Dell Networking S6000 Instrukcja Użytkownika

Dell Configuration Guide for the S6000 System9.5(0.1)

Priority-Based Flow Control Using Dynamic Buffer Method...284Pause and Resume of Traffic...

Example of Using the continue Clause in a Route Map!route-map test permit 10match commu comm-list1set community 1:1 1:2 1:3set as-path prepend 1 2 3 4

Layer 4 ACL Rules ExamplesThe following examples show the ACL commands for Layer 4 packet filtering.Permit an ACL line with L3 information only, and t

Configure a Standard IP ACLTo configure an ACL, use commands in IP ACCESS LIST mode and INTERFACE mode.For a complete list of all the commands related

If you are creating a standard ACL with only one or two filters, you can let Dell Networking OS assign a sequence number based on the order in which t

To delete a filter, enter the show config command in IP ACCESS LIST mode and locate the sequence number of the filter you want to delete. Then use the

ip access-list extended access-list-name2. Configure an extended IP ACL filter for UDP packets.CONFIG-EXT-NACL modeseq sequence-number {deny | permit}

The following example shows an extended IP ACL in which the sequence numbers were assigned by the software. The filters were assigned sequence numbers

For information about MAC ACLs, refer to Layer 2.Assign an IP ACL to an InterfaceTo pass traffic through a configured IP ACL, assign that ACL to a phy

Example of Viewing ACLs Applied to an InterfaceDell(conf-if)#show conf!interface GigabitEthernet 0/0 ip address 10.2.1.100 255.255.255.0 ip access-g

seq 5 permit tcp any any seq 10 deny icmp any anyseq 15 permit 1.1.1.2Configure Egress ACLsEgress ACLs are supported on the S6000 platform.Egress A

Managing ECMP Group Paths... 311Creating an ECMP Gro

Dell(conf-if-te-0/0)#Dell(conf-if-te-0/0)#Dell(conf-if-te-0/0)#endDell#Applying Egress Layer 3 ACLs (Control-Plane)By default, packets originated from

• To permit routes with the mask greater than /8 but less than /12, enter permit x.x.x.x/x ge 8.• To deny routes with a mask less than /24, enter deny

• le max-prefix-length: the maximum prefix length to match (from 0 to 32).Example of Assigning Sequence Numbers to FiltersIf you want to forward all r

Dell(conf-nprefixl)#permit 123.23.0.0 /16Dell(conf-nprefixl)#deny 133.24.56.0 /8Dell(conf-nprefixl)#show conf!ip prefix-list awe seq 5 permit 123.23.

Applying a Prefix List for Route RedistributionTo pass traffic through a configured prefix list, use the prefix list in a route redistribution command

CONFIG-ROUTER-OSPF modedistribute-list prefix-list-name out [connected | rip | static]Example of Viewing Configured Prefix Lists (ROUTER OSPF mode)To

• IPv4, IPv6, or MAC ACLEXEC moderesequence access-list {ipv4 | ipv6 | mac} {access-list-name StartingSeqNum Step-to-Increment}• IPv4 or IPv6 prefix-l

seq 15 permit ip any host 1.1.1.3seq 20 permit ip any host 1.1.1.4Dell# endDell# resequence access-list ipv4 test 2 2Dell# show running-config acl!ip

When a stack unit is reset or a stack unit undergoes a failure, the ACL agent registers with the port mirroring application. The port mirroring utilit

0 Te 0/0 Te 0/2 rx Flow N/A N/A The show config command has been modified to display monitoring co

Delayed Installation of ECMP Routes Into BGP...336RDMA Over Converged Ethernet (

Example of the flow-based enable CommandTo view an access-list that you applied to an interface, use the show ip accounting access-list command from E

7Bidirectional Forwarding Detection (BFD)Bidirectional forwarding detection (BFD) is supported only on the S6000 platform.BFD is a protocol that is us

NOTE: A session state change from Up to Down is the only state change that triggers a link state change in the routing protocol client.BFD Packet Form

Field Descriptionsystem clears the poll bit and sets the final bit in its response. The poll and final bits are used during the handshake and in Deman

BFD SessionsBFD must be enabled on both sides of a link in order to establish a session.The two participating systems can assume either of two roles:A

handshake. Now the discriminator values have been exchanged and the transmit intervals have been negotiated.4. The passive system receives the control

receives a Down status notification from the remote system, the session state on the local system changes to Init.Figure 10. Session State ChangesImpo

• Configure BFD for IS-IS• Configure BFD for BGP• Configure BFD for VRRP• Configuring Protocol Liveness• Troubleshooting BFDConfigure BFD for Physical

Establishing a Session on Physical PortsTo establish a session, enable BFD at the interface level on both ends of the link, as shown in the following

Remote Addr: 2.2.2.2Remote MAC Addr: 00:01:e8:06:95:a2Int: GigabitEthernet 4/24State: UpConfigured parameters: TX: 100ms, RX: 100ms, Multiplier: 3Nei

Adjusting Timers... 362Adj

Number of messages from IFA about port state change: 0 Number of messages communicated b/w Manager and Agent: 7Disabling and Re-Enabling BFDBFD is

Establishing Sessions for Static RoutesSessions are established for all neighbors that are the next hop of a static route.Figure 12. Establishing Sess

• Change parameters for all static route sessions.CONFIGURATION modeip route bfd interval milliseconds min_rx milliseconds multiplier value role [acti

Establishing Sessions with OSPF NeighborsBFD sessions can be established with all OSPF neighbors at once or sessions can be established with all neigh

INTERFACE modeip ospf bfd all-neighborsExample of Verifying Sessions with OSPF NeighborsTo view the established sessions, use the show bfd neighbors c

• Disable BFD sessions with all OSPF neighbors.ROUTER-OSPF modeno bfd all-neighbors• Disable BFD sessions with all OSPF neighbors on an interface.INTE

To view session parameters, use the show bfd neighbors detail command, as shown in the example in Displaying BFD for BGP Information.• Change paramete

Establishing Sessions with IS-IS NeighborsBFD sessions can be established for all IS-IS neighbors at once or sessions can be established for all neigh

The bold line shows that IS-IS BFD sessions are enabled.R2(conf-router_isis)#bfd all-neighborsR2(conf-router_isis)#do show bfd neighbors* - Active

INTERFACE moseisis bfd all-neighbors disableConfigure BFD for BGPBidirectional forwarding detection (BFD) for BGP is supported on the S6000 platform.I

Configuring EIS... 385Manageme

Figure 15. Establishing Sessions with BGP NeighborsThe sample configuration shows alternative ways to establish a BFD session with a BGP neighbor:• By

typical response is to terminate the peering session for the routing protocol and reconverge by bypassing the failed neighboring router. A log message

ROUTER BGP modeneighbor {ip-address | peer-group-name} bfd disable• Remove the disabled state of a BFD for BGP session with a specified neighbor.ROUTE

Examples of the BFD show CommandsThe following example shows verifying a BGP configuration.R2# show running-config bgp!router bgp 2 neighbor 1.1.1.2

Number of messages from IFA about port state change: 0Number of messages communicated b/w Manager and Agent: 5Session Discriminator: 10Neighbor Discri

Down : 0Admin Down : 2The following example shows viewing BFD summary information.The bold line shows the message displayed when you e

Connections established 1; dropped 0 Last reset neverLocal host: 2.2.2.3, Local port: 63805Foreign host: 2.2.2.2, Foreign port: 179E1200i_ExaScale#

Establishing Sessions with All VRRP NeighborsBFD sessions can be established for all VRRP neighbors at once, or a session can be established with a pa

The bold line shows that VRRP BFD sessions are enabled.Dell(conf-if-gi-4/25)#vrrp bfd all-neighborsDell(conf-if-gi-4/25)#do show bfd neighbor* - A

Disabling BFD for VRRPIf you disable any or all VRRP sessions, the sessions are torn down.A final Admin Down control packet is sent to all neighbors a

Enabling Pause Frames...411Configure the

Down for neighbor 2.2.2.2 on interface Gi 4/24 (diag: 0) 00:54:38 : Sent packet for session with neighbor 2.2.2.2 on Gi 4/24 TX packet dump:

8Border Gateway Protocol IPv4 (BGPv4)Border gateway protocol IPv4 (BGPv4) version 4 (BGPv4) is supported on the S6000 platform.This chapter provides a

Figure 17. Internal BGPBGP version 4 (BGPv4) supports classless interdomain routing and aggregate routes and AS paths. BGP is a path vector protocol —

Figure 18. BGP Routers in Full MeshThe number of BGP speakers each BGP peer must maintain increases exponentially. Network management quickly becomes

Establish a SessionInformation exchange between peers is driven by events and timers. The focus in BGP is on the traffic routing policies.In order to

Route reflection divides iBGP peers into two groups: client peers and nonclient peers. A route reflector and its client peers form a route reflection

• Next HopNOTE: There are no hard coded limits on the number of attributes that are supported in the BGP. Taking into account other constraints such a

Figure 20. BGP Best Path SelectionBest Path Selection Details1. Prefer the path with the largest WEIGHT attribute.2. Prefer the path with the largest

c. Paths with no MED are treated as “worst” and assigned a MED of 4294967295.7. Prefer external (EBGP) to internal (IBGP) paths or confederation EBGP

and AS300. This is advertised to all routers within AS100, causing all BGP speakers to prefer the path through Router B.Figure 21. BGP Local Preferenc

Important Points to Remember... 436Enabling UDP Helper..

Figure 22. Multi-Exit DiscriminatorsNOTE: Configuring the set metric-type internal command in a route-map advertises the IGP cost as MED to outbound E

*> 7.0.0.0/30 10.114.8.33 0 0 18508 ?*> 9.2.0.0/16 10.114.8.33 10 0 18508 701 iAS PathThe AS path is the list of

Multiprotocol BGPMultiprotocol extensions for BGP (MBGP) is defined in IETF RFC 2858. MBGP allows different types of address families to be distribute

internal configured, BGP advertises the metric configured in the redistribute command as MED.• If BGP peer outbound route-map has metric configured, a

Configure 4-byte AS numbers with the four-octet-support command.AS4 Number RepresentationDell Networking OS supports multiple representations of 4-byt

!router bgp 100bgp asnotation asdot+bgp four-octet-as-supportneighbor 172.30.1.250 local-as 65057<output truncated>Dell(conf-router_bgp)#do show

appear as if it still belongs to Router B’s old network (AS 200) as far as communicating with Router C is concerned.Figure 23. Before and After AS Num

3. Prepend "65001 65002" to as-path.Local-AS is prepended before the route-map to give an impression that update passed through a router in

• The f10BgpM2[Cfg]PeerReflectorClient field is populated based on the assumption that route-reflector clients are not in a full mesh if you enable BG

By default, Dell Networking OS compares the MED attribute on different paths from within the same AS (the bgp always-compare-med command is not enable

Monitoring iSCSI Traffic Flows... 464Application of Qu

NOTE: Sample Configurations for enabling BGP routers are found at the end of this chapter.1. Assign an AS number and enter ROUTER BGP mode.CONFIGURATI

CONFIG-ROUTER-BGP modeneighbor {ip-address | peer-group-name} no shutdownExamples of the show ip bgp CommandsNOTE: When you change the configuration o

For the router’s identifier, Dell Networking OS uses the highest IP address of the Loopback interfaces configured. Because Loopback interfaces are vir

Connections established 0; dropped 0 Last reset never No active TCP connectionDell#The following example shows verifying the BGP configuration usi

bgp asnotation asplainNOTE: ASPLAIN is the default method Dell Networking OS uses and does not appear in the configuration display.• Enable ASDOT AS N

Configuring Peer GroupsTo configure multiple BGP neighbors at one time, create and populate a BGP peer group.An advantage of peer groups is that membe

To add an internal BGP (IBGP) neighbor, configure the as-number parameter with the same BGP as-number configured in the router bgp as-number command.E

neighbor 10.1.1.1 shutdown neighbor 10.14.8.60 remote-as 18505 neighbor 10.14.8.60 no shutdownDell(conf-router_bgp)#To disable a peer group, use t

When you enable fall-over, BGP tracks IP reachability to the peer remote address and the peer local address. Whenever either address becomes unreachab

Notification History 'Connection Reset' Sent : 5 Recv: 0Local host: 200.200.200.200, Local port: 65519Foreign host: 100.100.100.100, Foreig

Configuring LACP Commands...499LACP Configuration Task

CONFIG-ROUTER-BGP modeneighbor peer-group-name subnet subnet-number maskThe peer group responds to OPEN messages sent on this subnet.3. Enable the pee

network 100.10.92.0/24 network 192.168.10.0/24 bgp four-octet-as-support neighbor 10.10.21.1 remote-as 65123 neighbor 10.10.21.1 filter-list Lau

neighbor 100.10.92.9 local-as 6500 neighbor 100.10.92.9 no shutdown neighbor 192.168.10.1 remote-as 65123 neighbor 192.168.10.1 update-source Loo

• Set maximum time to retain the restarting peer’s stale paths.CONFIG-ROUTER-BGP modebgp graceful-restart [stale-path-time time-in-seconds]The default

to affect interdomain routing. By identifying certain ASN in the AS_PATH, you can permit or deny routes based on the number in its AS_PATH.AS-PATH ACL

0x6cc18d4 0 1 18508 701 2914 4713 17935 i0x5982e44 0 162 18508 209 i0x67d4a14 0 2 18508 701 19878 ?0x559972c 0 31

The following example applies access list Eagle to routes inbound from BGP peer 10.5.5.2. Access list Eagle uses a regular expression to deny routes o

redistribute isis [level-1 | level-1-2 | level-2] [metric value] [route-map map-name]Configure the following parameters:– level-1, level-1-2, or level

IETF RFC 1997 defines the COMMUNITY attribute and the predefined communities of INTERNET, NO_EXPORT_SUBCONFED, NO_ADVERTISE, and NO_EXPORT. All BGP ro

deny 701:667 deny 702:667 deny 703:667 deny 704:666 deny 705:666 deny 14551:666Dell#Configuring an IP Extended Community ListTo configure an IP

TIA Organizationally Specific TLVs...532Configure LLDP...

Filtering Routes with Community ListsTo use an IP community list or IP extended community list to filter routes, you must apply a match community filt

To view the BGP configuration, use the show config command in CONFIGURATION ROUTER BGP mode.If you want to remove or add a specific COMMUNITY number f

Dell>show ip bgp communityBGP table version is 3762622, local router ID is 10.114.8.48Status codes: s suppressed, d damped, h history, * valid, >

CONFIG-ROUTER-BGP modebgp default local-preference value– value: the range is from 0 to 4294967295.The default is 100.To view the BGP configuration, u

set next-hop ip-addressChanging the WEIGHT AttributeTo change how the WEIGHT attribute is used, enter the first command. You can also use route maps t

For inbound and outbound updates the order of preference is:• prefix lists (using the neighbor distribute-list command)• AS-PATH ACLs (using the neigh

• If the prefix list contains no filters, all routes are permitted.• If none of the routes match any of the filters in the prefix list, the route is d

Filtering BGP Routes Using AS-PATH InformationTo filter routes based on AS-PATH information, use these commands.1. Create a AS-PATH ACL and assign it

• Assign an ID to a router reflector cluster.CONFIG-ROUTER-BGP modebgp cluster-id cluster-idYou can have multiple clusters in an AS.• Configure the lo

Configuring BGP ConfederationsAnother way to organize routers within an AS and reduce the mesh for IBGP peers is to configure BGP confederations.As wi

Notes, Cautions, and WarningsNOTE: A NOTE indicates important information that helps you make better use of your computer.CAUTION: A CAUTION indicates

Limiting the Source-Active Messages from a Peer...567Preventing MSDP from Cachi

• history entry — an entry that stores information on a downed route• dampened path — a path that is no longer advertised• penalized path — a path tha

show ip bgp flap-statistics [ip-address [mask]] [filter-list as-path-name] [regexp regular-expression]– ip-address [mask]: enter the IP address and ma

Dampening enabled. 0 history paths, 0 dampened paths, 0 penalized pathsNeighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd10.114.8

To reset a BGP connection using BGP soft reconfiguration, use the clear ip bgp command in EXEC Privilege mode at the system prompt.When you enable sof

Route Map ContinueThe BGP route map continue feature, continue [sequence-number], (in ROUTE-MAP mode) allows movement from one route-map entry to a sp

• When exchanging updates with the peer, BGP sends and receives IPv4 multicast routes if the peer is marked as supporting that AFI/SAFI.• Exchange of

EXEC Privilege modedebug ip bgp [ip-address | peer-group peer-group-name] notifications [in | out]• View information about BGP updates and filter by p

Capabilities advertised to neighbor for IPv4 Unicast : MULTIPROTO_EXT(1) ROUTE_REFRESH(2) CISCO_ROUTE_REFRESH(128)For address family: IPv4 UnicastB

00000000 00000000 00000000 00000000 0181a1e4 0181a25c 41af92c0 00000000 00000000 00000000 00000000 00000001 0181a1e4 0181a25c 41af9400 00000000

Sample ConfigurationsThe following example configurations show how to enable BGP and set up some peer groups. These examples are not comprehensive dir

31 Open Shortest Path First (OSPFv2 and OSPFv3)...605Protocol Overview...

no shutdownR1(conf-if-lo-0)#int te 1/21R1(conf-if-te-1/21)#ip address 10.0.1.21/24R1(conf-if-te-1/21)#no shutdownR1(conf-if-te-1/21)#show config!inter

R2(conf-router_bgp)#network 192.168.128.0/24R2(conf-router_bgp)#neighbor 192.168.128.1 remote 99R2(conf-router_bgp)#neighbor 192.168.128.1 no shutR2(c

R1(conf-router_bgp)# neighbor 192.168.128.3 peer-group BBBR1(conf-router_bgp)#R1(conf-router_bgp)#show config!router bgp 99network 192.168.128.0/24nei

Minimum time between advertisement runs is 30 secondsMinimum time before advertisements start is 0 secondsExample of Enabling Peer Groups (Router 2)R2

BGP-RIB over all using 207 bytes of memory2 BGP path attribute entrie(s) using 128 bytes of memory2 BGP AS-PATH entrie(s) using 90 bytes of memory2 ne

9Content Addressable Memory (CAM)Content addressable memory (CAM) is supported on the S6000 platform.CAM is a type of memory that stores information i

CAM Allocation SettingOpenflow 0fedgovacl 0The following additional CAM allocation settings are supported on the S6000, S4810 or S4820T platforms only

EXEC Privilege modecam-acl {default | l2acl number ipv4acl number ipv6acl number ipv4qos number l2qos number l2pt number ipmacacl number vman-qos | vm

IPv4Flow : 24K entries : 24K entriesEgL2ACL : 1K entries : 1K entriesEgIPv4ACL : 1K entries : 1K entriesReserved

L2PT : 0 0IpMacAcl : 0 0VmanQos : 0

Implementation Information... 657Protocol Ove

-- Stack unit 7 -- Current Settings(in block sizes) 1 block = 128 entriesL2Acl : 6Ipv4Acl : 4I

Troubleshoot CAM ProfilingThe following section describes CAM profiling troubleshooting.CAM Profile MismatchesThe CAM profile on all cards must match

A table-full error message is displayed once the number of entries is crossed the table size. Table-full message is generated only once when it crosse

10Control Plane Policing (CoPP)Control plane policing (CoPP) is supported on the S6000 platform.Control plane policing (CoPP) uses access control list

Figure 26. CoPP Implemented Versus CoPP Not ImplementedConfigure Control Plane PolicingFor example, border gateway protocol (BGP) and internet control

CoPP policies are configured by creating extended ACL rules and specifying rate-limits through QoS policies. The ACLs and QoS policies are assigned as

Examples of Configuring CoPP for Different ProtocolsThe following example shows creating the IP/IPv6/MAC extended ACL.Dell(conf)#ip access-list extend

The following example shows creating the control plane service policy.Dell(conf)#control-plane-cpuqosDell(conf-control-cpuqos)#service-policy rate-lim

The following example shows creating the control plane service policy.Dell#confDell(conf)#control-planeDell(conf-control-plane)#service-policy rate-li

GVRP 01:80:c2:00:00:21 any Q7 CP _STP 01:80:c2:00:00:00 any Q7 CP _ISIS 01:80:c2:00:00:14/15 any Q

Configure Per-VLAN Spanning Tree Plus... 685Related Configuration

11Data Center Bridging (DCB)Data center bridging (DCB) is supported on the S6000 platform.NOTE: Ethernet Enhancements in Data Center BridgingThe follo

network that may drop packets in case of network congestion. IP networks rely on transport protocols (for example, TCP) for reliable data transmission

The system supports loading two DCB_Config files:• FCoE converged traffic with priority 3.• iSCSI storage traffic with priority 4.In the Dell Networki

• PFC uses DCB MIB IEEE 802.1azd2.5 and PFC MIB IEEE 802.1bb-d2.2.• PFC is supported on specified 802.1p priority traffic (dot1p 0 to 7) and is config

Table 10. ETS Traffic GroupingsTraffic Groupings DescriptionPriority group A group of 802.1p priorities used for bandwidth allocation and queue schedu

Data Center Bridging Exchange Protocol (DCBx)The data center bridging exchange (DCBx) protocol is disabled by default on the S4810; ETS is also disabl

Enabling Data Center BridgingDCB is automatically configured when you configure FCoE or iSCSI optimization.Data center bridging supports converged enh

NOTE: Dell Networking does not recommend mapping all ingress traffic to a single queue when using PFC and ETS. However, Dell Networking does recommend

fpStatsPerPgTableThis table fetches the Allocated Min cells, Shared cells and Headroom cells per Priority Group, the mode in which the buffer cells ar

Enter the 802.1p values of the frames to be paused.The range is from 0 to 7.The default is none.Maximum number of loss less queues supported on the sw

Classifying Incoming Packets Using ECN and Color-Marking...723Sample configuration to mark non-ecn pack

You can enable any number of 802.1p priorities for PFC. Queues to which PFC priority traffic is mapped are lossless by default. Traffic may be interru

interface type slot/port2. Configure the port queues that will still function as no-drop queues for lossless traffic.INTERFACE modepfc no-drop queues

By default, the PFC buffer is enabled on all ports on the stack unit.• Configure the PFC buffer for all port pipes in a specified stack unit by specif

• When allocating bandwidth or configuring a queue scheduler for dot1p priorities in a priority group on a DCBx CIN interface, take into account the C

4. Exit DCB Output Policy Configuration mode.POLICY-MAP-OUT-ETS modeexitDell Networking OS Behavior: Traffic in priority groups is assigned to strict-

Creating an ETS Priority GroupAn ETS priority group specifies the range of 802.1p priority traffic to which a QoS output policy with ETS settings is a

The maximum number of priority groups supported in ETS output policies on an interface is equal to the number of data queues (4) on the port. The 802.

Dell Networking OS Behavior: Create a DCB output policy to associate a priority group with an ETS output policy with scheduling and bandwidth configur

Configuring Bandwidth Allocation for DCBx CINAfter you apply an ETS output policy to an interface, if the DCBx version used in your data center networ

dcb-policy input stack-unit {all | stack-unit-id} stack-ports all dcb-input-policy-nameEntering this command removes all DCB input policies applied to

42 Service Provider Bridging...758VLAN Stacking...

DCBx OperationDCBx performs the following operations:• Discovers DCB configuration (such as PFC and ETS) in a peer device.• Detects DCB mis-configurat

• If the received peer configuration is not compatible with the currently configured port configuration, the link with the DCBx peer port is disabled

NOTE: On a DCBx port, application priority TLV advertisements are handled as follows:• The application priority TLV is transmitted only if the priorit

A newly elected configuration source propagates configuration changes received from a peer to the other auto-configuration ports. Ports receiving auto

Behavior of Tagged PacketsThe below is example for enabling PFC for priority 2 for tagged packets. Priority (Packet Dot1p) 2 will be mapped to PG6 on

Table 11.Internal-priority0 1 2 3 4 5 6 7Queue 1 2 0 3 4 5 6 7policy-map-input policy-dscp-based-pfc service-queue 0 class-map dscp-pfc-1 service-queu

Figure 29. DCBx Sample TopologyDCBx Prerequisites and RestrictionsThe following prerequisites and restrictions apply when you configure DCBx operation

[no] protocol lldp3. Configure the DCBx version used on the interface, where: auto configures the port to operate using the DCBx version received from

• fcoe: enables the advertisement of FCoE in Application Priority TLVs.• iscsi: enables the advertisement of iSCSI in Application Priority TLVs.The de

NOTE: You can configure the transmission of more than one TLV type at a time. You can only enable ETS recommend TLVs (ets-reco) if you enable ETS conf

44 Simple Network Management Protocol (SNMP)...783Protocol Overview...

in a DCBx TLV from a remote peer but received a different, conflicting DCBx version.DSM_DCBx_PFC_PARAMETERS_MATCH and DSM_DCBx_PFC_PARAMETERS_MISMATCH

Command Outputshow qos priority-groupsDisplays the ETS priority groups configured on the switch, including the 802.1p priority classes and ID of each

The following example shows the show qos dcb-output command.Dell# show qos dcb-outputdcb-output ets priority-group san qos-policy san priority-group

The following table describes the show interface pfc summary command fields.Table 13. show interface pfc summary Command DescriptionFields Description

Fields DescriptionApplication Priority TLV: ISCSI TLV Tx Status Status of ISCSI advertisements in application priority TLVs from local DCBx port: enab

1 0,1,2 100% ETS2 3 0 % SP3 4,5,6,7 0 % SP4 - -5

Local Parameters :------------------Local is enabledTC-grp Priority# Bandwidth TSA0 0,1,2,3,4,5,6,7 100% ETS1 0% ETS2 0% ETS3 0% ETS4 0% ETS5 0% ETS6

------------------Local is enabledTC-grp Priority# Bandwidth TSA0 0,1,2,3,4,5,6,7 100% ETS1

Field DescriptionLocal Parameters ETS configuration on local port, including Admin mode (enabled when a valid TLV is received from a peer), priority g

Number of Traffic Classes is 1Admin mode is onAdmin Parameters:--------------------Admin is enabledTC-grp Priority# Bandwidth TSA--------

46 Spanning Tree Protocol (STP)... 808Protocol Overview...

Pkts 1 Input ETS Reco TLV pkts, 1 Output ETS Reco TLV pkts, 0 Error ETS Reco TLV PktsThe following example shows the show interface DCBx detail comma

Field DescriptionConfiguration Source Specifies whether the port serves as the DCBx configuration source on the switch: true (yes) or false (no).Local

policy map to forward the matched DSCP packet to that queue. PFC frames gets generated with PFC priority associated with the queue when the queue gets

PRIORITY to PG mapping (PRIO2PG) is on the ingress for each port. By default, all priorities are mapped to PG7. A priority for which PFC has to be gen

Figure 30. PFC and ETS Applied to LAN, IPC, and SAN Priority TrafficQoS Traffic Classification: The service-class dynamic dot1p command has been used

dot1p Value in the Incoming FramePriority Group Assignment3 SAN4 IPC5 LAN6 LAN7 LANThe following describes the priority group-bandwidth assignment.Pri

Dell(conf-qos-policy-out)# exitDell(conf)# qos-policy-output ipc etsDell(conf-qos-policy-out)# bandwidth-percentage 5Dell(conf-qos-policy-out)# exitEx

In this example, the configured ETS bandwidth allocation and scheduler behavior is as follows:Unused bandwidth usage:Normally, if there is no traffic

Step Task Command Command Modepriority groups is made available and allocated according to the specified percentages. If a priority group does not use

Step Task Command Command Mode1Enter interface configuration mode on an Ethernet port.interface {tengigabitEthernet slot/port | fortygigabitEthernet s

48 Tunneling ... 835Configuring a Tunnel...

Configuring Lossless QueuesDCB also supports the manual configuration of lossless queues on an interface after you disable PFC mode in a DCB map and a

Data Center Bridging: Default ConfigurationThis functionality is supported on the S6000 platform.Before you configure PFC and ETS on an S6000 switch (

As soon as you apply a DCB map with PFC enabled on an interface, DCBx starts exchanging information with a peer. The IEEE802.1Qbb, CEE and CIN version

ETS Configuration NotesETS provides a way to optimize bandwidth allocation to outbound 802.1p classes of converged Ethernet traffic. Different traffic

The following prerequisites and restrictions apply when you configure ETS bandwidth allocation or strict-priority queuing in a DCB map:• When allocati

Dynamic ingress buffering enables the sending of pause frames at different thresholds based on the number of ports that experience congestion at a tim

Configure the dcb-buffer-threshold command and its related parameters only on ports with either auto configuration or dcb-map configuration. This comm

S6000-109-Dell(conf)#dcb pfc-shared-buffer-size 4000 S6000-109-Dell(conf)#dcb pfc-total-buffer-size 50003. Configure the number of PFC queues.CONFIGUR

Applying a DCB Map in a Switch Stack Apply the same DCB map with PFC and ETS configuration to all stacked ports in a switch stack. You cannot apply di

12Dynamic Host Configuration Protocol (DHCP)Dynamic host configuration protocol (DHCP) is available on the S6000 platform.DHCP is an application layer

VLT Bandwidth Monitoring...864VLT and IGMP Snoop

Option Number and DescriptionSubnet Mask Option 1Specifies the client’s subnet mask.Router Option 3Specifies the router IP addresses that may serve as

Option Number and DescriptionIdentifiers a user-defined string used by the Relay Agent to forward DHCP client packets to a specific server.L2 DHCP Sno

Figure 32. Client and Server MessagingImplementation InformationThe following describes DHCP implementation.• Dell Networking implements DHCP based on

Configure the System to be a DHCP ServerConfiguring the system to be a DHCP server is supported only on the S6000 platform.A DHCP server is a network

3. Specify the range of IP addresses from which the DHCP server may assign addresses.DHCP <POOL> modenetwork network/prefix-length• network: the

lease {days [hours] [minutes] | infinite}The default is 24 hours.Specifying a Default GatewayThe IP address of the default router should be on the sam

Creating Manual Binding EntriesAn address binding is a mapping between the IP address and the media access control (MAC) address of a client.The DHCP

Configure the System to be a DHCP ClientA DHCP client is a network device that requests an IP address and configuration parameters from a DHCP server.

• Release the IP address dynamically acquired from a DHCP server from the interface.• Disable the DHCP client on the interface so it cannot acquire a

• To display statistics about DHCP client interfaces, use the show ip dhcp client statistics interface type slot/port command.• To clear DHCP client s

Contents1 About this Guide... 32Audience...

Configuring and Controlling VXLAN from the NVP Controller GUI...906Configuring VxLAN Gateway...

Virtual Link Trunking (VLT)A DHCP client is not supported on VLT interfaces.VLAN and Port ChannelsDHCP client configuration and behavior are the same

The received stacking configuration is always applied on the master stack unit.option #230 "unit-number:3#priority:2#stack-group:14"Configur

ip dhcp relay information-option remote-idDHCP SnoopingDHCP snooping protects networks from spoofing. In the context of DHCP snooping, ports are eithe

3. Enable DHCP snooping on a VLAN.CONFIGURATION modeip dhcp snooping vlan nameAdding a Static Entry in the Binding TableTo add a static entry in the b

Drop DHCP Packets on Snooped VLANs OnlyBinding table entries are deleted when a lease expires or the relay agent encounters a DHCPRELEASE.Line cards m

MAC flooding An attacker can send fraudulent ARP messages to the gateway until the ARP cache is exhausted, after which, traffic from the gateway is br

To see how many valid and invalid ARP packets have been processed, use the show arp inspection statistics command.Dell#show arp inspection statisticsD

The DHCP binding table associates addresses the DHCP servers assign, with the port on which the requesting client is attached. When you enable IP sour

ip dhcp source-address-validation ipmacDell Networking OS creates an ACL entry for each IP+MAC address pair in the binding table and applies it to the

13Equal Cost Multi-Path (ECMP)Equal cost multi-path (ECMP) is supported on theS6000 platform.ECMP for Flow-Based AffinityECMP for flow-based affinity

Enabling Environmental Monitoring... 959Recognize an Over

CONFIGURATION mode.ipv6 ecmp-deterministicConfiguring the Hash Algorithm SeedDeterministic ECMP sorts ECMPs in order even though RTM provides them in

NOTE: An ecmp-group index is generated automatically for each unique ecmp-group when the user configures multipath routes to the same network. The sys

Creating an ECMP Group BundleWithin each ECMP group, you can specify an interface.If you enable monitoring for the ECMP group, the utilization calcula

Dell(conf-ecmp-group-5)#show config!ecmp-group 5 interface tengigabitethernet 0/2 interface tengigabitethernet 0/3 link-bundle-monitor enableDell(c

The following is the portion of the example output from Release 9.3(0.1):Neighbor Mac-Addr Port Vid EC --------

14FCoE TransitThe Fibre Channel over Ethernet (FCoE) Transit feature is supported on the switch on Ethernet interfaces. When you enable the switch for

FIP provides functionality for discovering and logging into an FCF. After discovering and logging in, FIP allows FCoE traffic to be sent and received

Figure 33. FIP Discovery and Login Between an ENode and an FCFFIP Snooping on Ethernet BridgesIn a converged Ethernet network, intermediate Ethernet b

FCoE-generated ACLsThese take precedence over user-configured ACLs. A user-configured ACL entry cannot deny FCoE and FIP snooping frames.The following

The following sections describe how to configure the FIP snooping feature on a switch that functions as a FIP snooping bridge so that it can perform t

1About this GuideThis guide describes the protocols and features the Dell Networking Operating System (OS) supports and provides configuration instruc

For VLAN membership, you must:• create the VLANs on the switch which handles FCoE traffic (use the interface vlan command).• configure each FIP snoopi

Enable FIP Snooping on VLANsYou can enable FIP snooping globally on a switch on all VLANs or on a specified VLAN.When you enable FIP snooping on VLANs

Table 21. Impact of Enabling FIP SnoopingImpact DescriptionMAC address learning MAC address learning is not performed on FIP and FCoE frames, which ar

FCoE configuration:copy flash:/ CONFIG_TEMPLATE/ FCoE_DCB_Config running-configThe configuration files are stored in the flash memory in the CONFIG_TE

Command Outputand MAC address, FCF MAC address, VLAN ID and FC-ID.show fip-snooping fcf [fcf-mac-address]Displays information on the FCFs in FIP-snoop

Table 23. show fip-snooping sessions Command DescriptionField DescriptionENode MAC MAC address of the ENode .ENode Interface Slot/ port number of the

The following example shows the show fip-snooping fcf command.Dell# show fip-snooping fcfFCF MAC FCF Interface VLAN FC-MAP FKA_ADV_PERIOD

Number of FLOGI :1Number of FDISC :16Number of FLOGO

Field DescriptionNumber of FLOGI Number of FIP-snooped FLOGI request frames received on the interface.Number of FDISC Number of FIP-snooped FDISC requ

The following example shows the show fip-snooping vlan command.Dell# show fip-snooping vlan* = Default VLANVLAN FC-MAP FCFs Enodes Sessions----

2Configuration FundamentalsThe Dell Networking Operating System (OS) command line interface (CLI) is a text-based interface you can use to configure i

Example of Enabling the FIP Snooping Feature on the Switch (FIP Snooping Bridge)Dell(conf)# feature fip-snoopingExample of Enabling FIP Snooping on th

15Flex Hash and Optimized Boot-UpThis chapter describes the Flex Hash and fast-boot enhancements.Flex Hash Capability OverviewThis functionality is su

When load balancing RRoCE packets using flex hash is enabled, the show ip flow command is disabled. Similarly, when the show ip flow command is in use

a ToR, leaf and spine unit or configuration setup. An exterior border gateway protocol (EBGP) session exists between the ToR and leaf switch units, an

9. Traffic from North-South and South-North nodes are of line rate type.10. Traffic outage for a planned reboot is less than 30 seconds for 4000 route

because of the peer timing out, traffic disruption occurs from that point onwards, even if the system continues to maintain valid routing information

dynamic ARP or ND database entries are not present or required to be restored. The system boot up mode will not be fast boot and actions specific to t

While the above change will ensure that at least one path to each destination gets into the FIB as quickly as possible, it does prevent additional pat

occurs. You can optimize the booting time of the ToR nodes that experience a single point of failure to reduce the outage in traffic-handling operatio

16Force10 Resilient Ring Protocol (FRRP)Force10 resilient ring protocol (FRRP) is supported on the S6000 platform.FRRP provides fast network convergen

• EXEC Privilege mode has commands to view configurations, clear counters, manage configuration files, run diagnostics, and enable or disable debug op

The Member VLAN is the VLAN used to transmit data as described earlier.The Control VLAN is used to perform the health checks on the ring. The Control

Multiple FRRP RingsUp to 255 rings are allowed per system and multiple rings can be run on one system.More than the recommended number of rings may ca

Concept ExplanationControl VLAN Each ring has a unique Control VLAN through which tagged ring health frames (RHF) are sent. Control VLANs are used onl

Concept ExplanationThere is no periodic transmission of TCRHFs. The TCRHFs are sent on triggered events of ring failure or ring restoration only.Imple

Configuring the Control VLANControl and member VLANS are configured normally for Layer 2. Their status as control or member is determined at the FRRP

• For a Gigabit Ethernet interface, enter the keyword GigabitEthernet then the slot/port information.• For a SONET interface, enter the keyword sonet

• Slot/Port, range: Slot and Port ID for the interface. The range is entered Slot/Port-Port.• For a 10/100/1000 Ethernet interface, enter the keyword

• Enter the desired intervals for Hello-Interval or Dead-Interval times.CONFIG-FRRP mode.timer {hello-interval|dead-interval} milliseconds– Hello-Inte

Troubleshooting FRRPTo troubleshoot FRRP, use the following information.Configuration Checks• Each Control Ring must use a unique VLAN ID.• Only two i

no ip address switchport no shutdown!interface Vlan 101 no ip address tagged GigabitEthernet 2/14,31 no shutdown!interface Vlan 201 no ip addr

CLI Command Mode Prompt Access CommandNOTE: Access all of the following modes from CONFIGURATION mode.AS-PATH ACLDell(config-as-path)# ip as-path acce

17GARP VLAN Registration Protocol (GVRP)GARP VLAN registration protocol (GVRP) is supported on the S6000 platform.Typical virtual local area network (

Configure GVRPTo begin, enable GVRP.To facilitate GVRP communications, enable GVRP globally on each switch. Then, GVRP configuration is per interface

• Configure a GARP TimerEnabling GVRP GloballyTo configure GVRP globally, use the following command.• Enable GVRP for the entire switch.CONFIGURATION

not be unconfigured when it receives a Leave PDU. Therefore, the registration mode on that interface is FIXED.• Forbidden Mode — Disables the port to

LeaveAll Timer 5000Dell(conf)#Dell Networking OS displays this message if an attempt is made to configure an invalid GARP timer: Dell(conf)#garp time

18Internet Group Management Protocol (IGMP)Internet group management protocol (IGMP) is supported on the S6000 platform.Multicast is premised on ident

Figure 37. IGMP Messages in IP PacketsJoin a Multicast GroupThere are two ways that a host may join a multicast group: it may respond to a general que

response, the querier removes the group from the list associated with forwarding port and stops forwarding traffic for that group to the subnet.IGMP V

Figure 39. IGMP Version 3–Capable Multicast Routers Address StructureJoining and Filtering Groups and SourcesThe following illustration shows how mult

Figure 40. Membership Reports: Joining and FilteringLeaving and Staying in GroupsThe following illustration shows how multicast routers track and refr

CLI Command Mode Prompt Access CommandRAPID SPANNING TREEDell(config-rstp)# protocol spanning-tree rstpREDIRECTDell(conf-redirect-list)# ip redirect-l

Figure 41. Membership Queries: Leaving and StayingConfigure IGMPConfiguring IGMP is a two-step process.1. Enable multicast routing using the ip multic

• Fast Convergence after MSTP Topology Changes• Designating a Multicast Router InterfaceViewing IGMP Enabled InterfacesInterfaces that are enabled wit

IGMP version is 3Dell(conf-if-gi-1/13)#Viewing IGMP GroupsTo view both learned and statically configured IGMP groups, use the following command.• Vi

INTERFACE modeip igmp query-interval• Adjust the maximum response time.INTERFACE modeip igmp query-max-resp-time• Adjust the last member query interva

Enabling IGMP Immediate-LeaveIf the querier does not receive a response to a group-specific or group-and-source query, it sends another (querier robus

• View the configuration.CONFIGURATION modeshow running-config• Disable snooping on a VLAN.INTERFACE VLAN modeno ip igmp snoopingRelated Configuration

• Configure the switch to only forward unregistered packets to ports on a VLAN that are connected to mrouter ports.CONFIGURATION modeno ip igmp snoopi

ip igmp snooping last-member-query-intervalFast Convergence after MSTP Topology ChangesThe following describes the fast convergence feature.When a por

routes. If SSH is specified as a management application, SSH links to and from an unknown destination uses the management default route.Protocol Separ

can configure two default routes, one configured on the management port and the other on the front-end port.Two tables, namely, Egress Interface Selec

CLI Command Mode Prompt Access CommandLLDP MANAGEMENT INTERFACEDell(conf-lldp-mgmtIf)#management-interface (LLDP Mode)LINEDell(config-line-console) or

When the feature is disabled using the no management egress-interface-selection command, the following operations are performed:• All management appli

the show management application pkt-drop-cntr command. This counter is cleared using clear management application pkt-drop-cntr command.• Packets whos

traffic for such end-user-originated sessions destined to management port ip1 is handled using the EIS route lookup.Handling of Transit Traffic (Traff

This phenomenon occurs where traffic is transiting the switch. Traffic has not originated from the switch and is not terminating on the switch.• Drop

Protocol Behavior when EIS is Enabled Behavior when EIS is Disableddns EIS Behavior Default Behaviorftp EIS Behavior Default Behaviorntp EIS Behavior

Default Behavior: Route lookup is done in the default routing table and appropriate egress port is selected.Protocol Behavior when EIS is Enabled Beha

Designating a Multicast Router InterfaceTo designate an interface as a multicast router interface, use the following command.Dell Networking OS also h

19InterfacesThis chapter describes interface types, both physical and logical, and how to configure them with Dell Networking Operating System (OS).•

Interface TypesThe following table describes different interface types.Interface Type Modes Possible Default Mode Requires Creation Default StatePhysi

Hardware is Force10Eth, address is 00:01:e8:05:f3:6a Current address is 00:01:e8:05:f3:6aPluggable media present, XFP type is 10GBASE-LR. Medium is

-- Stack Info --Unit UnitType Status ReqTyp CurTyp Version Ports-------------------------------------------------

interface GigabitEthernet 9/7 no ip address shutdown!interface GigabitEthernet 9/8 no ip address shutdown!interface GigabitEthernet 9/9 no ip add

Configuration Task List for Physical InterfacesBy default, all interfaces are operationally disabled and traffic does not pass through them.The follow

Type of Interface Possible Modes Requires Creation Default State10/100/1000 Ethernet, 10 Gigabit EthernetLayer 2Layer 3No Shutdown (disabled)Managemen

For information about enabling and configuring the Spanning Tree Protocol, refer to Spanning Tree Protocol (STP).To view the interfaces in Layer 2 mod

The ip-address must be in dotted-decimal format (A.B.C.D) and the mask must be in slash format (/xx).Add the keyword secondary if the IP address is th

Configuring EISEIS is compatible with the following protocols: DNS, FTP, NTP, RADIUS, sFlow, SNMP, SSH, Syslog, TACACS, Telnet, and TFTP.To enable and

Configuring Management Interfaces on the S-SeriesYou can manage the S-Series from any port.To configure an IP address for the port, use the following

NOTE: To monitor VLAN interfaces, use Management Information Base for Network Management of TCP/IP-based internets: MIB-II (RFC 1213).NOTE: You cannot

• View Loopback interface configurations.EXEC modeshow interface loopback number• Delete a Loopback interface.CONFIGURATION modeno interface loopback

Port Channel BenefitsA port channel interface provides many benefits, including easy management, link redundancy, and sharing.Port channels are transp

no ip address no shutdownLayer 2 protocols are disabled by default. To enable Layer 2 protocols, use the no disable command. For example, in PROTOC

configuration becomes the common speed of the port channel. If the other interfaces configured in that port channel are configured with a different sp

You can configure a port channel as you would a physical interface by enabling or configuring protocols or assigning access control lists.Adding a Phy

Gi 13/8 (Up) Gi 13/13 (Up) Gi 13/14 (Up)Dell#The following example shows the

Reassigning an Interface to a New Port ChannelAn interface can be a member of only one port channel. If the interface is a member of a port channel, r

Example of Configuring the Minimum Oper Up Links in a Port ChannelDell#config tDell(conf)#int po 1Dell(conf-if-po-1)#minimum-links 5Dell(conf-if-po-1)

– secondary: the IP address is the interface’s backup IP address. You can configure up to eight secondary IP addresses.Deleting or Disabling a Port Ch

– ip-selection [dest-ip | source-ip] — Distribute IP traffic based on the IP destination or source address.– mac [dest-mac | source-dest-mac | source-

The hash-algorithm command is specific to ECMP group. The default ECMP hash configuration is crc-lower. This command takes the lower 32 bits of the ha

Bulk Configuration ExamplesUse the interface range command for bulk configuration.• Create a Single-Range• Create a Multiple-Range• Exclude Duplicate

Overlap Port RangesThe following is an example showing how the interface-range prompt extends a port range from the smallest start port number to the

4 Management... 54Configuring Privilege Levels...

Short-Cut Key CombinationActionCNTL-A Moves the cursor to the beginning of the command line.CNTL-B Moves the cursor back one character.CNTL-D Deletes

Choosing an Interface-Range MacroTo use an interface-range macro, use the following command.• Selects the interfaces range to be configured using the

Traffic statistics: Current Rate Delta Input bytes: 0 0 Bps 0 Output bytes: 0 0 Bps 0 Input packets:

EXEC Privilege modeshow tdr gigabitethernet <slot>/<port>Splitting QSFP Ports to SFP+ PortsSplitting QSFP ports to SFP+ ports is supported

When connected to a QSFP or QSFP+ port on a 40 Gigabit adapter, QSA acts as an interface for the SFP or SFP+ cables. This interface enables you to dir

Support for LM4 OpticsThe newly supported LM4 optics are similar in behavior to the LR4 optics that are already supported. However, in the output of s

SFP+ 0 Id = 0x0dSFP+ 0 Ext Id = 0x00SFP+ 0 Connector = 0x23……………………….Dell#show interfaces tengi

QSFP 0 Connector = 0x23QSFP 0 Transceiver Code = 0x08 0x00 0x00 0x00 0x00 0x00 0x00 0x00QSFP 0 Encoding = 0x00…

Pluggable media present, SFP+ type is 10GBASE-SX……….LineSpeed 10000 MbitDell#show interfaces tengigabitethernet 0/4gigabitethernet 0/0 is up, line pro

0 10 QSFP 4x10GBASE-CR1-3M APF12420031B3P0 11 QSFP 4x10GBASE-CR1-3M APF12420031B3P0 12

To view dampening information on all or specific dampened interfaces, use the show interfaces dampening command from EXEC Privilege mode.Dell# show in

• show run | grep Ethernet returns a search result with instances containing a capitalized “Ethernet,” such as interface GigabitEthernet 0/0.• show ru

Transmission MediaMTU Range (in bytes)Ethernet594-12000 = link MTU576-9234 = IP MTULink Bundle MonitoringLink bundle monitoring is supported only on t

Control how the system responds to and generates 802.3x pause frames on Ethernet interfaces. The default is rx off tx off. INTERFACE mode. flowcontrol

The flow control sender and receiver must be on the same port-pipe. Flow control is not supported across different port-pipes.To enable pause frames,

• All members must have the same link MTU value and the same IP MTU value.• The port channel link MTU and IP MTU must be less than or equal to the lin

Setting the Speed and Duplex Mode of Ethernet InterfacesTo discover whether the remote and local interface requires manual speed synchronization, and

Gi 0/3 Down Auto Auto --Gi 0/4 Force10Port Up 1000 Mbit Auto 30-130Gi 0/5 Down Auto Auto --Gi 0/6

• Change the default interval between keepalive messages.INTERFACE modekeepalive [seconds]• View the new setting.INTERFACE modeshow configView Advance

Configuring the Interface Sampling SizeAlthough you can enter any value between 30 and 299 seconds (the default), software polling is done once every

0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pktsReceived 0 input symbol

– For a Port Channel interface, enter the keywords port-channel then a number.– For the management interface on the RPM, enter the keyword ManagementE

NOTE: You can filter a single command output multiple times. The save option must be the last option entered. For example: Dell# command | grep regula

The compressed configuration will group all the similar looking configuration thereby reducing the size of the configuration. For this release, the co

shutdown!interface TenGigabitEthernet 0/10no ip addressshutdown!interface TenGigabitEthernet 0/34ip address 2.1.1.1/16shutdown!interface Vlan 2no ip a

no ip addressno shutdown!interface Vlan 1000ip address 1.1.1.1/16no shutdownUncompressed config size – 52 lineswrite memory compressedThe write memory

20IPv4 RoutingIPv4 routing is supported on the S6000 platform.The Dell Networking Operating System (OS) supports various IP addressing features. This

• Assigning IP Addresses to an Interface (mandatory)• Configuring Static Routes (optional)• Configure Static Routes for the Management Interface (opti

interface GigabitEthernet 0/0 ip address 10.11.1.1/24 no shutdown!Dell(conf-if)#Dell(conf-if)#show conf!interface GigabitEthernet 0/0ip address 10.1

S 6.1.2.4/32 via 6.1.20.2, Te 5/0 1/0 00:02:30S 6.1.2.5/32 via 6.1.20.2, Te 5/0 1/0 00:02:30S 6.1.2.6/32 via 6.1.20.2, Te 5/

S 6.1.2.6/32 via 6.1.20.2, Te 5/0 1/0 00:02:30S 6.1.2.7/32 via 6.1.20.2, Te 5/0 1/0 00:02:30S 6.1.2.8/32 via 6.1.20.2, Te 5/0

You can set this duration or interval for which the TCP connection waits to be established to a significantly high value to prevent the device from mo

Enabling Dynamic Resolution of Host NamesBy default, dynamic resolution of host names (DNS) is disabled.To enable DNS, use the following commands.• En

3Getting StartedThis chapter describes how you start configuring your system.When you power up the chassis, the system performs a power-on self test (

ip domain-list nameConfigure this command up to six times to specify a list of possible domain names. Dell Networking OS searches the domain names in

ARPDell Networking OS uses two forms of address resolution: address resolution protocol (ARP) and Proxy ARP.ARP runs over Ethernet and enables endstat

Example of the show arp CommandThese entries do not age and can only be removed manually. To remove a static ARP entry, use the no arp ip-address comm

– For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then the slot/port information.NOTE: Transit traffic may not be forwarded during th

Figure 42. ARP Learning via ARP RequestBeginning with Dell Networking OS version 8.3.1.0, when you enable ARP learning via gratuitous ARP, the system

The range is from 1 to 20.• Set the exponential timer for resending unresolved ARPs.CONFIGURATION modearp backoff-timeThe default is 30.The range is f

UDP HelperUser datagram protocol (UDP) helper allows you to direct the forwarding IP/UDP broadcast traffic by creating special broadcast addresses and

Configuring a Broadcast AddressTo configure a broadcast address, use the following command.• Configure a broadcast address on an interface.ip udp-broa

address to the configured broadcast 1.1.255.255 and routes the packet to VLANs 100 and 101. If you do not configure an IP broadcast address (using the

Figure 45. UDP Helper with Subnet Broadcast AddressesUDP Helper with Configured Broadcast AddressesIncoming packets with a destination IP address matc

Accessing the Console PortTo access the console port, follow these steps:For the console port pinout, refer to Accessing the RJ-45 Console Port with a

• If the Incoming packet has a destination IP address that matches the subnet broadcast address of any interface, the unaltered packet is routed to th

21IPv6 RoutingInternet protocol version 6 (IPv6) routing is supported on the S6000 platform.NOTE: The IPv6 basic commands are supported on all platfor

NOTE: Dell Networking OS provides the flexibility to add prefixes on Router Advertisements (RA) to advertise responses to Router Solicitations (RS). B

• Partitioning will be applied well before the system initialization. This will be done using the NVRAM.• Dell Networking OS provides CLI for enabling

IPv6 Header FieldsThe 40 bytes of the IPv6 header are ordered, as shown in the following illustration.Figure 47. IPv6 Header FieldsVersion (4 bits)The

The following lists the Next Header field values.Value Description0 Hop-by-Hop option header4 IPv46 TCP8 Exterior Gateway Protocol (EGP)41 IPv643 Rout

However, if the Destination Address is a Hop-by-Hop options header, the Extension header is examined by every forwarding router along the packet’s rou

of double colons is supported in a single address. Any number of consecutive 0000 groups may be reduced to two colons, as long as there is only one do

Implementing IPv6 with Dell Networking OSDell Networking OS supports both IPv4 and IPv6 and both may be used simultaneously in your system.The followi

Feature and FunctionalityDocumentation and Chapter LocationS6000IS-IS for IPv6 8.3.11 Intermediate System to Intermediate SystemIPv6 IS-IS in the Dell

• Characters within the string can be letters, digits, and hyphens.To create a host name, use the following command.• Create a host name.CONFIGURATION

Feature and FunctionalityDocumentation and Chapter LocationS6000(outbound SSH) Layer 3 onlySecure Shell (SSH) server support over IPv6 (inbound SSH) L

Figure 48. Path MTU Discovery ProcessIPv6 Neighbor DiscoveryIPv6 neighbor discovery protocol (NDP) is supported on the S6000 platform.NDP is a top-lev

Figure 49. NDP Router RedirectIPv6 Neighbor Discovery of MTU PacketsYou can set the MTU advertised through the RA packets to incoming routers, without

Example for Configuring an IPv6 Recursive DNS ServerThe following example configures a RDNNS server with an IPv6 address of 1000::1 and a lifetime of

Joined Group address(es): ff02::1 ff02::2 ff02::1:ff00:12 ff02::1:ff8b:7570 ND MTU is 0 ICMP redirects are not sent DAD is enabled, n

• Clearing IPv6 RoutesAdjusting Your CAM-ProfileThe cam-acl command is supported on the S6000 platform.Although adjusting your CAM-profile is not a ma

You can configure up to two IPv6 addresses on management interfaces, allowing required default router support on the management port that is acting as

Configuring Telnet with IPv6IPv6 telnet is supported on the S6000 platform.The Telnet client and server in Dell Networking OS supports IPv6 connection

mroute IPv6 multicast-routing tableneighbors IPv6 neighbor informationospf OSPF informationpim PIM V6 informationprefix-list

ND base reachable time is 30000 millisecondsND retransmit interval is 1000 millisecondsND hop limit is 64Showing IPv6 RoutesTo view the global IPv6 ro

Configure a Management RouteDefine a path from the system to the network from which you are accessing the system remotely. Management routes are separ

C 912::/64 [0/0] Direct, Lo 2, 00:02:33O IA 999::1/128 [110/2] via fe80::201:e8ff:fe8b:3166, Te 0/24, 00:01:30L fe80::/10 [0/0] Dire

– ipv6 address: the format is x:x:x:x::x.– mask: the prefix length is from 0 to 128.NOTE: IPv6 addresses are normally written as eight groups of four

22iSCSI OptimizationiSCSI optimization is supported on the S6000 platform.This chapter describes how to configure internet small computer system inter

• If you configure flow-control, iSCSI uses the current configuration. If you do not configure flow-control, iSCSI auto-configures flow control settin

Monitoring iSCSI Traffic FlowsThe switch snoops iSCSI session-establishment and termination packets by installing classifier rules that trap iSCSI pro

If more than 256 simultaneous sessions are logged continuously, the following message displays indicating the queue rate limit has been reached:%STKUN

Configuring Detection and Ports for Dell Compellent ArraysTo configure a port connected to a Dell Compellent storage array, use the following command.

iSCSI optimization, which can turn on flow control again on reboot, use the no iscsi enable command and save the configuration.When you enable iSCSI o

Parameter Default ValueiSCSI session monitoring Disabled. The CAM allocation for iSCSI is set to zero (0).iSCSI Optimization PrerequisitesThe followin

5. Reload the switch.EXEC Privilege modereloadAfter the switch is reloaded, DCB/ DCBx and iSCSI monitoring are enabled.6. (Optional) Configure the iSC

– level: is the privilege level, is 15 by default, and is not required– encryption-type: specifies how you are inputting the password, is 0 by default

The range is from 5 to 43,200 minutes.The default is 10 minutes.9. (Optional) Configures DCBX to send iSCSI TLV advertisements.LLDP CONFIGURATION mode

3260860The following example shows the show iscsi session command.VLT PEER1Dell#show iscsi sessionSession 0:------------------------------------------

23Intermediate System to Intermediate SystemIntermediate system to intermediate system (Is-IS) is supported on the S6000 platform.•• IS-IS is supporte

The NET length is variable, with a maximum of 20 bytes and a minimum of 8 bytes. It is composed of the following:• area address — within your routing

Transition ModeAll routers in the area or domain must use the same type of IPv6 support, either single-topology or multi-topology. A router operating

A new TLV (the Restart TLV) is introduced in the IIH PDUs, indicating that the router supports graceful restart.TimersThree timers are used to support

• Accepts external IPv6 information and advertises this information in the PDUs.The following table lists the default IS-IS values.Table 31. IS-IS Def

Enabling IS-ISBy default, IS-IS is not enabled.The system supports one instance of IS-IS. To enable IS-IS globally, create an IS-IS routing process an

The IP address must be on the same subnet as other IS-IS neighbors, but the IP address does not need to relate to the NET address.5. Enter an IPv6 Add

IS-IS: Level-2 Hellos (sent/rcvd) : 4272/1538 IS-IS: PTP Hellos (sent/rcvd) : 0/0 IS-IS: Level-1 LSPs sourced (new/refresh) : 0/0 IS-IS: Level-2

Example of Copying a File to an FTP ServerDell#copy flash://Dell-EF-8.2.1.0.bin ftp://myusername:[email protected]//Dell/Dell-EF-8.2.1.0!!!!!!!!!

Use this command for IPv6 route computation only when you enable multi-topology. If using single-topology mode, to apply to both IPv4 and IPv6 route c

– level-1, level-2: identifies the database instance type to which the wait interval applies.The range is from 5 to 120 seconds.The default is 30 seco

To view all interfaces configured with IS-IS routing along with the defaults, use the show isis interface command in EXEC Privilege mode.Dell#show isi

max-lsp-lifetime seconds– seconds: the range is from 1 to 65535.The default is 1200 seconds.Example of Viewing IS-IS Configuration (ROUTER ISIS Mode)T

• Set the metric style for the IS-IS process.ROUTER ISIS modemetric-style {narrow [transition] | transition | wide [transition]} [level-1 | level-2]Th

The default level is level-1.For more information about this command, refer to Configuring the IS-IS Metric Style.The following table describes the co

Dell#show isis databaseIS-IS Level-1 Link State DatabaseLSPID LSP Seq Num LSP Checksum LSP Holdtime ATT/P/OLB233.00-00 0x00000003 0x

distribute-list prefix-list-name in [interface]– Enter the type of interface and slot/port information:– For a 1-Gigabit Ethernet interface, enter the

– For a VLAN, enter the keyword vlan then a number from 1 to 4094.• Apply a configured prefix list to all outgoing IPv6 IS-IS routes.ROUTER ISIS-AF IP

– process-id the range is from 1 to 65535.– level-1, level-1-2, or level-2: assign all redistributed routes to a level. The default is level-2.– metri

Configure the Overload Bit for a Startup ScenarioFor information about setting the router overload bit for a specific period of time after a switch re

Configuring Authentication PasswordsYou can assign an authentication password for routers in Level 1 and for routers in Level 2.Because Level 1 and Le

Example of Viewing the Overload Bit SettingWhen the bit is set, a 1 is placed in the OL column in the show isis database command output. The overload

– interface: Enter the type of interface and slot/port information to view IS-IS information on that interface only.• View the events that triggered I

Metric Style Correct Value Range for the isis metric Commandwide transition 0 to 16777215narrow transition 0 to 63transition 0 to 63Maximum Values in

Beginning Metric Style Final Metric Style Resulting IS-IS Metric Valuetransition narrow original valuetransition narrow original valuetransition wide

Leaks from One Level to AnotherIn the following scenarios, each IS-IS level is configured with a different metric style.Table 35. Metric Value with Di

NOTE: Whenever you make IS-IS configuration changes, clear the IS-IS process (re-started) using the clear isis command. The clear isis command must in

ipv6 address 24:3::1/76ip router isisipv6 router isisno shutdownDell (conf-if-te-3/17)#Dell (conf-router_isis)#show config!router isismetric-style wid

24Link Aggregation Control Protocol (LACP)Link aggregation control protocol (LACP) is supported on the S6000 platform.Introduction to Dynamic LAGs and

• There is a difference between the shutdown and no interface port-channel commands:– The shutdown command on LAG “xyz” disables the LAG and retains t

The Port-Authentication Process...76EAP over RADIU

View Configuration FilesConfiguration files have three commented lines at the beginning of the file, as shown in the following example, to help you tr

• Configure LACP mode.LACP mode[no] port-channel number mode [active | passive | off]– number: cannot statically contain any links.The default is LACP

Configuring the LAG Interfaces as DynamicAfter creating a LAG, configure the dynamic LAG interfaces.To configure the dynamic LAG interfaces, use the f

Dell(conf-if-po-32)#switchportDell(conf-if-po-32)#lacp long-timeoutDell(conf-if-po-32)#endDell# show lacp 32Port-channel 32 admin up, oper up, mode la

Figure 53. Shared LAG State TrackingTo avoid packet loss, redirect traffic through the next lowest-cost link (R3 to R4). Dell Networking OS has the ab

As shown in the following illustration, LAGs 1 and 2 are members of a failover group. LAG 1 fails and LAG 2 is brought down after the failure. This ef

• If a LAG that is part of a failover group is deleted, the failover group is deleted.• If a LAG moves to the Down state due to this feature, its memb

ARP type: ARPA, ARP Timeout 04:00:00Last clearing of "show interface" counters 00:02:11Queueing strategy: fifoInput statistics: 132 pack

Figure 57. Inspecting Configuration of LAG 10 on ALPHALink Aggregation Control Protocol (LACP)507

Figure 58. Verifying LAG 10 Status on ALPHA Using the show lacp CommandSummary of the LAG Configuration on AlphaAlpha(conf-if-po-10)#int gig 2/31Alpha

interface GigabitEthernet 2/31no ip addressSummary of the LAG Configuration on BravoBravo(conf-if-gi-3/21)#int port-channel 10Bravo(conf-if-po-10)#no

- - - network rw tftp: - - - network rw scp:You can change the default file system so that file manag

Figure 59. Inspecting a LAG Port on BRAVO Using the show interface Command510Link Aggregation Control Protocol (LACP)

Figure 60. Inspecting LAG 10 Using the show interfaces port-channel CommandLink Aggregation Control Protocol (LACP)511

Figure 61. Inspecting the LAG Status Using the show lacp commandThe point-to-point protocol (PPP) is a connection-oriented protocol that enables layer

25Layer 2Layer 2 features are supported on the S6000 platform.Manage the MAC Address TableDell Networking OS provides the following management activit

The range is from 10 to 1000000.Configuring a Static MAC AddressA static entry is one that is not subject to aging. Enter static entries manually.To c

interface) before the system verifies that sufficient CAM space exists. If the CAM check fails, a message is displayed:%E90MH:5 %ACL_AGENT-2-ACL_AGENT

mac learning-limit mac-address-stickyUsing sticky MAC addresses allows you to associate a specific port with MAC addresses from trusted devices. If yo

no ip address switchport mac learning-limit 1 dynamic no-station-move mac learning-limit station-move-violation log no shutdownLearning Limit Vi

Recovering from Learning Limit and Station Move ViolationsAfter a learning-limit or station-move violation shuts down an interface, you must manually

When you use NIC teaming, consider that the server MAC address is originally learned on Port 0/1 of the switch (shown in the following) and Port 0/5 i

Using Hashes to Validate Software ImagesYou can use the MD5 message-digest algorithm or SHA256 Secure Hash Algorithm to validate the software image on

Apply all other configurations to each interface in the redundant pair such that their configurations are identical, so that transition to the backup

LACP) port-channel interface as either the primary or backup link in a redundant pair with a physical interface.To ensure that existing network applic

inactive: Vl 100:24:55: %RPM0-P:CP %IFMGR-5-OSTATE_UP: Changed interface state to up: Gi 3/4200:24:55: %RPM0-P:CP %IFMGR-5-ACTIVE: Changed Vlan interf

Figure 65. Configuring Far-End Failure DetectionThe report consists of several packets in SNAP format that are sent to the nearest known MAC address.I

4. If the FEFD enabled system is configured to use FEFD in Normal mode and neighboring echoes are not received after three intervals, (you can set eac

To report interval frequency and mode adjustments, use the following commands.1. Setup two or more connected interfaces for Layer 2 or Layer 3.INTERFA

To set up and activate two or more connected interfaces, use the following commands.1. Setup two or more connected interfaces for Layer 2 or Layer 3.I

Sender state -- Bi-directional Sender info -- Mgmt Mac(00:01:e8:14:89:25), Slot-Port(Gi 1/0) Peer info -- Mgmt Mac (00:01:e8:14:89:25), Slot-Po

26Link Layer Discovery Protocol (LLDP)The link layer discovery protocol (LLDP) is supported on the S6000 platform.802.1AB (LLDP) OverviewLLDP — define

Table 37. Type, Length, Value (TLV) TypesType TLV Description0 End of LLDPDU Marks the end of an LLDPDU.1 Chassis ID An administratively assigned name

SHA256Dell# verify sha256 flash://FTOS-SE-9.5.0.0.binSHA256 hash for FTOS-SE-9.5.0.0.bin: e6328c06faf814e6899ceead219afbf9360e986d692988023b749e6b2093

Figure 68. Organizationally Specific TLVIEEE Organizationally Specific TLVsEight TLV types have been defined by the IEEE 802.1 and 802.3 working group

Type TLV Description127 Protocol Identity Indicates the protocols that the port can process. Dell Networking OS does not currently support this TLV.IE

Regarding connected endpoint devices, LLDP-MED provides network connectivity devices with the ability to:• manage inventory• manage Power over Etherne

Type SubType TLV DescriptionNone or all TLVs must be supported. Dell Networking OS does not currently support these TLVs.127 5 Inventory — Hardware Re

Figure 69. LLDP-MED Capabilities TLVTable 40. Dell Networking OS LLDP-MED CapabilitiesBit Position TLV Dell Networking OS Support0 LLDP-MED Capabiliti

NOTE: As shown in the following table, signaling is a series of control packets that are exchanged between an endpoint device and a network connectivi

Extended Power via MDI TLVThe extended power via MDI TLV enables advanced PoE management between LLDP-MED endpoints and network connectivity devices.A

Important Points to Remember• LLDP is enabled by default.• Dell Networking systems support up to eight neighbors per interface.• Dell Networking syste

Enabling LLDPLLDP is enabled by default. Enable and disable LLDP globally or per interface. If you enable LLDP globally, all UP interfaces send period

3. Enter the disable command.LLDP-MANAGEMENT-INTERFACE mode.To undo an LLDP management port configuration, precede the relevant command with the keywo

4ManagementManagement is supported on the S6000 platform.This chapter describes the different protocols or services used to manage the Dell Networking

Figure 72. Configuring LLDPViewing the LLDP ConfigurationTo view the LLDP configuration, use the following command.• Display the LLDP configuration.CO

Viewing Information Advertised by Adjacent LLDP AgentsTo view brief information about adjacent devices or to view all the information that neighbors a

Configuring LLDPDU IntervalsLLDPDUs are transmitted periodically; the default interval is 30 seconds.To configure LLDPDU intervals, use the following

• Return to the default setting.CONFIGURATION mode or INTERFACE modeno modeExample of Configuring a Single ModeR1(conf)#protocol lldpR1(conf-lldp)#sho

advertise dot1-tlv port-protocol-vlan-id port-vlan-id advertise dot3-tlv max-frame-size advertise management-tlv system-capabilities system-descri

Figure 73. The debug lldp detail Command — LLDPDU Packet DissectionRelevant Management ObjectsDell Networking OS supports all IEEE 802.1AB MIB objects

MIB Object CategoryLLDP Variable LLDP MIB Object DescriptionmsgTxInterval lldpMessageTxInterval Transmit Interval value.rxInfoTTL lldpRxInfoTTL Time t

Table 44. LLDP System MIB ObjectsTLV Type TLV Name TLV Variable System LLDP MIB Object1 Chassis ID chassis ID subtype Local lldpLocChassisIdSubtypeRem

TLV Type TLV Name TLV Variable System LLDP MIB Objectinterface numbering subtypeLocal lldpLocManAddrIfSubtypeRemote lldpRemManAddrIfSubtypeinterface n

Table 46. LLDP-MED System MIB ObjectsTLV Sub-Type TLV Name TLV Variable System LLDP-MED MIB Object1 LLDP-MED CapabilitiesLLDP-MED CapabilitiesLocallld

Allowing Access to CONFIGURATION Mode CommandsTo allow access to CONFIGURATION mode, use the privilege exec level level configure command from CONFIGU

TLV Sub-Type TLV Name TLV Variable System LLDP-MED MIB Object3 Location Identifier Location Data FormatLocal lldpXMedLocLocationSubtypeRemote lldpXMed

27Microsoft Network Load BalancingThis functionality is supported on the S6000 platform.Network Load Balancing (NLB) is a clustering functionality tha

• With NLB feature enabled, after learning the NLB ARP entry, all the subsequent traffic is flooded on all ports in VLAN1.With NLB, the data frame is

flooded out of all member ports. Since all the servers in the cluster receive traffic, failover and balancing are preserved.Enable and Disable VLAN Fl

28Multicast Source Discovery Protocol (MSDP)Multicast source discovery protocol (MSDP) is supported on the S6000 platform.Protocol OverviewMSDP is a L

Figure 74. Multicast Source Discovery Protocol (MSDP)RPs advertise each (S,G) in its domain in type, length, value (TLV) format. The total number of T

Anycast RPUsing MSDP, anycast RP provides load sharing and redundancy in PIM-SM networks. Anycast RP allows two or more rendezvous points (RPs) to sha

• Accept Source-Active Messages that Fail the RFP Check• Specifying Source-Active Messages• Limiting the Source-Active Cache• Preventing MSDP from Cac

Figure 77. Configuring OSPF and BGP for MSDP558Multicast Source Discovery Protocol (MSDP)

Figure 78. Configuring PIM in Multiple Routing DomainsMulticast Source Discovery Protocol (MSDP)559

• Allow access to a CONFIGURATION, INTERFACE, LINE, ROUTE-MAP, and/or ROUTER mode command.CONFIGURATION modeprivilege {configure |interface | line | r

Figure 79. Configuring MSDPEnable MSDPEnable MSDP by peering RPs in different administrative domains.1. Enable MSDP.CONFIGURATION modeip multicast-msd

Examples of Configuring and Viewing MSDP R3_E600(conf)#ip multicast-msdp R3_E600(conf)#ip msdp peer 192.168.0.1 connect-source Loopback 0 R3_

Limiting the Source-Active CacheSet the upper limit of the number of active sources that the Dell Networking OS caches.The default active source limit

Figure 80. MSDP Default Peer, Scenario 1Multicast Source Discovery Protocol (MSDP)563

Figure 81. MSDP Default Peer, Scenario 2564Multicast Source Discovery Protocol (MSDP)

Figure 82. MSDP Default Peer, Scenario 3Multicast Source Discovery Protocol (MSDP)565

Figure 83. MSDP Default Peer, Scenario 4Specifying Source-Active MessagesTo specify messages, use the following command.• Specify the forwarding-peer

Dell(conf)#ip access-list standard fiftyDell(conf)#seq 5 permit host 200.0.0.50Dell#ip msdp sa-cacheMSDP Source-Active Cache - 3 entriesGroupAddr So

Example of Verifying the System is not Caching Local SourcesWhen you apply this filter, the SA cache is not affected immediately. When sources that ar

R3_E600(conf)#do show ip msdp sa-cacheR3_E600(conf)#R3_E600(conf)#do show ip msdp peerPeer Addr: 192.168.0.1 Local Addr: 0.0.0.0(639) Connect Sourc

aux Auxiliary lineconsole Primary terminal linevty Virtual terminalDell(conf)#line vty 0Dell(config-line-v

Logging Changes in Peership StatesTo log changes in peership states, use the following command.• Log peership state changes.CONFIGURATION modeip msdp

Example of the clear ip msdp peer Command and Verifying Statistics are ClearedR3_E600(conf)#do show ip msdp peerPeer Addr: 192.168.0.1 Local Addr:

technique is less effective as traffic increases because preemptive load balancing requires prior knowledge of traffic distributions.• lack of scalabl

Configuring Anycast RPTo configure anycast RP, use the following commands.1. In each routing domain that has multiple RPs serving a group, create a Lo

CONFIGURATION modeip msdp originator-idExamples of R1, R2, and R3 Configuration for MSDP with Anycast RPThe following example shows an R1 configuratio

no shutdown!interface Loopback 0 ip pim sparse-mode ip address 192.168.0.1/32 no shutdown!interface Loopback 1 ip address 192.168.0.22/32 no sh

neighbor 192.168.0.22 remote-as 100 neighbor 192.168.0.22 ebgp-multihop 255 neighbor 192.168.0.22 update-source Loopback 0 neighbor 192.168.0.22

interface GigabitEthernet 2/1 ip pim sparse-mode ip address 10.11.4.1/24 no shutdown!interface GigabitEthernet 2/11 ip pim sparse-mode ip address

redistribute connected redistribute bgp 200!router bgp 200 redistribute ospf 1 neighbor 192.168.0.2 remote-as 100 neighbor 192.168.0.2 ebgp-mult

29Multiple Spanning Tree Protocol (MSTP)Multiple spanning tree protocol (MSTP) is supported on the S6000 platform.Protocol OverviewMSTP — specified in

• Disable logging to terminal lines.CONFIGURATION modeno logging monitor• Disable console logging.CONFIGURATION modeno logging consoleAudit and Securi

Spanning Tree VariationsThe Dell Networking OS supports four variations of spanning tree, as shown in the following table.Table 47. Spanning Tree Vari

• Enabling SNMP Traps for Root Elections and Topology Changes• Configuring Spanning Trees as HitlessEnable Multiple Spanning Tree GloballyMSTP is not

Specify the keyword vlan then the VLANs that you want to participate in the MSTI.Examples of Configuring and Viewing MSTIThe following examples shows

Influencing MSTP Root SelectionMSTP determines the root bridge, but you can assign one bridge a lower priority to increase the probability that it bec

NOTE: Some non-Dell Networking OS equipment may implement a non-null default region name. SFTOS, for example, uses the Bridge ID, while others may use

The default is 15 seconds.2. Change the hello-time parameter.PROTOCOL MSTP modehello-time secondsNOTE: With large configurations (especially those con

• Port priority influences the likelihood that a port is selected to be a forwarding port in case that several ports have the same port cost.The follo

• Enable EdgePort on an interface.INTERFACE modespanning-tree mstp edge-port [bpduguard | shutdown-on-violation]Dell Networking OS Behavior: Regarding

Figure 86. MSTP with Three VLANs Mapped to Two Spanning Tree InstancesRouter 1 Running-ConfigurationThis example uses the following steps:1. Enable MS

no shutdown!interface Vlan 300 no ip address tagged GigabitEthernet 1/21,31 no shutdownRouter 2 Running-ConfigurationThis example uses the follow

When you enabled RBAC and extended logging:• Only the system administrator user role can execute this command.• The system administrator and system se

name Tahiti revision 123 MSTI 1 VLAN 100 MSTI 2 VLAN 200,300!(Step 2)interface GigabitEthernet 3/11 no ip address switchport no shutdown!inter

(Step 3)interface vlan 100 tagged 1/0/31 tagged 1/0/32exitinterface vlan 200 tagged 1/0/31 tagged 1/0/32exitinterface vlan 300 tagged 1/0/31 tag

– Are there “extra” MSTP instances in the Sending or Received logs? This may mean that an additional MSTP instance was configured on one router but no

INST 2: Flags: 0x70, Reg Root: 32768:0001.e8d5.cbbd, Int Root Cost Brg/Port Prio: 32768/128, Rem Hops: 20Multiple Spanning Tree Protocol (MSTP)593

30Multicast FeaturesMulticast features are supported on the S6000 platform.NOTE: Multicast is supported on secondary IP addresses on the platform.NOTE

Figure 87. Multicast with ECMPImplementation InformationBecause protocol control traffic in Dell Networking OS is redirected using the MAC address, an

Protocol Ethernet AddressPIM-SM 01:00:5e:00:00:0d• The Dell Networking OS implementation of MTRACE is in accordance with IETF draft draft-fenner-trace

• If the limit is decreased after it is reached, Dell Networking OS does not clear the existing sessions. Entries are cleared after a timeout (you may

no access list limiting Receiver 1, so both IGMP reports are accepted, and two corresponding entries are created in the routing table.Figure 88. Preve

Location Description• no shutdown1/31• Interface GigabitEthernet 1/31• ip pim sparse-mode• ip address 10.11.13.1/24• no shutdown2/1• Interface Gigabit

IP Prefix Lists...1

The following describes the two log messages formats:• 0 – Displays syslog messages format as described in RFC 3164, The BSD syslog Protocol• 1 – Disp

Location Description• ip igmp access-group igmpjoinfilR2G2• no shutdownRate Limiting IGMP Join RequestsIf you expect a burst of IGMP Joins, protect th

specified rate. The keyword infinity directs PIM to never switch to the SPT.Default: 10 kbpsIPv6 Configure PIM to switch over to the SPT when the mult

Figure 89. Preventing a Source from Transmitting to a GroupTable 51. Preventing a Source from Transmitting to a Group — DescriptionLocation Descriptio

Location Description• no shutdown2/1• Interface GigabitEthernet 2/1• ip pim sparse-mode• ip address 10.11.1.1/24• no shutdown2/11• Interface GigabitEt

Preventing a PIM Router from Processing a JoinTo permit or deny PIM Join/Prune messages on an interface using an extended IP access list, use the foll

31Open Shortest Path First (OSPFv2 and OSPFv3)Open shortest path first (OSPFv2 for IPv4) and OSPF version 3 (OSPF for IPv6) are supported on the S6000

Areas allow you to further organize your routers within in the AS. One or more areas are required within the AS. Areas are valuable in that they allow

The backbone is the only area with a default area number. All other areas can have their Area ID assigned in the configuration.In the previous example

Figure 91. OSPF Routing ExamplesBackbone Router (BR)A backbone router (BR) is part of the OSPF Backbone, Area 0.This includes all ABRs. It can also in

An ABR can connect to many areas in an AS, and is considered a member of each area it connects to.Autonomous System Border Router (ASBR)The autonomous

2. On the syslog server, create a reverse SSH tunnel from the syslog server to FTOS switch, using following syntax: ssh -R <remote port>:<sys

available. An ABR floods the information for the router (for example, the ASBR where the Type 5 advertisement originated. The link-state ID for Type 4

Router Priority and CostRouter priority and cost is the method the system uses to “rate” the routers.For example, if not assigned, the system selects

Dell Networking OS supports stub areas, totally stub (no summary) and not so stubby areas (NSSAs) and supports the following LSAs, as described earlie

OSPFv2 supports helper-only and restarting-only roles. By default, both helper and restarting roles are enabled. OSPFv2 supports the helper-reject rol

example, if you create five OSPFv2 processes on a system, there must be at least five interfaces assigned in Layer 3 mode.Each OSPFv2 process is indep

LSType:Type-5 AS External(5) Age:1 Seq:0x8000000c id:170.1.2.0 Adv:6.1.0.0 Netmask:255.255.255.0 fwd:0.0.0.0 E2, tos:0 metric:0To confirm

Neighbor Count is 1, Adjacent neighbor count is 1 Adjacent with neighbor 1.1.1.1 (Backup Designated Router)Dell (conf-if-gi-2/2)#Configuration Info

If implementing multi-process OSPF, create an equal number of Layer 3 enabled interfaces and OSPF process IDs. For example, if you create four OSPFv2

• Reset the OSPFv2 process.EXEC Privilege modeclear ip ospf process-id• View the current OSPFv2 status.EXEC modeshow ip ospf process-idExample of View

If you try to enable more OSPF processes than available Layer 3 interfaces, the following message displays:C300(conf)#router ospf 1% Error: No router

Sending System Messages to a Syslog ServerTo send system messages to a specified syslog server, use the following command. The following syslog standa

Dell(conf)#router ospf 1Dell(conf-router_ospf-1)#network 1.2.3.4/24 area 0Dell(conf-router_ospf-1)#network 10.10.10.10/24 area 1Dell(conf-router_ospf-

Loopback 0 is up, line protocol is up Internet Address 10.168.253.2/32, Area 0.0.0.1 Process ID 1, Router ID 10.168.253.2, Network Type LOOPBACK, Co

Enabling Passive InterfacesA passive interface is one that does not send or receive routing information.Enabling passive interface suppresses routing

GigabitEthernet 0/1 is up, line protocol is down Internet Address 10.1.3.100/24, Area 2.2.2.2 Process ID 34, Router ID 10.1.2.100, Network Type BROA

The following examples shows how to disable fast-convergence.Dell#(conf-router_ospf-1)#no fast-convergeDell#(conf-router_ospf-1)#exDell#(conf)#exDell#

NOTE: Be sure to write down or otherwise record the key. You cannot learn the key after it is configured. You must be careful when changing this key.N

Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5 Hello due in 00:00:06 Neighbor Count is 0, Adjacent neighbor count is 0Dell

graceful-restart grace-period secondsThe seconds range is from 40 and 3000.This setting is the time that an OSPFv2 router’s neighbors advertises it as

graceful-restart grace-period 300 graceful-restart role helper-only graceful-restart mode unplanned-only graceful-restart helper-reject 10.1.1.1

• Specify which routes are redistributed into OSPF process.CONFIG-ROUTEROSPF-id moderedistribute {bgp | connected | isis | rip | static} [metric metri

• Specify the minimum severity level for logging to the syslog history table.CONFIGURATION modelogging history level• Specify the size of the logging

• View the summary of all OSPF process IDs enables on the router.EXEC Privilege modeshow running-config ospf• View the summary information of the IP r

!router ospf 90 area 2 virtual-link 4.4.4.4 area 2 virtual-link 90.90.90.90 retransmit-interval 300!ipv6 router ospf 999 default-information origin

interface Loopback 10 ip address 192.168.100.100/24 no shutdownOSPF Area 0 — Gl 3/1 and 3/2router ospf 33333 network 192.168.100.0/24 area 0 netwo

NOTE: The OSPFv2 network area command enables OSPF on multiple interfaces with the single command. Use the OSPFv3 ipv6 ospf area command on each inter

ipv6 ospf process-id area area-id– process-id: the process ID number assigned.– area-id: the area ID for this interface.Assigning OSPFv3 Process ID an

• Specify whether some or all some of the interfaces are passive.CONF-IPV6-ROUTER-OSPF modepassive-interface {type slot/port}Interface: identifies the

default-information originate [always [metric metric-value] [metric-type type-value]] [route-map map-name]Configure the following required and optiona

– Unplanned-only: the OSPFv3 router supports graceful-restart only for unplanned restarts. During an unplanned restart, OSPFv3 sends out a Grace LSA o

AS Bdr Rtr Status 1AS Scope LSA Count 0AS Scope LSA Cksum sum 0Originate New LSAS 73Rx New LSAS 114085Ext LSA Count

To ensure integrity, data origin authentication, detection and rejection of replays, and confidentiality of the packet, RFC 4302 and RFC 4303 propose

%CHMGR-5-CHECKIN: Checkin from line card 5 (type EX1YB, 1 ports)%TSM-6-PORT_CONFIG: Port link status for LC 5 => portpipe 0: OK portpipe 1: N/A%CHM

• In an OSPFv3 encryption policy:– Both encryption and authentication are used.– IPsec security associations (SAs) are supported only in Transport mod

no ipv6 ospf authentication ipsec spi number• Remove null authentication on an interface to allow the interface to inherit the authentication policy c

no ipv6 ospf encryption null• Display the configuration of IPsec encryption policies on the router.show crypto ipsec policy• Display the security asso

NOTE: When you configure encryption using the area encryption command, you enable both IPsec encryption and authentication. However, when you enable a

– name: displays configuration details about a specified policy.• Display security associations set up for OSPFv3 links in IPsec authentication and en

bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8aTransform set : esp-128-aes esp-sha1-hmacThe following example shows the sho

• Did you configure the interfaces for Layer 3 correctly?• Is the router in the correct area type?• Did you include the routes in the OSPF database?•

32Policy-based Routing (PBR)Policy-based Routing (PBR) allows a switch to make routing decisions based on policies applied to an interface.This chapte

To enable a PBR, you create a redirect list. Redirect lists are defined by rules, or routing policies. The following parameters can be defined in the

Implementing Policy-based Routing with Dell Networking OS• Non-contiguous bitmasks for PBR• Hot-Lock PBRNon-contiguous bitmasks for PBRNon-contiguous

Example of the show running-config logging CommandTo view nondefault settings, use the show running-config logging command in EXEC mode.Dell#show runn

The following example creates a redirect list by the name of “xyz.”Dell(conf)#ip redirect-list ?WORD Redirect-list name (max 16 chars) Dell(co

Dell(conf-redirect-list)#redirect 3.3.3.3 ?<0-255> An IP protocol number icmp

PBR Exceptions (Permit)Use the command permit to create an exception to a redirect list. Exceptions are used when a forwarding decision should be base

Applying a Redirect-list to an Interface Example:Dell(conf-if-te-2/0)#ip redirect-group xyz Dell(conf-if-te-2/0)#Applying a Redirect-list to an Interf

NOTE: If, the redirect-list is applied to an interface, the output of show ip redirect-list redirect-list-name command displays reachability and ARP s

Create the Redirect-List GOLDEDGE_ROUTER(conf-if-Te-2/23)#ip redirect-list GOLDEDGE_ROUTER(conf-redirect-list)#description Route GOLD traffic to ISP_G

View Redirect-List GOLDEDGE_ROUTER#show ip redirect-listIP redirect-list GOLD: Defined as: seq 5 redirect 10.99.99.254 ip 192.168.1.0/24 any, Next-ho

33PIM Sparse-Mode (PIM-SM)Protocol-independent multicast sparse-mode (PIM-SM) is supported on the S6000 platform.PIM-SM is a multicast protocol that f

3. If a host on the same subnet as another multicast receiver sends an IGMP report for the same multicast group, the gateway takes no action. If a rou

Configuring PIM-SMConfiguring PIM-SM is a three-step process.1. Enable multicast routing (refer to the following step).2. Select a rendezvous point.3.

CONFIGURATION modeservice timestamps [log | debug] [datetime [localtime] [msec] [show-timezone] | uptime]Specify the following optional parameters:– Y

To display PIM neighbors for each interface, use the show ip pim neighbor command EXEC Privilege mode.Dell#show ip pim neighborNeighbor Interface

ip access-list extended access-list-name3. Specify the source and group to which the timer is applied using extended ACLs with permit rules only.CONFI

Dell#sh run pim!ip pim rp-address 1.1.1.1 group-address 224.0.0.0/4Overriding Bootstrap Router UpdatesPIM-SM routers must know the address of the RP f

Creating Multicast Boundaries and DomainsA PIM domain is a contiguous set of routers that all implement PIM and are configured to operate within a com

34PIM Source-Specific Mode (PIM-SSM)PIM source-specific mode (PIM-SSM) is supported on the S6000 platform.PIM-SSM is a multicast protocol that forward

Configure PIM-SMMConfiguring PIM-SSM is a two-step process.1. Configure PIM-SMM.2. Enable PIM-SSM for a range of addresses.Related Configuration Tasks

• When you remove the mapping configuration, Dell Networking OS removes the corresponding (S,G) states that it created and re-establishes the original

Interface Vlan 400Group 239.0.0.1Uptime 00:00:05Expires NeverRouter mode INCLUDELas

35Port MonitoringPort monitoring is supported on the S6000 platform.Mirroring is used for monitoring Ingress or Egress or both Ingress and Egress traf

Port MonitoringThe S6000 supports multiple source-destination statements in a single monitor session.The maximum number of source ports that can be su

CONFIGURATION modeftp-server enableExample of Viewing FTP ConfigurationDell#show running ftp!ftp-server enableftp-server username nairobi password 0 z

Example of Viewing a Monitoring SessionIn the example below, 0/25 and 0/26 belong to Port-pipe 1. This port-pipe has the same restriction of only four

show interface2. Create a monitoring session using the command monitor session from CONFIGURATION mode, as shown in the following example.CONFIGURATIO

Figure 95. Port Monitoring ExampleEnabling Flow-Based MonitoringFlow-based monitoring is supported only on the S-Series platform.Flow-based monitoring

Example of the flow-based enable CommandTo view an access-list that you applied to an interface, use the show ip accounting access-list command from E

source session uses a separate reserved VLAN to transmit mirrored packets (mirrored source-session traffic is shown with an orange or green circle wit

• Mirrored traffic is transported across the network using 802.1Q-in-802.1Q tunneling. The source address, destination address and original VLAN ID of

RestrictionsWhen you configure remote port mirroring, the following restrictions apply:• You can configure the same source port to be used in multiple

destination switches), and a destination session (destination ports connected to analyzers on destination switches).Configuration Steps for RPMStep Co

Dell(conf)#inte te 0/30Dell(conf-if-te-0/30)#no shutdownDell(conf-if-te-0/30)#switchportDell(conf-if-te-0/30)#exitDell(conf)#interface vlan 30Dell(con

Dell(conf)#monitor session 1 type rpmDell(conf-mon-sess-1)#source remote-vlan 10 dest te 0/3Dell(conf-mon-sess-1)#exitDell(conf)#monitor session 2 typ

– For a VLAN interface, enter the keyword vlan then a number from 1 to 4094.– For a 40-Gigabit Ethernet interface, enter the keyword fortyGigE then th

Configuring the Encapsulated Remote Port MirroringThe ERPM session copies traffic from the source ports/lags or source VLANs and forwards the traffic

6<no> flow-based enable Specify flow-based enable for mirroring on a flow by flow basis and also for vlan as source.7no enable (Optional) No dis

ERPM Behavior on a typical Dell Networking OS The Dell Networking OS is designed to support only the Encapsulation of the data received / transmitted

39th byte in a given ERPM packet. The first 38/42 bytes of the header needs to be ignored/ chopped off.– Some tools support options to edit the captur

36Per-VLAN Spanning Tree Plus (PVST+)Per-VLAN spanning tree plus (PVST+) is supported on the S6000 platform.Protocol OverviewPVST+ is a variation of s

Table 52. Spanning Tree Variations Dell Networking OS SupportsDell Networking Term IEEE SpecificationSpanning Tree Protocol (STP) 802 .1dRapid Spannin

PROTOCOL PVST modeno disableDisabling PVST+To disable PVST+ globally or on an interface, use the following commands.• Disable PVST+ globally.PROTOCOL

Figure 97. Load Balancing with PVST+The bridge with the bridge value for bridge priority is elected root. Because all bridges use the default priority

Root Identifier has priority 4096, Address 0001.e80d.b6d6Root Bridge hello time 2, max age 20, forward delay 15Bridge Identifier has priority 4096, Ad

PROTOCOL PVST modevlan max-ageThe range is from 6 to 40.The default is 20 seconds.The values for global PVST+ parameters are given in the output of th

line vty 0 access-class myvtyaclDell Networking OS Behavior: Prior to Dell Networking OS version 7.4.2.0, in order to deny access on a VTY line, appl

The range is from 0 to 240, in increments of 16.The default is 128.The values for interface PVST+ parameters are given in the output of the show spann

PVST+ in Multi-Vendor NetworksSome non-Dell Networking systems which have hybrid ports participating in PVST+ transmit two kinds of BPDUs: an 802.1D B

Example of Viewing the Extend System ID in a PVST+ ConfigurationDell(conf-pvst)#do show spanning-tree pvst vlan 5 briefVLAN 5Executing IEEE compatible

no ip address tagged GigabitEthernet 2/12,32 no shutdown!interface Vlan 200 no ip address tagged GigabitEthernet 2/12,32 no shutdown!interface

37Quality of Service (QoS)Quality of service (QoS) is supported on the S6000 platform.Differentiated service is accomplished by classifying and queuin

Feature DirectionConfigure a Scheduler to Queue EgressSpecify WRED Drop Precedence EgressCreate Policy Maps Ingress + EgressCreate Input Policy Maps I

Figure 99. Dell Networking QoS ArchitectureImplementation InformationThe Dell Networking QoS implementation complies with IEEE 802.1p User Priority Bi

Setting dot1p Priorities for Incoming TrafficDell Networking OS places traffic marked with a priority in a queue based on the following table.If you s

Example of Configuring an Interface to Honor dot1p Priorities on Ingress TrafficDell#config tDell(conf)#interface tengigabitethernet 1/0Dell(conf-if)#

rate shape• Apply rate shaping to a queue.QoS Policy moderate-shapeExample of rate shape CommandDell#configDell(conf)#interface tengigabitethernet 1/0

Multiprotocol BGP...162Imple

Dell(config-line-vty)#show configline vty 0 password myvtypasswordlogin authentication myvtymethodlistline vty 1 password myvtypasswordlogin authent

Classify TrafficClass maps differentiate traffic so that you can apply separate quality of service policies to different types of traffic.For both cla

Dell(conf)#policy-map-input pmapDell(conf-policy-map-in)#service-queue 3 class-map cmap1Dell(conf-policy-map-in)#service-queue 1 class-map cmap2Dell(c

ACLs acl1 and acl2 have overlapping rules because the address range 20.1.1.0/24 is within 20.0.0.0/8. Therefore (without the keyword order), packets w

seq 10 deny ip any any!ip access-list extended AF2 seq 5 permit ip host 23.64.0.5 any seq 10 deny ip any anyDell# show cam layer3-qos interface te

• Because this functionality forcibly marks all the packets matching the specific match criteria as ‘yellow’, Dell Networking OS does not support Poli

Configuring Policy-Based Rate PolicingTo configure policy-based rate policing, use the following command.• Configure rate police ingress traffic.QOS-P

Table 56. Default Bandwidth WeightsQueue Default Weight Equivalent Percentage0 1 6.67%1 2 13.33%2 4 26.67%3 8 53.33%• Allocate bandwidth to queues.ban

• Each color map can only have one list of DSCP values for each color; any DSCP values previously listed for that color that are not in the new DSCP l

Display a specific DSCP color map.Dell# show qos dscp-color-map mapTWODscp-color-map mapTWO yellow 16,55Displaying a DSCP Color Policy Configuration

Applying a Class-Map or Input QoS Policy to a QueueApplying an Input QoS Policy to an Input Policy MapHonoring DSCP Values on Ingress PacketsHonoring

EXEC Privilegetelnet [ip-address]If you do not enter an IP address, Dell Networking OS enters a Telnet dialog that prompts you for one.Enter an IPv4 a

Table 58. Default DSCP to Queue MappingDSCP/CP hex range (XXX)xxxDSCP DefinitionTraditional IP PrecedenceInternal Queue IDInternal Queue ID (S6000)DSC

Mapping dot1p Values to Service QueuesAll traffic is by default mapped to the same queue, Queue 0.If you honor dot1p on ingress, you can create servic

Applying an Output QoS Policy to a QueueSpecifying an Aggregate QoS PolicyApplying an Output Policy Map to an Interface3. Apply the policy map to an i

QoS rate adjustment is disabled by default.• Specify the number of bytes of packet overhead to include in rate limiting, policing, and shaping calcula

But when queue 1 gets congested on switch B, PFC frames for tagged packets will not be generated as PFC is not enabled on dot1p priority 5.Support for

WRED profile to a policy-map so that specified traffic can be prevented from consuming too much of the BTM resources.WRED uses a profile to specify mi

Applying a WRED Profile to TrafficAfter you create a WRED profile, you must specify to which traffic Dell Networking OS should apply the profile.Dell

Test the policy-map size against the CAM space for a specific port-pipe or all port-pipes using these commands:• test cam-usage service-policy input p

Committed rate refers to the guaranteed bandwidth for traffic entering or leaving the interface under normal network conditions. When traffic propagat

Dell(config-qos-policy-out)# rate shape pps peak-rate burst-packets committed pps committed-rate burst-packets 4. Alternatively, configure the committ

Example of Locking CONFIGURATION Mode for Single-User AccessDell(conf)#configuration mode exclusive autoBATMAN(conf)#exit3d23h35m: %RPM0-P:CP %SYS-5-C

You can enable WRED and ECN capabilities per queue for granularity. You can disable these functionality per queue, and you can also specify the minimu

Table 60. Scenarios of WRED and ECN ConfigurationQueue ConfigurationService-Pool ConfigurationWRED Threshold RelationshipQ threshold = Q-T,Service poo

Dell(conf-wred) #wred—profile thresh-1 Dell(conf-wred) #threshold min 100 max 200 max-drop-rate 40 3. Configure another WRED profile, and specify the

– FIN– SYN–PSH– RST– URGIn the existing software, ECE/CWR TCP flag qualifiers are not supported.• Because this functionality forcibly marks all the pa

action. During congestion, ECN enabled packets are not subject to any kind of drops like WRED except tail drops. Though ECN & WRED are independent

You can use the ecn keyword with the ip access-list standard, ip access-list extended, seq, and permit commands for standard and extended IPv4 ACLs to

• match ip vlanSample configuration to mark non-ecn packets as “yellow” with single traffic classConsider the use case where the packet with DSCP valu

class-map match-any class_dscp_40 match ip access-group dscp_40_non_ecn set-color yellow match ip access-group dscp_40_ecn!class-map match-any class_d

The maximum number of ports, including fan-out, supported is 104 and the maximum number of queues supported is 21. Analyzing and evaluating buffer sta

38Routing Information Protocol (RIP)Routing information protocol (RIP) is supported on the S6000 platform.RIP is based on a distance-vector algorithm;

* persistent settings (stacking, fanout, etc.) * * After restoration the unit(s) will be powercycled immediately. *

Implementation InformationDell Networking OS supports both versions of RIP and allows you to configure one version globally and the other version on i

Enabling RIP GloballyBy default, RIP is not enabled in Dell Networking OS.To enable RIP globally, use the following commands.1. Enter ROUTER RIP mode

192.162.2.0/24 [120/1] via 29.10.10.12, 00:01:21, Fa 0/0192.162.2.0/24 auto-summary192.161.1.0/24 [120/1] via 29.10.10.12, 00:00:27, Fa 0/019

distribute-list prefix-list-name in• Assign a configured prefix list to all outgoing RIP routes.ROUTER RIP modedistribute-list prefix-list-name outTo

• Set the RIP versions received on that interface.INTERFACE modeip rip receive version [1] [2]• Set the RIP versions sent out on that interface.INTERF

Automatic network summarization is in effect Outgoing filter for all interfaces is Incoming filter for all interfaces is Default redistribution m

Controlling Route MetricsAs a distance-vector protocol, RIP uses hop counts to determine the best route, but sometimes the shortest hop count is a rou

Dell#debug ip ripRIP protocol debug is ONDell#To disable RIP, use the no debug ip rip command.RIP Configuration ExampleThe examples in this section sh

Core 2 RIP OutputThe examples in the section show the core 2 RIP output.Examples of the show ip Commands to View Core 2 Information• To display Core 2

The following example shows the show ip protocols command to show the RIP configuration activity on Core 2.Core2#show ip protocolsRouting Protocol is

BOOT_USER # boot change primaryboot device : flashfile name : systemaBOOT_USER #To boot from flash partition B:BOOT_USER # boot change primaryboot dev

Examples of the show ip Commands to View Learned RIP Routes on Core 3The following example shows the show ip rip database command to view the learned

GigabitEthernet 3/44 2 2 GigabitEthernet 3/43 2 2Routing for Networks: 10.11.20.0 10.11.30.0 192.168.2.0 192.168.1.0Rou

ip address 192.168.2.1/24 no shutdown!router ripversion 2network 10.11.20.0network 10.11.30.0network 192.168.1.0network 192.168.2.0742Routing Infor

39Remote Monitoring (RMON)Remote monitoring (RMON) is supported on the S6000 platform.RMON is an industry-standard implementation that monitors networ

the sampled data — the new master RPM provides the same sampled data as did the old master — as long as the master RPM had been running long enough to

Example of the rmon alarm CommandTo disable the alarm, use the no form of the command.The following example configures RMON alarm number 10. The alarm

[no] rmon collection statistics {controlEntry integer} [owner ownername]– controlEntry: specifies the RMON group of statistics using a value.– integer

40Rapid Spanning Tree Protocol (RSTP)Rapid spanning tree protocol (RSTP) is supported on the S6000 platform.Protocol OverviewRSTP is a Layer 2 protoco

Important Points to Remember• RSTP is disabled by default.• Dell Networking OS supports only one Rapid Spanning Tree (RST) instance.• All interfaces i

INTERFACE modeno shutdownExample of Verifying an Interface is in Layer 2 Mode and EnabledTo verify that an interface is in Layer 2 mode and enabled, u

5802.1X802.1X is supported on the S6000 platform.802.1X is a method of port security. A device connected to a port that is enabled with 802.1X is disa

Figure 103. Rapid Spanning Tree Enabled GloballyTo view the interfaces participating in RSTP, use the show spanning-tree rstp command from EXEC privil

BPDU : sent 121, received 2The port is not in the Edge port modePort 379 (GigabitEthernet 2/3) is designated ForwardingPort path cost 20000, Port prio

Modifying Global ParametersYou can modify RSTP parameters.The root bridge sets the values for forward-delay, hello-time, and max-age and overwrites th

NOTE: With large configurations (especially those configurations with more ports) Dell Networking recommends increasing the hello-time.The range is fr

To view the current values for interface parameters, use the show spanning-tree rstp command from EXEC privilege mode.Enabling SNMP Traps for Root Ele

• If the interface to be shut down is a port channel, all the member ports are disabled in the hardware.• When you add a physical port to a port chann

The range is from 50 to 950 milliseconds.Example of Verifying Hello-Time IntervalDell(conf-rstp)#do show spanning-tree rstp briefExecuting IEEE compat

41Software-Defined Networking (SDN)Dell Networking operating software supports Software-Defined Networking (SDN). For more information, refer to the S

42Service Provider BridgingService provider bridging is supported on the S6000 platform.VLAN StackingVirtual local area network (VLAN) stacking is sup

Figure 104. VLAN Stacking in a Service Provider NetworkImportant Points to Remember• Interfaces that are members of the Default VLAN and are configure

Figure 3. EAP Frames Encapsulated in Ethernet and RADUISThe authentication process involves three devices:• The device attempting to access the networ

Configure VLAN StackingConfiguring VLAN-Stacking is a three-step process.1. Creating Access and Trunk Ports2. Assign access and trunk ports to a VLAN

interface GigabitEthernet 7/12 no ip address switchport vlan-stack trunk no shutdownEnable VLAN-Stacking for a VLANTo enable VLAN-Stacking for a V

To configure trunk ports, use the following commands.1. Configure a trunk port to carry untagged, single-tagged, and double-tagged traffic by making i

• MT — stacked trunk• MU — stacked access port• T — 802.1Q trunk port• U — 802.1Q access port• NU — Native VLAN (untagged)Dell# debug member vlan 603v

Figure 105. Single and Double-Tag TPID Match764Service Provider Bridging

Figure 106. Single and Double-Tag First-byte TPID MatchService Provider Bridging765

Figure 107. Single and Double-Tag TPID MismatchVLAN Stacking Packet Drop PrecedenceVLAN stacking packet drop precedence is available on the S6000 plat

Table 64. Drop Eligibility BehaviorIngress Egress DEI Disabled DEI EnabledNormal Port Normal Port Retain CFI Set CFI to 0.Trunk Port Trunk Port Retain

Marking Egress Packets with a DEI ValueOn egress, you can set the DEI value according to a different mapping than ingress.For ingress information, ref

• Mark the S-Tag dot1p and queue the frame according to the original C-Tag dot1p. In this case, you must have other dot1p QoS configurations; this opt

3. The authenticator decapsulates the EAP response from the EAPOL frame, encapsulates it in a RADIUS Access-Request frame and forwards the frame to th

service-policy input in layer2 no shutdownMapping C-Tag to S-Tag dot1p ValuesTo map C-Tag dot1p values to S-Tag dot1p values and mark the frames ac

Figure 109. VLAN Stacking without L2PTYou might need to transport control traffic transparently through the intermediate network to the other region.

the intermediate network because only Dell Networking OS could recognize the significance of the destination MAC address and rewrite it to the origina

Enabling Layer 2 Protocol TunnelingTo enable Layer 2 protocol tunneling, use the following command.1. Verify that the system is running the default CA

4. Set a maximum rate at which the RPM processes BPDUs for L2PT.VLAN STACKING modeprotocol-tunnel rate-limitThe default is: no rate limiting.The range

43sFlowConfiguring sFlow is supported on the S6000 platform.OverviewThe Dell Networking Operating System (OS) supports sFlow version 5.sFlow is a stan

Important Points to Remember• The Dell Networking OS implementation of the sFlow MIB supports sFlow configuration via snmpset.• Dell Networking recomm

69 sFlow samples dropped due to sub-samplingLinecard 1 Port set 0 H/W sampling rate 8192Gi 1/16: configured rate 8192, actual rate 8192, sub-sampling

Dell#show sflowsFlow services are enabledGlobal default sampling rate: 32768Global default counter polling interval: 201 collectors configuredCollecto

Example of Viewing sFlow Configuration (Line Card)Dell#show sflow stack-unit 1stack-unit 1 Samples rcvd from h/w :165 Samples dropped for

EAP over RADIUS802.1X uses RADIUS to shuttle EAP packets between the authenticator and the authentication server, as defined in RFC 3579.EAP messages

As a result of back-off, the actual sampling-rate of an interface may differ from its configured sampling rate. You can view the actual sampling-rate

0 UDP packets exported0 UDP packets dropped0 sFlow samples collected0 sFlow samples dropped due to sub-samplingImportant Points to Remember• To export

IP SA IP DA srcAS and srcPeerASdstAS and dstPeerASDescriptionwhere is source is reachable over ECMP.BGP BGP Exported Exported Extended gateway data is

44Simple Network Management Protocol (SNMP)Simple network management protocol (SNMP) is supported on the S6000 platform.NOTE: On Dell Networking route

Configuration mode. When the FIPS mode is enabled on the system, SNMPv3 operates in a FIPS-compliant manner, and only the FIPS-approved algorithm opti

Configuration Task List for SNMPConfiguring SNMP version 1 or version 2 requires a single step.NOTE: The configurations in this chapter use a UNIX env

Creating a CommunityFor SNMPv1 and SNMPv2, create a community to enable the community-based security in Dell Networking OS.The management station gene

snmp-server group group-name 3 noauth auth read name write name• Configure an SNMPv3 view.CONFIGURATION modesnmp-server view view-name oid-tree {inclu

• Read the value of a single managed object.snmpget -v version -c community agent-ip {identifier.instance | descriptor.instance}• Read the value of th

Configuring Contact and Location Information using SNMPYou may configure system contact and location information from the Dell Networking system or fr

Important Points to Remember• Dell Networking OS supports 802.1X with EAP-MD5, EAP-OTP, EAP-TLS, EAP-TTLS, PEAPv0, PEAPv1, and MS-CHAPv2 with PEAP.• A

Subscribing to Managed Object Value Updates using SNMPBy default, the Dell Networking system displays some unsolicited SNMP messages (traps) upon cert

snmp coldstart SNMP_COLD_START: Agent Initialized - SNMP COLD_START. SNMP_WARM_START:Agent Initialized - SNMP WARM_START.s

exceeds threshold of %dC) MAJOR_TEMP_CLR: Major alarm cleared: chassis temperature lower (%s %d temperature is within threshold of %dC)envmon fan

from SNMP OID <oid> %RPM0-P:CP %SNMP-4-RMON_FALLING_THRESHOLD: STACKUNIT0 falling threshold alarm from SNMP OID <oid> %RPM0-P:CP %SN

MIB Object OID Object Values Descriptionis set to running-config or startup-config, copySrcFileName is not required.copyDestFileType .1.3.6.1.4.1.6027

Copying a Configuration FileTo copy a configuration file, use the following commands.NOTE: In UNIX, enter the snmpset command for help using the follo

• Copy the running-config to the startup-config from the UNIX machine.snmpset -v 2c -c public force10system-ip-address copySrcFileType.index i 2 copyD

copyUserName.index s server-login-id copyUserPassword.index s server-login-password• precede server-ip-address by the keyword a.• precede the values f

myfilenamecopyServerAddress.10 a 172.16.1.56 copyUserName.10 s mylogin copyUserPassword.10 s mypassAdditional MIB Objects to View Copy StatisticsDell

index: the index value used in the snmpset command used to complete the copy operation.NOTE: You can use the entire OID rather than the object name. U

Enabling BGP Neighbor Soft-Reconfiguration...202Route Map Continue...

dot1x authentication2. Enter INTERFACE mode on an interface or a range of interfaces.INTERFACE modeinterface [range]3. Enable 802.1X on the supplicant

VLAN"SNMPv2-SMI::mib-2.17.7.1.4.3.1.1.1107787786 = STRING: "My VLAN"[Dell system output]Dell#show int vlan 10Vlan 10 is down, line prot