10 Gigabit Ethernet = 1800.

•

Port Channel with two 100 Mbps Ethernet = 180000.

priority value

Enter the keyword priority then the Port priority value in
increments of 16. The range is from 0 to 240. The default is
128.

loopguard

(C-, S-, and E-Series TeraScale only) Enter the keyword
loopguard to enable loop guard on a PVST+ port or portchannel interface.

rootguard

(C-, S-, and E-Series TeraScale only) Enter the keyword
rootguard to enable root guard on a PVST+ port or portchannel interface.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1320

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Introduced the loopguard and rootguard options on the
E-Series TeraScale, C-Series, and S-Series.

Version 8.3.7.0

Introduced on the S4810.

Per-VLAN Spanning Tree Plus (PVST+)

Usage
Information

Version 8.2.1.0

Introduced the hardware shutdown-on-violation option.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the optional Bridge Port Data Unit (BPDU) guard.

Version 6.2.1.1

Introduced.

The BPDU guard option prevents the port from participating in an active STP
topology in case a BPDU appears on a port unintentionally, or is misconfigured, or
is subject to a DOS attack. This option places the port into the Error Disable state if
a BPDU appears, and a message is logged so that the administrator can take
corrective action.
NOTE: A port configured as an edge port, on a PVST switch, immediately
transitions to the forwarding state. Only ports connected to end-hosts should
be configured as an edge port. Consider an edge port similar to a port with a
spanning-tree portfast enabled.
If you do not enable shutdown-on-violation, BPDUs are still sent to the route
process module (RPM) CPU.
You cannot enable root guard and loop guard at the same time on a port. For
example, if you configure loop guard on a port on which root guard is already
configured, the following error message is displayed: % Error: RootGuard is
configured. Cannot configure LoopGuard.
When used in a PVST+ network, loop guard is performed per-port or per-port
channel at a VLAN level. If no BPDUs are received on a VLAN interface, the port or
port-channel transitions to a Loop-Inconsistent (blocking) state only for this VLAN.
Enabling Portfast BPDU guard and loop guard at the same time on a port results in
a port that remains in a Blocking state and prevents traffic from flowing through it.
For example, when Portfast BPDU guard and loop guard are both configured:

Example

•

If a BPDU is received from a remote device, BPDU guard places the port in an
Err-Disabled Blocking state and no traffic is forwarded on the port.

•

If no BPDU is received from a remote device, loop guard places the port in a
Loop-Inconsistent Blocking state and no traffic is forwarded on the port.

Dell(conf-if-gi-1/1)#spanning-tree pvst vlan 3 cost 18000
Dell(conf-if-gi-1/1)#end
Dell(conf-if-gi-1/1)#show config
!
interface GigabitEthernet 1/1
no ip address
switchport
spanning-tree pvst vlan 3 cost 18000
no shutdown
Dell(conf-if-gi-1/1)#end
Dell#

Per-VLAN Spanning Tree Plus (PVST+)

1321

Related
Commands

show spanning-tree pvst — views the PVST+ configuration.

spanning-tree pvst err-disable
Place ports in an Err-Disabled state if they receive a PVST+ BPDU when they are members an untagged
VLAN.

S4810
Syntax

spanning-tree pvst err-disable cause invalid-pvst-bpdu

Defaults

Enabled; ports are placed in the Err-Disabled state if they receive a PVST+ BPDU
when they are members of an untagged VLAN.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced.

Some non-Dell Networking systems which have hybrid ports participating in PVST+
transmit two kinds of BPDUs: an 802.1D BPDU and an untagged PVST+ BPDU.
Dell Networking systems do not expect PVST+ BPDU on an untagged port. If this
happens, Dell Networking OS places the port in the Error-Disable state. This
behavior might result in the network not converging. To prevent Dell Networking
OS from executing this action, use the no spanning-tree pvst err-disable
command cause invalid-pvst-bpdu.

Related
Commands

1322

show spanning-tree pvst — views the PVST+ configuration.

Per-VLAN Spanning Tree Plus (PVST+)

tc-flush-standard
Enable the MAC address flushing after receiving every topology change notification.

S4810
Syntax

tc-flush-standard
To disable, use the no tc-flush-standard command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced.

By default, Dell Networking OS implements an optimized flush mechanism for
PVST+. This implementation helps in flushing the MAC addresses only when
necessary (and less often) allowing for faster convergence during topology
changes. However, if a standards-based flush mechanism is needed, you can turn
this knob command on to enable flushing MAC addresses after receiving every
topology change notification.

vlan bridge-priority
Set the PVST+ bridge-priority for a VLAN or a set of VLANs.

S4810
Syntax

vlan vlan-range bridge-priority value
To return to the default value, use the no vlan bridge-priority command.

Per-VLAN Spanning Tree Plus (PVST+)

1323

Parameters

vlan vlan-range

Enter the keyword vlan then the VLAN numbers. The range
is from 1 to 4094.

bridge-priority
value

Enter the keywords bridge-priority then the bridge
priority value in increments of 4096. The range is from 0 to
61440. The default is 32768.

Defaults

32768

Command
Modes

CONFIGURATION (conf-pvst)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced.

vlan forward-delay — changes the time interval before Dell Networking OS
transitions to the Forwarding state.
vlan hello-time — change the time interval between BPDUs.
vlan max-age — changes the time interval before PVST+ refreshes.
show spanning-tree pvst — displays the PVST+ configuration.

vlan forward-delay
Set the amount of time the interface waits in the Listening state and the Learning state before
transitioning to the Forwarding state.

S4810
Syntax

vlan vlan-range forward-delay seconds
To return to the default setting, use the no vlan forward-delay command.

1324

Per-VLAN Spanning Tree Plus (PVST+)

Parameters

vlan vlan-range

Enter the keyword vlan then the VLAN numbers. The range
is from 1 to 4094.

forward-delay
seconds

Enter the keywords forward-delay then the time interval,
in seconds, that Dell Networking OS waits before
transitioning PVST+ to the forwarding state. The range is
from 4 to 30 seconds. The default is 15 seconds.

Defaults

15 seconds

Command
Modes

CONFIGURATION (conf-pvst)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced.

vlan bridge-priority — sets the bridge-priority value.
vlan hello-time — changes the time interval between BPDUs.
vlan max-age — changes the time interval before PVST+ refreshes.
show spanning-tree pvst — displays the PVST+ configuration.

vlan hello-time
Set the time interval between generation of PVST+ 7 BPDUs.

S4810
Syntax

vlan vlan-range hello-time seconds
To return to the default value, use the no vlan hello-time command.

Per-VLAN Spanning Tree Plus (PVST+)

1325

Parameters

vlan vlan-range

Enter the keyword vlan then the VLAN numbers. The range
is from 1 to 4094.

hello-time
seconds

Enter the keywords hello-time then the time interval, in
seconds, between transmission of BPDUs. The range is from
1 to 10 seconds. The default is 2 seconds.

Defaults

2 seconds

Command
Modes

CONFIGURATION (conf-pvst)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced.

vlan bridge-priority — sets the bridge-priority value.
vlan forward-delay — changes the time interval before Dell Networking OS
transitions to the forwarding state.
vlan max-age — changes the time interval before PVST+ refreshes.
show spanning-tree pvst — displays the PVST+ configuration.

vlan max-age
To maintain configuration information before refreshing that information, set the time interval for the
PVST+ bridge.

S4810
Syntax

vlan vlan-range max-age seconds
To return to the default, use the no vlan max-age command.

1326

Per-VLAN Spanning Tree Plus (PVST+)

Parameters

vlan vlan-range

Enter the keyword vlan then the VLAN numbers. The range
is from 1 to 4094.

max-age
seconds

Enter the keywords max-age then the time interval, in
seconds, that Dell Networking OS waits before refreshing
configuration information. The range is from 6 to 40
seconds. The default is 20 seconds.

Defaults

20 seconds

Command
Modes

CONFIGURATION (conf-pvst)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced.

vlan bridge-priority — sets the bridge-priority value.
vlan forward-delay — changes the time interval before Dell Networking OS
transitions to the forwarding state.
vlan hello-time — changes the time interval between BPDUs.
show spanning-tree pvst — displays the PVST+ configuration.

Per-VLAN Spanning Tree Plus (PVST+)

1327

46

Quality of Service (QoS)
The Dell Networking operating software commands for quality of service (QoS) include traffic
conditioning and congestion control. QoS commands are not universally supported on all Dell
Networking Products.S4810 platform.
This chapter contains the following sections:
•

Global Configuration Commands

•

Per-Port QoS Commands

•

Policy-Based QoS Commands

Global Configuration Commands
There is only one global configuration QoS command.

qos-rate-adjust
By default, while rate limiting, policing, and shaping, Dell Networking OS does not include the Preamble,
SFD, or the IFG fields. These fields are overhead; only the fields from MAC destination address to the CRC
are used for forwarding and are included in these rate metering calculations. You can optionally include
overhead fields in rate metering calculations by enabling QoS Rate Adjustment.

S4810
Syntax
Parameters

qos-rate-adjustment overhead-bytes
overhead-bytes

Include a specified number of bytes of packet overhead to
include in rate limiting, policing, and shaping calculations.
The range is from 1 to 31.

Defaults

QoS rate adjustment is disabled by default.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1328

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Quality of Service (QoS)

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced.

Per-Port QoS Commands
Per-port QoS (port-based QoS) allows you to define the QoS configuration on a per-physical-port basis.

dot1p-priority
Assign a value to the IEEE 802.1p bits on the traffic this interface receives.

S4810
Syntax

dot1p-priority priority-value
To delete the IEEE 802.1p configuration on the interface, use the no dot1ppriority command.

Parameters

priority-value

Enter a value from 0 to 7.
dot1p

Queue Number

0

2

1

0

2

1

3

3

4

4

5

5

6

6

7

7

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Quality of Service (QoS)

Introduced on the S6000.

1329

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

The dot1p-priority command changes the priority of incoming traffic on the
interface. The system places traffic marked with a priority in the correct queue and
processes that traffic according to its queue.
When you set the priority for a port channel, the physical interfaces assigned to the
port channel are configured with the same value. You cannot assign the dot1ppriority command to individual interfaces in a port channel.

rate police
Police the incoming traffic rate on the selected interface.

S4810
Syntax
Parameters

rate police [kbps] committed-rate [burst-KB] [peak [kbps] peakrate [burst-KB]] [vlan vlan-id]
kbps

Enter the keyword kbps to specify the rate limit in Kilobits
per second (Kbps). The range is from 0 to 40000000. The
default granularity is Megabits per second (Mbps).

committedrate

Enter the bandwidth in Mbps. The range is from 0 to 40000.

burst-KB

(OPTIONAL) Enter the burst size in KB. The range is from 16
to 200000. The default is 50.

peak peak-rate

(OPTIONAL) Enter the keyword peak then a number to
specify the peak rate in Mbps. The range is from 0 to 40000.

vlan vlan-id

(OPTIONAL) Enter the keyword vlan then a VLAN ID to
police traffic to those specific VLANs. The range is from 1 to
4094.

Defaults

Granularity for commited-rate and peak-rate is Mbps unless you use the kbps
option.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1330

Quality of Service (QoS)

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added the kbps option on the C-Series, E-Series, and SSeries.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

NOTE: Per Port rate shape and rate police is supported for Layer 2 tagged and
untagged switched traffic and for Layer 3 traffic. Per VLAN rate shape and rate
police is supported on only tagged ports with Layer 2 switched traffic.
S-Series
On one interface, you can configure the rate police command for a VLAN or
you can configure the rate police command for an interface. For each physical
interface, you can configure three rate police commands specifying different
VLANS.

rate shape
Shape the traffic output on the selected interface.

S4810
Syntax
Parameters

rate shape [kbps] rate [burst-KB]
kbps

Enter the keyword kbps to specify the rate limit in Kilobits
per second (Kbps). On S-Series, make the value a multiple of
64. The range is from 0 to 40000000. The default granularity
is Megabits per second (Mbps).

rate

The range is from 10 to 40000.

burst-KB

(OPTIONAL) Enter the burst size in KB. The range is from 0 to
10000. The default is 50.

Defaults

Granularity for rate is Mbps unless you use the kbps option.

Command
Modes

INTERFACE

Quality of Service (QoS)

1331

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Added the kbps option on the C-Series, E-Series, and SSeries.

Version 7.6.1.0

Introduced on the S-Series and C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

On 40-port 10G stack-unit if the traffic is shaped between 64 and 1000 Kbs, for
some values, the shaped rate is much less than the value configured
NOTE: When packets of size greater than 7000 bytes are expected to be
received from the network, Dell Networking recommends that you configure
the burst value to be more than 175 KB if you configured the rate shape. Such
a setting ensures proper bandwidth sharing across queues.

Related
Commands

rate-shape — shapes traffic output as part of the designated policy.

service-class dot1p-mapping
Configure a service-class criterion based on a dot1p value.

S4810
Syntax

Parameters

Defaults

Command
Modes

1332

service-class dot1p-mapping {dot1p0 queue | dot1p1 queue |
dot1p2 queue | dot1p3 queue | dot1p4 queue| dot1p5 queue |
dot1p6 queue | dot1p7 queue}
queue

Enter a value from 0 to 7.

For each dot1p Priority, the default CoS queue value is:
•

Dot1p Priority : 0 1 2 3 4 5 6 7

•

Queue : 2 0 1 3 4 5 6 7

CONFIGURATION

Quality of Service (QoS)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Usage
Information

To apply dot1p-queue-mapping, use the service-class dynamic dot1p
command.

Related
Commands

show qos dot1p-queue-mapping — displays the dot1p priority to queue mapping
on the switch.

service-class dynamic dot1p
Honor all 802.1p markings on incoming switched traffic on an interface (from INTERFACE mode) or on all
interfaces (from CONFIGURATION mode). A CONFIGURATION mode entry supersedes an INTERFACE
mode entry.

S4810
Syntax

service-class dynamic dot1p
To return to the default setting, use the no service-class dynamic dot1p
command.

Defaults

All dot1p traffic is mapped to Queue 0 unless you enable the service-class
dynamic dot1p command. The default mapping is as follows:

Command
Modes

•

INTERFACE

•

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Quality of Service (QoS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

1333

Usage
Information

To honor all incoming 802.1p markings on incoming switched traffic on the
interface, enter this command. By default, this facility is not enabled (that is, the
802.1p markings on incoming traffic are not honored).
You can apply this command on both physical interfaces and port channels. When
you set the service-class dynamic for a port channel, the physical interfaces
assigned to the port channel are automatically configured; you cannot assign the
service-class dynamic command to individual interfaces in a port channel.
•

All dot1p traffic is mapped to Queue 0 unless you enable the service-class
dynamic dot1p command on an interface or globally.

•

Layer 2 or Layer 3 service policies supersede dot1p service classes.

strict-priority queue
Configure a unicast queue as a strict-priority (SP) queue.

S4810
Syntax
Parameters

strict-priority queue unicast number
unicast number

Enter the keyword unicast then the queue number. The
range is from 1 to 7.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1334

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

After you configure a unicast queue as strict-priority, that particular queue, on the
entire chassis, is treated as a strict-priority queue. Traffic for a strict priority
is scheduled before any other queues are serviced. For example, if you send 100%

Quality of Service (QoS)

line rate traffic over the SP queue, it starves all other queues on the ports on which
this traffic is flowing.

Policy-Based QoS Commands
Policy-based traffic classification is handled with class maps. These maps classify unicast traffic into one
of eight classes in S-Series or eight classes in case of S6000. Dell Networking OS enables you to match
multiple class maps and specify multiple match criteria. Policy-based QoS is not supported on logical
interfaces, such as port-channels, VLANS, or loopbacks.

bandwidth-percentage
Assign a percentage of weight to the class/queue.

S4810
Syntax

bandwidth-percentage percentage
To remove the bandwidth percentage, use the no bandwidth-percentage
command.

Parameters

percentage

Enter the percentage assignment of bandwidth to the class/
queue. The range is from 1 to 100% (granularity 1%).

Defaults

none

Command
Modes

CONFIGURATION (conf-qos-policy-out)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Quality of Service (QoS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.1.9.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 6.2.1.1

Introduced on the E-Series.

The unit of bandwidth percentage is 1%. If the sum of the bandwidth percentages
given to all eight classes exceeds 100%, the bandwidth percentage automatically
scales down to 100%.

1335

Related
Commands

qos-policy-output — creates a QoS output policy.

class-map
Create/access a class map. Class maps differentiate traffic so that you can apply separate quality-ofservice policies to each class.

S4810
Syntax
Parameters

class-map {match-all | match-any} class-map-name [cpu-qos]
[layer2]
match-all

Determines how packets are evaluated when multiple match
criteria exist. Enter the keywords match-all to determine
that the packets must meet all the match criteria in order to
be a member of the class.

match-any

Determines how packets are evaluated when multiple match
criteria exist. Enter the keywords match-any to determine
that the packets must meet at least one of the match criteria
in order to be a member of the class.

class-mapname

Enter a name of the class for the class map in a character
format (32 character maximum).

cpu-qos

Enter the keyword cpu-qos to assign this Class Map to
control plane traffic only (CoPP).

layer2

Enter the keyword layer2 to specify a Layer 2 Class Map.
The default is Layer 3.

Defaults

Layer 3

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1336

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Class-map names can be 32 characters. Layer2 available on
the C-Series and S-Series.

Version 7.6.1.0

Introduced on the S-Series.

Quality of Service (QoS)

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Expanded to add support for Layer 2.

Usage
Information

Packets arriving at the input interface are checked against the match criteria and
configured using this command to determine if the packet belongs to that class.
This command accesses CLASS-MAP mode, where the configuration commands
include thematch ip and match mac options.

Related
Commands

ip access-list extended — configures an extended IP ACL.
ip access-list standard — configures a standard IP ACL.
match ip access-group — configures the match criteria based on the access
control list (ACL).
match ip precedence — identifies the IP precedence values as match criteria.
match ip dscp — configures the match criteria based on the DSCP value.
match mac access-group — configures a match criterion for a class map based on
the contents of the designated MAC ACL.
match mac dot1p — configures a match criterion for a class map based on a dot1p
value.
match mac vlan — configures a match criterion for a class map based on VLAN ID.
service-queue — assigns a class map and QoS policy to different queues.
show qos class-map — views the current class map information.

clear qos statistics
Clear qos statistics clears statistics from show qos statistics.

S4810
Syntax
Parameters

Defaults

Quality of Service (QoS)

clear qos statistics interface-name
interface-name

Enter one of the following keywords:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

none

1337

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.18.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

show qos statistics — displays the QoS statistics.

description
Add a description to the selected policy map or QoS policy.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Enter a description to identify the policies (80 characters
maximum).

Defaults

none

Command
Modes

CONFIGURATION (policy-map-input and policy-map-output; conf-qos-policy-in
and conf-qos-policy-out; wred)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1338

Introduced on the S6000.

Quality of Service (QoS)

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
7.7.1.0

Introduced.

policy-map-input — creates an input policy map.
policy-map-output — creates an output policy map.
qos-policy-input — creates an input QoS-policy on the router.
qos-policy-output — creates an output QoS-policy on the router.
wred-profile — creates a WRED profile.

match ip access-group
Configure match criteria for a class map, based on the access control list (ACL).
NOTE: IPv6 class-maps and IP-any class-maps do not match. This condition is true for IPv6 and IPany class-maps on both ACLs as well as VLANs.

S4810
Syntax

match ip access-group access-group-name [set-ip-dscp value |
set-color value]
To remove ACL match criteria from a class map, use the no match ip accessgroup access-group-name [set-ip-dscp value | set-color value]
command.

Parameters

access-groupname

Enter the ACL name whose contents are used as the match
criteria in determining if packets belong to the class the
class-map specifies.

set-ip-dscp
value

(OPTIONAL) Enter the keywords set-ip-dscp then the IP
DSCP value. The matched traffic is marked with the DSCP
value. The range is from 0 to 63.

set-color value

(Optional) Enter the keyword set-color followed by a color
value. Traffic that fulfills the match criteria is marked with the
color value that you specify. The default value is Yellow.

Defaults

none

Command
Modes

CLASS-MAP CONFIGURATION (config-class-map)

Quality of Service (QoS)

1339

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Usage
Information

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria. For class-map match-any, a
maximum of five ACL match criteria are allowed. For class-map match-all,
only one ACL match criteria is allowed.

Related
Commands

class-map — identifies the class map.

match ip dscp
Use a differentiated services code point (DSCP) value as a match criteria.

S4810
Syntax

match {ip | ipv6 | ip-any} dscp dscp-list [set-ip-dscp value]
To remove a DSCP value as a match criteria, use the no match {ip | ipv6 |
ip-any} dscp dscp-list [[multicast] set-ip-dscp value] command.

Parameters

ip

Enter the keyword ip to support IPv4 traffic.

ipv6

Enter the keyword ipv6 to support IPv6 traffic.

ip-any

Enter the keyword ip-any to support IPv4 and IPv6 traffic.

dscp-list

Enter the IP DSCP values that is to be the match criteria.
Separate values by commas — no spaces ( 1,2,3 ) or indicate
a list of values separated by a hyphen (1-3). The range is from
0 to 63.

set-ip-dscp
value

(OPTIONAL) Enter the keywords set-ip-dscp then the IP
DSCP value. The matched traffic is marked with the DSCP
value. The range is from 0 to 63.

Defaults

none

Command
Modes

CLASS-MAP CONFIGURATION (config-class-map)

1340

Quality of Service (QoS)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.5(0.0)

Added the ipv6 and ip-any options on the Z9000, S6000,
S4820T, S4810, MXL.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.
The match ip dscp and match ip precedence commands are mutually
exclusive.
Up to 64 IP DSCP values can be matched in one match statement. For example, to
indicate IP DCSP values 0 1 2 3 4 5 6 7, enter either the match ip dscp
0,1,2,3,4,5,6,7 or match ip dscp 0-7 command.
NOTE: Only one of the IP DSCP values must be a successful match criterion,
not all of the specified IP DSCP values must match.

Related
Commands

class-map — identifies the class map.

match ip precedence
Use IP precedence values as a match criteria.

S4810
Syntax

match {ip | ipv6 | ip-any} precedence ip-precedence-list [setip-dscp value]
To remove IP precedence as a match criteria, use the no match {ip | ipv6 |
ip-any} precedence ip-precedence-list [[multicast] set-ip-dscp
value] command.

Parameters

Quality of Service (QoS)

ip

Enter the keyword ip to support IPv4 traffic.

ipv6

Enter the keyword ipv6 to support IPv6 traffic.

ip-any

Enter the keyword ip-any to support IPv4 and IPv6 traffic.

1341

ipprecedence-list

Enter the IP precedence value(s) as the match criteria.
Separate values by commas — no spaces ( 1,2,3 ) or indicate
a list of values separated by a hyphen (1-3). The range is from
0 to 7.

set-ip-dscp
value

(OPTIONAL) Enter the keywords set-ip-dscp then the IP
DSCP value. The matched traffic is marked with the DSCP
value. The range is from 0 to 63.

Defaults

none

Command
Modes

CLASS-MAP CONFIGURATION (config-class-map)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.5(0.0)

Added support for the ipv6 and ip-any options on the Z9000,
S6000, S4820T, S4810, MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.
The match ip precedence command and the match ip dscp command are
mutually exclusive.
Up to eight precedence values can be matched in one match statement. For
example, to indicate the IP precedence values 0 1 2 3, enter either the match ip
precedence 0-3 or match ip precedence 0,1,2,3 command.
NOTE: Only one of the IP precedence values must be a successful match
criterion, not all of the specified IP precedence values must match.

Related
Commands

1342

class-map — identifies the class map.

Quality of Service (QoS)

match ip vlan
Uses a VLAN as the match criterion for an L3 class map.

S4810
Syntax

match ip vlan vlan-id
To remove VLAN as the match criterion, use the no match ip vlan vlan-id
command.

Parameters

vlan vlan-id

Enter the keyword vlan and then the ID of the VLAN. The
range is from 1 to 4094.

Defaults

none

Command
Modes

CONF-CLASS-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.
Use this command to match an IP class-map against a single VLAN ID .

Related
Commands

class-map — identifies the class map.

match ip vrf
Uses a VRF as the match criterion for an L3 class map.

S4810
Syntax

match ip vrf vrf-id
To remove VRF as the match criterion, use the no match ip vrf vrf-id
command.

Parameters

Defaults

Quality of Service (QoS)

vlan vlan-id

Enter the keyword vrf and then the ID of the VRF. The range
is from 1 to 63.

none

1343

Command
Modes

CONF-CLASS-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.
Use this command to match an IP class-map against a single VRF ID .

Related
Commands

class-map — identifies the class map.

match mac access-group
Configure a match criterion for a class map, based on the contents of the designated MAC ACL.

S4810
Syntax
Parameters

match mac access-group {mac-acl-name}
mac-acl-name

Enter a MAC ACL name. Its contents is used as the match
criteria in the class map.

Defaults

none

Command
Modes

CLASS-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1344

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Available on the C-Series and S-Series.

Version 7.5.1.0

Added support for the DSCP Marking option.

Quality of Service (QoS)

pre-Version
7.4.1.0

Introduced.

Usage
Information

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.

Related
Commands

class-map — identifies the class map.

match mac dot1p
Configure a match criterion for a class map based on a dot1p value.

S4810
Syntax
Parameters

match mac dot1p {dot1p-list}
dot1p-list

Enter a dot1p value. The range is from 0 to 7.

Defaults

none

Command
Modes

CLASS-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Available on the C-Series and S-Series.

Version 7.5.1.0

Added support for the DSCP Marking option.

pre-Version
7.4.1.0

Introduced.

Usage
Information

To access this command, enter the class-map command. After the class map is
identified, you can configure the match criteria.

Related
Commands

class-map — identifies the class map.

Quality of Service (QoS)

1345

match mac vlan
Configure a match criterion for a class map based on VLAN ID.

S4810
Syntax
Parameters

match mac vlan number
number

Enter the VLAN ID. The range is from 1 to 4094.

Defaults

none

Command
Modes

CLASS-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced.

Usage
Information

To access this command, enter the class-map command. You can match against
only one VLAN ID.

Related
Commands

class-map — identifies the class map.

policy-aggregate
Allow an aggregate method of configuring per-port QoS via policy maps. An aggregate QoS policy is part
of the policy map (output) applied on an interface.

S4810
Syntax

policy-aggregate qos-policy-name
To remove a policy aggregate configuration, use the no policy-aggregate
qos-policy-name command.

Parameters

1346

qos-policyname

Enter the name of the policy map in character format (32
characters maximum).

Quality of Service (QoS)

Defaults

none

Command
Modes

CONFIGURATION (policy-map-input and policy-map-output)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

This command is supported on S-Series, S6000 and S4810 under policy-mapinput mode only.

The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Policy name character limit increased from 16 to 32.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

policy-map-input — creates an input policy map.
policy-map-output — creates an output policy map (E-Series Only).

policy-map-input
Create an input policy map.

S4810
Syntax

policy-map-input policy-map-name cpu-qos | [layer2]
To remove an input policy map, use the no policy-map-input policy-mapname cpu-qos | [layer2] command.

Parameters

Quality of Service (QoS)

policy-mapname

Enter the name of the policy map in character format (32
characters maximum).

cpu-qos

Enter the cpu-qos keyword to assign this ACL to control
plane traffic only.

layer2

(OPTIONAL) Enter the keyword layer2 to specify a Layer 2
Class Map. The default is Layer 3.

1347

Defaults

Layer 3

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

The input policy map is used to classify incoming traffic to different flows using
class-map, QoS policy, or incoming packets DSCP. This command enables PolicyMap-Input Configuration mode (conf-policy-map-in).
When changing a “service-queue” configuration in a QoS policy map, all QoS rules
are deleted and re-added automatically to ensure that the order of the rules is
maintained. As a result, the Matched Packets value shown in the “show qos
statistics” command is reset.

Related
Commands

service-queue — assigns a class map and QoS policy to different queues.
policy-aggregate — allows an aggregate method of configuring per-port QoS
using policy maps.
service-policy input — applies an input policy map to the selected interface.

policy-map-output
Create an output policy map.

S4810
Syntax

policy-map-output policy-map-name
To remove a policy map, use the no policy-map-output policy-map-name
command.

Parameters

Defaults

1348

policy-mapname

Enter the name for the policy map in character format (32
characters maximum).

none

Quality of Service (QoS)

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Policy name character limit increased from 16 to 32.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

To assign traffic to different flows using QoS policy, use the Output Policy map.
This command enables Policy-Map-Output Configuration mode (conf-policymap-out).

Related
Commands

service-queue — assigns a class map and QoS policy to different queues.
policy-aggregate — allows an aggregate method of configuring per-port QoS
using policy maps.
service-policy output — applies an output policy map to the selected interface.

qos-policy-input
Create a QoS input policy on the router.

S4810
Syntax

qos-policy-input qos-policy-name cpu-qos | layer2
To remove an existing input QoS policy from the router, use the no qos-policyinput qos-policy-name cpu-qos | layer2 command.

Parameters

Quality of Service (QoS)

qos-policyname

Enter the name for the policy map in character format (32
characters maximum).

cpu-qos

(OPTIONAL) Enter the keyword cpu-qos keyword to assign
this ACL to control plane traffic only.

layer2

(OPTIONAL) Enter the keyword layer2 to specify a Layer 2
Class Map. The default is Layer 3.

1349

Defaults

Layer 3

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Use this command to specify the name of the input QoS policy. Once input policy
is specified, rate-police can be defined. This command enables the qos-policyinput configuration mode— (conf-qos-policy-in).
When changing a Service-Queue configuration in a QoS policy map, all QoS rules
are deleted and re-added automatically to ensure that the order of the rules is
maintained. As a result, the Matched Packets value shown in the show qos
statistics command is reset.

Related
Commands

rate police — incoming traffic policing function.

qos-policy-output
Create a QoS output policy.

S4810
Syntax

qos-policy-output qos-policy-name
To remove an existing output QoS policy, use the no qos-policy-output qospolicy-name command.

Parameters

qos-policyname

Enter your output QoS policy name in character format (32
characters maximum).

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1350

Quality of Service (QoS)

The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Policy name character limit increased from 16 to 32.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Use this command to specify the name of the output QoS policy. Once output
policy is specified, rate-shape, scheduler strict, bandwidth-percentage, and WRED
can be defined. This command enables the qos-policy-output configuration mode
—(conf-qos-policy-out).
When rate-shape in QoS policy is applied both on queue level and aggregate
mode, the queue-based shaping occurs first followed by the aggregate rate
shaping.

Related
Commands

bandwidth-percentage — assigns weight to the class/queue.
wred — assigns yellow or green drop precedence.

queue egress
Assign a WRED Curve to all eight egress Multicast queues or designate the percentage for the Multicast
bandwidth queue.

S4810
Syntax

queue egress multicast linecard {slot number port-set number |
all} [wred-profile name | multicast-bandwidth percentage]
To return to the default, use the no queue egress multicast linecard
{slot number port-set number | all} [wred-profile name |
multicast-bandwidth percentage] command.

Parameters

Quality of Service (QoS)

linecard
number

Enter the keyword linecard then the line card slot number.

port-set
number

Enter the keywords port-set then the line card’s port pipe.
The range is from 0 or 1.

all

Enter the keyword all to apply to all line cards.

1351

wred-profile
name

(OPTIONAL) Enter the keywords wred-profile then your
WRED profile name in character format (16 character
maximum). Or use one of the pre-defined WRED profile
names.
Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g,
wred_teng_y, wred_teng_g.

multicastbandwidth
percentage

(OPTIONAL) Enter the keywords multicast-bandwidth
then the bandwidth percentage. The range is from 0 to
100%.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.8.10

Introduced on the S4810.

Version 7.5.1.0

Added support for multicast-bandwidth.

Version 7.4.1.0
and 6.5.3.0

Introduced on the E-Series.

This command does not uniquely identify a queue, but rather identifies only a set of
queues. The WRED curve is applied to all eight egress Multicast queues.
Important Points to Remember — Multicast-Bandwidth Option

1352

•

A unique multicast weighted fair queuing (WFQ) setting can be applied only on
a per port-pipe basis. The minimum percentage of the multicast bandwidth
assigned to any of the ports in the port-pipe takes effect for the entire portpipe.

•

If the percentage of multicast bandwidth is 0, control traffic going through
multicast queues are dropped.

•

The no form of the command without multicast-bandwidth and wredprofile, removes both the wred-profile and multicast-bandwidth
configuration.

•

On 10-Gigabit ports only, the multicast bandwidth option works only if the total
unicast bandwidth is more than the multicast bandwidth.

•

If strict priority is applied along with multicast-bandwidth, the effect of strict
priority is on all ports where unicast and multicast bandwidth are applied.

•

When multicast bandwidth is assigned along with unicast bandwidth, first
multicast bandwidth is reserved for that port, then the remaining unicast

Quality of Service (QoS)

bandwidth configured is adjusted according to the bandwidth available after
reserving for multicast bandwidth.

queue ingress
Assign a WRED Curve to all eight ingress Multicast queues or designate the percentage for the Multicast
bandwidth queue.

S4810
Syntax

queue ingress multicast {linecard slot number port-set number |
all} [wred-profile name]
To return to the default, use the no queue ingress multicast {linecard
slot number port-set number | all} [wred-profile name] command.

Parameters

linecard
number

Enter the keyword linecard then the line card slot number.

port-set
number

Enter the keywords port-set then the line card’s port pipe.
The range is from 0 or 1.

all

Enter the keyword all to apply to all line cards.

wred-profile
name

(OPTIONAL) Enter the keywords wred-profile then your
WRED profile name in character format (16 character
maximum). Or use one of the pre-defined WRED profile
names.
Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g,
wred_teng_y, wred_teng_g.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Quality of Service (QoS)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Version 7.4.1.0
and 6.5.3.0

Introduced on the E-Series.

This command does not uniquely identify a queue, but rather identifies only a set of
queues. The WRED Curve is applied to all eight ingress Multicast queues.

1353

NOTE: The multicast-bandwidth option is not supported on queue
ingress. If you attempt to use the multicast-bandwidth option, the
following reject error message is generated: % Error:Bandwidth-percent
is not allowed for ingress multicast.

rate-police
Specify the policing functionality on incoming traffic.

S4810
Syntax
Parameters

rate-police [kbps] committed-rate [burst-KB] [peak [kbps] peakrate [burst-KB]]
kbps

Enter the keyword kbps to specify the rate limit in Kilobits
per second (Kbps). Make the following value a multiple of 64.
The range is from 0 to 40000000. The default granularity is
Megabits per second (Mbps).

committedrate

Enter the bandwidth in Mbps. The range is from 0 to 40000.

burst-KB

(OPTIONAL) Enter the burst size in KB. The range is from 16
to 200000. The default is 100.

peak peak-rate

(OPTIONAL) Enter the keyword peak then a number to
specify the peak rate in Mbps. The range is from 0 to 40000.
The default is the same as designated for committed-rate.

Defaults

Burst size is 100KB. peak-rate is by default the same as committed-rate.
Granularity for committed-rate and peak-rate is Mbps unless you use the kbps
option.

Command
Modes

QOS-POLICY-IN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1354

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

The default burst size is 100Kb. If a different value is required, you must configure
the burst size to the required value.

Quality of Service (QoS)

Related
Commands

rate police — specifies traffic policing on the selected interface.
qos-policy-input — creates a QoS output policy.

rate-shape
Shape traffic output as part of the designated policy.

S4810
Syntax
Parameters

rate-shape [kbps] rate [burst-KB]
kbps

Enter the keyword kbps to specify the rate limit in Kilobits
per second (Kbps). Make the following value a multiple of 64.
The range is from 0 to 40000000. The default granularity is
Megabits per second (Mbps).

rate

The range is from 10 to 40000.

burst-KB

(OPTIONAL) Enter the burst size in KB. The range is from 0 to
40000. The default is 100.

Defaults

Burst size is 10KB. Granularity for rate is Mbps unless you use the kbps option.

Command
Modes

QOS-POLICY-OUT

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

rate shape — shapes traffic output as part of the designated policy.
qos-policy-output — creates a QoS output policy.

service-policy input
Apply an input policy map to the selected interface.

S4810
Syntax

Quality of Service (QoS)

service-policy input policy-map-name [layer2]

1355

To remove the input policy map from the interface, use the no service-policy
input policy-map-name [layer2] command.
Parameters

policy-mapname

Enter the name for the policy map in character format (32
characters maximum). You can identify an existing policy
map or name one that does not yet exist.

layer2

(OPTIONAL) Enter the keyword layer2 to specify a Layer 2
Class Map. The default is Layer 3.

Defaults

Layer 3

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

You can attach a single policy-map to one or more interfaces to specify the
service-policy for those interfaces. A policy map attached to an interface can be
modified.
NOTE: The service-policy commands are not allowed on a port channel.
The service-policy input policy-map-name command and the
service-class dynamic dot1p command are not allowed simultaneously
on an interface.

Related
Commands

policy-map-input — creates an input policy map.

service-policy output
Apply an output policy map to the selected interface.

S4810
Syntax

service-policy output policy-map-name
To remove the output policy map from the interface, use the no servicepolicy output policy-map-name command.

1356

Quality of Service (QoS)

Parameters

policy-mapname

Enter the name for the policy map in character format (32
characters maximum). You can identify an existing policy
map or name one that does not yet exist.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Usage
Information

A single policy-map can be attached to one or more interfaces to specify the
service-policy for those interfaces. A policy map attached to an interface can be
modified.

Related
Commands

policy-map-output — creates an output policy map.

service-queue
Assign a class map and QoS policy to different queues.

S4810
Syntax

service-queue queue-id [class-map class-map-name] [qos-policy
qos-policy-name]
To remove the queue assignment, use the no service-queue queue-id
[class-map class-map-name] [qos-policy qos-policy-name]
command.

Parameters

queue-id

Enter the value used to identify a queue. The range is from 0
to 7.

class-map
class-mapname

(OPTIONAL) Enter the keyword class-map then the class
map name assigned to the queue in character format (16
character maximum).
NOTE: This option is available under policy-mapinput only.

Quality of Service (QoS)

1357

qos-policy
qos-policyname

(OPTIONAL) Enter the keywords qos-policy then the QoS
policy name assigned to the queue in text format (16
characters maximum). This specifies the input QoS policy
assigned to the queue under policy-map-input and
output QoS policy under policy-map-output context.

Defaults

none

Command
Modes

CONFIGURATION (conf-policy-map-in and conf-policy-map-out)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Usage
Information

There are eight queues per interface on the S6000 and four queues on the SSeries. This command assigns a class map or QoS policy to different queues.

Related
Commands

class-map — identifies the class map.
service-policy input — applies an input policy map to the selected interface.
service-policy output — applies an output policy map to the selected interface.

set
Mark outgoing traffic with a differentiated service code point (DSCP) or dot1p value.

S4810
Syntax
Parameters

Defaults

1358

set {ip-dscp value | mac-dot1p value}
ip-dscp value

(OPTIONAL) Enter the keywords ip-dscp then the IP DSCP
value. The range is from 0 to 63.

none

Quality of Service (QoS)

Command
Modes

CONFIGURATION (conf-qos-policy-in)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

After the IP DSCP bit is set, other QoS services can then operate on the bit settings.

show qos class-map
View the current class map information.

S4810
Syntax
Parameters

show qos class-map [class-name]
class-name

(Optional) Enter the name of a configured class map.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dell#show qos class-map
Class-map match-any CM
Match ip access-group ACL

Quality of Service (QoS)

1359

Related
Commands

class-map — identifies the class map.

show qos dot1p-queue-mapping
Displays the dot1p priority to queue mapping on the switch.

S4810
Syntax
Defaults

show qos dot1p-queue-mapping
•

dot1p Priority: 0 1 2 3 4 5 6 7

•

Queue: 2 0 1 3 4 5 6 7

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

service-class dot1p-mapping — Identifies the class map.

show qos policy-map
View the QoS policy map information.

S4810
Syntax
Parameters

1360

show qos policy-map {summary [interface] | detail}
summary
interface

To view a policy map interface summary, enter the keyword
summary and optionally one of the following keywords and
slot/port or number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Quality of Service (QoS)

detail interface

To view a policy map interface in detail, enter the keyword
detail and optionally one of the following keywords and
slot/port or number information:
•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example (IPv4)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dell#show qos policy-map detail tengigabitethernet 0/0
Interface TeGigabitEthernet 4/1
Policy-map-input policy
Queue# Class-map-name Qos-policy-name
0 - q0
1 CM1q1
2 CM2q2
3 CM3q3
4 CM4q4
5 CM5q5
6 CM6q6
7 CM7q7
Dell#

Example (IPv6)

Dell# show qos policy-map detail Tegigabitethernet 0/0
Interface TeGigabitEthernet 8/29
Policy-map-input pmap1
Queue# Class-map-name Qos-policy-name
0
c0
q0
1
c1
q1
2
c2
q2
3
c3
q3
4
c4
q4

Quality of Service (QoS)

1361

5
6
7
Dell#
Example
(Summary IPv4)

c5
c6
c7

q6
q7

Dell#sho qos policy-map summary
Interface policy-map-input policy-map-output
Gi 4/1
PM1
Gi 4/2
PM2
PMOut
Dell#

show qos policy-map-input
View the input QoS policy map details.

S4810
Syntax
Parameters

show qos policy-map-input [policy-map-name] [class class-mapname] [qos-policy-input qos-policy-name]
policy-mapname

Enter the policy map name.

class classmap-name

Enter the keyword class then the class map name.

qos-policyinput qospolicy-name

Enter the keyword qos-policy-input then the QoS policy
name.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1362

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Added Trust IPv6 diffserv.

Quality of Service (QoS)

pre-Version
6.1.1.1
Example

Introduced on the E-Series.

Dell#show qos policy-map-input
Policy-map-input PolicyMapInput
Aggregate Qos-policy-name AggPolicyIn
Queue# Class-map-name Qos-policy-name
0
ClassMap1
qosPolicyInput
Dell#

show qos policy-map-output
View the output QoS policy map details.

S4810
Syntax
Parameters

Defaults
Command
Modes
Command
History

show qos policy-map-output [policy-map-name] [qos-policy-output
qos-policy-name]
policy-mapname

Enter the policy map name.

qos-policyoutput qospolicy-name

Enter the keyword qos-policy-output then the QoS
policy name.

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Dell#show qos policy-map-output
Policy-map-output PolicyMapOutput

Quality of Service (QoS)

1363

Aggregate Qos-policy-name AggPolicyOut
Queue#
Qos-policy-name
0
qosPolicyOutput
Dell#

show qos qos-policy-input
View the input QoS policy details.

S4810
Syntax
Parameters

show qos qos-policy-input [qos-policy-name]
qos-policyname

Enter the QoS policy name.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Dell#show qos qos-policy-input
Qos-policy-input QosInput
Rate-police 100 50 peak 100 50
Dscp 32
Dell#

1364

Quality of Service (QoS)

show qos qos-policy-output
View the output QoS policy details.

S4810
Syntax
Parameters

show qos qos-policy-output [qos-policy-name]
qos-policyname

Enter the QoS policy name.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

pre-Version
6.1.1.1

Introduced on the E-Series.

Dell#show qos qos-policy-output
Qos-policy-output qosOut
Rate-limit 50 50 peak 50 50
Wred yellow 1
Wred green 1

show qos statistics
View QoS statistics.

S4810
Syntax

Quality of Service (QoS)

show qos statistics {wred-profile [interface]} | [interface]

1365

Parameters

wred-profile
interface

interface

Enter the keywords wred-profile and optionally one of
the following keywords and slot/port or number information:
•

For a 40–Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

Enter one of the following keywords and slot/port or number
information:
•

For a 40–Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

show qos wred-profile
View the WRED profile details.

S4810
Syntax
Parameters

show qos wred-profile wred-profile-name
wred-profilename

Defaults

none

Command
Modes

•

1366

Enter the WRED profile name to view the profile details.

EXEC

Quality of Service (QoS)

•
Command
History

EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Dell#show qos wred-profile
Wred-profile-name
min-threshold
drop-rate
wred_drop
0
100
wred_teng_y
238
100
wred_teng_g
238
50
wred_fortyg_y
238
50
wred_fortyg_g
238
25
ecn
594
50
Dell#

max-threshold

max-

0
2378
2378
2378
2378
5941

test cam-usage
Check the Input Policy Map configuration for the CAM usage.

S4810
Syntax
Parameters

Defaults

Quality of Service (QoS)

test cam-usage service-policy input policy-map stack-unit
{[number port-set portpipe number] | [all]}
policy-map

Enter the policy map name.

stackunitnumber

(OPTIONAL) Enter the keyword stack-unit then the stackunit slot number.

port-set
portpipe
number

Enter the keywords port-set then the stack-unit port pipe
number. The range is from 0 or 1.

stack-unit all

(OPTIONAL) Enter the keywords stack-unit all to indicate
all stack-unit.

none

1367

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

This feature allows you to determine if the CAM has enough space available before
applying the configuration on an interface.
An input policy map with both Trust and Class-map configuration, the Class-map
rules are ignored and only the Trust rule is programmed in the CAM. In such an
instance, the Estimated CAM output column contains the size of the CAM space
required for the Trust rule and not the Class-map rule.
The following describes the text cam-usage service-policy input
policy-map stack-unit command shown in the following example.
Field

Description

stack-unit

Indicates the stack-unit slot number.

Portpipe

Indicates the portpipe number.

CAM Partition

The CAM space where the rules are added.

Available CAM

Indicates the free CAM space, in the partition, for the
classification rules.
NOTE: The CAM entries reserved for the default rules
are not included in the Available CAM column; free
entries, from the default rules space, cannot be used as
a policy map for the classification rules.

Estimated CAM
per Port

Indicates the number of free CAM entries required (for the
classification rules) to apply the input policy map on a single
interface.
NOTE: The CAM entries for the default rule are not
included in this column; a CAM entry for the default rule
is always dedicated to a port and is always available for
that interface.

1368

Quality of Service (QoS)

Field

Description

Status (Allowed
ports)

Indicates if the input policy map configuration on an
interface belonging to a stack-unit/port-pipe is successful
— Allowed (n) — or not successful — Exception. The
allowed number (n) indicates the number of ports in that
port-pipe on which the Policy Map can be applied
successfully.

NOTE: In a Layer 2 Policy Map, IPv4/IPv6 rules are not allowed; therefore, the
output contains only L2ACL CAM partition entries.
Example

Dell# test cam-usage service-policy input pmap_l2 stack-unit
all
For a L2 Input Policy Map pmap_l2, the output must be as
follows,
stack-unit|Portpipe|CAM Partition|Available CAM|Estimated CAM|
Status
|
|
|
|per Port
|
(Allowed ports)
0
0
L2ACL
500
200
Allowed (2)
0
1
L2ACL
100
200
Exception
1
0
L2ACL
1000
200
Allowed (5)
1
1
L2ACL
0
200
Exception
…
…
…
13
1
L2ACL
400
200
Allowed (2)
Dell#

threshold
Specify the minimum and maximum threshold values for the configured WRED profiles.

S4810
Syntax

threshold min number max number max-drop-probability
To remove the threshold values, use the no threshold min number max
number command.

Parameters

Quality of Service (QoS)

min number

Enter the keyword min then the minimum threshold number
for the WRED profile. The range is from 1 to 9360.

max-dropprobability
number

Enter the keyword max-drop-probability followed by the
maximum number of packets for the WRED profile. The
range is from 0 to 100 KB

1369

Defaults

none

Command
Modes

CONFIGURATION (config-wred)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.8.0

Introduced on the S4810.

pre-Version
6.1.1.1

Introduced on the E-Series.

To configure the minimum and maximum threshold values for user-defined
profiles, use this command. Additionally, to modify the minimum and maximum
threshold values for the pre-defined WRED profiles, use this command. If you
delete the threshold values of the pre-defined WRED profiles, the profiles revert to
their original default values.
Pre-Defined WRED
Profile Name

Minimum
Threshold

Maximum
Threshold

wred_drop

0

0

100

wred_ten_y

467

4671

100

wred_ten_g

467

4671

50

wred_fortyg_y

467

4671

50

wred_fortyg_g

467

4671

25

wred-profile — creates a WRED profile.

trust
Specify dynamic classification (DSCP) or dot1p to trust.

S4810
Syntax
Parameters

1370

trust {diffserv [fallback]| dot1p [fallback]}
diffserv

Enter the keyword diffserv to specify trust of DSCP
markings.

dot1p

Enter the keyword dot1p to specify trust dot1p
configuration.

Quality of Service (QoS)

fallback

Enter the keyword fallback to classify packets according
to their DSCP value as a secondary option in case no match
occurs against the configured class maps.

Defaults

none

Command
Modes

CONFIGURATION (conf-policy-map-in)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added fallback to the E-Series.

Version 8.2.1.0

Added dot1p to the C-Series and S-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added dot1p and IPv6 DSCP.

pre-Version
6.1.1.1

Introduced on the E-Series

When you configure trust, matched bytes/packets counters are not incremented
in the show qos statistics command.
Dynamic mapping honors packets marked according to the standard definitions of
DSCP. The following lists the default mapping.
DSCP/CP
hex Range
(XXX)

Traditional
IP
Precedenc
e

S6000
Internal
Queue ID

S-Series
Internal
Queue ID

DSCP/CP
Decimal

111XXX

Network
Control

7

3

48–63

110XXX

Internetwo
rk Control

6

3

48–63

CRITIC/EC
P

5

2

32–47

101XXX

Quality of Service (QoS)

DSCP
Definition

EF
(Expedited
Forwarding
)

1371

DSCP/CP
hex Range
(XXX)

DSCP
Definition

Traditional
IP
Precedenc
e

S6000
Internal
Queue ID

S-Series
Internal
Queue ID

DSCP/CP
Decimal

100XXX

AF4
(Assured
Forwarding
)

Flash
Override

4

2

32–47

011XXX

AF3

Flash

3

1

16–31

010XXX

AF2

Immediate

2

1

16–31

001XXX

AF1

Priority

1

0

0–15

000XXX

BE (Best
Effort)

Best Effort

0

0

0–15

wred
Designate the WRED profile to yellow or green traffic.

S4810
Syntax

wred {yellow | green} profile-name
To remove the WRED drop precedence, use the no wred {yellow | green} [profilename] command.

Parameters

yellow | green

Enter the keyword yellow for yellow traffic. A DSCP value of
xxx110 and xxx100, xxx101 maps to yellow.
Enter the keyword green for green traffic. A DSCP value of
xxx1xx are green and DSCP 111111 are red packets.

profile-name

Enter your WRED profile name in character format (16
character maximum). Or use one of the five pre-defined
WRED profile names.
Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g,
wred_teng_y, wred_teng_.

Defaults

When WRED green is applied, default WRED yellow profiles take effect and viceversa.

Command
Modes

CONFIGURATION (conf-qos-policy-out)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1372

Quality of Service (QoS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Profile name character limit increased from 16 to 32.

pre-Version
6.1.1.1

Introduced on the .E-Series

Usage
Information

To assign drop precedence to green or yellow traffic, use this command. If there is
no honoring enabled on the input, all the traffic defaults to green drop precedence.

Related
Commands

wred-profile — creates a WRED profile and name that profile.
trust — defines the dynamic classification to trust DSCP.

wred ecn
To indicate network congestion, rather than dropping packets, use explicit congestion notification (ECN).

S4810
Syntax

wred ecn
To stop marking packets, use the no wred ecn command.

Defaults

none

Command
Modes

CONFIGURATION (conf-qos-policy-out)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Quality of Service (QoS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820t.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

When you enable wred ecn, and the number of packets in the queue is below the
minimum threshold, packets are transmitted per the usual WRED treatment.

1373

When you enable wred ecn, and the number of packets in the queue is between
the minimum threshold and the maximum threshold, one of the following three
scenarios can occur:
•

If the transmission endpoints are ECN-capable and traffic is congested, and the
WRED algorithm determines that the packet should have been dropped based
on the drop probability, the packet is transmitted and marked so the routers
know the system is congested and can slow transmission rates.

•

If neither endpoint is ECN-capable, the packet may be dropped based on the
WRED drop probability. This behavior is the identical treatment that a packet
receives when WRED is enabled without ECN configured on the router.

When you enable wred ecn, and the number of packets in the queue is above the
maximum threshold, packets are dropped based on the drop probability. This
behavior is the identical treatment a packet receives when WRED is enabled
without ECN configured on the router.
Related
Commands

wred-profile — creates a WRED profile and name that profile.

wred-profile
Create a WRED profile and name the profile.

S4810
Syntax

wred-profile wred-profile-name
To remove an existing WRED profile, use the no wred-profile command.

Parameters

wred-profilename

Enter your WRED profile name in character format (16
character maximum). Or use one of the pre-defined WRED
profile names. You can configure up to 26 WRED profiles
plus the five pre-defined profiles, for a total of 31 WRED
profiles.
Pre-defined Profiles: wred_drop, wred-ge_y, wred_ge_g,
wred_teng_y, wred_teng_g.

Defaults

The five pre-defined WRED profiles. When you configure a new profile, the
minimum and maximum threshold defaults to predefined wred_ge_g values.
If green profile is applied, default yellow also take effect and vice-versa.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1374

Quality of Service (QoS)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
6.1.1.1

Introduced on the E-Series

Usage
Information

Use the default pre-defined profiles or configure your own profile. You cannot
delete the pre-defined profiles or their default values. This command enables
WRED configuration mode —(conf-wred).

Related
Commands

threshold — specifies the minimum and maximum threshold values of the WRED
profile.

DSCP Color Map Commands
The DSCP color map allows you to set the number of specific DSCP values to yellow or red. Traffic
marked as yellow delivers traffic to the egress queue which will either transmit the packet if it has
available bandwidth or drop the packet due to no ability to send. Traffic marked as red (high drop
precedence) is dropped.

dscp
Sets the number of specific DSCP values for a color map profile to yellow or red.

Syntax

dscp {yellow | red} [list-dscp-values]
To remove a color policy map profile, use the no dscp {yellow | red}
[dscp-list] command.

Parameters

Quality of Service (QoS)

Yellow

Enter the yellow keyword. Traffic marked as yellow delivers
traffic to the egress queue which either transmits the packet
if it has available bandwidth or drops the packet due to no
ability to send.

Red

Enter the red keyword. Traffic marked as red is dropped.

dscp-list

Enter a list of IP DSCP values. The dscp-list parameter
specifies the full list of IP DSCP value(s) for the specified
color. Each DSCP value in a list is separate values by commas
– no spaces (1,2,3) or indicates a list of values separated by a
hyphen (1-3). Range is 0 to 63.

1375

Defaults

None

Command
Modes

CONFIG-COLOR-MAP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5.0.0

Usage
Information

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

If the specified color-map does not exist, the Diffserv Manager (DSM) creates a
color map and sets all the DSCP values to green (low drop precedence).
The default setting for each DSCP value (0-63) is green (low drop
precedence). This command allows setting the number of specific DSCP values to
yellow or red.
Important Points to Remember
•

All DSCP values that are not specified as yellow or red are colored green.

•

A DSCP value cannot be in both the yellow and red lists. Setting the red or
yellow list with any DSCP value that is already in the other list results in an error
and no update to that list is made.

•

Each color map can only have one list of DSCP values for each color; any DSCP
values previously listed for that color that are not in the new DSCP list are
colored green.

Example

Dell(conf-dscp-color-map)# dscp yellow 9,10,11,13,15,16

Related
Commands

qos dscp-color-map — configures the DSCP color map
qos dscp-color-policy— configures a DSCP color policy

qos dscp-color-map
Configure the DSCP color map.

Syntax

qos dscp-color-map map-name
To remove a color map, use the no qos dscp-color-map map-name command.

Parameters

Defaults

1376

map-name

Enter the name of the DSCP color map. The map name can
have a maximum of 32 characters.

None

Quality of Service (QoS)

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5.0.0

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

Usage
Information

A color map outlines the codepoint mappings to the appropriate color mapping
(green, yellow, red) for the traffic. The system uses this information use to handle
the traffic on the interface based on the traffic priority and places it into the
appropriate shaping queue. You cannot delete a DSCP color map when it is
configured on an interface. If you do, all the DSCP values are set to green (low
drop precedence). To delete the DSCP color map that is being used by one or
more interfaces, remove the DSCP map from each interface.

Example

Dell(conf)#qos dscp-color-map mymap

Related
Commands

qos dscp-color-map— associates the DSCP color map profile with an interface so
that all IP packets received on it is given a color based on that color map
dscp— sets the number of specific DSCP values for color map profile to yellow or
red.

qos dscp-color-policy
Associates the DSCP color map profile with an interface so that all IP packets received on it is given a
color based on that color map.

Syntax

dscp-color-policy color-map-profile-name
To remove a color policy map profile, use the no dscp-color-policy colormap-profile-name command.

Parameters

color-mapprofile-name

Enter the color map profile name. The name can have a
maximum of 32 characters.

Defaults

None

Command
Modes

CONFIG-INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Quality of Service (QoS)

1377

Version 9.5.0.0

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

Usage
Information

If the specified color-map does not exist, the Diffserv Manager (DSM) creates a
color map and sets all the DSCP values to green (low drop precedence).

Example

The following example assigns the color map, bat-enclave-map, to interface te
0/11.
Dell(conf)# int te 0/11
Dell(conf-if-te-0/11)# qos dscp-color-policy bat-enclave-map

Related
Commands

dscp— sets the number of specific DSCP values for color map profile to yellow or
red.
qos dscp-color-map— configures the DSCP color map.

show qos dscp-color-policy
Display DSCP color policy configuration for one or all interfaces.

Syntax
Parameters

show qos dscp-color-policy {summary [interface] | detail
{interface}}
summary

Enter the summary keyword to display summary information
about a color policy on one or more interfaces.

Detail

Enter the detail keyword to display detailed information
about a color policy on one or more interfaces.

interface

Enter the name of the interface that has color policy
configured.

Defaults

None

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5.0.0

Example

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

Display summary information about a color policy on one or
more interfaces.
Dell# show qos dscp-color-policy summary
Interface

1378

dscp-color-map

Quality of Service (QoS)

TE 0/10
TE0/11

mapONE
mapTWO

Display summary information about a color policy on a specific
interface.
Dell# show qos dscp-color-policy summary te 0/10
Interface
dscp-color-map
TE 0/10
mapONE
Displayed detailed color policy information on an interface.
Dell# show qos dscp-color-policy detail te 0/10
Interface TenGigabitEthernet 0/10
Dscp-color-map mapONE
yellow 4,7
red 20,30
Related
Commands

— Displays DSCP color maps show qos dscp-color-map

show qos dscp-color-map
Display the DSCP color map for one or all interfaces.

Syntax
Parameters

show qos dscp-color-map map-name
map-name

Enter the name of the color map.

Defaults

None

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5.0.0

Example

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

Display all DSCP color maps.
Dell# show qos dscp-color-map
Dscp-color-map mapONE
yellow 4,7
red 20,30
Dscp-color-map mapTWO
yellow 16,55
Display a specific DSCP color map.
Dell# show qos dscp-color-map mapTWO
Dscp-color-map mapTWO
yellow 16,55

Quality of Service (QoS)

1379

Related
Commands

1380

show qos dscp-color-policy — Displaying a DSCP Color Policy Configuration

Quality of Service (QoS)

Routing Information Protocol (RIP)

47

Routing information protocol (RIP) is a distance vector routing protocol. The Dell Networking operating
software supports both RIP version 1 (RIPv1) and RIP version 2 (RIPv2) on the S4810 platform.
The Dell Networking OS implementation of RIP is based on IETF RFCs 2453 and RFC 1058. For more
information about configuring RIP, refer to the Dell Networking OS Configuration Guide.

auto-summary
Restore the default behavior of automatic summarization of subnet routes into network routes. This
command applies only to RIP version 2.

S4810
Syntax

auto-summary
To send sub-prefix routing information, use the no auto-summary command.

Defaults

Enabled.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Routing Information Protocol (RIP)

1381

clear ip rip
Update all the RIP routes in the Dell Networking OS routing table.

S4810
Syntax

clear ip rip

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

This command triggers updates of the main RIP routing tables.

debug ip rip
Examine RIP routing information for troubleshooting.

S4810
Syntax

debug ip rip [interface | database | events [interface] |
trigger]
To turn off debugging output, use the no debug ip rip command.

Parameters

interface

(OPTIONAL) Enter the interface type and ID as one of the
following:
•

1382

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

Routing Information Protocol (RIP)

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

database

(OPTIONAL) Enter the keyword database to display
messages when there is a change to the RIP database.

events

(OPTIONAL) Enter the keyword events to debug only RIP
protocol changes.

trigger

(OPTIONAL) Enter the keyword trigger to debug only RIP
trigger extensions.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

default-information originate
Generate a default route for the RIP traffic.

S4810
Syntax

default-information originate [always] [metric metric-value]
[route-map map-name]

Routing Information Protocol (RIP)

1383

To return to the default values, use the no default-information originate
command.
Parameters

always

(OPTIONAL) Enter the keyword always to enable the switch
software to always advertise the default route.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number as
the metric value. The range is from 1 to 16. The default is 1.

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of a configured route-map.

Defaults

Disabled. Metric: 1.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The default route must be present in the switch routing table for the defaultinformation originate command to take effect.

default-metric
Change the default metric for routes. To ensure that all redistributed routes use the same metric value,
use this command with the redistribute command.

S4810
Syntax

default-metric number
To return the default metric to the original values, use the no default-metric
command.

1384

Routing Information Protocol (RIP)

Parameters

number

Specify a number. The range is from 1 to 16. The default is 1.

Defaults

1

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

This command ensures that route information being redistributed is converted to
the same metric value.

Related
Commands

redistribute — allows you to redistribute routes learned by other methods.

description
Enter a description of the RIP routing protocol.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

Defaults

description

Enter a description to identify the RIP protocol (80
characters maximum).

none

Routing Information Protocol (RIP)

1385

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
7.7.1.0

Introduced on the E-Series.

router rip — enters ROUTER mode on the switch.

distance
Assign a weight (for prioritization) to all routes in the RIP routing table or to a specific route. Lower
weights (“administrative distance”) are preferred.

S4810
Syntax

distance weight [ip-address mask [prefix-name]]
To return to the default values, use the no distance weight [ip-address
mask] command.

Parameters

1386

weight

Enter a number from 1 to 255 for the weight (for
prioritization). The default is 120.

ip-address

(OPTIONAL) Enter the IP address, in dotted decimal format
(A.B.C.D), of the host or network to receive the new distance
metric.

mask

If you enter an IP address, also enter a mask for that IP
address, in either dotted decimal format or /prefix format
(/x).

prefix-name

(OPTIONAL) Enter a configured prefix list name.

Routing Information Protocol (RIP)

Defaults

weight = 120

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

default-metric — assigns one distance metric to all routes learned using the
redistribute command.

distribute-list in
Configure a filter for incoming routing updates.

S4810
Syntax

distribute-list prefix-list-name in [interface]
To delete the filter, use the no distribute-list prefix-list-name in
command.

Parameters

prefix-listname

Enter the name of a configured prefix list.

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:

Routing Information Protocol (RIP)

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

1387

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.29.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip prefix-list — enters PREFIX-LIST mode and configures a prefix list.

distribute-list out
Configure a filter for outgoing routing updates.

S4810
Syntax

distribute-list prefix-list-name out [interface | bgp |
connected | isis |ospf | static]
To delete the filter, use the no distribute-list prefix-list-name out
command.

Parameters

1388

prefix-listname

Enter the name of a configured prefix list.

Routing Information Protocol (RIP)

interface

(OPTIONAL) Identifies the interface type slot/port as one of
the following:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

connected

(OPTIONAL) Enter the keyword connected to filter only
directly connected routes.

isis

(OPTIONAL) Enter the keyword isis to filter only IS-IS
routes.

ospf

(OPTIONAL) Enter the keyword ospf to filter all OSPF routes.

static

(OPTIONAL) Enter the keyword static to filter manually
configured routes.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip prefix-list — enters PREFIX-LIST mode and configures a prefix list.

Routing Information Protocol (RIP)

1389

ip poison-reverse
Set the prefix of the RIP routing updates to the RIP infinity value.

S4810
Syntax

ip poison-reverse
To disable poison reverse, use the no ip poison-reverse command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip split-horizon — sets the RIP routing updates to exclude routing prefixes.

ip rip receive version
To receive specific versions of RIP, set the interface. The RIP version you set on the interface overrides
the version command in ROUTER RIP mode.

S4810
Syntax

ip rip receive version [1] [2]
To return to the default, use the no ip rip receive version command.

Parameters

1390

1

(OPTIONAL) Enter the number 1 for RIP version 1.

Routing Information Protocol (RIP)

2

(OPTIONAL) Enter the number 2 for RIP version 2.

Defaults

RIPv1 and RIPv2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

If you want the interface to receive both versions of RIP, use the ip rip receive
version 1 2 command.

Related
Commands

ip rip send version — sets the RIP version for sending RIP traffic on an interface.
version — sets the RIP version the switch software uses.

ip rip send version
To send a specific version of RIP, set the interface. The version you set on the interface overrides the
version command in ROUTER RIP mode.

S4810
Syntax

ip rip send version [1] [2]
To return to the default value, use the no ip rip send version command.

Parameters

1

(OPTIONAL) Enter the number 1 for RIP version 1. The
default is RIP version 1.

2

(OPTIONAL) Enter the number 2 for RIP version 2.

Routing Information Protocol (RIP)

1391

Defaults

RIPv1

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

To enable the interface to send both version of RIP packets, use the ip rip send
version 1 2 command.

Related
Commands

ip rip receive version — sets the RIP version for the interface to receive traffic.
version — sets the RIP version for the switch software.

ip split-horizon
Enable split-horizon for RIP data on the interface. As described in RFC 2453, the split-horizon scheme
prevents any routes learned over a specific interface to be sent back out that interface.

S4810
Syntax

ip split-horizon
To disable split-horizon, use the no ip split-horizon command.

Defaults

Enabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1392

Routing Information Protocol (RIP)

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip poison-reverse — sets the prefix for RIP routing updates.

maximum-paths
Set RIP to forward packets over multiple paths.

S4810
Syntax

maximum-paths number
To return to the default values, use the no maximum-paths commands.

Parameters

number

Enter the number of paths. The range is from 1 to 16. The
default is 4 paths.

Defaults

4

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Routing Information Protocol (RIP)

1393

Usage
Information

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

RIP supports a maximum of 16 ECMP paths.

neighbor
Define a neighbor router with which to exchange RIP information.

S4810
Syntax

neighbor ip-address
To delete a neighbor setting, use the no neighbor ip-address command.

Parameters

ip-address

Enter the IP address, in dotted decimal format, of a router
with which to exchange information.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1394

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

When a neighbor router is identified, unicast data exchanges occur. Multiple
neighbor routers are possible.

Routing Information Protocol (RIP)

To ensure that only specific interfaces are receiving and sending data, use the
passive-interface command with the neighbor command.
Related
Commands

passive-interface — sets the interface to only listen to RIP broadcasts.

network
Enable RIP for a specified network. To enable RIP on all networks connected to the switch, use this
command.

S4810
Syntax

network ip-address
To disable RIP for a network, use the no network ip-address command.

Parameters

ip-address

Specify an IP network address in dotted decimal format. You
cannot specify a subnet.

Defaults

No RIP network is configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

You can enable an unlimited number of RIP networks.
RIP operates over interfaces configured with any address the network command
specifies.

Routing Information Protocol (RIP)

1395

offset-list
Specify a number to add to the incoming or outgoing route metrics learned using RIP.

S4810
Syntax

offset-list prefix-list-name {in | out} offset [interface]
To delete an offset list, use the no offset-list prefix-list-name {in |
out} offset [interface] command.

Parameters

prefix-listname

Enter the name of an established Prefix list to determine
which incoming routes are modified.

offset

Enter a number from zero (0) to 16 to be applied to the
incoming route metric matching the access list specified. If
you set an offset value to zero (0), no action is taken.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1396

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Routing Information Protocol (RIP)

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

When the offset metric is applied to an interface, that value takes precedence over
an offset value that is not extended to an interface.

Related
Commands

ip prefix-list — enters PREFIX-LIST mode and configure a prefix list.

output-delay
Set the interpacket delay of successive packets to the same neighbor.

S4810
Syntax

output-delay delay
To return to the switch software defaults for interpacket delay, use the no
output-delay command.

Parameters

delay

Specify a number of milliseconds as the delay interval. The
range is from 8 to 50.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Routing Information Protocol (RIP)

1397

Usage
Information

This command is intended for low-speed interfaces.

passive-interface
Suppress routing updates on a specified interface.

S4810
Syntax

passive-interface interface
To delete a passive interface, use the no passive-interface interface
command.

Parameters

interface

Enter the following information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a VLAN, enter the keyword vlan then a number from
1 to 4094.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1398

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Routing Information Protocol (RIP)

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

Although the passive interface does not send or receive routing updates, the
network on that interface still includes in RIP updates sent using other interfaces.

Related
Commands

neighbor — enables RIP for a specified network.
network — defines a neighbor.

redistribute
Redistribute information from other routing instances.

S4810
Syntax

redistribute {connected | static}
To disable redistribution, use the no redistribute {connected | static} command.

Parameters

connected

Enter the keyword connected to specify that information
from active routes on interfaces is redistributed.

static

Enter the keyword static to specify that information from
static routes is redistributed.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Routing Information Protocol (RIP)

1399

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

To redistribute the default route (0.0.0.0/0), configure the default-information
originate command.

Related
Commands

default-information originate — generates a default route for RIP traffic.

redistribute isis
Redistribute routing information from an IS-IS instance.

S4810
Syntax

redistribute isis [tag] [level-1 | level-1-2 | level-2] [metric
metric-value] [route-map map-name]
To disable redistribution, use the no redistribute isis [tag] [level-1 |
level-1-2 | level-2] [metric metric-value] [route-map map-name]
command.

Parameters

tag

(OPTIONAL) Enter the name of the IS-IS routing process.

level-1

(OPTIONAL) Enter the keywords level-1 to redistribute
only IS-IS Level-1 routes.

level-1-2

(OPTIONAL) Enter the keywords level-1-2 to redistribute
both IS-IS Level-1 and Level-2 routes.

level-2

(OPTIONAL) Enter the keywords level-2 to redistribute
only IS-IS Level-2 routes.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number as
the metric value. The range is from 0 to 16.

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of a configured route map.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant FTOS Command Line Reference Guide.
The following is a list of the FTOS version history for this command.

1400

Routing Information Protocol (RIP)

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
6.2.1.1

Introduced on the E-Series.

redistribute ospf
Redistribute routing information from an OSPF process.

S4810
Syntax

redistribute ospf process-id [match external {1 | 2} | match
internal | metric metric-value] [route-map map-name]
To disable redistribution, use the no redistribute ospf process-id [match
external {1 | 2} | match internal | metric metric-value]
[route-map map-name] command.

Parameters

process-id

Enter a number that corresponds to the OSPF process ID to
redistribute. The range is from 1 to 65355.

match external
{1 | 2}

(OPTIONAL) Enter the keywords match external then the
numbers 1 or 2 to indicated that external 1 routes or external
2 routes should be redistributed.

match internal

(OPTIONAL) Enter the keywords match internal to
indicate that internal routes should be redistributed.

metric metricvalue

(OPTIONAL) Enter the keyword metric then a number as
the metric value. The range is from 0 to 16.

route-map
map-name

(OPTIONAL) Enter the keywords route-map then the name
of a configured route map.

Defaults

Not configured.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Routing Information Protocol (RIP)

Introduced on the S6000.

1401

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

router rip
To configure and enable RIP, enter ROUTER RIP mode.

S4810
Syntax

router rip
To disable RIP, use the no router rip command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

To enable RIP, assign a network address using the network command.

Example

Dell(conf)#router rip
Dell(conf-router_rip)#

1402

Routing Information Protocol (RIP)

Related
Commands

network — enables RIP.
exit — returns to CONFIGURATION mode.

show config
Display the changes you made to the RIP configuration. The default values are not shown.

S4810
Syntax

show config

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell(conf-router_rip)#show config
!
router rip
network 172.31.0.0
passive-interface GigabitEthernet 0/1
Dell(conf-router_rip)#

Routing Information Protocol (RIP)

1403

show ip rip database
Display the routes that RIP learns. If the switch learned no RIP routes, no output is generated.

S4810
Syntax
Parameters

show ip rip database [ip-address mask]
ip-address

(OPTIONAL) Specify an IP address in dotted decimal format
to view RIP information on that network only. If you enter an
IP address, also enter a mask for that IP address.

mask

(OPTIONAL) Specify a mask, in /network format, for the IP
address.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1404

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The following describes the show ip rip database command shown in the
following example.
Field

Description

Total number of
routes in RIP
database

Displays the number of RIP routes stored in the RIP
database.

100.10.10.0/24
directly
connected

Lists the routes directly connected.

150.100.0.0
redistributed

Lists the routes learned through redistribution.

209.9.16.0/24...

Lists the routes and the sources advertising those routes.

Routing Information Protocol (RIP)

Example

Dell#show ip rip database
Total number of routes in RIP database: 1624
204.250.54.0/24
[50/1] via 192.14.1.3, 00:00:12, GigabitEthernet 9/15
204.250.54.0/24
auto-summary
203.250.49.0/24
[50/1] via 192.13.1.3, 00:00:12, GigabitEthernet 9/14
203.250.49.0/24
auto-summary
210.250.40.0/24
[50/2] via 1.1.18.2, 00:00:14, Vlan 18
[50/2] via 1.1.130.2, 00:00:12, Port-channel 30
210.250.40.0/24
auto-summary
207.250.53.0/24
[50/2] via 1.1.120.2, 00:00:55, Port-channel 20
[50/2] via 1.1.130.2, 00:00:12, Port-channel 30
[50/2] via 1.1.10.2, 00:00:18, Vlan 10
207.250.53.0/24
auto-summary
208.250.42.0/24
[50/2] via 1.1.120.2, 00:00:55, Port-channel 20
[50/2] via 1.1.130.2, 00:00:12, Port-channel 30
[50/2] via 1.1.10.2, 00:00:18, Vlan 10
208.250.42.0/24
auto-summary

show running-config rip
Display the current RIP configuration.

S4810
Syntax

show running-config rip

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.7.1.0

Introduced on the C-Series.

Version 7.6.1.0

Introduced on the E-Series.

Routing Information Protocol (RIP)

1405

Example

show running-config rip
!
router rip
distribute-list Test1 in
distribute-list Test21 out
network 10.0.0.0
passive-interface GigabitEthernet 2/0
neighbor 20.20.20.20
redistribute ospf 999
version 2

timers basic
Manipulate the RIP timers for routing updates, invalid, holddown times, and flush time.

S4810
Syntax

timers basic update invalid holddown flush
To return to the default settings, use the no timers basic command.

Parameters

Defaults

1406

update

Enter the number of seconds to specify the rate at which RIP
routing updates are sent. The range is from zero (0) to
4294967295. The default is 30 seconds.

invalid

Enter the number of seconds to specify the time interval
before routing updates are declared invalid or expired. The
invalid value should be at least three times the update timer
value. The range is from zero (0) to 4294967295. The default
is 180 seconds.

holddown

Enter the number of seconds to specify a time interval during
which the route is marked as unreachable but still sending
RIP packets. The holddown value should be at least three
times the update timer value. The range is from zero (0) to
4294967295. The default is 180 seconds.

flush

Enter the number of seconds to specify the time interval
during which the route is advertised as unreachable. When
this interval expires, the route is flushed from the routing
table. The flush value should be greater than the update
value. The range is from zero (0) to 4294967295. The default
is 240 seconds.

•

update = 30 seconds

•

invalid = 180 seconds

•

holddown = 180 seconds

•

flush = 240 seconds

Routing Information Protocol (RIP)

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

If you change the timers on one router, also synchronize the timers on all routers
in the RIP domain.

version
Specify either RIP version 1 or RIP version 2.

S4810
Syntax

version {1 | 2}
To return to the default version setting, use the no version command.

Parameters

1

Enter the keyword 1 to specify RIP version 1.

2

Enter the keyword 2 to specify RIP version 2.

Defaults

The Dell Networking OS sends RIPv1 and receives RIPv1 and RIPv2.

Command
Modes

ROUTER RIP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Routing Information Protocol (RIP)

1407

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

ip rip receive version — sets the RIP version the interface receives.
ip rip send version — sets the RIP version the interface sends.

1408

Routing Information Protocol (RIP)

Remote Monitoring (RMON)

48

The Dell Networking operating software remote monitoring (RMON) is implemented on the S4810
platform.
Dell Networking OS RMON is based on IEEE standards, providing both 32-bit and 64-bit monitoring and
long-term statistics collection. Dell Networking OS RMON supports the following RMON groups, as
defined in RFC-2819, RFC-3273, and RFC-3434:
•

Ethernet Statistics Table; RFC-2819

•

Ethernet Statistics High-Capacity Table; RFC-3273, 64bits

•

Ethernet History Control Table; RFC-2819

•

Ethernet History Table; RFC-2819

•

Ethernet History High-Capacity Table; RFC-3273, 64bits

•

Alarm Table; RFC-2819

•

High-Capacity Alarm Table (64bits); RFC-3434, 64bits

•

Event Table; RFC-2819

•

Log Table; RFC-2819

Dell Networking OS RMON does not support the following statistics:
•

etherStatsCollisions

•

etherHistoryCollisions

•

etherHistoryUtilization
NOTE: Only SNMP GET/GETNEXT access is supported. Configure RMON using the RMON
commands. Collected data is lost during a chassis reboot.

rmon alarm
Set an alarm on any MIB object.

S4810
Syntax

rmon alarm number variable interval {delta | absolute} risingthreshold value event-number falling-threshold value eventnumber [owner string]
To disable the alarm, use the no rmon alarm number command.

Parameters

number

Remote Monitoring (RMON)

Enter the alarm integer number from 1 to 65535. The value
must be unique in the RMON alarm table.

1409

variable

Enter the MIB object to monitor. The variable must be in the
SNMP OID format; for example, 1.3.6.1.2.1.1.3. The object
type must be a 32-bit integer.

interval

Time, in seconds, the alarm monitors the MIB variables; this
is the alarmSampleType in the RMON alarm table. The range
is from 5 to 3600 seconds.

delta

Enter the keyword delta to test the change between MIB
variables. This is the alarmSampleType in the RMON alarm
table.

absolute

Enter the keyword absolute to test each MIB variable
directly. This is the alarmSampleType in the RMON alarm
table.

risingthreshold value
event-number

Enter the keywords rising-threshold then the value (32
bit) the rising-threshold alarm is either triggered or reset.
Then enter the event-number to trigger when the rising
threshold exceeds its limit. This value is the same as the
alarmRisingEventIndex or alarmTable of the RMON MIB. If
there is no corresponding rising-threshold event, the value is
zero.

fallingthreshold value
event-number

Enter the keywords falling-threshold then the value (32
bit) the falling-threshold alarm is either triggered or reset.
Then enter the event-number to trigger when the falling
threshold exceeds its limit. This value is the same as the
alarmFallingEventIndex or the alarmTable of the RMON MIB.
If there is no corresponding falling-threshold event, the value
is zero.

owner string

(OPTIONAL) Enter the keyword owner then the owner name
to specify an owner for the alarm. This is the alarmOwner
object in the alarmTable of the RMON MIB.

Defaults

owner

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1410

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Remote Monitoring (RMON)

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

rmon collection history
Enable the RMON MIB history group of statistics collection on an interface.

S4810
Syntax

rmon collection history {controlEntry integer} [owner name]
[buckets number] [interval seconds]
To remove a specified RMON history group of statistics collection, use the no
rmon collection history {controlEntry integer} command.

Parameters

controlEntry
integer

Enter the keyword controlEntry to specify the RMON
group of statistics using a value. Then enter an integer value
from 1 to 65535 that identifies the RMON group of statistics.
The integer value must be a unique index in the RMON
history table.

owner name

(OPTIONAL) Enter the keyword owner then the owner name
to record the owner of the RMON group of statistics.

buckets
number

(OPTIONAL) Enter the keyword buckets then the number of
buckets for the RMON collection history group of statistics.
The bucket range is from 1 to 1000. The default is 50.

interval
seconds

(OPTIONAL) Enter the keyword interval then the number
of seconds in each polling cycle. The range is from 5 to 3600
seconds. The default is 1800 seconds.

Defaults

none

Command
Modes

CONFIGURATION INTERFACE (config-if)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Remote Monitoring (RMON)

1411

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

rmon collection statistics
Enable RMON MIB statistics collection on an interface.

S4810
Syntax

rmon collection statistics {controlEntry integer} [owner name]
To remove RMON MIB statistics collection on an interface, use the no rmon
collection statistics {controlEntry integer} command.

Parameters

controlEntry
integer

Enter the keyword controlEntry to specify the RMON
group of statistics using a value. Then enter an integer value
from 1 to 65535 that identifies the RMON Statistic Table. The
integer value must be a unique in the RMON statistic table.

owner name

(OPTIONAL) Enter the keyword owner then the owner name
to record the owner of the RMON group of statistics.

Defaults

none

Command
Modes

CONFIGURATION INTERFACE (config-if)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1412

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Remote Monitoring (RMON)

Version 6.1.1.0

Introduced on the E-Series.

rmon event
Add an event in the RMON event table.

S4810
Syntax

rmon event number [log] [trap community] [description string]
[owner name]
To disable RMON on an interface, use the no rmon event number [log]
[trap community] [description string] command.

Parameters

number

Assign an event number in integer format from 1 to 65535.
The number value must be unique in the RMON event table.

log

(OPTIONAL) Enter the keyword log to generate an RMON
log entry. The log entry is triggered and sets the eventType in
the RMON MIB to log or log-and-trap. The default is No log.

trap
community

(OPTIONAL) Enter the keyword trap then an SNMP
community string to configure the eventType setting in the
RMON MIB. This keyword sets either snmp-trap or log-andtrap. The default is public.

description
string

(OPTIONAL) Enter the keyword description then a string
describing the event.

owner name

(OPTIONAL) Enter the keyword owner then the name of the
owner of this event.

Defaults

As noted in the Parameters section.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Remote Monitoring (RMON)

1413

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

rmon hc-alarm
Set an alarm on any MIB object.

S4810
Syntax

rmon hc-alarm number variable interval {delta | absolute}
rising-threshold value event-number falling-threshold value
event-number [owner string]
To disable the alarm, use the no rmon hc-alarm number command.

Parameters

1414

number

Enter the alarm integer number from 1 to 65535. The value
must be unique in the RMON alarm table.

variable

The MIB object to monitor. The variable must be in the
SNMP OID format; for example, 1.3.6.1.2.1.1.3 The object
type must be a 64-bit integer.

interval

Time, in seconds, the alarm monitors the MIB variables; this
is the alarmSampleType in the RMON alarm table. The range
is from 5 to 3600 seconds.

delta

Enter the keyword delta to test the change between MIB
variables. This is the alarmSampleType in the RMON alarm
table.

absolute

Enter the keyword absolute to test each MIB variable
directly. This is the alarmSampleType in the RMON alarm
table.

risingthreshold value
event-number

Enter the keywords rising-threshold then the value (64
bit) the rising-threshold alarm is either triggered or reset.
Then enter the event-number to trigger when the rising
threshold exceeds its limit. This value is the same as the
alarmRisingEventIndex or alarmTable of the RMON MIB. If
there is no corresponding rising-threshold event, the value is
zero.

fallingthreshold value
event-number

Enter the keywords falling-threshold then the value (64
bit) the falling-threshold alarm is either triggered or reset.
Then enter the event-number to trigger when the falling
threshold exceeds its limit. This value is the same as the
alarmFallingEventIndex or the alarmTable of the RMON MIB.

Remote Monitoring (RMON)

If there is no corresponding falling-threshold event, the value
is zero.
owner string

(OPTIONAL) Enter the keyword owner then the owner name
to specify an owner for the alarm. This is the alarmOwner
object in the alarmTable of the RMON MIB.

Defaults

owner

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

show rmon
Display the RMON running status including the memory usage.

S4810
Syntax

show rmon

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Remote Monitoring (RMON)

Introduced on the S6000.

1415

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Dell# show rmon
RMON status
total memory used 218840 bytes.
ether statistics table: 8 entries, 4608 bytes
ether history table: 8 entries, 6000 bytes
alarm table: 390 entries, 102960 bytes
high-capacity alarm table: 5 entries, 1680 bytes
event table: 500 entries, 206000 bytes
log table: 2 entries, 552 bytes
Dell#

show rmon alarms
Display the contents of the RMON alarm table.

S4810
Syntax
Parameters

show rmon alarms [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
alarm table in an easy-to-read format.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1416

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Remote Monitoring (RMON)

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Example
(Index)

Dell#show rmon alarm 1
RMON alarm entry 1
sample Interval: 5
object: 1.3.6.1.2.1.1.3
sample type: absolute value.
value: 255161
alarm type: rising or falling alarm.
rising threshold: 1, RMON event index: 1
falling threshold: 501, RMON event index: 501
alarm owner: 1
alarm status: OK
Dell#

Example (Brief)

Dell#show rmon alarm br
index
SNMP OID
-------------------------1
1.3.6.1.2.1.1.3
2
1.3.6.1.2.1.1.3
3
1.3.6.1.2.1.1.3
4
1.3.6.1.2.1.1.3
5
1.3.6.1.2.1.1.3
6
1.3.6.1.2.1.1.3
7
1.3.6.1.2.1.1.3
8
1.3.6.1.2.1.1.3
9
1.3.6.1.2.1.1.3
10
1.3.6.1.2.1.1.3
11
1.3.6.1.2.1.1.3
12
1.3.6.1.2.1.1.3
13
1.3.6.1.2.1.1.3
14
1.3.6.1.2.1.1.3
15
1.3.6.1.2.1.1.3
16
1.3.6.1.2.1.1.3
17
1.3.6.1.2.1.1.3
18
1.3.6.1.2.1.1.3
19
1.3.6.1.2.1.1.3
20
1.3.6.1.2.1.1.3
21
1.3.6.1.2.1.1.3
22
1.3.6.1.2.1.1.3
Dell#

Remote Monitoring (RMON)

1417

show rmon events
Display the contents of the RMON event table.

S4810
Syntax
Parameters

show rmon events [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
event table in an easy-to-read format.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Example
(Index)

Dell#show rmon event 1
RMON event entry 1
description: 1
event type: LOG and SNMP TRAP.
event community: public
event last time sent: none
event owner: 1
event status: OK
Dell#

Example (Brief)

Dell#show rmon event br
index
description
-----------------------------1
1
2
2
3
3
4
4
5
5
6
6

1418

Remote Monitoring (RMON)

7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Dell#

7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

show rmon hc-alarm
Display the contents of RMON High-Capacity alarm table.

S4810
Syntax
Parameters

show rmon hc-alarm [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
High-Capacity alarm table in an easy-to-read format.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Remote Monitoring (RMON)

1419

Version 6.1.1.0

Introduced on the E-Series.

Example
(Index)

Dell#show rmon hc-alarm 1
RMON high-capacity alarm entry 1
object: 1.3.6.1.2.1.1.3
sample interval: 5
sample type: absolute value.
value: 185638
alarm type: rising or falling alarm.
alarm rising threshold value: positive.
rising threshold: 1001, RMON event index: 1
alarm falling threshold value: positive.
falling threshold: 999, RMON event index: 6
alarm sampling failed 0 times.
alarm owner: 1
alarm storage type: non-volatile.
alarm status: OK
Dell#

Example (Brief)

Dell#show rmon hc-alarm brief
index
SNMP OID
---------------------------------1
1.3.6.1.2.1.1.3
2
1.3.6.1.2.1.1.3
3
1.3.6.1.2.1.1.3
4
1.3.6.1.2.1.1.3
5
1.3.6.1.2.1.1.3
Dell#

show rmon history
Display the contents of the RMON Ethernet history table.

S4810
Syntax
Parameters

show rmon history [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
Ethernet history table in an easy-to-read format

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1420

Remote Monitoring (RMON)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Example
(Index)

Dell#show rmon history 6001
RMON history control entry 6001
interface: ifIndex.100974631 TenGigabitEthernet 2/0
bucket requested: 1
bucket granted: 1
sampling interval: 5 sec
owner: 1
status: OK
Dell#

Example (Brief)

Dell#show rmon history brief
index ifIndex interface
-------------------------------------------------------------------6001 100974631 TenGigabitEthernet 2/0
6002 100974631 TenGigabitEthernet 2/0
6003 101236775 TenGigabitEthernet 2/1
6004 101236775 TenGigabitEthernet 2/1
9001 134529054 TenGigabitEthernet 3/0
9002 134529054 TenGigabitEthernet 3/0
9003 134791198 TenGigabitEthernet 3/1
9004 134791198 TenGigabitEthernet 3/1
Dell#

show rmon log
Display the contents of the RMON log table.

S4810
Syntax
Parameters

show rmon log [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
log table in an easy-to-read format.

Remote Monitoring (RMON)

1421

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Usage
Information

The log table has a maximum of 500 entries. If the log exceeds that maximum, the
oldest log entry is purged to allow room for the new entry.

Example
(Index)

Dell#show rmon log 2
RMON log entry, alarm table index 2, log index 1
log time: 14638 (THU AUG 12 22:10:40 2004)
description: 2
Dell#

Example (Brief)

Dell#show rmon log br
eventIndex
description
-----------------------------2
2
4
4
Dell#

show rmon statistics
Display the contents of RMON Ethernet statistics table.

S4810
Syntax
Parameters

1422

show rmon statistics [index] [brief]
index

(OPTIONAL) Enter the table index number to display just that
entry.

brief

(OPTIONAL) Enter the keyword brief to display the RMON
Ethernet statistics table in an easy-to-read format.

Remote Monitoring (RMON)

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example
(Index)

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Introduced on the E-Series.

Dell#show rmon statistics 6001
RMON statistics entry 6001
interface: ifIndex.100974631 TenGigabitEthernet 2/0
packets dropped: 0
bytes received: 0
packets received: 0
broadcast packets: 0
multicast packets: 0
CRC error: 0
under-size packets: 0
over-size packets: 0
fragment errors: 0
jabber errors: 0
collision: 0
64bytes packets: 0
65-127 bytes packets: 0
128-255 bytes packets: 0
256-511 bytes packets: 0
512-1023 bytes packets: 0
1024-1518 bytes packets: 0
owner: 1
status: OK

HC packets received overflow: 0
HC packets received: 0
HC bytes received overflow: 0
HC bytes received: 0
HC 64bytes packets overflow: 0
HC 64bytes packets: 0
HC 65-127 bytes packets overflow: 0
HC 65-127 bytes packets: 0
HC 128-255 bytes packets overflow: 0
HC 128-255 bytes packets: 0
HC 256-511 bytes packets overflow: 0
HC 256-511 bytes packets: 0
HC 512-1023 bytes packets overflow: 0
HC 512-1023 bytes packets: 0

Remote Monitoring (RMON)

1423

HC 1024-1518 bytes packets overflow: 0
HC 1024-1518 bytes packets: 0
Dell#
Example (Brief)

1424

Dell#show rmon statistics br
index
ifIndex
interface
---------------------------------------6001
100974631
TenGigabitEthernet 2/0
6002
100974631
TenGigabitEthernet 2/0
6003
101236775
TenGigabitEthernet 2/1
6004
101236775
TenGigabitEthernet 2/1
9001
134529054
TenGigabitEthernet 3/0
9002
134529054
TenGigabitEthernet 3/0
9003
134791198
TenGigabitEthernet 3/1
9004
134791198
TenGigabitEthernet 3/1
Dell#

Remote Monitoring (RMON)

Rapid Spanning Tree Protocol (RSTP)

49

The Dell Networking operating software implementation of rapid spanning tree protocol (RSTP) is based
on the IEEE 802.1w standard spanning-tree protocol. The RSTP algorithm configures connectivity
throughout a bridged local area network (LAN) that is comprised of LANs interconnected by bridges.
Dell Networking OS supports RSTP on the S4810 platform.

bridge-priority
Set the bridge priority for RSTP.

S4810
Syntax

bridge-priority priority-value
To return to the default value, use the no bridge-priority command.

Parameters

priority-value

Enter a number as the bridge priority value in increments of
4096. The range is from 0 to 61440. The default is 32768.

Defaults

32768

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Rapid Spanning Tree Protocol (RSTP)

1425

Related
Commands

protocol spanning-tree rstp — enters rapid spanning tree mode.

debug spanning-tree rstp
Enable debugging of RSTP and view information on the protocol.

S4810
Syntax

debug spanning-tree rstp [all | bpdu interface {in | out} |
events]
To disable debugging, use the no debug spanning-tree rstp command.

Parameters

all

(OPTIONAL) Enter the keyword all to debug all spanning
tree operations.

bpdu interface
{in | out}

(OPTIONAL) Enter the keyword bpdu to debug the bridge
protocol data units.
(OPTIONAL) Enter the keyword interface along with the
type slot/port of the interface you want displayed. Type slot/
port options are the following:
•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/port information.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Optionally, enter an in or out parameter with the optional
interface:

events

•

For Receive, enter in.

•

For Transmit, enter out.

(OPTIONAL) Enter the keyword events to debug RSTP
events.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1426

Rapid Spanning Tree Protocol (RSTP)

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Dell#debug spanning-tree rstp bpdu gigabitethernet 2/0 ?
in Receive (in)
out Transmit (out)

description
Enter a description of the rapid spanning tree.

S4810
Syntax

description {description}
To remove the description, use the no description {description}
command.

Parameters

description

Enter a description to identify the rapid spanning tree (80
characters maximum).

Defaults

none

Command
Modes

SPANNING TREE (The prompt is “config-rstp”.)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Rapid Spanning Tree Protocol (RSTP)

1427

Related
Commands

Version 8.3.7.0

Introduced on the S4810.

pre-7.7.1.0

Introduced.

protocol spanning-tree rstp — enters SPANNING TREE mode on the switch.

disable
Disable RSTP globally on the system.

S4810
Syntax

disable
To enable Rapid Spanning Tree Protocol, use the no disable command.

Defaults

RSTP is disabled.

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

1428

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

protocol spanning-tree rstp — enters SPANNING TREE mode on the switch.

Rapid Spanning Tree Protocol (RSTP)

forward-delay
Configure the amount of time the interface waits in the Listening State and the Learning State before
transitioning to the Forwarding State.

S4810
Syntax

forward-delay seconds
To return to the default setting, use the no forward-delay command.

Parameters

seconds

Enter the number of seconds that FTOS waits before
transitioning RSTP to the forwarding state. The range is from
4 to 30. The default is 15 seconds.

Defaults

15 seconds

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

hello-time — changes the time interval between BPDUs.
max-age — changes the wait time before RSTP refreshes the protocol
configuration information.

Rapid Spanning Tree Protocol (RSTP)

1429

hello-time
Set the time interval between the generation of the RSTP bridge protocol data units (BPDUs).

S4810
Syntax

hello-time [milli-second] seconds
To return to the default value, use the no hello-time command.

Parameters

seconds

Enter a number as the time interval between transmission of
BPDUs. The range is from 1 to 10 seconds. The default is 2
seconds.

milli-second

Enter the keywords milli-second to configure a hello time
on the order of milliseconds. The range is from 50 to 950
milliseconds

Defaults

2 seconds

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Added the milli-second option to the S-Series.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

The hello time is encoded in BPDUs in increments of 1/256ths of a second. The
standard minimum hello time in seconds is 1 second, which is encoded as 256.
Millisecond hello times are encoded using values less than 256; the millisecond
hello time equals (x/1000)*256.
When you configure millisecond hellos, the default hello interval of 2 seconds is
still used for edge ports; the millisecond hello interval is not used.

1430

Rapid Spanning Tree Protocol (RSTP)

Related
Commands

forward-delay — changes the wait time before RSTP transitions to the Forwarding
state.
max-age — changes the wait time before RSTP refreshes the protocol
configuration information.

max-age
To maintain configuration information before refreshing that information, set the time interval for the
RSTP bridge.

S4810
Syntax

max-age seconds
To return to the default values, use the no max-age command.

Parameters

max-age

Enter a number of seconds the Dell Networking OS waits
before refreshing configuration information. The range is
from 6 to 40 seconds. The default is 20 seconds.

Defaults

20 seconds

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

forward-delay — changes the wait time before RSTP transitions to the Forwarding
state.

Rapid Spanning Tree Protocol (RSTP)

1431

hello-time — changes the time interval between BPDUs.

protocol spanning-tree rstp
To configure RSTP, enter RSTP mode.

S4810
Syntax

protocol spanning-tree rstp
To exit RSTP mode, use the exit command.

Defaults

Not configured

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Usage
Information

RSTP is not enabled when you enter RSTP mode. To enable RSTP globally on the
system, use the no disable command from RSTP mode.

Example

Dell(conf)#protocol spanning-tree rstp
Dell(config-rstp)##no disable

Related
Commands

disable — disables RSTP globally on the system.

1432

Rapid Spanning Tree Protocol (RSTP)

show config
View the current configuration for the mode. Only non-default values are displayed.

S4810
Syntax

show config

Command
Modes

CONFIGURATION RSTP (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Dell(conf-rstp)#show config
!
protocol spanning-tree rstp
no disable
bridge-priority 16384

show spanning-tree rstp
Display the RSTP configuration.

S4810
Syntax
Parameters

show spanning-tree rstp [brief] [guard]
brief

(OPTIONAL) Enter the keyword brief to view a synopsis of
the RSTP configuration information.

guard

(OPTIONAL) Enter the keyword guard to display the type of
guard enabled on an RSTP interface and the current port
state.

Rapid Spanning Tree Protocol (RSTP)

1433

Command
Modes

Command
History

Usage
Information

Example (Brief)

•

EXEC

•

EXEC Privilege

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Added support for the optional guard keyword on the CSeries, S-Series, and E-Series TeraScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.4.1.0

Expanded to display the port error disable state (EDS) caused
by loopback BPDU inconsistency.

Version 6.2.1.1

Introduced on the E-Series.

The following describes the show spanning-tree rstp guard command
shown in the following example.
Field

Description

Interface Name

RSTP interface.

Instance

RSTP instance.

Sts

Port state: root-inconsistent (INCON Root), forwarding
(FWD), listening (LIS), blocking (BLK), disabled (DIS), or shut
down (EDS Shut).

Guard Type

Types of STP guard configured (Root, Loop, or BPDU guard)

Dell#show spanning-tree rstp brief
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 8192, Address 0001.e805.e306
Root Bridge hello time 4, max age 20, forward delay 15
Bridge ID Priority 16384, Address 0001.e801.6aa8
Configured hello time 2, max age 20, forward delay 15
Interface
Designated
Name
PortID Prio Cost Sts Cost
Bridge ID
PortID
---------- ------- --- ------- -------------------- -------Gi 4/0 128.418 128 20000 FWD 20000 16384 0001.e801.6aa8 128.418
Gi 4/1 128.419 128 20000 FWD 20000 16384 0001.e801.6aa8 128.419
Gi 4/8 128.426 128 20000 FWD 20000 8192 0001.e805.e306 128.130
Gi 4/9 128.427 128 20000 BLK 20000 8192 0001.e805.e306 128.131
Interface
Name
Role
----------Gi 4/0 Desg
Gi 4/1 Desg
Gi 4/8 Root

1434

PortID Prio Cost Sts Cost Link-type Edge
---- ------- --- ------- --------- ---128.418 128 20000 FWD 20000 P2P
Yes
128.419 128 20000 FWD 20000 P2P
Yes
128.426 128 20000 FWD 20000 P2P
No

Rapid Spanning Tree Protocol (RSTP)

Gi 4/9 Altr 128.427 128 20000 BLK 20000 P2P
Dell#
Example (EDS,
LBK)

No

NOTE: “LBK_INC” (bold) means Loopback BPDU Inconsistency.
Dell#show spanning-tree rstp br
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 32768, Address 0001.e801.6aa8
Root Bridge hello time 2, max age 20, forward delay 15
Bridge ID Priority 32768, Address 0001.e801.6aa8
We are the root
Configured hello time 2, max age 20, forward delay 15
Interface
Designated
Name
PortID Prio Cost Sts Cost
Bridge ID PortID
- ---- ------- --- ------- -------------------- -------Gi 0/0 128.257 128 20000 EDS 0 32768 0001.e801.6aa8 128.257
Interface
Name
Role PortID
Prio Cost Sts Cost Link-type Edge
--- ------ -------- ---- ------- --- ------- --------- ---Gi 0/0 ErrDis 128.257 128 20000 EDS 0 P2P No
Dell#show spanning-tree rstp
Root Identifier has priority 32768, Address 0001.e801.6aa8
Root Bridge hello time 2, max age 20, forward delay 15, max
hops 0
Bridge Identifier has priority 32768, Address 0001.e801.6aa8
Configured hello time 2, max age 20, forward delay 15, max
hops 0
We are the root
Current root has priority 32768, Address 0001.e801.6aa8
Number of topology changes 1, last change occurred 00:00:31
ago on Gi 0/0
Port 257 (GigabitEthernet 0/0) is LBK_INC Discarding
Port path cost 20000, Port priority 128, Port Identifier
128.257
Designated root has priority 32768, address 0001.e801.6aa8
Designated bridge has priority 32768, address 0001.e801.6aa8
Designated port id is 128.257, designated path cost 0
Number of transitions to forwarding state 1
BPDU : sent 27, received 9
The port is not in the Edge port mode

Example
(Guard)

Dell#show spanning-tree rstp guard
Interface
Name
Instance Sts
Guard type
--------- -------- ------------------Gi 0/1 0
INCON(Root) Rootguard
Gi 0/2 0
FWD
Loopguard
Gi 0/3 0
BLK
Bpduguard

Rapid Spanning Tree Protocol (RSTP)

1435

spanning-tree rstp
Configure an RSTP interface with one of these settings: port cost, edge port with optional bridge port
data unit (BPDU) guard, port priority, loop guard, or root guard.

S4810
Syntax

Parameters

spanning-tree rstp {cost port-cost | edge-port [bpduguard
[shutdown-on-violation]] | priority priority | {loopguard |
rootguard}}
cost port-cost

Enter the keyword cost then the port cost value. The range
is from 1 to 200000. The defaults are:
•

100 Mb/s Ethernet interface = 200000

•

1-Gigabit Ethernet interface = 20000

•

10-Gigabit Ethernet interface = 2000

•

Port Channel interface with one 100 Mb/s Ethernet =
200000

•

Port Channel interface with one 1 Gigabit Ethernet =
20000

•

Port Channel interface with one 10 Gigabit Ethernet =
2000

•

Port Channel with two 1 Gigabit Ethernet = 18000

•

Port Channel with two 10 Gigabit Ethernet = 1800

•

Port Channel with two 100 Mbps Ethernet = 180000

edge-port

Enter the keywords edge-port to configure the interface as
a rapid spanning tree edge port.

bpduguard

(OPTIONAL) Enter the keyword portfast to enable Portfast
to move the interface into Forwarding mode immediately
after the root fails.
Enter the keyword bpduguard to disable the port when it
receives a BPDU.

Defaults

1436

shutdown-onviolation

(OPTIONAL) Enter the keywords shutdown-on-violation
to hardware disable an interface when a BPDU is received
and the port is disabled.

priority priority

Enter keyword priority then a value in increments of 16 as
the priority. The range is from 0 to 240. The default is 128.

loopguard

Enter the keyword loopguard to enable loop guard on an
RSTP port or port-channel interface.

rootguard

Enter the keyword rootguard to enable root guard on an
RSTP port or port-channel interface.

Not configured.

Rapid Spanning Tree Protocol (RSTP)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.1

Added support for the optional guard keyword on the CSeries, S-Series, and E-Series TeraScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced the hardware shutdown-on-violation
options.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Added the optional bridge port data unit (BPDU) guard.

Version 6.2.1.1

Introduced on the E-Series.

The BPDU guard option prevents the port from participating in an active STP
topology in case a BPDU appears on a port unintentionally, or is misconfigured, or
is subject to a DOS attack. This option places the port into an Error Disable state if a
BPDU appears and a message is logged so that the administrator can take
corrective action.
NOTE: A port configured as an edge port, on an RSTP switch, immediately
transitions to the Forwarding state. Only configure ports connected to endhosts as edge ports. Consider an edge port similar to a port with a spanningtree portfast enabled.
If you do not enable shutdown-on-violation, BPDUs are still sent to the RPM
CPU.
You cannot enable STP root guard and loop guard at the same time on a port. For
example, if you configure loop guard on a port on which root guard is already
configured, the following error message displays: % Error: RootGuard is
configured. Cannot configure LoopGuard.
Enabling Portfast BPDU guard and loop guard at the same time on a port results in
a port that remains in a Blocking state and prevents traffic from flowing through it.
For example, when Portfast BPDU guard and loop guard are both configured:
•

If a BPDU is received from a remote device, BPDU guard places the port in an
Err-Disabled Blocking state and no traffic is forwarded on the port.

Rapid Spanning Tree Protocol (RSTP)

1437

•

Example

If no BPDU is received from a remote device, loop guard places the port in a
Loop-Inconsistent Blocking state and no traffic is forwarded on the port.

Dell(conf)#interface gigabitethernet 4/0
Dell(conf-if-gi-4/0)#spanning-tree rstp edge-port
Dell(conf-if-gi-4/0)#show config
!
interface GigabitEthernet 4/0
no ip address
switchport
spanning-tree rstp edge-port
no shutdown
Dell#

tc-flush-standard
Enable the MAC address flushing after receiving every topology change notification.

S4810
Syntax

tc-flush-standard
To disable, use the no tc-flush-standard command.

Defaults

Disabled

Command
Modes

CONFIGURATION (conf-rstp)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1438

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

By default, Dell Networking OS implements an optimized flush mechanism for
RSTP. This implementation helps in flushing MAC addresses only when necessary
(and less often), allowing for faster convergence during topology changes.
However, if a standards-based flush mechanism is needed, you can turn on this

Rapid Spanning Tree Protocol (RSTP)

knob command to enable flushing MAC addresses after receiving every topology
change notification.

Rapid Spanning Tree Protocol (RSTP)

1439

Software-Defined Networking (SDN)

50

Dell Networking operating software supports Software-Defined Networking (SDN). For more information,
refer to the SDN Deployment Guide.

1440

Software-Defined Networking (SDN)

51

Security
Most of the commands in this chapter are available on the S4810 platform.

This chapter contains various types of security commands offered in the Dell Networking operating
software. The commands are listed in the following sections:
•

AAA Accounting Commands

•

Authorization and Privilege Commands

•

Authentication and Password Commands

•

RADIUS Commands

•

TACACS+ Commands

•

Port Authentication (802.1X) Commands

•

SSH Server and SCP Commands

•

Secure DHCP Commands

For configuration details, refer to the Security chapter in the Dell Networking OS`Configuration Guide.
NOTE: Dell Networking OS implements LEAP with MSCHAP v2 supplicant.

AAA Accounting Commands
AAA Accounting enables tracking of services that users are accessing and the amount of network
resources being consumed by those services. When you enable AAA Accounting, the network server
reports user activity to the TACACS+ security server in the form of accounting records. Each accounting
record is comprised of accounting AV pairs and is stored on the access control server.
As with authentication and authorization, you must configure AAA Accounting by defining a named list of
accounting methods, and then applying that list to various interfaces.

aaa accounting
Enable AAA Accounting and create a record for monitoring the accounting function.

S4810
Syntax

aaa accounting {system | exec | commands level | role rolename} {name | default}{start-stop | wait-start | stop-only}
{tacacs+}
To disable AAA Accounting, use the no aaa accounting {system | exec |
command level} {name | default}{start-stop | wait-start | stoponly} {tacacs+} command.

Security

1441

Parameters

system

Enter the keyword system to send accounting information
of any other AAA configuration.

exec

Enter the keyword exec to send accounting information
when a user has logged in to EXEC mode.

commands
{level | role
role-name

Enter the keyword command then a privilege level for
accounting of commands executed at that privilege level or
enter the keyword role then the role name for accounting
of commands executed by a user with that user role.

name | default

Enter one of the following:
•

For name, enter a user-defined name of a list of
accounting methods.

•

For default, the default accounting methods used.

start-stop

Enter the keywords start-stop to send a “start accounting”
notice at the beginning of the requested event and a “stop
accounting” notice at the end of the event.

wait-start

Enter the keywords wait-start to ensure that the TACACS
+ security server acknowledges the start notice before
granting the user’s process request.

stop-only

Enter the keywords stop-only to instruct the TACACS+
security server to send a “stop record accounting” notice at
the end of the requested user process.

tacacs+

Enter the keyword tacacs+ to use TACACS+ data for
accounting. The Dell Networking OS currently only supports
TACACS+ accounting.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1442

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, and MXL

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Security

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

In the example above, TACACS+ accounting is used to track all usage of EXEC
command and commands on privilege level 15.
Privilege level 15 is the default. If you want to track usage at privilege level 1 for
example, use the aaa accounting command 1 command.

Example

Dell(conf)# aaa accounting exec default start-stop tacacs+
Dell(conf)# aaa accounting command 15 default start-stop tacacs
+
Dell(conf)# aaa accounting command role secaadmin default
start-stop tacacs+

Related
Commands

enable password — changes the password for the enable command.
login authentication — enables AAA login authentication on the terminal lines.
password — creates a password.
tacacs-server host — specifies a TACACS+ server host.

accounting
Apply an accounting method list to terminal lines.

S4810
Syntax
Parameters

accounting {exec | commands {level | role role-name} methodlist
exec

Enter the keyword exec to apply an EXEC level accounting
method list.

commands
{level | role
role-name}

Enter the keywords commands level to apply an EXEC and
CONFIGURATION level accounting method list by enter the
keyword role and then the role name for accounting of
commands executed by a user with that user role.

method-list

Enter a method list that you defined using the aaa
accounting exec or aaa accounting commands.

Defaults

none

Command
Modes

LINE

Security

1443

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

aaa accounting — enables AAA Accounting and creates a record for monitoring the
accounting function.

aaa accounting suppress
Prevent the generation of accounting records of users with the user name value of NULL.

S4810
Syntax

aaa accounting suppress null-username
To permit accounting records to users with user name value of NULL, use the no
aaa accounting suppress null-username command.

Defaults

Accounting records are recorded for all users.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1444

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4280T.

Version 8.3.11.1

Introduced on the Z9000.

Security

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

Dell Networking OS issues accounting records for all users on the system,
including users whose username string, due to protocol translation, is NULL. For
example, a user who comes on line with the aaa authentication login
method-list none command is applied. To prevent the accounting records from
being generated for sessions that do not have user names associated to them, use
the aaa accounting suppress command.

aaa radius group
Configure the RADIUS server group that is used for Authentication, Authorization and Accounting.

S4810
Syntax

aaa radius group group-name
To remove the RADIUS group configuration, use the no aaa radius group
group-name command.

Parameters

group-name

Enter the name of the RADIUS server group.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

You can use this command to configure the group of Radius servers used for
Authentication, Authorization, and Accounting purposes.
If the RADIUS group is not configured for Authentication, Authorization, and
Accounting, then globally configured Radius servers are used for the purposes.
When the RADIUS group is removed, the AAA configuration is also removed.

Example

Security

Dell(conf)#radius-server group group1
Dell(conf-radius-group)#radius-server host 1.1.1.1 key secret
Dell(conf-radius-group)#radius-server host 2.2.2.2 key secret
Dell(conf-radius-group)#radius-server vrf vrf1 source-

1445

interface tengigabitethernet 0/36
Dell(conf)#exit
Dell(conf)#aaa radius group group1

show accounting
Display the active accounting sessions for each online user.

S4810
Syntax

show accounting

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

Usage
Information

This command steps through all active sessions and then displays the accounting
records for the active account functions.

Example

Dell#show accounting
Active accounted actions on tty2, User guest Priv 1 Role
netoperator
Task ID 1, EXEC Accounting record, 00:00:30 Elapsed,
service=shell
Active accounted actions on tty3, User admin Priv 15 Role
sysadmin
Task ID 2, EXEC Accounting record, 00:00:26 Elapsed,
service=shell

Related
Commands

aaa accounting — enables AAA Accounting and creates a record for monitoring the
accounting function.

1446

Security

Authorization and Privilege Commands
To set command line authorization and privilege levels, use the following commands.

authorization
Apply an authorization method list to terminal lines.

S4810
Syntax
Parameters

authorization {exec | commands {level | role role-name}}
method-list
exec

Enter the keyword exec to apply an EXEC level authorization
method list.

commands
{level | role
role-name}

Enter the keyword commands followed by either a privilege
level for accounting of commands executed at that privilege
level, or enter the keyword role then the role name for
authorization of commands executed by a user with that
user role.

method-list

Enter a method list that you defined using the aaa
accounting exec or aaa accounting commands.

Defaults

none

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, and MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

1447

Related
Commands

aaa authorization commands — sets the parameters that restrict (or permit) a user’s
access to EXEC and CONFIGURATION level commands
aaa authorization exec — sets the parameters that restrict (or permit) a user’s
access to EXEC level commands.

aaa authorization commands
Set parameters that restrict (or permit) a user’s access to EXEC and CONFIGURATION level commands.

S4810
Syntax

aaa authorization commands {level | role role-name}{name|
default} {local | tacacs+| none}
Undo a configuration with the no aaa authorization commands {level |
role role-name} {name|default} {local | tacacs+ | none}
command.

Parameters

commands
level

Enter the keyword commands then the command privilege
level for command level authorization.

role role-name

Enter the keyword role then the role name.

name

Define a name for the list of authorization methods.

default

Define the default list of authorization methods.

local

Use the authorization parameters on the system to perform
authorization.

tacacs+

Use the TACACS+ protocol to perform authorization.

none

Enter the keyword none to apply no authorization.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1448

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Security

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Added support for RADIUS.

aaa authorization config-commands
Set parameters that restrict (or permit) a user’s access to EXEC level commands.

S4810
Syntax

aaa authorization config-commands
Disable authorization checking for CONFIGURATION level commands using the no
aaa authorization config-commands command.

Defaults

Enabled when you configure aaa authorization commands command.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the E-Series.

By default, the aaa authorization commands command configures the system
to check both EXEC level and CONFIGURATION level commands. Use the
command no aaa authorization config-commands to enable only EXEClevel command checking.

1449

aaa authorization exec
Set parameters that restrict (or permit) a user’s access to EXEC-level commands.

S4810
Syntax

aaa authorization exec {name | default} {local || tacacs+ ||
if-authenticated || none}
To disable authorization checking for EXEC level commands, use the no aaa
authorization exec command.

Parameters

name

Define a name for the list of authorization methods.

default

Define the default list of authorization methods.

local

Use the authorization parameters on the system to perform
authorization.

tacacs+

Use the TACACS+ protocol to perform authorization.

none

Enter the keyword none to apply no authorization.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.1.1.0

Added support for RADIUS.

privilege level (CONFIGURATION mode)
Change the access or privilege level of one or more commands.

S4810
Syntax

1450

privilege mode {level level command | reset command}

Security

To delete access to a level and command, use the no privilege mode level
level command command.
Parameters

mode

level level

Enter one of the following keywords as the mode for which
you are controlling access:
•

configure for CONFIGURATION mode

•

exec for EXEC mode

•

interface for INTERFACE modes

•

line for LINE mode

•

route-map for ROUTE-MAP mode

•

router for ROUTER OSPF, ROUTER RIP, ROUTER ISIS
and ROUTER BGP modes

Enter the keyword level then a number for the access level.
The range is from 0 to 15.
Level 1 is EXEC mode and Level 15 allows access to all CLI
modes and commands.

reset

Enter the keyword reset to return the security level to the
default setting.

command

Enter the command’s keywords to assign the command to a
certain access level. You can enter one or all of the
keywords.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

1451

Usage
Information

To define a password for the level to which you are assigning privilege or access,
use the enable password command.

privilege level (LINE mode)
Change the access level for users on the terminal lines.

S4810
Syntax

privilege level level
To delete access to a terminal line, use the no privilege level level
command.

Parameters

level level

Enter the keyword level then a number for the access level.
The range is from 0 to 15.
Level 1 is EXEC mode and Level 15 allows access to all CLI
modes.

Defaults

level = 15

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Authentication and Password Commands
To manage access to the system, use the following the commands.

1452

Security

aaa authentication enable
Configure AAA Authentication method lists for user access to EXEC privilege mode (the “Enable” access).

S4810
Syntax

aaa authentication enable {default | method-list-name} method
[... method2]
To return to the default setting, use the no aaa authentication enable
{default | method-list-name} method [... method2] command.

Parameters

default

Enter the keyword default then the authentication
methods to use as the default sequence of methods for the
Enable login. The default is default enable.

method-listname

Enter a text string (up to 16 characters long) to name the list
of enabled authentication methods activated at login.

method

Enter one of the following methods:

... method2

•

enable: use the password the enable password
command defines in CONFIGURATION mode.

•

line: use the password the password command defines
in LINE mode.

•

none: no authentication.

•

radius: use the RADIUS servers configured with the
radius-server host command.

•

tacacs+: use the TACACS+ server(s) configured with the
tacacs-server host command.

(OPTIONAL) In the event of a “no response” from the first
method, Dell Networking OS applies the next configured
method.

Defaults

Use the enable password.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

1453

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.0

Introduced on the E-Series.

By default, the Enable password is used. If you configure aaa authentication
enable default, Dell Networking OS uses the methods defined for Enable
access instead.
Methods configured with the aaa authentication enable command are
evaluated in the order they are configured. If authentication fails using the primary
method, Dell Networking OS employs the second method (or third method, if
necessary) automatically. For example, if the TACACS+ server is reachable, but the
server key is invalid, Dell Networking OS proceeds to the next authentication
method. The TACACS+ is incorrect, but the user is still authenticated by the
secondary method.

Related
Commands

enable password — changes the password for the enable command.
login authentication — enables AAA login authentication on the terminal lines.
password — creates a password.
radius-server host — specifies a RADIUS server host.
tacacs-server host — specifies a TACACS+ server host.

aaa authentication login
Configure AAA Authentication method lists for user access to EXEC mode (Enable log-in).

S4810
Syntax

aaa authentication login {method-list-name | default} method
[... method4]
To return to the default setting, use the no aaa authentication login
{method-list-name | default} command.

Parameters

1454

method-listname

Enter a text string (up to 16 characters long) as the name of a
user-configured method list that can be applied to different
lines.

default

Enter the keyword default to specify that the method list
specified is the default method for all terminal lines.

method

Enter one of the following methods:

Security

•
•
•

local: use the password for the userid contained in the
local password database.

•

none: no authentication. Not available if role-only is in
use.
radius: use the RADIUS servers configured with the
radius-server host command.
tacacs+: use the TACACS+ servers configured with the
tacacs-server host command.

•
•

... method4

enable: use the password the enable password
command defines in CONFIGURATION mode. Not
available if role-only is in use.
line: use the password the password command defines
in LINE mode. Not available if role-only is in use.

(OPTIONAL) Enter up to four additional methods. In the
event of a “no response” from the first method, the system
applies the next configured method (up to four configured
methods).

Defaults

Not configured (that is, no authentication is performed).

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

By default, the locally configured username password is used. If you configure aaa
authentication login default, Dell Networking OS uses the methods this
command defines for login instead.
Methods configured with the aaa authentication login command are
evaluated in the order they are configured. If users encounter an error with the first

Security

1455

method listed, Dell Networking OS applies the next method configured. If users fail
the first method listed, no other methods are applied. The only exception is the
local method. If the user’s name is not listed in the local database, the next method
is applied. If the correct user name/password combination is not entered, the user
is not allowed access to the switch.
NOTE: If authentication fails using the primary method, Dell Networking OS
employs the second method (or third method, if necessary) automatically. For
example, if the TACACS+ server is reachable, but the server key is invalid, Dell
Networking OS proceeds to the next authentication method. The TACACS+ is
incorrect, but the user is still authenticated by the secondary method.
After configuring the aaa authentication login command, configure the
login authentication command to enable the authentication scheme on
terminal lines.
Connections to the SSH server work with the following login mechanisms: local,
radius, and tacacs.
Related
Commands

login authentication — enables AAA login authentication on the terminal lines.
password — creates a password.
radius-server host — specifies a RADIUS server host.
tacacs-server host — specifies a TACACS+ server host.

access-class
Restrict incoming connections to a particular IP address in a defined IP access control list (ACL).

S4810
Syntax

access-class access-list-name
To delete a setting, use the no access-class command.

Parameters

access-listname

Enter the name of an established IP Standard ACL.

Defaults

Not configured.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1456

Introduced on the S6000.

Security

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

line — applies an authentication method list to the designated terminal lines.
ip access-list standard — names (or selects) a standard access list to filter based on
the IP address.
ip access-list extended — names (or selects) an extended access list based on the
IP addresses or protocols.

enable password
Change the password for the enable command.

S4810
Syntax

enable password [level level] [encryption-type] password
To delete a password, use the no enable password [encryption-type]
password [level level] command.

Parameters

level level

(OPTIONAL) Enter the keyword level then a number as the
level of access. The range is from 1 to 15.

encryptiontype

(OPTIONAL) Enter the number 7 or 0 as the encryption type.
Enter a 7 then a text string as the hidden password. The text
string must be a password that was already encrypted by a
Dell Networking router.
Use this parameter only with a password that you copied
from the show running-config file of another Dell
Networking router.

password

Defaults

Security

Enter a text string, up to 32 characters long, as the clear text
password.

No password is configured. level = 15.

1457

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

To control access to command modes, use this command to define a password for
a level and use the privilege level (CONFIGURATION mode) command.
Passwords must meet the following criteria:
•

Start with a letter, not a number.

•

Passwords can have a regular expression as the password. To create a
password with a regular expression in it, use CNTL + v prior to entering regular
expression. For example, to create the password abcd]e, you type “abcd CNTL
v ]e”. When the password is created, you do not use the CNTL + v key
combination and enter “abcd]e”.
NOTE: The question mark (?) and the tilde (~) are not supported characters.

Related
Commands

show running-config — views the current configuration.
privilege level (CONFIGURATION mode) — controls access to the command
modes within the switch.

enable restricted
Allows Dell Networking technical support to access restricted commands.

S4810
Syntax

enable restricted [encryption-type] password
To disallow access to restricted commands, use the no enable restricted
command.

1458

Security

Parameters

encryptiontype

(OPTIONAL) Enter the number 7 as the encryption type.
Enter 7 followed a text string as the hidden password. The
text string must be a password that was already encrypted by
a Dell Networking router.
Use this parameter only with a password that you copied
from the show running-config file of another Dell
Networking router.

password

Enter a text string, up to 32 characters long, as the clear text
password.

Defaults

Not configured.

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Only Dell Networking Technical Support staff use this command.

enable secret
Change the password for the enable command.

S4810
Syntax

enable secret [level level] [encryption-type] password
To delete a password, use the no enable secret [encryption-type]
password [level level] command.

Parameters

Security

level level

(OPTIONAL) Enter the keyword level then a number as the
level of access. The range is from 1 to 15.

1459

encryptiontype

(OPTIONAL) Enter the number 5 or 0 as the encryption type.
Enter a 5 then a text string as the hidden password. The text
string must be a password that was already encrypted by a
Dell Networking router.
Use this parameter only with a password that you copied
from the show running-config file of another Dell
Networking router.

password

Enter a text string, up to 32 characters long, as the clear text
password.

Defaults

No password is configured. level = 15.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

To control access to command modes, use this command to define a password for
a level and use the privilege level (CONFIGURATION mode) command.
Passwords must meet the following criteria:
•

Start with a letter, not a number.

•

Passwords can have a regular expression as the password. To create a
password with a regular expression in it, use CNTL + v prior to entering regular
expression. For example, to create the password abcd]e, you type “abcd CNTL
v ]e”. When the password is created, you do not use the CNTL + v key
combination and enter “abcd]e”.
NOTE: The question mark (?) and the tilde (~) are not supported characters.

1460

Security

Related
Commands

show running-config — views the current configuration.
privilege level (CONFIGURATION mode) — controls access to the command
modes within the switch.

login authentication
To designate the terminal lines, apply an authentication method list.

S4810
Syntax

login authentication {method-list-name | default}
To use the local user/password database for login authentication, use the no
login authentication command.

Parameters

method-listname

Enter the keywords method-list-name to specify that
method list, created in the aaa authentication login
command, to be applied to the designated terminal line.

default

Enter the keyword default to specify that the default
method list, created in the aaa authentication login
command, is applied to the terminal line.

Defaults

No authentication is performed on the console lines. Local authentication is
performed on the virtual terminal and auxiliary lines.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

If you configure the aaa authentication login default command, the
login authentication default command automatically is applied to all
terminal lines.

1461

Related
Commands

aaa authentication login — selects the login authentication methods.

password
Specify a password for users on terminal lines.

S4810
Syntax

password [encryption-type] password
To delete a password, use the no password password command.

Parameters

encryptiontype

password

(OPTIONAL) Enter either zero (0) or 7 as the encryption type
for the password entered. The options are
•

0 is the default and means the password is not encrypted
and stored as clear text.

•

7 means that the password is encrypted and hidden.

Enter a text string up to 32 characters long. The first
character of the password must be a letter. You cannot use
spaces in the password.

Defaults

No password is configured.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1462

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell Networking OS prompts users for these passwords when the method for
authentication or authorization used is "line".

Security

Related
Commands

enable password — sets the password for the enable command.
login authentication — configures an authentication method to log in to the
switch.
service password-encryption — encrypts all passwords configured in Dell
Networking OS .
radius-server key — configures a key for all RADIUS communications between the
switch and the RADIUS host server.
tacacs-server key — configures a key for communication between a TACACS+
server and client.
username — establishes an authentication system based on user names.

password-attributes
Configure the password attributes (strong password).

S4810
Syntax

password-attributes [min-length number] [max-retry number]
[lockout-period minutes][character-restriction [upper number]
[lower number] [numeric number] [special-char number]]
To return to the default, use the no password-attributes [min-length
number] [max-retry number] [lockout-period minutes] [characterrestriction [upper number] [lower number] [numeric number]
[special-char number]] command.

Parameters

Security

min-length
number

(OPTIONAL) Enter the keywords min-length then the
number of characters. The range is from 0 to 32 characters.

max-retry
number

(OPTIONAL) Enter the keywords max-retry then the
number of maximum password retries. The range is from 0
to 16.

lockout-period
minutes

(OPTIONAL) Enter the keyword lockout-period then the
number of minutes. The range is from 1 to 1440 minutes.
The default is 0 minutes and the lockout-period is not
enabled. This parameter enhances the security of the switch
by locking out sessions on the Telnet or SSH sessions for
which there has been a consecutive failed login attempts.
The console is not locked out.

characterrestriction

(OPTIONAL) Enter the keywords character-restriction
to indicate a character restriction for the password.

upper number

(OPTIONAL) Enter the keyword upper then the upper
number. The range is from 0 to 31.

1463

lower number

(OPTIONAL) Enter the keyword lower then the lower
number. The range is from 0 to 31.

numeric
number

(OPTIONAL) Enter the keyword numeric then the numeric
number. The range is from 0 to 31.

special-char
number

(OPTIONAL) Enter the keywords special-char then the
number of special characters permitted. The range is from 0
to 31.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.5(0.0)

Introduced lockout-period option on the Z9000, S6000,
S4820T, S4810, and MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.3.1.0

Introduced on the E-Series.

password — specifies a password for users on terminal lines.

service password-encryption
Encrypt all passwords configured in Dell Networking OS.

S4810
Syntax

service password-encryption
To store new passwords as clear text, use the no service passwordencryption command.

Defaults

1464

Enabled.

Security

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

CAUTION: Encrypting passwords with this command does not provide a
high level of security. When the passwords are encrypted, you cannot return
them to plain text unless you re-configure them. To remove an encrypted
password, use the no password password command.
To keep unauthorized people from viewing passwords in the switch configuration
file, use the service password-encryption command. This command
encrypts the clear-text passwords created for user name passwords, authentication
key passwords, the privileged command password, and console and virtual
terminal line access passwords.
To view passwords, use the show running-config command.

show privilege
View your access level.

S4810
Syntax

show privilege

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

1465

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Example

Dell#show privilege
Current privilege level is 15
Dell#

Related
Commands

privilege level (CONFIGURATION mode) — assigns access control to different
command modes.

show users
Allows you to view information on all users logged in to the switch.

S4810
Syntax
Parameters

show users [all]
all

(OPTIONAL) Enter the keyword all to view all terminal lines
in the switch.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1466

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Security

Usage
Information

Example

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show user command shown in the following
example.
Field

Description

(untitled)

Indicates with an asterisk (*) which terminal line you are
using.

Line

Displays the terminal lines currently in use.

User

Displays the user name of all users logged in.

Host(s)

Displays the terminal line status.

Location

Displays the IP address of the user.

Dell#show users
Authorization Mode:
Line
0 console 0
*3 vty 1
4 vty 2

Related
Commands

role or privilege

User
admin
sec1
ml1

Role
sysadmin
secadmin
netadmin

Privilege
15
14
12

Host(s) Location
idle
idle
172.31.1.4
idle
172.31.1.5

username — enables a user.

timeout login response
Specify how long the software waits for the login input (for example, the user name and password) before
timing out.

S4810
Syntax

timeout login response seconds
To return to the default values, use the no timeout login response
command.

Parameters

Security

seconds

Enter a number of seconds the software waits before logging
you out. The range is:
•

VTY: the range is from 1 to 30 seconds, the default is 30
seconds.

•

Console: the range is from 1 to 300 seconds, the default
is 0 seconds (no timeout).

1467

•

AUX: the range is from 1 to 300 seconds, the default is 0
seconds (no timeout).

Defaults

See the defaults settings shown in Parameters.

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The software measures the period of inactivity defined in this command as the
period between consecutive keystrokes. For example, if your password is
“password” you can enter “p” and wait 29 seconds to enter the next letter.

username
Establish an authentication system based on user names.

S4810
Syntax

username name [access-class access-list-name] [nopassword |
{password | secret} [encryption-type] password] [privilege
level] [role role-name]
If you do not want a specific user to enter a password, use the nopassword
option.
To delete authentication for a user, use the no username name command.

Parameters

1468

name

Enter a text string for the name of the user up to 63
characters.

access-class
access-listname

Enter the keywords access-class then the name of a
configured access control list (either an IP access control list
or MAC access control list).

Security

nopassword

Enter the keyword nopassword to specify that the user
should not enter a password.

password

Enter the keyword password then the encryption-type
or the password.

secret

Enter the keyword secret then the encryption-type or
the password.

encryptiontype

Enter an encryption type for the password that you enter.
•

0 directs the system to store the password as clear text. It
is the default encryption type when using the password
option.

•

7 to indicate that a password encrypted using a DES
hashing algorithm follows. This encryption type is
available with the password option only.

•

5 to indicate that a password encrypted using an MD5
hashing algorithm follows. This encryption type is
available with the secret option only, and is the default
encryption type for this option.

password

Enter a string up to 32 characters long.

privilege level

Enter the keyword privilege then a number from zero (0)
to 15.

role role-name

Enter the keyword role followed by the role name to
associate with that user ID.

secret

Enter the keyword secret then the encryption type.

Defaults

The default encryption type for the password option is 0. The default encryption
type for the secret option is 0.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

1469

Version 7.7.1.0

Added support for the secret option and the MD5
password encryption. Extended the name from 25 to 63
characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

To view the defined user names, use the show running-config user
command.

Related
Commands

password — specifies a password for users on terminal lines.
show running-config — views the current configuration.

RADIUS Commands
The following RADIUS commands are supported by Dell Networking OS.

debug radius
View RADIUS transactions to assist with troubleshooting.

S4810
Syntax

debug radius
To disable debugging of RADIUS, use the no debug radius command.

Defaults

Disabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1470

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Security

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

ip radius source-interface
Specify an interface’s IP address as the source IP address for RADIUS connections.

S4810
Syntax

ip radius source-interface interface
To delete a source interface, use the no ip radius source-interface
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16838.

•

For the Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

1471

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

radius-server deadtime
Configure a time interval during which non-responsive RADIUS servers to authentication requests are
skipped.

S4810
Syntax

radius-server deadtime seconds
To disable this function or return to the default value, use the no radius-server
deadtime command.

Parameters

seconds

Enter a number of seconds during which non-responsive
RADIUS servers are skipped. The range is from 0 to
2147483647 seconds. The default is 0 seconds.

Defaults

0 seconds

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1472

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Security

radius-server group
Creates or deletes a group of radius servers.

S4810
Syntax
Parameters

radius-server group group-name
group-name

Enter the group name that denotes the group of RADIUS
servers.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Example

FTOS(conf)#radius-server group group1
FTOS(conf-radius-group)#radius-server host 1.1.1.1 key secret
FTOS(conf-radius-group)#radius-server host 2.2.2.2 key secret
FTOS(conf-radius-group)#radius-server vrf vrf1 sourceinterface tengigabitethernet 0/36
FTOS(conf-radius-group)#show config
!
radius-server group group1
radius-server vrf vrf1 source-interface TenGigabitEthernet
0/36
radius-server host 1.1.1.1 key 7 9a2f3ec0c65c6f41
radius-server host 2.2.2.2 key 7 9a2f3ec0c65c6f41
FTOS(conf-radius-group)#

Related
Commands

login authentication — sets the database to be checked when a user logs in.
radius-server key — sets an authentication key for RADIUS communications.
radius-server retransmit — sets the number of times the RADIUS server attempts to
send information.
radius-server timeout — sets the time interval before the RADIUS server times out.

Security

1473

radius-server host
Configure a RADIUS server host.

S4810
Syntax

Parameters

radius-server host {hostname | ipv4-address | ipv6-address}
[auth-port port-number] [retransmit retries] [timeout seconds]
[key [encryption-type] key]
hostname

Enter the name of the RADIUS server host.

ipv4-address |
ipv6-address

Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X)
of the RADIUS server host.

auth-port portnumber

(OPTIONAL) Enter the keywords auth-port then a number
as the port number. The range is from zero (0) to 65535. The
default port-number is 1812.

retransmit
retries

(OPTIONAL) Enter the keyword retransmit then a number
as the number of attempts. This parameter overwrites the
radius-server retransmit command. The range is
from zero (0) to 100. The default is 3 attempts.

timeout
seconds

(OPTIONAL) Enter the keyword timeout then the seconds
the time interval the switch waits for a reply from the RADIUS
server. This parameter overwrites the radius-server
timeout command. The range is from 0 to 1000. The
default is 5 seconds.

key
[encryptiontype] key

(OPTIONAL) Enter the keyword key then an optional
encryption-type and a string up to 42 characters long as the
authentication key. The RADIUS host server uses this
authentication key and the RADIUS daemon operating on
this switch.
For the encryption-type, enter either zero (0) or 7 as the
encryption type for the key entered. The options are:
•

0 is the default and means the password is not encrypted
and stored as clear text.

•

7 means that the password is encrypted and hidden.

Configure this parameter last because leading spaces are
ignored.

Defaults

Not configured.

Command
Modes

•

RADIUS SERVER GROUP

•

CONFIGURATION

1474

Security

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Added support for IPv6.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Authentication key length increased to 42 characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

To configure any number of RADIUS server hosts for each server host that is
configured, use this command. Dell Networking OS searches for the RADIUS hosts
in the order they are configured in the software.
The global default values for the timeout, retransmit, and key optional
parameters are applied, unless those values are specified in the radius-server
host or other commands. To return to the global default values, if you configure
the timeout, retransmit, or key values, include those keywords when using the
no radius-server host command syntax.
You can use duplicate host names or IP addresses among RADIUS groups.
However, you cannot use duplicate host names or IP addresses within the same
RADIUS group. If a VRF is not configured on the RADIUS group, then servers
configured in the group are considered to be on the default VRF. RADIUS servers
that are configured in the CONFIGURATION mode are also considered to be on
the default VRF.
You must configure the RADIUS group explicitly with the aaa radius group
command in order for the AAA servers to use the group of RADIUS servers. The
802.1x servers use the group of RADIUS servers based on the VRF where the 802.1x
request is received. As a result, it is possible that both globally configured RADIUS
servers as well as the group-configured RADIUS servers (without VRF or default
VRF) are used for processing the 802.1x requests that are received at the default
VRF. The order in which the RADIUS servers are tried depends on the order in
which the RADIUS servers are configured.

Example

Security

Dell(conf)#radius-server group group1
Dell(conf-radius-group)#radius-server host 1.1.1.1 key secret
Dell(conf-radius-group)#no radius-server host 1.1.1.1

1475

Related
Commands

login authentication — sets the database to be checked when a user logs in.
radius-server key — sets an authentication key for RADIUS communications.
radius-server retransmit — sets the number of times the RADIUS server attempts to
send information.
radius-server timeout — sets the time interval before the RADIUS server times out.

radius-server vrf
Create an association between a RADIUS server group and a VRF and source interface..

S4810
Syntax

radius-server vrf vrf-name [source-interface interface]
To delete the association between a RADIUS server group and a VRF and source
interface, use the no radius-server vrf vrf-name [source-interface
interface] command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
associate a RADIUS server group with that VRF.

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16838.

•

For the Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

RADIUS SERVER GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1476

Security

The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)
Usage
Information

Introduced on the S-Series and Z-Series.

You can use this command to associate a group of RADIUS servers with a VRF and
source interface. You can configure the source interface only with the VRF
attribute and source interface is optional with the VRF attributes.
If VRF is not configured on the RADIUS group, then the group is considered to be
on the default VRF. It is possible to use the default VRF name; however, you cannot
configure the source interface with the default VRF as such a configuration results
in conflicts between the source interfaces corresponding to the 802.1x supplicants
on that default VRF.
RADIUS groups and VRFs have one-to-one mapping. If a VRF is configured with
one RADIUS group, then you cannot use the same VRF with another RADIUS
group. When the VRF is removed, then the corresponding RADIUS group is also
removed automatically.

Example

Dell(conf)#radius-server group group1
Dell(conf-radius-group)#radius-server vrf vrf1 sourceinterface tengigabitethernet 0/36
Dell(conf)#radius-server group group2
Dell(conf-radius-group)#radius-server vrf default

radius-server key
Configure a key for all RADIUS communications between the switch and the RADIUS host server.

S4810
Syntax

radius-server key [encryption-type] key
To delete a password, use the no radius-server key command.

Parameters

encryptiontype

key

Defaults

Security

(OPTIONAL) Enter either zero (0) or 7 as the encryption type
for the key entered. The options are:
•

0 is the default and means the key is not encrypted and
stored as clear text.

•

7 means that the key is encrypted and hidden.

Enter a string that is the key to be exchanged between the
switch and RADIUS servers. It can be up to 42 characters
long.

Not configured.

1477

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Authentication key length increased to 42 characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

The key configured on the switch must match the key configured on the RADIUS
server daemon.
If you configure the key parameter in the radius-server host command, the
key configured with the radius-server key command is the default key for all
RADIUS communications.

Related
Commands

radius-server host — configures a RADIUS host.

radius-server retransmit
Configure the number of times the switch attempts to connect with the configured RADIUS host server
before declaring the RADIUS host server unreachable.

S4810
Syntax

radius-server retransmit retries
To configure zero retransmit attempts, use the no radius-server retransmit
command.
To return to the default setting, use the radius-server retransmit 3
command.

Parameters

1478

retries

Enter a number of attempts that FTOS tries to locate a
RADIUS server. The range is from zero (0) to 100. The default
is 3 retries.

Security

Defaults

3 retries

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

radius-server host — configures a RADIUS host.

radius-server timeout
To reply to a request, configure the amount of time the RADIUS client (the switch) waits for a RADIUS
host server .

S4810
Syntax

radius-server timeout seconds
To return to the default value, use the no radius-server timeout command.

Parameters

seconds

Enter the number of seconds between an unsuccessful
attempt and the Dell Networking OS times out. The range is
from zero (0) to 1000 seconds. The default is 5 seconds.

Defaults

5 seconds

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

1479

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

radius-server host — configures a RADIUS host.

TACACS+ Commands
Dell Networking OS supports TACACS+ as an alternate method for login authentication.

tacacs-server group
Creates a group of TACACS servers to be used for Authentication, Authorization, and Accounting..

S4810
Syntax

aaa tacacsgroup group-name
To delete a group of TACACS servers, use the no tacacs-server group
group-name command.

Parameters

group-name

Enter the name of the TACACS server group.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

1480

Introduced on the S-Series and Z-Series.

If the TACACS group is not configured for Authentication, Authorization, and
Accounting, then globally configured TACACS servers are used for the purposes.
When the TACACS group is removed, the AAA configuration is also removed.

Security

Example

Dell(conf)#tacacs-server group group1
Dell(conf-tacacs-group)#tacacs-server host 1.1.1.1 key secret
Dell(conf-tacacs-group)#tacacs-server host 2.2.2.2 key secret
Dell(conf-tacacs-group)#tacacs-server vrf vrf1 sourceinterface tengigabitethernet 0/36
Dell(conf)#exit
Dell(conf)#aaa tacacsgroup group1

Related
Commands

aaa authentication login — specifies the login authentication method.
tacacs-server key — configures a TACACS+ key for the TACACS server.

debug tacacs+
To assist with troubleshooting, view TACACS+ transactions.

S4810
Syntax

debug tacacs+
To disable debugging of TACACS+, use the no debug tacacs+ command.

Defaults

Disabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.0

Introduced on the E-Series.

1481

ip tacacs source-interface
Specify an interface’s IP address as the source IP address for TACACS+ connections.

S4810
Syntax

ip tacacs source-interface interface
To delete a source interface, use the no ip tacacs source-interface
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16838.

•

For the Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1482

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Security

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

tacacs-server group
Creates a group of TACACS servers.

S4810
Syntax

tacacs-server group group-name
To delete a group of TACACS servers, use the no tacacs-server group
group-name command.

Parameters

group-name

Enter the name of the TACACS server group.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

You can associate a TACACS server group with a VRF.

Example

Dell(conf)#tacacs-server group group1
Dell(conf-tacacs-group)#tacacs-server host 1.1.1.1 key secret
Dell(conf-tacacs-group)#tacacs-server host 2.2.2.2 key secret
Dell(conf-tacacs-group)#tacacs-server vrf vrf1 sourceinterface tengigabitethernet 0/36
Dell(conf-tacacs-group)#show config
!
tacacs-server group group1
tacacs-server vrf vrf1 source-interface TenGigabitEthernet 0/36
tacacs-server host 1.1.1.1 key 7 9a2f3ec0c65c6f41
tacacs-server host 2.2.2.2 key 7 9a2f3ec0c65c6f41
Dell(conf-tacacs-group)#

Related
Commands

aaa authentication login — specifies the login authentication method.
tacacs-server key — configures a TACACS+ key for the TACACS server.

Security

1483

tacacs-server host
Specify a TACACS+ host.

S4810
Syntax
Parameters

tacacs-server host {hostname | ipv4-address | ipv6-address}
[port number] [timeout seconds] [key key]
hostname

Enter the name of the TACACS+ server host.

ipv4-address |
ipv6-address

Enter the IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X)
of the TACACS+ server host.

port number

(OPTIONAL) Enter the keyword port then a number as the
port to be used by the TACACS+ server. The range is from
zero (0) to 65535. The default is 49.

timeout
seconds

(OPTIONAL) Enter the keyword timeout then the number of
seconds the switch waits for a reply from the TACACS+
server. The range is from 0 to 1000. The default is 10
seconds.

key key

(OPTIONAL) Enter the keyword key then a string up to 42
characters long as the authentication key. This
authentication key must match the key specified in the
tacacs-server key for the TACACS+ daemon.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1484

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Added support for IPv6.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Authentication key length increased to 42 characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Security

pre-Version
6.2.1.1
Usage
Information

Introduced on the E-Series.

To list multiple TACACS+ servers to be used by the aaa authentication login
command, configure this command multiple times.
If you are not configuring the switch as a TACACS+ server, you do not need to
configure the port, timeout and key optional parameters. If you do not
configure a key, the key assigned in the tacacs-server key command is used.
You can use duplicate host names or IP addresses among TACACS groups.
However, you cannot use duplicate host names or IP addresses within the same
TACACS group.
If a VRF is not configured on the TACACS group, then servers configured in the
group are considered to be on the default VRF. TACACS servers that are configured
in the CONFIGURATION mode are also considered to be on the default VRF.
For AAA servers to use a group of TACACS servers, you must explicitly configure
the group using the aaa tacacs group group-name command. The order in
which the TACACS servers are tried depends on the order in which they are
configured.

Example

Dell(conf)#tacacs-server group group1
Dell(conf-tacacs-group)#tacacs-server host 1.1.1.1 key secret
Dell(conf-tacacs-group)#no tacacs-server host 1.1.1.1

Related
Commands

aaa authentication login — specifies the login authentication method.
tacacs-server key — configures a TACACS+ key for the TACACS server.

tacacs-server key
Configure a key for communication between a TACACS+ server and a client.

S4810
Syntax

tacacs-server key [encryption-type] key
To delete a key, use the no tacacs-server key key command.

Parameters

encryptiontype

(OPTIONAL) Enter either zero (0) or 7 as the encryption type
for the key entered. The options are:
•
•

key

Security

0 is the default and means the key is not encrypted and
stored as clear text.
7 means that the key is encrypted and hidden.

Enter a text string, up to 42 characters long, as the clear text
password. Leading spaces are ignored.

1485

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Authentication key length increased to 42 characters.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The key configured with this command must match the key configured on the
TACACS+ daemon.

tacacs-server vrf
Create an association between a TACACS server group and a VRF and source interface..

S4810
Syntax

tacacs-server vrf vrf-name [source-interface interface]
To delete the association between a TACACS server group and a VRF and source
interface, use the no tacacs-server vrf vrf-name [source-interface
interface] command.

Parameters

1486

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
associate a TACACS server group with that VRF.

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16838.

Security

•

For the Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

TACACS SERVER GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

You can use this command to associate a group of TACACS servers with a VRF and
source interface. You can configure the source interface only with the VRF
attribute and source interface is optional with the VRF attributes.
If VRF is not configured on the TACACS group, then the group is considered to be
on the default VRF.
RADIUS groups and VRFs have one-to-one mapping. If a VRF is configured with
one RADIUS group, then you cannot use the same VRF with another RADIUS
group. When the VRF is removed, then the corresponding RADIUS group is also
removed automatically.

Example

Dell(conf)#tacacs-server group group1
Dell(conf-tacacs-group)#tacacs-server vrf vrf1 sourceinterface tengigabitethernet 0/36
Dell(conf)#tacacs-server group group2
Dell(conf-tacacs-group)#tacacs-server vrf default

Port Authentication (802.1X) Commands
An authentication server must authenticate a client connected to an 802.1X switch port. Until the
authentication, only Extensible Authentication Protocol over LAN (EAPOL) traffic is allowed through the

Security

1487

port to which a client is connected. After authentication is successful, normal traffic passes through the
port.
Dell Networking OS supports RADIUS and Active Directory environments using 802.1X Port
Authentication.

Important Points to Remember
Dell Networking OS limits network access for certain users by using VLAN assignments. 802.1X with VLAN
assignment has these characteristics when configured on the switch and the RADIUS server.
•

802.1X is supported on S4810 .

•

802.1X is not supported on the LAG or the channel members of a LAG.

•

If no VLAN is supplied by the RADIUS server or if 802.1X authorization is disabled, the port is
configured in its access VLAN after successful authentication.

•

If 802.1X authorization is enabled but the VLAN information from the RADIUS server is not valid, the
port returns to the Unauthorized state and remains in the configured access VLAN. This prevents ports
from appearing unexpectedly in an inappropriate VLAN due to a configuration error. Configuration
errors create an entry in Syslog.

•

If 802.1X authorization is enabled and all information from the RADIUS server is valid, the port is
placed in the specified VLAN after authentication.

•

If port security is enabled on an 802.1X port with VLAN assignment, the port is placed in the RADIUS
server assigned VLAN.

•

If 802.1X is disabled on the port, it is returned to the configured access VLAN.

•

When the port is in the Force Authorized, Force Unauthorized, or Shutdown state, it is placed in the
configured access VLAN.

•

If an 802.1X port is authenticated and put in the RADIUS server assigned VLAN, any change to the port
access VLAN configuration does not take effect.

•

The 802.1X with VLAN assignment feature is not supported on trunk ports, dynamic ports, or with
dynamic-access port assignment through a VLAN membership.

dot1x authentication (Configuration)
Enable dot1x globally; dot1x must be enabled both globally and at the interface level.

S4810
Syntax

dot1x authentication
To disable dot1x on globally, use the no dot1x authentication command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

1488

Introduced on the S4820T.

Security

Related
Commands

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x authentication (Interface) — enables dot1x on an interface.

dot1x authentication (Interface)
Enable dot1x on an interface; dot1x must be enabled both globally and at the interface level.

S4810
Syntax

dot1x authentication
To disable dot1x on an interface, use the no dot1x authentication command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x authentication (Configuration) — enables dot1x globally.

dot1x auth-fail-vlan
Configure an authentication failure VLAN for users and devices that fail 802.1X authentication.

S4810
Syntax

Security

dot1x auth-fail-vlan vlan-id [max-attempts number]

1489

To delete the authentication failure VLAN, use the no dot1x auth-fail-vlan
vlan-id [max-attempts number] command.
Parameters

vlan-id

Enter the VLAN Identifier. The range is from 1 to 4094.

max-attempts
number

(OPTIONAL) Enter the keywords max-attempts then
number of attempts desired before authentication fails. The
range is from 1 to 5. The default is 3.

Defaults

3 attempts

Command
Modes

CONFIGURATION (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series, S-Series, and E-Series.

If the host responds to 802.1X with an incorrect login/password, the login fails. The
switch attempts to authenticate again until the maximum attempts configured is
reached. If the authentication fails after all allowed attempts, the interface is moved
to the authentication failed VLAN.
After the authentication VLAN is assigned, the port-state must be toggled to restart
authentication. Authentication occurs at the next re-authentication interval (dot1x
reauthentication).

Related
Commands

dot1x port-control — enables port-control on an interface.
dot1x guest-vlan — configures a guest VLAN for non-dot1x devices.
show dot1x interface — displays the 802.1X information on an interface.

dot1x auth-server
Configure the authentication server to RADIUS.

S4810
Syntax

1490

dot1x auth-server radius

Security

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x guest-vlan
Configure a guest VLAN for limited access users or for devices that are not 802.1X capable.

S4810
Syntax

dot1x guest-vlan vlan-id
To disable the guest VLAN, use the no dot1x guest-vlan vlan-id command.

Parameters

vlan-id

Enter the VLAN Identifier. The range is from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series, S-Series, and E-Series.

1491

Usage
Information

802.1X authentication is enabled when an interface is connected to the switch. If
the host fails to respond within a designated amount of time, the authenticator
places the port in the guest VLAN.
If a device does not respond within 30 seconds, it is assumed that the device is not
802.1X capable. Therefore, a guest VLAN is allocated to the interface and
authentication for the device occurs at the next re-authentication interval (dot1x
reauthentication).
If the host fails authentication for the designated number of times, the
authenticator places the port in authentication failed VLAN (dot1x auth-failvlan).
NOTE: The layer 3 portion of guest VLAN and authentication fail VLANs can be
created regardless if the VLAN is assigned to an interface or not. After an
interface is assigned a guest VLAN (which has an IP address), routing through
the guest VLAN is the same as any other traffic. However, the interface may
join/leave a VLAN dynamically.

Related
Commands

dot1x auth-fail-vlan — configures a VLAN for authentication failures.
dot1x reauthentication — enables periodic re-authentication.
show dot1x interface — displays the 802.1X information on an interface.

dot1x mac-auth-bypass
Enable MAC authentication bypass. If 802.1X times out because the host did not respond to the Identity
Request frame, Dell Networking OS attempts to authenticate the host based on its MAC address.

S4810
Syntax

[no] dot1x mac-auth-bypass

Defaults

Disabled

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1492

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.4

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Security

Version 8.4.1.0
Usage
Information

Introduced on the C-Series and S-Series.

To disable MAC authentication bypass on a port, enter the no dot1x mac-authbypass command.

dot1x max-eap-req
Configure the maximum number of times an extensive authentication protocol (EAP) request is
transmitted before the session times out.

S4810
Syntax

dot1x max-eap-req number
To return to the default, use the no dot1x max-eap-req command.

Parameters

number

Enter the number of times an EAP request is transmitted
before a session time-out. The range is from 1 to 10. The
default is 2.

Defaults

2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

interface range — configures a range of interfaces.

dot1x port-control
Enable port control on an interface.

S4810
Syntax

Security

dot1x port-control {force-authorized | auto | forceunauthorized}

1493

Parameters

forceauthorized

Enter the keywords force-authorized to forcibly
authorize a port.

auto

Enter the keyword auto to authorize a port based on the
802.1X operation result.

forceunauthorized

Enter the keywords force-unauthorized to forcibly deauthorize a port.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

The authenticator performs authentication only when port-control is set to
auto.

dot1x quiet-period
Set the number of seconds that the authenticator remains quiet after a failed authentication with a client.

S4810
Syntax

dot1x quiet-period seconds
To disable quiet time, use the no dot1x quiet-time command.

Parameters

seconds

Defaults

30 seconds

Command
Modes

INTERFACE

1494

Enter the number of seconds. The range is from 1 to 65535.
The default is 30.

Security

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x reauthentication
Enable periodic re-authentication of the client.

S4810
Syntax

dot1x reauthentication [interval seconds]
To disable periodic re-authentication, use the no dot1x reauthentication
command.

Parameters

interval
seconds

(Optional) Enter the keyword interval then the interval
time, in seconds, after which re-authentication is initiated.
The range is from 1 to 31536000 (1 year). The default is3600
(1 hour).

Defaults

3600 seconds (1 hour)

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

1495

Version 7.4.1.0
Related
Commands

Introduced on the E-Series.

interface range — configures a range of interfaces.

dot1x reauth-max
Configure the maximum number of times a port can re-authenticate before the port becomes
unauthorized.

S4810
Syntax

dot1x reauth-max number
To return to the default, use the no dot1x reauth-max command.

Parameters

number

Enter the permitted number of re-authentications. The range
is from 1 to 10. The default is 2.

Defaults

2

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x server-timeout
Configure the amount of time after which exchanges with the server time-out.

S4810
Syntax

dot1x server-timeout seconds
To return to the default, use the no dot1x server-timeout command.

1496

Security

Parameters

seconds

Enter a time-out value in seconds. The range is from 1 to
300, where 300 is implementation dependant. The default is
30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x supplicant-timeout
Configure the amount of time after which exchanges with the supplicant time-out.

S4810
Syntax

dot1x supplicant-timeout seconds
To return to the default, use theno dot1x supplicant-timeout command.

Parameters

seconds

Enter a time-out value in seconds. The range is from 1 to
300, where 300 is implementation dependant. The default is
30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Security

Introduced on the S6000.

1497

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

dot1x tx-period
Configure the intervals at which EAPOL PDUs are transmitted by the Authenticator PAE.

S4810
Syntax

dot1x tx-period seconds
To return to the default, use the no dot1x tx-period command.

Parameters

seconds

Enter the interval time, in seconds, that EAPOL PDUs are
transmitted. The range is from 1 to 65535 (1 year). The
default is 30.

Defaults

30 seconds

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1498

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Version 7.4.1.0

Introduced on the E-Series.

Security

show dot1x interface
Display the 802.1X information on an interface.

S4810
Syntax
Parameters

show dot1x interface interface
interface

Enter one of the following keywords and slot/port or number
information:
•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Fast Ethernet interface, enter the keyword
FastEthernet then the slot/ port information.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

Defaults

none

Command
Modes

•

EXEC

•

EXEC privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series, S-Series, and E-Series.

Dell#show dot1x int Gi 2/32
802.1x information on
Gi 2/32:
----------------------------Dot1x Status:
Enable
Port Control:
AUTO
Port Auth Status:
UNAUTHORIZED
Re-Authentication:
Disable
Untagged VLAN id:
None
Guest VLAN:
Enable
Guest VLAN id:
10
Auth-Fail VLAN:
Enable

1499

Auth-Fail VLAN id:
Auth-Fail Max-Attempts:
Tx Period:
Quiet Period:
ReAuth Max:
Supplicant Timeout:
Server Timeout:
Re-Auth Interval:
Max-EAP-Req:
Auth Type:
Auth PAE State:
Backend State:
Dell#

11
3
30 seconds
60 seconds
2
30 seconds
30 seconds
3600 seconds
2
SINGLE_HOST
Initialize
Initialize

SSH Server and SCP Commands
Dell Networking OS supports secure shell (SSH) protocol versions 1.5 and 2.0. SSH is a protocol for
secure remote login over an insecure network. SSH sessions are encrypted and use authentication.
The SSH server and client are enhanced to support the VRF awareness functionality. Using this capability,
an SSH client or server can use a VRF instance name to look up the correct routing table and establish a
connection.

crypto key generate
Generate keys for the SSH server.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
crypto key generate {rsa | rsa1}

Parameters

rsa

Enter the keyword rsa then the key size to generate a SSHv2
RSA host keys. The range is from 1024 to 2048 if you did not
enable FIPS mode; if you enabled FIPS mode, you can only
generate a 2048-bit key. The default is 1024.
NOTE: You must have a license to access the FIPS mode.
For more information, contact your Dell Networking
representative.

rsa1

Enter the keyword rsa1 then the key size to generate a
SSHv1 RSA host keys. The range is from 1024 to 2048. The
default is 1024.
NOTE: This option is not available in FIPS mode.

Defaults

1500

Key size 1024; if you enable FIPS mode, the key size is 2048.

Security

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Added support for FIPS mode on the S4810.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The host keys are required for key-exchange by the SSH server. If the keys are not
found when you enable the server (ip ssh server enable), the keys are
automatically generated.
This command requires user interaction and generates a prompt prior to
overwriting any existing host keys.
NOTE: Only a user with superuser permissions should generate host-keys.

Example

Dell#conf
Dell(conf)#crypto key generate rsa1
Enter key size <1024-2048>. Default<1024>: 1024
Host key already exists. Do you want to replace. [y/n] :y
Dell(conf)#

Related
Commands

ip ssh server — enables the SSH server.
show crypto — displays the SSH host public keys.

crypto key zeroize rsa
Removes the generated RSA host keys and zeroize the key storage location.

Syntax

Security

crypto key zeroize rsa

1501

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Related
Commands

Introduced on the Z9000, S6000, S4820T, S4810, MXL

crypto key generate — Generate keys for SSH server

debug ip ssh
Enables collecting SSH debug information.

S4810
Syntax

debug ip ssh {client | server}
To disable debugging, use the no debug ip ssh {client | server}
command.

Parameters

client

Enter the keyword client to enable collecting debug
information on the client.

server

Enter the keyword server to enable collecting debug
information on the server.

Defaults

Disabled on both client and server.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1502

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Security

pre-Version
6.1.1.0
Usage
Information

Introduced on the E-Series.

Debug information includes details for key-exchange, authentication, and
established session for each connection.

ip scp topdir
Identify a location for files used in secure copy transfer.

S4810
Syntax

ip scp topdir directory
To return to the default setting, use the no ip scp topdir command.

Parameters

directory

Enter a directory name.

Defaults

The internal flash (flash:) is the default directory.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

To configure the switch as an SCP server, use the ip ssh server command.

Related
Commands

ip ssh server — enables the SSH and SCP server on the switch.

Security

1503

ip ssh authentication-retries
Configure the maximum number of attempts that should be used to authenticate a user.

S4810
Syntax
Parameters

ip ssh authentication-retries 1-10
1-10

Enter the number of maximum retries to authenticate a user.
The range is from 1 to 10. The default is 3.

Defaults

3

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

This command specifies the maximum number of attempts to authenticate a user
on an SSH connection with the remote host for password authentication. SSH
disconnects when the number of password failures exceeds authentication-retries.

ip ssh connection-rate-limit
Configure the maximum number of incoming SSH connections per minute.

S4810
Syntax
Parameters

1504

ip ssh connection-rate-limit 1-10
1-10

Enter the number of maximum numbers of incoming SSH
connections allowed per minute. The range is from 1 to 10
per minute. The default is 10 per minute.

Security

Defaults

10 per minute

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

ip ssh hostbased-authentication
Enable hostbased-authentication for the SSHv2 server.

S4810
Syntax

ip ssh hostbased-authentication enable
To disable hostbased-authentication for SSHv2 server, use the no ip ssh
hostbased-authentication enable command.

Parameters

enable

Enter the keyword enable to enable hostbasedauthentication for SSHv2 server.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

1505

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

If you enable this command, clients can log in without a password prompt. This
command provides two levels of authentication:
•

rhost-authentication is done with the file specified in the ip ssh rhostfile
command.

•

checking client host-keys is done with the file specified in the ip ssh pubkey-file command.
NOTE: Administrators must specify the two files (rhosts and pub-key-file)
to configure host-based authentication.

Related
Commands

ip ssh pub-key-file — public keys of trusted hosts from a file.
ip ssh rhostsfile — trusted hosts and users for rhost authentication.

ip ssh key-size
Configure the size of the server-generated RSA SSHv1 key.

S4810
Syntax
Parameters

ip ssh key-size 512-869
512-869

Enter the key-size number for the server-generated RSA
SSHv1 key. The range is from 512 to 869. The default is 768.

Defaults

Key size 768

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1506

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Security

Usage
Information

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The server-generated key is used for SSHv1 key-exchange.

ip ssh password-authentication
Enable password authentication for the SSH server.

S4810
Syntax

ip ssh password-authentication enable
To disable password-authentication, use the no ip ssh passwordauthentication enable command.

Parameters

enable

Enter the keyword enable to enable passwordauthentication for the SSH server.

Defaults

Enabled

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

With password authentication enabled, you can authenticate using the local,
RADIUS, or TACACS+ password fallback order as configured.

1507

ip ssh pub-key-file
Specify the file used for host-based authentication.

S4810
Syntax
Parameters

ip ssh pub-key-file {WORD}
WORD

Enter the file name for the host-based authentication.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

This command specifies the file used for the host-based authentication. The
creates/ file overwrites the flash://ADMIN_DIR/ssh/knownhosts file and
deletes the user-specified file. Even though this command is a global configuration
command, it does not appear in the running configuration because you only need
to run this command once.
The file contains the OpenSSH-compatible public keys of the host for which hostbased authentication is allowed. An example known host file format:
poclab4,123.12.1.123 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox/
QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV+ui
+DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3t
ReG1o8AxLi6+S4hyEMqHzkzBFNVqHzpQc
+Rs4p2urzV0F4pRKnaXdHf3Lk4D460HZRhhVrxqeNxPDpEn WIMPJi0ds=
ashwani@poclab4
NOTE: For rhostfile and pub-key-file, the administrator must FTP the
file to the chassis.

1508

Security

Example

Dell#conf
Dell(conf)# ip ssh pub-key-file flash://knownhosts
Dell(conf)#

Related
Commands

show ip ssh client-pub-keys — displays the client-public keys used for the hostbased authentication.

ip ssh rekey
Configures the time rekey-interval or volume rekey-limit threshold at which to re-generate the SSH key
during an SSH session.

Syntax

ip ssh rekey [time rekey-interval] [volume rekey-limit]
To reset to the default, use no ip ssh rekey [time rekey-interval]
[volume rekey-limit] command.

Parameters

time minutes

Enter the keywords time then the amount of time in
minutes. The range is from 10 to 1440 minutes. The default is
60 minutes

volume rekeylimit

Enter the keywords volume then the amount of volume in
megabytes. The range is from 1 to 4096 to megabytes. The
default is 1024 megabytes

Defaults

The default time is 60 minutes. The default volume is 1024 megabytes.

Command
Modes

CONFIGURATION mode

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Introduced on the Z9000, S6000, S4820T, S4810, MXL

ip ssh rhostsfile
Specify the rhost file used for host-based authorization.

S4810
Syntax
Parameters

Defaults

Security

ip ssh rhostsfile {WORD}
WORD

Enter the rhost file name for the host-based authentication.

none

1509

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Example

Dell#conf
Dell(conf)# ip ssh rhostsfile flash://shosts
Dell(conf)#

Usage
Information

This command specifies the rhost file used for host-based authentication. This
creates/ file overwrites the flash:/ADMIN_DIR/ssh/shosts file and deletes
the user-specified file. Even though this command is a global configuration
command, it does not appear in the running configuration because you only need
to run this command once.
This file contains hostnames and usernames, for which hosts and users, rhostauthentication can be allowed.
NOTE: For rhostfile and pub-key-file, the administrator must FTP the
file to the switch.

ip ssh rsa-authentication (Config)
Enable RSA authentication for the SSHv2 server.

S4810
Syntax

ip ssh rsa-authentication enable
To disable RSA authentication, use the no ip ssh rsa-authentication
enable command.

Parameters

1510

enable

Enter the keyword enable to enable RSA authentication for
the SSHv2 server.

Security

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Enabling RSA authentication allows the user to log in without being prompted for a
password. In addition, the OpenSSH compatible SSHv2 RSA public key must be
added to the list of authorized keys (ip ssh rsa-authentication myauthorized-keys device://filename command).

ip ssh server
Configure an SSH server. SSH server is enabled by default.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
ip ssh server {enable | port port-number} [version {1 | 2}]
To disable SSH server functions, use the no ip ssh server enable command.

Parameters

Security

enable

Enter the key word enable to start the SSH server.

port portnumber

(OPTIONAL) Enter the keyword port then the port number
of the listening port of the SSH server. The range is from 1 to
65535. The default is 22.

[version {1 | 2}]

(OPTIONAL) Enter the keyword version then the SSH
version 1 or 2 to specify only SSHv1 or SSHv2.

1511

NOTE: If you enable FIPS mode, you can only select
version 2.
Defaults

Default listening port is 22.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

This command enables the SSH server and begins listening on a port. If a port is
not specified, listening is on SSH default port 22.
NOTE: Starting with Dell Networking OS Release 9.2(0.0), SSH server is
enabled by default.

Example

Dell# conf
Dell(conf)# ip ssh server port 45
Dell(conf)# ip ssh server enable
Dell#

Related
Commands

show ip ssh — displays the ssh information.

ip ssh server vrf
Configure an SSH server on either a specific VRF or a management VRF.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
ip ssh server vrf {management | vrf-name}

1512

Security

To disable the SSH server configuration, use the no ip ssh server vrf
{management | vrf-name} command.
Parameters

vrf
management

Enter the key word vrf followed by the keyword
management to configure an SSH server on a management
VRF.

vrf vrf-name

Enter the key word vrf followed by the VRF name to
configure an SSH server on that VRF.

Defaults

None

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

You can enable the SSH server on either a management VRF or a user defined VRF
but not both. If no VRF is specified, then the SSH server is enabled on the default
VRF.
If the SSH server is enabled on a VRF with name vrf1, then use the following
command to restart the SSH server on a VRF with name vrf2: ip ssh server
vrf vrf2. If the SSH server is enabled on a VRF with name vrf1, then use the
following command to restart the SSH server on the default VRF: ip ssh server
vrf.

Example

•
•
•
•

Related
Commands

show ip ssh — displays the ssh information.

Dell(conf)#ip
Dell(conf)#no
Dell(conf)#ip
Dell(conf)#no

ssh server vrf vrf1
ip ssh server vrf
ssh server vrf management
ip ssh server vrf

ip ssh source-interface
Specifies an interface’s IP address as the source IP address for an outgoing SSH connections.

S4810
Syntax

ip ssh source-interface interface
To delete a source interface, use the no ip ssh source-interface command.

Security

1513

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16838.

•

For the Null interface, enter the keywords null 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

The source-interface interface attribute is applicable for both the SSH
client as well as the COPY (SCP) commands. Using these attributes the client
session tags an error to the user during run time, in case there is a mismatch
between this command and the ip ssh vrf command.

Example

Dell(conf)#ip ssh source-interface tengigabitethernet 0/36
Dell(conf)#do ssh 10.10.10.2 -l admin
Dell(conf)#no ip ssh source-interface

ip ssh vrf
Specify a VRF for an outgoing SSH connections.

S4810
Syntax

1514

ip ssh vrf vrf-name

Security

To delete a VRF for an outgoing SSH connection, use the no ip ssh vrf vrfname command.
Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
configure that VRF for an outgoing SSH session.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Usage
Information

If you configure a VRF for an SSH session, then you need not explicitly mention the
same VRF for the SSH client sessions intended for that VRF. The vrf attribute in the
ip ssh vrf command is applicable for both the SSH client as well as the COPY
(SCP) commands.

Example

Dell(conf)#ip ssh vrf vrf1
Dell(conf)#do ssh 10.10.10.2 -l admin
Dell(conf)#no ip ssh vrf vrf1

show crypto
Display the public part of the SSH host-keys.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
show crypto key mypubkey {rsa | rsa1}

Parameters

Key

Enter the keyword key to display the host public key.

mypubkey

Enter the keyword mypubkey to display the host public key.

rsa

Enter the keyword rsa to display the host SSHv2 RSA public
key.

rsa1

Enter the keyword rsa1 to display the host SSHv1 RSA public
key.
NOTE: If you enable FIPS mode, this parameter is not
available.

Security

1515

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

This command is useful if the remote SSH client implements Strict Host Key
Checking. You can copy the host key to your list of known hosts.

Example

Dell#show crypto key mypubkey rsa
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAtzkZME/
e8V8smnXR22EJGQhCMkEOkuisa+OILVoMYU1ZKGfj0W5BPCSvF/
x5ifqYFFwUzJNOcsJK7vjSsnmMhChF2YSvXlvTJ6h971FJAQlOsgd0ycpocsF
+DNLKfJnx7SAjhakFQMwG
g/g78ZkDT3Ydr8KKjfSI4Bg/WS8B740=
Dell#show crypto key mypubkey rsa1
1024 35
131060015480873398953257515397249657850072206444294963674080935
6830889610203172266
798895675496676526500637962218977992760927852363883922305508181
9166009928132616408
664345774602219229518903992966334579117374224743155375050167692
9660273790601494434
050000015179864425629613385774919236081771341059533760063913083
Dell#

Related
Commands

crypto key generate — generates the SSH keys.

show ip ssh
Display information about established SSH sessions.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
show ip ssh

1516

Security

Command
Modes
Command
History

•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Dell#sh ip ssh
SSH server
:
SSH server version
:
Password Authentication :
Hostbased Authentication :
RSA Authentication
:
Vty Encryption HMAC
1
3des-cbc
hmac-md5
2
3des-cbc
hmac-md5

enabled.
v1 and v2.
enabled.
disabled.
disabled.
Remote IP
10.1.20.48
10.1.20.48

ip ssh server — configures an SSH server.
show ip ssh client-pub-keys — displays the client-public keys.

show ip ssh client-pub-keys
Display the client public keys used in host-based authentication.

S4810
Syntax

show ip ssh client-pub-keys

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

1517

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

This command displays the contents of the flash://ADMIN_DIRssh/
knownhosts file.

Example

Dell#show ip ssh client-pub-keys
poclab4,123.12.1.123 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox/
QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV+ui
+DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3tReG1
o8AxLi6+S4hyEMqHzkzBFNVqHzpQc
+Rs4p2urzV0F4pRKnaXdHf3Lk4D460HZRhhVrxqeNxPDpEnWIMPJi0
ds= ashwani@poclab4
Dell#

Related
Commands

ip ssh pub-key-file — configures the filename for the host-based authentication.

ssh
Open an SSH connection specifying the host name, username, port number and version of the SSH
client.

S4810
Syntax

NOTE: Some of the parameters in this command require licensing to access.
For more information, contact your Dell Networking representative.
ssh [vrf vrf-name] {hostname | ipv4 address | ipv6 address} [-c
encryption cipher | -l username | -m HMAC algorithm | -p portnumber | -v {1 | 2}]

Parameters

1518

vrf vrf-name

(OPTIONAL) Enter the keyword vrf aand then the name of
the VRF to specify the VRF used with the SSH session.

Security

NOTE: The VRF configured using this command has a
higher precedence than the VRF configured using the ip
ssh vrf vrf-name command. If you do not configure
a VRF using this command, then the SSH client uses the
configured VRF (if any). If there is a mismatch between
VRFs that are configured using the ip ssh sourceinterface command and the ssh vrf vrf-name
command, then an error is reported.
hostname

(OPTIONAL) Enter the IP address or the host name of the
remote device.

vrf instance

(OPTIONAL) E-Series Only: Enter the keyword vrf then the
VRF Instance name to open an SSH connection to that
instance.

ipv4 address

(OPTIONAL) Enter the IP address in dotted decimal format
A.B.C.D.

ipv6-address
prefix-length

(OPTIONAL) Enter the IPv6 address in the x:x:x:x::x format
then the prefix length in the /x format. The range is from /0
to /128.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

-c encryption
cipher

Defaults

Security

Enter the following encryption cipher. (For v2 clients only.):
•

3des-cbc: Force ssh to use 3des-cbc encryption cipher.

-l username

(OPTIONAL) Enter the keyword -l then the user name used
in this SSH session. The default is the user name of the user
associated with the terminal.

-m HMAC
algorithm

Enter one of the following HMAC algorithms to use. (For v2
clients only.):
•

hmac-sha1: Force ssh to use the hmac-sha1 HMAC
algorithm.

•

hmac-sha1-96: Force ssh to use the hmac-sha1-96
HMAC algorithm.

•

hmac-md5: Force ssh to use the hmac-md5 HMAC
algorithm.

•

hmac-md5-96: Force ssh to use the hmac-md5-96
HMAC algorithm.

-p portnumber

(OPTIONAL) Enter the keyword -p then the port number.
The range is from 1 to 65536. The default is 22.

-v {1 | 2}

(OPTIONAL) Enter the keyword -v then the SSH version 1 or
2. The default is the version from the protocol negotiation.

As shown in the Parameters section.

1519

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.12.0

Added support for the -c and -m parameters on the S4810.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Added IPv6 support. Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Usage
Information

Dell Networking OS supports both inbound and outbound SSH sessions using IPv4
or IPv6 addressing. Inbound SSH supports accessing the system through the
management interface as well as through a physical Layer 3 interface.

Example

Dell#ssh 10.11.8.12 ?
-c
Encryption cipher to use (for v2 clients only)
-l
User name option
-m
HMAC algorithm to use (for v2 clients only)
-p
SSH server port option (default 22)
-v
SSH protocol version

Dell#ssh 10.11.8.12 -c ?
3des-cbc Force ssh to use 3des-cbc encryption cipher
Dell#ssh 10.11.8.12 -m
hmac-sha1
Force ssh
hmac-sha1-96 Force ssh
hmac-md5
Force ssh
hmac-md5-96 Force ssh

?
to
to
to
to

use
use
use
use

hmac-sha1 HMAC algorithm
hmac-sha1-96 HMAC algorithm
hmac-md5 HMAC algorithm
hmac-md5-96 HMAC algorithm

Dell#ssh vrf vrf1 10.10.10.2 -l admin

1520

Security

Secure DHCP Commands
DHCP as defined by RFC 2131 provides no authentication or security mechanisms. Secure DHCP is a suite
of features that protects networks that use dynamic address allocation from spoofing and attacks.

clear ip dhcp snooping
Clear the DHCP binding table.

S4810
Syntax

clear ip dhcp snooping binding

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

show ip dhcp snooping — displays the contents of the DHCP binding table.

ip dhcp relay
Enable Option 82.

S4810
Syntax
Parameters

Defaults

Security

ip dhcp relay information-option [trust-downstream | vrf]
trustdownstream

Configure the system to trust Option 82 when it is received
from the previous-hop router.

vrf

Enter the keyword vrf to include VRF related information in
the Option 82. This configuration enables the relay agent to
include VRF related information when it forwards the
broadcasts from client to DHCP server.

Disabled.

1521

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping
Enable DHCP Snooping globally.

S4810
Syntax

[no] ip dhcp snooping

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1522

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

When enabled, no learning takes place until you enable snooping on a VLAN. After
disabling DHCP Snooping, the binding table is deleted and Option 82, IP Source
Guard, and Dynamic ARP Inspection are disabled.

Security

Related
Commands

ip dhcp snooping vlan — enables DHCP Snooping on one or more VLANs.

ip dhcp snooping binding
Create a static entry in the DHCP binding table.

S4810
Syntax
Parameters

[no] ip dhcp snooping binding mac address vlan-id vlan-id ip
ip-address interface type slot/port lease number
mac address

Enter the keyword mac then the MAC address of the host to
which the server is leasing the IP address.

vlan-id vlan-id

Enter the keywords vlan-id then the VLAN to which the
host belongs. The range is from 2 to 4094.

ip ip-address

Enter the keyword ip then the IP address that the server is
leasing.

interface type

Enter the keyword interface then the type of interface to
which the host is connected.
•

For an 10/100 Ethernet interface, enter the keyword
fastethernet.

•

For a ten-Gigabit Ethernet interface, enter the keyword
tengigabitethernet.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE.

slot/port

Enter the slot and port number of the interface.

lease time

Enter the keyword lease then the amount of time the IP
address is leased. The range is from 1 to 4294967295.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Security

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

1523

Related
Commands

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

show ip dhcp snooping — displays the contents of the DHCP binding table.

ip dhcp snooping database
Delay writing the binding table for a specified time.

S4810
Syntax
Parameters

ip dhcp snooping database write-delay minutes
minutes

The range is from 5 to 21600.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping database renew
Renew the binding table.

S4810
Syntax

ip dhcp snooping database renew

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

1524

Security

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping trust
Configure an interface as trusted.

S4810
Syntax

[no] ip dhcp snooping trust

Defaults

Untrusted

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp source-address-validation
Enable IP source guard.

S4810
Syntax

[no] ip dhcp source-address-validation

Defaults

Disabled.

Security

1525

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

ip dhcp snooping vlan
Enable DHCP Snooping on one or more VLANs.

S4810
Syntax
Parameters

[no] ip dhcp snooping vlan name
name

Enter the name of a VLAN on which to enable DHCP
Snooping.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

When enabled, the system begins creating entries in the binding table for the
specified VLANs.
NOTE: Learning only happens if there is a trusted port in the VLAN.

1526

Security

Related
Commands

ip dhcp snooping trust — configures an interface as trusted.

show ip dhcp snooping
Display the contents of the DHCP binding table.

S4810
Syntax

show ip dhcp snooping binding

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.8.1.0

Introduced on the C-Series and S-Series.

clear ip dhcp snooping — clears the contents of the DHCP binding table.

Role-Based Access Control Commands
With Role-Based Access Control (RBAC), access and authorization is controlled based on a user’s role.
Users are granted permissions based on their user roles, not on their individual user ID. User roles are
created for job functions and through those roles they acquire the permissions to perform their
associated job function.
This section describes the syntax and usage of RBAC-specific commands. You can find information on
other related security commands in this chapter:
•

aaa accounting

•

aaa authentication login

•

aaa authorization commands

•

authorization

•

show accounting

Security

1527

•

show users

•

username

aaa authorization role-only
Configure authentication to use the user’s role only when determining if access to commands is
permitted.

Syntax

aaa authorization role-only
To return to the default setting, use the no aaa authentication role-only
command.

Parameters

name

Enter a text string for the name of the user up to 63
characters. It cannot be one of the system defined roles
(sysadmin, secadmin, netadmin, netoperator).

inherit existingrole-name

Enter the inherit keyword then specify the system defined
role to inherit permissions from (sysadmin, secadmin,
netadmin, netoperator).

Defaults

none

Command
Modes

CONFIGURATION

Command
History

Usage
Information

Version 9.5.
(0.0)

Introduced on the Z9000, S6000, S4820T, S4810, MXL

By default, access to commands are determined by the user’s role (if defined) or by
the user’s privilege level. If the aaa authorization role-only command is
enabled, then only the user’s role is used.
Before you enable role-based only AAA authorization:

Related
Commands

1528

1.

Locally define a system administrator user role.This will give you access to
login with full permissions even if network connectivity to remote
authentication servers is not available.

2.

Configure login authentication on the console. This ensures that all users are
properly identified through authentication no matter the access point

3.

Specify an authentication method (RADIUS, TACACS+, or Local).

4.

Specify authorization method (RADIUS, TACACS+ or Local).

5.

Verify the configuration has been applied to the console or VTY line.

login authentication, password, radius-server host, tacacs-server host

Security

enable
Enter EXEC Privilege mode or any other privilege level configured. After entering this command, you may
need to enter a password.

S4810
Syntax
Parameters

enable [level]
level

(OPTIONAL) Enter a number for a privilege level of Dell
Networking OS. The range is from 0 to 15.

Defaults

15

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.5(0.0)

Added support for roles on the Z9000, S6000, S4820T,
S4810, MXL

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series

Original command.

Users entering EXEC Privilege mode or any other configured privilege level can
access configuration commands. To protect against unauthorized access, use the
enable password command to configure a password for the enable command
at a specific privilege level. If no privilege level is specified, the default is privilege
level 15.
NOTE: If you are authorized for the EXEC Privilege mode by your role, you do
not need to enter an enable password.

Security

1529

Related
Commands

enable password — configures a password for the enable command and to
access a privilege level.

role
Changes command permissions for roles.

Syntax

role mode { { { addrole | deleterole } role-name } | reset } command
To delete access to a command, use the no role mode role-name

Parameters

mode

Enter one of the following keywords as the mode for which
you are controlling access:
configure for CONFIGURATION mode
exec for EXEC mode
interface for INTERFACE modes
line for LINE mode
route-map for Route-map mode
router for Router mode

addrole

Enter the keyword addrole to add permission to the
command. You cannot add or delete rights for the sysadmin
role.

deleterole

Enter the keyword deleterole to remove access to the
command. You cannot add or delete rights for the sysadmin
role.

role-name

Enter a text string for the name of the user role up to 63
characters. These are 3 system defined roles you can modify:
secadmin, netadmin, and netoperator.

reset

Enter the keyword reset to reset all roles back to default for
that command.

command

Enter the command’s keywords to assign the command to a
certain access level. You can enter one or more keywords.

Defaults

none

Command
Modes

CONFIGURATION

1530

Security

Command
History

Related
Commands

Version 9.5.
(0.0)

Introduced on the Z9000, S6000, S4820T, S4810, MXL

userrole

show role
Display information on permissions assigned to a command, including user role and/or permission level.

Syntax
Parameters

show role mode {mode} {command}
command

Enter the command’s keywords to assign the command to a
certain access level. You can enter one or all of the
keywords.

mode mode

Enter keyword then one of the following modes.

Defaults

none

Command
Modes

EXEC Privilege

Command
History
Examples

Version 9.5(0.0)

•

configure

•

exec

•

interface

•

line

•

route-map

•

router

Introduced on the Z9000, S6000, S4820T, S4810, MXL

Dell#show role mode configure username
Role access: sysadmin
Dell#show role mode configure management route
Role access: netadmin, sysadmin
Dell#show role mode configure management crypto-policy
Role access: secadmin, sysadmin

Related
Commands

Security

userrole, username, privilege

1531

show userroles
Display information on all defined user roles.

Syntax

show userroles

Example

Dell#show userroles
Role
Inheritance
netoperator
netadmin
secadmin
sysadmin
netoperator
testadmin

Command
Modes
Command
History
Related
Commands

netadmin

Modes
Exec
Exec Config Interface Line Router IP
Route-map Protocol MAC
Exec Config
Exec Config Interface Line Router IP
Route-map Protocol MAC
Exec Config Interface Line Router IP
Route-map Protocol MAC

EXEC Privilege

Version 9.5(0.0)

Introduced on the Z9000, S6000, S4820T, S4810, MXL.

userrole, username

userrole
Create user roles for the role-based security model.

Syntax

userrole name inherit existing-role-name
To delete a role name, use the no userrole name command. Note that the reserved
role names may not be deleted.

Parameters

name

Enter a text string for the name of the user up to 63
characters. It cannot be one of the system defined roles
(sysadmin, secadmin, netadmin, netoperator).

inherit existingrole-name

Enter the inherit keyword then specify the system defined
role to inherit permissions from (sysadmin, secadmin,
netadmin, netoperator).

Defaults

none

Command
Modes

CONFIGURATION

1532

Security

Command
History
Usage
Information

Version 9.5(0.0)

Introduced on the Z9000, S6000, S4820T, S4810, MXL.

Instead of using the system defined user roles, you can create a new user role that
best matches your organization. When you create a new user role, you first inherit
permissions from one of the system defined roles. Otherwise you would have to
create a user role from scratch. You then restrict commands or add commands to
that role. For information about this topic, See Modifying Command Permissions
for Roles.
NOTE: You can change user role permissions on system pre-defined user
roles or user-defined user roles.
Important Points to Remember
Consider the following when creating a user role:
•

Only the system administrator and user-defined roles inherited from the system
administrator can create roles and usernames. Only the system administrator,
security administrator, and roles inherited from these can use the role
command to modify command permissions. The security administrator and
roles inherited by security administrator can only modify permissions for
commands they already have access to.

•

Make sure you select the correct role you want to inherit.
NOTE: If you inherit a user role, you cannot modify or delete the inheritance. If
you want to change or remove the inheritance, delete the user role and create
it again. If the user role is in use, you cannot delete the user role.

Related
Commands

Security

role mode { { { addrole | deleterole } role-name } | reset } command – Modifies
(adds or deletes) command permissions for newly created user roles and system
defined roles.

1533

52

Service Provider Bridging

Service provider bridging is composed of virtual local area network (VLAN) Stacking, Layer 2 Protocol
Tunneling, and Provider Backbone Bridging as described in the Dell Networking OS Configuration Guide
Service Provider Bridging chapter.
This chapter includes command line information (CLI) for the Dell Networking operating software Layer 2
Protocol Tunneling (L2PT). L2PT enables protocols to tunnel through an 802.1q tunnel.
Dell Networking OS supports L2PT on the S4810 platform.
For more information, refer to VLAN Stacking, Spanning Tree Protocol (STP), and GARP VLAN Registration
(GVRP).

Important Points to Remember
•

L2PT is enabled at the interface VLAN-Stack VLAN level. For more information about Stackable VLAN
(VLAN-Stacking) commands, refer to VLAN Stacking.

•

The default behavior is to disable protocol packet tunneling through the 802.1q tunnel.

•

Rate-limiting is required to protect against bridge protocol data units (BPDU) attacks.

•

A port channel (including through link aggregation control protocol [LACP]) can be configured as a
VLAN-Stack access or trunk port.

•

Address resolution protocol (ARP) packets work as expected across the tunnel.

•

Far-end failure detection (FEFD) works the same as with Layer 2 links.

•

Protocols that use Multicast MAC addresses (for example, open shortest path first [OSPF]) work as
expected and carry over to the other end of the VLAN-Stack VLAN.

debug protocol-tunnel
Enable debugging to ensure incoming packets are received and rewritten to a new MAC address.

S4810
Syntax

debug protocol-tunnel interface {in | out | both} [vlan vlanid] [count value]
To disable debugging, use the no debug protocol-tunnel interface {in |
out | both} [vlan vlan-id] [count value] command.

Parameters

1534

interface

Enter one of the following interfaces and slot/port
information:

Service Provider Bridging

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

in | out | both

Enter the keyword in, out, or both to debug incoming
interfaces, outgoing interfaces, or both incoming and
outgoing interfaces.

vlan vlan-id

Enter the keyword vlan then the VLAN ID. The range is from
1 to 4094.

count value

Enter the keyword count then the number of debug
outputs. The range is from 1 to 100.

Defaults

Debug disabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series, E-Series, and E-Series ExaScale.

Version 7.4.1.0

Introduced

protocol-tunnel
Enable protocol tunneling on a stacked (Q-in-Q) VLAN for specified protocol packets.

S4810
Syntax

protocol-tunnel {rate-limit rate| stp}
To disable protocol tunneling for a Layer 2 protocol, use the no protocoltunnel command.

Service Provider Bridging

1535

Parameters

rate-limit rate

Enter the keyword rate-limit followed by a number for
the rate-limit for tunneled packets on the VMAN. The range
is from 64 to 320.

stp

Enter the keyword stp to enable protocol tunneling on a
spanning tree, including STP, MSTP, RSTP, and PVST.

Defaults

none

Command
Modes

CONF-IF-VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guid.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.1

Added support for 802.1X, E-LMI, GMRP, GVRP, LLDP, LACP,
MMRP, MVRP, and OAM 802.3ah protocol traffic to the ESeries ExaScale.

Version 8.2.1.0

Introduced on the C-Series, E-Series, and E-Series ExaScale.

Version 7.4.1.0

Introduced

Example

Dell#conf
Dell(conf)#interface vlan 2
Dell(conf-if-vl-2)#vlan-stack compatible
Dell(conf-if-vl-2)#member Gi1/2-3
Dell(conf-if-vl-2)#protocol-tunnel stp
Dell(conf-if-vl-2)#protocol-tunnel enable

Related
Command

show protocol-tunnel — displays tunneling information for all VLANs.

protocol-tunnel destination-mac
Overwrite the BPDU destination MAC address with a specific value.

S4810
Syntax
Parameters

1536

protocol-tunnel destination-mac xstp address
stp

Change the default destination MAC address used for L2PT
to another value.

Service Provider Bridging

Defaults

The default destination MAC is 01:01:e8:00:00:00.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series, and S-Series.

Version 7.4.1.0

Introduced

Usage
Information

When you enable VLAN-Stacking, no protocol packets are tunneled.

Related
Command

show protocol-tunnel — displays tunneling information for all VLANs.

protocol-tunnel enable
Enable protocol tunneling globally on the system.

S4810
Syntax

protocol-tunnel enable
To disable protocol tunneling, use the no protocol-tunnel enable command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Service Provider Bridging

1537

Usage
Information

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.4.1.0

Introduced

Dell Networking OS must have the default CAM profile with the default microcode
before you enable L2PT.

protocol-tunnel rate-limit
Enable traffic rate limiting per box.

S4810
Syntax

protocol-tunnel rate-limit rate
To reset the rate limit to the default, use the no protocol-tunnel rate-limit
rate command.

Parameters

rate

Enter the rate in frames per second. The range is from 75 to
3000. The default is 75.

Defaults

75 frames per second.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1538

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series, E-Series TeraScale, and E-Series
ExaScale. Maximum rate limit on E-Series reduced from
4000 to 3000.

Version 7.4.1.0

Introduced

Dell#
Dell#conf
Dell(conf)#protocol-tunnel rate-limit 1000
Dell(conf)#

Service Provider Bridging

Related
Commands

show protocol-tunnel — displays tunneling information for all VLANs.
show running-config — displays the current configuration.

show protocol-tunnel
Display protocol tunnel information for all or a specified VLAN-Stack VLAN.

S4810
Syntax
Parameters

show protocol-tunnel [vlan vlan-id]
vlan vlan-id

(OPTIONAL) Enter the keyword vlan then the VLAN ID to
display information for the one VLAN. The range is from 1 to
4094.

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series, E-Series and E-Series ExaScale.

Version 7.4.1.0

Introduced

Example

Dell#show protocol-tunnel
System Rate-Limit: 75 frames/second
VLAN Protocols
Interface
1000 STP,PVST
Gi 5/7,Gi 5/6
1001 LLDP,GVRP
Gi 5/7,Gi 5/6
1002 MMRP,MVRP
Gi 5/7,Gi 5/6
1003 LACP,DOT1X Gi 5/7,Gi 5/6
1004 OAM,PAUSE
Gi 5/7,Gi 5/6
1005 E-LMI
Gi 5/7,Gi 5/6

Example
(Specific VLAN)

Dell#show protocol-tunnel vlan 2
System Rate-Limit: 1000 Frames/second
Interface Vlan Protocol(s)

Service Provider Bridging

1539

Gi1/2
Dell#
Related
Commands

1540

2

STP, PVST

show running-config — displays the current configuration.

Service Provider Bridging

sFlow

53

The Dell Networking operating software (OS) supports sFlow commands on the S4810 platform.
Dell Networking operating software sFlow monitoring system includes an sFlow Agent and an sFlow
Collector.
•

The sFlow Agent combines the flow samples and interface counters into sFlow datagrams and
forwards them to the sFlow Collector.

•

The sFlow Collector analyses the sFlow Datagrams received from the different devices and produces
a network-wide view of traffic flows.

Important Points to Remember
•

Dell Networking recommends that the sFlow Collector be connected to the Dell Networking chassis
through a line card port rather than the route processor module (RPM) Management Ethernet port.

•

Dell Networking operating software exports all sFlow packets to the sFlow Collector. A small sampling
rate can equate to many exported packets. A backoff mechanism is automatically applied to reduce
this amount. Some sampled packets may be dropped when the exported packet rate is high and the
backoff mechanism is about to or is starting to take effect. The dropEvent counter, in the sFlow
packet, is always zero.

•

sFlow sampling is done on a per-port basis.

•

Community list and local preference fields are not filled up in the extended gateway element in the
sFlow datagram.

•

The 802.1P source priority field is not filled up in the extended switch element in the sFlow datagram.

•

Only Destination and Destination Peer AS numbers are packed in the dst-as-path field in the extended
gateway element.

•

If the packet being sampled is redirected using policy-based routing (PBR), the sFlow datagram may
contain incorrect extended gateway/router information.

•

sFlow does not support packing extended information for IPv6 packets. Only the first 128 bytes of the
IPv6 packet is shipped in the datagram.

•

The source virtual local area network (VLAN) field in the extended switch element is not packed if
there is a routed packet.

•

The destination VLAN field in the extended switch element is not packed if there is a multicast packet.

•

The sFlow sampling functionality is supported only for egress traffic and not for ingress traffic.

•

The maximum number of packets that can be sampled and processed per second is:
– 7500 packets when no extended information packing is enabled.
– 7500 packets when only extended-switch information packing is enabled (refer to sflow
extended-switch enable).

sFlow

1541

sflow collector
Configure a collector device to which sFlow datagrams are forwarded.

S4810
Syntax

sflow collector {ip-address | ipv6-address} agent-addr {ipaddress | ipv6-address} [number [max-datagram-size number]] |
[max-datagram-size number] [vrf management]
To delete a configured collector, use the no sflow collector {ip-address |
ipv6-address} agent-addr {ipv4-address | ipv6-address} [number
[max-datagram-size number]] | [max-datagram-size number] [vrf
management] command.

Parameters

sflow collector
ip-address |
ipv6-address

Enter the IP address of the collector in dotted decimal
format for IPv4 or x:x:x:x::x format for IPv6.

agent-addr ipaddress | ipv6address

Enter the keyword agent-addr followed by the sFlow agent
IP address in dotted decimal format for IPv4 or x:x:x:x::x
format for IPv6.

NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

NOTE: The :: notation specifies successive hexadecimal
fields of zeros.
number

(OPTIONAL) Enter the user datagram protocol (UDP) port
number. The range is from 0 to 65535. The default is 6343.

maxdatagram-size
number

(OPTIONAL) Enter the keyword max-datagram-size then the
size number in bytes. The range is from 400 to 1500. The
default is 1400.

vrf
management

(OPTIONAL) Enter the keyword vrf followed by the keyword
management to configure the collector device
corresponding to the default VRF and the management VRF
respectively.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

1542

Added support for VRF.

sFlow

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.2.3

Added support for IPv6 sFlow collectors and agents on the
E-series TeraScale, C-Series, and S-Series.

Version 8.4.1.1

Added support for IPv6 sFlow collectors and agents on the
E-series ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.5.1.0

Expanded the no form of the command to mirror the syntax
used to configure.

Version 6.2.1.1

Introduced on the E-Series.

You can configure up to two sFlow collectors (IPv4 or IPv6). If two collectors are
configured, traffic samples are sent to both.
The sFlow agent address is carried in a field in SFlow packets and is used by the
collector to identify the sFlow agent.
In sFlow, the agent address is a single invariant IPv4 or IPv6 address used to identify
the agent to the collector. It is usually assigned the address of a loopback interface
on the agent, which provides invariance. The agent address is carried as a field in
the payload of the sFlow packets.
As part of the sFlow-MIB, if the SNMP request originates from a configured
collector, Dell Networking OS returns the corresponding configured agent IP in the
MIB requests. Dell Networking OS checks to ensure that two entries are not
configured for the same collector IP with a different agent IP. Should that happen,
Dell Networking OS generates the following error: %Error: Different agentaddr attempted for an existing collector.

Example

sFlow

Dell(conf)#sflow collector 10.1.1.25 agent-addr 10.1.1.10 vrf
management

1543

sflow enable (Global)
Enable sFlow globally.

S4810
Syntax

sflow enable
To disable sFlow, use the no sflow enable command.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Usage
Information

sFlow is disabled by default. In addition to this command, sFlow needs to be enable
on individual interfaces where sFlow sampling is desired.

Related
Commands

sflow enable (Interface) — enables sFlow on interfaces.

sflow enable (Interface)
Enable sFlow on interfaces.

S4810
Syntax

sflow enable
To disable sFlow, use the no sflow enable command.

1544

sFlow

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

When you enable sFlow on an interface, flow sampling is done on any traffic going
out of the interface.
NOTE: After a physical port is a member of a LAG, it inherits the sFlow
configuration from the LAG port.

Related
Commands

sflow enable (Global) — turns sFlow on globally.

sflow extended-switch enable
Enable packing information on a switch only.

S4810
Syntax

sflow extended-switch enable
To disable packing information, use the no sflow extended-switch [enable]
command.

Parameters

sFlow

enable

Enter the keyword enable to enable global extended
information.

1545

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

Dell Networking OS enhances the sflow implementation for real time traffic
analysis on the E-Series to provide extended gateway information in cases where
the destination IP addresses are learned by different routing protocols and for
cases where the destination is reachable over ECMP.

Related
Commands

show sflow — displays the sFlow configuration.

sflow polling-interval (Global)
Set the sFlow polling interval at a global level.

S4810
Syntax

sflow polling-interval interval value
To return to the default, use the no sflow polling-interval interval
command.

Parameters

Defaults

1546

interval value

Enter the interval value in seconds. The range is from 15 to
86400 seconds. The default is 20 seconds.

20 seconds

sFlow

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

The polling interval for an interface is the maximum number of seconds between
successive samples of counters sent to the collector. This command changes the
global default counter polling (20 seconds) interval. You can configure an interface
to use a different polling interval.

Related
Commands

sflow polling-interval (Interface) — sets the polling interval for an interface.

sflow polling-interval (Interface)
Set the sFlow polling interval at an interface (overrides the global-level setting.)

S4810
Syntax

sflow polling-interval interval value
To return to the default, use the no sflow polling-interval interval
command.

Parameters

Defaults

sFlow

interval value

Enter the interval value in seconds. The range is from 15 to
86400 seconds. The default is the global counter polling
interval.

The same value as the current global default counter polling interval.

1547

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

This command sets the counter polling interval for an interface.

Related
Commands

sflow polling-interval (Global) — globally sets the polling interval.

sflow sample-rate (Global)
Change the global default sampling rate.

S4810
Syntax

sflow sample-rate value
To return to the default sampling rate, use the no sflow sample-rate
command.

Parameters

Defaults

1548

value

Enter the sampling rate value. For the C-Series and S-Series,
the range is from 256 to 8388608 packets Enter values in
powers of 2 only; for example, 4096, 8192, 16384, and so
on. The default is 32768 packets.

32768 packets

sFlow

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 7.4.1.0

Introduced on the E-Series.

Usage
Information

Sample-rate is the average number of packets skipped before the sample is taken.
This command changes the global default sampling rate. You can configure an
interface to use a different sampling rate than the global sampling rate. If the value
entered is not a correct power of 2, the command generates an error message
with the previous and next power of 2 value. Select one of these two packet
numbers and re-enter the command.

Related
Commands

sflow sample-rate (Interface) — changes the interface sampling rate.

sflow sample-rate (Interface)
Change the interface default sampling rate.

S4810
Syntax

sflow sample-rate value
To return to the default sampling rate, use the no sflow sample-rate
command.

Parameters

sFlow

value

Enter the sampling rate value. For the C-Series and S-Series,
the range is from 256 to 8388608 packets. Enter values in
powers of 2 only; for example, 4096, 8192, 16384, etc. The
default is 32768 packets.

1549

Defaults

The Global default sampling.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Usage
Information

This command changes the sampling rate for an interface. By default, the sampling
rate of an interface is set to the same value as the current global default sampling
rate. If the value entered is not a correct power of 2, the command generates an
error message with the previous and next power-of-2 value. Select one of these
two number and re-enter the command.

Related
Commands

sflow sample-rate (Global) — changes the sampling rate globally.

show sflow
Display the current sFlow configuration.

S4810
Syntax
Parameters

1550

show sflow [interface]
interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

sFlow

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For a Port-Channel Ethernet interface, enter the keyword
port-channel then the slot/port information. The range
is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on S-Series Stacking.

Version 8.1.1.0

Introduced on the E-Series ExaScale.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.6.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

Usage
Information

The dropEvent counter (sFlow samples dropped due to sub-sampling) shown in
the following example always displays a value of zero.

Example

Dell#show sflow
sFlow services are enabled
Global default sampling rate: 32768
Global default counter polling interval: 20
1 collectors configured
Collector IP addr: 133.33.33.53, Agent IP addr: 133.33.33.116,
UDP port: 6343
0 UDP packets exported
0 UDP packets dropped
165 sFlow samples collected
0 sFlow samples dropped due to sub-sampling
Linecard 1 Port set 0
Gi 1/16: configured
sampling rate 1
Gi 1/17: configured
sampling rate 2
Linecard 3 Port set 1

sFlow

H/W sampling rate 8192
rate 8192, actual rate 8192, subrate 16384, actual rate 16384, subH/W sampling rate 16384

1551

Gi 3/40: configured rate 16384, actual rate 16384, subsampling rate 1
Dell#

1552

sFlow

54

Simple Network Management Protocol
(SNMP) and Syslog

This chapter contains commands to configure and monitor the simple network management protocol
(SNMP) v1/v2/v3 and Syslog. Both features are supported on the S4810 platform.
The chapter contains the following sections:
•

SNMP Commands

•

Syslog Commands

SNMP Commands
The following SNMP commands are available in the Dell Networking operating software.
The simple network management protocol (SNMP) is used to communicate management information
between the network management stations and the agents in the network elements. Dell Networking OS
supports SNMP versions 1, 2c, and 3, supporting both read-only and read-write modes. Dell Networking
OS sends SNMP traps, which are messages informing an SNMP management system about the network.
Dell Networking OS supports up to 16 SNMP trap receivers.

Important Points to Remember
•

Typically, 5-second timeout and 3-second retry values on an SNMP server are sufficient for both LAN
and WAN applications. If you experience a timeout with these values, the recommended best practice
on Dell Networking switches (to accommodate their high port density) is to increase the timeout and
retry values on your SNMP server to the following:
– SNMP Timeout — greater than 3 seconds.
– SNMP Retry count — greater than 2 seconds.

•

If you want to query an E-Series switch using SNMP v1/v2/v3 with an IPv6 address, configure the IPv6
address on a non-management port on the switch.

•

If you want to send SNMP v1/v2/v3 traps from an E-Series using an IPv6 address, use a nonmanagement port.

•

SNMP v3 informs are not currently supported with IPv6 addresses.

•

If you are using access control lists (ACLs) in an SNMP v3 configuration, group ACL overrides user ACL
if the user is part of that group.

•

SNMP operations are not supported on a virtual local area network (VLAN).

Simple Network Management Protocol (SNMP) and Syslog

1553

show snmp
Display the status of SNMP network elements.

S4810
Syntax

show snmp

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Example

Dell#show snmp
32685 SNMP packets input
0 Bad SNMP version errors
0 Unknown community name
0 Illegal operation for community name supplied
0 Encoding errors
96988 Number of requested variables
0 Number of altered variables
31681 Get-request PDUs
968 Get-next PDUs
0 Set-request PDUs
61727 SNMP packets output
0 Too big errors (Maximum packet size 1500)
9 No such name errors
0 Bad values errors
0 General errors
32649 Response PDUs
29078 Trap PDUs
Dell#

Related
Commands

snmp-server community — enables the SNMP and set community string.

1554

Simple Network Management Protocol (SNMP) and Syslog

show snmp engineID
Display the identification of the local SNMP engine and all remote engines that are configured on the
router.

S4810
Syntax

show snmp engineID

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Dell#show snmp engineID
Local SNMP engineID: 0000178B02000001E80214A8
Remote Engine ID
IP-addr
Port
80001F88043132333435
172.31.1.3
5009
80001F88043938373635
172.31.1.3
5008
Dell#

Related
Commands

snmp-server engineID — configures local and remote SNMP engines on the router.

show snmp group
Display the group name, security model, status, and storage type of each group.

S4810
Syntax

show snmp group

Command
Modes

•

EXEC

•

EXEC Privilege

Simple Network Management Protocol (SNMP) and Syslog

1555

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

The following Example displays a group named ngroup. The ngroup has a security
model of version 3 (v3) with authentication (auth), the read and notify name is
nview with no write view name specified, and finally the row status is active.

Example

Dell#show snmp group
groupname: v1v2creadg
readview : v1v2cdefault
notifyview: v1v2cdefault
row status: active
Dell#

Related
Commands

security model: v1
writeview: no write view specified
context: no context specified

snmp-server group — configures an SNMP server group.

show snmp user
Display the information configured on each SNMP user name.

S4810
Syntax

show snmp user

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1556

Introduced on the S6000.

Simple Network Management Protocol (SNMP) and Syslog

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Example

Dell#show snmp user
User name: v1v2creadu
Engine ID: 0000178B02000001E80214A8
storage-type: nonvolatile
active
Authentication Protocol: None
Privacy Protocol: None
Dell#

snmp ifmib ifalias long
Display the entire description string through the Interface MIB, which would be truncated otherwise to 63
characters.

S4810
Syntax

snmp ifmib ifalias long

Defaults

Interface description truncated beyond 63 characters.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

unknown

Introduced on the E-Series.

Dell#config!------command run on host connected to switch:
--------------!

Simple Network Management Protocol (SNMP) and Syslog

1557

> snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i
alias | more
IF-MIB::ifAlias.134530304 = STRING: This is a port connected
to Router2. This
is a port connected to
IF-MIB::ifAlias.134792448 = STRING:
!------command run on Dell Networkingswitch: --------------!
Dell#snmp ifmib ifalias long
!------command run on server connected to switch:
--------------!
> snmpwalk -c public 10.10.10.130 .1.3.6.1.2.1.31 | grep -i
alias | more
IF-MIB::ifAlias.134530304 = STRING: This is a port connected
to Router2. This
is a port connected to Router2. This is a port connected to
Router2. This is a
port connected to Router2. This is a port connected to Router2.
IF-MIB::ifAlias.134792448 = STRING:
Dell#config

snmp-server community
Configure a new community string access for SNMPv1 v2 and v3.

S4810
Syntax

snmp-server community community-name {ro | rw} [ipv6 ipv6access-list-name [ipv6 ipv6-access-list-name | access-list-name
| security-name name] | security-name name [ipv6 ipv6-accesslist-name | access-list-name | security-name name] | accesslist-name [ipv6 ipv6-access-list-name | access-list-name |
security-name name]]]
To remove access to a community, use the no snmp-server community
community-string {ro | rw} [security-name name [access-listname | ipv6 access-list-name | access-list-name ipv6 accesslist-name]] command.

Parameters

1558

communityname

Enter a text string (up to 20 characters long) to act as a
password for SNMP.

ro

Enter the keyword ro to specify read-only permission.

rw

Enter the keyword rw to specify read-write permission.

ipv6 accesslist-name

(Optional) Enter the keyword ipv6 then an IPv6 ACL name (a
string up to 16 characters long).

security-name
name

(Optional) Enter the keywords security-name then the
security name as defined by the community MIB.

access-listname

(Optional) Enter a standard IPv4 access list name (a string up
to 16 characters long).

Simple Network Management Protocol (SNMP) and Syslog

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The following example configures a community named public that is mapped to
the security named guestuser with Read Only (ro) permissions.
The security-name parameter maps the community string to an SNMPv3 user/
security name as defined by the community MIB.
If a community string is configured without a security-name (for example,
snmp-server community public ro), the community is mapped to a default
security-name/group:
•

v1v2creadu / v1v2creadg — maps to a community with ro (read-only)
permissions.

•

v1v2cwriteu/ v1v2cwriteg — maps to a community with rw (read-write)
permissions.

The community-name parameter indexes this command.
If you do not configure the snmp-server community command, you cannot
query SNMP data. Only Standard IPv4 ACL and IPv6 ACL is supported in the
optional access-list-name.
The command options ipv6, security-name, and access-list-name are
recursive. In other words, each option can, in turn, accept any of the three options
as a sub-option, and each of those sub-options can accept any of the three suboptions as a sub-option, and so forth. The second Example shows the creation of a
standard IPv4 ACL called snmp-ro-acl and then assigning it to the SNMP
community guest.

Simple Network Management Protocol (SNMP) and Syslog

1559

NOTE: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP; TCP and
ICMP rules are not valid for SNMP. In IPv6 ACLs, port rules are not valid for
SNMP.
Example

Dell#config
Dell(conf)# snmp-server community public ro
Dell(conf)# snmp-server community guest ro security-name
guestuser
Dell(conf)#

Example

Dell(conf)# ip access-list standard snmp-ro-acl
Dell(config-std-nacl)#seq 5 permit host 10.10.10.224
Dell(config-std-nacl)#seq 10 deny any count
!
Dell(conf)#snmp-server community guest ro snmp-ro-acl
Dell(conf)#

Related
Commands

ip access-list standard — names (or selects) a standard access list to filter based on
IP address.
ipv6 access-list — configures an access list based on IPv6 addresses or protocols.
show running-config — displays the current SNMP configuration and defaults.

snmp-server contact
Configure contact information for troubleshooting this SNMP node.

S4810
Syntax

snmp-server contact text
To delete the SNMP server contact information, use the no snmp-server
contact command.

Parameters

text

Enter an alphanumeric text string, up to 55 characters long.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1560

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Simple Network Management Protocol (SNMP) and Syslog

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command

snmp-server enable traps
Enable SNMP traps.

S4810
Syntax

snmp-server enable traps [notification-type] [notificationoption]
To disable traps, use the no snmp-server enable traps [notificationtype] [notification-option] command.

Parameters

notificationtype

notificationoption

Enter the type of notification from the following list:
•

bgp — Notification of changes in the BGP process.

•

config — Notification of changes to the startup or
running configuration.

•

ecfm — Notification of changes to ECFM.

•

ecmp — Enable an ECMP trap to notify of ECMP or link
bundle traffic imbalances.

•

envmon — For Dell Networking device notifications when
an environmental threshold is exceeded.

•

isis — Notification of intermediate service traps.

•

lacp — Notification of changes.

•

snmp — Notification of RFC 1157 traps.

•

stp — Notification of a state change in the spanning tree
protocol (RFC 1493).

•

vlt — Notification of virtual link trunking.

•

vrrp — Notification of a state change in a VRRP group.

•

xstp — Notification of a state change in MSTP (802.1s),
RSTP (802.1w), and PVST+.

For the envmon notification-type, enter one of the following
optional parameters:
•

cam-utilization

•

fan

Simple Network Management Protocol (SNMP) and Syslog

1561

•

supply

•

temperature

For the snmp notification-type, enter one of the following
optional parameters:
•

authentication

•

coldstart

•

linkdown

•

linkup

Defaults

Not enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.1(0.0)

Added support for copy-config and ecmp traps.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.1.0

Added support for VRRP traps.

Version 7.6.1.0

Added support for STP and xSTP traps. Introduced on the SSeries.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

Dell Networking OS supports up to 16 SNMP trap receivers.
For the cam-utilization notification option, the system generates syslogs and
SNMP traps when the L3 host table or route table utilization goes above the
threshold.
If you do not configure this command, no traps controlled by this command are
sent. If you do not specify a notification-type and notification-option,
all traps are enabled.

1562

Simple Network Management Protocol (SNMP) and Syslog

Related
Commands

snmp-server community — enables SNMP and sets the community string.

snmp-server engineID
Configure the name for both the local and remote SNMP engines on the router.

S4810
Syntax

snmp-server engineID [local engineID] [remote ip-address vrf
vrf-name udp-port port-number engineID]
To return to the default, use the no snmp-server engineID [local
engineID] [remote ip-address vrf vrf-name udp-port port-number
engineID] command.

Parameters

local engineID

Enter the keyword local followed by the engine ID number
that identifies the copy of the SNMP on the local device.
Format (as specified in RFC 3411): 12 octets.
•

The first four octets are set to the private enterprise
number.

•

The remaining eight octets are the MAC address of the
chassis.

remote ipaddress

Enter the keyword remote followed by the IP address that
identifies the copy of the SNMP on the remote device.

vrf vrf-name

Enter the keyword vrf followed by the name of the VRF that
is used to reach the device.
NOTE: Use this attribute to specify the VRF that is used
by the SNMP engine to reach the device. If no VRF is
specified, then the default VRF is used.

udp-port portnumber
engineID

Enter the keywords udp-port followed by the user
datagram protocol (UDP) port number on the remote device.
The range is from 0 to 65535. The default is 162.

Defaults

As above.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Simple Network Management Protocol (SNMP) and Syslog

1563

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

Changing the value of the SNMP Engine ID has important side effects. A user’s
password (entered on the command line) is converted to a message digest
algorithm (MD5) or secure hash algorithm (SHA) security digest. This digest is based
on both the password and the local Engine ID. The command line password is then
destroyed, as required by RFC 2274. Because of this deletion, if the local value of
the Engine ID changes, the security digests of SNMPv3 users is invalid and the users
will have to be reconfigured.
For the remote Engine ID, the host IP and UDP port are the indexes to the
command that are matched to either overwrite or remove the configuration.

Related
Commands

show snmp engineID — displays the SNMP engine and all the remote engines that
are configured on the router.
show running-config snmp — displays the SNMP running configuration.

snmp-server group
Configure a new SNMP group or a table that maps SNMP users to SNMP views.

S8410
Syntax

snmp-server group [group_name {1 | 2c | 3 {auth | noauth |
priv}}] [read name] [write name] [notify name] [access accesslist-name | ipv6 access-list-name | access-list-name ipv6
access-list-name]]
To remove a specified group, use the no snmp-server group [group_name
{v1 | v2c | v3 {auth | noauth | priv}}] [read name] [write
name] [notify name] [access access-list-name | ipv6 accesslist-name | access-list-name ipv6 access-list-name]] command.

1564

Simple Network Management Protocol (SNMP) and Syslog

Parameters

group_name

1 | 2c | 3

Enter a text string (up to 20 characters long) as the name of
the group. The following groups are created for mapping to
read/write community/security-names (defaults):
•

v1v2creadg — maps to a community/security-name
with ro permissions.

•

1v2cwriteg — maps to a community/security-name rw
permissions.

(OPTIONAL) Enter the security model version number (1, 2c,
or 3):
•

1 is the least secure version.

•

3 is the most secure of the security modes.

•

2c allows transmission of informs and counter 64, which
allows for integers twice the width of what is normally
allowed.

The default is 1.

Defaults

auth

(OPTIONAL) Enter the keyword auth to specify
authentication of a packet without encryption.

noauth

(OPTIONAL) Enter the keyword noauth to specify no
authentication of a packet.

priv

(OPTIONAL) Enter the keyword priv to specify both
authentication and then scrambling of the packet.

read name

(OPTIONAL) Enter the keyword read then a name (a string
of up to 20 characters long) as the read view name. The
default is GlobalView and is assumed to be every object
belonging to the internet (1.3.6.1) OID space.

write name

(OPTIONAL) Enter the keyword write then a name (a string
of up to 20 characters long) as the write view name.

notify name

(OPTIONAL) Enter the keyword notify then a name (a
string of up to 20 characters long) as the notify view name.

access accesslist-name

(Optional) Enter the standard IPv4 access list name (a string
up to 16 characters long).

ipv6 accesslist-name

(Optional) Enter the keyword ipv6 then the IPv6 access list
name (a string up to 16 characters long).

access-listname ipv6
access-listname

(Optional) Enter both an IPv4 and IPv6 access list name.

As above.

Simple Network Management Protocol (SNMP) and Syslog

1565

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.10.2

Added support for the access parameter.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

The following Example specifies the group named harig as a version 3 user
requiring both authentication and encryption and read access limited to the read
named rview.
NOTE: The number of configurable groups is limited to 16 groups.

Example

Dell#conf
Dell(conf)# snmp-server group harig 3 priv read rview
Dell#

Related
Commands

show snmp group — displays the group name, security model, view status, and
storage type of each group.
show running-config — displays the SNMP running configuration.

snmp-server host
Configure the recipient of an SNMP trap operation.

S4810
Syntax

1566

snmp-server host ip-address | ipv6-address [vrf vrf-name] traps
| informs [version 1 | 2c | 3] [auth | no auth | priv]
[community-string] [udp-port port-number] [notification-type]

Simple Network Management Protocol (SNMP) and Syslog

To remove the SNMP host, use the no snmp-server host ip-address [vrf
vrf-name] traps | informs [version 1 | 2c | 3] [auth | noauth |
priv] [community-string] [udp-port number] [notification-type]
command.
Parameters

ip-address

Enter the keyword host then the IP address of the host
(configurable hosts is limited to 16).

ipv6-address

Enter the keyword host then the IPv6 address of the host in
the x:x:x:x::x format.
NOTE: The :: notation specifies successive hexadecimal
fields of zero.

vrf vrf-name

Enter the keyword vrf and then the name of the VRF that
the SNMP server uses to connect to the host.
NOTE: You can use this attribute to inform the SNMP
engine about the vrf instance to be used to reach the
corresponding remote host to send Trap or Inform
message. If no VRF is specified, then the default VRF is
used.

traps

(OPTIONAL) Enter the keyword traps to send trap
notifications to the specified host. The default is traps.

informs

(OPTIONAL) Enter the keyword informs to send inform
notifications to the specified host. The default is traps.

version 1 | 2c |
3

(OPTIONAL) Enter the keyword version to specify the
security model then the security model version number 1,
2c, or 3:
•

Version 1 is the least secure version.

•

Version 3 is the most secure of the security modes.

•

Version 2c allows transmission of informs and counter
64, which allows for integers twice the width of what is
normally allowed.

The default is version 1.
auth

(OPTIONAL) Enter the keyword auth to specify
authentication of a packet without encryption.

noauth

(OPTIONAL) Enter the keyword noauth to specify no
authentication of a packet.

priv

(OPTIONAL) Enter the keyword priv to specify both
authentication and then scrambling of the packet.

communitystring

Enter a text string (up to 20 characters long) as the name of
the SNMP community.

Simple Network Management Protocol (SNMP) and Syslog

1567

NOTE: For version 1 and version 2c security models, this
string represents the name of the SNMP community. The
string can be set using this command; however, Dell
Networking OS recommends setting the community
string using the snmp-server community command
before executing this command. For version 3 security
model, this string is the USM user security name.
udp-port portnumber

(OPTIONAL) Enter the keywords udp-port followed by the
port number of the remote host to use. The range is from 0
to 65535. The default is 162.

notificationtype

(OPTIONAL) Enter one of the following keywords for the
type of trap to be sent to the host:
•

bgp — Enable BGP state change traps.

•

ecfm — Enable ECFM state change traps.

•

entity — Enable entity change traps.

•

envmon — Enable SNMP environmental monitor traps.

•

eoam — Enable EOAM state change traps

•

ets — Enable ets traps

•

fips — Enable FIP Snooping state change traps

•

lacp — Enable LACP state change traps.

•

isis — Enable ISIS adjacency change traps

•

pfc — Enable pfc traps

•

snmp — Enable SNMP trap

•

stp — Enable 802.1d state change traps

•

vlt — Enable VLT traps

•

vrrp — Enable VRRP state change traps

•

xstp — Enable 802.1s, 802.1w, and PVST+ state change
traps

The default is all trap types are sent to host.

Defaults

As above.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1568

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Simple Network Management Protocol (SNMP) and Syslog

Version 9.1(0.0)

Added support for config and ecmp traps.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.1.0

Added support for VRRP traps.

Version 7.6.1.0

Added support for STP and xSTP notification types.
Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

In order to configure the router to send SNMP notifications, enter at least one
snmp-server host command. If you enter the command with no keywords, all
trap types are enabled for the host. If you do not enter an snmp-server host
command, no notifications are sent.
In order to enable multiple hosts, issue a separate snmp-server host command
for each host. You can specify multiple notification types in the command for each
host.
When multiple snmp-server host commands are given for the same host and
type of notification (trap or inform), each succeeding command overwrites the
previous command. Only the last snmp-server host command will be in effect.
For example, if you enter an snmp-server host inform command for a host
and then enter another snmp-server host inform command for the same
host, the second command replaces the first command.
The snmp-server host command is used with the snmp-server enable
command. Use the snmp-server enable command to specify which SNMP
notifications are sent globally. For a host to receive most notifications, at least one
snmp-server enable command and the snmp-server host command for that
host must be enabled.
NOTE: For v1 / v2c trap configuration, if the community-string is not defined
using the snmp-server community command prior to using this command,
the default form of the snmp-server community command automatically is
configured with the community-name the same as specified in the snmpserver host command.
Configuring Informs
To send an inform, use the following steps:
1.

Configure a remote engine ID.

2.

Configure a remote user.

3.

Configure a group for this user with access rights.

Simple Network Management Protocol (SNMP) and Syslog

1569

Related
Commands

4.

Enable traps.

5.

Configure a host to receive informs.

snmp-server enable traps — enables SNMP traps.
snmp-server community — configures a new community SNMPv1 or SNMPv2c.

snmp-server location
Configure the location of the SNMP server.

S4810
Syntax

snmp-server location text
To delete the SNMP location, use the no snmp-server location command.

Parameters

text

Enter an alpha-numeric text string, up to 55 characters long.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command

1570

Simple Network Management Protocol (SNMP) and Syslog

snmp-server packetsize
Set the largest SNMP packet size permitted. Wen the SNMP server is receiving a request or generating a
reply, use the snmp-server packetsize global configuration command.

S4810
Syntax
Parameters

snmp-server packetsize byte-count
byte-count

Enter one of the following values 8, 16, 24 or 32. Packet sizes
are 8000 bytes, 16000 bytes, 32000 bytes, and 64000 bytes.

Defaults

8

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command

snmp-server trap-source
Configure a specific interface as the source for SNMP traffic.

S4810
Syntax

snmp-server trap-source interface
To disable sending traps out a specific interface, use the no snmp trap-source
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:

Simple Network Management Protocol (SNMP) and Syslog

1571

•

For a Loopback interface, enter the keyword loopback
then a number from 0 to 16383.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

The IP address assigned to the management interface is the default.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

To enable this snmp-server trap-source command, configure an IP address
on the interface and enable the interface configured as an SNMP trap source.

Related
Commands

snmp-server community — sets the community string.

1572

Simple Network Management Protocol (SNMP) and Syslog

snmp-server user
Configure a new user to an SNMP group.

S4810
Syntax

snmp-server user name {group_name remote ip-address vrf vrfname udp-port port-number} [1 | 2c | 3] [encrypted] [auth {md5
| sha} auth-password] [priv des56 priv password] [access
access-list-name | ipv6 access-list-name | access-list-name
ipv6 access-list-name]
To remove a user from the SNMP group, use the no snmp-server user name
{group_name remote ip-address vrf vrf-name udp-port portnumber} [1 | 2c | 3] [encrypted] [auth {md5 | sha} authpassword] [priv des56 priv password] [access access-list-name |
ipv6 access-list-name | access-list-name ipv6 access-list-name]
command.

Parameters

name

Enter the name of the user (not to exceed 20 characters), on
the host that connects to the agent.

group_name

Enter a text string (up to 20 characters long) as the name of
the group. The following groups are created for mapping to
read/write community/security-names (defaults):
•
•

v1v2creadu — maps to a community with ro
permissions.
1v2cwriteu — maps to a community rw permissions.

remote ipaddress

Enter the keywords udp-port then the user datagram
protocol (UDP) port number on the remote device. The
range is from 0 to 65535. The default is 162.

vrf vrf-name

Enter the keywords vrf and then the name of the VRF this is
used to connect to the SNMP server.
NOTE: Use this attribute to specify a VRF name that is
used to connect to the remote host. If no VRF is
specified, then the default VRF is used.

udp-port portnumber

Enter the keywords udp-port then the UDP (User Datagram
Protocol) port number on the remote device. The range is
from 0 to 65535. The default is 162.

1 | 2c | 3

(OPTIONAL) Enter the security model version number (1, 2c,
or 3):
•

1 is the least secure version.

•

3 is the most secure of the security modes.

•

2c allows transmission of informs and counter 64, which
allows for integers twice the width of what is normally
allowed.

Simple Network Management Protocol (SNMP) and Syslog

1573

The default is 1.
encrypted

(OPTIONAL) Enter the keyword encrypted to specify the
password appear in encrypted format (a series of digits,
masking the true characters of the string).

auth

(OPTIONAL) Enter the keyword auth to specify
authentication of a packet without encryption.

md5 | sha

(OPTIONAL) Enter the keyword md5 or sha to designate the
authentication level.
•
•

md5 — Message Digest Algorithm
sha — Secure Hash Algorithm

auth-password

(OPTIONAL) Enter a text string (up to 20 characters long)
password that enables the agent to receive packets from the
host. Minimum: eight characters long.

priv des56

(OPTIONAL) Enter the keywords priv des56 to initiate a
privacy authentication level setting using the CBC-DES
privacy authentication algorithm (des56).

priv password

(OPTIONAL) Enter a text string (up to 20 characters long)
password that enables the host to encrypt the contents of
the message it sends to the agent. Minimum: eight
characters long.

access accesslist-name

(Optional) Enter the standard IPv4 access list name (a string
up to 16 characters long).

ipv6 accesslist-name

(Optional) Enter the keyword ipv6 then the IPv6 access list
name (a string up to 16 characters long).

access-listname ipv6
access-listname

(Optional) Enter both an IPv4 and IPv6 access list name.

Defaults

As above.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1574

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Simple Network Management Protocol (SNMP) and Syslog

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

NOTE: For IPv6 ACLs, only IPv6 and UDP types are valid for SNMP. TCP and
ICMP rules are not valid for SNMP. In IPv6 ACLs port rules are not valid for
SNMP.
No default values exist for authentication or privacy algorithms and no default
password exists. If you forget a password, you cannot recover it; the user must be
reconfigured. You can specify either a plain-text password or an encrypted cyphertext password. In either case, the password is stored in the configuration in an
encrypted form and displayed as encrypted in the show running-config
command.
If you have an encrypted password, you can specify the encrypted string instead of
the plain-text password. The following command is an Example of how to specify
the command with an encrypted string.
NOTE: The number of configurable users is limited to 16.

Example

Dell# snmp-server user privuser v3group v3 encrypted auth md5
9fc53d9d908118b2804fe80e3ba8763d priv des56
d0452401a8c3ce42804fe80e3ba8763d

Usage
Information

The following command is an example of how to enter a plain-text password as
the string authpasswd for user authuser of group v3group.

Example

Dell#conf
Dell(conf)# snmp-server user authuser v3group v3 auth md5
authpasswd

Usage
Information

The following command configures a remote user named n3user with a v3 security
model and a security level of authNOPriv.

Example

Dell#conf
Dell(conf)# snmp-server user n3user ngroup remote 172.31.1.3
udp-port 5009 3
auth md5 authpasswd

Related
Commands

show snmp user — displays the information configured on each SNMP user name.

Simple Network Management Protocol (SNMP) and Syslog

1575

snmp-server user (for AES128-CFB Encryption)
Specify that AES128-CFB encryption algorithm needs to be used for transmission of SNMP information.
The Advanced Encryption Standard (AES) Cipher Feedback (CFB) 128-bit encryption algorithm is in
compliance with RFC 3826. RFCs for SNMPv3 define two authentication hash algorithms, namely, HMACMD5-96 and HMAC-SHA1-96. These are the full forms or editions of the truncated versions, namely,
HMAC-MD5 and HMAC-SHA1 authentication algorithms.

S4810
Syntax

snmp-server user name {group_name remote ip-address udp-port
port-number} [1 | 2c | 3] [encrypted] [auth {md5 | sha} authpassword] [priv {des56 | aes128–cfb} priv– password] [access
access-list-name | ipv6 access-list-name | access-list-name
ipv6 access-list-name]
To remove a user from the SNMP group, use the no snmp-server user name
{group_name remote ip-address udp-port port-number} [1 | 2c |
3] [encrypted] [auth {md5 | sha} auth-password] [priv {des56 |
aes128–cfb} priv-password] [access access-list-name | ipv6
access-list-name | access-list-name ipv6 access-list-name]
command.

Parameters

auth-password

(OPTIONAL) Enter a text string (up to 20 characters long)
password that enables the agent to receive packets from the
host and to send packets to the host. Minimum: eight
characters long.

aes128

(OPTIONAL) Enter the keyword aes128 to initiate the
AES128-CFB encryption algorithm for transmission of SNMP
packets.

priv-password

(OPTIONAL) Enter a text string (up to 20 characters long)
password that enables the host to encrypt the contents of
the message it sends to the agent and to decrypt the
contents of the message it receives from the agent.
Minimum: eight characters long.

Defaults

If no authentication or privacy option is configured, then the messages are
exchanged (attempted anyway) without any authentication or encryption.

Command
Modes

CONFIGURATION

Command
History
Usage
Information

1576

Version 9.3(0.0)

Added support for the AES128-CFB encryption algorithm on
the S4820T, S4810, S6000 and Z-Series platforms

To enable robust, effective protection and security for SNMP packets transferred
between the server and the client, you can use the snmp-server user
username group groupname 3 auth authentication-type authpassword priv aes128 priv-password to specify that AES128-CFB
encryption algorithm needs to be used.

Simple Network Management Protocol (SNMP) and Syslog

You cannot modify the FIPS mode if SNMPv3 users are already configured and
present in the system. An error message is displayed if you attempt to change the
FIPS mode by using the fips mode enable command in Global Configuration
mode. You can enable or disable FIPS mode only if SNMPv3 users are not
previously set up. Otherwise, you must remove the previously configured users
before you change the FIPS mode.
Example

Dell# snmp-server user privuser v3group v3 encrypted auth md5
9fc53d9d908118b2804fe80e3ba8763d priv aes128
d0452401a8c3ce42804fe80e3ba8763d

Related
Commands

show snmp user — Displays the information configured on each SNMP user name.

snmp-server view
Configure an SNMPv3 view.

S4810
Syntax

snmp-server view view-name oid-tree {included | excluded}
To remove an SNMPv3 view, use the no snmp-server view view-name oidtree {included | excluded} command.

Parameters

view-name

Enter the name of the view (not to exceed 20 characters).

oid-tree

Enter the OID sub tree for the view (not to exceed 20
characters).

included

(OPTIONAL) Enter the keyword included to include the MIB
family in the view.

excluded

(OPTIONAL) Enter the keyword excluded to exclude the
MIB family in the view.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Simple Network Management Protocol (SNMP) and Syslog

1577

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

The oid-tree variable is a full sub-tree starting from 1.3.6 and cannot specify the
name of a sub-tree or a MIB. The following Example configures a view named
rview that allows access to all objects under 1.3.6.1.

Example

Dell# conf
Dell#(conf) snmp-server view rview 1.3.6.1 included

Related
Commands

show running-config snmp — displays the SNMP running configuration.

snmp-server vrf
Configures an SNMP agent to bind to a specific VRF.

S4810
Syntax

snmp-server vrf vrf-name
To undo the SNMP agent configuration, use the no snmp-server vrf vrfname command.

Parameters

vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
associate an SNMP agent with that VRF.

Defaults

Not Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

1578

Introduced on the S-Series and Z-Series.

Use this command to bind an SNMP agent to a VRF. The SNMP agent processes
the requests from the interfaces that belong to the specified VRF. If no VRF is
specified, then the default VRF is used.

Simple Network Management Protocol (SNMP) and Syslog

Related
Commands

show snmp user — displays the information configured on each SNMP user name.

snmp trap link-status
Enable the interface to send SNMP link traps, which indicate whether the interface is up or down.

S4810
Syntax

snmp trap link-status
To disable sending link trap messages, use the no snmp trap link-status
command.

Defaults

Enabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

If the interface is expected to flap during normal usage, you could disable this
command.

Syslog Commands
The following commands allow you to configure logging functions on all Dell Networking switches.

Simple Network Management Protocol (SNMP) and Syslog

1579

clear logging
Clear the messages in the logging buffer.

S4810
Syntax

clear logging

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

show logging — displays logging settings and system messages in the internal
buffer.

clear logging auditlog
Clears audit log.

Syntax

clear logging auditlog

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1580

Simple Network Management Protocol (SNMP) and Syslog

The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL.

Example

Dell(conf)#clear logging auditlog

Related
Commands

show logging auditlog — displays audit log

default logging buffered
Return to the default setting for messages logged to the internal buffer.

S4810
Syntax

default logging buffered

Defaults

size = 40960; level = 7 or debugging

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

logging buffered — sets the logging buffered parameters.

default logging console
Return the default settings for messages logged to the console.

S4810
Syntax

default logging console

Defaults

level = 7 or debugging

Simple Network Management Protocol (SNMP) and Syslog

1581

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

logging console — sets the logging console parameters.

default logging monitor
Return to the default settings for messages logged to the terminal.

S4810
Syntax

default logging monitor

Defaults

level = 7 or debugging

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1582

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Simple Network Management Protocol (SNMP) and Syslog

E-Series legacy
command
Related
Commands

logging monitor — sets the logging monitor parameters.
terminal monitor — sends system messages to the terminal/monitor.

default logging trap
Return to the default settings for logging messages to the Syslog servers.

S4810
Syntax

default logging trap

Defaults

level = 6 or informational

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

logging trap — limit messages logged to the Syslog servers based on severity.

logging
Configure an IP address or host name of a Syslog server where logging messages are sent. Multiple
logging servers of both IPv4 and/or IPv6 can be configured.

S4810
Syntax

logging {ip-address | ipv6-address | hostname} {{udp {port}} |
{tcp {port}} [vrf vrf-name]

Simple Network Management Protocol (SNMP) and Syslog

1583

To disable logging, use the no logging command.
Parameters

ip-address

Enter the IPv4 address in dotted decimal format.

ipv6-address

Enter the IPv6 address in the x:x:x:x::X format.
NOTE: The :: notation specifies successive hexadecimal
fields of zeros.

hostname

Enter the name of a host already configured and recognized
by the switch.

udp

Enter the keyword udp to enable transmission of log
message over UDP followed by port number. The default
port is 514

tcp

Enter the keyword tcp to enable transmission of log
message over TCP followed by port number.

vrf vrf-name

(Optional) Enter the keyword vrf and then the name of the
VRF to enable the logging process in VRF mode.
NOTE: Use this attribute to specify the VRF that is used
to contact the host. By default, the default VRF is used.

Defaults

Disabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1584

Version 9.5(0.0)

Added udp and tcp keywords for the S4810, S4820T, S6000,
Z9000, and MXL.

Version 9.4.
(0.0)

Added support for VRF.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.4.1.0

Added support for IPv6.

Simple Network Management Protocol (SNMP) and Syslog

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

Multiple logging servers of both IPv4 and/or IPv6 can be configured.

Related
Commands

logging on — enables the logging asynchronously to logging buffer, console,
Syslog server, and terminal lines.
logging trap — enables logging to the Syslog server based on severity.

logging buffered
Enable logging and specify which messages are logged to an internal buffer. By default, all messages are
logged to the internal buffer.

S4810
Syntax

logging buffered [level] [size]
To return to the default values, use the default logging buffered command.
To disable logging stored to an internal buffer, use the no logging buffered
command.

Parameters

level

(OPTIONAL) Indicate a value from 0 to 7 or enter one of the
following equivalent words: emergencies, alerts,
critical, errors, warnings, notifications,
informational, or debugging. The default is 7 or
debugging.

size

(OPTIONAL) Indicate the size, in bytes, of the logging buffer.
The number of messages buffered depends on the size of
each message. The range is from 40960 to 524288. The
default is 40960 bytes.

Defaults

level = 7; size = 40960 bytes

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Simple Network Management Protocol (SNMP) and Syslog

1585

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

When you decrease the buffer size, all messages stored in the buffer are lost.
Increasing the buffer size does not affect messages stored in the buffer.

Related
Commands

clear logging — clears the logging buffer.
default logging buffered — returns the logging buffered parameters to the default
setting.
show logging — displays the logging setting and system messages in the internal
buffer.

logging console
Specify which messages are logged to the console.

S4810
Syntax

logging console [level]
To return to the default values, use the default logging console command.
To disable logging to the console, use the no logging console command.

Parameters

level

(OPTIONAL) Indicate a value from 0 to 7 or enter one of the
following parameters: emergencies, alerts, critical,
errors, warnings, notifications, informational, or
debugging. The default is 7 or debugging.

Defaults

level = 7; size = debugging

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1586

Simple Network Management Protocol (SNMP) and Syslog

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

clear logging — clears the logging buffer.
default logging console — returns the logging console parameters to the default
setting.
show logging — displays the logging setting and system messages in the internal
buffer.

logging extended
Logs security and audit events to a system log server.

Syntax

logging extended

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Usage
Information

Introduced on the S4810, S4820T, S6000, Z9000, and MXL.

This command is available with or without RBAC enabled. When RBAC is enabled
you can restrict access to audit and security logs based on the CLI sessions’ user
roles. If extended logging is disabled, you can only view system events, regardless
of RBAC user role.
When you enabled RBAC and extended logging:
•

Only the system administrator role can execute this command.

Simple Network Management Protocol (SNMP) and Syslog

1587

•

The system administrator and system security administrator roles can view
security events and system events.

•

The system administrator role can view audit, security, and system events.

•

The network administrator and network operator roles can view system events.

Examples

Dell(conf)#logging extended

Related
Commands

show logging auditlog — displays audit log, clear logging auditlog— clears audit log

logging facility
Configure the Syslog facility used for error messages sent to Syslog servers.

S4810
Syntax

logging facility [facility-type]
To return to the default values, use the no logging facility command.

Parameters

1588

facility-type

(OPTIONAL) Enter one of the following parameters:
•

auth (authorization system)

•

cron (Cron/at facility)

•

deamon (system deamons)

•

kern (kernel)

•

local0 (local use)

•

local1 (local use)

•

local2 (local use)

•

local3 (local use)

•

local4 (local use)

•

local5 (local use)

•

local6 (local use)

•

local7 (local use)

•

lpr (line printer system)

•

mail (mail system)

•

news (USENET news)

•

sys9 (system use)

•

sys10 (system use)

•

sys11 (system use)

•

sys12 (system use)

•

sys13 (system use)

•

sys14 (system use)

•

syslog (Syslog process)

•

user (user process)

Simple Network Management Protocol (SNMP) and Syslog

•

uucp (Unix to Unix copy process)

The default is local7.

Defaults

local7

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

logging — enables logging to a Syslog server.
logging on — enables logging.

logging history
Specify which messages are logged to the history table of the switch and the SNMP network
management station (if configured).

S4810
Syntax

logging history level
To return to the default values, use the no logging history command.

Parameters

Defaults

level

Indicate a value from 0 to 7 or enter one of the following
equivalent words: emergencies, alerts, critical,
errors, warnings, notifications, informational, or
debugging. The default is 4 or warnings.

warnings or 4

Simple Network Management Protocol (SNMP) and Syslog

1589

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

When you configure the snmp-server trap-source command, the system
messages logged to the history table are also sent to the SNMP network
management station.

Related
Commands

show logging — displays information logged to the history buffer.

logging history size
Specify the number of messages stored in the Dell Networking logging history table.

S4810
Syntax

logging history size size
To return to the default values, use the no logging history size command.

Parameters

size

Indicate a value as the number of messages to be stored.
The range is from 0 to 500. The default is 1 message.

Defaults

1 message

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1590

Simple Network Management Protocol (SNMP) and Syslog

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

When the number of messages reach the limit you set with the logging history
size command, older messages are deleted as newer ones are added to the table.

Related
Commands

show logging — displays information logged to the history buffer.

logging monitor
Specify which messages are logged to Telnet applications.

S4810
Syntax

logging monitor [level]
To disable logging to terminal connections, use the no logging monitor
command.

Parameters

level

Indicate a value from 0 to 7 or enter one of the following
parameters: emergencies, alerts, critical, errors,
warnings, notifications, informational, or
debugging. The default is 7 or debugging.

Defaults

7 or debugging

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Simple Network Management Protocol (SNMP) and Syslog

1591

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

default logging monitor — returns the logging monitor parameters to the default
setting.

logging on
Specify that debug or error messages are asynchronously logged to multiple destinations, such as the
logging buffer, Syslog server, or terminal lines.

S4810
Syntax

logging on
To disable logging to logging buffer, Syslog server and terminal lines, use the no
logging on command.

Defaults

Enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

1592

When you use the no logging on command, messages are logged only to the
console.

Simple Network Management Protocol (SNMP) and Syslog

Related
Commands

logging — enables logging to the Syslog server.
logging buffered — sets the logging buffered parameters.
logging console — sets the logging console parameters.
logging monitor — sets the logging parameters for the terminal connections.

logging source-interface
Specify that the IP address of an interface is the source IP address of Syslog packets sent to the Syslog
server.

S4810
Syntax

logging source-interface interface
To disable this command and return to the default setting, use the no logging
source-interface command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For Loopback interfaces, enter the keyword loopback
then a number from zero (0) to 16383.

•

For the management interface on the RPM, enter the
keyword ManagementEthernet then the slot/port
information. The slot range is from 0 to 1 and the port
range is 0.

•

For a Port Channel interface, enter the keywords portchannel then a number. Tthe range is from 1 to 128.

•

For a ten-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

•

For VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Simple Network Management Protocol (SNMP) and Syslog

1593

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

Syslog messages contain the IP address of the interface used to egress the router.
By configuring the logging source-interface command, the Syslog packets
contain the IP address of the interface configured.

Related
Commands

logging — enables logging to the Syslog server.

logging synchronous
Synchronize unsolicited messages and Dell Networking OS output.

S8410
Syntax

logging synchronous [level level | all] [limit number-ofbuffers]
To disable message synchronization, use the no logging synchronous [level
level | all] [limit number-of-buffers] command.

Parameters

Defaults

1594

all

Enter the keyword all to ensure that all levels are printed
asynchronously.

level level

Enter the keyword level then a number as the severity
level. A high number indicates a low severity level and vice
versa. The range is from 0 to 7. The default is 2.

all

Enter the keyword all to turn off all.

limit numberof-buffers

Enter the keyword limit then the number of buffers to be
queued for the terminal after which new messages are
dropped. The range is from 20 to 300. The default is 20.

Disabled. If enabled without the level or number-of-buffers options specified,
level = 2 and number-of-buffers = 20 are the defaults.

Simple Network Management Protocol (SNMP) and Syslog

Command
Modes

LINE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

When you enable logging synchronous, unsolicited messages appear between
software prompts and outputs. Only the messages with a severity at or below the
set level are sent to the console.
If the message queue limit is reached on a terminal line and messages are
discarded, a system message appears on that terminal line. Messages may continue
to appear on other terminal lines.

Related
Commands

logging on — enables logging.

logging trap
Specify which messages are logged to the Syslog server based the message severity.

S4810
Syntax

logging trap [level]
To return to the default values, use the default logging trap command.
To disable logging, use the no logging trap command.

Parameters

Defaults

level

Indicate a value from 0 to 7 or enter one of the following
parameters: emergencies, alerts, critical, errors,
warnings, notifications, informational, or
debugging. The default is 6 or informational.

6 or informational

Simple Network Management Protocol (SNMP) and Syslog

1595

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series, S55.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Usage
Information

To block a type of message parameter, set the logging trap level to a lower
number. For example, to block severity messages at level 6, set the level to 5.

Related
Commands

logging — enables the logging to another device.
logging on — enables logging.

logging version
Displays syslog messages in a RFC 3164 or RFC 5424 format.

Syntax

logging version {0|1}

Defaults

0

Command
Modes

CONFIGURATION

Version 9.5(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL.

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Usage
Information

1596

Introduced on the S4810, S4820T, S6000, Z9000, and MXL.

To display syslog messages in a RFC 3164 or RFC 5424 format, use the log version
command in configuration mode. By default, the system log version is set to 0.

Simple Network Management Protocol (SNMP) and Syslog

The following describes the two supported log messages formats:

Example

•

0 – Displays syslog messages format as described in RFC 3164, The BSD syslog
Protocol

•

1 – Displays SYSLOG message format as described in RFC 5424, The Syslog
Protocol

Dell(conf)#logging version ?
<0-1> Select syslog version (default = 0)
Dell(conf)#logging version 1

show logging
Display the logging settings and system messages logged to the internal buffer of the switch.

S4810
Syntax
Parameters

show logging [number | history [reverse][number] | reverse
[number] | summary]
number

(OPTIONAL) Enter the number of messages displayed in the
output. The range is from 1 to 65535.

history

(OPTIONAL) Enter the keyword history to view only
information in the Syslog history table.

reverse

(OPTIONAL) Enter the keyword reverse to view the Syslog
messages in FIFO (first in, first out) order.

summary

(OPTIONAL) Enter the keyword summary to view a table
showing the number of messages per type and per slot. Slots
*7* and *8* represent RPMs.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Simple Network Management Protocol (SNMP) and Syslog

1597

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Example
(Partial)

Dell#show logging
Syslog logging: enabled
Console logging: level debugging
Monitor logging: level debugging
Buffer logging: level debugging, 5604 Messages Logged,
Size (524288 bytes)
Trap logging: level informational
Oct 8 09:25:37: %RPM1:RP1 %BGP-5-ADJCHANGE: Connection with
neighbor 223.80.255.254 closed. Hold time
expired
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.200.13.2 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.1.1.13 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 1.1.14.2
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.1.1.14 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 1.1.11.2
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.1.1.5
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.4.1.3
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.1.1.4
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.1.1.6
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.1.1.12 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.1.1.15 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 192.1.1.3
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.200.12.2 Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor 1.1.10.2
Up
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Session closed by
neighbor 1.1.10.2 (Hold time expired)
Oct 8 09:25:38: %RPM1:RP1 %BGP-5-ADJCHANGE: Neighbor
192.200.14.7 Up
Oct 8 09:26:25: %RPM1:RP1 %BGP-5-ADJCHANGE: Connection with
neighbor 1.1.11.2 closed. Neighbor recycled
Oct 8 09:26:25: %RPM1:RP1 %BGP-5-ADJCHANGE: Connection with
neighbor 1.1.14.2 closed. Neighbor recycled
--More--

Example
(History)

Dell#show logging history
Syslog History Table: 1 maximum table entries,
saving level Warnings or higher
SNMP notifications not Enabled

1598

Simple Network Management Protocol (SNMP) and Syslog

%RPM:0:0 %CHMGR-2-LINECARDDOWN - Line card 3 down - IPC timeout
Dell#

show logging auditlog
Displays an audit log.

Syntax

show logging auditlog

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL.

Example

Dell(conf)#show logging audit

Related
Commands

clear logging auditlog — clears audit log.

show logging driverlog stack-unit
Display the driver log for the specified stack member.

S4810
Syntax
Parameters

defaults
Command
Modes
Command
History

show logging driverlog stack-unit unit#
stack-unit
unit#

Enter the keywords stack-unit followed by the stack
member ID of the switch for which you want to display the
driver log. The range is from 0 to 7.

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Simple Network Management Protocol (SNMP) and Syslog

1599

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

This command displays internal software driver information, which may be useful
during troubleshooting switch initialization errors, such as a downed Port-Pipe.

terminal monitor
Configure the Dell Networking OS to display messages on the monitor/terminal.

S4810
Syntax

terminal monitor
To return to default settings, use the terminal no monitor command.

defaults

Disabled.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

E-Series legacy
command
Related
Commands

1600

logging monitor — sets the logging parameters on the monitor/terminal.

Simple Network Management Protocol (SNMP) and Syslog

55

SNMP Traps

This chapter lists the traps sent by the Dell Networking operating software. Each trap is listed by the fields
Message ID, Trap Type, and Trap Option.
Message ID

Trap Type

Trap Option

COLD_START

SNMP

COLDSTART

WARM_START

SNMP

WARMSTART

COPY_CONFIG_COMPLETE

SNMP

NONE

SNMP

LINKDOWN

SNMP

LINKUP

SNMP

AUTH

EGP_NEIGHBOR_LOSS

SNMP

NONE

OSTATE_DOWN

SNMP

LINKDOWN

SNMP

LINKUP

SNMP

NONE

SNMP

NONE

%SNMP-5-SNMP_COLD_START: SNMP COLD_START trap sent.

SNMP Copy Config Command Completed
LINK_DOWN
%IFA-1-PORT_LINKDN: changed interface state to
down:%d
LINK_UP
%IFA-1-PORT_LINKUP: changed interface state to up:
%d
AUTHENTICATION_FAIL
%SNMP-3-SNMP_AUTH_FAIL: SNMP Authentication
failed.Request with invalid community string.

%IFM-1-OSTATE_DN: changed interface state to down:
%s
%IFM-5-CSTATE_DN:Changed interface Physical state
to down: %s
OSTATE_UP
%IFM-1-OSTATE_UP: changed interface state to up:%s
%IFM-5-CSTATE_UP: Changed interface Physical state
to up: %s
RMON_RISING_THRESHOLD
%RPM0-P:CP %SNMP-4-RMON_RISING_THRESHOLD: RMON
rising threshold alarm from SNMP OID 
RMON_FALLING_THRESHOLD

SNMP Traps

1601

Message ID

Trap Type

Trap Option

SNMP

NONE

SNMP

NONE

NONE

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

CHM_CARD_PROBLEM

ENVMON

NONE

CHM_ALARM_CUTOFF

ENVMON

NONE

CHM_SFM_UP

ENVMON

NONE

CHM_SFM_DOWN

ENVMON

NONE

CHM_RPM_UP

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

%RPM0-P:CP %SNMP-4-RMON_FALLING_THRESHOLD: RMON
falling threshold alarm from SNMP OID 
RMON_HC_RISHING_THRESHOLD
%RPM0-P:CP %SNMP-4-RMON_HC_RISING_THRESHOLD: RMON
high-capacity rising threshold alarm from SNMP OID

RMON_HC_FALLING_THRESHOLD
%RPM0-P:CP %SNMP-4-RMON_HC_FALLING_THRESHOLD: RMON
high-capacity falling threshold alarm from SNMP OID

RESV
N/A
CHM_CARD_DOWN
%CHMGR-1-CARD_SHUTDOWN: %sLine card %d down - %s
%CHMGR-2-CARD_DOWN: %sLine card %d down - %s
CHM_CARD_UP
%CHMGR-5-LINECARDUP: %sLine card %d is up
CHM_CARD_MISMATCH
%CHMGR-3-CARD_MISMATCH: Mismatch: line card %d is
type %s - type %s required.

%RAM-6-RPM_STATE: RPM1 is in Active State
%RAM-6-RPM_STATE: RPM0 is in Standby State
CHM_RPM_DOWN
%CHMGR-2-RPM_DOWN: RPM 0 down - hard reset
%CHMGR-2-RPM_DOWN: RPM 0 down - card removed
CHM_RPM_PRIMARY
%RAM-5-COLD_FAILOVER: RPM Failover Completed
%RAM-5-HOT_FAILOVER: RPM Failover Completed

1602

SNMP Traps

Message ID

Trap Type

Trap Option

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

SUPPLY

ENVMON

SUPPLY

ENVMON

SUPPLY

ENVMON

SUPPLY

ENVMON

SUPPLY

ENVMON

SUPPLY

ENVMON

TEMP

ENVMON

TEMP

%RAM-5-FAST_FAILOVER: RPM Failover Completed
CHM_SFM_ADD
%TSM-5-SFM_DISCOVERY: Found SFM 1
CHM_SFM_REMOVE
%TSM-5-SFM_REMOVE: Removed SFM 1
CHM_MAJ_SFM_DOWN
%CHMGR-0-MAJOR_SFM: Major alarm: Switch fabric down
CHM_MAJ_SFM_DOWN_CLR
%CHMGR-5-MAJOR_SFM_CLR: Major alarm cleared: Switch
fabric up
CHM_MIN_SFM_DOWN
%CHMGR-2-MINOR_SFM: MInor alarm: No working standby
SFM
CHM_MIN_SFM_DOWN_CLR
%CHMGR-5-MINOR_SFM_CLR: Minor alarm cleared:
Working standby SFM present
CHM_PWRSRC_DOWN
%CHMGR-2-PEM_PRBLM: Major alarm: problem with power
entry module %s
CHM_PWRSRC_CLR
%CHMGR-5-PEM_OK: Major alarm cleared: power entry
module %s is good
CHM_MAJ_ALARM_PS
%CHMGR-0-MAJOR_PS: Major alarm: insufficient power
%s
CHM_MAJ_ALARM_PS_CLR
%CHMGR-5-MAJOR_PS_CLR: major alarm cleared:
sufficient power
CHM_MIN_ALARM_PS
%CHMGR-1-MINOR_PS: Minor alarm: power supply nonredundant
CHM_MIN_ALARM_PS_CLR
%CHMGR-5-MINOR_PS_CLR: Minor alarm cleared: power
supply redundant
CHM_MIN_ALRM_TEMP
%CHMGR-2-MINOR_TEMP: Minor alarm: chassis
temperature
CHM_MIN_ALRM_TEMP_CLR

SNMP Traps

1603

Message ID

Trap Type

Trap Option

ENVMON

TEMP

ENVMON

TEMP

ENVMON

FAN

ENVMON

FAN

ENVMON

FAN

ENVMON

FAN

ENVMON

NONE

ENVMON

NONE

%CHMRG-5-MINOR_TEMP_CLR: Minor alarm cleared:
chassis temperature normal (%s %d temperature is
within threshold of %dC)
CHM_MAJ_ALRM_TEMP
%CHMGR-2-MAJOR_TEMP: Major alarm: chassis
temperature high (%s temperature reaches or exceeds
threshold of %dC)
CHM_MAJ_ALRM_TEMP_CLR
%CHMGR-2-MAJOR_TEMP_CLR: Major alarm cleared:
chassis temperature lower (%s %d temperature is
within threshold of %dC)
CHM_FANTRAY_BAD
For E1200: %CHMGR-2-FAN_TRAY_BAD: Major alarm: fan
tray %d is missing or down
%CHMGR-2-ALL_FAN_BAD: Major alarm: all fans in fan
tray %d are down.
For E600 and E300: %CHMGR-2-FANTRAYBAD: Major
alarm: fan tray is missing
%CHMGR-2-FANSBAD: Major alarm: most or all fans in
fan tray are down
CHM_FANTRAY_BAD_CLR
For the E1200: %CHMGR-5-FAN_TRAY_OK: Major alarm
cleared: fan tray %d present
For the E600 and E300: %CHMGR-5-FANTRAYOK: Major
alarm cleared: fan tray present
CHM_MIN_FANBAD
For the E1200: %CHMGR-2-FAN_BAD: Minor alarm: some
fans in fan tray %d are down
For the E600 and E300: %CHMGR- 2-1FANBAD: Minor
alarm: fan in fan tray is down
CHM_MIN_FANBAD_CLR
For E1200: %CHMGR-2-FAN_OK: Minor alarm cleared:
all fans in fan tray %d are good
For E600 and E300: %CHMGR-5-FANOK: Minor alarm
cleared: all fans in fan tray are good
TME_TASK_SUSPEND
%TME-2-TASK SUSPENDED: SUSPENDED - svce:%d - inst:
%d - task:%s
TME_TASK_TERM

1604

SNMP Traps

Message ID

Trap Type

Trap Option

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

ENVMON

NONE

PROTO

NONE

PROTO

NONE

PROTO

NONE

PROTO

NONE

PROTO

NONE

%TME-2-ABNORMAL_TASK_TERMINATION: CRASH - task:%s
%s
CHM_CPU_THRESHOLD
%CHMGR-5-CPU_THRESHOLD: Cpu %s usage above
threshold. Cpu5SecUsage (%d)
CHM_CPU_THRESHOLD_CLR
%CHMGR-5-CPU_THRESHOLD_CLR: Cpu %s usage drops
below threshold. Cpu5SecUsage (%d)
CHM_MEM_THRESHOLD
%CHMGR-5-MEM_THRESHOLD: Memory %s usage above
threshold. MemUsage (%d)
CHM_MEM_THRESHOLD_CLR
%CHMGR-5-MEM_THRESHOLD_CLR: Memory %s usage drops
below threshold. MemUsage (%d)
MACMGR_STN_MOVE
%MACMGR-5-DETECT_STN_MOVE: Station Move threshold
exceeded for Mac %s in vlan %d
VRRP_BADAUTH
%RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: vrid-1 on Gi
11/12 rcvd pkt with authentication type mismatch.
%RPM1-P:RP2 %VRRP-3-VRRP_BAD_AUTH: vrid-1 on Gi
11/12 rcvd pkt with authentication failure
VRRP_GO_MASTER
%VRRP-6-VRRP_MASTER: vrid-%d on %s entering MASTER
VRRP_PROTOCOL_ERROR
VRRP_PROTOERR: VRRP protocol error on %S
BGP4_ESTABLISHED
%TRAP-5-PEER_ESTABLISHED: Neighbor %a, state %s
BGP4_BACKW_XSITION
%TRAP-5-BACKWARD_STATE_TRANS: Neighbor %a, state %s

SNMP Traps

1605

56

Stacking

All commands in this chapter are specific to the Dell Networking operating software on the S4810
platform.
The commands are always available and operational, whether the S-Series has a stacking module
inserted. You can use the commands to pre-configure a switch, so that the configuration settings are
invoked when the switch is attached to other S-Series units.
For information about using the S-Series stacking feature, refer to the “Stacking S-Series Switches”
chapter in the Dell Networking OS Configuration Guide.
CAUTION: You cannot enable stacking simultaneously with virtual link trunking (VLT). If you
enable both at the same time, unexpected behavior occurs.
The Dell Networking OS commands for data center bridging features include 802.1Qbb priority-based
flow control (PFC), 802.1Qaz enhanced transmission selection (ETS), and the data center bridging
exchange (DCBX) protocol.

redundancy disable-auto-reboot
Prevent the S-Series stack management unit, stack member unit, and standby unit from rebooting if they
fail.

S4810
Syntax

redundancy disable-auto-reboot [stack-unit] [members | 0-11]
To return to the default, use the no redundancy disable-auto-reboot
stack-unit command.

Parameters

stack-unit

Enter the stack-unit number. For the S4810, the range is
from 0 to 5.

members

This is all stack-units.

Defaults

Disabled (the failed switch is automatically rebooted).

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1606

Stacking

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Added the members option.

Version 7.7.1.0

Introduced on the S-Series.

Usage
Information

The range is 0 to 11. Enabling this command keeps the failed switch in the Failed
state. The switch does not reboot until it is manually rebooted. When enabled, it is
not displayed in the running-config. When disabled, it is displayed in the runningconfig.

Related
Commands

show redundancy — displays the current redundancy status.

redundancy force-failover stack-unit
Force the standby unit in the stack to become the management unit.

S4810
Syntax
Parameters

redundancy force-failover stack-unit
stack-unit

Enter the stack unit. For the S4810, the range is from 0 to 5.

Defaults

Not enabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Stacking

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Added the members option.

Version 7.7.1.0

Introduced on the S-Series.

1607

redundancy protocol
Enable hitless failover for a protocol.

S4810
Syntax
Protocols

redundancy protocol
lacp

Enter the LACP protocol

xstp

Enter one of the following protocols: STP, RSTP, MSTP,
PVST.

Defaults

Not enabled.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Introduced on the S-Series.

reset stack-unit
Reset any designated stack member except the management unit (master unit).

S4810
Syntax
Parameters

reset stack-unit hard
stack-unit

Enter the stack-unit number. For the S4810, the range is
from 0 to 5.

hard

Reset the stack unit if the unit is in a problem state.

Defaults

none

Command
Modes

EXEC

1608

Stacking

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.1.0

Added the hard reset option.

Version 7.8.1.0

Augmented to run on the standby unit in order to reset the
standby unit directly.

Version 7.7.1.0

Introduced on the S-Series.

Resetting the management unit is not allowed, and an error message displays if you
try to do so. Resetting is a soft reboot, including flushing the forwarding tables.
Starting with Dell Networking OS version 7.8.1.0, you can run this command
directly on the stack standby unit (standby master) to reset the standby. You cannot
reset any other unit from the standby unit.

Example

Related
Commands

Stacking

Stack MAC : 00:01:e8:8b:1a:36
Reload-Type : normal-reload [Next boot : normal-reload]
-- Stack Info -Unit UnitType Status ReqTyp CurTyp Version Ports
---------------------------------------------------0
Management online S4810 S4810 8-3-12-1 64
1
Standby
online S4810 S4810 8-3-12-1 64
2
Member
online S4810 S4810 8-3-12-1 64
3
Member
online S4810 S4810 8-3-12-1 64
4
Member
online S4810 S4810 8-3-12-1 64
5
Member
online S4810 S4810 8-3-12-1 64
6
Member not present
7
Member not present
8
Member not present
9
Member not present
10 Member not present
11 Member not present
•

reload – reboots Dell Networking OS.

•

upgrade system stack-unit (S-Series stack member) – resets the designated SSeries stack member.

1609

show redundancy
Display the current redundancy configuration (status of automatic reboot configuration on stack
management unit).

S4810
Syntax

show redundancy

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Introduced on the S-Series.

To modify your results, use the show redundancy [pipe] command, as follows:
•

except — show only text that doesn not match a pattern.

•

find — search for the first occurrence of a pattern.

•

grep — show only text that matches a pattern.

•

no-more — do not paginate the output.

•

save — save the output to a file.

Dell#show redundancy
Dell#show redundancy
-- SSeries Redundancy Configuration ------------------------------------------------Auto reboot : Enabled
-- Stack-unit Status ------------------------------------------------Mgmt ID:
0
Stack-unit ID:
0
Stack-unit Redundancy Role: Primary
Stack-unit State:
Active
Stack-unit SW Version:
7.7.1.0
Link to Peer: Up
-- PEER Stack-unit Status ------------------------------------------------Stack-unit State:
Standby
Peer stack-unit ID:
1

1610

Stacking

Stack-unit SW Version: 7.7.1.0
-- Stack-unit Redundancy Configuration ------------------------------------------------Primary Stack-unit:
mgmt-id 0
Auto Data Sync:
Full
Failover Type:
Hot Failover
Auto reboot Stack-unit: Enabled
Auto failover limit:
3 times in 60 minutes
-- Stack-unit Failover Record ------------------------------------------------Failover Count:
0
Last failover timestamp: None
Last failover Reason:
None
Last failover type:
None
-- Last Data Block Sync Record: ------------------------------------------------Stack Unit Config: succeeded Jul 11 2012 09:42:35
Start-up Config: succeeded Jul 11 2012 09:42:35
Runtime Event Log: succeeded Jul 11 2012 09:42:35
Running Config: succeeded Jul 11 2012 09:42:35
ACL Mgr: succeeded Jul 11 2012 09:42:35
LACP: no block sync done
STP: no block sync done
SPAN: no block sync done
Related
Commands

redundancy disable-auto-reboot – prevents the system from auto-rebooting if it
fails.

show system stack-ports
Display information about the stacking ports on all switches in the stack.

S4810
Syntax
Parameters

Defaults
Command
Modes
Command
History

show system stack-ports [status | topology]
status

(OPTIONAL) Enter the keyword status to display the
command output without the Connection field.

topology

(OPTIONAL) Enter the keyword topology to limit the table
to just the Interface and Connection fields.

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Stacking

1611

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Introduced on the S-Series.

The following describes the show interfaces command shown in the following
example.
Field

Description

Topology

Lists the topology of stack ports connected: Ring, Daisy
chain, or Standalone.

Interface

The unit/port ID of the connected stack port on this unit.

Link Speed

Link Speed of the stack port (10 or 40) in Gb/s.

Admin Status

The only currently listed status is Up.

Connection

The stack port ID to which this unit’s stack port is
connected.

Example

Dell# show system stack-ports
Topology: Ring
Interface Connection Link Speed Admin Link
(Gb/s) Status Status
-------------------------------------------------0/49
1/49
12
up
up
0/50
12
up
down
0/51
2/49
24
up
up
1/49
0/49
12
up
up
1/50
2/51
12
up
up
2/49
0/51
24
up
up
2/51
1/50
12
up
up
2/52
12
up
down
Dell#

Example
(Status)

Dell# show system stack-ports status
Topology: Ring
Interface Link Speed Admin Link
(Gb/s) Status Status
---------------------------------------0/49
12
up
up
0/50
12
up
down
0/51
24
up
up
1/49
12
up
up
1/50
12
up
up
2/49
24
up
up
2/51
12
up
up
2/52
12
up
down
Dell#

Example
(Topology)

Dell# show system stack-ports topology
Topology: Ring
Interface Connection

1612

Stacking

---------------------0/49
1/49
0/50
0/51
2/49
1/49
0/49
1/50
2/51
2/49
0/51
2/51
1/50
2/52
Dell#
Related
Commands

•

reset stack-unit – resets the designated stack member.

•

show hardware stack-unit – displays the data plane or management plane input
and output statistics of the designated component of the designated stack
member.

•

show system (S-Series and Z-Series) – displays the current status of all stack
members or a specific member.

•

upgrade (S-Series management unit and Z-Series) – upgrades the bootflash
image or system image of the S-Series management unit.

stack-unit priority
Configure the ability of a switch to become the management unit of a stack.

S4810
Syntax
Parameters

stack-unit stack-number priority 1-14
stack-number

Enter the stack member unit identifier.

1–14

This preference parameter allows you to specify the
management priority of one backup switch over another,
with 0 the lowest priority and 14 the highest. The switch with
the highest priority value is chosen to become the
management unit if the active management unit fails or on
the next reload.

Defaults

0

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Stacking

Introduced on the S4820T.

1613

Related
Commands

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Introduced on the S-Series.

•

reload – reboots Dell Networking OS.

stack-unit provision
Preconfigure a logical stacking ID of a switch that joins the stack. This is an optional command that is
executed on the management unit.

S4810
Syntax
Parameters

stack-unit [stack-unit] provision {S25N|S25P|S25V|S50N|S50V|
Z9000|S4810|S4820T}
stack-unit

Enter a stack member identifier of the switch that you want
to add to the stack.

S25N|S25P|
S25V|S50N|
S50V|Z9000|
S4810|S4820T

Enter the model identifier of the switch to be added as a
stack member. This identifier is also referred to as the
provision type.

Defaults

When this value is not set, a switch joining the stack is given the next available
sequential stack member identifier.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

1614

Version 8.3.11.1

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

•

reload – reboots Dell Networking OS.

Stacking

•

show system (S-Series and Z-Series) – displays the status of all stack members
or a specific member.

stack-unit stack-group
Configure the stacking unit and stacking group by specifying an ID when adding units to a stack to ensure
the unit is assigned to the correct group.

S4810
Syntax

stack-unit unit-id stack-group stack-group-id
To remove the current stack group configuration, use the no stack-unit unitid stack-group stack-id command.

Parameters

unit-id

Enter the stack unit ID.

stack-group-id

Enter the stack group ID. The range is from 0 to 15.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Reset command mode from EXEC to CONFIGURATION.

Version
8.3.10.2

Introduced on the S4810.

The following message displays to confirm the command.
Setting ports Fo 0/60 as stack group will make their interface
configs obsolete after a reload.[confirm yes/no]: If “y” is
entered, all non-default configurations on any member ports of
the current stack group will be removed when the unit is
rebooted.
NOTE: Any scripts used to streamline the stacking configuration process must
be updated to reflect the Command Mode change from EXEC Privilege to
CONFIGURATION to allow the scripts to work correctly.

Stacking

1615

upgrade system stack-unit
Copy the boot image or Dell Networking OS from the management unit to one or more stack members.

S4810
Syntax
Parameters

upgrade {boot | system} stack-unit {all | 0-11 | A | B}
boot

Enter the keyword boot to copy the boot image from the
management unit to the designated stack members.

system

Enter the keyword system to copy the Dell Networking OS
image from the management unit to the designated stack
members.

stack-unit

Enter the stack-unit number. For the S4810, the range is
from 0 to 5.

all

Enter the keyword all to copy the designated image to all
stack members.

0-11

Enter the unit ID of the stack member to which to copy the
designated image.

A

Enter the keyword A to upgrade all stacked units in System A
(S4810 only).

B

Enter the keyword B to upgrade all stacked units in System B
(S4810 only).

Defaults

none

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information
Related
Commands

1616

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.11.1

Introduced on the Z9000.

Version 7.7.1.0

Introduced on the S-Series.

To reboot using the new image, use the upgrade boot system stack-unit
command.
•
•
•

reload — reboots Dell Networking OS.
reset stack-unit — resets the designated stack member.
show system (S-Series and Z-Series) — displays the status of all stack members
or a specific member.

Stacking

Stacking

•

show version — displays the current Dell Networking OS version information on
the system.

•

upgrade (S-Series management unit and Z-Series) — upgrades the bootflash
image or system image of the S-Series management unit.

1617

Storm Control

57

The Dell Networking operating software storm control feature allows you to limit or suppress traffic
during a traffic storm (Broadcast/Unknown Unicast Rate Limiting or Multicast on the C-Series and SSeries).
Storm control is supported on the Dell Networking S4810 platforms.

Important Points to Remember
•

Interface commands can only be applied on physical interfaces (virtual local area networks [VLANs]
and link aggregation group [LAG] interfaces are not supported).

•

An INTERFACE-level command only supports storm control configuration on ingress.

•

An INTERFACE-level command overrides any CONFIGURATION-level ingress command for that
physical interface, if both are configured.

•

You can apply the CONFIGURATION-level storm control commands at ingress or egress and are
supported on all physical interfaces.

•

When storm control is applied on an interface, the percentage of storm control applied is calculated
based on the advertised rate of the line card. It is not based on the speed setting for the line card.

•

Do not apply per-VLAN quality of service (QoS) on an interface that has storm control enabled (either
on an interface or globally).

•

When you enable broadcast storm control on an interface or globally on ingress, and DSCP marking
for a DSCP value 1 is configured for the data traffic, the traffic goes to queue 1 instead of queue 0.

•

Similarly, if you enable unicast storm control on an interface or globally on ingress, and DSCP marking
for a DSCP value 2 is configured for the data traffic, the traffic goes to queue 2 instead of queue 0.
NOTE: Bi-directional traffic (unknown unicast and broadcast) along with egress storm control
causes the configured traffic rates split between the involved ports. The percentage of traffic that
each port receives after the split is not predictable. These ports can be in the same/different port
pipes or the same/different line cards.
NOTE: The policy discard drop counters are common across storm-control drops, ACL drops and
QoS drops. Therefore, if your configuration includes ACL and QoS, those drops are also computed
and displayed in the policy discard drops counter field along with storm-control drops. The packets
dropped by the storm control feature can be monitored by viewing the value of the Policy Discard
Drops field of the output of the show hardware stack-unit 0 drops command.

1618

Storm Control

show storm-control broadcast
Display the storm control broadcast configuration.

S4810
Syntax
Parameters

show storm-control broadcast [interface]
interface

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

(OPTIONAL) Enter one of the following interfaces to display
the interface-specific storm control configuration:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

Fast Ethernet is not supported.

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Storm Control

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

1619

show storm-control multicast
Display the storm control multicast configuration.

S4810
Syntax
Parameters

show storm-control multicast [interface]
interface

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

(OPTIONAL) Enter one of the following interfaces to display
the interface specific storm control configuration:
•

For Fast Ethernet, enter the keyword Fastethernet
then the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

Dell#show storm-control multicast gigabitethernet 1/0
Multicast storm control configuration
Interface Direction
Packets/Second
----------------------------------------Gi 1/0
Ingress
5
Dell#

1620

Storm Control

show storm-control unknown-unicast
Display the storm control unknown-unicast configuration.

S4810
Syntax
Parameters

show storm-control unknown-unicast [interface]
interface

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

(OPTIONAL) Enter one of the following interfaces to display
the interface specific storm control configuration:
•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet then y the slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Storm Control

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on ExaScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.5.1.0

Introduced on the E-Series.

1621

storm-control broadcast (Configuration)
Configure the percentage of broadcast traffic allowed in the network.

S4810
Syntax

storm-control broadcast [packets_per_second in]
To disable broadcast rate-limiting, use the no storm-control broadcast
[packets_per_second in] command.

Parameters

percentagedeci
mal_value in |
out

Enter the percentage of broadcast traffic allowed in or out of
the network. Optionally, you can designate a decimal value
percentage, for example, 55.5%. The decimal range is from .1
to .9.

wred-profile
name

Enter the keyword wred-profile followed by the profile
name to designate a wred-profile.

packets_per_se
cond in

Enter the packets per second of broadcast traffic allowed
into the network. The range is from 0 to 33554368.

Defaults

none

Command
Modes

CONFIGURATION (conf)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1622

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Added the percentage decimal value
option.

Version 6.5.1.0

Introduced on the E-Series.

Broadcast storm control is valid on Layer 2/Layer 3 interfaces only. Layer 2
broadcast traffic is treated as unknown-unicast traffic.

Storm Control

storm-control broadcast (Interface)
Configure the percentage of broadcast traffic allowed on an interface (ingress only).

S4810
Syntax

storm-control broadcast [packets_per_second in]
To disable broadcast storm control on the interface, use the no storm-control
broadcast [packets_per_second in] command.

Parameters

packets_per_se
cond in

Enter the packets per second of broadcast traffic allowed
into the network. The range is from 0 to 33554368.

Defaults

none

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Storm Control

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Added the percentage decimal value
option.

Version 6.5.1.0

Introduced on the E-Series.

1623

storm-control multicast (Configuration)
Configure the packets per second (pps) of multicast traffic allowed into the C-Series and S-Series
networks only.

S4810
Syntax

storm-control multicast packets_per_second in
To disable storm-control for multicast traffic into the network, use the no stormcontrol multicast packets_per_second in command.

Parameters

packets_per_se
cond in

Enter the packets per second of multicast traffic allowed into
the network. The range is from 0 to 33554368.

Defaults

none

Command
Modes

CONFIGURATION (conf)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1624

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-series and S-Series.

Broadcast traffic (all 0xFs) should be counted against the broadcast storm control
meter, not against the multicast storm control meter. It is possible, however, that
some multicast control traffic may get dropped when storm control thresholds are
exceeded.

Storm Control

storm-control multicast (Interface)
Configure the percentage of multicast traffic allowed on an C-Series or S-Series interface (ingress only)
network only.

S4810
Syntax

storm-control multicast packets_per_second in
To disable multicast storm control on the interface, use the no storm-control
multicast packets_per_second in command.

Parameters

packets_per_se
cond in

Enter the packets per second of broadcast traffic allowed
into the network. The range is from 0 to 33554368.

Defaults

none

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the C-series and S-Series.

storm-control unknown-unicast (Configuration)
Configure the percentage of unknown-unicast traffic allowed in or out of the network.

S4810
Syntax

storm-control unknown-unicast [packets_per_second in]
To disable storm control for unknown-unicast traffic, use the no storm-control
unknown-unicast [packets_per_second in] command.

Parameters

Storm Control

packets_per_se
cond in

Enter the packets per second of broadcast traffic allowed
into the network. The range is from 0 to 33554368.

1625

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Added the percentage decimal value
option.

Version 6.5.1.0

Introduced on the E-Series.

Unknown Unicast Storm-Control is valid for Layer 2 and Layer 2/Layer 3 interfaces.

storm-control unknown-unicast (Interface)
Configure percentage of unknown-unicast traffic allowed on an interface (ingress only).

S4810
Syntax

storm-control unknown-unicast [percentage decimal_value in] |
[wred-profile name]] [packets_per_second in]
To disable unknown-unicast storm control on the interface, use the no stormcontrol unknown-unicast [percentage decimal_value in] | [wredprofile name]] [packets_per_second in] command.

Parameters

percentage
decimal_value
[in | out]

E-Series Only: Enter the percentage of broadcast traffic
allowed in or out of the network. Optionally, you can
designate a decimal value percentage, for example, 55.5%.
The percentage is from 0 to 100:
•

1626

0% blocks all related traffic.

Storm Control

•

100% allows all traffic into the interface.

The decimal range is from 0.1 to 0.9.
wred-profile
name

E-Series Only: (Optionally) Enter the keywords wredprofile followed by the profile name to designate a wredprofile.

packets_per_se
cond in

C-Series and S-Series Only: Enter the packets per second of
broadcast traffic allowed into the network. The range is from
0 to 33554431.

Defaults

none

Command
Modes

INTERFACE (conf-if-interface-slot/port)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Storm Control

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

E-Series Only: Added the percentage decimal value
option.

Version 6.5.1.0

Introduced on the E-Series.

1627

58

Spanning Tree Protocol (STP)

The commands in this chapter configure and monitor the IEEE 802.1d spanning tree protocol (STP) and
are supported on the S4810 Dell Networking switch/routing platform.

bridge-priority
Set the bridge priority of the switch in an IEEE 802.1D spanning tree.

S4810
Syntax

bridge-priority {priority-value | primary | secondary}
To return to the default value, use the no bridge-priority command.

Parameters

priority-value

Enter a number as the bridge priority value. The range is
from 0 to 65535. The default is 32768.

primary

Enter the keyword primary to designate the bridge as the
root bridge.

secondary

Enter the keyword secondary to designate the bridge as a
secondary root bridge.

Defaults

priority-value = 32768

Command
Modes

SPANNING TREE (The prompt is “config-stp”.)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1628

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Spanning Tree Protocol (STP)

pre-Version
6.2.1.1

Introduced on the E-Series.

bpdu-destination-mac-address
Use the Provider Bridge Group address in Spanning Tree or GVRP PDUs.

S4810
Syntax
Parameters

bpdu-destination-mac-address [stp | gvrp] provider-bridge-group
xstp

Force STP, RSTP, and MSTP to use the Provider Bridge Group
address as the destination MAC address in its BPDUs.

gvrp

Forces GVRP to use the Provider Bridge GVRP Address as the
destination MAC address in its PDUs.

Defaults

The destination MAC address for BPDUs is the Bridge Group Address.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the S4810.

Version 8.2.1.0

Introduced on the C-Series and S-Series.

debug spanning-tree
Enable debugging of the spanning tree protocol and view information on the protocol.

S4810
Syntax

debug spanning-tree {stp-id [all | bpdu | config | events |
exceptions | general | root] | protocol}
To disable debugging, use the no debug spanning-tree command.

Spanning Tree Protocol (STP)

1629

Parameters

stp-id

Enter zero (0). The switch supports one spanning tree group
with a group ID of 0.

protocol

Enter the keyword for the type of STP to debug, either mstp,
pvst, or rstp.

all

(OPTIONAL) Enter the keyword all to debug all spanning
tree operations.

bpdu

(OPTIONAL) Enter the keyword bpdu to debug bridge
protocol data units.

config

(OPTIONAL) Enter the keyword config to debug
configuration information.

events

(OPTIONAL) Enter the keyword events to debug STP
events.

general

(OPTIONAL) Enter the keyword general to debug general
STP operations.

root

(OPTIONAL) Enter the keyword root to debug STP root
transactions.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

When you enable debug spanning-tree bpdu for multiple interfaces, the
software only sends information on BPDUs for the last interface specified.

Related
Commands

protocol spanning-tree — enters SPANNING TREE mode on the switch.

1630

Spanning Tree Protocol (STP)

description
Enter a description of the spanning tree.

S4810
Syntax

description {description}
To remove the description from the spanning tree, use the no description
{description} command.

Parameters

description

Enter a description to identify the spanning tree (80
characters maximum).

Defaults

none

Command
Modes

SPANNING TREE (The prompt is “config-stp”.)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
7.7.1.0

Introduced

protocol spanning-tree — enters SPANNING TREE mode on the switch.

disable
Disable the spanning tree protocol globally on the switch.

S4810
Syntax

disable
To enable Spanning Tree Protocol, use the no disable command.

Defaults

Enabled (that is, the spanning tree protocol is disabled.)

Spanning Tree Protocol (STP)

1631

Command
Modes

SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

protocol spanning-tree — enters SPANNING TREE mode on the switch.

forward-delay
The amount of time the interface waits in the Listening state and the Learning state before transitioning
to the Forwarding state.

S4810
Syntax

forward-delay seconds
To return to the default setting, use the no forward-delay command.

Parameters

seconds

Enter the number of seconds the Dell Networking OS waits
before transitioning STP to the Forwarding state. The range is
from 4 to 30. The default is 15 seconds.

Defaults

15 seconds

Command
Modes

SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1632

Spanning Tree Protocol (STP)

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

max-age — changes the wait time before STP refreshes protocol configuration
information.
hello-time — changes the time interval between BPDUs.

hello-time
Set the time interval between generation of the spanning tree bridge protocol data units (BPDUs).

S4810
Syntax

hello-time seconds
To return to the default value, use the no hello-time command.

Parameters

seconds

Enter a number as the time interval between transmission of
BPDUs. The range is from 1 to 10. The default is 2 seconds.

Defaults

2 seconds

Command
Modes

SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Spanning Tree Protocol (STP)

1633

Related
Commands

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

forward-delay — changes the wait time before STP transitions to the Forwarding
state.
max-age — changes the wait time before STP refreshes protocol configuration
information.

max-age
To maintain configuration information before refreshing that information, set the time interval for the
spanning tree bridge.

S4810
Syntax

max-age seconds
To return to the default values, use the no max-age command.

Parameters

seconds

Enter a number of seconds the Dell Networking OS waits
before refreshing configuration information. The range is
from 6 to 40. The default is 20 seconds.

Defaults

20 seconds

Command
Modes

SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1634

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Spanning Tree Protocol (STP)

Related
Commands

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

forward-delay — changes the wait time before STP transitions to the Forwarding
state.
hello-time — changes the time interval between BPDUs.

protocol spanning-tree
To enable and configure the spanning tree group, enter SPANNING TREE mode.

S4810
Syntax

protocol spanning-tree stp-id
To disable the Spanning Tree group, use the no protocol spanning-tree
stp-id command.

Parameters

stp-id

Enter zero (0). Dell Networking OS supports one spanning
tree group, group 0.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Spanning Tree Protocol (STP)

1635

Usage
Information

STP is not enabled when you enter SPANNING TREE mode. To enable STP globally
on the switch, use the no disable command from SPANNING TREE mode.

Example

Dell(conf)#protocol spanning-tree 0
Dell(config-stp)#

Related
Commands

disable — disables spanning tree group 0. To enable spanning tree group 0, use the
no disable command.

show config
Display the current configuration for the mode. Only non-default values display.

S4810
Syntax

show config

Command
Modes

SPANNING TREE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1636

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell(config-stp)#show config
protocol spanning-tree 0
no disable
Dell(config-stp)#

Spanning Tree Protocol (STP)

show spanning-tree 0
Display the spanning tree group configuration and status of interfaces in the spanning tree group.

S4810
Syntax
Parameters

show spanning-tree 0 [active | brief | guard | interface
interface | root | summary]
0

Enter 0 (zero) to display information about that specific
spanning tree group.

active

(OPTIONAL) Enter the keyword active to display only active
interfaces in spanning tree group 0.

brief

(OPTIONAL) Enter the keyword brief to display a synopsis
of the spanning tree group configuration information.

guard

(OPTIONAL) Enter the keyword guard to display the type of
guard enabled on an STP interface and the current port state.

interface
interface

(OPTIONAL) Enter the keyword interface and the type
slot/port of the interface you want displayed. Type slot/port
options are the following:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
fortyGigE then the slot/port information.

root

(OPTIONAL) Enter the keyword root to display configuration
information on the spanning tree group root.

summary

(OPTIONAL) Enter the keyword summary to only the number
of ports in the spanning tree group and their state.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.5.1.0

Added support for 4-port 40G line cards on the E-Series
ExaScale.

Spanning Tree Protocol (STP)

1637

Usage
Information

1638

Version 8.4.2.1

Added support for the optional guard keyword on the CSeries, S-Series, and E-Series TeraScale.

Version 8.3.7.0

Introduced on the S4810.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Enable spanning tree group 0 prior to using this command.
The following describes the show spanning-tree 0 command shown in the
example.
Field

Description

“Bridge
Identifier...”

Lists the bridge priority and the MAC address for this STP
bridge.

“Configured
hello...”

Displays the settings for hello time, max age, and forward
delay.

“We are...”

States whether this bridge is the root bridge for the STG.

“Current root...”

Lists the bridge priority and MAC address for the root bridge.

“Topology flag...”

States whether the topology flag and the detected flag were
set.

“Number of...”

Displays the number of topology changes, the time of the
last topology change, and on what interface the topology
change occurred.

“Timers”

Lists the values for the following bridge timers: hold time,
topology change, hello time, max age, and forward delay.

“Times”

List the number of seconds since the last:
•

hello time

•

topology change

•

notification

•

aging

“Port 1...”

Displays the Interface type slot/port information and the
status of the interface (Disabled or Enabled).

“Port path...”

Displays the path cost, priority, and identifier for the
interface.

“Designated
root...”

Displays the priority and MAC address of the root bridge of
the STG that the interface belongs.

“Designated
port...”

Displays the designated port ID.

Spanning Tree Protocol (STP)

Example

Dell#show spann 0
Executing IEEE compatible Spanning Tree Protocol
Bridge Identifier has priority 32768, Address 0001.e800.0a56
Configured hello time 2, max age 20, forward delay 15
We are the root of the spanning tree
Current root has priority 32768 address 0001.e800.0a56
Topology change flag set, detected flag set
Number of topology changes 1 last change occurred 0:00:05 ago
from GigabitEthernet 1/3
Timers:hold 1, topology change 35
hello 2, max age 20, forward_delay 15
Times:hello 1, topology change 1, notification 0, aging 2
Port 26 (GigabitEthernet 1/1) is Forwarding
Port path cost 4, Port priority 8, Port Identifier 8.26
Designated root has priority 32768, address 0001.e800.0a56
Designated bridge has priority 32768, address 0001.e800.0a56
Designated port id is 8.26, designated path cost 0
Timers: message age 0, forward_delay 0, hold 0
Number of transitions to forwarding state 1
BPDU: sent:18, received 0
The port is not in the portfast mode
Port 27 (GigabitEthernet 1/2) is Forwarding
Port path cost 4, Port priority 8, Port Identifier 8.27
Designated root has priority 32768, address 0001.e800.0a56
Designated bridge has priority 32768, address 0001.e800.0a56
Designated port id is 8.27, designated path cost 0
Timers: message age 0, forward_delay 0, hold 0
Number of transitions to forwarding state 1
BPDU: sent:18, received 0
The port is not in the portfast mode
Port 28 (GigabitEthernet 1/3) is Forwarding
Port path cost 4, Port priority 8, Port Identifier 8.28
Designated root has priority 32768, address 0001.e800.0a56
Designated bridge has priority 32768, address 0001.e800.0a56
Designated port id is 8.28, designated path cost 0
Timers: message age 0, forward_delay 0, hold 0
Number of transitions to forwarding state 1
BPDU: sent:31, received 0
The port is not in the portfast mode
Dell#

Example (Brief)

Dell#show span 0 brief
Executing IEEE compatible Spanning Tree Protocol
Root ID Priority 32768
Address 0001.e800.0a56
Root Bridge hello time 2, max age 20, forward delay 15
Bridge ID Priority 32768,
Address 0001.e800.0a56
Configured hello time 2, max age 20, forward delay 15
Interface
Designated
Name
PortID Prio Cost Sts Cost Bridge ID
PortID
-------------- ------ ---- ---- --- ----- -----------------Gi 1/1 8.26
8
4
FWD 0
32768 0001.e800.0a56 8.26
Gi 1/2 8.27
8
4
FWD 0
32768 0001.e800.0a56 8.27
Gi 1/3 8.28
8
4
FWD 0
32768 0001.e800.0a56 8.28
Dell#

Spanning Tree Protocol (STP)

1639

Usage
Information

Example
(Guard)

The following describes the show spanning-tree 0 guard command shown in
the example.
Field

Description

Interface Name

STP interface.

Instance

STP 0 instance.

Sts

Port state: root-inconsistent (INCON Root), forwarding
(FWD), listening (LIS), blocking (BLK), or shut down (EDS
Shut).

Guard Type

Type of STP guard configured (Root, Loop, or BPDU guard).

Dell#show spanning-tree 0 guard
Interface
Name
Instance Sts
Guard type
--------- -------- --------- ---------Gi 0/1 0
INCON(Root) Rootguard
Gi 0/2 0
LIS
Loopguard
Gi 0/3 0
EDS (Shut)
Bpduguard

spanning-tree
Assigns a Layer 2 interface to STP instance 0 and configures a port cost or port priority, or enables loop
guard, root guard, or the Portfast feature on the interface.

S4810
Syntax

spanning-tree stp-id {cost cost | {loopguard | rootguard} |
portfast [bpduguard [shutdown-on-violation]] | priority
priority}
To disable Spanning Tree group on an interface, use the no spanning-tree
stp-id {cost cost | {loopguard | rootguard} | portfast
[bpduguard [shutdown-on-violation]] | priority priority}
command.

Parameters

stp-id

Enter the STP instance ID. The range is 0.

cost cost

Enter the keyword cost then a number as the cost. The
range is from 1 to 65535. The defaults are:
•

1640

100 Mb/s Ethernet interface = 19.

•

1-Gigabit Ethernet interface = 4.

•

10-Gigabit Ethernet interface = 2.

•

Port Channel interface with 100 Mb/s Ethernet = 18.

•

Port Channel interface with 1 Gigabit Ethernet = 3.

•

Port Channel interface with 10 Gigabit Ethernet = 1.

Spanning Tree Protocol (STP)

loopguard

Enter the keyword loopguard to enable STP loop guard on
a port or port-channel interface.

rootguard

Enter the keyword rootguard to enable STP root guard on
a port or port-channel interface.

portfast
[bpduguard
[shutdown-onviol ation]]

Enter the keyword portfast to enable Portfast to move the
interface into Forwarding mode immediately after the root
fails.
Enter the optional keyword bpduguard to disable the port
when it receives a BPDU.
Enter the optional keyword shutdown-on-violation to
hardware disable an interface when a BPDU is received and
the port is disabled.

priority priority

Enter keyword priority then a number as the priority. The
range is from zero (0) to 15. The default is 8.

Defaults

cost = depends on the interface type; priority = 8

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.10.1

Introduced the loopguard and rootguard options on the
S4810.

Version 8.4.2.1

Introduced the loopguard and rootguard options on the
E-Series TeraScale, C-Series, and S-Series.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced the shutdown-on-violation option.

Version 7.7.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 6.2.1.1

Introduced on the E-Series.

If you enable portfast bpduguard on an interface and the interface receives a
BPDU, the software disables the interface and sends a message stating that fact.

Spanning Tree Protocol (STP)

1641

The port is in ERR_DISABLE mode, yet appears in the show interface
commands as enabled. If you do not enable shutdown-on-violation, BPDUs
are still sent to the RPM CPU.
STP loop guard and root guard are supported on a port or port-channel enabled in
any Spanning Tree mode: Spanning Tree Protocol (STP), Rapid Spanning Tree
Protocol (RSTP), Multiple Spanning Tree Protocol (MSTP), and Per-VLAN Spanning
Tree Plus (PVST+).
Root guard is supported on any STP-enabled port or port-channel except when
used as a stacking port. When enabled on a port, root guard applies to all VLANs
configured on the port.
STP root guard and loop guard cannot be enabled at the same time on a port. For
example, if you configure loop guard on a port on which root guard is already
configured, the following error message is displayed: % Error: RootGuard is
configured. Cannot configure LoopGuard.
Do not enable Portfast BPDU guard and loop guard at the same time on a port.
Enabling both features may result in a port that remains in a blocking state and
prevents traffic from flowing through it. For example, when Portfast BPDU guard
and loop guard are both configured:
•

If a BPDU is received from a remote device, BPDU guard places the port in an
Err-Disabled Blocking state and no traffic is forwarded on the port.

•

If no BPDU is received from a remote device, loop guard places the port in a
Loop-Inconsistent Blocking state and no traffic is forwarded on the port.

To display the type of STP guard (Portfast BPDU, root, or loop guard) enabled on a
port, enter the show spanning-tree 0 command.

1642

Spanning Tree Protocol (STP)

System Time and Date

59

The commands in this chapter configure time values on the system, either using the Dell Networking
operating software, or the hardware, or using the network time protocol (NTP). With NTP, the switch can
act only as a client to an NTP clock host.
For more information, refer to the “Network Time Protocol” section of the Management chapter in the
Dell Networking OS Configuration Guide.
The commands in this chapter are generally supported on the S4810 with some exceptions, as notes in
the Command History fields.

calendar set
Set the time and date for the switch hardware clock.

S4810
Syntax
Parameters

calendar set time month day year
time

Enter the time in hours:minutes:seconds. For the hour
variable, use the 24-hour format; for example, 17:15:00 is
5:15 pm.

month

Enter the name of one of the 12 months in English. You can
enter the name of a day to change the order of the display to
time day month year.

day

Enter the number of the day. The range is from 1 to 31. You
can enter the name of a month to change the order of the
display to time day month year.

year

Enter a four-digit number as the year. The range is from 1993
to 2035.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

System Time and Date

Introduced on the S6000.

1643

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

You can change the order of the month and day parameters to enter the time and
date as time day month year.
In the switch, the hardware clock is separate from the software and is called the
calendar. This hardware clock runs continuously. After the hardware clock (the
calendar) is set, the Dell Networking OS automatically updates the software clock
after system bootup. You cannot delete the hardware clock (calendar).
To manually update the software with the hardware clock, use the clock readcalendar command.

Example

Dell#calendar set 08:55:00 june 18 2006
Dell#

Related
Commands

clock read-calendar — sets the software clock based on the hardware clock.
show clock — displays the clock settings.

clock read-calendar
Set the software clock on the switch from the information set in hardware clock (calendar).

S4810
Syntax

clock read-calendar

Defaults

Not configured.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1644

System Time and Date

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

In the switch, the hardware clock is separate from the software and is called the
calendar. This hardware clock runs continuously. After the hardware clock (the
calendar) is set, the Dell Networking OS automatically updates the software clock
after system bootup.
You cannot delete this command (there is not a no version of this command).

clock summer-time date
Set a date (and time zone) on which to convert the switch to daylight saving time on a one-time basis.

S4810
Syntax

clock summer-time time-zone date start-month start-day startyear start-time end-month end-day end-year end-time [offset]
To delete a daylight saving time zone configuration, use the no clock summertime command.

Parameters

System Time and Date

time-zone

Enter the three-letter name for the time zone. This name is
displayed in the show clock output.

start-month

Enter the name of one of the 12 months in English. You can
enter the name of a day to change the order of the display to
time day month year.

start-day

Enter the number of the day. The range is from 1 to 31. You
can enter the name of a month to change the order of the
display to time day month year.

start-year

Enter a four-digit number as the year. The range is from 1993
to 2035.

start-time

Enter the time in hours:minutes. For the hour variable, use
the 24-hour format; example, 17:15 is 5:15 pm.

1645

end-day

Enter the number of the day. The range is from 1 to 31. You
can enter the name of a month to change the order of the
display to time day month year.

end-month

Enter the name of one of the 12 months in English. You can
enter the name of a day to change the order of the display to
time day month year.

end-time

Enter the time in hours:minutes. For the hour variable, use
the 24-hour format; example, 17:15 is 5:15 pm.

end-year

Enter a four-digit number as the year. The range is from 1993
to 2035.

offset

(OPTIONAL) Enter the number of minutes to add during the
summer-time period. The range is from 1 to1440. The
default is 60 minutes.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

calendar set — sets the hardware clock.
clock summer-time recurring — sets a date (and time zone) on which to convert
the switch to daylight saving time each year.
show clock — displays the current clock settings.

1646

System Time and Date

clock summer-time recurring
Set the software clock to convert to daylight saving time on a specific day each year.

S4810
Syntax

clock summer-time time-zone recurring [start-week start-day
start-month start-time end-week end-day end-month end-time
[offset]]
To delete a daylight saving time zone configuration, use the no clock summertime command.

Parameters

time-zone

Enter the three-letter name for the time zone. This name is
displayed in the show clock output. You can enter up to
eight characters.

start-week

(OPTIONAL) Enter one of the following as the week that
daylight saving begins and then enter values for start-day
through end-time:
week-number: Enter a number from 1 to 4 as the
number of the week in the month to start daylight saving
time.

•

first: Enter this keyword to start daylight saving time in
the first week of the month.

•

last: Enter this keyword to start daylight saving time in
the last week of the month.

start-day

Enter the name of the day that you want daylight saving time
to begin. Use English three letter abbreviations; for example,
Sun, Sat, Mon, and so on. The range is from Sun to Sat.

start-month

Enter the name of one of the 12 months in English.

start-time

Enter the time in hours:minutes. For the hour variable, use
the 24-hour format; example, 17:15 is 5:15 pm.

end-week

Enter the one of the following as the week that daylight
saving ends:

end-day

System Time and Date

•

•

week-number: enter a number from 1 to 4 as the
number of the week to end daylight saving time.

•

first: enter the keyword first to end daylight saving
time in the first week of the month.

•

last: enter the keyword last to end daylight saving
time in the last week of the month.

Enter the weekday name that you want daylight saving time
to end. Enter the weekdays using the three letter
abbreviations; for example Sun, Sat, Mon, and so on. The
range is from Sun to Sat.

1647

end-month

Enter the name of one of the 12 months in English.

end-time

Enter the time in hours:minutes:seconds. For the hour
variable, use the 24-hour format; example, 17:15:00 is 5:15
pm.

offset

(OPTIONAL) Enter the number of minutes to add during the
summer-time period. The range is from 1 to 1440. The
default is 60 minutes.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Version 7.4.1.0

Updated the start-day and end-day options to allow for
using the three-letter abbreviation of the weekday name.

pre-Version
6.1.1.0

Introduced on the E-Series.

calendar set — sets the hardware clock.
clock summer-time date — sets a date (and time zone) on which to convert the
switch to daylight saving time on a one-time basis.
show clock — displays the current clock settings.

1648

System Time and Date

clock timezone
Configure a timezone for the switch.

S4810
Syntax

clock timezone timezone-name offset
To delete a timezone configuration, use the no clock timezone command.

Parameters

timezonename

Enter the name of the timezone. You cannot use spaces.

offset

Enter one of the following:
•

a number from 1 to 23 as the number of hours in addition
to universal time coordinated (UTC) for the timezone.

•

a minus sign (-) then a number from 1 to 23 as the
number of hours.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

System Time and Date

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Coordinated universal time (UTC) is the time standard based on the International
Atomic Time standard, commonly known as Greenwich Mean time. When
determining system time, include the differentiator between UTC and your local
timezone. For example, San Jose, CA is the Pacific Timezone with a UTC offset of
-8.

1649

debug ntp
Display network time protocol (NTP) transactions and protocol messages for troubleshooting.

S4810
Syntax

debug ntp {adjust | all | authentication | events | loopfilter
| packets | select | sync}
To disable debugging of NTP transactions, use the no debug ntp {adjust |
all | authentication | events | loopfilter | packets | select |
sync} command.

Parameters

adjust

Enter the keyword adjust to display information on NTP
clock adjustments.

all

Enter the keyword all to display information on all NTP
transactions.

authentication

Enter the keyword authentication to display information
on NTP authentication transactions.

events

Enter the keyword events to display information on NTP
events.

loopfilter

Enter the keyword loopfilter to display information on
NTP local clock frequency.

packets

Enter the keyword packets to display information on NTP
packets.

select

Enter the keyword select to display information on the NTP
clock selection.

sync

Enter the keyword sync to display information on the NTP
clock synchronization.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1650

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

System Time and Date

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

ntp authenticate
Enable authentication of NTP traffic between the switch and the NTP time serving hosts.

S4810
Syntax

ntp authenticate
To disable NTP authentication, use the no ntp authentication command.

Defaults

Not enabled.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

System Time and Date

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

You also must configure an authentication key for NTP traffic using the ntp
authentication-key command.

1651

ntp broadcast client
Set up the interface to receive NTP broadcasts from an NTP server.

S4810
Syntax

ntp broadcast client
To disable broadcast, use the no ntp broadcast client command.

Defaults

Disabled.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

ntp disable
Prevent an interface from receiving NTP packets.

S4810
Syntax

ntp disable
To re-enable NTP on an interface, use the no ntp disable command.

Defaults

Disabled (that is, if you configure an NTP host, all interfaces receive NTP packets)

Command
Modes

INTERFACE

1652

System Time and Date

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

ntp multicast client
To receive NTP information from the network via multicast, configure the switch.

S4810
Syntax

ntp multicast client [multicast-address]
To disable multicast reception, use the no ntp multicast client
[multicast-address] command.

Parameters

multicastaddress

(OPTIONAL) Enter a multicast address. Enter either an IPv4
address in dotted decimal format or an IPv6 address in
X:X:X:X::X format. If you do not enter a multicast address, the
address:
•

224.0.1.1 is configured if the interface address is IPv4

•

ff05::101 is configured if the interface address is IPv6

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

System Time and Date

1653

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Added support for IPv6 multicast addresses.

Version 8.3.7.0

Introduced on the S4810.

pre-Version
6.1.1.0

Introduced on the E-Series.

ntp server
Configure an NTP time-serving host.

S4810
Syntax
Parameters

ntp server [vrf vrf-name] {hostname | ipv4-address | ipv6address} [key keyid] [prefer] [version number]
vrf vrf-name

(Optional) Enter the keyword vrf and then the name of the
VRF to configure a NTP time-serving host corresponding to
that VRF.

ipv4-address |
ipv6-address

Enter an IPv4 address (A.B.C.D) or IPv6 address (X:X:X:X::X).

hostname

Enter the hostname of the server.

key keyid

(OPTIONAL) Enter the keyword key and a number as the
NTP peer key. The range is from 1 to 4294967295.

prefer

(OPTIONAL) Enter the keyword prefer to indicate that this
peer has priority over other servers.

version number

(OPTIONAL) Enter the keyword version and a number to
correspond to the NTP version used on the server. The range
is from 1 to 3.

Defaults

Not configured.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1654

System Time and Date

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.4.1.0

Added IPv6 support.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

You can configure multiple time-serving hosts (up to 250). From these timeserving hosts, the Dell Networking OS chooses one NTP host with which to
synchronize. To determine which server was selected, use the show ntp
associations command.
Because many polls to NTP hosts can impact network performance, Dell
Networking recommends limiting the number of hosts configured.

Related
Commands

show ntp associations — displays the NTP servers configured and their status.

show calendar
Display the current date and time based on the switch hardware clock.

S4810
Syntax

show calendar

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

System Time and Date

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

1655

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

Example

Dell#show calendar
16:33:30 UTC Tue Jun 26 2001
Dell#

Related
Commands

show clock — displays the time and date from the switch software clock.

show clock
Display the current clock settings.

S4810
Syntax
Parameters

show clock [detail]
detail

(OPTIONAL) Enter the keyword detail to view the source
information of the clock.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1656

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

System Time and Date

Example

Dell#show clock
11:05:56.949 UTC Thu Oct 25 2001
Dell#

Example
(Detail)

Dell#show clock detail
12:18:10.691 UTC Wed Jan 7 2009
Time source is RTC hardware
Summer time starts 02:00:00 UTC Sun Mar 8 2009
Summer time ends 02:00:00 ABC Sun Nov 1 2009
Dell#

Related
Commands

clock summer-time recurring — displays the time and date from the switch
hardware clock.
show calendar — displays the time and date from the switch hardware clock.

show ntp associations
Display the NTP master and peers.

S4810
Syntax

show ntp associations

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

System Time and Date

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ntp associations command shown in the
Example below.

1657

Field

Description

(none)

One or more of the following symbols could be displayed:
•

* means synchronized to this peer.

•

# means almost synchronized to this peer.

•

+ means the peer was selected for possible
synchronization.

•

- means the peer is a candidate for selection.

•

~ means the peer is statically configured.

remote

Displays the remote IP address of the NTP peer.

ref clock

Displays the IP address of the remote peer’s reference clock.

st

Displays the peer’s stratum, that is, the number of hops
away from the external time source. A 16 in this column
means the NTP peer cannot reach the time source.

when

Displays the last time the switch received an NTP packet.

poll

Displays the polling interval (in seconds).

reach

Displays the reachability to the peer (in octal bitstream).

delay

Displays the time interval or delay for a packet to complete
a round-trip to the NTP time source (in milliseconds).

offset

Displays the relative time of the NTP peer’s clock to the
switch clock (in milliseconds).

disp

Displays the dispersion.

Example

Dell#show ntp associations
remote
ref clock st when poll reach delay offset disp
=============================================================
10.10.120.5 0.0.0.0
16 - 256
0 0.00 0.000 16000.0
*172.16.1.33 127.127.1.0 11 6 16
377
-0.08 -1499.9
104.16
172.31.1.33 0.0.0.0
16 - 256
0 0.00 0.000 16000.0
192.200.0.2 0.0.0.0
16 - 256
0 0.00 0.000 16000.0
* master (synced), # master (unsynced), + selected, - candidate
Dell#

Related
Commands

show ntp status — displays the current NTP status.

1658

System Time and Date

show ntp status
Display the current NTP status.

S4810
Syntax

show ntp status

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

System Time and Date

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.1.1.0

Introduced on the E-Series.

The following describes the show ntp status command shown in the Example
below.
Field

Description

“Clock is...”

States whether or not the switch clock is synchronized,
which NTP stratum the system is assigned and the IP
address of the NTP peer.

“frequency is...”

Displays the frequency (in ppm), stability (in ppm) and
precision (in Hertz) of the clock in this system.

“reference time
is...”

Displays the reference time stamp.

“clock offset is...”

Displays the system offset to the synchronized peer and the
time delay on the path to the NTP root clock.

“root dispersion
is...”

Displays the root and path dispersion.

“peer mode is...”

State what NTP mode the switch is. This should be Client
mode.

1659

Example

Dell#sh ntp status
Clock is synchronized, stratum 2, reference is 100.10.10.10
frequency is -32.000 ppm, stability is 15.156 ppm, precision
is 4294967290
reference time is BC242FD5.C7C5C000 (10:15:49.780 UTC Mon Jan
10 2000)
clock offset is clock offset msec, root delay is 0.01656 sec
root dispersion is 0.39694 sec, peer dispersion is peer
dispersion msec
peer mode is client
Dell#

Related
Commands

show ntp associations — displays information on the NTP master and peer
configurations.

1660

System Time and Date

60

u-Boot

All commands in this chapter are in u-Boot and are supported on the Dell Networking S4810 platform
only.
To access this mode, press any key when the following line appears on the console during a system boot.
Hit any key to stop autoboot:
Enter u-Boot immediately, as the => prompt indicates.
NOTE: This chapter describes only a few commands available in u-Boot. The commands included
here are those commands that are comparable to those commands found in Boot User mode on
other S-Series systems.
NOTE: You cannot use the Tab key to complete commands in this mode.

printenv
Display the current system boot variable and other system settings.

S4810
Syntax

printenv

Command
Modes

uBoot

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

u-Boot

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

=> printenv
baudrate=9600
uboot_filesize=0x80000
bootfile=FTOS-SC-1.2.0.0E3.bin
bootcmd=echo Booting primary bootline....;
$primary_boot;boot;echo
Failed;echo Booting secondary bootline....;
$secondary_boot;boot;echo
Failed;echo Booting default bootline....;
$default_boot;boot;echo Failed;echo
Rebooting...;reset

1661

bootdelay=5
loads_echo=1
rootpath=/opt/nfsroot
hostname=unknown
loadaddr=640000
ftpuser=force10
ftppasswd=force10
uboot=u-boot.bin
tftpflash=tftpboot $loadaddr $uboot; protect off 0xfff80000 +
$filesize;
erase 0x
fff80000 +$filesize; cp.b $loadaddr 0xfff80000 $filesize;
protect on
0xfff80000
+$filesize; cmp.b $loadaddr 0xfff80000 $filesize
ethact=eTSEC1
ethaddr=00:01:E8:82:09:B2
serverip=10.11.9.4
primary_boot=f10boot tftp://10.11.9.2/si-S4810-40g
secondary_boot=f10boot flash0
default_boot=f10boot tftp://192.168.128.1/FTOS-SC-1.2.0.0E3.bin
gatewayip=10.11.192.254
ipaddr=10.11.198.114
netmask=255.255.0.0
mgmtautoneg=true
mgmtspeed100=true
mgmtfullduplex=true
stdin=serial
stdout=serial
stderr=serial
Environment size: 1002/8188 bytes
=>
Usage
Information

1662

•

ethaddr=00:01:E8:82:09:B2 is the MAC address.

•

primary_boot=f10boot tftp://10.11.9.2/si-S4810-40g,
secondary_boot=f10boot flash0, and default_boot=f10boot
tftp://192.168.128.1/FTOS-SC-1.2.0.0E3.bin are the boot variables.

•

gatewayip=10.11.192.254 is the default gateway address.

•

ipaddr=10.11.198.114 is the management IP address.

u-Boot

reset
Reload the S4810 system.

S4810
Syntax

reset

Command
Modes

uBoot

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Save your changes before resetting the system or all your changes will be lost.

save
Save configurations created in uBoot.

S4810
Syntax

save

Command
Modes

uBoot

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

u-Boot

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Save your changes before resetting the system or all your changes will be lost.

1663

setenv
Configure system settings.

S4810
Syntax

Parameters

setenv [gatewayip address | primary_image f10boot location |
secondary_image f10boot location | default_image f10boot
location | ipaddre address | ethaddr address | enablepwdignore
| stconfigignore]
gatewayip
address

Enter the IP address for the default gateway.

primary_image

Enter the keywords primary_image to configure the boot
parameters used in the first attempt to boot Dell Networking
OS.

secondary_ima
ge

Enter the keywords secondary_image to configure boot
parameters used if the primary operating system boot
selection is not available.

default_image

Enter the keywords default_image to configure boot
parameters used if the secondary operating system boot
parameter selection is not available.
NOTE: The default location should always be the internal
flash device (flash:), and a verified image should be
stored there.

Command
Modes

1664

location

Enter the location of the image file to be loaded. When using
this command, the keyword f10boot must precede the
location. For example, primary_image f10boot tftp://
10.10.10.10/server.

ipaddr

Enter the keyword ippaddr to configure the system
management IP address.

ethaddr

Enter the keyword ethaddr to configure system
management MAC address.

address

Enter the IP address in standard IPv4 format and the MAC
address in standard MAC format.

enablepwdigno
re

Enter the keywords enableprdignore true to reload the
system software without the enable password configured.

stconfigignore

Enter the keywords stconfigignore true to ignore the
startup configuration file when reloading the system.

uBoot

u-Boot

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

u-Boot

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

1665

61

Tunneling
Tunneling is supported on the S4810 platform.

tunnel-mode
Enable a tunnel interface.

S4810
Syntax

tunnel mode {ipip | ipv6 | ipv6ip}[decapsulate-any]
To disable an active tunnel interface, use the no tunnel mode command.

Parameters

ipip

Enable tunnel in RFC 2003 mode and encapsulate IPv4
and/or IPv6 datagrams inside an IPv4 tunnel.

ipv6

Enable tunnel in RFC 2473 mode and encapsulate IPv4
and/or IPv6 datagrams inside an IPv6 tunnel.

ipv6ip

Enable tunnel in RFC 4213 mode and encapsulate IPv6
datagrams inside an IPv4 tunnel.

decapsulateany

(Optional) Enable tunnel in multipoint receive-only mode.

Defaults

None

Command
Modes

INTERFACE TUNNEL

Command
History

Usage
Information

Version 9.4(0.0)

Added the decapsulate-any command.

Version 9.2(0.0)

Introduced on the MXL 10/40GbE Switch IO Module.

To enable a tunnel interface, use this command. You must define a tunnel mode
for the tunnel to function. If you previously defined the tunnel destination or
source address, the tunnel mode must be compatible.
Including the decapsulate-any option causes the command to fail if any of the
following tunnel transmit options are configured: tunnel destination, tunnel dscp,
tunnel flow-label, tunnel hop-limit, or tunnel keepalive. Conversely, if you
configure any tunnel allow-remote entries, the tunnel—mode command fails
unless the decapsulate-any option is included

1666

Tunneling

Configuration of IPv6 commands over decapsulate-any tunnel causes an error.

tunnel source
Set a source address for the tunnel.

S4810
Syntax

tunnel source {ip-address | ipv6–address | interface-typenumber | anylocal}
To delete the current tunnel source address, use the no tunnel source
command.

Parameters

ip-address

Enter the source IPv4 address in A.B.C.D format.

ipv6–address

Enter the source IPv6 address in X:X:X:X::X format.

interface-typenumber

•

For a 100/1000 Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a 1–Gigabit Ethernet interface, enter the keyword
GigabitEthernet then the slot/port information.

•

For a port channel interface, enter the keywords portchannel then a number from 1 to 128.

•

For a 10–Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then a
number from 1 to 4094.

anylocal

Enter the anylocal command to allow the multipoint
receive-only tunnel to decapsulate tunnel packets destined
to any local ip address.

Defaults

none

Command
Modes

INTERFACE TUNNEL (conf-if-tu)

Command
History

Usage
Information

Tunneling

Version 9.4(0.0)

Added the tunnel source anylocal command.

Version 9.2(0.0)

Introduced on the MXL 10/40GbE Switch IO Module.

Added an optional keyword “anylocal” to the tunnel source command. The
anylocal argument can be used in place of the ip address or interface, but only with
the multipoint receive-only mode tunnels. The tunnel source anylocal command
allows the multipoint receive-only tunnel to decapsulate tunnel packets addressed

1667

to any IPv4 or IPv6 (depending on the tunnel mode) address configured on the
switch that is operationally Up.

tunnel keepalive
Configure the tunnel keepalive target, interval and attempts.

S4810
Syntax

tunnel keepalive {ip-address | ipv6-address}[interval
{seconds}] [attempts {count | unlimited}]
To disable the tunnel keepalive probes use the no tunnel keepalive command.

Parameters

ip-address ipv6
address

Enter the IPv4 or IPv6 address of the peer to which
the keepalive probes will be sent.

interval
seconds

Enter the keyword interval then the interval time, in
seconds, after which the restart process to keepalive probe
packets.
The range is from 5 to 255. The default is 5.

count

(OPTIONAL) Enter the keyword count to count packets
processed by the filter.
The range is from 3 to 10. The default is 3.

unlimited

Enter the keyword unlimited to specify the unlimited
number of keepalive probe packets.

Defaults

Tunnel keepalive is disabled.

Command
Modes

INTERFACE TUNNEL

Command
History
Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000 and Z9000.

Enabling tunnel keepalive causes ICMP echo packets to be sent to the keepalive
target. The ICMP echo will be sourced from the tunnel interface logical IPv4 or
IPv6 address and will be tunnel encapsulated. The response will be accepted
whether it returns tunnel encapsulated or not.
When configuring tunnel keepalive at both end points of a tunnel interface it is
recommended to set the tunnel keepalive target to the logical IPv4 or IPv6 address

1668

Tunneling

of the far end tunnel peer, rather than to the tunnel destination. This reduces the
chance of both ends of the tunnel staying in keepalive down state. If both ends get
into a keepalive down state that does not clear in a few seconds, then performing
shutdown - no shutdown sequence on one end should bring both ends back to
up.

tunnel allow-remote
Configure an IPv4 or IPv6 address or prefix whose tunneled packets are accepted for decapsulation. If
you do not configure allow-remote entries, tunneled packets from any remote peer address is accepted.

S4810
Syntax

tunnel allow-remote {ip-address | ipv6-address} [mask]
To delete a configured allow-remote entry use the no tunnel allow-remote
command. Any specified address/mask values must match an existing entry for the
delete to succeed. If the address and mask are not specified, this command deletes
all allow-remote entries.

Parameters

ip-address

Enter the source IPv4 address in A.B.C.D format.

ipv6–address

Enter the source IPv6 address in X:X:X:X::X format.

mask

(OPTIONAL) Enter a network mask in /prefix format (/x) or
A.B.C.D to match a range of remote addresses. The default
mask is /32 for IPv4 addresses and /128 for IPv6 addresses,
which match only the specified address.

Defaults

If you do not configure tunnel allow remote , all traffic which is destined to tunnel
source address is decapsulated.

Command
Modes

INTERFACE TUNNEL

Command
History
Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000 and Z9000.

You can configure up to eight allow-remote entries on any multipoint receive-only
tunnel.
This command fails if the address family entered does not match the outer header
address family of the tunnel mode, tunnel source, or any other tunnel allowremote.
If you configure any allow-remote , the tunnel source or tunnel mode commands
fail if the outer header address family does not match that of the configured allowremote.

Tunneling

1669

tunnel dscp
Configure the method to set the DSCP in the outer tunnel header.

S4810
Syntax

tunnel dscp {mapped | }
To use the default tunnel mapping behavior, use the no tunnel dscp value
command.

Parameters

mapped

Enter the keyword mapped to map the original packet DSCP
(IPv4)/Traffic Class (IPv6) to the tunnel header DSCP (IPv4)/
Traffic Class (IPv6) depending on the mode of tunnel.

value

Enter a value to set the DSCP value in the tunnel header. The
range is from 0 to 63. The default value of 0 denotes
mapping of original packet DSCP (IPv4)/Traffic Class (IPv6) to
the tunnel header DSCP (IPv4)/Traffic Class (IPv6) depending
on the mode of tunnel.

Defaults

0 (Mapped)

Command
Modes

INTERFACE TUNNEL (conf-if-tu)

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S6000, S4810, S4820T, Z9000.

This command configures the method used to set the high 6 bits (the differentiated
services codepoint) of the IPv4 TOS or the IPv6 traffic class in the outer IP header.
A value of 0 copies original packet DSCP (IPv4)/Traffic Class (IPv6) to the tunnel
header DSCP (IPv4)/Traffic Class (IPv6) depending on the mode of tunnel.

tunnel flow-label
Configure the method to set the IPv6 flow label value in the outer tunnel header.

S4810
Syntax

tunnel flow-label value
To return to the default value of 0, use the no tunnel flow-label value
command.

Parameters

1670

value

Enter a value to set the IPv6 flow label value in the tunnel
header. The range is from 0 to 1048575. The default value is
0.

Tunneling

Defaults

0 (Mapped original packet flow-label value to tunnel header flow-label value)

Command
Modes

INTERFACE TUNNEL (conf-if-tu)

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S6000, S4810, S4820T, Z9000.

This command is only valid for tunnel interfaces with an IPv6 outer header.

tunnel hop-limit
Configure the method to set the IPv4 time-to-live or the IPv6 hop limit value in the outer tunnel header.

S4810
Syntax

tunnel hop-limit value
To restore the default tunnel hop-limit, use the no tunnel hop-limit
command.

Parameters

value

Enter the hop limit (ipv6) or time-to-live (ipv4) value to
include in the tunnel header. The range is from 0 to 255. The
default is 64.

Defaults

64 (Time-to-live for IPv4 outer tunnel header or hop limit for IPv6 outer tunnel
header)

Command
Modes

INTERFACE TUNNEL (conf-if-tu)

Command
History
Usage
Information

Tunneling

Version 9.3(0.0)

Introduced on the S6000, S4810, S4820T, Z9000.

A value of 0 copies the inner packet hop limit (ipv6) or time-to-live (ipv4) in the
encapsulated packet to the tunnel header hop limit (ipv6) or time-to-live (ipv4)
value.

1671

tunnel destination
Set a destination endpoint for the tunnel.

S4810
Syntax

tunnel destination {ip-address | ipv6–address}
To delete a tunnel destination address, use the no tunnel destination {ipaddress | ipv6–address} command.

Parameters

ip-address

Enter the destination IPv4 address for the tunnel.

ipv6–address

Enter the destination IPv6 address for the tunnel.

Defaults

none

Command
Modes

INTERFACE TUNNEL (conf-if-tu)

Command
History
Usage
Information

Version 9.3(0.0)

Introduced on the S4810, S4820T, S6000 and Z9000.

The tunnel interface is inoperable without a valid tunnel destination address for the
configured Tunnel mode.
To establish a logical tunnel to the particular destination address, use the
destination address of the outer tunnel header. If you configure a tunnel interface
or source address, the tunnel destination must be compatible.

ip unnumbered
Configure a tunnel interface to operate without a unique IPv4 address and select the interface from
which the tunnel borrows its address.

S4810
Syntax

ip unnumbered {interface-type interface-number}
To set the tunnel back to default logical address use the no ip unnumbered
command. If the tunnel was previously operational, the tunnel interface is
operationally down unless you also configure the tunnel IPv6 address.

Parameters

1672

interface-type
interfacenumber

Enter the interface type, followed by a slot number.

Tunneling

Defaults

None

Command
Modes

INTERFACE TUNNEL

Command
History
Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000 and Z9000.

The ip unnumbered command fails in two conditions:
•

If the logical ip address is configured.

•

If Tunnel mode is ipv6ip (where ip address over tunnel interface is not possible).

To ping the unnumbered tunnels, the logical address route information must be
present at both the ends.
NOTE: The ip unnumbered command can specify an interface name that does not exist or does
not have a configured IPv6 address. The tunnel interface is not changed to operationally up until
logical ip address is identified from the one of the address family.

ipv6 unnumbered
Configure a tunnel interface to operate without a unique IPv6 address and select the interface from
which the tunnel borrows its address.

S4810
Syntax

ipv6 unnumbered {interface-type interface-number}
To set the tunnel back to default logical address use the no ipv6 unnumbered
command. If the tunnel was previously operational, the tunnel interface is
operationally down unless you also configure the tunnel IPv4 address.

Parameters

interface-type
interfacenumber

Defaults

None.

Command
Modes

INTERFACE TUNNEL

Command
History
Usage
Information

Tunneling

Version 9.4(0.0)

Enter the interface type, followed by the type, slot and port
information.

Introduced on the S4810, S4820T, S6000 and Z9000.

The ip unnumbered command fails in two conditions:
•

If the logical ip address is configured.

1673

•

If Tunnel mode is ipv6ip (where ip address over tunnel interface is not possible).

To ping the unnumbered tunnels, the logical address route information must be
present at both the ends.
NOTE: The ipv6 unnumbered command can specify an interface name that
does not exist or does not have a configured IPv6 address. The tunnel
interface is not changed to operationally up until the logical ip address is
identified from the one of the address family.

1674

Tunneling

Uplink Failure Detection (UFD)

62

Uplink failure detection (UFD) provides detection of the loss of upstream connectivity and, if you use this
with NIC teaming, automatic recovery from a failed link.

clear ufd-disable
Re-enable one or more downstream interfaces on the switch/router that are in a UFD-Disabled Error
state so that an interface can send and receive traffic.

S4810
Syntax
Parameters

clear ufd-disable {interface interface | uplink-state-group
group-id}
interface
interface

Specify one or more downstream interfaces. For interface,
enter one of the following interface types:
•

Fast Ethernet: fastethernet {slot/port | slot/
port-range}

•

1 Gigabit Ethernet: gigabitethernet {slot/port |
slot/ port-range}

•

10 Gigabit Ethernet: tengigabitethernet {slot/
port |slot/ port-range}

•

Port channel: port-channel {1-512 | portchannel-range}

Where port-range and port-channel-range specify a
range of ports separated by a dash (-) and/or individual
ports/port channels in any order; for example:
gigabitethernet 1/1-2,5,9,11-12 port-channel
1-3,5. A comma is required to separate each port and portrange entry.
uplink-stategroup group-id

Re-enables all UFD-disabled downstream interfaces in the
group. The valid group-id values are from 1 to 16.

Defaults

A downstream interface in a UFD-disabled uplink-state group is also disabled and is
in a UFD-Disabled Error state.

Command
Modes

CONFIGURATION

Uplink Failure Detection (UFD)

1675

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

•

downstream — assigns a port or port-channel to the uplink-state group as a
downstream interface.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

debug uplink-state-group
Enable debug messages for events related to a specified uplink-state group or all groups.

S4810
Syntax

debug uplink-state-group [group-id]
To turn off debugging event messages, enter the no debug uplink-stategroup [group-id] command.

Parameters

group-id

Enables debugging on the specified uplink-state group. The
valid group-id values are from 1 to 16.

Defaults

none

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

1676

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Uplink Failure Detection (UFD)

Related
Commands

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

clear ufd-disable — re-enables downstream interfaces that are in a UFD-Disabled
Error state.

description
Enter a text description of an uplink-state group.

S4810
Syntax
Parameters

description text
text

Text description of the uplink-state group. The maximum
length is 80 alphanumeric characters.

Defaults

none

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

Example

Dell(conf-uplink-state-group-16)# description test
Dell(conf-uplink-state-group-16)#

Related
Commands

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

Uplink Failure Detection (UFD)

1677

downstream
Assign a port or port-channel to the uplink-state group as a downstream interface.

S4810
Syntax

downstream interface
To delete an uplink-state group, enter the no downstream interface
command.

Parameters

interface

Enter one of the following interface types:
•

Fast Ethernet: fastethernet {slot/port | slot/
port-range}

•

1 Gigabit Ethernet: gigabitethernet {slot/port |
slot/port-range}

•

10 Gigabit Ethernet: tengigabitethernet {slot/
port |slot/port-range}

•

Port channel: port-channel {1-512 | portchannel-range}

Where port-range and port-channel-range specify a
range of ports separated by a dash (-) and/or individual
ports/port channels in any order; for example:
gigabitethernet 1/1-2,5,9,11-12 port-channel
1-3,5. A comma is required to separate each port and portrange entry.

Defaults

none

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1678

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

Uplink Failure Detection (UFD)

Usage
Information

You can assign physical port or port-channel interfaces to an uplink-state group.
You can assign an interface to only one uplink-state group. Configure each
interface assigned to an uplink-state group as either an upstream or downstream
interface, but not both.
You can assign individual member ports of a port channel to the group. An uplinkstate group can contain either the member ports of a port channel or the port
channel itself, but not both.

Related
Commands

•

upstream — assigns a port or port-channel to the uplink-state group as an
upstream interface.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

downstream auto-recover
Enable auto-recovery so that UFD-disabled downstream ports in an uplink-state group automatically
come up when a disabled upstream port in the group comes back up.

S4810
Syntax

downstream auto-recover
To disable auto-recovery on downstream links, use the no downstream autorecover command.

Defaults

The auto-recovery of UFD-disabled downstream ports is enabled.

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

Uplink Failure Detection (UFD)

1679

Related
Commands

•

downstream — assigns a port or port-channel to the uplink-state group as a
downstream interface.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

downstream disable links
Configure the number of downstream links in the uplink-state group that are disabled if one upstream
link in an uplink-state group goes down.

S4810
Syntax

downstream disable links {number |all}
To revert to the default setting, use the no downstream disable links
command.

Parameters

number

Enter the number of downstream links to be brought down
by UFD. The range is from 1 to 1024.

all

Brings down all downstream links in the group.

Defaults

No downstream links are disabled when an upstream link in an uplink-state group
goes down.

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

1680

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

A user-configurable number of downstream interfaces in an uplink-state group are
put into a link-down state with an UFD-Disabled error message when one
upstream interface in an uplink-state group goes down.

Uplink Failure Detection (UFD)

If all upstream interfaces in an uplink-state group go down, all downstream
interfaces in the same uplink-state group are put into a link-down state.
Related
Commands

•

downstream — assigns a port or port-channel to the uplink-state group as a
downstream interface.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

enable
Enable uplink state group tracking for a specific UFD group.

S4810
Syntax

enable
To disable upstream-link tracking without deleting the uplink-state group, use the
no enable command.

Defaults

Upstream-link tracking is automatically enabled in an uplink-state group.

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

Uplink Failure Detection (UFD)

1681

show running-config uplink-state-group
Display the current configuration of one or more uplink-state groups.

S4810
Syntax
Parameters

show running-config uplink-state-group [group-id]
group-id

Displays the current configuration of all uplink-state groups
or a specified group. The valid group-id values are from 1 to
16.

Defaults

none

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Related
Commands

1682

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

Dell#show running-config uplink-state-group
!
no enable
uplink state track 1
downstream GigabitEthernet 0/2,4,6,11-19
upstream TengigabitEthernet 0/48, 52
upstream PortChannel 1
!
uplink state track 2
downstream GigabitEthernet 0/1,3,5,7-10
upstream TengigabitEthernet 0/56,60
•

show uplink-state-group — displays the status information on a specified
uplink-state group or all groups.

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

Uplink Failure Detection (UFD)

show uplink-state-group
Display status information on a specified uplink-state group or all groups.

S4810
Syntax
Parameters

Defaults
Command
Modes
Command
History

show uplink-state-group [group-id] [detail]
group-id

Displays status information on a specified uplink-state group
or all groups. The valid group-id values are from 1 to 16.

detail

Displays additional status information on the upstream and
downstream interfaces in each group

none
•
•

EXEC
EXEC Privilege

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

Dell# show uplink-state-group
Uplink State Group: 1 Status: Enabled, Up
Uplink State Group: 3 Status: Enabled, Up
Uplink State Group: 5 Status: Enabled, Down
Uplink State Group: 6 Status: Enabled, Up
Uplink State Group: 7 Status: Enabled, Up
Uplink State Group: 16 Status: Disabled, Up
Dell# show uplink-state-group 16
Uplink State Group: 16 Status: Disabled, Up
Dell#show uplink-state-group detail
(Up): Interface up (Dwn): Interface down (Dis): Interface
disabled
Uplink State Group
: 1 Status: Enabled, Up
Upstream Interfaces
:
Downstream Interfaces :
Uplink State Group
: 3 Status: Enabled, Up
Upstream Interfaces
: Gi 0/46(Up) Gi 0/47(Up)
Downstream Interfaces : Te 13/0(Up) Te 13/1(Up) Te 13/3(Up) Te

Uplink Failure Detection (UFD)

1683

13/5(Up) Te 13/6(Up)
Uplink State Group
: 5 Status: Enabled, Down
Upstream Interfaces
: Gi 0/0(Dwn) Gi 0/3(Dwn) Gi 0/5(Dwn)
Downstream Interfaces : Te 13/2(Dis) Te 13/4(Dis) Te
13/11(Dis) Te 13/12(Dis) Te 13/13(Dis) Te 13/14(Dis) Te
13/15(Dis)
Uplink State Group
: 6 Status: Enabled, Up
Upstream Interfaces
:
Downstream Interfaces :
Uplink State Group
: 7 Status: Enabled, Up
Upstream Interfaces
:
Downstream Interfaces :
Uplink State Group
: 16 Status: Disabled, Up
Upstream Interfaces
: Gi 0/41(Dwn) Po 8(Dwn)
Downstream Interfaces : Gi 0/40(Dwn)
Related
Commands

•

show running-config uplink-state-group — displays the current configuration
of one or more uplink-state groups.

•

uplink-state-group — create an uplink-state group and enables the tracking of
upstream links.

uplink-state-group
Create an uplink-state group and enable the tracking of upstream links on a switch/ router.

S4810
Syntax

uplink-state-group group-id
To delete an uplink-state group, enter the no uplink-state-group group-id
command.

Parameters

group-id

Enter the ID number of an uplink-state group. The range is
from 1 to 16.

Defaults

none

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

1684

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Uplink Failure Detection (UFD)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

After you enter the command, to assign upstream and downstream interfaces to
the group, enter Uplink-State-Group Configuration mode.
An uplink-state group is considered to be operationally up if at least one upstream
interface in the group is in the Link-Up state.
An uplink-state group is considered to be operationally down if no upstream
interfaces in the group are in the Link-Up state. No uplink-state tracking is
performed when a group is disabled or in an operationally down state.
To disable upstream-link tracking without deleting the uplink-state group, use the
no enable command in uplink-state-group configuration mode.

Example

Related
Commands

Dell(conf)#uplink-state-group 16
Dell(conf)#
02:23:17: %RPM0-P:CP %IFMGR-5-ASTATE_UP: Changed uplink state
group Admin state to up: Group 16
•

show running-config uplink-state-group — displays the current configuration
of one or more uplink-state groups.

•

show uplink-state-group — displays the status information on a specified
uplink-state group or all groups.

upstream
Assign a port or port-channel to the uplink-state group as an upstream interface.

S4810
Syntax

upstream interface
To delete an uplink-state group, use the no upstream interface command.

Parameters

interface

Uplink Failure Detection (UFD)

Enter one of the following interface types:
•

Fast Ethernet: fastethernet {slot/port | slot/
port-range}

•

1 Gigabit Ethernet: gigabitethernet {slot/port |
slot/port-range}

•

10 Gigabit Ethernet: tengigabitethernet {slot/
port | slot/port-range}

1685

•

40 Gigabit Ethernet: fortyGigE {slot/port | slot/
port-range}

•

Port channel: port-channel {1-512 | portchannel-range}

Where port-range and port-channel-range specify a
range of ports separated by a dash (-) and/or individual
ports/port channels in any order; for example:
gigabitethernet 1/1-2,5,9,11-12 port-channel
1-3,5. A comma is required to separate each port and portrange entry.

Defaults

none

Command
Modes

UPLINK-STATE-GROUP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Version 8.4.2.3

Introduced on the S-Series S50.

You can assign physical port or port-channel interfaces to an uplink-state group.
You can assign an interface to only one uplink-state group. Configure each
interface assigned to an uplink-state group as either an upstream or downstream
interface, but not both.
You can assign individual member ports of a port channel to the group. An uplinkstate group can contain either the member ports of a port channel or the port
channel itself, but not both.

Example

Related
Commands

1686

Dell(conf-uplink-state-group-16)# upstream gigabitethernet
1/10-15
Dell(conf-uplink-state-group-16)#
•

downstream — assigns a port or port-channel to the uplink-state group as a
downstream interface.

Uplink Failure Detection (UFD)

•

uplink-state-group — creates an uplink-state group and enables the tracking of
upstream links.

Uplink Failure Detection (UFD)

1687

VLAN Stacking

63

With the virtual local area network (VLAN)-stacking feature (also called stackable VLANs and QinQ), you
can “stack” VLANs into one tunnel and switch them through the network transparently.
The Dell Networking operating software supports this feature on the S4810 platform.
For more information about basic VLAN commands, refer to the Virtual LAN (VLAN) Commands section in
the Layer 2 chapter.

Important Points to Remember
•

If you do not enable the spanning tree protocol (STP) across the stackable VLAN network, STP bridge
protocol data units (BPDUs) from the customer’s networks are tunneled across the stackable VLAN
network.

•

If you do enable STP across the stackable VLAN network, STP BPDUs from the customer’s networks
are consumed and not tunneled across the stackable VLAN network unless you enable protocol
tunneling.
NOTE: For more information about protocol tunneling on the E-Series, refer to Service Provider
Bridging.

•

Layer 3 protocols are not supported on a stackable VLAN network.

•

Assigning an IP address to a stackable VLAN is supported when all the members are only stackable
VLAN trunk ports. IP addresses on a stackable VLAN-enabled VLAN are not supported if the VLAN
contains stackable VLAN access ports. This facility is provided for the simple network management
protocol (SNMP) management over a stackable VLAN-enabled VLAN containing only stackable VLAN
trunk interfaces. Layer 3 routing protocols on such a VLAN are not supported.

•

Dell Networking recommends that you do not use the same MAC address, on different customer
VLANs, on the same stackable VLAN.

•

Interfaces configured using stackable VLAN access or stackable VLAN trunk commands do not switch
traffic for the default VLAN. These interfaces are switch traffic only when they are added to a nondefault VLAN.

•

Starting with Dell Networking OS version 7.8.1 for C-Series and S-Series (Dell Networking OS version
7.7.1 for E-Series, 8.2.1.0 for E-Series ExaScale), a vlan-stack trunk port is also allowed to be
configured as a tagged port and as an untagged port for single-tagged VLANs. When the vlan-stack
trunk port is also a member of an untagged vlan, the port must be in Hybrid mode. Refer to portmode
hybrid.

1688

VLAN Stacking

dei enable
Make packets eligible for dropping based on their DEI value.

S4810
Syntax

dei enable

Defaults

Packets are colored green; no packets are dropped.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the C-Series and S-Series.

dei honor
Honor the incoming DEI value by mapping it to an Dell Networking OS drop precedence. Enter the
command once for 0 and once for 1.

S4810
Syntax
Parameters

Defaults

VLAN Stacking

dei honor {0 | 1} {green | red | yellow}
0|1

Enter the bit value you want to map to a color.

green | red |
yellow

Choose a color:
•

Green: High priority packets that are the least preferred
to be dropped.

•

Yellow: Lower priority packets that are treated as besteffort.

•

Red: Lowest priority packets that are always dropped
(regardless of congestion status).

Disabled; Packets with an unmapped DEI value are colored green.

1689

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the C-Series and S-Series.

Usage
Information

You must first enable DEI for this configuration to take effect.

Related
Commands

dei enable — Make packets eligible for dropping based on their DEI value.

dei mark
Set the DEI value on egress according to the color currently assigned to the packet.

S4810
Syntax
Parameters

dei mark {green | yellow} {0 | 1}
0|1

Enter the bit value you want to map to a color.

green | red |
yellow

Choose a color:
•

Green: High priority packets that are the least preferred
to be dropped.

•

Yellow: Lower priority packets that are treated as besteffort.

Defaults

All the packets on egress are marked with DEI 0.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1690

VLAN Stacking

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Instroduces on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the C-Series and S-Series.

Usage
Information

You must first enable DEI for this configuration to take effect.

Related
Commands

dei enable – Make packets eligible for dropping based on their DEI value.

member
Assign a stackable VLAN access or trunk port to a VLAN. The VLAN must contain the vlan-stack
compatible command in its configuration.

S4810
Syntax

member interface
To remove an interface from a Stackable VLAN, use the no member interface
command.

Parameters

interface

Enter the following keywords and slot/port or number
information:
•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
GigabitEthernet followed by the slot/ port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabyte Ethernet interface, enter the keyword
fortyGigE then the slot/ port information.

Defaults

Not configured.

Command
Modes

CONF-IF-VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

VLAN Stacking

1691

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

E-Series
original
Command
Usage
Information

You must enable the stackable VLAN (using the vlan-stack compatible
command) on the VLAN prior to adding a member to the VLAN.

Related
Commands

vlan-stack compatible — enables stackable VLAN on a VLAN.

stack-unit stack-group
Configure a stacking group specified by an ID.

S4810
Syntax
Parameters

[no] stack-unit unit-id stack-group stack-group-id
unit-id

Enter the stack unit ID.

stack-group-id

Enter the stack group ID. The range is from 0 to 16.

[no]

Use no stack-unit unit-id stack-group stack-id
to remove the current stack group configuration.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1692

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.2

Introduced on the S4810.

VLAN Stacking

Usage
Information

WARNING: The following message displays to confirm the command: All
non-default configurations on the related member ports
ports () will be removed. Do you want to
continue (y/n)? If you enter “y”, all non-default configurations on any
member ports of the current stack group is removed when the unit is
rebooted.

vlan-stack access
Specify a Layer 2 port or port channel as an access port to the stackable VLAN network.

S4810
Syntax

vlan-stack access
To remove access port designation, use the no vlan-stack access command.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

E-Series
original
Command
Usage
Information

Prior to enabling this command, to place the interface in Layer 2 mode, enter the
switchport command.
To remove the access port designation, remove the port (using the no member
interface command) from all stackable VLAN enabled VLANs.

VLAN Stacking

1693

vlan-stack compatible
Enable the stackable VLAN feature on a VLAN.

S4810
Syntax

vlan-stack compatible
To disable the Stackable VLAN feature on a VLAN, use the no vlan-stack
compatible command.

Defaults

Not configured.

Command
Modes

CONF-IF-VLAN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

E-Series
original
Command
Usage
Information

Prior to disabling the stackable VLAN feature, remove the members.
To view the stackable VLANs, use the show vlan command in EXEC Privilege
mode. Stackable VLANs contain members, designated by the M in the Q column of
the command output.

Example

Dell#show vlan
Codes: * - Default VLAN, G - GVRP VLANs
*

1694

NUM
1
2

Status
Inactive
Active

3

Active

4

Active

Q Ports
M
M
M
M
M
M
M

Gi 13/13
Gi 13/0-2
Po1(Gi 13/14-15)
Gi 13/18
Gi 13/3
Po1(Gi 13/14-15)
Gi 13/18

VLAN Stacking

5

Active

Dell#

M
M
M
M

Gi 13/4
Po1(Gi 13/14-15)
Gi 13/18
Gi 13/5

vlan-stack dot1p-mapping
Map C-Tag dot1p values to a S-Tag dot1p value. You can separate the C-Tag values by commas and
dashed ranges are permitted. Dynamic mode CoS overrides any Layer 2 QoS configuration in case of
conflicts.

S4810
Syntax
Parameters

vlan-stack dot1p-mapping c-tag-dot1p values sp-tag-dot1p value
c-tag-dot1p
value

Enter the keyword c-tag-dot1p then the customer dot1p
value that is mapped to a service provider do1p value. The
range is from 0 to 7.

sp-tag-dot1p
value

Enter the keyword sp-tag-dot1p then the service provider
dot1p value. The range is from 0 to 7.

Defaults

none

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

VLAN Stacking

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.3.1.0

Introduced on the C-Series and S-Series.

1695

vlan-stack protocol-type
Define the stackable VLAN tag protocol identifier (TPID) for the outer VLAN tag (also called the VMAN
tag). If you do not configure this command, Dell Networking OS assigns the value 0x9100.

S4810
Syntax
Parameters

vlan-stack protocol-type number
number

Enter the hexadecimal number as the stackable VLAN tag.
You may specify both bytes of the 2-byte S-Tag TPID. The
range is from 0 to FFFF. The default is 9100.

Defaults

0x9100

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale. C-Series and S-Series
accept both bytes of the 2-byte S-Tag TPID.

Version 8.2.1.0

Introduced on the E-Series ExaScale.

Version 7.6.1.0

Introduced on the C-Series and S-Series.

E-Series
original
Command
Usage
Information

For specific interoperability limitations regarding the S-Tag TPID, refer to the Dell
Networking OS Configuration Guide.
The four characters you enter in the CLI for number are interpreted, as shown in
the following table.

1696

Number

Resulting TPID

1

0x0001

10

0x0010

VLAN Stacking

Related
Commands

Number

Resulting TPID

81

0x0081

8100

0x8100

portmode hybrid — sets a port (physical ports only) to accept both tagged and
untagged frames. A port configured this way is identified as a hybrid port in report
displays.
vlan-stack trunk — specifies a Layer 2 port or port channel as a trunk port to the
Stackable VLAN network.

vlan-stack trunk
Specify a Layer 2 port or port channel as a trunk port to the Stackable VLAN network.

S4810
Syntax

vlan-stack trunk
To remove a trunk port designation from the selected interface, use the no vlanstack trunk command.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

VLAN Stacking

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 8.2.1.0

Introduced on the E-Series ExaScale. C-Series and S-Series
accept both bytes of the 2-byte S-Tag TPID.

Version 7.8.1.0

Functionality augmented for C-Series and S-Series to enable
multi-purpose use of the port.

Version 7.7.1.0

Functionality augmented for E-Series to enable multipurpose use of the port.

1697

Version 7.6.1.0

Introduced on the C-Series and S-Series.

E-Series
original
Command
Usage
Information

Prior to using this command, to place the interface in Layer 2 mode, execute the
switchport command.
To remove the trunk port designation, first remove the port (using the no member
interface command) from all stackable VLAN-enabled VLANs.
Starting with Dell Networking OS version 7.8.1.0, a VLAN-Stack trunk port is also
allowed to be configured as a tagged port and as an untagged port for singletagged VLANs. When the VLAN-Stack trunk port is also a member of an untagged
VLAN, the port must be in Hybrid mode. Refer to portmode hybrid.
In Example 1, a VLAN-Stack trunk port is configured and then also made part of a
single-tagged VLAN.
In Example 2, the tag protocol identifier (TPID) is set to 8848. The “Gi 3/10” port is
configured to act as a VLAN-Stack access port, while the “TenGi 8/0” port acts as a
VLAN-Stack trunk port, switching stackable VLAN traffic for VLAN 10, while also
switching untagged traffic for VLAN 30 and tagged traffic for VLAN 40. (To allow
VLAN 30 traffic, the native VLAN feature is required, by executing the portmode
hybrid command. Refer to portmode hybrid in Interfaces.

Example 1

1698

Dell(conf-if-gi-0/42)#switchport
Dell(conf-if-gi-0/42)#vlan-stack trunk
Dell(conf-if-gi-0/42)#show config
!
interface GigabitEthernet 0/42
no ip address
switchport
vlan-stack trunk
no shutdown
Dell(conf-if-gi-0/42)#interface vlan 100
Dell(conf-if-vl-100)#vlan-stack compatible
Dell(conf-if-vl-100-stack)#member gigabitethernet 0/42
Dell(conf-if-vl-100-stack)#show config
!
interface Vlan 100
no ip address
vlan-stack compatible
member GigabitEthernet 0/42
shutdown
Dell(conf-if-vl-100-stack)#interface vlan 20
Dell(conf-if-vl-20)#tagged gigabitethernet 0/42
Dell(conf-if-vl-20)#show config
!
interface Vlan 20
no ip address
tagged GigabitEthernet 0/42
shutdown
Dell(conf-if-vl-20)#do show vlan
Codes: * - Default VLAN, G - GVRP VLANs
Q: U - Untagged, T - Tagged

VLAN Stacking

x - Dot1x untagged, X - Dot1x tagged
G - GVRP tagged, M - Vlan-stack
NUM Status Description
* 1
Inactive
20
Active
100 Active
Dell(conf-if-vl-20)#
Example 2

Q Ports
T Gi 0/42
M Gi 0/42

Dell(config)#vlan-stack protocol-type 88A8
Dell(config)#interface gigabitethernet 3/10
Dell(conf-if-gi-3/10)#no shutdown
Dell(conf-if-gi-3/10)#switchport
Dell(conf-if-gi-3/10)#vlan-stack access
Dell(conf-if-gi-3/10)#exit
Dell(config)#interface tenGigabitethernet 8/0
Dell(conf-if-te-10/0)#no shutdown
Dell(conf-if-te-10/0)#portmode hybrid
Dell(conf-if-te-10/0)#switchport
Dell(conf-if-te-10/0)#vlan-stack trunk
Dell(conf-if-te-10/0)#exit
Dell(config)#interface vlan 10
Dell(conf-if-vlan)#vlan-stack compatible
Dell(conf-if-vlan)#member Gi 7/0, Gi 3/10, TenGi 8/0
Dell(conf-if-vlan)#exit
Dell(config)#interface vlan 30
Dell(conf-if-vlan)#untagged TenGi 8/0
Dell(conf-if-vlan)#exit
Dell(config)#
Dell(config)#interface vlan 40
Dell(conf-if-vlan)#tagged TenGi 8/0
Dell(conf-if-vlan)#exit
Dell(config)#

VLAN Stacking

1699

Virtual Routing and Forwarding (VRF)

64

Virtual Routing and Forwarding (VRF) allows multiple instances of a routing table to co-exist on the same
router at the same time. Virtual Routing and Forwarding (VRF) is supported on the S-Series platforms.

ip vrf
Creates a customer VRF.

S4810
Syntax

ip vrf {vrf-name | management} [vrf_id]
To delete a customer VRF, use the no ip vrf {vrf-name | management}
[vrf_id] command.

Parameters

vrf-name

Enter the name of the VRF that you want to create.

management

Enter the name of the management VRF.

vrf_id

Enter the ID of the VRF that you want to create.

Defaults

Available by default.

Command
Modes

CONFIG

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OSCommand Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4(0.0)

Usage
Information

1700

Introduced on the S4810 and S4820T.

Use this command to create or delete a customer VRF. You cannot use the
keyword default as a VRF name as it indicates a special VRF. Use the keyword
management to create a management VRF. You need not provide a VRF ID while
creating a management VRF. For other types of VRFs, VRF ID is an optional
parameter. All values in the valid range that are not already taken are allowed.

Virtual Routing and Forwarding (VRF)

description
Enables you to specify a descriptive name for a customer VRF.

S4810
Syntax

description string
To delete the descriptive name for a customer VRF, use the no description
string command.

Parameters

string

Enter a descriptive name for the VRF.

Defaults

None.

Command
Modes

VRF MODE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series.

Use this command to specify a descriptive name for a VRF.

ip vrf forwarding
Enables you to attach an interface to a VRF.

S4810
Syntax

ip vrf forwarding {vrf-name | management}
To delete an interface associated with a configured VRF, use the no ip vrf
forwarding {vrf-name | management} command.

Parameters

vrf-name

Enter the name of the VRF that you want to create.

management

Enter the name of the management VRF.

Defaults

None (Interface is part of default VRF).

Command
Modes

INTERFACE-CONFIG

Virtual Routing and Forwarding (VRF)

1701

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Version 8.2.1.0

Introduced on the E-Series.

Version

Introduced on the S4810.

Version

Introduced on the S-Series.

Version

Introduced on the C-Series.

Version

Introduced support for telnetting to the VRRP group IP
address assigned using this command.

pre-Version

Introduced on the E-Series.

Use this command to attach an interface to a configured VRF. You can attach an
interface to either a non-default VRF or a management VRF. To assign a port-back
to a default VRF, remove the interface associated with the VRF. You can use this
only if there is no IP address configured on the interface.
There must be no prior Layer 3 configuration on the interface when configuring
VRF.
VRF must be enabled prior to implementing this command.
You can configure an IP subnet or address on a physical or VLAN interface that
overlaps the same IP subnet or address configured on another interface only if the
interfaces are assigned to different VRFs. If two interfaces are assigned to the same
VRF, you cannot configure overlapping IP subnets or the same IP address on them.

Example

1702

Dell#int gi 1/10
Dell#show config
! interface GigabitEthernet 1/10 no ip address shutdown
Dell#
Dell#ip vrf ?
Dell#ip vrf forwarding East
Dell#show config
! interface GigabitEthernet 1/10 ip vrf forwarding East no ip
address shutdown
Dell#

Virtual Routing and Forwarding (VRF)

interface management
Associates a management port with a management VRF.

S4810
Syntax

interface management
To delete the association between a management port and a management VRF,
use the no interface management command.

Defaults

None.

Command
Modes

VRF MODE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Usage
Information

Introduced on the S-Series and Z-Series.

Use this command to associate a management port with a management VRF.
When you execute this command, the management ports corresponding to both
the ACTIVE unit as well as the STANDBY unit are associated with the management
VRF.

maximum dynamic-routes
Specify the maximum number of dynamic (protocol) routes a VRF can have.

S4810 S6000
Syntax

maximum dynamic-routes limit {warn-threshold threshold-value |
warning-only}
To remove the limit on the maximum number of routes used, use the no maximum
dynamic-routes command.

Parameters

limit

Maximum number of routes allowed in a VRF. Valid range is
from 1 to 16,000 (or maximum allowable for that platform if
smaller value).

warningthreshold

Warning threshold value is expressed as a percentage of the
limit value. When the number of routes reaches the specified
percentage of the limit, a warning message is generated.
Valid range is 1 to 100. When warn-threshold is used, once

Virtual Routing and Forwarding (VRF)

1703

the limit is reached, additional dynamic routes will not be
allowed.
warning-only

When the warning-only option is used, a syslog message will
be thrown when maximum number of dynamic routes
reaches the limit. Additional dynamic routes will still allowed.

Defaults

No limit is set on the maximum number of dynamic routes for a VRF.

Command
Modes

CONFIGURATION-VRF

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OSCommand Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4(0.0)

Usage
Information

Introduced on the S–Series.

If the maximum route limit is not specified for a VRF, then it has unlimited space
that extends to the maximum number of entries allowed for the system. This
command is not applicable to the default and management VRFs.

show ip vrf
Displays information corresponding to the VRFs that are configured in the system.

S4810
Syntax
Parameters

show ip [vrf vrf-name]
vrf vrf-name

Enter the keyword vrf and then the name of the VRF to
display information corresponding to that VRF..

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

1704

Version 9.4.
(0.0)

Introduced on the S-Series and Z-Series.

Version 8.2.1.0

Introduced on the E-Series.

show ip vrf
VRF-Name

VRF-ID Interfaces

Virtual Routing and Forwarding (VRF)

default

0

Nu 0,

Te
Fo
Ma
Ma
Ma
Ma
Ma
Ma
Ma
Ma
Ma
Ma
Ma
Ma

0/0-13,18-47,
0/48,52,56,60,
0/0,
1/0,
2/0,
3/0,
4/0,
5/0,
6/0,
7/0,
8/0,
9/0,
10/0,
11/0,

Vl 1
Te 0/14,16-17
Te 0/15

test1
test2
management

1
2
64

FTOS#show ip vrf test1
VRF-Name

VRF-ID Interfaces

test1

1

Te 0/14,16-17

show run vrf
Displays configuration information corresponding to all the VRFs in the system.

S4810
Syntax
Parameters

show run vrf vrf-name
vrf vrf-name

Enter the keyword vrf and then the name of the VRF..

Command
Modes

•

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

EXEC

The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Introduced on the S-Series Z-Series.

Version 8.2.1.0

Introduced on the E-Series.

Virtual Routing and Forwarding (VRF)

1705

Usage
Information

Use this command to display configuration information corresponding to either a
specific VRF or all the VRFs in the system.

Example

Dell#show run vrf test3
!
ip vrf test3
description "Banking Customer Chennai"

Related
Commands

1706

Virtual Routing and Forwarding (VRF)

VLT Proxy Gateway

65

This chapter describes the VLT Proxy Gateway feature.

proxy-gateway lldp
Configure the LLDP proxy gateway

S4810
Syntax

proxy-gateway lldp

Command
Modes

VLT DOMAIN

Command
History

Usage
Information

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

The configuration is cached and sent to LLDP only in one of the following
conditions:
1) The port-channel connecting the two VLT domains, across DC, must be a VLT
LAG
2) The protocol lldp command is globally enabled
3) The proxy-gateway LLDP configuration is applied.
However, “proxy-gateway lldp” configuration is sent to the Layer 2 application.
When LLDP sends an IPC reply message, SWPQ is created towards LLDP to send
further updates to LLDP. When the proxy gateway peer-domain-link port-channel
command is provisioned, the configuration is sent to LLDP if the port-channel is a
VLT port-channel. However it will not check whether the port-channel is up or
down. LLDP determines the addition and removal of LAG ports and transmits LLDP
packets out accordingly.

Example

VLT Proxy Gateway

Dell(conf)#vlt-domain 1
Dell(conf-vlt-domain#proxy-gateway lldp

1707

proxy-gateway static
Configure the VLT static proxy gateway

S4810
Syntax

[no] proxy-gateway static

Command
Modes

VLT DOMAIN

Command
History

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

Usage
Information

When proxy-gateway static configuration is made, the setting is saved in the Layer
2 application. When you remove the static proxy gateway configuration, each
proxy-gateway static mac configured is deleted and also the notification to delete
the local destination address (DA) configured is sent to the Layer 2 module. When
remote-mac-address mac-address-identifier configuration is made, the MAC
details are saved. When no remote-mac-address mac-address-identifier
configuration is made, the MAC details and the local DA information are deleted.

Example

Dell(conf)#vlt-domain 1
Dell(conf-vlt-domain#proxy-gateway static

remote-mac-address exclude-vlan
Configure the proxy-gateway static entry and exclude a VLAN or a range of VLANs from proxy routing.

S4810
Syntax
Parameters

remote-mac-address mac—address exclude-vlan vlan-range
remote-macaddress

Specify the remote MAC address for a static proxy gateway.

mac-address

Enter the 48-bit hexadecimal address in nn:nn:nn:nn:nn:nn
format.

vlan-range

Enter the member VLANs using comma-separated VLAN IDs,
a range of VLAN IDs, a single VLAN ID, or a combination. For
example:
Comma-separated: 3, 4, 6
Range: 5-10
Combination: 3, 4, 5-10, 8

1708

VLT Proxy Gateway

Command
Modes
Command
History

VLT DOMAIN PROXY GW STATIC

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

Usage
Information

You can configure the remote MAC address of the VLT peer to be associated with
the static VLT proxy gateway and exclude a VLAN or a range of VLANs from proxy
routing. This parameter is for a static VLT proxy gateway configuration.

Example

Dell(conf)#vlt-domain 1
Dell(conf-vlt-domain#proxy-gateway static
Dell(conf-vlt-domain-proxy-gw-static)#remote-mac-address
00:01:e8:06:95:ac exclude-vlan 3

peer-domain-link port-channel exclude-vlan
Configure proxy-gateway LLDP, specify a port-channel and a VLAN or range of VLANs, and exclude a
VLAN or a range of VLANs from proxy routing.

S4810
Syntax
Parameters

[no] peer-domain-link port-channel interface-identifier
exclude-vlan vlan-range
port-channel

Configure the proxy-gateway interface port-channel. Port
channel range is from 1 to 128.

vlan-range

Enter the member VLANs using comma-separated VLAN IDs,
a range of VLAN IDs, a single VLAN ID, or a combination. For
example:
Comma-separated: 3, 4, 6
Range: 5-10
Combination: 3, 4, 5-10, 8

Command
Modes
Command
History

Usage
Information

VLT Proxy Gateway

VLT DOMAIN PROXY GW LLDP

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

You can configure the port channel interface that must be associated with the
LLDP proxy gateway and exclude a VLAN or a range of VLANs from proxy routing.
This parameter is for an LLDP proxy gateway configuration.

1709

Example

Dell(conf)#vlt-domain 1
Dell(conf-vlt-domain)#proxy-gateway lldp
Dell(conf-vlt-domain-proxy-gw-lldp)#peer-domain-link portchannel 20 exclude-vlan 3

proxy-gateway peer-timeout
Configure the proxy-gateway VLT peer timeout value.

S4810
Syntax
Parameters

Command
Modes
Command
History

[no] peer-timeout value
value

Enter the timeout value in seconds. The range is from 1 to
65535. The default is infinity.

VLT DOMAIN PROXY GW LLDP

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

Usage
Information

In a square VLT topology with only one link connecting remote peers, a node must
stop sending its VLT peer MAC address ("vlt-peer-mac transmit" enabled) when the
VLT peer is down. If you configure this time out interval, it will keep sending its
peer's MAC address until the timer expires.

Example

Dell(conf-vlt-domain-proxy-gw-lldp)# peer-timeout 5

vlt-peer-mac transmit
Configures a peer to sent its VLT peer's MAC address along with its LLDP TLV.

S4810
Syntax

[no] vlt-peer-mac transmit

Command
Modes

VLT DOMAIN PROXY GW LLDP

Command
History

1710

Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

VLT Proxy Gateway

Usage
Information

In a square VLT topology with only one link connecting remote peers, if you
configure this command, any node has to send its VLT peer’s MAC address along
with its own MAC address to the remote VLT domain. By default, a node will send
only its own MAC address to the remote VLT domain. This parameter is applicable
for an LLDP proxy gateway configuration.

Example

Dell(conf-vlt-domain-proxy-gw-lldp)# vlt-peer-mac transmit

show vlt-proxy-gateway
Display the VLT proxy gateway configuration.

S4810
Syntax
Parameters

Command
Modes
Command
History

Usage
Information

show vlt-proxy-gateway info {lldp | static}
lldp

Display details about the LLDP VLT proxy gateway
configuration

static

Display details about the static VLT proxy gateway
configuration

EXEC
EXEC Privilege
Version 9.4(0.0)

Introduced on the S4810, S4820T, S6000, Z9000, and MXL
Switch.

At any point of time the proxy-gateway feature may go operationally down for the
following reasons,
1) LLDP globally disabled
2) LLDP disabled per port
3) VLT port-channel is down
5) LLDP neighbor down
So, the proxy-gateway feature could be operationally down though properly
configured and this will be reported in the “show command”.
When more than one VLT port-channel terminates on the same TOR, output of the
show VLT proxy-gateway info lldp command may show the port-channel
id incorrectly.

VLT Proxy Gateway

1711

Example

Dell(conf)#do sh vlt proxy-gateway info static
Mac Address
Exclude Vlan
---------------------00:01:e8:8b:1c:c0
Dell#show vlt proxy-gateway info
LagId
Mac Address
--------------Po 55
00:01:e8:8a:e8:f7
learnt via port-channel 55
Po 55
00:01:e8:8b:1c:c0

1712

lldp
Exclude Vlan
-----------3,7-8

<< Macs

3,7-8

VLT Proxy Gateway

Virtual Link Trunking (VLT)

66

Virtual link trunking (VLT) is supported on the S4810 platform.
VLT allows physical links between two chassis to appear as a single virtual link to the network core. VLT
eliminates the requirement for Spanning Tree protocols by allowing link aggregation group (LAG)
terminations on two separate distribution or core switches, and by supporting a loop-free topology. VLT
provides Layer 2 multipathing, creating redundancy through increased bandwidth and enabling multiple
parallel paths between nodes and load-balancing traffic where alternative paths exist.
NOTE: When you launch the VLT link, the VLT peer-ship is not established if any of the following is
TRUE:
•

The VLT System-MAC configured on both the VLT peers do not match.

•

The VLT Unit-Id configured on both the VLT peers are identical.

•

The VLT System-MAC or Unit-Id is configured only on one of the VLT peers.

•

The VLT domain ID is not the same on both peers.

If the VLT peer-ship is already established, changing the System-MAC or Unit-Id does not cause VLT
peer-ship to go down.
Also, if the VLT peer-ship is already established and the VLT Unit-Id or System-MAC are configured
on both peers, then changing the CLI configurations on the VLT Unit-Id or System-MAC is rejected
if any of the following become TRUE:
•

After making the CLI configuration change, the VLT Unit-Id becomes identical on both peers.

•

After making the CLI configuration change, the VLT System-MAC do not match on both peers.

When the VLT peer-ship is already established, you can remove the VLT Unit-Id or System-MAC
configuration from either or both peers. However, removing configuration settings can cause the
VLT ports to go down if you configure the Unit-Id or System-MAC on only one of the VLT peers.

back-up destination
Configure the IPv4 or IPv6 address of the management interface on the remote VLT peer to be used as
the endpoint of the VLT backup link for sending out-of-band hello messages.

S4810
Syntax
Parameters

back-up destination {[ipv4–address] | [ipv6 ipv6–address]
[interval seconds]}
ipv4–address

Virtual Link Trunking (VLT)

Enter the IPv4 address of the backup destination.

1713

ipv6

Enter the keyword ipv6 then an IPv6 address in the
X:X:X:X::X format.

interval
seconds

Enter the keyword interval to specify the time interval to
send hello messages. The range is from 1 to 5 seconds. The
default is 1 second.

Defaults

1 second

Command
Modes

VLT DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.2(0.2)

Added support for IPv6.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

clear vlt statistics
Clear the statistics on VLT operations.

S4810
Syntax
Parameters

1714

clear vlt statistics [arp | domain | igmp-snoop | mac |
multicast | ndp]
domain

Clear the VLT statistics for the domain.

multicast

Clear the VLT statistics for multicast.

mac

Clear the VLT statistics for the MAC address.

arp

Clear the VLT statistics for ARP.

igmp-snoop

Clear the VLT statistics for IGMP snooping.

ndp

Clear the VLT statistics for NDP.

Virtual Link Trunking (VLT)

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.2(0.2)

Added multicast and ndp parameters.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Example

VLT ARP Statistics
---------------ARP Tunnel Pkts sent:0
ARP Tunnel Pkts Rcvd:0
ARP-sync Pkts Sent:0
ARP-sync Pkts Rcvd:0
ARP Reg Request sent:19
ARP Reg Request rcvd:10

Related
Commands

show vlt statistics — displays statistics on VLT operations.

delay-restore
Configure the delay in bringing up VLT ports after reload or peer-link restoration between the VLT peer
switches.

S4810
Syntax
Parameters

Defaults

delay-restore
delay-restore

Enter the amount of time, in seconds, to delay bringing up
the VLT ports after the VLTi device is reloaded or after the
peer-link is restored between VLT peer switches. The range
from 1 to 1200. The default is 90 seconds.

Not configured.

Virtual Link Trunking (VLT)

1715

Command
Modes

VLT DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Related
Commands

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S8420T.

Version
8.3.12.0

Introduced on the S4810.

To delay the system from bringing up the VLT port for a brief period to allow IGMP
Snooping and Layer 3 routing protocols to converge, use the delay-restore
parameter. Use this feature:
•

after a VLT device is reloaded.

•

if the Peer VLT device was up at the time the VLTi link failed to the time when it
was restored.

show vlt statistics — displays statistics on VLT operations.

lacp ungroup member-independent
Prevent possible loop during the bootup of a VLT peer switch or a device that accesses the VLT domain.

S4810
Syntax
Parameters

lacp ungroup member-independent {vlt | port-channel}
port-channel

Force all LACP port-channel members to become
switchports.

vlt

Force all VLT LACP members to become switchports.

Defaults

Not configured.

Command
Modes

CONFIGURATION

1716

Virtual Link Trunking (VLT)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Added port-channel parameter on the S4810.

Version 8.3.8.0

Introduced on the S4810.

LACP on the VLT ports (on a VLT switch or access device), which are members of
the virtual link trunk, is not brought up until the VLT domain is recognized on the
access device.
On the S4810, during boot-up in a stacking configuration, the system must be able
to reach the DHCP server with the boot image and configuration image. During
boot-up, only untagged DHCP requests are sent to the DHCP server to receive an
offer on static LAGs between switches. The DHCP server must be configured to
start in BMP mode. If switches are connected using LACP port-channels like the
VLT peer and Top of Rack (ToR), use the port-channel parameter on the ToR-side
configuration to allow member ports of an ungrouped LACP port-channel to
inherit vlan membership of that port channel to ensure untagged packets that are
sent by a VLT peer device reach the DHCP server located on the ToR.
To ungroup the VLT and port-channel configurations, use the no lacp ungroup
member independent command on a VLT port channel, depending on whether
the port channel is VLT or non-VLT.

Example

Dell(conf)#lacp ungroup member-independent ?
port-channel
LACP port-channel members become
switchports
vlt
All VLT LACP members
become switchports

Virtual Link Trunking (VLT)

1717

multicast peer-routing timeout
Configure the time for a VLT node to retain synced multicast routes or synced multicast outgoing
interface (OIF) after a VLT peer node failure.

S4810
Syntax

multicast peer-routing timeout value
To restore the default value, use the no multicast peer-routing timeout
command.

Parameters

value

Enter the timeout value in seconds. The range is from 1 to
1200. The default is 150.

Command
Modes

VLT DOMAIN (conf-vlt-domain)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

Version 9.0.2.0

Introduced on the S6000.

peer-link port-channel
Configure the specified port channel as the chassis interconnect trunk between VLT peers in the domain.
Syntax
Parameters

peer-link port-channel port-channel-number {peer-down-vlan vlan
id}
port-channelnumber

Enter the port-channel number that acts as the interconnect
trunk.

peer-downvlan vlan id

Enter the keyword peer-down-vlan then a VLAN ID to
configure the VLAN that the VLT peer link uses when the VLT
peer is down.

Defaults

Not configured.

Command
Modes

VLT DOMAIN

1718

Virtual Link Trunking (VLT)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Added support for the peer-down-vlan parameter.

Version 8.3.8.0

Introduced on the S4810.

To configure the VLAN from where the VLT peer forwards packets received over
the VLTi from an adjacent VLT peer that is down, use the peer-down-vlan
parameter. When a VLT peer with bare metal provisioning (BMP) is booting up, it
sends untagged DHCP discover packets to its peer over the VLTi. To ensure that
the DHCP discover packets are forwarded to the VLAN that has the DHCP server,
use this configuration.

peer-routing
Enable L3 VLT peer-routing. This command is applicable for both IPV6/ IPV4.

S4810
Syntax

peer-routing
To disable L3 VLT peer-routing, use the no peer-routing command.

Defaults

Disabled.

Command
Modes

VLT DOMAIN (conf-vlt-domain)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4(0.0)

Added the support for IPV6 / IPV4.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Virtual Link Trunking (VLT)

1719

Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

peer-routing-timeout
Configure the delay after which peer routing is disabled when the peer is unavailable. This command is
applicable for both IPV6/ IPV4.

S4810
Syntax

peer-routing-timeout value
To restore the default value, use the no peer-routing-timeout command.

Parameters

value

Enter the timeout value in seconds. The range is from 1 to
65535. The default value is 0 (no timeout).

Command
Modes

VLT DOMAIN (conf-vlt-domain)

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4(0.0)

Added the support for IPV6 / IPV4.

Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

Version 9.0.2.0

Introduced on the S6000.

When the timer expires, the software checks to see if the VLT peer is now available.
If the VLT peer is not available, peer-routing is disabled on that peer.

primary-priority
Assign the priority for master election among VLT peers.

S4810
Syntax
Parameters

1720

[no] primary-priority
value

To configure the primary role on a VLT peer, enter a lower
value than the priority value of the remote peer. The range is
from 1 to 65535.

Virtual Link Trunking (VLT)

Default

32768

Command
Modes

VLT DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

After you configure the VLT domain on each peer switch on both sides of the
interconnect trunk, by default, the Dell Networking OS software elects a primary
and secondary VLT peer device. To reconfigure the primary role of VLT peer
switches, use the priority command.

show vlt brief
Displays summarized status information about VLT domains currently configured on the switch.

S4810
Syntax

show vlt brief

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Virtual Link Trunking (VLT)

1721

Usage
Information

The version shown in the show vlt brief output command displays the VLT
version number which is different from the Dell Networking OS version number.
VLT version numbers are begin with odd numbers such as 3 or 5.

Example (Brief)
Dell (conf) #show vlt brief
VLT Domain Brief
---------------------------Domain ID:
Role:
Role Priority:
ICL Link Status:
Heart Beat Status:
VLT Peer Status:
Version:
Local System MAC address:
Remote System MAC address:
Remote Sytem Version:
Delay-Restore timer:

10

Primary
32768
Up
Not Established
Up
5 (1)
00:01:e8:8b:14:3c
00:01:e8:8b:15:20
5 (1)
90 seconds

show vlt backup-link
Displays information on the backup link operation.

S4810
Syntax

show vlt backup-link

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Dell_VLTpeer1# show vlt backup-link
VLT Backup Link
----------------Destination:
Peer HeartBeat status:
HeartBeat Timer Interval:

1722

10.11.200.18
Up
1

Virtual Link Trunking (VLT)

HeartBeat Timeout:
UDP Port:
HeartBeat Messages Sent:
HeartBeat Messages Received:

3
34998
1026
1025

show vlt counters
Displays the counter information.

S4810
Syntax
Parameters

show vlt counters [arp| igmp-snoop | interface | mac | ndp]
arp

Enter the keyword arp to display the ARP counter
information for the VLT.

igmp-snoop

Enter the keywords igmp-snoop to display the igmpsnooping counter information for the VLT.

interface

Enter the keyword interface to display the interface
counter information for the VLT.

mac

Enter the keyword mac to display the MAC address counter
information for the VLT.

ndp

Enter the keyword ndp to display the VLT counter
information for NDP.

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Usage
Information

If you do not add a parameter such as arp or mac, the output displays all of the
counters.

Example

Dell# show vlt counter
Total VLT counters

Virtual Link Trunking (VLT)

1723

------------------------L2 Total MAC-Address Count :
IGMP MRouter Vlans count :
IGMP Mcast Groups count :
ARP entries count :
Example
(igmp-snoop)

Dell# show vlt counter igmp-snoop
Total IGMP VLT counters
---------------------IGMP MRouter Vlans count : 1
IGMP Mcast Groups count : 5

Example
(igmp-snoop
interface portchannel)

Dell#show vlt counter igmp-snoop interface port-channel 2
VLT Port-ID: 2 IGMP Counter
----------------------IGMP MRouter Vlans count : 0
IGMP Mcast Groups count : 5
Dell# show vlt counter igmp-snoop interface port-channel 100
VLT Port-ID: 100 IGMP Counter
----------------------IGMP MRouter Vlans count : 1
IGMP Mcast Groups count : 0
Ve

Example (NDP
and Non-VLT
ARP)

Dell#show vlt counters
Total VLT Counters
------------------L2 Total MAC-Address Count:
Total Arp Entries Learnt :
Total Arp Entries Synced :
Total Non-VLT Arp entries Learnt:
Total Non-VLT Arp Entries Synced
IGMP MRouter Vlans count :
IGMP Mcast Groups count :
Total VLT Ndp Entries Learnt :
Total VLT Ndp Entries Synced :
Total Non-VLT Ndp Entries Learnt :
Total Non-VLT Ndp Entries Synced :

2
0
0
0
0
2
0
0
0

show vlt detail
Displays detailed status information about VLT domains currently configured on the switch.

S4810
Syntax

show vlt detail

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

1724

Virtual Link Trunking (VLT)

The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Dell# Dell(conf-if-vl-100)#show vlt detail
Local LAG Id Peer LAG Id Local Status Peer Status Active VLANs
------------ ----------- ------------ -----------------------10
10
UP
UP
100, 200, 300,
400,

show vlt inconsistency
Display run-time inconsistencies in the incoming interface (IIF) for spanned multicast routes.

S4810
Syntax

show vlt inconsistency ip mroute

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

Dell#show vlt inconsistency ip mroute
Spanned Multicast Routing IIF Inconsistency
Multicast Route
--------------(22.22.22.200, 225.1.1.2)
(*, 225.1.1.2)
Dell#

Virtual Link Trunking (VLT)

LocalIIF
---------VLAN 5
VLAN 15

PeerIIF
--------VLAN 6
te 0/5

1725

show vlt mismatch
Display mismatches in VLT parameters.

S4810
Syntax

show vlt mismatch

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.2(0.2)

Introduced on the Z9000, S4810, and S4820T.

Dell#show vlt mismatch
Domain
----------Parameters
Local
---------------------Unit-ID
0

Peer
--------15

Vlan-config
-----------Vlan-ID
Local Mode
Peer Mode
-------------------- ----------100

--

Vlan IPV4 Multicast Status
-------------------------Vlan-ID
Local Status
------------------4094

Active

L3

Peer Status
----------Inactive

Dell#

1726

Virtual Link Trunking (VLT)

show vlt role
Displays the VLT peer status, role of the local VLT switch, VLT system MAC address and system priority,
and the MAC address and priority of the local VLT device.

S4810
Syntax

show vlt role

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Dell_VLTpeer1# show vlt role
VLT Role
---------VLT Role:
System MAC address:
System Role Priority:
Local System MAC address:
Local System Role Priority:

Primary
00:01:e8:8a:df:bc
32768
00:01:e8:8a:df:bc
32768

Dell_VLTpeer2# show vlt role
VLT Role
---------VLT Role:
System MAC address:
System Role Priority:
Local System MAC address:
Local System Role Priority:

Virtual Link Trunking (VLT)

Secondary
00:01:e8:8a:df:bc
32768
00:01:e8:8a:df:e6
32768

1727

show vlt statistics
Displays statistics on VLT operations.

S4810
Syntax
Parameters

show vlt statistics [arp | domain | igmp-snoop | mac |
multicast | ndp]
domain

Display the VLT statistics for the domain.

multicast

Display the VLT statistics for multicast.

mac

Display the VLT statistics for the MAC address.

arp

Display the VLT statistics for ARP.

igmp-snoop

Display the VLT statistics for IGMP snooping.

ndp

Display the VLT statistics for NDP.

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Related
Commands
Example

Version 9.2(0.2)

Added parameters multicast and ndp

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Added support in the output for ARP, MAC, and IGMP
snooping.

Version 8.3.8.0

Introduced on the S4810.

clear vlt statistics — clears the statistics on VLT operations.

NOTE: The following example shows the statistics for all of the VLT
parameters. If you enter a specific keyword, such as mac, only the statistics for
that VLT parameter displays.
Dell_VLTpeer1#show vlt statistics
VLT Statistics
---------------HeartBeat Messages Sent:
930
HeartBeat Messages Received: 909
ICL Hello's Sent:
927

1728

Virtual Link Trunking (VLT)

ICL Hello's Received:
Domain Mismatch Errors:
Version Mismatch Errors:
Config Mismatch Errors:

910
0
0
0

VLT MAC Statistics
---------------L2 Info Pkts sent:6, L2 Mac-sync Pkts Sent:0
L2 Info Pkts Rcvd:3, L2 Mac-sync Pkts Rcvd:2
L2 Reg Request sent:1
L2 Reg Request rcvd:2
L2 Reg Response sent:1
L2 Reg Response rcvd:1
VLT Igmp-Snooping Statistics
------------------------------IGMP Info Pkts sent:
4
IGMP Info Pkts Rcvd:
1
IGMP Reg Request sent:
1
IGMP Reg Request rcvd:
2
IGMP Reg Response sent: 1
IGMP Reg Response rcvd: 1
IGMP PDU Tunnel Pkt sent: 5
IGMP PDU Tunnel Pkt rcvd: 10
IGMP Tunnel PDUs sent:
10
IGMP Tunnel PDUs rcvd:
19
VLT Multicast Statistics
------------------------------Info Pkts Sent:
4
Info Pkts Rcvd:
2
Reg Request Sent:
2
Reg Request Rcvd:
2
Reg Response Sent:
1
Reg Response Rcvd:
0
Route updates sent to Peer:
0
Route updates rcvd from Peer:
0
Route update pkts sent to Peer: 0
Route update pkts rcvd from Peer: 0
VLT NDP Statistics
-------------------NDP NA VLT Tunnel Pkts sent:16
NDP NA VLT Tunnel Pkts Rcvd:46
NDP NA Non-VLT Tunnel Pkts sent:0
NDP NA Non-VLT Tunnel Pkts Rcvd:0
Ndp-sync Pkts Sent:144
Ndp-sync Pkts Rcvd:105
Ndp Reg Request sent:25
Ndp Reg Request rcvd:24

Virtual Link Trunking (VLT)

1729

show vlt statistics igmp-snoop
Displays the informational packets and IGMP control PDUs that are exchanged between VLT peer nodes.

S4810
Syntax

show vlt statistics igmp-snoop

Default

Not configured.

Command
Modes

EXEC

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Example

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.12.0

Introduced on the S4810.

Dell_VLTpeer1#show vlt statistics igmp-snoop
VLT Igmp-Snooping Statistics
------------------------------IGMP Info Pkts sent:
4
IGMP Info Pkts Rcvd:
1
IGMP Reg Request sent:
1
IGMP Reg Request rcvd:
2
IGMP Reg Response sent: 1
IGMP Reg Response rcvd: 1
IGMP PDU Tunnel Pkt sent:5
IGMP PDU Tunnel Pkt rcvd:10
IGMP Tunnel PDUs sent:
10
IGMP Tunnel PDUs rcvd:
19

system-mac
Reconfigure the default MAC address for the domain.

S4810
Syntax
Parameters

Defaults

1730

system-mac mac-address
mac-address

Enter the system MAC address for the VLT domain.

Not configured.

Virtual Link Trunking (VLT)

Command
Modes

VLT DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

When you create a VLT domain on a switch, Dell Networking OS automatically
creates a VLT-system MAC address used for internal system operations.
To reconfigure the default MAC address for the domain by entering a new MAC
address in the format nn:nn:nn:nn:nn:nn, use the system-mac command.
You must also reconfigure the same MAC address on the VLT peer switch.

unit-id
Explicitly configure the default unit ID of a VLT peer switch.

S4810
Syntax
Parameters

unit-id [0 | 1]
0|1

Configure the default unit ID of a VLT peer switch. Enter 0
for the first peer or enter 1 for the second peer.

Defaults

Automatically assigned based on the MAC address of each VLT peer. The peer with
the lower MAC address is assigned unit 0; the peer with the higher MAC address is
assigned unit 1.

Command
Modes

VLT DOMAIN

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Virtual Link Trunking (VLT)

1731

Usage
Information

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

When you create a VLT domain on a switch, Dell Networking OS automatically
assigns a unique unit ID (0 or 1) to each peer switch. The unit IDs are used for
internal system operations. Use the unit-id command to explicitly configure the
unit ID of a VLT peer. Configure a different unit ID (0 or 1) on each peer switch.
To minimize the time required for the VLT system to determine the unit ID assigned
to each peer switch when one peer reboots, use this command.

vlt domain
Enable VLT on a switch, configure a VLT domain, and enter VLT-domain configuration mode.

S4810
Syntax
Parameters

vlt domain domain-id
domain-id

Enter the Domain ID number. Configure the same domain ID
on the peer switch. The range of domain IDs is from 1 to
1000.

Command
Modes

CONFIGURATION

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1732

Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Virtual Link Trunking (VLT)

Version 8.3.8.0

Introduced on the S4810.

Usage
Information

The VLT domain ID must be the same between the two VLT devices. If the domain
ID is not the same, a syslog message is generated and VLT does not launch.

Related
Commands

show vlt — uses the show vlt brief command to display the delay-restore
value.

vlt-peer-lag port-channel
Associate the port channel to the corresponding port channel in the VLT peer for the VLT connection to
an attached device.

S4810
Syntax
Parameters

vlt-peer-lag port-channel id-number
id-number

Enter the respective vlt port-channel number of the peer
device.

Defaults

Not configured.

Command
Modes

INTERFACE PORT-CHANNEL

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.2(0.0)

Introduced on the M I/O Aggregator. This command is
supported in Programmable-Mux (PMUX) mode only.

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Virtual Link Trunking (VLT)

1733

show vlt private-vlan
Display the association of private VLAN (PVLAN) with the VLT LAG. You can configure VLT peer nodes in a
PVLAN on the S4810 platforms.
Syntax

show vlt private-vlan

Command
Modes

EXEC

Command
History

Version 9.4(0.0)

Introduced on the S6000 platform.

Version 9.3(0.0)

Introduced on the Z9000, S4810, and S4820T platforms.

Usage
Information

If you add an ICL or VLTi link as a member of a primary VLAN, the ICL becomes a
part of the primary VLAN and its associated secondary VLANs, similar to the
behavior for normal trunk ports. VLAN symmetricity is not validated if you associate
an ICL to a PVLAN. Similarly, if you dissociate an ICL from a PVLAN, although the
PVLAN symmetrictiy exists, ICL is removed from that PVLAN in such a case. The ICL
Status field denotes the type of the VLAN port of the VLTi link configured in a
PVLAN.

Example

Dell#Show vlt private-vlan vlan-id
Codes: C- Community, I – Isolated, V – Internally tagged, T –
tagged, * - VLT Pvlan
Primary
Secondary
ICL Status
10
V (*)
20(C)
V
30 (I)
V
40

50(C)
60 (I)

T

T
T

Dell#

1734

Virtual Link Trunking (VLT)

Virtual Router Redundancy Protocol
(VRRP)

67

Virtual router redundancy protocol (VRRP) is supported by the Dell Networking operating system on the
S4810 platform.

IPv4 VRRP Commands
The following are IPv4 VRRP commands.

advertise-interval
Set the time interval between VRRP advertisements.

S4810
Syntax

advertise-interval {seconds | centisecs centisecs }
To return to the default settings, use the no advertise-interval command.

Parameters

seconds

Enter a number of seconds. The range is from 1 to 255. The
default is 1 second.

centisecs
centisecs

Enter the keyword centisecs followed by the number of
centisecs in multiple of 25 centisecs. The range is 25 to
4075 centisecs in multiples of 25 centisecs.

Defaults

1 second or 100 centisecs.

Command
Modes

INTERFACE-VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Added support for centisecs on the Z9000, S6000, S4820T,
S4810, and MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Virtual Router Redundancy Protocol (VRRP)

1735

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell Networking recommends keeping the default setting for this command. If you
do change the time interval between VRRP advertisements on one router, change it
on all routers.

authentication-type
Enable authentication of VRRP data exchanges.

S4810
Syntax

authentication-type simple [encryption-type] password
To delete an authentication type and password, use the no authenticationtype command.

Parameters

simple

Enter the keyword simple to specify simple authentication.

encryptiontype

(OPTIONAL) Enter one of the following numbers:

password

•

0 (zero) specifies an un-encrypted authentication data
follows.

•

7 (seven) specifies a hidden authentication data follows.

•

LINE is the un-encrypted (cleartext) authentication data.

Enter a character string up to eight characters long as a
password. If you do not enter an encryption-type, the
password is stored as clear text.

Defaults

Not configured.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

1736

Introduced on the S6000.

Virtual Router Redundancy Protocol (VRRP)

Usage
Information

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The given password is encrypted by the system and the show config displays an
encrypted text string for any of the encrypted typed used.

clear counters vrrp
Clear the counters maintained on VRRP operations.

S4810
Syntax
Parameters

clear counters vrrp [vrrp-id] [ipv6] [vrf vrf-name]
vrrp-id

(OPTIONAL) Enter the number of the VRRP group ID. The
range is from 1 to 255.

ipv6

(OPTIONAL) Enter the keyword ipv6 to clear counters from
the IPv6 VRRP group.

vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to clear counters that are maintained on the VRRP
operations corresponding to that VRF.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Virtual Router Redundancy Protocol (VRRP)

1737

Example

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell#clear counters vrrp vrf jay
Clear "show vrrp" counters of all vrrp groups on all
interfaces in VRF jay [confirm] yes

debug vrrp
Allows you to enable debugging of VRRP.

S4810
Syntax

debug vrrp interface [vrrp-id] {all | bfd | database |
interface | ipv6 | packets | state | timer}
To disable debugging, use the no debug vrrp interface [vrrp-id] {all |
bfd | database | interface | ipv6 | packets | state | timer}
command.

Parameters

1738

interface

Enter the following keywords and slot/port or number
information
•

For Port Channel interface types, enter the keywords
port-channel then the number. The range is from 1 to
128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a 40-Gigabit Ethernet interface, enter the keyword
FortyGigabitEthernet then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then the
VLAN ID. The VLAN ID range is from 1 to 4094.

vrrp-id

(OPTIONAL) Enter a number from 1 to 255 as the VRRP
group ID.

all

Enter the keyword all to enable debugging of all VRRP
groups.

bfd

Enter the keyword bfd to enable debugging of VRRP BFD
interactions.

database

Enter the keyword database to enable debugging of
configuration changes.

interface

Enter the keyword interface to enable debugging of
interface state changes..

Virtual Router Redundancy Protocol (VRRP)

ipv6

Enter the keyword ipv6 to enable debugging for IPv6.

packets

Enter the keyword packets to enable debugging of VRRP
control packets.

state

Enter the keyword state to enable debugging of VRRP state
changes.

timer

Enter the keyword timer to enable debugging of the VRRP
timer.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

If no options are specified, debug is active on all interfaces and all VRRP groups.

description
Configure a short text string describing the VRRP group.

S4810
Syntax

description text
To delete a VRRP group description, use the no description command.

Parameters

text

Enter a text string up to 80 characters long.

Defaults

Not enabled.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.

Virtual Router Redundancy Protocol (VRRP)

1739

The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

disable
Disable a VRRP group.

S4810
Syntax

disable
To re-enable a disabled VRRP group, use the no disable command.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

To enable VRRP traffic, assign an IP address to the VRRP group using the
virtual-address command and enter no disable.

Related
Commands

virtual-address — specifies the IP address of the virtual router.

1740

Virtual Router Redundancy Protocol (VRRP)

hold-time
Specify a delay (in seconds) before a switch becomes the MASTER virtual router. By delaying the
initialization of the VRRP MASTER, the new switch can stabilize its routing tables.

S4810
Syntax

hold-time {seconds | centisecs centisecs}
To return to the default value, use the no hold-time command.

Parameters

seconds

Enter the number of seconds. The range is from 0 to 65535.
The default is zero (0) seconds.

centisecs
centisecs

Enter the keyword centisecs then the number of centisecs
in units of 25 centisecs . The range is from 0 to 65525 in
units of 25 centisecs.

Defaults

zero (0) seconds or or (0) centiseconds

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Added support for centisecs on the Z9000, S6000, S4820T,
S4810, and MXL.

Version 9.2(1.0)

Introduced on the Z9500.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

If a switch is a MASTER and you change the hold timer, disable and re-enable VRRP
for the new hold timer value to take effect.

Related
Commands

disable — disables a VRRP group.

Virtual Router Redundancy Protocol (VRRP)

1741

preempt
To preempt or become the MASTER router, permit a BACKUP router with a higher priority value.

S4810
Syntax

preempt
To prohibit preemption, use the no preempt command.

Defaults

Enabled (that is, a BACKUP router can preempt the MASTER router).

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

priority
Specify a VRRP priority value for the VRRP group. The VRRP protocol uses this value during the MASTER
election process.

S4810
Syntax

priority priority
To return to the default value, use the no priority command.

Parameters

Defaults

1742

priority

Enter a number as the priority. Enter 255 only if the router’s
virtual address is the same as the interface’s primary IP
address (that is, the router is the OWNER). The range is from
1 to 255. The default is 100.

100

Virtual Router Redundancy Protocol (VRRP)

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.16.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s
virtual address with same IP address as the interface’s primary IP address and
change the priority of the VRRP group to 255.
If you set the priority command to 255 and the virtual-address is not equal
to the interface’s primary IP address, an error message appears.

show config
View the non-default VRRP configuration.

S4810
Syntax
Parameters

show config [verbose]
verbose

(OPTIONAL) Enter the keyword verbose to view all VRRP
group configuration information, including defaults.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Virtual Router Redundancy Protocol (VRRP)

Introduced on the S6000.

1743

Example

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Dell(conf-if-vrid-4)#show con
vrrp-group 4
virtual-address 119.192.182.124
!

show vrrp
View the VRRP groups that are active. If no VRRP groups are active, the FTOS returns No Active VRRP
group.

S4810
Syntax
Parameters

1744

show vrrp [vrrp-id] [vrf vrf-name] [interface] [brief][ipv6]
vrrp-id

(OPTIONAL) Enter the Virtual Router Identifier for the VRRP
group to view only that group. The range is from 1 to 255.

vrf vrf-name

(OPTIONAL) Enter the keyword vrf and then the name of
the VRF to view active VRRP groups corresponding to that
VRF.

interface

(OPTIONAL) Enter the following keywords and slot/port or
number information:
•

For Port Channel interface types, enter the keywords
port-channel then the number. The range is from 1 to
128.

•

For a 1-Gigabit Ethernet interface, enter the keyword
gigabitethernet followed by the slot/port
information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then the
VLAN ID. The VLAN ID range is from 1 to 4094.

brief

(OPTIONAL) Enter the keyword brief to view a table of
information on the VRRP groups.

ipv6

(OPTIONAL) Enter the keyword ipv6 to view only VRRP IPv6
groups.

Virtual Router Redundancy Protocol (VRRP)

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.4.
(0.0)

Added support for VRF.

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

The following describes the show vrrp brief command shown in the following
example.
Item

Description

Interface

Lists the interface type, slot and port on which the VRRP
group is configured.

Grp

Displays the VRRP group ID.

Pri

Displays the priority value assigned to the interface. If the
track command is configured to track that interface and
the interface is disabled, the cost is subtracted from the
priority value assigned to the interface.

Pre

States whether preempt is enabled on the interface.

State

Virtual Router Redundancy Protocol (VRRP)

•

Y = Preempt is enabled.

•

N = Preempt is not enabled.

Displays the operational state of the interface by using one
of the following:
•

NA/IF (the interface is not available).

•

MASTER (the interface associated with the MASTER
router).

1745

Item

Description
•

BACKUP (the interface associated with the BACKUP
router).

Master addr

Displays the IP address of the MASTER router.

Virtual addr(s)

Displays the virtual IP addresses of the VRRP routers
associated with the interface.

Example (Brief)

Dell>Interface Grp Pri Pre State Master addr Virtual addr(s)
Description----------------------------------------------------------Gi 10/37 1 100 Y Master 200.200.200.200 200.200.200.201
Gi 10/37 2 100 Y Master 200.200.200.200 200.200.200.202
200.200.200.203 Description
Gi 10/37 3 100 Y Master 1.1.1.1 1.1.1.2
Gi 10/37 4 100 Y Master 200.200.200.200 200.200.200.206
200.200.200.207 ... short desc
Gi 10/37 254 254 Y Master 200.200.200.200 200.200.200.204
200.200.200.205
Dell>

Usage
Information

The following describes the show vrrp command shown in the following
example.
Item

Description

GigabitEthernet
12/3...

Displays the Interface, the VRRP group ID, and the network
address. If the interface is not sending VRRP packets, 0.0.0.0
appears as the network address.

State: master...

Displays the interface’s state:
•

Na/If (not available)

•

master (MASTER virtual router)

•

backup (BACKUP virtual router)

the interface’s priority and the IP address of the MASTER.
Hold Down:...

Adv rcvd:...

1746

This line displays additional VRRP configuration information:
•

Hold Down displays the hold down timer interval in
seconds.

•

Preempt displays TRUE if preempt is configured and
FALSE if preempt is not configured.

•

AdvInt displays the Advertise Interval in seconds.

This line displays counters for the following:
•

Adv rcvd displays the number of VRRP advertisements
received on the interface.

•

Adv sent displays the number of VRRP advertisements
sent on the interface.

Virtual Router Redundancy Protocol (VRRP)

Item

Description
•

Gratuitous ARP sent displays the number of gratuitous
ARPs sent.

Virtual MAC
address

Displays the virtual MAC address of the VRRP group.

Virtual IP address

Displays the virtual IP address of the VRRP router to which
the interface is connected.

Authentication:...

States whether authentication is configured for the VRRP
group. If it is, the authentication type and the password are
listed.

Tracking states..

This line is displayed if the track command is configured
on an interface. Below this line, the following information
on the tracked interface is displayed:
•

Dn or Up states whether the interface is down or up.

•

the interface type slot/port information.

Example

Dell>show vrrp
-----------------GigabitEthernet 12/3, VRID: 1, Net: 10.1.1.253
State: Master, Priority: 105, Master: 10.1.1.253 (local)
Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec
Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0
Virtual MAC address:
00:00:5e:00:01:01
Virtual IP address:
10.1.1.252
Authentication: (none)
Tracking states for 1 interfaces:
Up GigabitEthernet 12/17 priority-cost 10
-----------------GigabitEthernet 12/4, VRID: 2, Net: 10.1.2.253
State: Master, Priority: 110, Master: 10.1.2.253 (local)
Hold Down: 10 sec, Preempt: TRUE, AdvInt: 1 sec
Adv rcvd: 0, Adv sent: 1862, Gratuitous ARP sent: 0
Virtual MAC address:
00:00:5e:00:01:02
Virtual IP address:
10.1.2.252
Authentication: (none)
Tracking states for 2 interfaces:
Up GigabitEthernet 2/1 priority-cost 10
Up GigabitEthernet 12/17 priority-cost 10
Dell>

Example (VRRP
VRF)

Dell#show vrrp vrf jay
-----------------fortyGigE 0/124, IPv4 VRID: 20, Version: 2, Net: 10.0.0.3
VRF: 1 jay
State: Master, Priority: 100, Master: 10.0.0.3 (local)
Hold Down: 0 sec, Preempt: TRUE, AdvInt: 1 sec
Adv rcvd: 0, Bad pkts rcvd: 0, Adv sent: 38, Gratuitous ARP
sent: 0
Virtual MAC address:

Virtual Router Redundancy Protocol (VRRP)

1747

00:00:5e:00:01:14
Virtual IP address:
10.0.0.2
Authentication: (none)
FTOS#show vrrp vrf jay brief
Interface Group
Pri Pre State Master addr
Virtual
addr(s)
Description
------------------------------------------------------------------------------------------------Fo 0/124 IPv4 20 100 Y
Master 10.0.0.3
10.0.0.2
Dell#

virtual-address
Configure up to 12 IP addresses of virtual routers in the VRRP group. To start sending VRRP packets, set at
least one virtual address for the VRRP group.

S4810
Syntax

virtual-address ip-address1 [... ip-address12]
To delete one or more virtual IP addresses, use the no virtual-address ipaddress1 [... ip-address12] command.

Parameters

ip-address1

Enter an IP address of the virtual router in dotted decimal
format. The IP address must be on the same subnet as the
interface’s primary IP address.

... ip-address12

(OPTIONAL) Enter up to 11 additional IP addresses of virtual
routers in dotted decimal format. Separate the IP addresses
with a space. The IP addresses must be on the same subnet
as the interface’s primary IP address.

Defaults

Not configured.

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

1748

Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

Virtual Router Redundancy Protocol (VRRP)

Usage
Information

Version 7.4.1.0

Introduced support for telnetting to the VRRP group IP
address assigned using this command.

pre-Version
6.2.1.1

Introduced on the E-Series.

The VRRP group only becomes active and sends VRRP packets when a virtual IP
address is configured. When you delete the virtual address, the VRRP group stops
sending VRRP packets.
A system message appears after you enter or delete the virtual-address
command.
To guarantee that a VRRP group becomes MASTER, configure the VRRP group’s
virtual address with the same IP address as the interface’s primary IP address and
change the priority of the VRRP group to 255.
You can ping the virtual addresses configured in all VRRP groups.

vrrp delay minimum
Set the delay time for VRRP initialization after an interface comes up.

S4810
Syntax
Parameters

vrrp delay minimum seconds
seconds

Enter the number of seconds for the delay for VRRP
initialization after an interface becomes operational. The
range is from 0 to 900 (0 indicates no delay).

Defaults

0

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

Virtual Router Redundancy Protocol (VRRP)

1749

Usage
Information

Related
Command

This command applies to a single interface. When used with the vrrp delay
reload CLI, the later timer rules the VRRP enabling. For example, if vrrp delay
reload is 600 and the vrrp delay minimum is 300:
•

When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up
VRRP on all interfaces that are up and configured for VRRP.

•

When an interface comes up, whether as part of a system reload or an interface
reload, the system waits 300 seconds (5 minutes) to bring up VRRP on that
interface.

vrrp delay reload — sets the delay time for VRRP initialization after a system reboot.

vrrp delay reload
Set the delay time for VRRP initialization after a system reboot.

S4810
Syntax
Parameters

vrrp delay reload seconds
seconds

Enter the number of seconds for the delay. The range is from
0 to 900 (0 indicates no delay).

Defaults

0

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.

Usage
Information

Version 9.0.2.0

Introduced on the S6000.

Version 9.0.0.0

Introduced on the Z9000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.8.0

Introduced on the S4810.

This command applies to all the VRRP configured interfaces on a system. When
used with the vrrp delay minimum CLI, the later timer rules the VRRP enabling.
For example, if vrrp delay reload is 600 and the vrrp delay minimum is
300:
•

1750

When the system reloads, VRRP waits 600 seconds (10 minutes) to bring up
VRRP on all interfaces that are up and configured for VRRP.

Virtual Router Redundancy Protocol (VRRP)

•

When an interface comes up, whether as part of a system reload or an interface
reload, the system waits 300 seconds (5 minutes) to bring up VRRP on that
interface.

Save the configuration and reload the system for the delay timers to take effect.
Related
Command

vrrp delay minimum — sets the delay time for VRRP initialization after a line card
reboot.

vrrp-group
Assign a VRRP ID to an interface. You can configure up to 12 VRRP groups per interface.

S4810
Syntax
Parameters

vrrp-group vrrp-id
vrrp-id

Enter a number as the group ID. The range is from 1 to 255.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.0.2.0

Introduced on the S6000.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.11.1

Introduced on the Z9000.

Version 8.3.7.0

Introduced on the S4810.

Version 7.6.1.0

Introduced on the S-Series.

Version 7.5.1.0

Introduced on the C-Series.

pre-Version
6.2.1.1

Introduced on the E-Series.

Usage
Information

The VRRP group only becomes active and sends VRRP packets when a virtual IP
address is configured. When you delete the virtual address, the VRRP group stops
sending VRRP packets.

Related
Command

virtual-address — assigns up to 12 virtual IP addresses per VRRP group.

Virtual Router Redundancy Protocol (VRRP)

1751

version
Set VRRP protocol version for IPv4 group.

Syntax

version {2 | 3 | both}
To return to the default setting, use the no version command.

Parameters

2

Enter the 2 parameter to specify VRRP version 2 as defined
by RFC 3768, Virtual Router Redundancy Protocol.

3

Enter the 2 parameter to specify VRRP version 3 as defined
in RFC 5798, Virtual Router Redundancy.

both

Enter the both keyword for in-service migration from VRRP
version 2 to VRRP version 3.

Defaults

2

Command
Modes

VRRP

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 9.5(0.0)

Usage
Information

Introduced on the Z9000, S6000, S4820T, S4810, and MXL.

You can use the version both command to migrate from VRRPv2 to VRRPv3. When
you set the VRRP protocol version to both, the switch sends only VRRPv3
advertisements but can receive either VRRPv2 or VRRPv3 packets. To migrate an
IPv4 VRRP group from VRRPv2 to VRRPv3:
1.

Set the switches with the lowest priority to “both”.

2.

Set the switch with the highest priority to version to 3.

3.

Set all the switches from both to version 3.
NOTE: Do not run VRRP version 2 and version 3 in the same group for an
extended period of time.

Example

Dell(conf-if-te-0/0-vrid-100)#version ?
2
VRRPv2
3
VRRPv3
both
Interoperable, send VRRPv3 receive
both
Dell(conf-if-te-0/0-vrid-100)#version 3

1752

Virtual Router Redundancy Protocol (VRRP)

IPv6 VRRP Commands
The following are IPv6 VRRP commands.
•

clear counters vrrp ipv6

•

debug vrrp ipv6

•

show vrrp ipv6

•

vrrp-ipv6-group

The following commands apply to IPv4 and IPv6:
•

advertise-interval

•

description

•

disable

•

hold-time

•

preempt

•

priority

•

show config

•

virtual-address

clear counters vrrp ipv6
Clear the counters recorded for IPv6 VRRP groups.

S4810
Syntax
Parameters

clear counters vrrp ipv6 [vrid | vrf instance]
vrid

(OPTIONAL) Enter the number of an IPv6 VRRP group. The
range is from 1 to 255.

vrf instance

(OPTIONAL) E-Series only: Enter the name of a VRF instance
(32 characters maximum) to clear the counters of all IPv6
VRRP groups in the specified VRF.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Introduced on the S4820T.

Version
8.3.10.0

Introduced on the S4810.

Version 8.4.1.0

Introduced on E-Series ExaScale, C-Series, and S-Series.
Support was added for IPv6 VRRP groups in non-default VRF
instances.

Virtual Router Redundancy Protocol (VRRP)

1753

Version 8.3.2.0

Introduced on the E-Series TeraScale.

debug vrrp ipv6
Allows you to enable debugging of VRRP.

S4810
Syntax
Parameters

debug vrrp ipv6 interface [vrid] {all | packets | state |
timer}
interface

Enter the following keywords and slot/port or number
information:
•

For a Port Channel interface, enter the keywords portchannel then a number.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then the
VLAN ID. The VLAN ID range is from 1 to 4094.

vrid

(OPTIONAL) Enter a number from 1 to 255 as the VRRP
group ID.

all

Enter the keyword all to enable debugging of all VRRP
groups.

bfd

Enter the keyword bfd to enable debugging of all VFFP BFD
interactions.

database

Enter the keyword database to display changes related to
group, prefix, and interface entries in the VRRP table.

packets

Enter the keyword packets to enable debugging of VRRP
control packets.

state

Enter the keyword state to enable debugging of VRRP state
changes

timer

Enter the keyword timer to enable debugging of the VRRP
timer.

Command
Modes

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

1754

Introduced on the S4820T.

Virtual Router Redundancy Protocol (VRRP)

Usage
Information

Version
8.3.10.0

Introduced on the S4810.

Version 8.4.1.0

Introduced on E-Series ExaScale, C-Series, and S-Series.
Support was added for IPv6 VRRP groups in non-default VRF
instances.

Version 8.3.2.0

Introduced on the E-Series TeraScale.

If no options are specified, debug is active on all interfaces and all VRRP groups.

show vrrp ipv6
View the IPv6 VRRP groups that are active. If no VRRP groups are active, the Dell Networking OS returns
No Active VRRP group.

S4810
Syntax
Parameters

show vrrp ipv6 [vrid] [interface] [brief]
vrid

(OPTIONAL) Enter the virtual router identifier for the VRRP
group to view only that group. The range is from 1 to 255.

interface

Enter the following keywords and slot/port or number
information:

brief

•

For a Port Channel interface, enter the keywords portchannel then a number. The range is from 1 to 128.

•

For SONET interfaces, enter the keyword sonet then the
slot/port information.

•

For a 10-Gigabit Ethernet interface, enter the keyword
TenGigabitEthernet then the slot/port information.

•

For a VLAN interface, enter the keyword vlan then the
VLAN ID. The VLAN ID range is from 1 to 4094.

(OPTIONAL) Enter the keyword brief to view a table of
information on the VRRP groups.

Command
Modes

•

EXEC

•

EXEC Privilege

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version
8.3.19.0

Virtual Router Redundancy Protocol (VRRP)

Introduced on the S4820T.

1755

Usage
Information

Version
8.3.10.0

Introduced on the S4810.

Version 8.3.2.0

Introduced on the E-Series TeraScale.

The following describes the show vrrp ipv6 command shown in the following
example.
Line Beginning
with

Description

GigabitEthernet...

Displays the Interface, the VRRP group ID, and the network
address. If the interface is no sending VRRP packets, 0.0.0.0
appears as the network address.

VRF

VRF instance to which the interface (on which the VRRP
group is configured) belongs.

State: master...

Displays the interface’s state:
•

Na/If (not available).

•

master (MASTER virtual router).

•

backup (BACKUP virtual router).

the interface’s priority and the IP address of the MASTER.
Hold Down:...

Adv rcvd:...

This line displays additional VRRP configuration information:
•

Hold Down displays the hold down timer interval in
seconds.

•

Preempt displays TRUE if preempt is configured and
FALSE if preempt is not configured.

•

AdvInt displays the Advertise Interval in seconds.

This line displays counters for the following:
•

Adv rcvd displays the number of VRRP advertisements
received on the interface.

•

Adv sent displays the number of VRRP advertisements
sent on the interface.

•

Bad pkts rcvd displays the number of invalid packets
received on the interface.

Virtual MAC
address

Displays the virtual MAC address of the VRRP group.

Virtual IP address

Displays the virtual IP address of the VRRP router to which
the interface is connected.

Tracking states...

Displays information on the tracked interfaces or objects
configured for a VRRP group (track command), including:
•

1756

UP or DOWN state of the tracked interface or object (Up
or Dn).

Virtual Router Redundancy Protocol (VRRP)

Line Beginning
with

Example

Description
•

Interface type and slot/port or object number,
description, and time since the last change in the state of
the tracked object.

•

Cost to be subtracted from the VRRP group priority if the
state of the tracked interface/object goes DOWN.

Dell#show vrrp ipv6
-----------------GigabitEthernet 5/6, IPv6 VRID: 255, Version: 3, Net:
fe80::201:e8ff:fe7a:6bb9
VRF: 0 default-vrf
State: Master, Priority: 101, Master: fe80::201:e8ff:fe7a:6bb9
(local)
Hold Down: 0 centisec, Preempt: TRUE, AdvInt: 100 centisec
Accept Mode: FALSE, Master AdvInt: 100 centisec
Adv rcvd: 0, Bad pkts rcvd: 0, Adv sent: 64
Virtual MAC address:
00:00:5e:00:02:ff
Virtual IP address:
1::255 fe80::255

vrrp-ipv6-group
Assign an interface to a VRRP group.

S4810
Syntax
Parameters

vrrp-ipv6-group vrid
vrid

Enter the virtual-router ID number of the VRRP group. The
VRID range is from 1 to 255.

Defaults

Not configured.

Command
Modes

INTERFACE

Command
History

This guide is platform-specific. For command information about other platforms,
refer to the relevant Dell Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version 8.4.2.1

The range of valid VRID values on the E-Series when VRF
microcode is loaded in CAM changed from 1 to 15.

Version 8.4.1.0

Introduced on the E-Series ExaScale, C-Series, and S-Series.

Version
8.3.19.0

Introduced on the S4820T.

Version 8.3.7.0

Introduced on the S4810.

Virtual Router Redundancy Protocol (VRRP)

1757

Version 8.3.2.0
Usage
Information

Introduced on the E-Series TeraScale.

The VRRP group only becomes active and sends VRRP packets when a link-local
virtual IP address is configured. When you delete the virtual address, the VRRP
group stops sending VRRP packets.
•

When VRF microcode is not loaded in CAM, the VRID for a VRRP group is the
same as the VRID number configured with the vrrp-group or vrrp-ipv6group command.

•

When VRF microcode is loaded in CAM, the VRID for a VRRP group is equal to
16 times the vrrp-group or vrrp-ipv6-group vrid number plus the ip
vrf vrf-id number. For example, if VRF microcode is loaded and VRRP group
10 is configured in VRF 2, the VRID used for the VRRP group is (16 x 10) + 2, or
162. This VRID value is used in the lowest byte of the virtual MAC address of the
VRRP group and is also used for VRF routing.
NOTE: Configure the same VRID on neighboring routers (Dell Networking or
non-Dell Networking) in the same VRRP group in order for all routers to
interoperate.

Related
Commands

1758

virtual-address — assigns up to 12 virtual IP addresses per VRRP group.

Virtual Router Redundancy Protocol (VRRP)



---

Source Exif Data:

File Type                       : PDF
File Type Extension             : pdf
MIME Type                       : application/pdf
PDF Version                     : 1.6
Linearized                      : No
Language                        : EN
Tagged PDF                      : Yes
Format                          : application/pdf
Creator                         : Dell Inc.
Subject                         : Owner's Manual2
Description                     : Owner's Manual2
Title                           : Dell 9.5(0.0) Command Line Reference Guide for the S4810 System
Producer                        : Antenna House PDF Output Library 6.1.416 (Windows (x64)); modified using iTextSharp 5.1.3 (c) 1T3XT BVBA
Keywords                        : Servers, Storage, & Networking#Networking#Blade InterconnectsChassis SwitchesFixed Port SwitchesNetworking SoftwareWireless##force10 s4810#force10-s4810#Owner's Manual2#guide# manual# guide# documentation" 9.5(0.0)
Create Date                     : 2014:06:19 08:13:26-08:00
Creator Tool                    : AH XSL Formatter V6.1 R1a for Windows (x64) : 6.1.5.11744 (2013/06/25 14:18JST)
Modify Date                     : 2014:06:20 18:04:01-05:00
Page Mode                       : UseOutlines
Page Count                      : 1758
Author                          : Dell Inc.
Trapped                         : False
Productcode                     : force10-s4810
Typecode                        : om2
Typedescription                 : Owner's Manual2
Languagecodes                   : en-us
Publishdate                     : 2014-06-20 00:00:00
Expirydate                      : 9999-09-09 00:00:00
Manualurl                       : ftp://ftp.dell.com/Manuals/all-products/esuprt_ser_stor_net/esuprt_networking/esuprt_net_fxd_prt_swtchs/force10-s4810_Owner%27s%20Manual2_en-us.pdf
Readytocopy                     : false
Isdeleted                       : False
Businesskeywords                : guide# manual# guide# documentation" 9.5(0.0)
Futureproductindication         : No
Categorypathforfutureproducts   : 
Filesize                        : 27394
Isrestricted                    : False
Productpath                     : esuprt_net_fxd_prt_swtchs
Creationdate                    : D:20140619081326-08'00'
Moddate                         : D:20140620132540-05'00'

EXIF Metadata provided by EXIF.tools