Reference for the Passport 1000 Series Command
Contents
1. 207 show ip route info command output saasaa eaaa eee 208 config ip rip info command output iii od oxen a oa neen a ad ee 209 show ip rip info command output sane seek sans a kane 210 show ip rip interface command output rn 211 config ethernet ip rip info command output 213 show ports info rip command output 215 config vlan ip rip info command output av rr narrer nrk 217 show vlan info rip command output 0 eee ee eee 218 config ip ospf info command output 02 00 eee 220 config ip ospf area info command output ee 223 show ip ospf area command output 0000s 225 show ip ospf ase command output arr r narre 226 show ip ospf default metric command output 226 show ip ospf ifstats command output 000002 2 eee 227 202086 C Figures 23 Figure 135 show ip ospf info command output a 228 Figure 136 show ip ospf interface command output en 229 Figure 137 show ip ospf int timers command output ene 229 Figure 138 show ip ospf Isdb command output enne 230 Figure 139 show ospf neighbors command output 230 Figure 140 show ip ospf range command output a 231 Figure 141 show ip ospf stats command output a 231 Figure 142 config ethernet ip ospf info command output 233 Figure 143 show ports error ospf command o2. 294 IP SEE EEE EE EN EE 294 conia Ip Mer commanda usas ced 9 cha veka ia eka LAER AGRE ke Bld 295 config ip traffic filter commands eee 295 config ip traffic filter create commands ee eaes 296 config ip traffic filter filter commands en ekknknn 296 config ip traffic filter filter action command enen 297 config ip traffic filter filter match commands nen 299 config ip traffic filter global set commands ne 300 contig ip traffic filter set commands saar saar n 300 config ethernet ip traffic filter commands rn ane 301 show ip traffic filler COMMANDS ne ERE ERE RER dateren 301 show ip traffic filter active command en 301 show ip traffic filter destination command enne 302 show ip traffic filter disabled command 00 00000e0e aes 302 show ip traffic filter enabled command 0002200ee ee aes 302 show ip traffic filter global command eene 302 show ip traffic filter info global set command ennn 303 show ip traffic filter info list command en 303 show ip traffic filter interface command 303 show ip traffic filter log interval command nen 303 show ip traffic filter source command nne 303 show ip trafiie filter stats command Lassavaaravsvedke varer w re 304 202086 C Contents 17 Chapter 8 Monitor commands 5 2 65 nnn aen den ae EAR AREE 305 Appendix A OEI SOMMEN REE AA AA AA AA AS 309 Appendix B Port numbering and MAC address assignment
3. rn kran 198 Siow port OEP COMMANDS 443 94 3m Rad oa d ru m edo e mede eue Us deed 199 Reference for the Passport 1000 Series Command Line Interface Release 2 1 12 Contents show ports info dhep command zasaressressarsstr S 199 show poris SNE ag Se Alk F br dk badet 200 config vlan ip dhep relay commands eee 201 show vlan info dhcp command nn 202 Me DOMINOS sentent inte Hee E edes abate EE ed 203 config ip udpfwd protocol command a mama vereen RR em des 203 config ip udpfwd portfwdlist commands 0c eee eens 204 config ip udpfwd interface commands nn 205 show Ip udpfwd commands aas varararrnear ardennen deet des one 205 show ip udpfwd interface info command ee 205 show ip udpfwd portfwd info command aar r rn n cee nen 206 show ip udpfwd portfwdlist info command 206 show ip udpfwd protocol info command eee ee eee 206 IP Static Routing Table Manager suuecocees lume eom xmas 207 FN 208 poa ETP SONINENGS 152a qd EE qdues m edo qe e edite Sm d 208 show Ip TB com MARS 25 225 cbs dele see bud Chased so Shab Ed id 210 SW MV teks se keh Coe ae eee id Baebes 210 SNOW prip internace ara ceed aar ken eda exe RR ER ee ee 210 config ethernet port ip rip commands 0 00 eee eee ee 211 show poris MOVE command saneren de Redi e RE RE epar 214 contig vlan ip rip commands sar aranea ar dame de Redes 215 show vlan info rip command uius nn a annen EROR RO ER ad ka 217 OSPF IT LAE EEE EE RE A
4. 0c eee eee 139 show mirrorinfo command output 0 00 ee 146 config m info command output a aan a Rc 147 contig mit add info command OUIDUE ii sisse ne Ru Rm Rea 147 show mit error collision command output en 148 show mit error main command output 000 eee eee 148 show mlt info command output sa sees sees deren deen omms 149 202086 C Figures 21 Figure 65 show mlt stats command output auauna narar 149 Figure 66 config stg info command output auaa aaaa anann 151 Figure 67 config ethernet stg info command output ne 152 Figure 68 show stg info config command output ene 153 Figure 69 show stg info status command output ene 154 Figure 70 show ports info stg main command output 155 Figure 71 show ports info stg extended command output 156 Figure 72 show ports stats stg command output n 000 eee eee 187 Figure 73 config vlan create info command output 158 Figure 74 config vlan info command output n en 160 Figure 75 config vlan ports info command output 160 Figure 76 config vlan srcmac info command output ne 160 Figure 77 show vlan info basic command output ene 161 Figure 78 show vlan info advance command output ene 162 Figure 79 show vlan info fdb entry command output a 163 Figure 80 show vlan info ports command output ene 164 Figure 81 show vlan info srcmac command output 165 Figure 82 config v
5. history followed by history Lists the commands that you have entered during the current CLI session 1 Reenters the most recently entered command lt number gt run command Enters the command identified in the lt number gt command history by the variable lt number gt Icstrs Runs the last command that matches the given string lt str gt lt substr gt Runs the last command that matches the given substring lt substr gt csstr rstr Enters the most recent command but substitutes a new string for a given string Figure 13 shows output for the history commands in the Run Time CLI 202086 C Chapter 3 Run Time CLI description 85 Figure 13 history command output history commands substitution syntax tt run last command lt number gt run command number f lt str gt run last command that matches lt str gt substr gt run last command that matches lt substr gt lt sstr gt lt rstr gt replace lt sstr gt with lt rstr gt in last command Login exit logout quit commands The exit quit and logout commands are used to close a CLI session or to change the access level Use the login command to log in to the system Note If you make configuration changes during a CLI session save the changes in the configuration file For information about saving changes see page 89 Ping and pingipx commands The Run Time CLI ping command tests the network connection
6. show ip udpfwd commands The show ip udpfwd commands display information about the UDP forwarding characteristics of the switch show ip udpfwd interface info command The show ip udpfwd interface info command displays information about the UDP interface for the switch or a specified IP address The command syntax is show ip udpfwd interface info lt ipaddr gt Figure 118 shows output for the show ip udpfwd interface info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 206 Chapter 6 Configuring layer 3 protocol features Figure 118 show ip udpfwd interface info command output INTF ADDR FWD MAXTTL RXPKTS FWDPKTS DRPTTLEX DRPDEST DRP UNKNOWN LISTID UNREACH PROTOCOL show ip udpfwd portfwd info command The show ip udpfwd portfwd info command displays the UDP port forwarding table Figure 119 shows output for the show ip udpfwd portfwd info command Figure 119 show ip udpfwd portfwd info command output Udp Port Fwd Tbl show ip udpfwd portfwdlist info command The show ip udpfwd portfwdlist info command displays the UDP Port Forwarding List Table for all or a specified list The command syntax is show ip udpfwd portfwdlist info lt fwdlistid gt show ip udpfwd protocol info command This show ip udpfwd protocol info command displays the UDP protocol table with the UDP port numbers for each supported or designated protocol Figure 120 shows output for
7. 202086 C Appendix A CLI command list 327 Table 14 CLI command list continued command Page No config sys link flap detect auto port down lt enable disable gt config sys link flap detect frequency lt frequency gt config sys link flap detect info config sys link flap detect interval lt interval gt config sys link flap detect send trap lt enable disable gt page 122 config sys set action checkswinflash config sys set action checkswinpcmcia config sys set action cpuswitchover y config sys set action getstandbycpuinfo config sys set action info config sys set action resetconsole config sys set action resetcounters y config sys set action resetmodem config sys set action savetostandbynvram page 114 config sys set boot lt primary secondary tertiary gt lt choice gt config sys set config lt choice gt config sys set contact lt contact gt config sys set eoc mode lt eocmode gt page 117 config sys set flags autoboot lt true false gt config sys set flags factorydefault lt true false gt config sys set flags switchportiso lt true false gt config sys set flags debugmode lt true false gt config sys set flags highpriomode lt true false gt config sys set flags info page 115 Reference for the Passport 1000 Series Command Line Interface Release 2 1 328 Appendix A CLI command list Table 14 CLI command list continued command Page No
8. environment displays information about the SSF module and chassis If you do not specify a configuration type the CLI displays all the configuration information Quit command The quit command ends your Boot Monitor CLI session and reboots the Passport 1000 Series chassis Reference for the Passport 1000 Series Command Line Interface Release 2 1 68 Chapter 2 Boot Monitor command line interface 202086 C 69 Chapter 3 Run Time CLI description In a Passport 1000 Series switch the Run Time CLI commands enable you to display and modify the switch configuration while the switch is operating This chapter includes information about the Run Time CLI in the Passport software It includes the following sections e System and station requirements next e General usage on page 70 e Run time command list tree on page 76 e Navigation commands on page 78 e General commands on page 78 File and device management commands on page 88 e Test commands on page 92 e Trace commands on page 94 System and station requirements You can use any terminal or PC with a terminal emulator as the CLI command station The terminal requires the following e 9600 bits per second b s 8 data bits 1 stop bit no parity no flow control e Serial terminal emulation program such as Terminal for Windows NT or Hyperterm for Windows 95 or Windows 98 e Cable and connector to match the Pas
9. priority lt integer gt Sets the OSPF priority for the port 0 to 255 during the election process for the designated router The port with the highest priority number is the best candidate for the designated router If you set the priority to 0 the port cannot become either the designated router or a backup designated router The default is 1 Note Both sides of the OSPF connection must use the same authentication type and key Figure 142 config ethernet ip ospf info command output qum 11884 config ethernet ip ospf info TN object ports ip is out of range object ports required ports portlist slot port slot port port commands auto negotiate set auto negotiate default vlan id set default vlan id duplex set duplex high priority set high priority for a port info show current level parameter settings and next level directories ip port ip commands linktrap set link up down trap lock set lock oversize frame set oversized frame perform tagging set perform tagging option preferred phy set preferred connector to a port speed set speed state set port state up down test stg set port stg commands tagged frames discardset discard tagged frames unknown mac discarddiscard unknown source mac frames commands N untagged franes discardset discard untagged frames E Reference for the Passport 1000 Series Command Line Interface Release 2 1 234 Chapter 6 Configuring layer 3
10. 202086 C 177 Chapter 6 Configuring layer 3 protocol features This chapter describes the CLI commands used to configure layer 3 routing functions in the Passport 1000 Series switch This chapter includes sections about the following command groups used to configure routing characteristics e IP routing commands next IP ARP commands on page 188 e DHCP relay commands on page 196 e UDP commands on page 203 e RIP commands on page 208 e OSPF commands on page 218 e VRRP commands on page 240 e IP multicast commands on page 246 e DVMRP commands on page 249 e Layer 3 IGMP commands on page 257 e IPX commands on page 263 IP routing commands The general IP routing commands allow you to enable and disable IP forwarding routing on the switch ports or VLAN Reference for the Passport 1000 Series Command Line Interface Release 2 1 178 Chapter 6 Configuring layer 3 protocol features config ip commands The general config ip commands use the following options config ip followed by info Displays current default time to live characteristics Figure 92 default ttl lt seconds gt Sets the default time to live value for routing the maximum number of seconds before a packet is discarded The default value inserted in the ttl field whenever one is not supplied in the datagram header Range is 1 to 255 route delete lt ipaddr m
11. Figure 22 show config command output f Passport 11888 show config H box type Passport 1166 boot monitor version v2 1 8 8 b811 software version REL2 1 8 8 B868 H H HARDWARE CONFIGURATION H slot 1 slot 2 slot 3 16x188BaseTXWG ARU3 QUIDS PIC3 ssf 1166 SQUID3 SWIP2 Xy2 H SYSTEM CONFIGURATION H config cli sys set contact SupportBbaynetworks com snmp community 11 private snmp trap recu 10 18 40 91 v1 public snmp trap recu 10 10 40 92 v1 public snmp trap recu 18 122 68 182 v1 optivity96 autotrap snmp trap recu 16 122 66 188 v1 superagent autotrap snmp trap recu 134 177 25 24 u1 public snmp trap recu 134 177 25 49 u1 public snmp trap recu 134 177 25 61 v1 public snmp trap recu 134 177 25 78 v1 public snmp trap recu 134 177 25 166 v1 public snmp trap recu 134 177 25 176 v1 public snmp trap recu 134 177 80 41 v1 public snmp trap recu 134 177 806 161 v1 public snmp trap recu 134 177 860 169 v1 public snmp trap recu 134 177 868 113 v1 public snmp trap recy 134 177 806 125 v1 public snmp trap recy 134 177 860 126 v1 public snmp trap recy 134 177 806 151 v1 public snmp trap recy 134 177 860 156 v1 public snmp trap recy 134 177 860 189 y1 public snmp trap recu 134 177 86 268 v1 public 202086 C Chapter 4 Configuring switch management 99 A back ON syslog back LINK FLAP DETECT CONFIGURATION link flap detect back tt ACCESS POLICY CONFIGURATIO
12. debug is the optional parameter that allows you to view the script while it is executing Note Use caution when executing script files from within the CLI The command executes references from your current position in the directory structure Delete The delete command marks a file for deletion on a device To mark a file for deletion enter the command usage delete lt devfile gt where devfile is the file name or number of the flash or PCMCIA file and the device name or number you can include Note The delete command marks a file for deletion it does not erase the file To free the space used by a deleted file use the squeeze command 202086 C Chapter 1 Passport basics 51 Squeeze The squeeze command reclaims deleted file space on a device To reclaim deleted file space enter the command usage squeeze lt device gt where device is flash or PCMCIA You can also include a device name or number Note The files are renumbered after using the squeeze command gt Recover The recover command is used to unmark all files on the device already marked for deletion To recover marked files before a delete enter the command usage recover lt device gt where device is flash or PCMCIA Reference for the Passport 1000 Series Command Line Interface Release 2 1 52 Chapter 1 Passport basics Passport access levels and passwords The Passport 1000 Series switch has
13. 343 PIN NITE vers nn biken Me LTE Teke SST en kle GE 343 MAC address SSSIONINGM nere xr x RE Rn RO Xe KORR E Rakke bl m aor 344 Base MAG 00058 seco ck uer debe seeded br k ehitis AAA RR ER ERR La 345 Physical EG EEE PE edd added 346 Virtual MAC addresses lloesssemesdera kcEen eR REX ARENA eee dd RR Rd 347 MOEN PSP RR ACE ACA AA AA AY 349 Reference for the Passport 1000 Series Command Line Interface Release 2 1 18 Contents 202086 C 19 Figures Figure 1 Passport 1200 directory flash command example 47 Figure 2 Passport 1100 directory flash command example 48 ES f COMING sos La bee ee eae bd 49 Figure4 directory flash command s oissescesesaesdaseke eee ee ER REX 49 Figures directory command ulp t s 22cc2cascsedacseisiscesasdsagaedaasd 62 Fiouge PONG P s ccacdnwes esque Y ERD ancad LER DE LEE N 64 Figure 7 ping command ouput ara aar Rx m ae mms 66 Figure 8 Passport 1200 slot and port numbering nnen 74 Figure 9 Partial Run Time CLI Tree iossasceues she RR RE aS vekene is 77 Figure 10 Passport 1000 Series online Help llle 82 Figure 11 help command output in the Run Time CLI nne 83 Figure 12 help contig command output ene ane RR ee sewn awe 84 Figure 13 history command output eee 85 Foue lt pind command OUIPUL cues a deu Re ERE RECETA ER RP RA REA 86 Figure 15 traceroute command output nee ens eren en Rx 87 Figure 16 file and device managemen
14. config sys set info config sys set location lt location gt config sys set name lt prompt gt config sys set portlock lt onloff gt config sys set sendtrap lt true false gt config sys set snmp community lt ro 11 I2 I3 rw rwa gt lt commstr gt config sys set snmp info config sys set snmp trap recv lt ipaddr gt lt v1 v2c gt lt commstr gt config sys set topology lt onloff gt page 117 config sys syslog host lt id gt address lt ipaddr gt config sys syslog host lt id gt create config sys syslog host lt id gt delete config sys syslog host lt id gt facility lt facility gt config sys syslog host lt id gt host lt enable disable gt config sys syslog host lt id gt info config sys syslog host lt id gt mapinfo lt level gt config sys syslog host lt id gt mapwarning lt level gt config sys syslog host lt id gt maperror lt level gt config sys syslog host lt id gt mapfatal lt level gt config sys syslog host id severity lt info warning error fatal gt lt info warning error fatal gt config sys syslog host lt id gt udp port lt port gt config sys syslog info config sys syslog max hosts lt maxhost gt config sys syslog state lt enable disable gt page 123 config sys telnet client lt enable disable gt config sys tftp server lt enable disable gt page 111 202086 C Appendix A CLI command list 329 Table 14 CLI command list continued command
15. 202086 C Chapter 2 Boot Monitor command line interface 61 Table 9 File management commands continued directory lt device name or device number gt 1 where device name or device number is the file device flash or PCMCIA 1 represents file details Lists the files on a flash or PCMCIA device format lt device name or device number gt Formats the flash module or PCMCIA card recover lt device name or device number gt Recovers a file deleted from the flash module or PCMCIA card squeeze lt device name or device number gt Reclaims space occupied by files marked for deletion on the flash module or PCMCIA card log show lt device gt lt filename gt tail Displays system log information Note tail requests displaying information from the back first log create lt device gt lt filename gt lt nblocks gt Creates a log file Note nblocks is the number of blocks to be displayed log clear device filename gt Clears log files on a device or the specified log file trace show tail device filename Displays trace information Note tail requests displaying information from the back first To list devices on your Passport 1000 Series chassis use the show devices command To list the file names enter the directory command Figure 5 shows output for the directory command Reference for the Passport
16. COLLISIONS SINGLE MULTIPLE LATE EXCESSIUE 8 8 8 8 show mlt error main command The show mlt error main command displays information about the types of Ethernet errors sent and received by a specified MLT or all MLTs The command syntax is show mlt error main lt mid gt IMAC refers to internal MAC address errors Figure 63 shows output for the show m1t error main command Figure 63 show mlt error main command output HLT ALIGN FCS IMAC IMAC CARRIER FRAMES SQETEST DEFER ID ERROR ERROR TRNSHIT RECEIVE SENSE TOOLONG ERROR TRNSHSS show mlt info command The show mlt info command displays the status of MLT for the switch or the specified MLT ID The command syntax is show mlt info lt mid gt Figure 64 shows the output for the show mlt info command 202086 C Chapter 5 Configuring layer 2 features 149 Figure 64 show mit info command output F 33333 3 3 3 3 3 EAKEEKEE EEEEEEEEEEEEETKEEEETETEEEEEEEEE E3E EEE E ZE E E E Mlt Info PORT PORT ULAN IFINDEX NAME TYPE MEMBERS IDS show mit stats command The show mlt stats command displays MLT statistics for the switch or the specified MLT ID The command syntax is show mlt stats lt mid gt Figure 65 shows output for the show mlt stats command Figure 65 show mlt stats command output IN OUT IN OUT IN OUT IN OUT OCTETS OCTETS UNICST UNICST MULTICST MULTICST BROADCST BROADCST Spanning tree group c
17. Disabled Disabled Does not listen for RIP updates Enabled Disabled Listens for all RIP updates except the default Disabled Enabled Listens only for the default Enabled Enabled Listens for RIP updates including the default route if it exists show ports info rip command The show ports info rip command displays information about the RIP parameters for all ports or a specified port The command syntax is show ports info rip lt ports gt Figure 126 shows output for the show ports info rip command 202086 C Chapter 6 Configuring layer 3 protocol features 215 Figure 126 show ports info rip command output Passport 11868 show ports info rip P Port Rip PORT ADVERTISE ACCEPT TRIGGERED AUTOAGG NUH ENABLE DEFAULT DEFAULT UPDATE ENABLE SUPPLY LISTEN POISON 371 false false false false false true true false 3 2 false false false false false true true false 3 3 false false false false false true true false 3 4 false false false false false true true false 3 5 false false false false false true true false 3 6 false false false false false true true false 3 7 false false false false false true true false 3 8 false false false false false true true false 3 9 false false false false false true true false 3 18 false false false false false true true false 3 11 false false false false false true true false 3 12 false false false false false true true false
18. Enables OSPF on the port disable Disables OSPF on the port area lt ipaddr gt Sets the OSPF identification number for the area typically formatted as an IP address authentication key lt string gt Is the authentication key for the port OSPF interface Specify the key as a simple password with eight characters string authentication type lt auth type gt Sets the OSPF authentication type for the port none simple password or MD5 authentication If simple all OSPF updates received by the interface must contain the authentication key specified by the area authentication key command If MD5 they must contain the md5 key dead interval lt seconds gt Sets the router OSPF dead interval the number of seconds the switch s OSPF neighbors should wait before assuming that the OSPF router is down The range is 1 to 2147836437 the default is 4 The value must be at least 4 times hello interval 202086 C Chapter 6 Configuring layer 3 protocol features 233 config ethernet lt port gt ip ospf followed by hello interval lt seconds gt Sets the OSPF hello interval which is the number of seconds between hello packets sent on this interface You can specify a value from 1 to 65535 The default is 1 metric lt cost gt Sets the OSPF metric associated with this interface and advertised in router link advertisements The range is from 0 to 65535 the default is 0
19. both false false false false false false false false false false false false false false false false false false false false false false false false false false Z show ports stats dhcp The show ports stats dhcp command displays DHCP statistics for all ports or a specified port The command syntax is show ports stats dhcp Figure 115 shows output for the show ports stats dhcp command lt ports gt 202086 C Chapter 6 Configuring layer 3 protocol features 201 Figure 115 show ports stats dhcp command output PORT NUM NUMREQUEST NUMREPLY 3 1 8 8 3 2 8 8 3 3 8 8 3 4 8 8 3 5 8 8 3 6 8 8 3 7 8 6 3 8 6 8 3 9 6 8 3 18 8 8 3 11 8 8 3 12 8 8 3 13 8 8 3 14 6 8 3 15 6 8 6 8 config vlan ip dhcp relay commands The config vlan ip dhep relay commands configure DHCP routing on the VLAN These commands require a VLAN ID lt vid gt from 1 to 4095 and use the following options config vlan lt vid gt ip dhcp relay followed by info Displays DHCP characteristics on the VLAN Figure 116 broadcast enable disable Sets whether the server reply is sent as a broadcast back to the end station disable Disables DHCP relaying on the VLAN This is the default state enable Enables DHCP relaying on the VLAN max hop lt max hop gt Sets the maximum number of hops before the BootP DHCP pa
20. device is flash or PCMCIA rsh lt ipaddr gt 1 lt value gt lt cmd gt Executes a shell command on a remote machine e ipaddr is the IP address e value is the user login name string cmd is the command to execute on remote host string squeeze lt device gt Reclaims space occupied by files marked for deletion on the flash module device is flash or PCMCIA telnet lt ipaddr gt Sets up a Telnet session to a remote device e ipaddr is the IP address Chapter 3 Run Time CLI description 89 rlogin Allows remote login to a remote device lt ipaddr gt ipaddr is the IP address save Saves your configuration lt devfile gt e devfile is the destination device and file name standby standby is the standby or backup destination for example standby NVRAM Figure 16 shows output for the file and device management commands Reference for the Passport 1000 Series Command Line Interface Release 2 1 90 Chapter 3 Run Time CLI description Figure 16 file and device management commands output Passport 1100 dir Device flash FN Name acc2 x x syslog acc2 x y accboot2 x x accbootx x z config2xx N UE WN H 6 files bytes used programming Passport1100 dir Device flash FN Name 1 acc2 x 2 syslog 2 files used 1114112 free 3080192 Device pcmcia FN Name 1 acc2 x x 2 newfile 2 files used 2097152 free 2097152
21. show ports stats bridging lt ports gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 136 Chapter 5 Configuring layer 2 features Figure 55 shows output for the show ports stats bridging command Figure 55 show ports stats bridging command output 2 18 2 11 2 12 2 13 2 14 2 15 a 2 16 IN FRAME IN FRAME IN FRAME UNIGAST MULTICAST BROADCAST 5614236 22725084 9740952 e c 02 02 02 02 02 02 02 02 02 02 02 02 D 02 02 C02 C2 C2 C2 C02 02 C02 02 022 02 02 02 02 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 3717689 8 8 8 8 8 1687187 8 3944948 218719 6551639 126 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 OUT FRAME OUT FRAME OUT FRAME UNICAST 49763 C 0202 02 02 02 02 02 C2 02 C2 C2 C2 C2 2 C2 C2 02 C2 02 C2 02 02 C2 02 02 02 02 02 02 02 MULTICAST BROADCAST 1616877 349704 Seowooaooeooeooococea 1962692 2077915 6 6 6 6 6 8 8 8 8 8 8 8 8 8 8 4741895 8 8 6 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 si show ports stats interface main command The show ports stats interface main command displays basic interface information about all or specified ports The command syntax is show ports stats interface main lt ports gt 202086 C Chapter 5 Configuring layer 2 features 137 Figure 56 show ports stats interface main command output Figure 56 shows output for the show ports stats int
22. A Reference for the Passport 1000 Series Command Line Interface Release 2 1 270 Chapter 6 Configuring layer 3 protocol features config ipx rip command The config ipx rip commands set the IPX RIP interface values using the following options config ipx rip followed by age multiplier Sets the hold multiplier value for the IPX interface lt IPX network number gt The range is 1 to 2147483647 the default is 3 lt age multiplier gt state Enables or disables RIP for the given IPX network lt IPX network number gt number lt on off gt update delay Sets the update delay timer for the IPX interface lt IPX network number gt The range is 1 to 1000 ms the default is 50 ms lt delay timer gt update interval Sets the update interval for the IPX interface in lt IPX network number gt seconds The range is 1 to 2147483647 The lt interval timer gt default is 60 seconds config ipx sap commands The IPX SAP commands are used to configure Service Advertisement Protocol SAP on IPX interfaces Three timing parameters also control IPX SAP behavior e Hold multiplier e Delay timer nterval timer If the global default parameters are going to be different from the factory defaults set the default parameters prior to setting individual interface parameters config ipx sap info command The config ipx sap info command displays IPX SAP settings Figure 178 shows output for the co
23. Figure 180 show ipx stats command output Passport 1286 show ipx stats N CIRCUIT ID NETNUM RIP_TX RIP_RX SAP_TX SAP_RX Total 8 8 8 8 Bad checksum Received packet Too many hops Header error Unknown socket Input discard Forward packet Output request Output no route Malformed request Output discard Output packet Resource failure 202086 C Chapter 6 Configuring layer 3 protocol features 275 show vlan info ipx command The show vlan info ipx command displays VLAN IPX information for a specified VLAN or for all VLANs The command syntax is show vlan info ipx lt vid gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 276 Chapter 6 Configuring layer 3 protocol features 202086 C 277 Chapter 7 Configuring IP flow policies and filters Caution IP Multicast with IGMP and DVMRP is not supported on this platform This chapter describes the CLI commands used to configure IP flows policies and filters The following major sections are included e IP flow commands next e IP policies on page 279 e IP filters on page 294 IP flow commands The config IP flow commands are used to set priority You can use IP flows to identify a particular stream of traffic at the IP layer and at the TCP UDP layer Reference for the Passport 1000 Series Command Line Interface Release 2 1
24. Figure 29 shows output for the config log command Figure 29 config log command output Sub Context clear config monitor show test trace Current Context clear N A level 6 screen off write N A The log file is composed of two halves Each half is an integral number of device sectors the default is 1 Each log record is 256 bytes long The logger subsystem writes to the current half When a half fills up it swaps over to the other half clearing it if necessary 202086 C Chapter 4 Configuring switch management 107 When a switch boots the following log message is displayed flash syslog 0 3 where flash is the storage media syslog is the file name on storage media 0 is the zero half 3 is the third entry for the current half The log file used when the switch boots is the last or highest file number log file If the flash file system is full it attempts to copy the log file to the PCMCIA card optional You can copy the log file The next time the switch resets it uses the highest file number of the log file show log commands The show log commands display switch log information show log file command The show log file command displays the log file automatically created by the system The command syntax is show log file tail Figure 30 is a sample display where the tail parameter is entered to configure the display to enter the most recent information first If your
25. Sets the minimum seconds count set for DHCP If the secs field in the BootP DHCP packet header is greater than this value the switch relays or forwards the packet otherwise the packet is dropped 0 to 65535 The default is 0 seconds mode lt mode gt Sets DHCP mode to forward BootP messages only DHCP messages only or both The default is both Figure 113 config ethernet ip dhcp relay info command output Sub Context clear config monitor show test trace Current Context Port 3 1 dhcp relay broadcast learnarp max hop min sec mode disable disable disable 4 6 both show port dhcp commands The show port dhep commands display information about DHCP on the port show ports info dhcp command The show ports info dhcp command displays the DHCP parameters for all ports or a specified port The command syntax is show ports info dhcp lt ports gt Figure 114 shows output for the show ports info dhep command Reference for the Passport 1000 Series Command Line Interface Release 2 1 200 Chapter 6 Configuring layer 3 protocol features Figure 114 show ports info dhcp command output false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 8 false 4 6 false 4 8 false 4 8 false 4 8 both both both both both both both both both both both both
26. Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Link Up 3 18 Doun 3 18 Up 3 18 Doun 3 18 Up 3 18 Doun 3 18 Up 3 18 Doun 3 18 Up 3 18 Doun 3 18 Up 3 18 Up 3 18 Doun 3 18 Up 3 9 Doun 3 9 Up 3 18 Doun 3 18 Up 3 9 Doun 3 9 Up 3 18 Doun 3 18 Up 3 9 Doun 3 9 E The show log level command displays the level of information being entered in the log Figure 31 The level ranges from information INFO where all messages are entered to FATAL where only fatal errors are recorded The manufacturing MFG level is for manufacturing purposes only and not available for customer use Figure 31 show log level command output Log Levels are 8 INFO 1 WARNING 2 ERROR 3 MFG 4 FATAL The Log Level is INFO 202086 C Chapter 4 Configuring switch management 109 RMON commands The Remote Network Monitoring RMON MIB is an interface between the RMON agent on your Passport switch and an RMON management application such as Device Manager Although it is currently necessary to use Device Manager to configure RMON on your switch the CLI has limited RMON capability config rmon commands The config rmon commands enable disable and display RMON status on the switch The config
27. The show vlan igmp snoop statie command uses the format show vlan igmp snoop static lt vid gt This command displays information about the static IGMP groups for all VLANs or for the specified VLAN Figure 91 Figure 91 show vlan igmp snoop static command output config vlan static mcastmac The config vlan static mcastmac command is used to configure multicast MAC filtering config vlan lt vid gt static mcastmac followed by add mac lt value gt ports Adds VLSAN static multicast MAC entries lt value gt mlt lt value gt where mac values is the MAC address ports lt value gt are the ports to receive the multicast flooding mlt lt value is the MID add mlt lt mid gt mac lt value gt Adds MLT to VLAN static multicast MAC entries add ports lt ports gt mac Adds ports to VLAN static multicast MAC entries lt value gt delete mac lt value gt Deletes VLAN static multicast MAC entries delete mlt mid mac value Deletes MLT to VLAN static multicast MAC entries 202086 C Chapter 5 Configuring layer 2 features 175 config vlan lt vid gt static mcastmac followed by delete ports lt ports gt mac lt value gt Deletes ports from VLAN static multicast MAC entries info Displays current settings Reference for the Passport 1000 Series Command Line Interface Release 2 1 176 Chapter 5 Configuring layer 2 features
28. ports ip create brouter lt ipaddr mask gt lt tag id gt config ethernet ports ip delete lt ipaddr gt page 185 config ethernet ports ip dhcp relay broadcast lt enable disable gt config ethernet ports ip dhcp relay disable config ethernet ports ip dhcp relay enable config ethernet ports ip dhcp relay info config ethernet ports ip dhcp relay max hop lt max hop gt config ethernet ports ip dhcp relay min sec lt min sec gt config ethernet ports ip dhcp relay mode lt mode gt page 198 Reference for the Passport 1000 Series Command Line Interface Release 2 1 312 Appendix A CLI command list Table 14 CLI command list continued command Page No config ethernet lt ports gt ip dvmrp enable config ethernet lt ports gt ip dvmrp disable config ethernet lt ports gt ip dvmrp info config ethernet lt ports gt ip dvmrp metric lt cost gt page 254 config ethernet lt ports gt ip directed broadcast disable config ethernet lt ports gt ip directed broadcast enable config ethernet lt ports gt ip directed broadcast info page 185 config ethernet lt ports gt ip 13 igmp info config ethernet ports ip I3 igmp last memb query int lt seconds gt config ethernet lt ports gt ip 13 igmp query interval lt seconds gt page 260 config ethernet lt ports gt ip 13 igmp query max resp lt seconds gt config ethernet lt ports gt ip 13 igmp r
29. show ip 13 igmp cache command The show ip 13 igmp cache command displays information about the layer 3 IGMP cache Figure 166 shows output for the show ip 13 igmp cache command Figure 166 show ip 13 igmp cache command output swlab edge2 show ip 13 igmp cache Igmp Cache GRPADDR INTERFACE LASTREPORTER EXPIRATION U1HOSTTIMER 239 255 207 31 Port2 1 192 168 26 2 259 266 239 255 214 171 Port2 1 192 168 26 2 257 255 202086 C Chapter 6 Configuring layer 3 protocol features 259 show ip 13 igmp group command The show ip 13 igmp group command displays information for the layer 3 IGMP group Figure 167 shows output for the show ip 13 igmp group command Figure 167 show ip 13 igmp group command output swlab edge2 show ip 13 igmp group Ignp Group GRPADDR INPORT MEMBER EXPIRATION 239 255 267 31 2 1 192 168 26 2 259 239 255 214 171 2 1 192 168 26 2 259 show ip 13 igmp interface The show ip 13 igmp interface command displays information for the interfaces on which layer 3 IGMP is enabled Figure 168 shows output for the show ip 13 igmp interface command Figure 168 show ip 13 igmp interface command output Passport 12884 show ip 13 igmp interface bh QUERV OPER QUERY WRONG LASTMEM IF INTUL STATUS VERS VERS QUERIER MAXRSPT QUERY JOINS ROBUST QUERY P2 1 125 inact 2 2 8 8 8 8 18 8 8 2 1 P2 2 125 inact 2 2 8 8 8 8 18 8 8 2 1 U1 125 inac A 2 2 6 6 6 6 16 8 8 2 1 ue Reference for the
30. 116 Chapter 4 Configuring switch management The config sys set flags commands include the following options lt truel false gt config sys set flags followed by info Displays the current flag settings Figure 37 autoboot Controls whether the routing switch automatically runs the run time image after being reset or stops at the monitor gt prompt Setting autoboot to false is useful for some debugging tasks The default setting is true factorydefault lt truel false gt Sets the switch configuration to factory default settings switchportiso lt true false gt Controls whether the ports operate in isolated mode In isolated mode true the ports are members of the unassigned isolated VLAN instead of the Default VLAN which includes all ports The default is false debugmode lt true false gt Controls whether the routing switch automatically reboots following a fatal error If true the switch is not rebooted following a fatal error If false the switch is automatically rebooted following a fatal error The default is false highpriomode lt truel false gt Enables high priority switching A Passport switch can operate in either of two modes Best Effort or Priority mode The factory default setting is Best Effort mode where all traffic is treated with the same priority In Priority mode high priority traffic flows through the switch fabric using a high priority data path out
31. 202086 C Chapter 6 Configuring layer 3 protocol features 217 Figure 127 config vlan ip rip info command output Passport 11884 config vlan ip rip info E M object Xvid ip is out of range object lt vid gt required lt uid gt vlan commands action agetime change dynamic vlan membership agetime create create a vlan delete delete a vlan Fdb entry forwarding database fdb filter vlan bridge filter ports fdb static vlan bridge static ports highpriority change a vlan high priority igmp snoop info ip vlan ip commands ipx vlan ipx commands name change the name of a vlan ports vlan ports commands srcmac vlan id 1 4694 vlan action set igmp snoop on a vlan show current level parameter settings and next level directories vlan change source mac address commands J static mcastmac vlan static multicast mac commands show vlan info rip command The show vlan info rip command shows the RIP parameters for all VLANs or a specified VLAN The command syntax is show vlan info rip lt vid gt Figure 128 shows output for the show vlan info rip command Reference for the Passport 1000 Series Command Line Interface Release 2 1 218 Chapter 6 Configuring layer 3 protocol features Figure 128 show vlan info rip command output Passport 1166 show vlan info rip CN Ulan Rip ULAN ADVERTISE ACCEPT TRIGGERED AUTOAGG ID ENABLE DEFAULT DEFAULT UPDATE ENABLE SUPPLY
32. 278 Chapter 7 Configuring IP flow policies and filters config ip flow commands The config ip flow commands include the following options config ip ipflow followed by info Displays the current IP flow settings Figure 181 create src ip lt value gt Creates an IP flow with the following parameters src ne Gare dst DE src ip value is the source IP address of an IP vaiue dst port lt value gt packet a b c d protocol value sre port value is the source port of an IP packet The source IP port range is 0 to 65535 A zero value in this field can be used asa wildcard value dst ip value is the destination IP address of an IP packet a b c d dst port value is the destination port of an IP packet A zero in this field is used as a wildcard 0 to 65535 protocol value is the protocol type IP TCP or UDP delete src ip value Deletes an IP flow The parameters are the same src port value dst ip as described for create value dst port value protocol value Figure 181shows output for the config ip flow command Figure 181 config ip flow command output swlab edge2 config ip ipflow info Sub Context clear config monitor shou test trace Current Context create not created delete N f show ip flow command The show ip flowcommand displays the source and destination IP address the source and destination IP port addre
33. Disables all bridging and routing and isolates all I O ports Run time Image Specifies up to three run time image sources and the order in Sources which they are loaded For more information about this process refer to Stage 3 Run time image load Config File Allows you to specify which configuration file to use as the boot source flash PCMCIA or a script file If not specified the boot file is used IP Address Provides the IP address for the diagnostic Ethernet port TFTP Server A default TFTP server and file to retrieve for the bootstrap TFTP client If Autoboot is disabled or interrupted at the console the boot process stops At this stage the user has access to the Boot Monitor CLI at the console You can set the boot configuration and perform upgrades to the bootstrap image and run time image loaded in stage 3 in the Boot Monitor CLI Any changes made and saved at the Boot Monitor CLI change the boot configuration After you save the configuration you can reinitiate the boot process from the Boot Monitor CLI using the boot command Stage 3 Run time image load The run time image loads after the boot configuration This software image initializes the I O modules and provides full switch functionality Reference for the Passport 1000 Series Command Line Interface Release 2 1 38 Chapter 1 Passport basics You can load the run time image from various sources depending on the mod
34. Figure 111 Figure 112 Figure 113 Figure 114 Figure 115 Figure 116 Figure 117 Figure 118 Figure 119 Figure 120 Figure 121 Figure 122 Figure 123 Figure 124 Figure 125 Figure 126 Figure 127 Figure 128 Figure 129 Figure 130 Figure 131 Figure 132 Figure 133 Figure 134 show ip diffserv command output en 184 config ethernet ip info command output ee 186 show ports info ip command output ee 186 config vlan ip info command output nrk 187 show vlan info ip command OUIDUL sage exe qu eden eed ue RR E 188 config ip arp info command output 0 0 0 eee 190 show ip arp info command output ilios cede cmm xke a 192 config ethernet ip arp response info command output 193 config ethernet ip proxy info command 193 show ports info arp command output 0c eee 194 config vlan ip proxy info command output e 195 config vlan ip resp info command output e nen 195 show vlan info arp command output een 196 config ethernet ip dhcp relay info command output 199 show ports info dhcp command output 20 ee 200 show ports stats dhcp command output ao 201 config vlan ip dhcp relay info command output 202 show vlan info dhcp command output en 203 show ip udpfwd interface info command output 206 show ip udpfwd portfwd info command output 206 show ip udpfwd protocol info command output
35. Page No config vlan lt vid gt action lt action choice gt config vlan lt vid gt agetime lt 10 100000 gt config vlan lt vid gt create byport lt sid gt name lt value gt config vlan lt vid gt create byprotocol lt sid gt lt ip ipx802dot3 ipx802dot2 ipxSnap ipxEthernet2 appleTalk decLat decOther sna802 t2 snaEthernet2 netBios xns vines ipV6 usrDefined rarp pid name lt value gt config vlan lt vid gt create byipsubnet lt sid gt lt ipaddr mask gt name lt value gt config vlan lt vid gt create bysrcmac lt sid gt name lt value gt config vlan lt vid gt create info config vlan lt vid gt delete do page 159 config vlan lt vid gt fdb entry aging time lt seconds gt config vlan lt vid gt fdb entry flush config vlan lt vid gt fdb entry info config vlan vid fdb entry monitor mac status value lt true false gt config vlan lt vid gt fdb entry priority lt mac gt status lt value gt lt high low gt config vlan lt vid gt fdb filter add lt mac gt port lt value gt config vlan lt vid gt fdb filter info config vlan lt vid gt fdb filter notallowfrom add lt mac gt port lt value gt config vlan lt vid gt fdb filter notallowfrom info config vlan lt vid gt fdb filter notallowfrom remove lt mac gt port lt value gt config vlan lt vid gt fdb filter remove lt mac gt config vlan lt vid gt fdb static add lt mac gt port lt value gt config vlan lt vid gt
36. Port Miroring commands EEE EE ARR ES 144 config mirror commands raarder qx same 145 show m Fono command aaa acta xia a Ne taba dee a d e cap CR ex den 145 EEE e soa atop ed e wear Saber ENE d d duties 146 COA LE LG ETE AE EE EEE EEE 146 Shaw ME EEMNES za rs suc AN kn weed LAGING RC a ae DDR ce Goes x 147 show mit error collision command 0020 eeen 147 Reference for the Passport 1000 Series Command Line Interface Release 2 1 10 Contents show mit error main command 2222524423 322 YA ix 972 amp RG E UR e Y AR 148 show mit into command ve ead ka tae d Leds cede REC iced eee 148 show mlt stats command os sero oare a rere deere cer ee eee ed ekai 149 Spanning tree group commands 2 eren 149 LONG CONMMANGS naaa baa cid EE 150 config ethernet ports stg commands een eene eee 151 show sto commands sagaer Gad 152 show stg inre config command cise csacdcavaedandedacee a raed amass 153 show stg info status command eneen 153 show ports Info stg main command a scare kk a Rn 154 show ports info stg extended command neen 155 show ports stats 819 command ci 54 ces s bo VEDR 156 ALE GAMMA RE EEE da ARET 187 config vlan create commands eene 157 config vlan general commands a ma ann bern na ka 159 show van general commanda idea d xe RE E ER Re RE RR Re RR RAS 161 Show vlan inio command Luis 0kg Ext et nid Sh dhs EBA AG HOE Y Rugs 161 show vlan info basic command aan eea aad EROR N 161 show vlan info advance c
37. Ports 1 4 Ports 5 8 Ports 9 12 Ports 13 16 B see see seg On the 1 gigabit or 2 gigabit I O modules one port in the pair is redundant 7824EA Use the slot and module examples in the figures as guides when you need help selecting ports in Passport Device Manager MAC address assignment Understanding how MAC addresses are assigned is important when defining static ARP entries for IP addresses in the routing switch and when using a network analyzer to decode network traffic 202086 C Appendix B Port numbering and MAC address assignment 345 Base MAC address A flash memory device holds a unique 48 bit base MAC address for the Passport 1000 Series switch For the Passport 1200 chassis the flash device is in the main chassis For the Passport 1100 or 1150 chassis the flash device is on the main board with the fixed ports For a given switch the base MAC address format is XX XX XX yy yy 00 where XX XX Xx is the IEEE organization identifier for example 00 OE 16 yy yy is unique to the switch On switches with debug Ethernet ports the base MAC address is used by this port The general form for a MAC addresses used by a particular switch is XX XX XX YY YY ZZ where XX xx xx is the IEEE organization identifier for example 00 OE 16 yy yy is unique to the switch ZZ is user specific From the general form it
38. The system appends the file to the last unused block of memory on flash so there are three files in flash Figure 4 Figure 4 directory flash command Passport 1166 dir Deuice flash FN Name Flags Length syslog LN 131072 p16a2166 img XZN 2661586 config cfg CN 18188 files bytes used 2293760 free 1900544 Copy script file to running config An extension of the copy command allows a script file an ASCII based text file containing CLI commands to be read by the switch The commands are executed as though they were typed during a console session By default script execution does not display at the device where the command is issued However if the optional debug parameter is used the execution of the command in the script file and the results are output to the device from which the command was executed The script file is an ASCII text file The first line of the file must include a pound sign followed by a carriage return with the remaining lines containing one valid CLI command per line Reference for the Passport 1000 Series Command Line Interface Release 2 1 50 Chapter 1 Passport basics To use a script file for switch configuration enter the command copy lt sourcedevice filename gt running config debug where sourcedevice is a flash PCMCIA or TFTP based file server If tftp is specified you are prompted for the server IP address and file name filename is the name of the file to be copied
39. and filters 297 config ip traffic filter filter lt fid gt followed by log stats Enables or disables the logging of statistics for the lt enable disable gt filter name lt name gt Gives a name to the filter where name value is the IP filter name string modify info Displays modifications to filter VLAN tagging or DiffServ settings modify diffserv rule Modifies the differentiated service rule used by the none rulel rule2 rule3 gt switch Refer to page 182 for information about Differentiated Services modify vlan tag priority Setsthe IEEE VLAN priority for the filter using a lt vlan priority number gt number in the range of 1 to 7 Figure 194 shows output for the config ip traffic filter filter info command Figure 194 config ip traffic filter filter info command output swlab edge2 config ip traffic filter filter 1 info Sub Context clear config monitor show test trace Current Context delete N A log stats not created name not created config ip traffic filter filter action command The config ip traffic filter filter action commands are used to set action parameters for IP filters by enabling or disabling the filters where lt fid gt is the traffic filter ID 1 to 4000 The commands use the following options config ip traffic filter filter lt fid gt action followed by info Displays configure actions for the filter Figure 195 mode S
40. fdb static info config vlan lt vid gt fdb static remove lt mac gt page 165 config vlan lt vid gt highpriority lt true false gt page 159 Reference for the Passport 1000 Series Command Line Interface Release 2 1 330 Appendix A CLI command list Table 14 CLI command list continued command Page No config vlan lt vid gt igmp snoop access list lt GroupAddress gt create lt HostAddress gt lt HostMask gt lt denyRX denyTX denyBoth gt config vlan lt vid gt igmp snoop access list lt GroupAddress gt delete lt HostAddress gt lt HostMask gt config vlan lt vid gt igmp snoop access list lt GroupAddress gt info config vlan lt vid gt igmp snoop access list lt GroupAddress gt mode lt HostAddress gt lt HostMask gt lt denyRX denyTX denyBoth gt config vlan lt vid gt igmp snoop info config vlan lt vid gt igmp snoop mrouter lt ports gt config vlan lt vid gt igmp snoop query interval lt seconds gt config vlan lt vid gt igmp snoop report proxy lt enable disable gt config vlan lt vid gt igmp snoop robust value lt integer gt config vlan lt vid gt igmp snoop sender flush lt Group IP Address gt lt ports gt lt Host IP Address gt config vlan lt vid gt igmp snoop sender info config vlan lt vid gt igmp snoop state lt enable disable gt config vlan lt vid gt igmp snoop static members lt GroupAddress gt add lt ports gt lt static blocked gt con
41. from 1 to 65536 The default is 1812 priority lt value gt the priority from 1 to 10 for this server retry lt value gt the number of authentication retries the server will accept timeout lt value gt the number of seconds before the authentication request times out enable lt value gt To enable this server set the value to true server delete lt ipaddr gt Deletes a server Enter the IP address of the server you want to delete server info Shows the RADIUS settings for the clients Note The UDP port value set for the client must match the UDP port value set for the RADIUS server Reference for the Passport 1000 Series Command Line Interface Release 2 1 144 Chapter 5 Configuring layer 2 features The show radius commands allow you to display the current settings for the RADIUS authentication feature The show radius commands include the following options show radius followed by info Displays the current settings for the RADIUS server attribute value operating status of the feature enabled or not and maximum number of servers allowed server config Displays the current configuration settings for RADIUS servers server stat Displays statistics for the RADIUS servers Port Mirroring commands Port mirroring is a troubleshooting and network traffic analysis tool Using port mirroring you specify a destination port on which you want to
42. show ip policy ospf accept match network command The show ip policy ospf accept match network command lists the policies that match the specified network with a range or exact match The command syntax is show ip policy ospf accept match network lt value gt show ip policy ospf announce info command The show ip policy ospf announce info command displays information about the OSFP announce policies configured on the switch If an ID is not entered the display provides information for all OSPF announce policies on the switch If a policy ID is entered the display lists information for only that policy The command syntax is show ip policy ospf announce info id lt value gt show ip policy ospf announce lists command The show ip policy ospf announce lists command displays list characteristics of the OSPF announce policies configured on the switch or for a specified policy ID The command syntax is show ip policy ospf announce lists id lt value gt show ip policy ospf announce match network command The show ip policy ospf announce match command lists the policies that match the specified network with a range or exact match 202086 C Chapter 7 Configuring IP flow policies and filters 293 The command syntax is show ip policy ospf announce match network lt value gt show ip policy rip accept info command The show ip policy rip accept info command displays information about the RIP accept policies co
43. 1000 Series Command Line Interface Release 2 1 62 Chapter 2 Boot Monitor command line interface Figure 5 directory command output Device flash FN Name Flags Length 1 syslog LN 131072 2 dana cfg SN 14161 3 acc21newb15 NZN 2624843 3 files bytes used 2228224 free 1966888 Help commands Help is available at all levels of the CLI by typing or help Typing help displays a list of the boot monitor commands History commands The history commands list the commands you have entered during the current session and allow you to reenter commands Table 10 describes the history commands 202086 C Chapter 2 Boot Monitor command line interface 63 Table 10 History commands Command Description history Lists the commands that you have entered during the current CLI session Reenters the most recently entered command lt number gt run command lt number gt Enters the command identified in the command history by lt number gt I str Runs the last command that matches the given string str lt substr gt Runs the last command that matches the given substring lt substr gt sstr rstr Enters the most recent command but substitutes a new string for a given string IP command The ip command assigns an IP address to the diagnostic Ethernet port for troubleshooting and diagnostics Note For normal operation do not have an IP address assi
44. 1000 Series Products Software Release 2 1 Nortel Networks part number 896 00181 F Describes important information about the software and hardware that is not covered in other related publications For more information about networking concepts protocols and topologies consult the following sources e RFC1058 RIP version 1 RFC 1723 RIP version 2 e RFC 1213 IP e RFC 1389 RIP 2 Management Information Base e RFC 1493 Bridge MIB RFC 1573 IANAIf Type e RFC 1643 Ether like MIB ex RFC 1757 RMON e RFC 1850 OSPF MIB e RFC 1583 OSPF e RFC 2178 OSPF e RFC 2338 VRRP IEEE 802 1D Standard for Spanning Tree Protocol IEEE 802 3 Ethernet IEEE 802 1Q VLAN Tagging e Enterprise MIB located on the Passport 1000 Series Software CD 202086 C Preface 31 Hard copy technical manuals You can print selected technical manuals and release notes directly from the Internet using the following URL www25 nortelnetworks com library tpubs Find the product for which you need documentation Then locate the specific category and model or version for your hardware or software product Use Adobe Acrobat Reader to open the manuals and release notes search for the sections you need and print them on most standard printers Use the following Adobe Systems URL to download a free copy of the Adobe Acrobat Reader www adobe com URL to You can purchase selected documentation sets CDs and technical publ
45. 186 config vlan lt vid gt ip dvmrp enable config vlan lt vid gt ip dvmrp disable config vlan lt vid gt ip dvmrp info config vlan lt vid gt ip dvmrp metric lt cost gt page 256 config vlan vid ip I3 igmp info config vlan vid ip I3 igmp last memb query int seconds config vlan vid ip I3 igmp query interval seconds config vlan vid ip I3 igmp query max resp seconds config vlan vid ip I3 igmp robustval integer config vlan vid ip I3 igmp version integer page 261 config vlan vid ip info page 186 Reference for the Passport 1000 Series Command Line Interface Release 2 1 332 Appendix A CLI command list Table 14 CLI command list continued command Page No config vlan lt vid gt ip ospf advertise when down lt enable disable gt config vlan lt vid gt ip ospf enable config vlan lt vid gt ip ospf disable config vlan lt vid gt ip ospf area lt ipaddr gt config vlan lt vid gt ip ospf authentication key lt string gt config vlan lt vid gt ip ospf authentication type lt auth type gt config vlan lt vid gt ip ospf dead interval lt seconds gt config vlan lt vid gt ip ospf hello interval lt seconds gt config vlan lt vid gt ip ospf info config vlan lt vid gt ip ospf metric lt cost gt config vlan lt vid gt ip ospf priority lt integer gt page 237 config vlan lt vid gt ip proxy disable config vlan lt v
46. 202086 C Chapter 4 Configuring switch management 101 Figure 23 show tech command output f ws Info N General Info SysName Passport 1166 SysUpTime 49 day s 18 12 27 SysContact support baynetworks com SysLocation 4461 Great America Parkway Santa Clara CA 95652 Chassis Info Chassis 1166 Serial 66252 HwReu V3 6 NumSlots 3 AruMode AruThree EocHode default Power Supply Info Psit1 Status up Mnre fa anit M CLI management commands The CLI management commands allow you to view or change the CLI configuration The commands include the following subsets config cli general commands config cli password commands config cli commands The config cli commands are general management commands for the CLI and uses the following options config cli followed by banner add lt string gt Adds a login banner banner default banner Sets the login banner to default to true or false true false banner delete Deletes the login banner Reference for the Passport 1000 Series Command Line Interface Release 2 1 102 Chapter 4 Configuring switch management config cli followed by banner info Displays the current banner settings defaultlogin lt truel false gt Sets default login to default to true or false defaultpassword lt truel false gt Sets default password to default to true or false
47. 207 S20 C2 C2 S20 02 02 02 02 02 2 C 02 02 02 02 02 02 02 02 C2 C2 C2 C2 C2 C2 C2 C02 02 02 02 02 02 02 C2 C2 02 02 02 02 02 02 02 C2 c2 02 02 02 02 02 02 02 C2 C2 C2 C2 C2 C2 C2 20 02 C2 C2 C2 C2 C2 C2 C2 02 02 02 02 02 2 C cn cn 0n 02 0202 02 02 02 02 02 02 C2 C2 C2 C2 C2 C2 C02 C2 C02 02 C2 02 C2 02 02 02 02 02 CO C2 C2 C2 C2 C2 C2 02 02 C2 C2 C2 C2 C2 C2 C2 02 02 02 02 C2 C2 C2 C2 C2 C2 C2 02 02 02 02 02 02 C c2 02 02 02 02 02 02 C2 C2 C2 C2 C2 C2 C2 C2 C02 02 02 02 C2 C2 C2 C2 S20 02 02 02 02 02 2 Ca c20202 02 02 02 02 02 02 02 02 02 C2 C2 C2 02 02 02 02 C2 C2 02 C2 02 02 02 02 02 02 02 02 Cc 020202 02 02 02 02 02 C2 C2 C2 C2 C2 02 02 02 02 02 02 02 C2 02 02 02 02 02 02 02 02 2 r The show ports error extended command displays extended information about Ethernet errors for all or specified ports The command syntax is show ports error extended lt ports gt Figure 52 shows output for the show ports error extended command 202086 C Chapter 5 Configuring layer 2 features 133 Figure 52 show ports error extended command output 2 11 2 12 2 14 2 15 40 16 MAC RX MAC TX DIFFER PACKET LINK UNKNOWN IN OUT ERRORS ERRORS TX ERRORS INACTIU PROTOS FLWCTRL FLUCTRL 77 A EM C5 c2 C2 C2 C2 C2 C2 02 C2 02 C2 02 C2 02 C2 C2 C2 C2 02 C2 C2 C2 02 C2 02 02 02 02 02 02 02 2 C c2 02 C02 02 C02 02 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 02 C2 02 C02 Ml C 02 C2 02 C2 02 C2 02 C2 02 C2 02 C
48. 3 13 false false false false false true true false 3 14 false false false false false true true false 3 15 false false false false false true true false 3 16 false false false false false true true false a config vian ip rip commands The config vlan ip commands set RIP parameters fora VLAN where lt vid gt is the VLAN ID 1 to 4095 The config vlan ip commands use the following options config vlan lt vid gt ip rip followed by info Displays RIP characteristics on the VLAN Figure 127 advertise when down If enabled the network on this interface is lt enable disable gt advertised as up even if no ports in the VLAN are active The default is disabled Note When you create a VLAN with no active ports and enable advertise when down it will not advertise your route until a port is active Then the route is advertised even when the link is down To disable advertising based on link status this parameter should be disabled Reference for the Passport 1000 Series Command Line Interface Release 2 1 216 Chapter 6 Configuring layer 3 protocol features config vlan lt vid gt ip rip followed by auto aggr lt enable disable gt Enables or disables automatic route aggregation on the VLAN When enabled the router switch automatically aggregates routes to their natural mask when they are advertised on an interface in a different class network The default is disable defaul
49. 36 boot source specifying 59 C choices command 59 clear commands 80 CLI command list alphabetical 309 CLI command tree 77 commands config cli password 54 config cli commands 101 config cli management commands 101 config cli password commands 54 104 config ip diffserv rule commands 184 config ip filter commands 295 config ip ospf commands 219 225 config ip policy commands 279 289 config log commands 106 config mirror commands 145 config radius commands 142 config rmon commands 109 config setdate command 110 config sys access policy commands 111 113 config web server commands 126 configuration default 39 files 42 loading 38 configuration RADIUS 144 conventions 28 conventions text 28 copy command 48 60 88 customer support 32 D date command 81 defaults login names and passwords 52 delete command 50 60 88 device management commands 60 88 Device Manager 34 device names reserved 44 devices command 59 DHCP relay commands global 197 port 198 VLAN 201 diagnostics 92 Differentiated Services 182 diffserv commands configure 184 show 184 directory command 46 61 88 directory flags 46 Distance Vector Multicast Routing Protocol See DVMRP commands DVMRP commands config 249 global 249 port 254 show 251 VLAN 256 Dynamic Host Configuration Protocol See DHCP relay commands E eoc mode 117 Ethernet port commands configure 185 OSPF configure 232 OSPF show 234 sh
50. 6 NumReachableRoutes 8 UpdateInterval 66 TriggeredUpdateInterual 5 LeafTimeOut 288 NbrTimeQut 35 NorProbeInterval 16 E show ip dvmrp interface command The show ip dvmrp interface command displays information about the DVMRP interface set up on the switch Figure 158 shows output for the show ip dvmrp interface command Figure 158 show ip dvmrp interface command Passport 128884 show ip dumrp interface Port2 1 192 168 58 178 1 doun Port2 2 192 168 58 178 1 doun Ulan1 16 16 46 176 1 down show ip dvmrp neighbor command The show ip dvmrp neighbor command displays information about the configured DVMRP neighbor Figure 159 shows output for the show ip dvmrp neighbor command 202086 C Chapter 6 Configuring layer 3 protocol features 253 Figure 159 show ip dvmrp neighbor command output swiab eage2t show ip dumrp neighbor Total 1 Port2 2 192 168 40 209 30 INTF ADDRESS EXPIRE GENID 980819675 3 255 prune genID active 46 15 28 MAJ MIN CAPABILITY STATE UPTIME VERSION show ip dvmrp next hop command The show ip dvmrp next hop command shows information about the DVMRP next hop Figure 160 shows output for the show ip dvmrp next hop command Figure 160 show ip dvmrp next hop command output swlab edge2 show ip dumrp next hop N 192 168 26 6 192 168 36 6 192 168 46 6 192 168 56 6 Total 4 255 255 255 6 255 255 255 6 255 255 255 6 255 255 255
51. 6 Configuring layer 3 protocol features 239 Figure 147 config vlan ip ospf info command output Passport 1188i config vlan 1 ip ospf info T Sub Context clear config monitor show test trace Current Context advertise when down disable ospf disable hello interual 18 dead interual 46 priority 1 metric 18 authentication type none authentication key ke area 6 6 6 6 show vlan info ospf command The show vlan info ospf command shows the OSPF parameters configured for all or a specified VLAN The command syntax is show vlan info ospf vid Figure 148 shows output for the show vlan info ospf command Figure 148 show vlan info ospf command output Passport 11884 show vlan info ospf A Ulan Ospf ULAN HELLO RTRDEAD DESIGRTR ID ENABLE INTERUAL INTERVAL PRIORITY METRIC AUTHTYPE AUTHKEY AREAID 1 false 10 46 1 16 none 6 6 6 6 2 false 186 46 1 6 none 6 6 6 6 45 false 10 46 1 16 none 6 6 6 6 75 false 10 46 1 8 none 6 6 6 6 76 false 18 46 1 6 none 6 6 6 6 77 false 18 46 1 6 none 6 6 6 6 1 16 none 6 6 6 6 Reference for the Passport 1000 Series Command Line Interface Release 2 1 240 Chapter 6 Configuring layer 3 protocol features VRRP commands The Virtual Router Redundancy Protocol VRRP is designed to eliminate a failure in the static default routed environment by using a logical IP address which is shared between two or more routers connecting the subnet to the enterpr
52. Command Line Interface Release 2 1 262 Chapter 6 Configuring layer 3 protocol features The commands use the following options followed by config vlan lt vid gt ip 13 igmp info Displays IGMP settings on the VLAN Figure 171 last memb query int lt seconds gt Sets the length of time in seconds an entry remains in the multicast table before timeout Range is 1 to 255 with a default value of 1 query interval lt seconds gt Sets the frequency in seconds at which host query packets are transmitted on the VLAN The range is 1 to 65535 with a default of 125 query max resp lt seconds gt Sets the maximum response time in seconds advertised in IGMPv2 queries on the VLAN Smaller values allow a router to prune groups faster The range is 1 to 255 with a default of 10 robustval lt integer gt Allows tuning for the expected packet loss of a network The range is 2 to 255 with a default of 2 Increase the value if the network has a high loss rate version lt integer gt Sets the version 1 or 2 of IGMP that is running on the VLAN For IGMP to function correctly all routers on a LAN must use the same version The default is IGMPv2 for B hardware and IGMPv1 for A hardware Figure 171 config vlan ip I3 igmp info command output Passport 1266 config vlan 1 ip 13 igmp info Sub Context clear config monitor show test trace Current Context last memb query in
53. Displays the current VLAN VRRP settings address lt ipaddr gt Sets the IP address of the virtual router interface adver int seconds Sets the advertising interval in seconds which is the time interval between sending advertisement messages The range is 1 to 255 and the default is 1 critical ip lt ipaddr gt Sets the critical IP address for VRRP The address is an IP interface on the local router configured so that a change in its state causes a role switch in the virtual router for example from master to backup in case the interface goes down delete Deletes the VRRP on the VLAN disable Disables the VRRP on the VLAN enable Enables the VRRP on the VLAN holddown timer seconds Sets hold down timer priority prio Sets the port VRRP priority 1 to 254 value to be used by this VRRP router The default is 100 The value 255 is assigned to the router that owns the IP address associated with the virtual router 202086 C Chapter 6 Configuring layer 3 protocol features 245 show vlan vrrp commands Two show commands display VLAN VRRP information show vlan info vrrp main command The show vlan info vrrp main command displays the basic VRRP configuration for a specified VLAN or for all VLANs The command syntax is show vlan info vrrp main lt vid gt show vlan info vrr extended command The show vlan info vrr extended command displays the extended V
54. Displays the current settings Figure 36 checkswinflash Runs checksum on the software version stored on the flash module checkswinpcmcia Runs checksum on the software version stored on the PCMCIA card cpuswitchover Resets the switch to change over to the backup CPU y getstandbycpuinfo Gets information about the standby CPU card the redundant SSF module in a Passport 1200 Switch 202086 C Chapter 4 Configuring switch management 115 config sys set action followed by resetconsole Reinitializes the hardware UART drivers Use only if the console or modem connection is hung resetcounters Resets all the statistics counters in the routing switch to zero y resetmodem Resets the modem port savetostandbynvra m Sets the switch to save the switch configuration to backup CPU NVRAM Figure 36 config sys set action command output sub Context clear config monitor show test trace N Current Context checkswinflash checkswinpcmcia cpuswitchover getstandbycpuinfo resetconsole resetcounters resetmodem W savetostandbynuran E config sys set flags commands The config sys set flags commands set system flags to true or false for the following actions e Autoboot e Using the configuration file after rebooting Isolating ports e Activating debug mode Reference for the Passport 1000 Series Command Line Interface Release 2 1
55. EON oues ud 4 me ERE dou p EdoRR EE 121 202086 C 9 Contents config sys link flap detect commands ne 122 FTSE ed dee AA 123 config sys Syslog commands aar saar a send akk kx RR 123 SHOW commands uaa deque uoo tartte skr ddd bp RA AERA R oed a Rede 125 show sys syslog general info command ee 125 show sys syslog host info command 125 Web server COMME SEEREN ed dd ed REE EET ERE 125 config web server commands eneen eee 126 show web server command neee eee 126 Chapter 5 Configuring layer 2 features eneen eee 127 POH OO NAE ETE EEE ET EE PEER Ter config ethernet ports commands neee eee 127 show ports SOMMERS sc case da aper enk PAE ee ee ee eed ee ex 129 show ports error collision command vaar verneem de ReGen Ree kaka see 130 show ports error main command 131 show ports error extended command arr r nrk 132 show ports info config command 221 sassen m 133 show ports info interface command eneen 134 show ports stats bridging command svenn RE RAE e REGE 135 show ports stats interface main command neen 136 show ports stats interface extended command 137 show ports info vans command isre saar teras ERA EARS 138 config ethernet ports ip commands 06 cece eee eee 140 config ethernet lt ports gt unknown mac discard commands 140 RADIUS GE 1 EEE RE EE 142 CONG radius commands 35 SEERE tast ea SOs did 142
56. Enabled Serial Port 2 s2 hw ff ff ff ff ff ff ip 0 0 0 0 netmask 0x00000000 mgmt net 0 0 0 0 gateway 0 0 0 0 5 Enabled Debug Ethernet nic hw 00 e0 16 04 66 00 ip 0 0 0 0 netmask 0xff000000 mgmt net 0 0 0 0 gateway 0 0 0 0 ip configuration has been saved Note The Net 4 Serial port entry applies only to the modem port on the Passport 1200 Switch You cannot assign an IP address to this port in software release 2 1 202086 C Chapter 2 Boot Monitor command line interface 65 Ping command The boot monitor ping command allows you to test the connection between the Passport 1000 Series chassis and another networking device The syntax for the boot monitor ping command is ping lt ipaddr gt lt datasize gt lt count gt where ipaddr is the IP address of the other networking device datasize count is any integer value equal to or greater than 1 The default is 1 Figure 7 shows an example of ping output Reference for the Passport 1000 Series Command Line Interface Release 2 1 66 Chapter 2 Boot Monitor command line interface Figure 7 ping command output monitor gt ping EEE PING TEST SS Net Devices 4 Enabled Serial Port 2 s2 hw ff ff ff ff ff ff ip 0 0 0 0 netmask 0x00000000 mgmt net 0 0 0 0 gateway 0 0 0 0 5 Enabled Debug Ethernet nic hw 00 e0 16 04 66 00 ip 0 0 0 0 netmask 0xf 000000 mgmt net 0 0 0 0 gateway 0 0 0 0 select network interface device 5 Enter destination ip address 192 1
57. Length 994730 131072 1264023 87345 87884 60080 2818048 free 1376256 Passport 1200 copy flash acc2 x x pcmcia newfile bytes Passport 1100 delete flash acc2 x x File flash acc 2 x deleted Passport 1100 squeeze flash recovering deleted file space Passport 1100 dir Device flash FN Name 1 syslog 1 files success pemeia newfile as filet 2 994730 bytes 994730 130896 994730 994730 202086 C Chapter 3 Run Time CLI description 91 used 131072 free 4063232 Device pcmcia FN Name Flags Length 1 acc2 x x XZN 994730 2 newfile XZN 994730 2 files bytes used 2097152 free 2097152 Copying a script file to a running configuration An extension of the copy command allows the switch to read a script file an ASCII based text file containing CLI commands and execute the commands as if they were typed during a console session It also allows you to copy a running configuration to a script file By default script execution does not display at the device where the command is issued However if the optional debug parameter is used execution of the command in the script file and the results are output to the device from which the command was executed The first line of the script file must include a pound sign followed by a carriage return The remaining lines must contain valid CLI commands one per line The command format is copy lt sourcedevice filename gt running config debug where source
58. Note The encapsulation method must be the same as the protocol gt selected in step 1 5 Globally enable IPX routing on all IPX interfaces config ipx forwarding enable The config ipx commands use the following options config ipx followed by info Displays the switch IPX configuration Figure 173 forwarding info Indicates whether IPX is enabled or disabled on the switch and lists the IPX networks that are enabled or disabled Figure 174 forwarding disable lt IPX network number gt Disables IPX forwarding globally or on a specified IPX network forwarding enable IPX network number Enables IPX forwarding globally or on a specified IPX network Reference for the Passport 1000 Series Command Line Interface Release 2 1 266 Chapter 6 Configuring layer 3 protocol features Figure 173 config ipx info command output Passport 1266 config ipx info Sub Context clear config monitor show test trace Current Context create delete N A Figure 174 config ipx forwarding info command output Passport 12888 config ipx forwarding info Sub Context clear config monitor shou test trace Current Context forwarding disable enable disable config vlan ipx commands The config vlan ipx commands configure IPX on a VLAN using the following syntax and commands config vlan vid ipx followed by info Displays the switch IPX co
59. Passport switch has a real time clock the log file shows real time Reference for the Passport 1000 Series Command Line Interface Release 2 1 108 Chapter 4 Configuring switch management Figure 30 show log file tail command output Passport 1166 show log 3 89 000 388 808 387 000 386 000 385 000 384 000 383 808 382 000 381 808 380 000 379 000 378 000 377 000 376 068 375 000 374 000 373 000 372 808 371 808 370 000 369 000 368 000 367 000 More q quit Jj 12 58 53 778 12 58 51 794 15 47 23 566 15 47 21 0682 15 46 01 049 15 45 58 566 13 59 35 466 13 59 32 982 13 58 59 966 13 58 57 966 13 58 57 566 87 15 69 466 87 15 06 9088 87 07 01 9088 67 66 59 966 84 20 55 3008 04 20 52 8008 85 41 57 755 85 41 55 755 65 41 26 255 85 241 24 255 85 36 89 755 85 36 07 255 file tail INFO INFO INFO INFO INFO INFO INFO INFO INFO INFO INFO Code 6x6 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 0x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 Code 8x8 show log level command Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd Task tTrapd
60. RIP continues to advertise a network after determining that it is unreachable The range is 0 to 360 with a default of 120 updatetime lt seconds gt Sets RIP update timer the time interval between RIP updates The range is 0 to 360 with a default of 30 seconds receive lt ipaddr gt mode lt value gt Changes the RIP interface receive configuration IP address is the address of the interface and mode indicates the RIP versions to accept rip1 RIP version 1 rip2 RIP version 2 rip1 or rip2 receive in either RIP 1 or 2 send lt ipaddr gt mode lt value gt Changes the RIP interface send configuration IP address is the address of the interface and mode indicates the RIP versions to send notsend no RIP updates are sent rip1 RIP version 1 ripicomp broadcast RIP 2 updates rip2 multicast RIP 2 updates Figure 122 config ip rip info command output 4 enable holddown updatetime domain receive send domain receive send M false 128 38 192 168 38 168 6 192 168 38 168 mode rip10rRip2 192 168 38 168 mode ripiCompatible 192 168 18 168 6 192 168 18 168 mode rip10rRip2 192 168 18 168 mode ripiCompatible domain 10 180 40 168 Reference for the Passport 1000 Series Command Line Interface Release 2 1 210 Chapter 6 Configuring layer 3 protocol features show ip rip comm
61. Sets the OSPF announce policy external metric type to type 1 or type 2 name name Assigns the OSPF accept policy name precedence precedence Sets the precedence for the OSPF announce policy The range is 0 to 65535 If multiple policies apply the higher precedence is used range net list netlist id Sets the OSPF announce policy to match any network number that falls into the indicated range The netlist id range is O to 1000 202086 C Chapter 7 Configuring IP flow policies and filters 285 config ip policy ospf announce lt pid gt followed by remove route source Removes a route source from the announce policy lt direct static rip any gt rip gateway list Identifies the RIP gateway lists that are associated lt addrlist id gt with this announce policy The RIP gateway list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source rip interface list Indicates the entries in the RIP interface lists that lt addrlist id gt are associated with this announce policy The RIP interface list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source Figure 186 shows output for the config ip policy ospf announce info command Figure 186 config ip policy ospf announce info command output al Passport 11888 config ip policy ospf announce 2982 info CM Sub Context clear config monitor shou test
62. VLAN none simple password or MD5 authentication If simple all OSPF updates received by the VLAN must contain the authentication key specified by the area authentication key command If MD5 they must contain the md5 key dead interval lt seconds gt Sets the OSPF dead interval for the VLAN the number of seconds the switch s OSPF neighbors should wait before assuming that this OSPF router is down The range is from 1 to 2147483647 This value must be at least four times the hello interval value The default is 40 hello interval lt seconds gt Sets the OSPF hello interval for the VLAN which is the number of seconds between hello packets sent on this VLAN The range is 1 to 65535 The default is 10 metric lt cost gt Sets the OSPF metric for the VLAN The switch advertises the metric in router link advertisements The range is 0 to 65535 The default is 0 priority lt integer gt Sets the OSPF priority for the VLAN during the election process for the designated router The VLAN with the highest priority number is the best candidate for the designated router If the priority is 0 the VLAN cannot become the designated router or a backup The priority is used only during election of the designated router and backup designated router The range is 0 to 255 The default is 1 Note Both sides of the OSPF connection must use the same authentication type and key 202086 C Chapter
63. VLAN without any link and enable advertise when down it will not advertise your route until a port is active in the VLAN Then the route will be advertised even when the link is down To disable advertising based on link status this parameter should be disabled create lt ipaddr mask gt Assigns an IP address and subnet mask to the VLAN delete lt ipaddr gt Deletes the specified VLAN address Figure 103 config vlan ip info command output Sub Context clear config monitor show test trace Current Context create delete gt 18 10 40 168 255 255 255 0 N A show vlan info ip command The show vlan info ip command displays the routing IP configuration for all or specified VLANs The command syntax is show vlan info igmp lt vid gt Figure 104 shows output for the show vlan info ip command Reference for the Passport 1000 Series Command Line Interface Release 2 1 188 Chapter 6 Configuring layer 3 protocol features Figure 104 show vlan info ip command output ULAN IP NET BCASTADDR REASM ADVERTISE ID NAME ADDRESS MASK FORMAT MAXSIZE WHEN DOWN 1 Default 16 16 46 168 255 255 255 0 ones 1566 disable 45 MM 16 192 168 66 168 255 255 255 6 ones 1566 disable 78 brouter 168 192 18 168 255 255 255 6 ones 1566 disable DIRECTED BROADCAST enable enable enable J IP ARP commands The Address Resolution Protocol ARP commands enable you to add and delete static
64. config vlan lt vid gt ip vrrp lt vrid gt holddown timer lt seconds gt config vlan lt vid gt ip vrrp lt vrid gt info config vlan lt vid gt ip vrrp lt vrid gt priority lt prio gt page 244 config vlan vid ipx create lt IPX network number gt encapsulation config vlan vid ipx delete lt IPX network number gt config vlan lt vid gt ipx info page 266 config vlan lt vid gt name lt vname gt config vlan lt vid gt ports add lt ports gt member lt value gt config vlan lt vid gt ports info config vlan lt vid gt ports remove lt ports gt member lt value gt config vlan lt vid gt srcmac add lt macaddr gt config vlan lt vid gt srcmac info config vlan lt vid gt srcmac remove lt macaddr gt page 159 config vlan vid static mcastmac add mac value ports lt value gt mlt lt value gt config vlan lt vid gt static mcastmac add mlt mid mac lt value gt config vlan lt vid gt static mcastmac add ports lt ports gt mac lt value gt config vlan lt vid gt static mcastmac delete mac lt value gt config vlan lt vid gt static mcastmac delete mlt lt mid gt mac lt value gt config vlan lt vid gt static mcastmac delete ports lt ports gt mac lt value gt config vlan lt vid gt static mcastmac info page 174 Reference for the Passport 1000 Series Command Line Interface Release 2 1 334 Appendix A CLI command list Table 14 CLI command lis
65. created remove route source not created rip gateway list not created rip interface list not created Na rip metric not created P show ip policy commands The show ip policy commands provide information about the IP policies that are set up on the switch show ip policy addrlist info command The show ip policy addrlist info command displays the IP policy address lists set on the switch If an address list ID is not entered all address lists on the switch are listed The command syntax is show ip policy addrlist info id lt value gt Figure 189 shows output for the show ip policy addrlist info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 290 Chapter 7 Configuring IP flow policies and filters Figure 189 show ip policy addrlist info command output Passport 11888 show ip policy addrlist info If an address list ID is entered the display lists the addresses belonging to that list Figure 190 shows output for the show ip policy addrlist info id 1 command Figure 190 show ip policy addrlist info id 1 command output TAG Passport 1166 show ip policy addrlist info id 1 N ID NAHE 1 kh IpAddr show ip policy netlist info command The show ip policy netlist info command displays the network lists on the switch The command syntax is show ip policy netlist info id lt value gt If no ID is entered information is displayed about all n
66. e config cli password ro lt username gt lt password gt changes the read only login and or password e config cli password 11 lt username gt lt password gt changes the Layer 1 read write login and or password e config cli password 12 lt username gt lt password gt changes the Layer 2 read write login and or password e config cli password 13 username password changes the Layer 3 read write login and or password e config cli password rw username password changes the read write login and or password e config cli password rwa username password changes the read write all login and or password where username is the login name passwordis the password associated with the login name 202086 C 55 Chapter 2 Boot Monitor command line interface The Boot Monitor CLI commands enable you to configure boot options and manage files on the flash module Boot monitor CLI commands are used when the switch is not active These commands enable you to perform the following tasks e Configure and display boot options including the configuration file Manage the NVRAM flash file system e Configure and change IP parameters for system devices e Change boot flags e Reset or reboot the system with the default configuration Reset or reboot the system from a different boot source This chapter describes the Boot Monitor CLI and covers the following topics e Syste
67. eeen 280 config ip policy netlist command nn eene aaan chee RARE ERG RR ROROR d 281 config ip policy ospr command 6 4425 ce0ccbesineks ies seede CRT eens 282 config ip policy ospf accept command cee eee eee 282 config ip policy ospf announce command sananne 284 cong ip policy rip commands ear cod vie PERA ABE KA SAAS Od kan REA 285 config ip policy rip accept commands eee 286 config ip policy rip announce command neen 287 show ip policy Commands EE OE PE 289 show ip policy addrlist inta command 11111212 55 rr RR RR RR 289 show ip policy netlist info command aaua aaan 290 show ip policy ospf accept info command ere kee 291 show ip policy ospf accept lists command ne 291 Reference for the Passport 1000 Series Command Line Interface Release 2 1 16 Contents show ip policy ospf accept match network command 292 show ip policy ospf announce info command ne 292 show ip policy ospf announce lists command ne 292 show ip policy ospf announce match network command 292 show ip policy rip accept info command 4 24 rananzarernnmesanseraes 293 show ip policy rip accept lists command ee 293 show ip policy rip accept match network command 293 show ip policy rip announce info command lulius 293 show ip policy rip announce lists command nne 294 show ip policy rip announce match network command
68. gt page 218 config ip ospf area lt area gt create config ip ospf area lt area gt delete config ip ospf area lt area gt import summaries lt true false gt config ip ospf area lt area gt info config ip ospf area area nssa lt true false gt config ip ospf area area range lt ipaddr mask gt create advertise mode value Isa type value config ip ospf area area range lt ipaddr mask gt delete config ip ospf area area range lt ipaddr mask gt info config ip ospf area area stub lt true false gt config ip ospf area area stub metric lt stub metric gt config ip ospf area area virtual interface lt nbr gt authentication key lt authentication key gt config ip ospf area lt area gt virtual interface lt nbr gt authentication type lt auth type gt config ip ospf area area virtual interface nbr create config ip ospf area lt area gt virtual interface lt nbr gt dead interval seconds config ip ospf area area virtual interface lt nbr gt delete config ip ospf area area virtual interface lt nbr gt delete message digest key md5 key id config ip ospf area area virtual interface lt nbr gt hello interval seconds config ip ospf area area virtual interface lt nbr gt info config ip ospf area lt area gt virtual interface lt nbr gt add message digest key lt md5 key id gt md5 key value config ip ospf area lt area gt virtual interface lt nbr gt retrans
69. ip ospf stats command displays the OSPF statistics Figure 141 shows output for the show ip ospf stats command Figure 141 show ip ospf stats command output NumBufAlloc NumBufFree NumBufAllocFail NumBufFreeFail NunTxPkt NunRxPkt NumTxDropPkt NumRxDropPkt NumRxBadPkt NumSpfRun LastSpfRun ei LsdbTblSize 11888 show ip ospf stats C 99 C9 C9 C2 C2 C2 C2 C2 2 C2 CB o Reference for the Passport 1000 Series Command Line Interface Release 2 1 232 Chapter 6 Configuring layer 3 protocol features configure ethernet port ip ospf commands The port based OSPF commands set OSPF parameters for a specific port The parameter lt ports gt specifies the ports for which you are entering the command The command syntax is portlist slot port slot port The port based OSPF commands use the following options followed by config ethernet lt port gt ip ospf info Displays OSPF characteristics on the port Figure 142 advertise when down lt enable disable gt If enabled the network on this interface is advertised as up even if the port is down The default is disabled Note When you configure a port without any link and enable advertise when down it will not advertise your route until the port is active Then the route is advertised even when the link is down To disable advertising based on link status this parameter should be disabled enable
70. is treated like a carriage return by the CLI Getting help When navigating through the Run Time CLI you have online Help available at all levels You can access Help at any time in the CLI by typing or the word help anywhere in or on the command line Refer to Help command on page 81 for more information about the specific types of online Help Port numbers and IP addresses Many of the Run Time CLI commands accept port numbers or IP addresses as arguments The syntax for specifying port numbers and IP addresses is the same for all these commands Specifying port numbers Each port number has two components a slot number and a position number The slot number identifies the chassis slot containing the I O module that the port is on The position number identifies the position of the port on the I O module Ports are always numbered from left to right beginning with 1 for the far left port In the Passport 1200 Switch chassis slots are numbered from the top slot down beginning with 1 Figure 8 on page 74 shows how the slots and ports in a Passport 1200 chassis are numbered Reference for the Passport 1000 Series Command Line Interface Release 2 1 74 Chapter 3 Run Time CLI description Figure 8 Passport 1200 slot and port numbering I O slot 1 Power I O slot 2 supply 1 VO slot 3 CPU slot CPU slot Power I O slot 6 PR I O slot 7 I O slot 8 7814EA In the Passport 110
71. is easy to see that each Passport 1000 Series switch is assigned a block of 256 48 bit MAC addresses from xx xx xx yy yy 00 through xx XX XX yy yy FF Reference for the Passport 1000 Series Command Line Interface Release 2 1 346 Appendix B Port numbering and MAG address assignment Physical MAC addresses Physical MAC addresses are addresses assigned to the physical interfaces or ports visible on the device The physical MAC addresses are used in the following types of frames e Spanning Tree Protocol BPDUs sent by the routing switch e Frames to or from an isolated routing port s physical interface BPDUs are sent using the physical MAC address as the source because identifying which physical port sent the BPDU is critical to how the Spanning Tree Protocol works For isolated routing ports the IP address is associated with the physical interface so the physical MAC address is associated with the IP address The last byte of the MAC address zz in the general form for a physical interface depends on the slot and port number for the given interface The basic scheme is that each slot is allocated 16 physical MAC addresses If a board has fewer than 16 ports some MAC addresses are unused Table 15 lists the value for the last byte of the MAC address based on the slot and port number Table 15 Last byte of physical MAC address Port Slot 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 15 1 00 01 02 03 04 05 06 07 08 09 OA OB OC OD O
72. listing see Directory on page 46 Reference for the Passport 1000 Series Command Line Interface Release 2 1 42 Chapter 1 Passport basics Executables Executables are images that are executed by the Passport 1000 Series Central Processing Unit CPU The two most common executables are run time images and boot monitor updaters Executables are stored in the flash file system in zipped compressed format The switch automatically unzips uncompresses the file on execution e Run time images The run time image is an executable file that executes after the boot monitor image initializing the I O modules and providing full switch functionality You can store and execute run time images from System Flash and PCMCIA e Boot monitor updaters The boot monitor image is low level code that initializes devices on the SSF module and starts the boot process The boot monitor image is updated by executing a boot monitor updater that replaces the image stored in Boot Flash Log files Console information warning and error messages are logged to a log file The log file is stored in System Flash On a Passport 1200 Switch if insufficient space is found at initialization the log is created in the PCMCIA If no log file is present when the run time image executes a new log file is created Log files are 128K divided into two 64K banks When the second bank fills the first bank is erased and used again Configuration files I
73. loginprompt lt string gt Adds a login prompt info Displays the current CLI settings Figure 24 monitor duration lt integer gt Changes monitoring time duration refresh rate for the monitor commands see Chapter 8 Monitor commands The time duration is in seconds 1 to 1800 monitor info Displays the current setting for monitor duration and interval using the monitor commands monitor interval lt integer gt Changes monitoring time interval between screen updates in seconds 1 to 600 using the monitor commands more lt truel false gt True sets output display scrolling to one page at a time False default sets output display to continuous scrolling motd add lt string gt Adds a login message of the day MOTD motd displaymotd lt true false gt Displays the current settings for the MOTD motd delete Deletes the MOTD motd info Displays the current MOTD settings passwordprompt lt string gt Changes system password prompt lt prompt gt Sets the root level prompt and sysName to the defined prompt name rlogin sessions lt nsessions gt Sets the allowable number of inbound remote CLI login sessions from 0 to 8 default is 8 screen lines lt nlines gt Sets the number of lines in the output display from 8 to 64 default is 23 telnet sessions lt nsessions gt Sets the allowable number of inbound Telnet
74. lt ports gt ip rip enable config ethernet lt ports gt ip rip info config ethernet lt ports gt ip rip listen lt enable disable gt config ethernet lt ports gt ip rip manual trigger config ethernet lt ports gt ip rip poison lt enable disable gt config ethernet lt ports gt ip rip supply lt enable disable gt config ethernet lt ports gt ip rip trigger lt enable disable gt page 211 config ethernet lt ports gt ip traffic filter default action forward config ethernet lt ports gt ip traffic filter default action drop config ethernet lt ports gt ip traffic filter default action info config ethernet lt ports gt ip traffic filter add set lt value gt config ethernet lt ports gt ip traffic filter create config ethernet lt ports gt ip traffic filter delete config ethernet lt ports gt ip traffic filter disable config ethernet lt ports gt ip traffic filter enable config ethernet lt ports gt ip traffic filter info config ethernet lt ports gt ip traffic filter remove set lt value gt page 301 config ethernet lt ports gt ip vrrp lt vrid gt action lt action choice gt config ethernet lt ports gt ip vrrp lt vrid gt address lt ipaddr gt config ethernet lt ports gt ip vrrp lt vrid gt adver int lt seconds gt config ethernet ports ip vrrp lt vrid gt critical ip lt ipaddr gt config ethernet lt ports gt ip vrrp lt vrid gt delete config ethernet lt ports gt ip vrrp lt vrid gt
75. lt ports gt ip vrrp lt vrid gt followed by holddown timer lt seconds gt Sets hold down timer priority lt prio gt Sets the port VRRP priority 1 to 254 value to be used by this VRRP router The default is 100 The value 255 is assigned to the router that owns the IP address associated with the virtual router Figure 149 config ethernet ports ip vrrp info command output Passport 1106 config ethernet 3 3 ip urrp info E object lt vrid gt info is out of range object lt vrid gt required lt urid gt virtual router id 1 255 urrp configuration commands address set urrp ip address adver int set urrp advertisment interval critical ip set urrp critical ip address delete delete urrp disable disable urrp enable enable urrp holddown timer set urrp holddoun timer info show current level parameter settings and next level directories priority set urrp priority it show port vrrp commands The show port vrrp commands display port VRRP configuration and statistics show ports info vrrp main command The show ports info vrrp main command displays basic VRRP configuration information about a specified port or all ports The command syntax is show ports info vrrp main lt ports gt Figure 150 shows output for the show ports info vrrp main command 202086 C Chapter 6 Configuring layer 3 protocol features 243 Figure 150 show ports info vrrp main command output Pa
76. lt vname gt Changes the name of a VLAN to lt vname gt string ports add lt ports gt member lt value gt Adds ports to a VLAN e ports is the port list slot port slot port member value is the port member type portmember static notallowed for always sometimes or never a member ports info Displays member status of the ports in the VLAN Figure 75 ports remove ports member lt value gt Removes ports from a VLAN but does not delete the VLAN sremacadd lt macaddr gt Adds a source MAC address to a VLAN lt mac gt is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 Reference for the Passport 1000 Series Command Line Interface Release 2 1 160 Chapter 5 Configuring layer 2 features config vlan lt vid gt followed by srcmac info Displays MAC addresses added to or removed from the VLAN Figure 76 srcmac remove Removes the source MAC address from the lt macaddr gt VLAN mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 Figure 74 config vlan info command output Sub Context clear config monitor show test trace Current Context action N A agetime N A delete N A highpriority false name Default Figure 75 config vlan ports info command output Sub Context clear config monitor show test trace l Current Context add portmember 371 372 activemember 3 1 3 2 staticmember notal
77. metric type to type 1 or type 2 name name Assigns the OSPF accept policy name precedence precedence Sets the precedence for the OSPF accept policy The range is 0 to 65535 If multiple policies apply the higher precedence is used range net list netlist id Sets the OSPF accept policy to match any network number that falls into the indicated range The netlist id range is 0 to 1000 Figure 185 shows output for the config ip policy ospf accept info command Figure 185 config ip policy ospf accept info command output a M Passport 118845 config ip policy ospf accept info 7 object pid info is out of range object pid required pid policy id 6661 7666 ospf accept commands action set accept or ignore create create ospf accept policy delete delete ospf accept policy disable disable ospf accept policy enable enable ospf accept policy exact net list set ospf accept policy exact net list ext metric type set ospf accept policy ext metric type info show current level parameter settings and next level directories inject net list set ospf accept policy inject net list name set ospf accept policy name precedence set ospf accept policy precedence range net list set ospf accept policy range net list E Reference for the Passport 1000 Series Command Line Interface Release 2 1 284 Chapter 7 Configuring IP flow policies and filters config ip polic
78. module level lt modid gt lt level gt off Sets the trace level on a module for the specified module ID Use Help to see a list of ID numbers The level is one of the following values 0 Disabled 1 Very terse 2 Terse 3 Verbose 4 Very verbose Disables tracing on a module screen lt setting gt Sets the trace display to screen on or off show trace commands The show trace commands display trace information for the switch show trace file command The show trace file command displays the trace message file when tracing is on The command syntax is show trace file tail where tail displays the most recent entry first Figure 20 shows sample output for the trace file command Reference for the Passport 1000 Series Command Line Interface Release 2 1 96 Chapter 3 Run Time CLI description Figure 20 show trace file command output 1909 88 88 80 366 rcStart MAIN init c 578 System initialization show trace level command The show trace level command displays the current module ID numbers and trace levels Figure 21 shows output for the trace level command Figure 21 show trace level command output usage trace level lt modid gt level E Module IDs Trace Levels 8 Common 8 8 Disabled 1 SNMP Agent 1 Very terse RHON Port Hanager Chassis Manager 2 Terse 3 4 5 STG Manager 6 7 8 2 3 Verbo
79. none 8 0 8 8 3 9 true 18 46 1 8 none 6 6 6 6 3 16 true 16 46 1 8 none 6 6 6 8 3 11 true 16 46 1 6 none 8 0 8 8 3 12 true 18 46 1 6 none 6 6 6 6 3 13 true 16 46 1 18 none 6 6 6 6 3 14 false 16 46 1 8 none 6 6 6 6 3 15 false 16 46 1 16 none 6 6 6 6 3716 true 16 46 1 6 none 6 6 6 6 show ports stats ospf main command The show ports stats ospf main command displays basic OSPF information about a specified port or all ports The command syntax is show ports stats ospf main lt ports gt Figure 145 shows output for the show ports stats ospf main command Reference for the Passport 1000 Series Command Line Interface Release 2 1 236 Chapter 6 Configuring layer 3 protocol features Figure 145 show ports stats ospf main command output yg Passport 11884 show ports stats ospf main N show ports stats ospf extended command The show ports stats ospf extended command displays extended OSPF information about all or specified ports The command syntax is show ports stats interface extended lt ports gt Figure 146 shows output for the show ports stats ospf extended command 202086 C Chapter 6 Configuring layer 3 protocol features 237 Figure 146 show ports stats ospf extended command output a Passport 1166 show ports stats ospf extended TN Port Stats Ospf Extended PORT NUM RXLS REQS TXLS REQS RXLS ACKS TXLS ACKS 3 1 8 8 8 8 3 3 8 8 8 8 3 5 8 8 8 8 3 5 8 8 8 8 3 6 8 8 8 8 3
80. ospf host route lt ipaddr gt followed by create Creates an OSPF host route for the IP address delete Deletes an OSPF host route for the IP address metric metric Sets the metric cost for the host route 1 to 65535 202086 C Chapter 6 Configuring layer 3 protocol features 221 config ip ospf interface commands The config ip ospf interface commands configure an OSPF interface where the interface is represented by an IP address a b c d The commands use the following options config ip ospf interface lt ipaddr gt followed by info Displays OSPF characteristics for the interface admin status lt enable disable gt Sets the state enabled or disabled of the OSPF interface area area Sets the OSPF interface area Use dotted decimal notation to specify the area name Note that the area name is not related to an IP address You can use any value for the OSPF area name for example 1 1 1 1 or 200 200 200 200 authentication key lt authentication key gt Sets the authentication key for the OSPF interface Specify the key in up to eight characters string type authentication type lt auth type gt Sets the OSPF authentication type for the interface none simple password or MD5 authentication If simple all OSPF updates received by the interface must contain the authentication key specified by the interface authentication key command If
81. out of range object lt pid gt required lt pid gt rip accept commands action set accept or ignore apply mask set apply mask create create rip accept delete delete rip accept disable disable rip accept enable enable rip accept exact netlist set exact net list info show current level parameter settings and next level directories inject netlist set inject netlist name set rip accept list name precedence set rip accept policy precedence range netlist set range netlist Ng rip gateway listset rip gateway list policy id 4661 56663 N rip interface listset rip interface list config ip policy rip announce command The config ip policy rip announce commands allow you to configure the RIP announce policy where pid is the RIP announce policy ID 1 to 1000 The commands use the following options followed by config ip policy rip announce lt pid gt info Displays the settings for the RIP announce policy Figure 188 action lt accept ignore gt Selects whether the RIP policy action accepts or ignores matches add route source lt direct static rip ospf any gt Adds a route source to the announce policy advertise netlist lt netlist id gt If the action is set to announce allows sending or advertising networks that differ from the actual network in the routing table advertise network list ID 0 to 1000 create Creates a RIP announce policy del
82. policy command output 113 deny access command DUIPUL 22 ga ex RC Ya RR Re RR RR 118 show sys access policy info command output 114 config sys set action command output 000 ee eee 115 config sys set flags info command output 116 config sys set info command output rann rann 118 config sys set snmp info command output nn 118 show sys community command output 119 show sys diag info command output ee eee 120 show sys info command output 6560000 sake kat k AA tikisi 120 show sys perf command oulput a a sec m RR RES 121 show sys SW command output an ER koe ke aadnk ac 122 config sys link flap detect info command output 123 config sys syslog command output 124 show sys syslog general info command output 125 show web server command output 126 config ethernet info command output 0 00 eee eee 129 show ports error collision command output 0 00000 131 show ports error main command output 000 eee 132 show ports error extended command output s a s sas saa aaa anaa 133 show ports info config command output 0 eee eee 134 show ports info interface command output a 135 show ports stats bridging command output en 136 show ports stats interface main command output 137 show ports stats interface extended command output 138 show ports info vlans command output
83. priority lt number gt config stg lt sid gt remove ports lt value gt config stg lt sid gt trap stp lt enable disable gt page 150 config sys access policy enable lt true false gt config sys access policy info config sys access policy policy lt pid gt accesslevel lt level gt config sys access policy policy lt pid gt create config sys access policy policy lt pid gt delete config sys access policy policy lt pid gt disable config sys access policy policy lt pid gt enable config sys access policy policy lt pid gt host lt ipaddr gt config sys access policy policy lt pid gt info config sys access policy policy lt pid gt mode lt mode gt config sys access policy policy lt pid gt name lt name gt config sys access policy policy lt pid gt network lt addr mask gt config sys access policy policy lt pid gt precedence lt precedence gt config sys access policy policy lt pid gt service http lt enable disable gt config sys access policy policy lt pid gt service info config sys access policy policy lt pid gt service rlogin lt enable disable gt config sys access policy policy lt pid gt service snmp lt enable disable gt config sys access policy policy lt pid gt service telnet lt enable disable gt config sys access policy policy lt pid gt username lt string gt page 111 config sys diag aru monitor lt enable disable gt config sys diag info config sys info page 110
84. proxy disable Figure 111 config vlan ip resp info command output Sub Context clear config monitor show test trace Current Context resp enable show vlan info arp command The show vlan info arp command displays the ARP configuration for all VLANs or specified VLANs The command syntax is show vlan info arp lt vid gt Figure 112 shows output for the show vlan info arp command Reference for the Passport 1000 Series Command Line Interface Release 2 1 196 Chapter 6 Configuring layer 3 protocol features Figure 112 show vlan info arp command output 1 false 2 false 45 false 75 false 76 false 77 false Md False true true true true true true true J DHCP relay commands The Dynamic Host Configuration Protocol DHCP an extension of the Bootstrap Protocol BootP is used to dynamically provide host configuration information to workstations Use the port DHCP relay commands to set DHCP relay behavior on an isolated routing port Use the VLAN DHCP commands to set DHCP relay behavior on a VLAN You must enable DHCP relay on the path for port or VLAN configuration to take effect 202086 C Chapter 6 Configuring layer 3 protocol features 197 config ip dhcp relay commands The config ip dhep relay commands allow you to view and configure DHCP parameters globally and uses the following options config ip dhcp relay followed by info Displays current DHC
85. rmon commands include the following options config rmon followed by info Indicates if RMON is enabled or disabled disable Disables RMON enable Enables RMON show rmon command The show rmon command displays the status of RMON on the switch Figure 32 shows output for the show rmon command Figure 32 show rmon command output RHON Info Status I off HemorySize 250660 SaveConfig false Reference for the Passport 1000 Series Command Line Interface Release 2 1 110 Chapter 4 Configuring switch management config setdate command The config setdate command sets the calendar time in the format day of the week month day hh mm ss year This command is valid only on the Passport switches with real time clocks If the switch does not have a real time clock issuing a date or setdate command results in the message The real time clock is not present The config info command displays the status of the config setdate command System commands The system commands manage the switch and allow you to view system settings The config sys info command displays current configuration information The following are the system command subtopics e Access policy commands on page 110 e config sys set action commands on page 114 e config sys set flags commands on page 115 e Other config sys set commands on page 117 e show sys commands on page 119 e Syslog comm
86. route metric where the cost is the maximum number of hops with a value of 1 to 31 Figure 164 config vlan ip dvmrp info command output Passport 12884 config vlan 1 ip dumrp info Sub Context clear config monitor show test trace Current Context dumrp disable metric 1 show vlan info dvmrp command The show vlan info dvmrp command displays the DVMRP configuration for a specified VLAN or for all VLANs The command syntax is show vlan info dvmrp lt vid gt Figure 165 shows output for the show vlan info dvmrp command 202086 C Chapter 6 Configuring layer 3 protocol features 257 Figure 165 show vlan info dvmrp command output Passport 1266 show vlan info dumrp 1 disable 1 Layer 3 IGMP commands The Internet Group Management Protocol IGMP is used by hosts to report multicast group memberships to neighbor multicast routers DVMRP multicasting must be enabled globally for these commands to take effect IGMP configuration is on a per interface basis Some features of layer 3 IGMP commands require B hardware ARU3 config ip 13 igmp commands The config ip 13 igmp commands are the interface layer 3 IGMP commands for the switch The config ip 13 igmp info command not shown displays information about the current global layer 3 IGMP configuration config ip 13 igmp interface The config ip 13 igmp interface commands configure the interface IP address lt ipaddr gt and use the fol
87. see mirrored traffic and specify the source ports from which to mirror traffic Any packet ingressing or egressing the specified ports is forwarded normally a copy of the packet is sent out the mirror port The Passport 1000 Series switch supports port mirroring on two ports When this feature is active all packets received on the ports specified as inportl and or inport2 are copied to the port specified as outport The mirroring operation is nonintrusive Note In ARU1 and ARU2 hardware routed packets are not mirrored in the outgoing direction 202086 C Chapter 5 Configuring layer 2 features 145 config mirror commands The config mirror commands allow you to monitor one or two ports on a different port The commands use the following options config mirror followed by inportl port lt enable disable gt Sets mirrored port 1 and enables or disables port mirroring on the port where port is the slot port in the format slot port slot port inport2 lt port gt lt enable disable gt Sets mirrored port 2 and enables or disables port mirroring on the port where port is the slot port in the format slot port slot port outport lt port gt lt enable disable gt Assigns and enables or disables the monitoring port where port is the slot port in the format slot port slot port saveconfig lt true false gt Sets the switch to save or not save the m
88. table listen lt enable disable gt Configures whether the switch listens for a default route without listening for any other routes manualtrigger Allows you to manually issue a RIP update poison lt enable disable gt Sets whether RIP routes on the port learned from a neighbor are advertised back to the neighbor If disabled split horizon is invoked and IP routes learned from an immediate neighbor are not advertised back to the neighbor If enabled the RIP updates sent to a neighbor from which a route is learned are poisoned with a metric of 16 Therefore the receiver neighbor ignores this route because the metric 16 indicates infinite hops in the network supply lt enable disable gt Configures whether the switch supplies talk to the default route without advertising any other routes trigger lt enable disable gt Enables or disables automatic triggered updates for RIP 202086 C Chapter 6 Configuring layer 3 protocol features 213 Figure 125 config ethernet ip rip info command output gr 1166 show ip rip interface N IP_ADDR RIP_ENABLE SEND RECEIVE 192 168 360 168 false rip1Compatible rip10rRip2 192 168 160 168 false rip1Compatible rip10rRip2 18 18 58 168 false rip1Compatible rip10rRip2 192 168 660 168 false rip1Compatible rip10rRip2 168 192 18 168 false rip1Compatible rip10rRip2 Passport 1106 config ethernet ip rip info object ports ip is out of rang
89. the show ip udpfwd protocol info command 202086 C Chapter 6 Configuring layer 3 protocol features 207 Figure 120 show ip udpfwd protocol info command output ia Passport 1166 show ip udpfwd protocol info N 37 Time Service 49 TACACS Service 53 DNS 69 TFTP 137 NetBIOS NameSru SG 138 NetBIOS DataSru E IP Static Routing Table Manager In the CLI the config ip static route commands use the following options config ip static route followed by create ipaddr Adds new static routes where mask next hop e ipaddr mask is the IP address and mask of the route value cost next hopis the next hop IP address value t cost is the metric associated with the route delete ipaddr Deletes a static route mask next hop value disable ipaddr Disables a static route but does not delete it from the table mask next hop value enable ipaddr Enables a disabled static route mask next hop value info Shows the current settings In the OWNER column of the IP Routing table shown in Figure 121 an entry of Static indicates that it is a static route and because it is found in the System Routing Table the next hop address of the static route is reachable Reference for the Passport 1000 Series Command Line Interface Release 2 1 208 Chapter 6 Configuring layer 3 protocol features Figure 121 show ip route info command ou
90. the system to send an SNMP trap rcMacViolation when a frame from a disallowed MAC address is received Reference for the Passport 1000 Series Command Line Interface Release 2 1 142 Chapter 5 Configuring layer 2 features The show ports info command displays port configuration for the Unknown MAC Discard feature show ports info followed by unknown mac discard Displays port configuration for the Unknown MAC Discard feature for the specified port RADIUS commands The Passport 1000 Series chassis switch software supports Remote Authentication Dial In User Service RADIUS which allows a remote RADIUS server rather than the switch to authenticate logins The RADIUS server also provides access authority config radius commands The config radius commands allow you to set up RADIUS authentication for the switch and include the following options config radius followed by info Displays the attribute value assigned whether the RADIUS feature is enabled or disabled and the maximum number of RADIUS servers attribute value Sets the vendor specific attribute to match the type value lt value gt set in the dictionary file on the RADIUS server Nortel Networks recommends always setting this field to 192 for the Passport 1000 Series chassis switches enable lt truelfalse gt Enables or disables the RADIUS authentication feature maxserver lt value gt Sets the maximum numbe
91. to create VLANs add VLANs to specific ports set VLAN characteristics and view VLAN information VLAN commands that set VLAN routing parameters are discussed in Chapter 6 Configuring layer 3 protocol features config vlan create commands The config vlan create commands are used to create a VLAN You can create four types of VLANs using Passport software e Port VLANs e Protocol VLANs e IP subnet VLANs e Source MAC address VLANs Reference for the Passport 1000 Series Command Line Interface Release 2 1 158 Chapter 5 Configuring layer 2 features The command syntax is lt vid gt is the VLAN ID from 2 to 4095 VLAN 1 is the default VLAN The commands use the following options config vlan lt vid gt create followed by create byport lt sid gt name lt value gt Creates a port based VLAN with spanning tree ID 1 to 25 The name value is the name of the VLAN string create byprotocol lt sid gt ip lipx802dot3 ipx802dot 2 ipxSnap ipxEthernet2 a ppleTalk decLat decother sna802dot2 snaEthernet2 netBios xns vines ipV6 usrDefined rarp gt pid name lt value gt Creates a protocol based VLAN with spanning tree ID 1 to 25 pid is a user defined protocol ID number in hex 0 to 65535 name value is the name of the VLAN string create by ipsubnet lt sid gt lt ipaddr mask gt name lt value gt Creates an IP subnet based VLAN with spanning tree ID 1 to 2
92. trace Current Context action not created add route source not created advertise net list not created create not created delete not created enable not created exact net list not created exact metric not created ext metric type not created name not created precedence not created range netlist not created remove route source not created rip gateway list not created E rip interface list not created M config ip policy rip commands The config ip policy rip commands are used to apply the configured RIP accept or announce policies to the switch Use the config ip policy rip info command to display current status Reference for the Passport 1000 Series Command Line Interface Release 2 1 286 Chapter 7 Configuring IP flow policies and filters config ip policy rip accept commands The config ip policy rip accept commands allow you to configure the RIP accept policy where pid is the RIP accept policy ID 4001 to 5000 The commands use the following options followed by config ip policy rip accept lt pid gt info Displays the settings for the RIP accept policy Figure 187 action lt accept ignore gt Selects whether the RIP policy action accepts or ignores matches apply mask lt ipmask gt Sets an IP subnet mask for the RIP accept policy where lt ipmask gt is the apply mask fa b c d create Creates a RIP accept policy delete Delete
93. traffic filter info list lt id gt show ip traffic filter interface command The show ip traffic filter interface command displays information about the traffic filter interface for a switch or for specified ports The command syntax is show ip traffic filter interface lt ports gt show ip traffic filter log interval command The show ip traffic filter log interval command displays the logging interval for the traffic filter show ip traffic filter source command The show ip traffic filter source command displays information about the filter source for a specified filter or for all filters Reference for the Passport 1000 Series Command Line Interface Release 2 1 304 Chapter 7 Configuring IP flow policies and filters The command syntax is show ip traffic filter source lt fid gt show ip traffic filter stats command The show ip traffic filter stats command displays the filter ID and counter information for all filters or a specified filter ID The command syntax is show ip traffic filter stats lt fid gt 202086 C 305 Chapter 8 Monitor commands Caution IP Multicast with IGMP and DVMRP is not supported on this platform The monitor commands are self updating show commands Set the monitor duration and interval using the following commands config cli monitor duration lt integer gt where duration is in seconds to 1800 config cli monitor interval lt integer gt whe
94. 0 Feb COMINGS acera sen vormde aker dele do Race So Ro C a Rak seat 62 Le KAL EEE REE REE AA 62 IP command aiccnceee dbeke KEN DAG eS tit then tehebben Riad qe ds 63 PI COMMANG svaret ode Heh ee SNE IRE ORAS ek STORES 65 Se eol rid ua sacas uae AA KR vie LER CR CE ROBUR RE ENS Cake ee 67 CON CON EEE ONE deo ee idet ded EEE 67 Chapter 3 Run Time GLI descripli n a sa s isssaasaaaeassanasannakae ende 69 System and station requirements rav vrn nerver ranerne nn 69 E urna e eran sekd ard trekte 70 202086 C Contents 7 Ee EN 71 Navigating through the CLI ora do ue dd Rex a dd kje kjent oden KA 71 Getma Ln 73 Port numbers and IP addresses nananana aana 73 ped pon NUMBERS EE ET ST ewe 73 Specifying IP addresses and subnet masks en 75 Accessing the Run Time OLI assurantien edad ende 76 Run time command list free vaas RARE HERE RAR ee EXER DAE RO OR GR ER TAKE EA 76 Navigation 9 00110 EE 78 General commands ee 78 Bag COMME EE SETET AA ME EE 79 Boot using a configuration Scriptiile oasis adr n ER osiris 80 Clear GAMMA cos cccdexe id pe RAE EEE TR EN 80 DAG CONAN sa TC 81 im SEIMEI EEE EE 81 Moby NE SEE PRE RER ANN EE dedi KANG 84 Loginvexiflogout quil commands iios naue 3r RR REX ritiri 4er RSS 85 Ping and PINOY COMMAND 2o SKG rieker A ERR RO ERA Reb n 85 MESSE COMMAND occ ti cand ricki seeriiced dos Rap dod So ab Re E o dedo da ied 86 Traceroute command 222a need dee cd OR ORG e EE CRX REDS 87 File and
95. 0 Switch or the Passport 1150 Switch the left I O slot is slot 1 the right I O slot is slot 2 and the fixed chassis ports are identified as belonging to slot 3 To specify a single port number type the slot number a forward slash and then the position number lt slot gt lt position gt For example to specify the fourth port from the left on the third I O module in the Passport 1200 chassis the port number is 3 4 To specify a list of port numbers separate individual port numbers with commas lt slot gt lt position gt lt slot gt lt position gt lt slot gt lt position gt Notice that there is no space between the port numbers and the commas Some examples of port lists are 3 4 6 4 7 2 6 1 2 7 1 3 202086 C Chapter 3 Run Time CLI description 75 To specify a range of ports type the low port number in the range a dash and then the high port number in the range lt slot gt lt position gt lt slot gt lt position gt Note that there are no spaces between the port numbers and dashes Some examples of port ranges are 3 1 3 6 2 2 2 9 2 5 3 5 When you specify ports you can specify any combination of port lists and port ranges For example the following port arguments are valid 2 7 6 1 6 6 3 2 3 5 1 1 1 7 6 1 7 6 2 5 3 1 3 7 6 1 Specifying IP addresses and subnet masks All IP addresses in the CLI are specified in dotted decimal notation as follows lt XXX gt lt XXX gt lt XXX gt l
96. 2 C2 C2 C2 C2 C2 02 C2 02 C2 02 02 02 02 02 02 02 02 02 02 C 02 02 02 02 02 02 02 C2 02 C2 C2 C2 C2 C2 C2 C2 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 C c2 02 02 02 02 02 02 02 02 02 02 C2 02 C2 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 C202 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 C2 C2 C2 C02 Se 02 02 02 02 02 c2 C2 C2 C2 C2 C2 02 C2 02 C2 02 C02 02 C2 C2 C2 C02 C2 C2 C2 C2 02 C2 02 C2 02 02 02 02 02 2 show ports info config command The show ports info config command displays general configuration information about all or specified ports The command syntax is ports info config lt ports gt This information is also displayed when using the show ports info all ports command Reference for the Passport 1000 Series Command Line Interface Release 2 1 134 Chapter 5 Configuring layer 2 features Figure 53 shows output for the show ports info config command Figure 53 show ports info config command output PORT LINK AUTO ADMIN OPERATE HIGH HLT PORT OVERSZ DUAL NUM TRAP NEG DUPLX SPEED DUPLX SPEED PRIORITY ID LOCKED FRAME CONNECTOR 1 13 true true half 16 full 1 16 true true half 16 full 166 false 2 1 true true half 16 full 166 false 2 2 true true half 16 full 166 false C200 02 02 02 02 02 02 C2 C2 C2 02 02 C2 C2 02 C2 02 C02 02 02 02 C2 02 02 02 02 02 02 02 02 02 tu pa u m pa ty pai u m 2 3 true true half 16 8 false false false 2 4 true true half 16 8 f
97. 41 config ethernet lt ports gt unknown mac discard followed by default autolearn monitor none monitor gt Sets the default field for the AutoLearn MAG The options are none monitor When monitor is selected all MAC addresses are monitored if the port where the MAC addresses are learned is configured as a mirroring port For more information refer to Port Mirroring in the Accelar 2 0 documentation default autolearn priority lt low high gt Sets the priority of the traffic for the learned MAC address low high info Displays the current configuration for the Unknown MAC Discard feature lock autolearn mac lt enable disable gt Enables the lock feature on the autolearn MAC s address When enabled no new MAC addresses will be learned one shot or continuous it sets the allowed MAC table to current state remove allow mac mac Removes manually entered MAC address from allowed MAC table violation downport lt enable disable gt Enables the selected port to automatically shut down when an intrusion occurs To bring the port back up the administrator must manually enable the selected port or reboot the system violation logging lt enable disable gt Enables the system to create a system log entry when a disallowed MAC address attempts to send traffic through the selected port violation sendtrap lt enable disable gt Enables
98. 5 e ipaddr mask is the IP address and mask a b c d x a b c d x x x x default name value is the name of the VLAN string create bysrcmac lt sid gt name lt value gt Creates a VLAN by source MAC address with spanning tree ID 1 to 25 name value is the name of the VLAN string create info Displays information about the type of the specified VLAN Figure 73 shows output for the config vlan create command Figure 73 config vlan create info command output Sub Context clear config monitor show test trace Current Context byport sid 1 name Default Chapter 5 Configuring layer 2 features 159 config vlan general commands The config vlan general commands are used to e Add or remove ports in a VLAN e Set priority Change a VLAN name For all VLAN commands vid is the VLAN ID from 1 to 4095 The generic VLAN commands use the following options config vlan lt vid gt followed by info Displays characteristics of the specified VLAN Figure 74 action lt action choice gt Sets the VLAN action none flushMacFdb flushArp flushlp flushDynMemb all flushSnoopMembltriggerRipUpdate flushSnoop MRtr agetime lt 10 100000 gt Sets the VLAN aging time in seconds 10 to 1000000 delete Deletes a VLAN highpriority lt true false gt Configures the VLAN high priority setting to on true or off false name
99. 6 Port2 2 branch Port2 1 leaf Port2 1 leaf Port2 1 leaf E show ip dvmrp route command The show ip dvmrp route command displays information about the DVMRP route Figure 161 shows output for the show ip dvmrp route command Reference for the Passport 1000 Series Command Line Interface Release 2 1 254 Chapter 6 Configuring layer 3 protocol features Figure 161 show ip dvmrp route command output a swlab edge2 show ip dumrp route EE SOURCE HASK UPSTREAM NBR INTERFACE METRIC EXPIRE 192 168 26 6 255 255 255 6 8 8 0 8 Port2 1 1 215 192 168 36 6 255 255 255 0 192 168 456 269 Port2 2 2 226 192 168 46 6 255 255 255 6 8 0 0 8 Port2 2 1 168 192 168 56 6 255 255 255 0 192 168 468 209 Port2 2 3 226 Ne Tntal 4 m config ethernet ip dvmrp commands The config ethernet ip dvmrp commands configure DVMRP at the port level DVMRP must be enabled globally for these settings to take effect The DVMRP port commands require the parameter ports as the port or list of ports for the command slot port slot port and use the following options config ethernet ports ip dvmrp followed by info Displays DVMRP settings on the port Figure 162 enable Enables DVMRP on the port disable Disables DVMRP on the port metric cost Sets the DVMRP route metric where the cost is the maximum number of hops with a value of 1 to 31 Figure 162 config ethernet ip dvmrp info comman
100. 65 configure IGMP snoop 168 show 161 show IGMP snoop 171 VLAN DHCP commands configure 201 show 202 VLAN DVMRP commands configure 256 VLAN IP commands 186 VLAN IPX commands 266 VLAN 13 IGMP commands 261 VLAN OSPF commands configure 237 show 239 VLAN RIP commands 215 216 VLAN VRRP commands configure 244 show 245 VLANs creating 157 VRRP commands configure 240 show 245 VLAN 244 W Web server commands 126 Web based management 35 web server commands configure 126 show 126 Reference for the Passport 1000 Series Command Line Interface Release 2 1 356 Index 202086 C
101. 68 1 1 Enter ping size 48 Using nic to ping press any key to stop ENET hold frame collision outbound frame 2 packets transmitted 0 packets received 100 packet loss monitor ping m PING TEST PE Net Devices 4 Enabled Serial Port 2 s2 hw ff ff ff ff ff ff ip 0 0 0 0 netmask 0x00000000 mgmt net 0 0 0 0 gateway 0 0 0 0 5 Enabled Debug Ethernet nic hw 00 e0 16 04 66 00 ip 0 0 0 0 netmask 0xff000000 mgmt net 0 0 0 0 gateway 0 0 0 0 select network interface device 5 Enter destination ip address 192 168 1 1 Enter ping size 48 Using nic to ping press any key to stop ENET hold frame collision outbound frame ENET hold frame collision outbound frame 2 packets transmitted 0 packets received 100 packet loss 202086 C Chapter 2 Boot Monitor command line interface 67 Show command Note The Net 4 Serial port entry applies only to the modem port on the Passport 1200 Switch You cannot assign an IP address to this port in software release 2 1 The show command displays chassis configuration information The syntax for the show command is show configuration types where configuration type is one of the following info displays general chassis configuration information ip displays IP configuration information e boot displays the boot choices e tftp displays information about the TFTP server tests displays test information devices displays information about the boot devices
102. 7 8 8 8 8 3 8 8 8 8 8 3 9 8 8 8 8 3 18 8 8 8 8 3 11 8 8 8 8 3 12 8 8 8 8 3 13 8 8 8 8 3 14 8 8 8 8 3 16 8 8 8 8 config vlan ip ospf commands The config vlan ip ospf commands set OSPF parameters for the specified VLAN vid range is 1 to 4095 The commands use the following options config vlan vid ip ospf followed by info Displays OSPF characteristics on the VLAN Figure 147 advertise when down If enabled the network on this interface is lt enable disable gt advertised as up even if no ports in the VLAN are active The default is disabled Note When you create a VLAN with no active ports and enable advertise when down it will not advertise your route until a port is active Then the route is advertised even when the link is down To disable advertising based on link status disable this parameter enable Enables OSPF on the VLAN disable Disables OSPF on the VLAN area lt ipaddr gt The OSPF interface area ID for the VLAN and the IP address of the VLAN OSPF area Reference for the Passport 1000 Series Command Line Interface Release 2 1 238 Chapter 6 Configuring layer 3 protocol features config vlan lt vid gt ip ospf followed by authentication key lt string gt Sets the authorization key for the VLAN Specify the key in up to eight characters string type authentication type lt auth type gt Sets the OSPF authentication type for the
103. 8 88 088 08 none none 8 IF HIGH AGING MAC USER INDEX PRIORITY TIME ADDRESS ACTION RESULT DEFINEPID 257 false N A 88 e8 16 83 26 81 none none 8 265 false 666 66 66 66 66 660 66 none none 6 259 false N A 88 e8 16 83 26 83 none none 8 258 false N A 66 66 66 66 66 66 none none 8 263 false 666 66 66 66 66 66 66 none none 6 268 false 666 66 66 66 66 66 66 none success 8 D show vlan info srcmac command The show vlan info sremac command displays the source MAC address for any source MAC based VLANs or for a specified VLAN if it is source MAC based Figure 81 shows output for the show vlan info srcmac command 202086 C Chapter 5 Configuring layer 2 features 165 Figure 81 show vlan info srcmac command output config vlan fdb forwarding database commands The config vlan fab forwarding database commands use the following options config vlan lt vid gt fdb followed by entry aging time lt seconds gt Sets the timeout period in seconds for the forwarding VLAN forwarding database 10 to 10000 entry flush Flushes the entry from the forwarding database entry info Displays current characteristics of the forwarding database entry Figure 82 entry monitor lt mac gt status lt value gt lt true false gt Sets the VLAN forwarding database monitor to on true or off false mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 status value is the for
104. 83 26 82 8 80 880 e8 16 83 26 82 8 88 880 e8 16 83 26 802 8 88 80 e8 16 83 26 82 8 88 880 08 08 a1 a2 a5 200 88 880 08 08 a1 a2 a5 200 88 88 08 08 a1 a2 a5 218 88 88 08 808 a1 a2 a5 218 88 880 08 08 08 80 00 6 88 880 08 08 08 80 08 6 88 88 08 08 88 80 08 6 88 88 88 88 a1 a2 a5 200 COST 88 88 08 88 2d 39 f0 81 88 88 88 e8 16 83 26 01 88 88 08 e8 16 83 26 02 88 88 88 e8 16 83 26 02 88 88 88 e8 16 83 26 02 88 88 88 e8 16 83 26 02 88 88 88 e8 16 83 26 01 88 88 88 e8 16 83 26 01 88 08 88 e8 16 83 28 01 88 08 88 e8 16 83 28 81 B0 66 66 BB HO HO 66 66 B9 686 66 BB HO HO 66 66 66 66 66 HO HO HO 66 00 88 88 88 e8 16 83 26 81 88 3f show ports stats stg command The show ports stats stg command displays counter information about STG on all or specified ports The command syntax is show ports stats stg lt ports gt Figure 72 shows output for the show ports stats stg command 202086 C Chapter 5 Configuring layer 2 features 157 Figure 72 show ports stats stg command output Port Stats Stg IN BAD OUT CONFIG OUT TCU NUM BPDU BPDU BPDU BPDU BPDU 3 1 365663 356 6 37 29 3 2 8 8 8 8 8 3 3 8 8 8 8 8 3 4 8 8 8 8 8 3 5 8 8 8 8 8 3 6 8 8 8 8 8 3 7 8 8 8 8 8 3 8 8 8 8 8 8 3 9 364666 16 6 162 5 3 16 364649 33 6 144 54 3 11 8 8 8 8 8 3 12 8 8 8 8 8 3 13 8 8 8 8 8 3 14 8 8 8 8 8 3 15 8 8 8 8 8 3 16 8 8 8 8 8 J VLAN commands The VLAN commands allow you
105. 92 168 18 168 8 8 8 8 1 5 18 46 126 192 168 30 168 6 6 6 6 1 5 16 46 126 e Reference for the Passport 1000 Series Command Line Interface Release 2 1 230 Chapter 6 Configuring layer 3 protocol features show ip ospf Isdb command The show ip ospf 1sdb command displays the OSPF link state database table The command syntax is show ip ospf lsdb area lt value gt lsatype lt value gt lsid lt value gt adv rtr lt value gt detail You can optionally specify an area string link state advertisement type 0 to 5 link state ID or advertising router Entering detail provides more details Figure 138 shows output for the show ip ospf 1sdb command Figure 138 show ip ospf Isdb command output Passport 1166 show ip ospf 1sdb show ip ospf neighbors commands The show ip ospf neighbors command displays OSPF neighbors with parameters Figure 139 shows output for the show ip ospf neighbors command Figure 139 show ospf neighbors command output Passport 1166 show ip ospf neighbors 202086 C Chapter 6 Configuring layer 3 protocol features 231 show ip ospf range command The show ip ospf range command displays the OSPF range including area ID range network address range subnet mask and range flag Figure 140 shows output for the show ip ospf range command Figure 140 show ip ospf range command output Passport 1166 show ip ospf range show ip ospf stats command The show
106. 99 shows output for the show ip route info command Figure 99 show ip route info command output Ip Route DST HASK NEXT COST ULAN PORT CACHE OWNER 8 8 8 8 8 8 8 8 18 18 58 1 1 1 3 1 TRUE STATIC 18 18 58 8 255 255 255 0 180 10 40 168 1 1 f TRUE LOCAL 192 168 36 6 255 255 255 9 192 168 36 168 1 3 13 TRUE LOCAL Total 3 config ip diffserv rule commands The general config ip diffserve rule commands set Type of Service bits for Differentiated Services providing an architecture for scalable service differentiation in the Internet The Differentiated Services DiffServ specification defines a code point which is a 6 bit value known as the 8 bit Type of Service TOS field in an IP protocol header In the DiffServ architecture setting this code point provides a means of delivering a differentiated or better class of service for the IP packets To enable TOS based high priority mode using the CLI 1 Enable the High Priority mode on the switch by entering config sys set flags highpriomode true Reboot the switch Enable TOS based high priority mode by entering config ip diffserv tos priority enable The default enabled threshold value is 3 so the threshold is set to 3 202086 C Chapter 6 Configuring layer 3 protocol features 183 4 To change the threshold value from 3 to a value between 0 highest priority and 7 no priority enter config ip diffserv tos threshold lt integer gt Note The previous
107. AN REESE 218 config IP OST eommsnds ie onsen tama redere sea NG aak 218 coniig ip ospi command REE 219 config ip ospf host route command rn enken 220 config ip ospf interface commands 00 ee eee eee 221 COMIC IP DEN NGO cs dung sd NAGA EET EE dn EO A RR RAE des 222 config ip ospf area range commands ee 223 config ip ospf area virtual interface command ne 224 Eg GL PE EE UR Rd Rd KANA AA 225 show ip ospr area command 24 seeks dosent chet yess kake ttini 225 show ip asprase command ca ra sara seg a ne a ae PALAG l hekk ad 226 show ip ospf default metric command 226 202086 C Contents 13 show ip ospf host route command neee 227 show ip aspr i stals command gos rn deua RR p xd s a xa i dd b nn 227 show Ip aspf info command soa orana kem mes 227 show ip ospf interface command sells 228 show ip OSP Int mers command oeren SER ERE pex FOE Eu RR 229 shaw ip ospf lsdb command sars BAKA se RR Rx ex 230 show ip ospf neighbors commands ee 230 show ip ospf range command eneen eee 231 Show ip ospf stats command 4554646 SD DR DR dre 231 configure ethernet port ip ospf commands nn 232 show port ospi COMMANDS saar ux cube Rex xe doce x x x ded kake 234 show ports error ospf command cee eee 234 show ports MD ospi Comma aaa arena verres andre RR RES 234 show ports stats ospf main command 235 show ports stats ospf extended command aa 236 CONG vlan P ospi commands 1d pese eew
108. Default TTL is 255 seconds IP ARP life time is 368 minutes show ip interface command The show ip interface command displays the IP interfaces on the switch Figure 97 shows output for the show ip interface command 202086 C Chapter 6 Configuring layer 3 protocol features 181 Figure 97 show ip interface command output Ip Interface INTERFACE IP NET BCASTADDR REASM ADDRESS HASK FORHAT MAXSIZE Port3 13 192 168 360 168 255 255 255 6 ones 1566 Port3 15 192 168 106 168 255 255 255 0 ones 1588 Ulan1 16 168 46 168 255 255 255 6 ones 1566 Ulan45 192 168 660 168 255 255 255 6 ones 1588 Ulan78 168 192 10 168 255 255 255 0 ones 1500 show ip route discovery command The show ip route discovery command shows whether or not route discovery is enabled on the device Figure 98 shows output for the show ip route discovery command Figure 98 show ip route discovery command C Router Discovery Disabled show ip route info command The show ip route info command displays the existing IP route for the switch or for a specific net or subnet The command syntax is show ip route info lt ip address gt s value where lt ip address gt is the specific net 1 2 1 2 0 0 a b c d s lt value gt is the specific subnet a b c d x a b c d x x x x default Reference for the Passport 1000 Series Command Line Interface Release 2 1 182 Chapter 6 Configuring layer 3 protocol features Figure
109. Department of Defense or their successors whichever is applicable 6 Use of software in the European Community This provision applies to all Software acquired for use within the European Community If Licensee uses the Software within a country in the European Community the Software Directive enacted by the Council of European Communities Directive dated 14 May 1991 will apply to the examination of the Software to facilitate interoperability Licensee agrees to notify Nortel Networks of any such intended examination of the Software and may procure support and assistance from Nortel Networks 7 Term and termination This license is effective until terminated however all of the restrictions with respect to Nortel Networks copyright in the Software and user manuals will cease being effective at the date of expiration of the Nortel Networks copyright those restrictions relating to use and disclosure of Nortel Networks confidential information shall continue in effect Licensee may terminate this license at any time The license will automatically terminate if Licensee fails to comply with any of the terms and conditions of the license Upon termination for any reason Licensee will immediately destroy or return to Nortel Networks the Software user manuals and all copies Nortel Networks is not liable to Licensee for damages in any form solely by reason of the termination of this license 8 Export and re export Licensee agrees not to export
110. E OF 2 10 11 12 13 14 15 16 17 18 19 1A 1B 1C 1D 1E IF 3 20 21 22 23 24 25 26 27 28 29 2A 2B 2C 2D 2E 2F 4 Not applicable contains SSF module 5 Not applicable contains SSF module 6 30 31 32 33 34 35 36 37 38 39 3A 3B 3C 3D SE 3F 7 40 41 42 43 44 45 46 47 48 49 4A 4B 4C 4D 4E AF 8 50 51 52 53 54 55 56 57 58 59 5A 5B 5C 5D 5E 5F 202086 C Appendix B Port numbering and MAC address assignment 347 Slots 4 and 5 do not have any MAC addresses assigned to them Depending on which switch you are operating slots 4 and 5 may not be present or hold the SSF modules For example a switch with the base MAC address 00 OE 16 11 00 00 has a physical MAC address for slot 3 port 6 port 3 6 of 00 OE 16 11 00 25 This MAC address is seen as the source MAC address for any BPDUs sent out of this port If port 3 6 is configured as an isolated routing port ARP requests sent to the IP address of the isolated routing port will return this MAC address Virtual MAC addresses Virtual MAC addresses are the addresses assigned to VLANs A virtual MAC address is assigned to a VLAN when it is created The MAC address for a VLAN IP address is the virtual MAC address assigned to the VLAN The range for the last byte of the virtual MAC addresses in hex is 81 through FF that is the most significant bit of the last byte is set to 1 A virtual MAC address is assigned when a VLAN is created The Default VLAN VLAN ID 1 is always created therefore the last b
111. E Re A ur 267 config ipx statieroute commands 64 vaat sers cata err did ER 268 CONTA PP COMMAS sar earns cantera Ae dod wal le a 268 contig ipx rip default command ars aa ea aen ea e a edes 269 202086 C Contents 15 Cong ipx rip Info command 265 43884 dais ibs bre 945 r9 RAE R4 EXE 269 FG PG command ereen ed D p eee ae te de iod ges 270 CONTIG ipx sap COMMANDS saar var x mx exem ed an 270 contig ipx sap info command eers vesareserrdsnander nwt sae 270 comig px SA GAU zer denm daan Bek been eds 271 contig ipx sap command as oa aen er a ae he ee E ER ee 272 Show PK COMMaNGS ERE EE pue AT 272 show ipx config COMMAND annen rax reirs Rd da 3b reidans 273 Show ipx default command 225 024 eer renner RR REOR er 273 show ipx route command a a aed d uid act Rs eco a 273 show IDK sap command oan aaan en akk kle ee eRe i ir x 274 show px SIS COMMA EEE EEE EEE EEE EE 274 show van into ipx command skasaaksssakesage ed aK EE GARE idi tintai 275 Chapter 7 Configuring IP flow policies and filters 277 IP EG ee RE ET EET EE RR ESPERE SR E 277 conlig ip flow commands a mad Gag dde x e na eR ERG eras cheered Ba ANG 278 Show ip Now COMMAND anar an tk eee eee eee ee xem xag 278 lg co EE EN Marg ale 279 config ip policy son mende gntsedcaenueaedd daRhesGdeianeeadaraoahews 279 contig ip policy infa command 6 24406 se naren eee ee ewww eee ee 280 config ip policy addrlist command
112. EXG HESSE DEREK Mem QE HS 41 TET TT TE AA 41 DE To RE TE EE ET 42 Es AA ER ET PA PAO AERA RS ope euo nie 42 FSA ae AA od 42 Reference for the Passport 1000 Series Command Line Interface Release 2 1 6 Contents se rater ve rat T 225 77 7 1 11 15 7 42 n1 da aed cid ese ees bent et derd amp dd Baan 43 Devices and fle names sues em ERR reke EERE Ae ee ed 43 System Flash and PCMCIA file names noen 43 BESC ENGE OE SEE TE EN qd 44 File system commands arr ane daar enn teow EA GE EEE oe ee 45 Fluene seere 46 DOSEN eT IP RARER TAKST TANG NA 46 CODY xm ea Bhe raket kaate Letra ete doge deter hs 48 Copy script file to rhning CONIO ieee ea tke Led ace GILA seem e 49 DEIRIS ET ETE ETTE Sessa he NE TE 50 Sr EEE EE EE ETTE do P arc 51 BEEN vaare agere FAREN ASKE STEKES OEE TAES STABELEN S 51 Passport access levels and passwords oee 52 Telnet and console passwords uuuueu uaa uacaccx xdg d cacx Xo daaa i kom des GARA 53 CLI commands to change the console Telnet password 54 Chapter 2 Boot Monitor command line interface ennen 55 System and station requirements llis es 55 Accessing ihe Bao Monitor GLL aad da uer rare ARE RERO RRTRE NE med QE A 56 Boot monitor command est sars xu pRi RE ERU adhe ee eeu ade eda EN RARE NK 56 EC COMMIS ee cua ania o o a Rod KARA vlee deere A CU QUE RU 59 File and device management commands cece eee nets 6
113. Enables or disables the FastStart feature When FastStart is enabled the port goes through the normal listening and learning states before forwarding The hold time for these states is the bridge hello timer 2 seconds by default instead of the bridge forward delay timer 15 seconds by default pathcost lt intval gt Sets the contribution of this port to the path cost intval is the cost 1 to 65535 priority lt intval gt Sets the priority of this port intval is the priority O to 255 stp lt enable disable gt Enables or disables the Spanning Tree Protocol Figure 67 shows output for the config ethernet stg info command Figure 67 config ethernet stg info command output Sub Context clear config monitor show test trace Current Context Port 1 1 faststart pathcost priority stg disable 188 128 enable show stg commands The show stg commands display the status of a spanning tree on a switch or a port 202086 C Chapter 5 Configuring layer 2 features 153 show stg info config command The show stg info config command displays the spanning tree group configuration for the switch or for the specified spanning tree group The command uses the syntax show stg info config lt sid gt Figure 68 shows output for the show stg info config command Figure 68 show stg info config command output STG BRIDGE BRIDGE FORWARD ENABLE STPTRAP ID PRI
114. LISTEN POISON 1 false false false false false true true false 2 false false false false false true true false 45 false false false false false true true false 75 false false false false false true true false 76 false false false false false true true false 77 false false false false false true true false N false false false false false true true false p OSPF commands Routers use the Open Shortest Path First OSPF protocol to exchange network topology information providing each router with a map of the network config ip ospf commands The following command groups are used to configure OSPF on the switch e config ip ospf command on page 219 e config ip ospf interface commands on page 221 e config ip ospf area on page 222 e config ip ospf area virtual interface command on page 224 202086 C Chapter 6 Configuring layer 3 protocol features 219 config ip ospf command The config ip ospf commands configure global OSPF parameters and use the following options config ip ospf followed by info Displays the current OSPF configuration on the switch Figure 129 admin state lt enable disable gt Globally enables or disables the OSPF administrative status The default is disable as boundary router lt enable disable gt Enables or disables the OSPF Autonomous System boundary router auto vlink lt enable disable gt Enables or disables automatic creatio
115. MD5 they must contain the md5 key dead interval lt seconds gt Sets the OSPF dead interval for the interface the number of seconds the switch s OSPF neighbors should wait before assuming that this OSPF router is down The range is from 1 to 2147483647 This value must be at least four times the hello interval value The default is 40 delete message digest key lt md5 key id gt Deletes the specified md5 key ID from the configured md5 keys hello interval lt seconds gt Sets the OSPF hello interval for the interface the number of seconds between hello packets sent on this interface The range is 1 to 65535 The default is 10 add message digest key lt md5 key id gt md5 key lt value gt Adds an md5 key to the interface At most two md5 keys can be configured to an interface Multiple md5 key configurations are used for md5 transitions without bringing down an interface metric lt metric gt Sets the OSPF metric for the interface The switch advertises the metric in router link advertisements The range is 0 to 65535 Reference for the Passport 1000 Series Command Line Interface Release 2 1 222 Chapter 6 Configuring layer 3 protocol features config ip ospf interface lt ipaddr gt followed by poll interval lt seconds gt Sets the polling interval for the OSPF interface in seconds 1 to 2147483647 priority lt priority gt Sets the OSPF priority for the inte
116. MRP commands configure 254 show 255 port IP VRRP commands 241 port 13 IGMP commands 260 port numbers 73 port OSPF commands configure 232 show 234 port RIP commands configure 211 show 214 port traffic filter commands 301 port VRRP commands 242 ports numbering 343 product support 32 publications hardcopy 31 related 29 30 Q quit command Boot Monitor CLI 67 Run Time CLI 85 R RADIUS commands configure 142 description 142 show 144 RADIUS configuration settings displaying 144 Read write access 52 Read write all access 52 Read only access 52 recover command 51 61 88 reset command 59 86 RFCs 30 RIP accept policy 286 RIP announce policy 287 RIP commands IP 208 port 211 show 301 VLAN 215 216 rlogin command 89 RMON commands configure 109 show 109 Routing Information Protocol See RIP rsh command 88 Run Time CLI definition 69 description 70 help commands 73 IP address format 75 navigation 72 number supported 70 password and login levels 71 port number syntax 73 system requirements 70 using 71 Run Time CLI commands arpshow 191 copy 88 Reference for the Passport 1000 Series Command Line Interface Release 2 1 354 Index delete 88 device management 88 directory 88 file management 88 format 88 history 84 ping 85 quit 85 reset 86 squeeze 88 testing 92 trace 94 run time image files 42 S save command 59 script file 80 script files copying 91 security levels desc
117. N access policy enable true policy 1 back policy 56 create name jnm team back policy 51 create accesslevel rwa host 134 177 166 225 name test username jhsu network 134 177 166 6 255 255 255 6 service telnet enable back back DIAG ARU MONITOR CONFIGURATION diag back back WEB CONFIGURATION web server password rwa jnm jnm back RMON CONFIGURATION rmon enable Li it TRAFFIC FILTER CONFIGURATION tt ip traffic filter create global src ip 6 6 6 6 6 6 6 6 dst ip 6 6 6 6 6 6 6 6 id 3 filter 3 action mirror enable dst port 6 dst option equal src port 8 src option equal back match Reference for the Passport 1000 Series Command Line Interface Release 2 1 100 Chapter 4 Configuring switch management show tech command The show tech command displays system status technical information and outputs the following information e System information such as location e Chassis type and serial number e Power supplies Fans e Modules e System errors e Device information such as boot sources and priority e Port locks e Topology status e Software versions e System performance e VLAN information such as numbers and port members e Port information such as type and status e Route information e OSPF information such as area interface and neighbors e Memory e Interface e Log and trace files Figure 23 shows partial output for the show tech command
118. ORITY MAX AGE HELLO TIME DELAY STP TRAP 1 32768 2008 208 1566 true true 2 32768 2008 208 1566 true true 4 32768 2008 208 1588 true true 5 32768 2008 208 1566 true false 20 32768 2008 208 1588 false false 21 32768 2008 208 1588 true true 22 32768 2668 208 1588 true true STG TAGGBPDU TAGGBPDU PORT ID ADDRESS ULAN ID MEMBER NE 60 66 66 66 66 66 8 3 1 3 2 3 7 3 8 3 16 M show stg info status command The show stg info status command displays the spanning tree group status for a specified STG or all STGs The command uses the syntax show stg info status sid Figure 69 shows output for the show stg info status command Reference for the Passport 1000 Series Command Line Interface Release 2 1 154 Chapter 5 Configuring layer 2 features Figure 69 show stg info status command output STG BRIDGE ID ADDRESS 1 66 e6 16 83 26 61 2 66 e6 16 83 26 62 4 00 e0 16 83 26 04 5 00 e0 16 83 26 05 26 88 e8 16 83 26 1 5 21 88 e8 16 83 26 15 22 88 e8 16 83 26 16 STG DESIGNATED ID ROOT 88 88 88 88 88 a1 8 66 69 66 68 66 66 NUM PROTOCOL TOP PORTS SPECIFICATION CHANGES 5 ieee8621d 4 ieees8 621d 1 ieees8 621d 2 ieee8621d 2 ieee8621d 8 ieee8 621d 8 ieee8 621d ROOT ROOT COST PORT a2 a5 266 3 1 26 62 6 cpp 26 04 6 cpp a2 a5 220 3 18 66 66 6 cpp 2666 266 166 FORWARD DELAY 1 86 66 66 66 66 a1 2 88 88 88 e8 16 83 4 88 88 808 e8 16 83 5 2 show ports info stg main command The s
119. P global configuration on the switch create fwd path agent lt value gt server lt value gt mode lt value gt state lt value gt Configures the forwarding path from the client to the server The agent is the IP address configured on an interface a locally configured IP address The server is the IP address of the DHCP server in the network If this IP address corresponds to the locally configured IP network the DHCP packet is broadcast out the interface Mode is to forward BootP messages only DHCP messages only or both State is enable disable or delete the forwarding path enable fwd path agent lt value gt server lt value gt Enables DHCP relaying on the path from the IP address to the server delete fwd path agent lt value gt server lt value gt Deletes the forwarding path from the client to the server disable fwd path agent lt value gt server lt value gt Disables DHCP relaying on the path from the IP address to the server This is the default server lt value gt mode lt mode gt agent lt value gt Modifies DHCP mode to forward BootP messages only DHCP messages only or both The default is both show ip dhcp commands The show ip dhep commands display DHCP routing information Reference for the Passport 1000 Series Command Line Interface Release 2 1 198 Chapter 6 Configuring layer 3 protocol features show ip dhcp fwd path co
120. Part No 202086 C May 2001 4401 Great America Parkway Santa Clara CA 95054 Reference for the Passport 1000 Series Command Line Interface Release 2 1 N RTEL NETWORKS Copyright O 2001 Nortel Networks All rights reserved May 2001 The information in this document is subject to change without notice The statements configurations technical data and recommendations in this document are believed to be accurate and reliable but are presented without express or implied warranty Users must take full responsibility for their applications of any products specified in this document The information in this document is proprietary to Nortel Networks Inc HThe software described in this document is furnished under a license agreement and may be used only in accordance with the terms of that license The software license agreement is included in this document Trademarks NORTEL NETWORKS is a trademark of Nortel Networks Accelar Bay Networks and Passport are registered trademarks Microsoft Windows and Windows NT are registered trademarks of Microsoft Corporation All other trademarks and registered trademarks are the property of their respective owners Restricted rights legend Use duplication or disclosure by the United States Government is subject to restrictions as set forth in subparagraph c 1 Gi of the Rights in Technical Data and Computer Software clause at DFARS 252 227 7013 Notwithstanding any other license agr
121. Passport 1000 Series Command Line Interface Release 2 1 260 Chapter 6 Configuring layer 3 protocol features config ethernet ip 13 igmp commands The config ethernet ip 13 igmp commands configure layer 3 IGMP on specified ports The commands require the parameter ports as the port or list of ports slot port slot port 1 and use the following options config ethernet lt ports gt ip 13 igmp followed by info Displays IGMP settings on the port Figure 169 last memb query int Sets the length of time in seconds an entry lt seconds gt remains in the multicast table before timeout Range is 1 to 255 with a default value of 1 query interval lt seconds gt Sets the frequency in seconds at which host query packets are transmitted on the port The range is 1 to 65535 with a default of 125 query max resp lt seconds gt Sets the maximum response time in seconds advertised in IGMPv2 queries on the port Smaller values allow a router to prune groups faster The range is 1 to 255 with a default of 10 robustval lt integer gt Allows tuning for the expected packet loss of a network The range is 2 to 255 with a default of 2 Increase the value if you expect the network to have a high loss rate version lt integer gt Sets the version 1 or 2 of IGMP that is running on the port For IGMP to function correctly all routers on a LAN must use the same version The default is IGMPv2 for B hardware an
122. RRP configuration for a specified VLAN or for all VLANs The command syntax is show vlan info vrrp extended lt vid gt show ip vrrp commands The show ip vrrp commands display information about VRRP as configured on the switch show ip vrrp info command The show ip vrrp info command displays VRRP information for the interface If a virtual router ID or IP address is entered the information is displayed only for that VRID or interface If a virtual router ID or IP address is not entered all VRRP interfaces are listed The command syntax is show ip vrrp info lt vrid gt ipaddr Reference for the Passport 1000 Series Command Line Interface Release 2 1 246 Chapter 6 Configuring layer 3 protocol features show ip vrrp stats command The show ip vrrp stats command displays counter information for a specified VRRP or for all VRRP interfaces You must enter a VRID virtual router ID If an IP address is entered the information is displayed only for that interface If you do not enter an IP address all VRRP interfaces are listed The command syntax is show ip vrrp stats lt vrid gt IP multicast commands ipaddr Caution Nortel Networks does not recommend or support IP Multicast with IGMP or DVMRP on the Passport 1000 platform The IP multicast commands allow you to configure and view IP multicasting parameters config ip mroute commands The config ip mroute commands configure multicast r
123. THER AGREES THAT THIS AGREEMENT IS THE ENTIRE AND EXCLUSIVE AGREEMENT BETWEEN NORTEL NETWORKS AND LICENSEE WHICH SUPERSEDES ALL PRIOR ORAL AND WRITTEN AGREEMENTS AND COMMUNICATIONS BETWEEN THE PARTIES PERTAINING TO THE SUBJECT MATTER OF THIS AGREEMENT NO DIFFERENT OR ADDITIONAL TERMS WILL BE ENFORCEABLE AGAINST NORTEL NETWORKS UNLESS NORTEL NETWORKS GIVES ITS EXPRESS WRITTEN CONSENT INCLUDING AN EXPRESS WAIVER OF THE TERMS OF THIS AGREEMENT 202086 C Contents RR 27 JE PAA ke 27 EE EEE EE TE EE 28 PE de ae hehe ia AT 29 Hard copy technical manuals soan eee RR menge mk ee 31 Nana gel help 5e oaren tnt tettert eten nt eae TRA b ndet s 32 Chapter 1 Paspor DAGICS zaanstad heden 33 Beer EE REE a 34 BE 34 Boot Monitor command line interface 0 c ee ee 35 Run Time command line interface eenen 35 Passport Configuration Panes DAD nah BAD bee KAI BRAKES dha Gee oh ERE ss 35 BODL SEU EE EE ET EE EN EEE EE deka 36 Stage 1 Boot monitor image load isses or men 36 Sage 2 Boet configuration load ur ere samen en aa Red seni k a 36 Stage 9 Pu maga IOS EEE RR ERE REP P EE RE doen 37 Stage 4 Switch configuration load 4 4 isses arvo hn hn SA 38 Flas W PCMCIA file System icons KA dd soe Kh Lede ERROR ae Ek CUR cA E i 40 Flash memory organization are ra en Rh x ka hx akon deg dx 40 EOD aa ds a ace dod ier pode Rob SO Rp dol eo del lol ra OR p doof ae 40 oystem FlasH NT eee 41 POM Kg ER odd pEXERa RE A
124. VLANs removed from the MLT add ports lt ports gt Adds ports to the MLT add vlan lt vid gt Adds a VLAN to the MLT create Creates an MLT delete Deletes an MLT name lt string gt Names an MLT 202086 C Chapter 5 Configuring layer 2 features 147 config mlt lt mid gt followed by remove ports lt ports gt Removes ports from the MLT remove vlan lt vid gt Removes a VLAN from the MLT perform tagging Sets the MLT as a tagged or nontagged port lt enable disable gt Figure 60 config mit info command output Sub Context clear config monitor show test trace Current Context create 1 delete N A name MLT 1 perform tagging disable Figure 61 config mlt add info command output Sub Context clear config monitor show test trace Current Context ports vlan show mit commands The show mlt commands are used to display information and statistics about MLT on the switch show mit error collision command The show mlt error collision command displays information about collision errors in a specified MultiLink Trunk or all MLTs The command syntax is show mlt error collision lt mid gt Figure 62 shows output for the show mlt error collision command Reference for the Passport 1000 Series Command Line Interface Release 2 1 148 Chapter 5 Configuring layer 2 features Figure 62 show mit error collision command output
125. WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE In addition the program and information contained herein are licensed only pursuant to a license agreement that contains restrictions on use and disclosure that may incorporate by reference certain limitations and notices imposed by third parties 202086 C Nortel Networks Inc software license agreement NOTICE Please carefully read this license agreement before copying or using the accompanying software or installing the hardware unit with pre enabled software each of which is referred to as Software in this Agreement BY COPYING OR USING THE SOFTWARE YOU ACCEPT ALL OF THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT THE TERMS EXPRESSED IN THIS AGREEMENT ARE THE ONLY TERMS UNDER WHICH NORTEL NETWORKS WILL PERMIT YOU TO USE THE SOFTWARE If you do not accept these terms and conditions return the product unused and in the original shipping container within 30 days of purchase to obtain a credit for the full purchase price 1 License grant Nortel Networks Inc Nortel Networks grants the end user of the Software Licensee a personal nonexclusive nontransferable license a to use the Software either on a single computer or if applicable on a single authorized device identified by host ID for which it was originally acquired b to copy the Software solely for backup purposes in support of authorized use of the Software and c to use and co
126. YNAMIC 1963 190 10 40 235 66 60 fd 9e 2b 6b 1 3 1 DYNAMIC 1938 ethernet ip arp commands The ethernet ip arp commands are the port IP ARP commands These commands require the parameter lt ports gt as the port or list of ports on which the command is running The command syntax is slot port slot port 202086 C Chapter 6 Configuring layer 3 protocol features 193 config ethernet ip arp command The config ethernet ip arp command uses the following options config ethernet lt ports gt ip followed by arp response disable Disables ARP responses on the port arp response enable Enables ARP responses on the port arp response info Displays ARP response status on the port Figure 107 proxy disable Disables proxy ARP on the port proxy enable Enables proxy ARP on the port allowing a router to answer a local ARP request for a remote destination proxy info Displays ARP proxy status on the port Figure 108 Figure 107 config ethernet ip arp response info command output Sub Context clear config monitor show test trace Current Context Port 3 1 arp response enable Figure 108 config ethernet ip proxy info command Sub Context clear config monitor show test trace Current Context Port 3 1 proxy disable show ports info arp command The show ports info arp command displays ARP information for a specified port or all ports Referen
127. a specified IPX network number The command syntax is show ipx config lt IPX network number gt show ipx default command The show ipx default command displays the current IPX RIP and SAP timer default values Figure 179 shows output for the show ipx default command Figure 179 show ipx default command output Passport 1266 show ipx default N RIP Hold Multiplier 3 RIP Delay Timer 56 msec 26 per sec RIP Update Timer 68 sec SAP Hold Multiplier 3 SAP Delay Timer 56 msec 28 per sec SAP Update Timer 68 sec D show ipx route command The show ipx route command displays information about the IPX routes on the switch or a specific IPX route including the following information e Type e Hop count e Ticks The command syntax is show ipx route lt IPX network number gt lt IPX network number gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 274 Chapter 6 Configuring layer 3 protocol features Bad rip Bad sap show ipx sap command The show ipx sap command displays information about IPX SAP on the switch for all SAP services or a specified service The command syntax is show ipx sap lt service name gt show ipx stats command The show ipx stats command displays IPX statistics for the specified IPX network number The command syntax is show ipx stats lt IPX network number gt Figure 180 shows output for the show ipx stats command
128. aa More q quit I 202086 C Chapter 4 Configuring switch management 121 show sys perf command The show sys perf command lists system performance information such as e CPU utilization e Switch Fabric utilization e NVRAM size e NVRAM used This information is updated once per second It is no more than one second from real time Figure 43 shows output for the show sys perf command Figure 43 show sys perf command output CpuUtil 166 SwitchFabricUtil 6 BufferUtil 6 NURamSize 58 K NURamUsed 14 K DramSize 32 M DramUsed 54 DramFree 14883 K show sys sw command The command lists the version of software running on the Passport switch and the versions stored on the flash module and PCMCIA card if applicable Figure 44 shows output for the show sys sw command Reference for the Passport 1000 Series Command Line Interface Release 2 1 122 Chapter 4 Configuring switch management Figure 44 show sys sw command output Details 66 Boot Monitor LastBootSource v2 1 8 b1 Runtime Config flash 3 flash 2 rel2 1 new current main hw acc st on Thu Feb 17 16 56 26 PST aS Device flash FN Name Flags Length 1 syslog LN 131672 2 dana cfg SN 14161 3 acc21neub15 XZN 2624843 Ka files bytes used 2228224 free 1966888 E config sys link flap detect commands Link flap detection allows you to set thresholds for the number and frequency of link state chan
129. acd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd PHYSICAL ADDRESS 88 e8 16 57 7e 88 88 e8 16 57 7e 81 88 e8 16 57 7e 82 88 e8 16 57 7e 83 88 e8 16 57 7e 85 88 e8 16 57 7e 85 88 e8 16 57 7e 86 88 e8 16 57 7e 87 88 e8 16 57 7e 88 88 e8 16 57 7e 809 88 e8 16 57 7e 8a 88 e8 16 57 7e 8b 88 e8 16 57 7e 8c 88 e8 16 57 7e 8d 88 e8 16 57 7e 8e 88 e8 16 57 7e 8f 88 e8 16 57 7e 18 88 e8 16 57 7e 11 88 e8 16 57 7e 12 88 e8 16 57 7e 13 88 e8 16 57 7e 1 5h 88 e8 16 57 7e 15 88 e8 16 57 7e 16 88 e8 16 57 7e 17 88 e8 16 57 7e 18 88 e8 16 57 7e 19 88 e8 16 57 7e 1a 88 e8 16 57 7e 1b 88 e8 16 57 7e 1c 88 e8 16 57 7e 1d 88 e8 16 57 7e 1e 88 e8 16 57 7e 1f STATUS ADMIN OPERATE up up up down up down up down up down up down up down up down up down up down up down up down up up up down up down up up up up up up up down up down up down up down up down up down up down up down up down up down up down up down up down up down show ports stats bridging command The show ports stats bridging command displays port bridging information about all or specified ports The command syntax is
130. addr gt info config ip ospf interface lt ipaddr gt add message digest key lt md5 key id gt md5 key value config ip ospf interface lt ipaddr gt metric metric config ip ospf interface lt ipaddr gt poll interval seconds config ip ospf interface lt ipaddr gt priority priority config ip ospf interface lt ipaddr gt retransmit interval seconds config ip ospf interface lt ipaddr gt transit delay seconds config ip ospf router id lt ipaddr gt page 219 config ip ospf trap lt enable disable delete gt config ip policy info page 280 config ip policy netlist lt listid gt add network lt ipaddr mask gt config ip policy netlist lt listid gt create config ip policy netlist lt listid gt delete config ip policy netlist lt listid gt info config ip policy netlist lt listid gt name lt name gt config ip policy netlist lt listid gt remove network lt ipaddr mask gt page 281 202086 C Appendix A CLI command list 319 Table 14 CLI command list continued command Page No config ip policy ospf accept pid action lt acceptlignore gt config ip policy ospf accept lt pid gt create config ip policy ospf accept lt pid gt delete config ip policy ospf accept lt pid gt disable config ip policy ospf accept lt pid gt enable config ip policy ospf accept lt pid gt exact net list lt netlist id gt config ip policy ospf accept pid ext metric type lt type1 type2 gt
131. adrex RR Feen ee E dex ER SA 237 show vlan info ospf command sss i pe ERE ERE REDEN 239 ee EEE RE dn en Sed AA 240 config ip VTS commands area aranea me xxx e RN qon ett ms 240 config ethernet port ip vrrp commands 00 cee eee eee eee 241 Siow por TE 1 EEE SEE GEN ed S T 242 show ports info vrrp main command eneen 242 show ports info vrrp extended command ee 243 show poris stats vrip command ure KKK KARGA KEE ARE vans RA e 243 CONG vlan ip VIP commands v2 na coe s0eksrd SR erde daad 244 show vian vip commands ous tees spen eee eee ke Cade ed 245 show vlan info vrrp main command eneen 245 show vlan info vrr extended command neen 245 Show Ip VITD EMMEN arte naer ran wensten ARAWANG RARE Rp d KENA 245 Show Ip vr infa COMMAND aa maka eden seer Gal kl eee mik em G 245 show ip vrrp siats command MD DP 246 Pte commands 2o RR qe pex aerer hh p E Rex RE qq add 246 cona ip mreute commands 122934 pba sede Xe Rer eq vedde tee 246 show ip mroute commands as at ess uua RE ag dob Kong a ox doa ANG aO 247 show ip mroute interface command neee 247 Reference for the Passport 1000 Series Command Line Interface Release 2 1 14 Contents show ip mroute next hop command eneen 247 Show ip Moute AA 248 show ports stats routing command sooo ser RR RR ERR 248 DVNRE COMOMEER dd hei Gay P ed 249 pog dp DMP COMMONS 12 3 444 9 88 CC qiie Re ARAL EP de rale HUS eas 249 config ip dump command Lasts ter Re RR RR ERR bekk XE ERA ea 250 config
132. al info command displays general information about the system log Figure 47 shows output for the show sys syslog general info command Figure 47 show sys syslog general info command output Enable true Max Hosts 5 OperState empty host table Total number of configured hosts 6 Total number of enabled hosts 6 Configured host Enabled host show sys syslog host info command The show sys syslog host info command displays system log information for the indicated host The command syntax is show sys syslog host lt id gt info web server commands The web server commands control the Passport Web interface Reference for the Passport 1000 Series Command Line Interface Release 2 1 126 Chapter 4 Configuring switch management config web server commands The config web server commands allow you to enable disable and set passwords for the Passport Web interface The commands use the following options Table 47 1 config web server followed by info Indicates if Web access is enabled or disabled disable Turns off the Passport Web interface enable Turns on the Passport Web interface set info Displays the current Web user name and password setting set password Sets Web passwords where lt ro rw rwa gt username is the login name of the user SORE ET lt passwd gt is the password associated with the login name lt passwd gt show web server command T
133. alse false false 2 5 true true half 16 8 false false false 2 6 true true half 16 8 false false false 2 7 true true half 18 8 false false false 2 8 true true half 18 8 false false false 2 9 true true half 18 8 false false false 2 18 true true half 18 8 false false false 2 11 true true half 18 8 false false false 2 12 true true half 18 8 false false false 2 13 true true half 18 8 false false false 2 14 true true half 18 8 false false false 2 15 true N A full 188 8 false false false 2 16 true N A full 1686 8 false false false GH show ports info interface command The show ports info interface command displays information about the physical interface for all or specified ports The command syntax is show ports info interface lt ports gt 202086 C Chapter 5 Configuring layer 2 features 135 Figure 54 show ports info interface command output Figure 54 shows output for the show ports info interface command 2 18 2 11 2 12 2 13 2 15 2 15 i ue 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 166BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTX 188BaseTXxX 188BaseTX 188BaseTX 188BaseF 188BaseF ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsmacd ethernetCsm
134. ands The show ip rip commands display information about the RIP configuration on the switch show ip rip info The show ip rip info command displays the RIP global status on the switch Figure 123 shows output for the show ip rip info command Figure 123 show ip rip info command output Rip Disabled Update Time 30 HoldDoun Time 120 Route Changes 6 Queries 8 Domain 8 show ip rip interface The show ip rip interface command displays information about all RIP interfaces or a specified RIP interface The command syntax is show ip rip interface lt ipaddr gt Figure 124 shows output for the show ip rip interface command 202086 C Chapter 6 Configuring layer 3 protocol features 211 Figure 124 show ip rip interface command output 11888 show ip rip interface E IP ADDR RIP ENRBLE SEND RECEIUE 192 168 38 168 false rip1Compatible rip10rRip2 192 168 160 168 false rip1Compatible rip10rRip2 10 10 40 168 false rip1Compatible rip10rRip2 192 168 660 168 false rip1Compatible rip10rRip2 i UE false ripitompatible ripi rRip2 J config ethernet port ip rip commands The config ethernet port ip rip commands configure RIP on specified isolated routing ports RIP must also be enabled globally for the commands to take effect These commands use the lt ports gt parameter to specify the ports for which you are entering the command The command syntax is portlist slot port slot port Th
135. ands on page 123 Access policy commands Access policies allow you to control management access by setting policies for services to prevent or allow access to the switch You can specify which hosts or networks can access the switch through Telnet SNMP HTTP rsh and rlogin and whether the mode allows or denies access 202086 C Chapter 4 Configuring switch management 111 config sys commands Use the config sys commands to enable and disable the Telnet client and TFTP Server Command Description telnet client lt enable disable gt Enables and disables the Telnet client tftp server lt enable disable gt Enables and disables the TFTP server config sys access policy commands Use the config sys access policy commands to get information about or to enable access policies on the switch Command Result info Displays the global access policy setting enabled or disabled enable lt true false gt Globally enables or disables the IP access policy feature on the switch If set to false no policies are applied config sys access policy policy commands The config sys access policy policy commands configure specific policy IDs where pid is from 1 to 65535 and use the following syntax and options config sys access policy policy lt pid gt followed by info Displays characteristics of the specified access policy Figure 33 acces
136. ands include the following options config ip policy ospf followed by info Displays global status of OSPF accept and announce policies ospf apply accept Globally applies OSPF accept policies ospf apply announce Globally applies OSPF announce policies Note Although individual policies can be configured and enabled they will not take effect until the global apply command is issued config ip policy ospf accept command The config ip policy ospf accept commands allow you to configure the OSPF accept policy with a policy ID range from 6001 to 7000 The commands include the following options config ip policy ospf accept lt pid gt followed by info Displays the current OSPF accept policy settings Figure 185 action lt accept ignore gt Selects whether the OSPF policy action will be to accept or ignore external route information create Creates an OSPF accept policy delete Deletes an OSPF accept policy disable Disables an OSPF accept policy enable Enables an OSPF accept policy 202086 C Chapter 7 Configuring IP flow policies and filters 283 followed by config ip policy ospf accept lt pid gt exact net list lt netlist id gt Sets an OSPF accept policy in which networks only match the specific network advertisement The netlist id range is 0 to 1000 ext metric type typel type2 Sets the OSPF accept policy external
137. ase 2 1 162 Chapter 5 Configuring layer 2 features show vlan info advance command The show vlan info advance command shows parameters for all or specified VLANs The command syntax is show vlan info advance lt vid gt Figure 78 shows output for the show vlan info advance command Figure 78 show vlan info advance command output 1 Default 2 ULAN 2 45 MM 16 75 ubs 76 vines NE brouter IF HIGH AGING MAC USER INDEX PRIORITY TIME ADDRESS ACTION RESULT DEFINEPID 257 false N A 88 e8 16 83 26 81 none none 6 265 false 688 88 88 88 80 080 08 none none 8 259 false N A 88 e8 16 83 26 83 none none 8 258 false N A 66 66 66 66 66 66 none none 8 263 false 666 66 66 66 66 66 66 none none 6 77 ipx882dot2 264 false 666 66 66 66 66 66 66 none none 8 268 false 688 66 66 66 66 66 66 none success B Pi show vlan info fdb entry command The show vlan info fdb entry command displays forwarding database information for a specified VLAN The command syntax is show vlan info fdb entry lt vid gt Figure 79 shows output for the show vlan info fdb entry command 202086 C Chapter 5 Configuring layer 2 features 163 Figure 79 show vlan info fdb entry command output ULAN MAC learned 88 88 81 bc ea 81 3 1 false low learned 88 88 81 c1 9b 81 3 1 false low learned 88 88 81 c1 f6 81 3 1 false low learned 88 88 81 ch da 23 3 1 false low learned 66 00 81 e1 4a f5 3 1 false low learned 88 88 81 e1 5b
138. ask gt Deletes an IP route from a routing table forwarding disable Disables IP forwarding routing on the entire switch IP routing is disabled allowing you to manage a Passport switch over a network without forcing the switch to also perform routing Default is disable forwarding enable Enables IP forwarding routing on the entire switch forwarding info Displays IP forwarding status Figure 93 mroute interface lt ipaddr gt ttl lt ttl gt Sets the default time to live for the multicast route interface route discovery disable Disables Internet Router Discovery Protocol IRDP This command will be fully implemented in a future release route discovery enable Enables IRDP This command will be fully implemented in a future release route discovery info Displays route discovery status Figure 94 route info Displays an IP routing table static route create lt ipaddr mask gt next hop lt value gt cost lt value gt Adds a static or default route to the switch ipaddr mask is the IP address and mask for the route s destination next hop value is the IP address of the next hop router the next router that packets must arrive at on this route cost is the metric of the route static route delete lt ipaddr mask gt lt value gt Deletes a static route static route disable lt ipaddr mask gt lt value gt Disables a static r
139. atically If not a bell sounds to indicate that more information is necessary The following keystroke shortcuts are available in the CLI e Control P To view and scroll through the previous history commands e Control N To view and scroll through the next history commands e Control U To delete a line clears the line and allows you to enter a new command e Control C To abort a line entry aborts the command entry and puts you at a new prompt Note that this command does not abort the current command level that is running only the new entry e Control D To log off the system e Control S Control Q Software flow control XON XOFF e Control I Command completion completes the command when you have entered part of a word sh for show e Control H Backspace In addition certain commands are used for navigating through the CLI e back takes you back one level e box or top level takes you to the box or top level e pwc displays the current working level Parameter values in the CLI are indicated by angle brackets lt gt Parameters are optional or required Required parameters must be in the specified order followed by optional parameters Optional parameters are displayed in brackets 202086 C Chapter 3 Run Time CLI description 73 When entering multiple CLI commands you can terminate a command within a single line of input by using the semicolon as the separator semicolon
140. ation you are prompted for the IP address of the TFTP server and the remote file path TFTP client is built into the switch that affects the file transfers with the TFTP server 202086 C Chapter 1 Passport basics 45 Table 2 Command arguments and meaning continued Command Arguments Meaning Trace The trace device name refers to a reserved area of system RAM where the switch writes debugging messages The trace log is not normally activated so it is not normally accessed by users The file system commands refer to the reserved trace area for the trace log Running config The running config is the configuration currently running on the SSF module The name is only used as a parameter for the copy command see page 49 When used as the source of a copy the destination requires a script file name for the current switch configuration When used as the destination the source must be a script file with CLI commands used to make incremental changes to the current configuration state File system commands The flash file system commands allow all the basic operations of any file system The commands use the format command lt arguments gt Both the commands and the arguments can be abbreviated as long as the abbreviation is not ambiguous Table 3 lists the Passport file system commands Table 3 Passport file system commands Command Abbreviation Desc
141. ature IGMP snooping will work only when a multicast router exists in the VLAN If multicasting is enabled but the VLAN does not hear a query from a multicast router then the group reports from the hosts will not be processed static members lt GroupAddress gt add lt ports gt static blocked Adds static member ports to the IGMP snooping group address and configures them as static members or blocked not allowed to join static members lt GroupAddress gt create lt ports gt static blocked Creates a static IGMP snooping group address with the specified ports as static members or blocked not allowed to join You can create a static entry without any ports so that if there is at least one multicast router in the VLAN multicast data will be forwarded to that router If there are no multicast routers in the VLAN and no port was entered in the static entry the multicast data will be dropped Subsequently when a multicast router is learned or configured the multicast data for this static entry will be forwarded to that router static members lt GroupAddress gt delete Deletes a static IGMP snooping group static members lt GroupAddress gt info Displays information about the static IGMP snooping group static members lt GroupAddress gt remove lt ports gt static blocked Removes static member ports from the IGMP snooping group address and configures them as sta
142. bles or disables the specified access policy for HTTP lt enable disable gt service service rlogin Enables or disables the specified access policy for rlogin lt enable disable gt service service snmp Enables or disables the specified access policy for SNMP lt enable disable gt service service telnet Enables or disables the specified access policy for Telnet lt enable disable gt service username Sets the trusted host user name string from the trusted lt string gt host for the specified policy Applies only to rlogin access 202086 C Chapter 4 Configuring switch management 113 Figure 33 config sys access policy policy command output F Sub Context clear config monitor shou test trace UN Current Context create delete N A accesslevel readWrite policy enable true host 6 6 6 6 mode allow name default network 8 6 6 6 6 6 6 6 precedence 128 X username none m Figure 34 shows the procedure for preventing a host from using specific services on a Passport switch When denying services to a host you must specify which service to enable for that policy PID Figure 34 deny access command output Passport 11888 config sys access policy enable true Passport 118884 config sys access policy policy 2 create Passport 118884 config sys access policy policy 2 name policy2 Passport 118884 config sys access policy policy 2 enable true Passport 118884 config sys access p
143. bles the STG trap for a specific spanning tree group Note Disabling spanning tree can slightly reduce CPU overhead However unless you are using the switch in a simple network with little possibility of having loops Nortel Networks recommends that you leave spanning tree enabled Figure 66 shows output for the config stg info command 202086 C Chapter 5 Configuring layer 2 features 151 Figure 66 config stg info command output Sub Context clear config monitor show test trace E Current Context add ports 1 1 1 9 1 12 1 15 1 15 create 1 delete N A forward delay 1588 group stp true hello interval 266 max age 2666 priority 32768 remove ports N A N trap stp true E config ethernet ports stg commands The config ethernet ports stg commands configure parameters for the ports in the specified spanning tree group The command syntax is config ethernet ports stg sid where ports is the port or list of ports on which you are running the command slot port slot port 1 sid is the spanning tree group ID 1 to 25 Reference for the Passport 1000 Series Command Line Interface Release 2 1 152 Chapter 5 Configuring layer 2 features The commands use the following options config ethernet lt ports gt stg lt sid gt enable disable gt followed by info Displays current settings for the port spanning tree group faststart
144. c direct static rip ospf any Removes a route source from the announce policy rip gateway list addrlist id Identifies the RIP gateway lists that are associated with this policy The RIP gateway list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source rip interface list listid Indicates the entries in the RIP interface lists that are associated with this policy The RIP interface list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source rip metric lt rip metric gt Sets the RIP external metric 0 to 15 for the policy the external metric to use when advertising a route that matches this policy Meaningful only if the set action is announce Figure 188 shows output for the config ip policy rip announce info command 202086 C Chapter 7 Configuring IP flow policies and filters 289 Figure 188 config ip policy rip announce info command output a Passport 11088 config ip policy rip announce 3 info N Sub Context clear config monitor show test trace Current Context action not created add route source not created advertise net list not created create not created delete not created enable not created exact net list not created name not created ospf router list not created ospf route type not created outbound interface list not created precedence not created range netlist not
145. ce for the Passport 1000 Series Command Line Interface Release 2 1 194 Chapter 6 Configuring layer 3 protocol features The command syntax is show ports info arp lt ports gt Figure 109 shows output for the show ports info arp command Figure 109 show ports info arp command output 3 1 false true 3 2 false true 3 3 false true 3 4 false true 3 5 false true 3 6 false true 3 7 false true 3 8 false true 3 9 false true 3 16 false true 3 11 false true 3 12 false true 3 14 false true 3 16 false true J vlan ip arp general commands The vlan ip arp general commands for VLAN ARP require a VLAN ID lt vid gt from 1 to 4095 config vlan ip arp command The general configuration commands for VLAN ARP use the following options config vlan lt vid gt ip followed by proxy disable Disables proxy ARP on the VLAN This is the default state proxy enable Enables proxy ARP on the VLAN proxy info Displays VLAN proxy ARP status Figure 110 202086 C Chapter 6 Configuring layer 3 protocol features 195 config vlan lt vid gt ip followed by resp disable Disables ARP response on the VLAN resp enable Enables ARP response on the VLAN This state is the default state resp info Displays VLAN ARP response status Figure 111 Figure 110 config vlan ip proxy info command output Sub Context clear config monitor show test trace Current Context
146. ch as the NetBIOS name service rely on a User Data Protocol UDP broadcast to request or locate a service By default broadcasts are not forwarded by a router UDP broadcast forwarding is a generalized mechanism for the router to selectively forward UDP broadcasts The basic procedure for setting up UDP broadcast forwarding is e Use the config ip udpfwd protocol commands to enter protocols in a protocol table e Usethe config ip udpfwd portfwdlist commands to create and name the port forward list and assign protocols and servers to the port forward list e Usethe config ip interface commands to apply the port forward list to the appropriate interfaces The config ip udpfwd info command displays the current UDP forwarding configuration config ip udpfwd protocol command Usethe config ip udpfwd protocol command to enter protocols in a protocol table Reference for the Passport 1000 Series Command Line Interface Release 2 1 204 Chapter 6 Configuring layer 3 protocol features The UDP forwarding protocol command requires the lt udpport gt parameter as the UDP protocol port number 1 to 255 The config ip udpfwd protocol command uses the following options followed by config ip udpfwd protocol lt udpport gt create lt protoname gt Creates a new UDP protocol where lt protoname gt is the UDP protocol name string delete Deletes a UDP port protocol info Displays created and or
147. ck feature is globally enabled with the command config sys set portlock on off name lt name gt Configures a port name oversize frame lt enable disable gt Enables or disables large frame support preferred phy lt left right gt Sets one of the two physical connectors left or right on a redundant port to be the primary connector This command applies only to redundant Gigabit Ethernet ports perform tagging lt enable disable gt Enables or disables the IEEE 802 1Q tagging on the port tagged frames discard lt enable disable gt Sets a port with tagging disabled to discard tagged frames The default is disable untagged frames discard lt enable disable gt Sets a port with tagging enabled to discard untagged frames The default is disable unknown mac discard lt enable disable gt Enables or disables if the port should discard unknown source MAC frames 202086 C Chapter 5 Configuring layer 2 features 129 Note The 10 100BASE TX ports may not autonegotiate correctly with older 10 100BASE TX equipment In some cases the older devices can be upgraded with new firmware or driver revisions If an upgrade does not allow autonegotiation to correctly identify the link speed and duplex settings the settings can be manually configured for a link Check the Nortel Networks Web site nortelnetworks com for the latest compatibility information Figure 49 c
148. cket is dropped 1 to 16 Reference for the Passport 1000 Series Command Line Interface Release 2 1 202 Chapter 6 Configuring layer 3 protocol features config vlan lt vid gt ip dhcp relay followed by min sec lt min sec gt Sets the minimum seconds count for DHCP If the secs field in the packet header is greater than this value the switch forwards the packet otherwise it is dropped 0 to 65535 mode lt mode gt Sets DHCP mode to forward BootP messages only DHCP messages only or both The default is both Figure 116 config vlan ip dhcp relay info command output Sub Context clear config monitor show test trace Current Context dhcp relay disable broadcast learnarp max hop min sec mode disable disable 4 8 both show vlan info dhep command The show vlan info dhep command displays DHCP parameters for all or specified VLANs The interface index IF Index is assigned as the VLAN is created Numbers 1 to 256 are ports numbers above 257 are VLANs The command syntax is show vlan info dhep lt vid gt Figure 117 shows output for the show vlan info dhcp command 202086 C Chapter 6 Configuring layer 3 protocol features 203 Figure 117 show vlan info dhcp command output ID INDEX ENABLE HOP SEG HODE BCAST LRNARP m n N v eo m tu wu m AER UDP commands Some network applications su
149. cli banner info config cli defaultlogin lt true false gt config cli defaultpassword lt true false gt config cli loginprompt lt string gt config cli monitor duration lt integer gt config cli monitor info config cli monitor interval lt integer gt page 101 202086 C Appendix A CLI command list 311 Table 14 CLI command list continued command Page No config cli password info config cli password ro lt username gt lt password gt config cli password 11 username lt password gt config cli password 2 username lt password gt config cli password I3 lt username gt lt password gt config cli password rw lt username gt lt password gt config cli password rwa username lt password gt config cli prompt prompt config cli rlogin sessions lt nsessions gt config cli screenlines lt nlines gt config cli telnet sessions lt nsessions gt config cli timeout seconds page 104 config ethernet ports auto negotiate lt enable disable gt config ethernet ports default vlan id vid config ethernet ports duplex lt half full gt config ethernet ports high priority lt truelfalse gt config ethernet ports info config ethernet ports ip arp response disable config ethernet ports ip arp response enable config ethernet ports ip arp response info page 127 config ethernet ports ip create lt ipaddr mask gt config ethernet
150. condition is satisfied These commands include lt ports gt as the portlist slot port slot port followed by config ethernet lt ports gt ip traffic filter info Displays the traffic filters applied to the port default action forward Sets the port filter default action to forward default action drop Sets the port filter default action to drop default action info Displays the port default action configuration add set lt value gt Adds a filter to a port where set value is the filter set ID 1 to 1000 create Creates a traffic filtering entity on a port delete Removes filtering from a port disable Disables filtering on a port enable Enables filtering on a port remove set lt value gt Removes a filter set from a port where set value is the filter set ID 1 to 1000 show ip traffic filter commands The following commands provide information about the IP traffic filters show ip traffic filter active command The show ip traffic filter active command displays a list of active filters or returns the information that there are no active filters Reference for the Passport 1000 Series Command Line Interface Release 2 1 302 Chapter 7 Configuring IP flow policies and filters show ip traffic filter destination command The show ip traffic filter destination command displays the source and destinations for the active traffic fi
151. config ip policy ospf accept lt pid gt info config ip policy ospf accept lt pid gt inject net list lt netlist id gt config ip policy ospf accept lt pid gt name lt string gt config ip policy ospf accept lt pid gt precedence lt precedence gt config ip policy ospf accept lt pid gt range net list lt netlist id gt page 282 config ip policy ospf announce pid action lt announcelignore gt config ip policy ospf announce pid add route source lt direct static rip any gt config ip policy ospf announce lt pid gt advertise netlist lt netlist id gt config ip policy ospf announce lt pid gt create config ip policy ospf announce lt pid gt delete config ip policy ospf announce lt pid gt disable config ip policy ospf announce lt pid gt enable config ip policy ospf announce lt pid gt exact netlist lt netlist id gt config ip policy ospf announce lt pid gt ext metric lt ext metric gt config ip policy ospf announce pid ext metric type lt type1 type2 gt config ip policy ospf announce lt pid gt info config ip policy ospf announce lt pid gt name lt string gt config ip policy ospf announce lt pid gt precedence lt precedence gt config ip policy ospf announce lt pid gt range netlist lt netlist id gt config ip policy ospf announce pid remove route source lt direct static rip any gt config ip policy ospf announce lt pid gt rip gateway list lt addrlist id gt config ip policy ospf anno
152. covery disable config ip route discovery enable config ip route discovery info page 178 config ip rip disable config ip rip domain lt ipaddr gt lt value gt config ip rip enable config ip rip holddown lt seconds gt config ip rip info config ip rip updatetime lt seconds gt config ip rip receive lt ipaddr gt mode lt value gt config ip rip send lt ipaddr gt mode lt value gt page 208 config ip static route create lt ipaddr mask gt next hop lt value gt cost lt value gt config ip static route delete lt ipaddr mask gt next hop lt value gt config ip static route disable lt ipaddr mask gt next hop lt value gt config ip static route enable lt ipaddr mask gt next hop lt value gt config ip static route info page 178 Reference for the Passport 1000 Series Command Line Interface Release 2 1 322 Appendix A CLI command list Table 14 CLI command list continued command Page No config ip traffic filter clear stats lt fid gt config ip traffic filter create destination lt value gt src ip lt value gt id lt id gt config ip traffic filter create global src ip lt value gt dst ip lt value gt id lt id gt config ip traffic filter create info config ip traffic filter create source lt value gt dst ip lt value gt id lt id gt config ip traffic filter filter fid action mode lt default forward drop gt config ip traffic filter filter lt fid
153. d The config ip policy info command displays the current policy settings on the switch config ip policy addrlist command The config ip policy addrlist command sets address list matching criteria to suit a given route The parameter listid is the address list ID 1 to 1000 The commands include the following options followed by config ip policy addrlist lt listid gt info Displays the address list characteristics Figure 183 add address lt ipaddr gt Adds an IP address to the policy address list create Creates a policy address list delete Deletes a policy address list name lt name gt Assigns a name to the policy address list remove address lt ipaddr gt Removes an address from the policy address list Figure 183 shows output for the config ip policy addrlist info command Figure 183 config ip policy addrlist info command output Passport 1166 config ip policy addrlist 3 info Sub Context clear config monitor show test trace Current Context create not delete name add address remove address not not not not created created created created created 202086 C Chapter 7 Configuring IP flow policies and filters 281 config ip policy netlist command The config ip policy netlist commands set network list matching criteria to suit a given route where listid is the network list ID 1 to 1000 The commands i
154. d IGMPv1 for A hardware Figure 169 config ethernet ip I3 igmp info command output Passport 128884 config ethernet 1 1 ip 13 igmp info Sub Context clear config monitor show test trace Current Context last memb query int 1 query interval 125 query max resp 18 robustual 2 version 2 202086 C Chapter 6 Configuring layer 3 protocol features 261 show ports info I3 igmp command The show ports info 13 igmp command displays IGMP information about a specified port or for all ports The command syntax is show ports info igmp lt ports gt Figure 170 shows output for the show ports info 13 igmp command Figure 170 show ports info 13 igmp command output Passport 1286 show ports info 13 igmp N PORT NUM QUERY INTERVAL QUERY MAX RESP ROBUST UERSION LSTMEMBER QUERY 1 1 125 16 2 version2 1 1 2 125 16 2 version2 1 1 3 125 18 2 version2 1 1 5 125 18 2 version2 1 1 5 125 18 2 version2 1 1 6 125 18 2 version2 1 147 125 16 2 version 1 1 8 125 16 2 version2 1 1 9 125 16 2 version 1 1 18 125 18 2 version2 1 1 11 125 18 2 version2 1 1 12 125 18 2 version2 1 1 13 125 18 2 version2 1 1 14 125 18 2 version2 1 4 15 125 18 2 version2 1 1 16 125 18 2 version2 1 2 1 125 18 2 version2 1 E config vlan ip 13 igmp commands The config vlan ip 13 igmp commands configure layer 3 IGMP on a VLAN where the VLAN ID is from 1 to 4095 Reference for the Passport 1000 Series
155. d output Passport 12884 config ethernet 1 1 ip dumrp info Sub Context clear config monitor show test trace Current Context disable 1 dunrp netric 202086 C Chapter 6 Configuring layer 3 protocol features 255 show ports info dvmrp command The show ports info dvmrp command displays information about DVMRP configuration for a specified port or for all ports The command syntax is show ports info dvmrp lt ports gt Figure 163 shows output for the show ports info dvmrp command Figure 163 show ports info dvmrp command output Ze Passport 128814 show ports info dumrp OM Port Ip Dumrp PORT NUM DUMRP ENABLE METRIC 1 1 disable 1 1 2 disable 1 1 3 disable 1 1 4 disable 1 145 disable 1 1 6 disable 1 1 7 disable 1 1 8 disable 1 1 9 disable 1 1 16 disable 1 1 11 disable 1 1 12 disable 1 1 13 disable 1 1 15 disable 1 1 15 disable 1 1 16 disable 1 2 1 disable 1 E Reference for the Passport 1000 Series Command Line Interface Release 2 1 256 Chapter 6 Configuring layer 3 protocol features config vlan ip dvmrp commands The config vlan ip dvmrp commands configure DVMRP on the VLAN with a vid from 1 to 4095 and use the following options config vlan lt vid gt ip dvmrp followed by info Displays DVMRP settings on the VLAN Figure 164 enable Enables DVMRP on the VLAN disable Disables DVMRP on the VLAN metric lt cost gt Sets the DVMRP
156. ddress gt s lt value gt page 210 show ip traffic filter active show ip traffic filter destination lt fid gt show ip traffic filter disabled lt ports gt show ip traffic filter enabled lt ports gt show ip traffic filter global lt fid gt show ip traffic filter info global list lt id gt show ip traffic filter info list lt id gt show ip traffic filter interface lt ports gt show ip traffic filter log interval show ip traffic filter source lt fid gt show ip traffic filter stats lt fid gt page 301 show ip udpfwd interface info lt ipaddr gt show ip udpfwd portfwd info show ip udpfwd portfwdlist info lt fwdlistid gt show ip udpfwd protocol info page 205 show ip vrrp info lt vrid gt lt ipaddr gt show ip vrrp stats lt vrid gt lt ipaddr gt page 245 show ipx config lt IPX network number gt show ipx default show ipx route lt IPX network number gt lt IPX network number gt show ipx sap lt service name gt show ipx stats lt IPX network number gt page 273 show log file tail show log level page 107 202086 C Appendix A CLI command list 339 Table 14 CLI command list continued show ports info arp lt ports gt show ports info config lt ports gt show ports info dhcp lt ports gt show ports info dvmrp lt ports gt show ports info 13 igmp lt ports gt show ports info interface l
157. deleted UDP protocols config ip udpfwd portfwdlist commands The UDP forwarding port forward list commands require the lt fwdlist gt parameter as the port forwarding list number 1 to 1000 The commands use the following options followed by config ip udpfwd portfwdlist lt fwdlist gt add portfwd lt udpport gt Adds a UDP protocol port 1 to 255 lt ipaddr gt to the specified port forwarding list create Creates a UDP port forwarding list 1 to 1000 delete Deletes a port forward list ID info Displays the current configuration for the port forward list ID name lt name gt Assigns a name to the UDP port forwarding list remove portfwd lt udpport gt lt ipaddr gt Removes a protocol port forwarding entry and IP address from the list 202086 C Chapter 6 Configuring layer 3 protocol features 205 config ip udpfwd interface commands The UDP forwarding interface commands require an IP address and use the following options config ip udpfwd interface lt ipaddr gt followed by info Displays the current UDP interface configuration create lt fwdlistid gt Assigns a forwarding list ID to an interface IP address delete Removes the forwarding list from the IP address maxttl lt maxttl gt Sets maximum time to live for the UDP broadcast forwarded by the interface udpportfwdlist fwdlistid Changes the port forwarding list
158. device is a flash PCMCIA or TFTP based file server If tftp is specified you are prompted for the server IP address and the file name filename is the name of the file to be copied debug is the optional parameter that allows you to view the script while it is executing Note Use caution when executing script files from within the CLI The command execution references from your current position in the directory structure Reference for the Passport 1000 Series Command Line Interface Release 2 1 92 Chapter 3 Run Time CLI description Accessing files using the standby SSF module On a Passport 1200 Switch the latest Passport software allows you to access the standby SSF module from the active SSF module using copy and telnet command operations You can copy files in the flash file system of the active SSF module to the flash file system of the standby SSF module and vice versa using the copy tftp command The IP address used for the copy is 127 0 0 Slot is the slot number of the standby SSF module In the Passport 1200 switch this slot number is 4 or 5 To copy a file from the active SSF module to the standby SSF module use the copy device filename tftp command from the active SSF module A Telnet session can be established from the active SSF module to the standby SSF module using the 127 0 0 s1ot address Test commands The test commands enable you to test the switch while the switch is operating The
159. device management commands nnen rennene 88 Copying a script file to a running configuration 91 Accessing files using the standby SSF module nnn 92 EG ERE EE EE MERA AA EA 92 SHOW fest FOTS as ot kiss aarde ed Re RR KAT AK ORR ERA KAKA 93 show test artable command sere aars da OR d caede e deb aree CR cd 93 show test fabric command lt ccciaee GERA kee aA ERRASSE Ra REO 93 show test loopback com mand pa saar dade vr dees bee ehaG ORE rr RR da 94 Trace commands ua cuu accade xd LEA RS AEG NE FE x addu Rub cs 94 Show ACE COMMANGS aoa coeno RE x e que See dp x qd dex ade es 95 show ace NG command a sax cR UKG Oca C ae eske e RE Rc con 95 show trace level command iuuenum ede T RR Aude YR ERG X Ee eR dg 96 Reference for the Passport 1000 Series Command Line Interface Release 2 1 8 Contents Chapter 4 Configuring switch management e eee eee eee 97 SION CONG CAM 222 do d qe d rabo XU B eR dee TIDE a ub ea e eee abiens NU eens 97 show tech command oaeen s m rw teke e d Rx xe ERES E Ree be 100 CU management commands iius censa tux dace kje eed Raia ca de da Egg dana 101 pong CU coh misi SSR RAE iert ir DER AERE EE E AE GE RAN 101 show cli COMMANGE ama oy de ee t KB RAK dolet doce 103 Show ci MO command toeten ot ak dede ab ek Be dk uas 103 Show cl who command roe are aen dee HE xe heu x 104 cong er password COMMANDS vaars sns sbar td 104 show cli password COMMAND nae saar nersvan
160. directly or indirectly the Software or related technical data or information without first obtaining any required export licenses or other governmental approvals Without limiting the foregoing Licensee on behalf of itself and its subsidiaries and affiliates agrees that it will not without first obtaining all export licenses and approvals required by the U S Government 1 export re export transfer or divert any such Software or technical data or any direct product thereof to any country to which such exports or re exports are restricted or embargoed under United States export control laws and regulations or to any national or resident of such restricted or embargoed countries or ii provide the Software or related technical data or information to any military end user or for any military end use including the design development or production of any chemical nuclear or biological weapons 9 General If any provision of this Agreement is held to be invalid or unenforceable by a court of competent jurisdiction the remainder of the provisions of this Agreement shall remain in full force and effect This Agreement will be governed by the laws of the state of California Should you have any questions concerning this Agreement contact Nortel Networks Inc 2375 N Glenville Dr Richardson TX 75082 LICENSEE ACKNOWLEDGES THAT LICENSEE HAS READ THIS AGREEMENT UNDERSTANDS IT AND AGREES TO BE BOUND BY ITS TERMS AND CONDITIONS LICENSEE FUR
161. disable config ethernet lt ports gt ip vrrp lt vrid gt enable config ethernet lt ports gt ip vrrp lt vrid gt holddown timer lt seconds gt config ethernet lt ports gt ip vrrp lt vrid gt info config ethernet lt ports gt ip vrrp lt vrid gt priority lt prio gt page 241 Reference for the Passport 1000 Series Command Line Interface Release 2 1 314 Appendix A CLI command list Table 14 CLI command list continued command Page No config ethernet ports lock lt true false gt config ethernet lt ports gt name lt name gt config ethernet lt ports gt oversize frame lt enable disable gt config ethernet ports preferred phy lt left right gt config ethernet ports speed lt 10 100 gt config ethernet ports state lt enable disable test gt page 127 config ethernet ports stg sid faststart lt enable disable gt config ethernet ports stg sid info config ethernet ports stg sid pathcost lt intval gt config ethernet ports stg sid priority lt intval gt config ethernet ports stg sid stp lt enable disable gt page 151 config ethernet ports tagged frames discard lt enable disable gt config ethernet ports perform tagging lt enable disable gt config ethernet ports untagged frames discard lt enable disable gt page 127 config ethernet ports unknown mac discard activation lt enable disable gt co
162. dot3 ipx802dot2 ipxSnap ipxEthernet2 gt name lt value gt where vid is the VLAN ID 2 to 4095 sid is the spanning tree ID 1 to 25 protocol is one of the four listed above name lt value gt is the name of the VLAN for example IPX Note You can also create a port based VLAN in IPX The procedure is the same as for a protocol based VLAN except that you do not need to assign an encapsulation method when you create the VLAN Use the command config vlan lt vid gt create byport lt sid gt name lt value gt 2 Remove the ports that you do not want to be part of the interface config vlan lt vid gt ports remove lt ports gt member lt value gt where vid is the VLAN created in step 1 member value is the slot and port number to be removed from the interface for example 1 5 1 16 Add the ports you want to be part of the interface config vlan lt vid gt ports add lt ports gt member lt value gt where vid is the VLAN created in step 1 202086 C Chapter 6 Configuring layer 3 protocol features 265 member lt value gt is the slot and port number to be added to the interface for example 1 1 1 4 4 Create an IPX network interface with the specified VLAN ID and encapsulation method config vlan lt vid gt ipx create lt IPX network number gt lt encapsulation gt where vidisthe VLAN created in step 1 encapsulation is ethernet ii snap llc or raw
163. ds For general information about networking features in Passport products refer to Networking Concepts for the Passport 1000 Series Switch For information about using the Passport Management Software Device Manager refer to Reference for Passport Management Software Switching Operations and Reference for Passport Management Software Routing Operations Before you begin Caution Nortel Networks does not recommend or support IP Multicast with IGMP or DVMRP on the Passport 1000 platform This guide is intended for network administrators with the following background e Basic knowledge of networks Ethernet bridging and IP routing e Familiarity with networking concepts and terminology e Basic knowledge of network topologies Reference for the Passport 1000 Series Command Line Interface Release 2 1 28 Preface Text conventions This guide uses the following text conventions angle brackets lt gt bold Courier text braces brackets ellipsis points Indicate that you choose the text to enter based on the description inside the brackets Do not type the brackets when entering the command Example If the command syntax is ping lt ip address gt you enter ping 192 32 10 12 Indicates command names and options and text that you need to enter Example Use the dinfo command Example Enter show ip alerts routes Indicate required elements in syntax descriptions where there
164. e object ports required lt ports gt portlist slot port slot port gt port commands auto negotiate set auto negotiate default ulan id set default vlan id duplex set duplex high priority set high priority for a port info show current level parameter settings and next level directories ip port ip commands linktrap set link up down trap lock set lock oversize frame set oversized frame perform tagging set perform tagging option preferred phy set preferred connector to a port speed set speed state set port state up down test stg set port stg commands tagged frames discardset discard tagged frames unknown mac discarddiscard unknown source mac frames commands untagged frames discardset discard untagged frames E Reference for the Passport 1000 Series Command Line Interface Release 2 1 214 Chapter 6 Configuring layer 3 protocol features Table 12 indicates the relationship between switch action and the RIP supply and listen settings Table 12 RIP supply and listen settings and switch action RIP Supply settings RIP Listen settings Supply Default supply Listen Default listen Switch action Disabled Disabled Sends no RIP updates Enabled Disabled Sends RIP updates except the default Disabled Enabled Sends only the default default route must exist in routing table Enabled Enabled Sends RIP updates including the default route if it exists
165. e lt pid gt advertise netlist lt netlist id gt config ip policy rip announce lt pid gt create config ip policy rip announce lt pid gt delete config ip policy rip announce lt pid gt disable config ip policy rip announce lt pid gt enable config ip policy rip announce lt pid gt exact netlist lt netlist id gt config ip policy rip announce lt pid gt info config ip policy rip announce lt pid gt name lt string gt config ip policy rip announce lt pid gt ospf router id list lt addrlist id gt config ip policy rip announce pid ospf route type lt type1 type2 externallinternal any gt config ip policy rip announce lt pid gt outbound interface list lt addrlist id gt config ip policy rip announce lt pid gt precedence lt precedence gt config ip policy rip announce lt pid gt range netlist lt netlist id gt config ip policy rip announce pid remove route src lt direct static rip ospf any gt config ip policy rip announce lt pid gt rip gateway list lt addrlist id gt config ip policy rip announce lt pid gt rip interface list lt addrlist id gt config ip policy rip announce lt pid gt rip metric lt rip metric gt page 287 config ip policy rip info page 285 202086 C Appendix A CLI command list 321 Table 14 CLI command list continued command Page No config ip route delete lt ipaddr mask gt config ip route delete info page 178 config ip route dis
166. e Software to reconstruct lost or altered files data or programs 4 Limitation of liability IN NO EVENT WILL NORTEL NETWORKS OR ITS LICENSORS BE LIABLE FOR ANY COST OF SUBSTITUTE PROCUREMENT SPECIAL INDIRECT INCIDENTAL OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES RESULTING FROM INACCURATE OR LOST DATA OR LOSS OF USE OR PROFITS ARISING OUT OF OR IN CONNECTION WITH THE PERFORMANCE OF THE SOFTWARE EVEN IF NORTEL NETWORKS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES IN NO EVENT SHALL THE LIABILITY OF NORTEL NETWORKS RELATING TO THE SOFTWARE OR THIS AGREEMENT EXCEED THE PRICE PAID TO NORTEL NETWORKS FOR THE SOFTWARE LICENSE 5 Government licensees This provision applies to all Software and documentation acquired directly or indirectly by or on behalf of the United States Government The Software and documentation are commercial products licensed on the open market at market prices and were developed entirely at private expense and without the use of any U S Government funds The license to the U S Government is granted only with restricted rights and use duplication or disclosure by the U S Government is subject to the restrictions set forth in subparagraph c 1 of the Commercial Computer Software Restricted Rights clause of FAR 52 227 19 and the limitations set out in this license for civilian agencies and subparagraph c 1 ii of the Rights in Technical Data and Computer Software clause of DFARS 252 227 7013 for agencies of the
167. e port based RIP commands use the following options config ethernet lt ports gt ip rip followed by info Displays RIP characteristics on the port Figure 125 advertise when down If enabled the network on this interface is lt enable disable gt advertised as up even if the port is down The default is disabled Note When you configure a port without any link and enable advertise when down it will not advertise your route until the port is active Then the route is advertised even when the link is down To disable advertising based on link status this parameter should be disabled Reference for the Passport 1000 Series Command Line Interface Release 2 1 212 Chapter 6 Configuring layer 3 protocol features config ethernet lt ports gt ip rip followed by auto aggr lt enable disable gt Enables or disables automatic route aggregation on the port When enabled the router switch automatically aggregates routes to their natural mask when they are advertised on an interface in a different class network The default is disable default listen lt enable disable gt Allows the user to enable or disable setting RIP listen to accept the default route via RIP disable Disables RIP on the port This setting is the default enable Enables RIP on the port default supply lt enable disable gt Allows the user to send a default route only if one exists in the routing
168. ect config ip dvmrp commands The config ip dvmrp commands are global DVMRP commands Reference for the Passport 1000 Series Command Line Interface Release 2 1 250 Chapter 6 Configuring layer 3 protocol features config ip dvmrp command The config ip dvmrp commands use the following options config ip dvmrp followed by info Displays DVMRP settings Figure 156 disable Globally disables DVMRP enable Globally enables DVMRP update interval integer Sets the time interval in seconds between DVMRP router update messages The range is 10 to 2000 the default is 60 triggered update interval integer Sets the time interval in seconds between triggered update messages sent when routing information changes The range is 5 to 1000 the default is 5 leaf timeout integer Sets the length of time in seconds the router waits for a response from a neighbor before considering the attached network to be a leaf CODO The range is 25 to 4000 the default is nbr timeout integer Sets the length of time in seconds the router waits to receive a report from a neighbor before considering the connection inactive The range is 35 to 8000 the default is 35 nbr probe interval integer Determines how often the DVMRP router sends neighbor probe messages on its interface The range is 5 to 30 seconds the default is 10 Figure 156 config ip dvmrp info command ou
169. eement that may pertain to or accompany the delivery of this computer software the rights of the United States Government regarding its use reproduction and disclosure are as set forth in the Commercial Computer Software Restricted Rights clause at FAR 52 227 19 Statement of conditions In the interest of improving internal design operational function and or reliability Nortel Networks Inc reserves the right to make changes to the products described in this document without notice Nortel Networks Inc does not assume any liability that may occur due to the use or application of the product s or circuit layout s described herein Portions of the code in this software product may be Copyright O 1988 Regents of the University of California All rights reserved Redistribution and use in source and binary forms of such portions are permitted provided that the above copyright notice and this paragraph are duplicated in all such forms and that any documentation advertising materials and other materials related to such distribution and use acknowledge that such portions of the software were developed by the University of California Berkeley The name of the University may not be used to endorse or promote products derived from such portions of the software without specific prior written permission SUCH PORTIONS OF THE SOFTWARE ARE PROVIDED AS IS AND WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING WITHOUT LIMITATION THE IMPLIED
170. eference for the Passport 1000 Series Command Line Interface Release 2 1 168 Chapter 5 Configuring layer 2 features Figure 85 config vlan fdb static info command output Sub Context clear config monitor show test trace Current Context add mac 88 88 79 01 82 03 port 3 1 remove N A config vlan igmp snoop commands The Internet Group Management Protocol IGMP is used by hosts to report multicast group memberships to neighbor multicast routers IP multicasting provides services such as delivery of information to multiple destinations with a single transmission and the solicitation of servers by clients The Passport switch supports IGMPv1 and IGMPV2 to prune group membership per port within a VLAN This feature is called IGMP snooping Note Implementation of IGMP snooping requires ARU2 or later hardware A and B modules Sender source and access functions require ARU3 B hardware The switch functions in the mode of the lowest hardware present If an A module is installed in a switch and you attempt to use the sender or access commands you receive an Incompatible Hardware message The IGMP snooping feature allows the user to optimize the multicast data flow for a group within a VLAN only to those that are members of the group The switch listens to group reports from each port and builds a database of multicast group members per port It suppresses the reports heard by not forwarding them to other h
171. el of the Passport switch e Passport 1200 switches can load the run time image from the flash memory from a PCMCIA card or from a TFTP server using the diagnostic Ethernet port e Passport 1100 1150 switches can load the run time image from the flash memory or from a TFTP server using the diagnostic Ethernet port The factory default load order is as follows e PCMCIA if applicable e Flash memory e TFIP if applicable However you can define the source and order from which to load the run time image e To specify the order in the Boot Monitor CLI enter the choices command See Boot commands on page 59 To specify the source using the Run Time CLI commands enter the config sys set boot command See the description on page 117 Stage 4 Switch configuration load Before continuing to the boot process load the switch configuration The switch configuration includes e Chassis configuration e Port configuration e Spanning tree group configuration e VLAN configuration e Routing configuration e IP address assignments e RMON configuration 202086 C Chapter 1 Passport basics 39 The default configuration includes A single port based default VLAN with a VLAN identification number of 1 bound to the default spanning tree group All ports in a single spanning tree group STG number 1 The default spanning tree group is 802 1D compliant and its BPDUs are never tagged Spanning Tree FastStart disab
172. entries in the ARP table and to display the ARP table The ARP table maps MAC addresses to IP addresses If you add an ARP entry for a VLAN the VLAN is associated with the MAC address you specify When you display the ARP table all entries static and dynamic are displayed Before you can add an ARP entry to a port or port based VLAN an IP address must already be assigned to the port or VLAN and routing must be enabled 202086 C Chapter 6 Configuring layer 3 protocol features 189 config ip arp commands The config ip arp commands configure ARP on the switch and use the following options config ip arp followed by info Displays ARP characteristics Figure 105 add ports lt value gt ip Adds a static entry to the ARP table lt value gt mac lt value gt ports lt value gt are the port numbers vlan lt value gt shown as slot port ip lt value gt is the IP address a b c d mac value is the 48 bit hardware MAC address in the format 0x00 0x00 0x00 0x00 0x00 0x00 vlan value is the name or number of a VLAN aging seconds Sets the length of time in seconds an entry will remain in the ARP table before timeout Range is 1 to 32767 delete lt ipaddr gt Removes an entry from the ARP table Reference for the Passport 1000 Series Command Line Interface Release 2 1 190 Chapter 6 Configuring layer 3 protocol features Figure 105 config ip arp info command outpu
173. er kansarme RON RR e Lame 105 LOG COMMANDOS aa rar arn AE BRE B EAR 105 conig log commands aT EN PCT 106 Siow og Comida rr da qe d abe NA Re HA RUN B Odo au Rte ob pe NUR Qa 107 Show log le command 4 5 44045 48885 SERIER BAARDE send ke 107 show log level command or a nen eten en GR dE Reb n 108 AMON COMMANES ze ara ern ed BENE bek deig amt dg 109 config rmon commands erre KPA eda keg nt RAMI HBL ot dede a 109 SHDNW AMA GENNER dugegeePQI OO PITE ERO EE RER ARN PME NG 109 config setdate command sore eeen eer veen me x fake ERR x eee b x 110 TONN us runs redd dote ah D dog LE dod d qd whee d led dota 110 Poss policy COMMENCES were enne neren KER REN KER RAE CERE RR 110 CONG sys COMMANDS Lis esae d esa LER ER ERE RR SRO nd Pt 111 config sys accoss policy commands avn ee ska desk acad e cel en 111 config sys access policy policy commands a 111 show sys access policy info command cee ee eee 113 config sys set action commands vu asasrasnevaansanansaankekadeea and 114 config sys set flags commands saar aar mex xw akk xx eh KGG 115 Other config sys set commands uuu amer e dx acd d CR a 117 SOM BYE LONIMNENOD 413 3 Quo qe RR Ur WAND 2 dr Ee RR Ee d KAG Add 119 show sys community command 222s cescudehsd dese RR RYRRRRERSSC 119 show sys diag Info command uisus icu peur bu RO EE hek dee 120 Show SYS info Command eseseceess cesse karm ERR GR y Rx hne 120 Show sys PEN command csoscosiieeckberteicv4ete Ri vedeeraGokem s 121 show Sys Sy
174. erface Release 2 1 48 Chapter 1 Passport basics Figure 2 Passport 1100 directory flash command example Passport 1166 directory flash Device flash FN Name Flags Length 1 syslog LN 131672 2 p18a2188 img XZN 2661586 3 config cfg CN 18188 3 files bytes used 2293760 free 1966544 Copy The copy command copies an image from a source device to a destination device To copy an image from a source device to a destination device enter the command usage copy lt srcdevfile gt lt destdevfile gt where srcdevfile is the file name or number of the source file in flash PCMCIA config nvram tftp or trace destdevfile is the file name or number of the destination file in flash PCMCIA config nvram or tftp For the copy command the source is a specific file or a reserved device name If a destination file name is not specified the file name remains the same as the source file name The copy command appends the file to the last unused memory block on the device Using the copy command a run time image is copied to flash from a TFTP server The source argument is tftp not a file name The system prompts the user for the TFTP server IP address and the remote file path Figure 3 202086 C Chapter 1 Passport basics 49 Figure 3 copy command Rccelar 12UUH Copy trtp flash Enter source tftp server address 18 125 2 285 Enter source file cfg cfg tftp result success Accelar 1266 dir
175. erface main command 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 237939520 214383356 3717885 8 8 8 8 8 8 182856896 3696056284 1667139 119951437658 26185 6668 512593388 118237669999 7562956 1666737 349734 oovaoooaooooooo 02 4741983 2798337 168566166 2615731078 118937762 38134348 A show ports stats interface extended command The show ports stats interface extended command displays extended port interface information for all or specified ports Reference for the Passport 1000 Series Command Line Interface Release 2 1 138 Chapter 5 Configuring layer 2 features The command uses the syntax show ports stats interfac xtended lt ports gt Figure 57 shows output for the show ports stats interface extended command Figure 57 show ports stats interface extended command output 171 5668216 49882 22725974 1616976 9741653 3717976 3349776 8 8 8 8 1687187 4752189 113181181 2798464 218746 956 7398989 168563544 8 85857 oo N a 2 18 2 11 2 12 2 13 2 14 2 15 en E show ports info vlans command N M N e c2 02 02 02 02 02 02 02 022 022 022 02 02 C2 02 02 C02 C02 02 02 02 02 022 02 02 02 02 02 DON 02 0202 0202 02 02 02 0202 0202 02 02 02 02 The show ports info vlans command displays VLAN information for all or specified ports 202086 C Chapter 5 Configuring layer 2 features 139 The command
176. ess list for a specified VLAN ID The command syntax is show vlan igmp snoop access list lt vid gt lt Group Address gt Figure 88 shows output for the show vlan igmp snoop access list command Figure 88 show vlan igmp snoop access list command output 202086 C Chapter 5 Configuring layer 2 features 173 show vlan igmp snoop all access list command The show vlan igmp snoop all access list command has the same display as the Show vlan igmp snoop access list command Figure 88 except it displays all access lists instead of only a specified VLAN ID show vlan igmp snoop groups command The show vlan igmp snoop groups command displays information about the IGMP snoop groups for all or specified VLANs The command syntax is show vlan igmp snoop groups lt vid gt Figure 89 shows output for the show vlan igmp snoop groups command Figure 89 show vlan igmp snoop groups command output show vlan igmp snoop senders info The show vlan igmp snoop senders info command displays information about the configured IGMP sender source The command syntax is show vlan igmp snoop senders info lt vid gt Figure 90 shows output for the show vlan igmp snoop senders info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 174 Chapter 5 Configuring layer 2 features Figure 90 show vlan igmp snoop senders info command output show vlan igmp snoop static
177. et lt ports gt ip followed by create lt ipaddr mask gt Creates an IP address and subnet mask to assign to the port fa b c d x a b c d x x x x default The mask can be expressed in dotted decimal notation or as a number of bits delete lt ipaddr gt Deletes the IP address assigned to the port for example 10 10 20 100 config ethernet lt ports gt unknown mac discard commands The config ethernet lt ports gt unknown mac discard commands configure the Unknown MAC Discard feature config ethernet lt ports gt unknown mac discard followed by activation Enables the Unknown MAC Discard feature lt enable disable gt Although you can configure the feature with it disabled the Unknown MAC Discard feature must be enabled to be implemented add allow mac lt mac gt Manually enters a MAC address into the allowed none monitor low high MAC table Sets monitor and priority for specified MAC address see below in table for explanations of monitor and priority autolearn lt enable disable gt Enables the autolearn mode on the port for populating the allowed MAC table Autolearn does not take effect until Unknown MAC Discard is activated see activation command above autolearn mode Sets the autolearn mode on the port for lt one shot cont inuous gt populating the allowed MAC table to one shot continuous 202086 C Chapter 5 Configuring layer 2 features 1
178. ete Deletes a RIP announce policy disable Disables a RIP announce policy Reference for the Passport 1000 Series Command Line Interface Release 2 1 288 Chapter 7 Configuring IP flow policies and filters followed by config ip policy rip announce lt pid gt enable Enables a RIP announce policy exact net list lt netlist id gt Sets a RIP announce policy exact network list where the exact network list ID is 0 to 1000 name lt string gt Assigns a RIP accept policy name ospf router id list lt addrlist id gt Indicates the entries in the OSPF router lists that are associated with this policy ospf rtr list lt listid gt is the OSPF router ID list ID 0 to 1000 It is valid only for OSPF routed sourced routes if OSPF is included as a route source ospf route type lt typel1 type2 external internal any Indicates the entries in the OSPF router lists that are associated with this policy type 1 type 2 external routes internal routes or any OSPF routes outbound interface list addrlist id Indicates the entries in the outbound lists that are associated with this policy precedence precedence Sets the precedence for the OSPF accept policy The range is 0 to 65535 If multiple policies apply the higher precedence is used range net list netlist id Sets the RIP announce policy range network list The range is 0 to 1000 remove route sr
179. ets the action to occur when a filter is applied the lt default forward drop gt default action forward the packet or drop the packet Reference for the Passport 1000 Series Command Line Interface Release 2 1 298 Chapter 7 Configuring IP flow policies and filters followed by config ip traffic filter filter fid action mirror lt enable disable gt Enables or disables the traffic filter mirror option high priority lt enable disable gt Enables or disables the traffic filter high priority option tcp connect lt enable disable gt Enables or disables the traffic filter TCP connect option which allows only TCP connections established from within the network enabled or allows bidirectional establishment disabled use packet limit lt enable disable gt Enables or disables the traffic filter use packet limit option Figure 195 shows output for the config ip traffic filter filter action info command Figure 195 config ip traffic filter filter action info command output swlab edge2 config ip traffic filter filter 1 action info Sub Context clear config monitor show test trace Current Context mode mirror high priority tcp connect dffseru rule use pkt limit not not not not not not created created created created created created 202086 C Chapter 7 Configuring IP flow policies and filters 299 config ip t
180. etwork lists on the switch Figure 191 shows output for the show ip policy netlist info command 202086 C Chapter 7 Configuring IP flow policies and filters 291 Figure 191 show ip policy netlist info command output Passport 11888 show ip policy netlist info If an ID is entered information is displayed about that network list only Figure 192 shows output for the show ip policy netlist info command Figure 192 show ip policy netlist info id 1 command output Passport 1166 show ip policy netlist info id 1 ListId 1 Name vdf4 NetAddr NetMask show ip policy ospf accept info command The show ip policy ospf accept info command displays information about the OSFP accept policies configured on the switch If an ID is not entered the display provides information for all OSPF accept policies on the switch If a policy ID is entered the display lists information for only that policy The command syntax is show ip policy ospf accept info id lt value gt show ip policy ospf accept lists command The show ip policy ospf accept lists command displays the accept lists on the switch If an ID is not entered all OSPF accept lists are displayed If an ID is entered only that list is displayed Reference for the Passport 1000 Series Command Line Interface Release 2 1 292 Chapter 7 Configuring IP flow policies and filters The command syntax is show ip policy ospf accept lists id lt value gt
181. evice gt filename gt Command See page history commands Use these commands to display and reenter commands Syntax 62 is the same as the run time CLI history command LI lt number gt l lt str gt lt substr gt asstr gt lt rstr gt ip command Use this command to assign an IP address to the diagnostic Ethernet 63 port ip lt device gt lt ipaddr gt lt netmask gt lt gateway gt lt mgmtnet gt ping command Use this command to test the network connection between the 65 Passport 1000 Series chassis diagnostic port and another networking device ping lt device gt lt ipaddr gt lt size gt quit command use this command to end the Boot Monitor CLI session and reboot 67 the Passport 1000 Series chassis quit show command Use this command to display boot configuration parameters 65 show lt configuration type gt log command Use this command to display system log information 60 log create lt device gt log clear lt device gt lt filename gt lt nblocks gt log show lt device gt lt filename gt tail trace command Use this command to display trace file information 60 202086 C Chapter 2 Boot Monitor command line interface 59 Boot commands boot command enables you to display and modify a boot parameter and to reset or reboot the system Note Entering a boot command with no arguments causes the switch to follow the current boot choices and boot the s
182. fig vlan lt vid gt igmp snoop static members lt GroupAddress gt create lt ports gt lt static blocked gt config vlan lt vid gt igmp snoop static members lt GroupAddress gt delete config vlan lt vid gt igmp snoop static members lt GroupAddress gt info config vlan lt vid gt igmp snoop static members lt GroupAddress gt remove lt ports gt lt static blocked gt page 168 config vlan lt vid gt info page 159 config vlan lt vid gt ip create lt ipaddr mask gt config vlan lt vid gt ip delete lt ipaddr gt page 186 202086 C Appendix A CLI command list 331 Table 14 CLI command list continued command Page No config vlan lt vid gt ip dhcp relay broadcast lt enable disable gt config vlan lt vid gt ip dhcp relay disable config vlan lt vid gt ip dhcp relay enable config vlan lt vid gt ip dhcp relay info config vlan lt vid gt ip dhcp relay max hop lt max hop gt config vlan lt vid gt ip dhcp relay min sec lt min sec gt config vlan lt vid gt ip dhcp relay mode lt mode gt config vlan lt vid gt ip dhcp relay relay agent lt value gt server lt value gt mode lt value gt config vlan lt vid gt ip dhcp relay to agent lt value gt server lt value gt state lt value gt page 201 config vlan lt vid gt ip directed broadcast disable config vlan lt vid gt ip directed broadcast enable config vlan lt vid gt ip directed broadcast info page
183. for all or specified ports The command syntax is show ports info ip lt ports gt Figure 102 shows output for the show ports info ip command show ports info ip command output DIREGT BCAST enable enable Port Ip PORT IP ADDRESS NET_MASK BROADCAST REASM ADVERTISE DIRECT MAXSIZE WHEN DOWN 3 2 168 192 10 168 255 255 255 9 ones 15909 disable enable 192 168 38 168 255 255 255 6 ones 1566 disable 192 168 18 168 255 255 255 9 ones 1566 disable enable vlan ip commands The vlan ip commands are general routing commands on the VLAN Other VLAN commands are included in the sections dealing with protocols or features for example DHCP config vlan ip command The general config vlan ip commands require a VLAN ID lt vid gt from 1 to 4095 202086 C Chapter 6 Configuring layer 3 protocol features 187 The config vlan ip command uses the following options config vlan lt vid gt ip followed by directed broadcast enable Enables directed broadcasts on a VLAN directed broadcast disable Disables directed broadcasts on a VLAN directed broadcast info Displays directed broadcast settings on a VLAN info Displays VLAN routing characteristics Figure 103 advertise when down lt enable disable gt Sets whether to advertise the network on this VLAN even if the VLAN is down no active ports The default is disabled Note When you create a new
184. formation about the file type and whether it is compressed or marked for deletion Table 4 lists the directory flags Table 4 Passport directory flags Flag Description C Configuration file X Executable file Z Compressed file gzip format 202086 C Chapter 1 Passport basics 47 Table 4 Passport directory flags continued Flag Description D Marked for deletion L Log file N Directory entry in named format T Trace file S Script file an ASCII configuration file In Figure 1 files 1 is a log file file 2 is a script file file 3 is a configuration file file 4 is a compressed executable file and file 5 is a configuration file Figure 1 Passport 1200 directory flash command example swlab edge2 directory flash Device flash FN Name Flags Length 1 syslog LN 131872 2 dana cfg SN 14161 3 dana cfg CN 12788 4 p16a2166 img XZN 2661586 5 config cfg CN 12888 5 files bytes used 2424832 free 1769472 The 1 option in the directory command shows the file details In particular it shows the original file name of run time executables There are no file compression commands in the CLI A zipped executable file that is copied to the file system is automatically unzipped on execution The sample output of the directory flash command in Figure 2 shows that three images currently reside in flash memory Reference for the Passport 1000 Series Command Line Int
185. ges allowed on a physical port and to take action if the thresholds are exceeded If the link state change thresholds are exceeded a log entry is generated The possible configuration actions send a trap and being down a port This feature allows you to detect when the link is going up and down rapidly flapping on a port This action can be detrimental to network stability because it can trigger spanning and routing table recalculation config sys link flap detect followed by auto port down Enables or disables the auto port down function lt enable disable gt frequency Sets the link flap detect frequency lt frequency gt frequency is from 1 to 9999 info Shows the link flap detect settings interval Sets the link flap detect interval lt interval gt intervals is from 2 to 600 send trap Enables or disables the send trap function lt enable disable gt 202086 C Chapter 4 Configuring switch management 123 Figure 45 config sys link flap detect info command output Passport 1166 config link flap detect info config link flap detect not found Passport 1166 config sys link flap detect info Auto Port Down enable Send Trap enable Interval 66 Frequency 10 Syslog commands The syslog commands control the syslog a feature in a UNIX machine that logs messages and assigns severities to the messages based on significance config sys syslog commands T
186. gned to the diagnostic Ethernet or serial port Set the IP address to 0 0 0 0 The syntax for the ip command is ip device ipaddr netmask gateway lt mgmtnet gt where ipaddr is the IP address in dot notation ipaddr is the network device name or number netmask is the subnet mask gateway is the default router IP address Reference for the Passport 1000 Series Command Line Interface Release 2 1 64 Chapter 2 Boot Monitor command line interface mgmtnet is the management station network IP address Use this argument only if the management station is on a different subnet If you use this argument the Passport 1000 Series chassis enters a static route to the management network in the routing table If you do not use any of the arguments the CLI prompts you for information Figure 6 shows an example of the ip command In this example the command is issued without arguments so the CLI prompts for the argument values Figure 6 ip command output monitor gt ip CHANGE IP ADDRESS SE Net Devices 4 Enabled Serial Port 2 s2 hw ff ff ff ff ff ff ip 0 0 0 0 netmask 0x00000000 mgmt net 0 0 0 0 gateway 0 0 0 0 5 Enabled Debug Ethernet nic hw 00 e0 16 04 66 00 ip 0 0 0 0 netmask 0x00000000 mgmt net 0 0 0 0 gateway 0 0 0 0 select network interface device 5 Enter ip address 0 0 0 0 Enter netmask 255 0 0 0 Enter default gateway 0 0 0 0 Enter Mgmt Network 0 0 0 0 Net Devices 4
187. gt action info config ip traffic filter filter lt fid gt action mirror lt enable disable gt config ip traffic filter filter lt fid gt action high priority lt enable disable gt config ip traffic filter filter fid action tcp connect lt enable disable gt config ip traffic filter filter lt fid gt action use packet limit lt enable disable gt config ip traffic filter filter lt fid gt delete config ip traffic filter filter lt fid gt log stats lt enable disable gt config ip traffic filter filter lt fid gt info config ip traffic filter filter lt fid gt match dst port lt port gt dst option lt value gt config ip traffic filter filter lt fid gt match info config ip traffic filter filter lt fid gt match packet limit lt pktlimit gt config ip traffic filter filter lt fid gt match protocol lt protocoltype gt config ip traffic filter filter lt fid gt match src port lt port gt src option lt value gt page 295 config ip traffic filter filter lt fid gt modify info config ip traffic filter filter fid modify diffserv rule znone rule1 rule2 rule3 gt config ip traffic filter filter lt fid gt modify vlan tag priority lt vlan priority number gt config ip traffic filter filter lt fid gt name lt name gt config ip traffic filter global set lt gsetid gt add filter lt fid gt config ip traffic filter global set lt gsetid gt create name lt value gt config ip traffic filter global set lt gse
188. h list of commands and parameters available from the current prompt or command forward It lists the syntax in the current context When you type a command you may see context and subcontext Context indicates commands at that level Subcontext indicates one or more command layers available When you are within a given branch of the tree you need to type only the subcommand for that level For example to enable IP forwarding routing from the top level type config ip forwarding enable When you are already in the config ip branch you need only type forwarding enable Reference for the Passport 1000 Series Command Line Interface Release 2 1 72 Chapter 3 Run Time CLI description After you have entered information to put you at a certain level you remain at that level until you type back or reenter the original command For example when using the commands that begin with config ethernet lt ports gt ip after you have entered a port number you do not have to reenter this information unless you go back up a level This feature enables you to create delete or change all relevant parameters for this port without reentering information To avoid having to type complete commands you can enter a shortened version of the command such as dis for disable or en for enable or type part of a command and then press the Tab key to complete the command If the letters you typed are unique to a command the command is completed autom
189. h6 3 1 false low learned 66 08 c7 62 c4 c6 3 1 false low learned 88 68 5c 83 2f 08 3 1 false low learned 88 68 fd 91 22 d1 3 1 false low learned 88 68 fd 92 07 91 3 1 false low learned 88 68 fd 9e 2b 6b 3 1 false low learned 88 68 fd bb 8e c3 3 1 false low learned 88 68 fd ee 19 b2 3 1 false low learned 88 88 2d 86 e5 39 3 1 false low of mett ad cee aa in show vlan info fdb filter command The show vlan info fdb filter command displays the forwarding database filters for a specified VLAN The command syntax is show vlan info fdb filter lt vid gt The display includes e VLAN ID e VLAN status e VLAN MAC address e Ports from which the VLAN is not allowed to receive frames show vlan info fdb static command The show vlan info fdb static command displays the static forwarding database status and priority for a specified VLAN Reference for the Passport 1000 Series Command Line Interface Release 2 1 164 Chapter 5 Configuring layer 2 features The command syntax is show vlan info fbd static lt vid gt show vlan info ports command The show vlan info ports command displays the port member status for all or a specified VLAN The command syntax is show vlan info ports lt vid gt Figure 80 shows output for the show vlan info ports command Figure 80 show vlan info ports command output 1 Default 2 ULAN 2 45 MM 16 75 ubs 76 vines in brouter 77 ipx882dot2 264 false 688 88 08 8
190. he config sys syslog commands configure the syslog Most of these commands require the host ID parameter for a UNIX host 1 to 10 The config sys syslog commands use the following options config sys syslog followed by info Displays current syslog settings Figure 46 host lt id gt address lt ipaddr gt Configures a host location for the syslog host where address is the UNIX system syslog host IP address host lt id gt create Creates a syslog host host lt id gt delete Deletes a syslog host host lt id gt facility lt facility gt Specifies the UNIX facility used in messages to the syslog host where facility is the UNIX system syslog host facility LOCALO to LOCAL7 host lt id gt lt enable disable gt Enables or disables the syslog host host id info Displays system log information for the specified host This command results in the same output as the show sys syslog host id info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 124 Chapter 4 Configuring switch management config sys syslog followed by host lt id gt mapinfo Specifies the syslog severity level to use for Passport lt level gt Information messages emergency alert critical error warning notice info debug host lt id gt mapwarning Specifies the syslog severity to use for Passport lt level gt Warning message
191. he show web server command displays whether Web access is enabled It also displays password and access information Figure 48 shows output for the show web server command Figure 48 show web server command output ver Server Info E Status on RO Username z Fo RO Password ro RW Username fru RW Password ru RWA Username rwa RWA Password rwa NumHits 20 NumAccessChecks 8 NumAccessBlocks 8 NumRxErrors B NumTxErrors 2 8 NumSetRequest 202086 C 127 Chapter 5 Configuring layer 2 features This chapter describes the CLI commands that are used to configure layer 2 switching functions in a Passport 1000 Series switch The following sections are discussed e Port commands next e RADIUS commands on page 142 e Port Mirroring commands on page 144 e MILT commands on page 146 e Spanning tree group commands on page 149 e VLAN commands on page 157 Port commands Port commands manage the switch at the port level This section includes the layer 2 port configuration and display commands Port commands relating to layer 3 routing are covered in the following chapters along with the related feature config ethernet ports commands The config ethernet ports commands allow you to set layer 2 parameters for the specified ports on the switch In all port commands ports is the port or list of ports on which you are running the command The command synta
192. he switch toplevel go to top level trace trace file configuration commands traceroute trace route to a remote host back up one level E If you use the he1p command followed by a specific command help lt command gt a description of the command with a list of subcommands or required and optional parameters is displayed Figure 12 shows the output for the help config command Reference for the Passport 1000 Series Command Line Interface Release 2 1 84 Chapter 3 Run Time CLI description Figure 12 help config command output Configuration cli commands cli ethernet info ip ipx log mirror mlt radius rmon setdate around stg sys vlan N web server cli configuration commands N ethernet port configuration commands show current level parameter settings and next level directories ip protocol configuration IPX configuration commands system log file commands port mirroring commands Multi link trunking commands radius protocol configuration remote monitor commands Set calendar time Out of range input will be automatically wrap spanning tree commands system configuration commands vlan configuration commands web server commands History commands The Run Time CLI history commands let you list the commands you have entered during the current session They also allow you to reenter commands The history commands include the following options
193. how ports info stg main command displays STG information about a specified port or all ports The command syntax is show ports info stg main lt ports gt Figure 70 shows output for the show ports info stg main command 202086 C Chapter 5 Configuring layer 2 features 155 Figure 70 show ports info stg main command output PORT NUM PRIORITY STATE ENABLESTP FASTSTART PATHCOST FORWARD TRANSITION 3 1 128 forwarding true false 166 1 3 2 128 disabled true false 166 6 3 3 128 disabled true false 166 6 3 4 128 disabled true false 166 8 3 5 128 disabled true false 166 8 3 6 128 disabled true false 188 8 3 7 128 disabled true false 188 8 3 8 128 disabled true false 188 8 3 9 128 blocking true false 18 8 3 18 128 forwarding true false 18 1 3 11 128 disabled true false 188 8 3 12 128 disabled true false 188 8 3 15 128 disabled true false 188 8 3716 128 disabled true false 166 6 pr show ports info stg extended command The show ports info stg extended command displays extended STG information for all or a specified port The command uses the syntax show ports info stg main lt ports gt Figure 71 shows output for the show ports info stg extended command Reference for the Passport 1000 Series Command Line Interface Release 2 1 156 Chapter 5 Configuring layer 2 features Figure 71 show ports info stg extended command output 88 08 88 88 a1 a2 a5 188 88 880 08 08 a1 a2 a5 200 88 880 e8 16
194. i522 orsus R eens SE ees eae eda ne dans 182 show Ip diffserv command RE NE 184 ethernet ports Ip commands sese e Rx xxx me dk NA des 185 contig ethernet ports ip command e a eenn en an NA 185 Siow parte MOD 425m pedo dd d Rao WR bdo RP Ee e de eon ue d 186 MEN Ip COMIMANGE 2242 4p sabiera RS KPAG este 43A EN ARP YES 186 config vlan ip command uncus acteurs Cer paca occ BA chen KC hc 186 show vlan info ip command cc cece eue Rem a eR eS 187 IP ARP COM INIA 4 starre t RC ero So e BNG GR Sp ooo 188 GENUA NP rca cT ETT TI 1 701 1 1 TIT 189 config ip arp static mosstmage sara rara rara eee ee EXER E eR 190 show Ip ap commands iix qa db SG RER CR CA a d ep dd dg 191 show ip ap info command ciccuaasess resamesq CeXexereeedqeus 191 ethernet Ip arp commands saassrerasveserasea resa rakk arie p CREE ERAS 192 config ethernet ip arp command cose keke kee ee eek ee A 193 show parts info arp command s arran e RR Rm 193 van ip arp general commands iisissoe repe hr nun EDNA 194 cong vlan ip SP Command iuouaanesxark c e ARR XA RR ARORROR RODA CR ACA CR RG 194 show vlan info arp COMMAND aar anar ce xem mk kx meds 195 DHCP delay COMMAND ausu es wise EE parato d d a 196 contig ip dhep relay commands 2a maa eae ede eeewad es raes Na d rar gea 197 show ip dhcp commands sas coste vaat Sede ERE X242 telden 197 show ip dhcp fwd path command Xa a aan ea aan x ER Rad 198 show ip dhcp counters command a 198 config ethernet ip dhcp relay commands
195. ia has been damaged as a result of accident misuse or abuse The Licensee assumes all responsibility for selection of the Software to achieve Licensee s intended results and for the installation use and results obtained from the Software Nortel Networks does not warrant a that the functions contained in the software will meet the Licensee s requirements b that the Software will operate in the hardware or software combinations that the Licensee may select c that the operation of the Software will be uninterrupted or error free or d that all defects in the operation of the Software will be corrected Nortel Networks is not obligated to remedy any Software defect that cannot be reproduced with the latest Software release These warranties do not apply to the Software if it has been 1 altered except by Nortel Networks or in accordance with its instructions ii used in conjunction with another vendor s product resulting in the defect or iii damaged by improper environment abuse misuse accident or negligence THE FOREGOING WARRANTIES AND LIMITATIONS ARE EXCLUSIVE REMEDIES AND ARE IN LIEU OF ALL OTHER WARRANTIES EXPRESS OR IMPLIED INCLUDING WITHOUT LIMITATION ANY WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE Licensee is responsible for the security of its Reference for the Passport 1000 Series Command Line Interface Release 2 1 4 own data and information and for maintaining adequate procedures apart from th
196. ications through the Internet using the following URL www 1 fatbrain com documentation nortel URL Reference for the Passport 1000 Series Command Line Interface Release 2 1 32 Preface How to get help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller contact the technical support staff for that distributor or reseller for assistance If you purchased a Nortel Networks service program contact one of the following Nortel Networks Technical Solutions Centers Technical Solutions Center Telephone 33 4 92 966 968 800 2LANWAN or 800 252 6926 61 2 9927 8800 800 810 5000 EMEA North America Asia Pacific China An Express Routing Code ERC is available for many Nortel Networks products and services When you use an ERC your call is routed to a technical support person who specializes in supporting that product or service To locate an ERC for your product or service go to the www12 nortelnetworks com URL and click ERC at the bottom of the page 202086 C 33 Chapter 1 Passport basics The Nortel Networks Passport 1000 Series of switches provides high speed packet forwarding combined with the control of Internet Protocol IP routing Passport switches support Gigabit Ethernet technology as well as conventional 10 megabits per second Mb s and 100 Mb s environments combining layer 2 switching wi
197. id gt ip proxy enable config vlan lt vid gt ip proxy info config vlan lt vid gt ip resp disable config vlan lt vid gt ip resp enable config vlan lt vid gt ip resp info page 194 config vlan lt vid gt ip rip advertise when down lt enable disable gt config vlan lt vid gt ip rip auto aggr lt enable disable gt config vlan lt vid gt ip rip default listen lt enable disable gt config vlan lt vid gt ip rip default supply lt enable disable gt config vlan lt vid gt ip rip disable config vlan lt vid gt ip rip enable config vlan lt vid gt ip rip info config vlan lt vid gt ip rip listen lt enable disable gt config vlan lt vid gt ip rip manualtrigger config vlan lt vid gt ip rip poison lt enable disable gt config vlan lt vid gt ip rip supply lt enable disable gt config vlan lt vid gt ip rip trigger lt enable disable gt page 215 202086 C Appendix A CLI command list 333 Table 14 CLI command list continued command Page No config vlan lt vid gt ip vrrp lt vrid gt action lt action choice gt config vlan lt vid gt ip vrrp lt vrid gt address lt ipaddr gt config vlan lt vid gt ip vrrp lt vrid gt adver int lt seconds gt config vlan lt vid gt ip vrrp lt vrid gt critical ip lt ipaddr gt config vlan lt vid gt ip vrrp lt vrid gt delete config vlan lt vid gt ip vrrp lt vrid gt disable config vlan lt vid gt ip vrrp lt vrid gt enable
198. ig ip forwarding enable The port commands require the parameter lt ports gt as the port or list of ports on which you are running the command slot port slot port The config ethernet ports ip commands use the following options followed by config ethernet lt ports gt ip directed broadcast enable Enables directed broadcasts on an isolated routing port directed broadcast disable Disables directed broadcasts on an isolated routing port directed broadcast info Displays directed broadcast settings on an isolated routing port info Displays configured IP characteristics on the port Figure 101 create brouter lt ipaddr mask gt lt tag id gt Creates a brouter port single port VLAN at the specified IP address and subnet mask with the specified tag ID create lt ipaddr mask gt Assigns an IP address to a port Assigning an IP address to a port creates an isolated routing port removing it from any existing VLAN delete lt ipaddr gt Deletes an IP address from an isolated routing port Reference for the Passport 1000 Series Command Line Interface Release 2 1 186 Chapter 6 Configuring layer 3 protocol features Figure 102 Figure 101 config ethernet ip info command output Sub Context clear config monitor show test trace Current Context show ports info ip The show ports info ip command displays routing IP information
199. implementation of DiffServ as explained in the Reference for the Accelar 1000 Series Command Line Interface Software Release 2 0 required the config ip diffserv rule command Passport release 2 1 software provides the capability of using an IP filter to set the decimal values that are used in an IP protocol filter to set the DiffServ bits on an IP frame The DiffServ AND rule is first applied to the 8 bit field and acts as a mask This value is used to protect or mask previously set bits The DiffServ OR rules provide three values that can be used to set the DiffServ bits Note Differentiated Services requires B ARU3 hardware The rule is selected using the command config ip traffic filter filter lt fid gt modify diffserv rule none rulel rule2 rule3 gt For more information refer to page 301 The selected rule is logically ORed with the intermediate result after the original ANDing The result is set as the new DiffServ code point in the IP header of the filtered frame Table 11 shows how setting these values changes the TOS value Table 11 TOS values Setting Decimal Binary Original TOS value 37 00100101 AND rule 243 11110011 Intermediate result 33 00100001 OR rule 24 00011000 New TOS value 57 00111001 Reference for the Passport 1000 Series Command Line Interface Release 2 1 184 Chapter 6 Configuring layer 3 protocol features The config ip diffserv commands use the foll
200. ing the syntax pingipx lt ipxhost gt lt count gt s q t lt value gt where ipxhost is the IP address net node count is the number of times to ping the host 1 to 9999 s is a continuous ping q is quiet output same as non verbose mode t value is the no answer timeout value in seconds 1 to 120 Reset command The reset command resets the Passport 1000 Series switch and uses the most recently saved configuration file to reload the system parameters 202086 C Chapter 3 Run Time CLI description 87 Traceroute command The traceroute command traces a route to a remote host and is used primarily for troubleshooting It shows the routes that are used or it indicates from which route it can go no further if the remote network is not reachable The command syntax is traceroute lt ipaddr gt lt datasize gt m lt value gt p lt value gt q lt value gt w lt value gt v where ipaddr is the IP address of the switch datasize is the probe packet size 1 to 1464 m value is the maximum time to live TTL value 1 to 255 p lt value gt is the base UDP port number 0 to 4294967295 q lt value gt is the number of probes per TTL 1 to 255 w lt value gt is the wait time per probe 1 to 255 v is verbose mode showing all Figure 15 shows output for the traceroute command Figure 15 traceroute command output traceroute to 134 177 1 22 36 hops max 46 b
201. ip dvmrp interface command 0c cere eee 251 show Ip dump commands serre axes d rade douse antenne ide dead 251 Show ip dump info command ssszscesreseceautevRbbeeber33y r eta seede 251 show ip dvmrp interface command 0 0c cee eee eee 252 show ip dvmrp neighbor command eeen 252 show ip dvmrp next hop command oee eee 253 show ip dvmrp route command onee ee 253 config ethernet ip dvmrp commands neee 254 show ports Info dymip command nen a ond Re Ra e ae d RR RR 255 config vlan ip dump GOIHIOUS quosqeeceuadesssgexaqemam ad ad c m adea 256 show vlan info dvmrp command eee 256 Layer S ME ae EEE ERE a dex ERE Alet CE ade d alid den 257 contig ip 13 19mP commands ara nara xxm a kara me mes 257 config ip SGM interface ass ear arr ennn dta td 257 sod S gnp CORBIS EE EN Rr RA ERU E 258 show ip 13 19mp cache command sarren santa xy 258 show ip 13 19mPp group command oenen RR Rn 259 show ip 1S igmp interlace uotrcsdaaeesaqec Ears ARR Race SEK AG kEEG 259 config ethernet ip 13 igmp commands neee 260 show ports info I3 igmp command nare eden s k ere 261 contig van ip 3 igmp COMMANDS saar sane varend dere 261 show vlan info 13 igmp command ar aes earns SAAS dee EK eka Ge 263 IFA COIN Ss 22cm aanname sede 01 0 1077570 001 TITOLI 263 CONTIG PX commands ore ara a an ed ed B RE RE 264 GONNA vian iPx commands SJ ner ree de od e Ca ae ande d ac aon de ded ed 266 conig PX Spr COMMENCES vara vega Gude e RE Qe PST ABE Q
202. irror configuration information To monitor port 1 1 with output on port 1 16 the commands are Passport 1100 Config mirror inportl 1 1 enable Passport 1100 config mirror outport 1 16 enable Passport 1100 config mirror saveconfig true If using a network sniffer connect the sniffer to port 1 16 show mirrorinfo command The show mirrorinfo command displays information about mirrored ports on the switch Figure 59 shows output for the show mirrorinfo command Reference for the Passport 1000 Series Command Line Interface Release 2 1 146 Chapter 5 Configuring layer 2 features Figure 59 show mirrorinfo command output TYPE PORTS STATUS inport1 8 8 false inport2 8 8 false outport 6 6 false saveconfig false MLT commands The MLT commands control MultiLink Trunking MLT on the switch MLT is a point to point connection that aggregates multiple ports so that they logically act like a single port with the aggregated bandwidth Note Implementation of MLT requires hardware that is ARU2 or above A or B modules or later config mit commands The config mlt commands set up MLT on the switch and have the parameter mid forthe MLT ID 1 to 8 and the following options config mlt lt mid gt followed by info Displays current settings for the MLT Figure 60 add info Displays ports and VLANs added to the MLT Figure 61 remove info Displays the ports
203. is more than one option You must choose only one of the options Do not type the braces when entering the command Example If the command syntax is show ip alerts routes you must enter either show ip alertsorshow ip routes but not both Indicate optional elements in syntax descriptions Do not type the brackets when entering the command Example If the command syntax is show ip interfaces alerts you can enter either show ip interfaces or show ip interfaces alerts Indicate that you repeat the last element of the command as needed Example If the command syntax is ethernet 2 1 lt parameter gt lt value gt you enter ethernet 2 1 and as many parameter value pairs as needed 202086 C Preface 29 italic text plain Courier text separator 5 vertical line 1 Related publications Indicates new terms book titles and variables in command syntax descriptions Where a variable is two or more words the words are connected by an underscore Example If the command syntax is show at lt valid routes valid route is one variable and you substitute one value for it Indicates command syntax and system output for example prompts and system messages Example Set Trap Monitor Filters Shows menu paths Example Protocols 5 IP identifies the IP command on the Protocols menu Separates choices for command keywords and arguments Enter only one of the choices Do not type the vertica
204. ise network VRRP parameters are set on an isolated routing port or on a VLAN Note In A ARU2 hardware four VRRP interfaces isolated routing ports or VLANs are allowed per switch and all virtual router IDs must be unique In B ARU3 hardware a maximum of 255 VRIDs can be configured config ip vrrp commands Use the config ethernet lt ports gt ip vrrp lt vrid gt holddown timer lt seconds gt command to configure the delay timer Use the config vlan lt vid gt ip vrrp lt vrid gt holddown timer lt seconds gt command to configure the VLANs You may enter from 0 to 21600 seconds You can monitor the main or extended VRRP statistics using the monitor ports stats vrrp extended ports or the monitor ports stats vrrp main ports commands You can also show the statistics in either mode by using the show ports stats vrrp extended lt ports gt command or the show ports stats vrrp main lt ports gt command To manually override the delay timer and force preemption for a port using the CLI use the config ethernet port ip vrrp vrid action none preemptHoldDownTimer gt command To force preemption for a VLAN usethe config vlan vid ip vrrp vrid action none preemptHoldDownTimer gt command 202086 C Chapter 6 Configuring layer 3 protocol features 241 The config ip vrrp commands use the following options config ip vrrp followed by info Displays whether global send trap
205. ist of CLI commands with approximate page references for the beginning pages of further explanations Commands listed in boldface type in Table 14 indicate commands that are new or revised Commands that were in the previous release or that have changed in syntax or in position in the command tree but add no new functionality are listed in normal type Note This information is presented for reference only and should not be gt considered an exact representation Table 14 CLI command list box command Page No syntax page 78 back boot lt devfile gt config lt value gt ip lt value gt file lt value gt y page 79 Reference for the Passport 1000 Series Command Line Interface Release 2 1 310 Appendix A CLI command list Table 14 CLI command list continued config cli more lt true false gt config cli motd add lt string gt config cli motd displaymotd lt true false gt config cli motd delete config cli motd info config cli passwordprompt lt string gt command Page No clear ip arp ports lt port gt page 80 clear ip arp vlan lt vid gt clear ip route ports lt port gt clear ip route vlan lt vid gt clear igmp snoop groups lt vid gt clear igmp snoop mrouter lt vid gt clear ports stats lt ports gt config cli banner add lt string gt page 101 config cli banner default banner lt true false gt config cli banner delete config
206. ith dynamic entries which are learned dynamically ports is the port list slot port slot port query interval seconds Sets the query interval in seconds the time between queries sent to the host and determines the multicast group membership timeouts This should be the same value as that of the multicast router The range is 1 to 65535 The default value is 125 seconds report proxy enable disable gt Enables or disables the IGMP report proxy feature When enabled reports are forwarded from hosts to the multicast router once per group per query interval When disabled all reports from different hosts are forwarded to multicast routers which means that more than one group report may be forwarded for the same multicast group per query interval The default is enabled robust value lt integer gt Robust value is used to determine group membership timeouts It should be set to that of the multicast router in the network range 2 to 255 The default is 2 Reference for the Passport 1000 Series Command Line Interface Release 2 1 170 Chapter 5 Configuring layer 2 features config vlan lt vid gt igmp snoop followed by sender flush lt Group IP Address gt lt ports gt lt Host IP Address gt Deletes IGMP senders for the specified groups This action takes place immediately state lt enable disable gt Enables or disables the IGMP snooping fe
207. ity lt value gt retry lt value gt timeout lt value gt enable lt value gt config radius server delete lt ipaddr gt config radius server info config radius server set lt ipaddr gt secret lt value gt ports lt value gt priority lt value gt retry lt value gt timeout lt value gt enable lt value gt config mlt mid add info page 146 config mlt mid add ports lt ports gt config mlt mid add vlan lt vid gt config mlt mid create config mlt mid delete config mlt mid info config mlt mid name lt string gt config mlt mid remove info config mlt mid remove ports ports config mlt mid remove vlan vid config mlt mid perform tagging lt enable disable gt config rmon disable page 109 config rmon enable config rmon info config setdate page 110 Reference for the Passport 1000 Series Command Line Interface Release 2 1 326 Appendix A CLI command list Table 14 CLI command list continued command Page No config stg lt sid gt add ports lt value gt config stg lt sid gt create lt ports gt mac lt value gt vlan lt value gt config stg lt sid gt delete config stg lt sid gt forward delay lt timeval gt config stg lt sid gt group stp lt enable disable gt config stg lt sid gt hello interval lt timeval gt config stg lt sid gt info config stg lt sid gt max age lt timeval gt config stg lt sid gt
208. ity to a management station running Device Manager on one of the supported platforms Device Manager is the most versatile management tool in the Passport 1000 Series switch suite It provides all the functionality you need to manage a single device including the ability to create policy based virtual LANs VLANs For more information about using Device Manager refer to Reference for Passport Management Software Switching Operations and Reference for Passport Management Software Routing Operations 202086 C Chapter 1 Passport basics 35 Boot Monitor command line interface The Boot Monitor command line interface CLI contains commands that enable you to configure boot options and manage files in flash memory Changes that you create and save within the Boot Monitor CLI are boot choices flags IP configuration and Trivial File Transfer Protocol TFTP information For the Boot Monitor command list enter help at the monitor prompt For more information about the Boot Monitor CLI refer to Chapter 2 Boot Monitor command line interface Run Time command line interface The Run Time CLI performs most Passport management tasks To access the Run Time CLI you need a direct connection to the switch from a terminal or PC Use a null modem cable to connect the console port DTE DB 9 male interface to a DTE terminal or PC Communication parameters are as follows 9600 bits per second bps e 8 data bits e No parity e One s
209. l line when entering the command Example If the command syntax is show ip alerts routes you enter either show ip alerts or show ip routes but not both For more information about using a Passport 1000 Series switch or other Passport switches refer to the following publications e Networking Concepts for the Passport 1000 Series Switch part number 205588 B Contains general information and descriptions about how the Passport switch handles various networking features such as VLANs MultiLink Trunking OSPF RIP IPX and so forth e Reference for Passport Management Software Switching Operations part number 205586 B Describes how to use Device Manager to configure and manage layer 2 switching functions with the Passport switch including procedures and illustrations of pertinent screens Reference for the Passport 1000 Series Command Line Interface Release 2 1 30 Preface e Reference for Passport Management Software Routing Operations part number 205587 B Describes how to use Device Manager to configure and manage layer 3 routing functions with the Passport switch including procedures and illustrations of pertinent screens e Installing the Passport 1000 Series Chassis part number 893 01051 E Outlines the procedures for installing and booting your Passport switch and basic switch configuration as well as instructions for installing the Passport Management Software e Release Notes for the Passport
210. lan fdb entry info command output 167 Figure 83 config vlan fdb filter info command output aa 167 Figure 84 config vlan fdb filter notallowfrom info command output 167 Figure 85 config vlan fdb static info command output 168 Figure 86 config vlan igmp snoop info command output 171 Figure 87 show vlan info snoop command output a 172 Figure 88 show vlan igmp snoop access list command output 172 Figure 89 show vlan igmp snoop groups command output 173 Figure 90 show vlan igmp snoop senders info command output 174 Figure 91 show vlan igmp snoop static command output 174 Figure 92 config ip info command output 2 sossoso rr n RR RES 179 Figure 93 config ip forwarding info command output ne 179 Figure 94 config ip route discovery info command output 179 Figure 95 config ip static route info command output 180 Figure 96 show ip forwarding command output a 180 Figure 97 show ip interface command output aaneen 181 Figure 98 show ip route discovery command neen 181 Figure 99 show ip route info command output nee 182 Reference for the Passport 1000 Series Command Line Interface Release 2 1 22 Figures Figure 100 Figure 101 Figure 102 Figure 103 Figure 104 Figure 105 Figure 106 Figure 107 Figure 108 Figure 109 Figure 110
211. led on all ports No interfaces assigned IP addresses Traffic priority for all ports set to normal priority All ports as nontagged ports The boot configuration determines whether a switch configuration is loaded and you can bypass loading the switch configuration To bypass loading the switch configuration in the Boot Monitor CLI 1 2 Enter the flags command You are prompted Do you want to use the factory default configuration y n Enter y To bypass loading the switch configuration in the Run Time CLI gt Enter the config sys set flags factory default true command When you bypass the configuration the switch boots using the factory default configuration except the boot configuration settings are loaded in stage 2 Bypassing the switch configuration does not affect the saved switch configuration the configuration is not loaded Reference for the Passport 1000 Series Command Line Interface Release 2 1 40 Chapter 1 Passport basics Flash PCMCIA file system This section describes the flash PCMCIA file system in a Passport switch running release 2 X software The flash file system in a Passport 1000 Series switch holds executable images and switch configuration The following sections are included e Flash memory organization next e File types on page 41 e Devices and file names on page 43 e File system commands on page 45 Flash memory organization The Passport switch ha
212. lowing options config ip 13 igmp interface lt ipaddr gt followed by info Displays the settings of the IGMP interface last memb query int Sets the length of time in seconds an entry lt seconds gt remains in the multicast table before timeout The range is 1 to 255 with a default value of 1 query interval lt seconds gt Sets the frequency in seconds at which host query packets are transmitted on the interface The range is 1 to 65535 with a default of 125 Reference for the Passport 1000 Series Command Line Interface Release 2 1 258 Chapter 6 Configuring layer 3 protocol features config ip 13 igmp interface lt ipaddr gt followed by query max resp lt integer gt Sets the maximum response time in seconds advertised in IGMPv2 queries on the interface Smaller values allow a router to prune groups faster The range is 1 to 255 with a default of 10 robustval lt integer gt Allows tuning for the expected packet loss of a network The range is 2 to 255 with a default of 2 Increase the value if the network has a high loss rate version lt integer gt Sets the version 1 or 2 of IGMP that is running on the interface For IGMP to function correctly all routers on a LAN must use the same version The default is IGMPv1 for A modules and IGMPv2 for B modules show ip 13 igmp commands The show ip 13 igmp commands display information about IGMP on the switch
213. lowtojoin remove N A Figure 76 config vlan srcmac info command output e Sub Context clear config monitor show test trace Current Context add remove N A Ne 202086 C Chapter 5 Configuring layer 2 features 161 show vlan general commands The show vlan general commands provide configuration information about all VLANs on the switch or specified VLANs show vlan info command The show vlan info command displays entries for the MAC table show vlan info followed by manual edit mac Displays entries that are manually entered into the allowed MAC table autolearn mac Displays entries that are autolearned by the switch one shot or continuous for the allowed MAC table show vlan info basic command The show vlan info basic command displays the basic configuration for all or the specified VLAN The command uses the syntax show vlan info basic lt vid gt Figure 77 shows output for the show vlan info basic command Figure 77 show vlan info basic command output ULAN STG ID NAME TYPE ID PROTOCOLID SUBNETADDR SUBNETHASK 1 Default byPort 1 none N A N A 2 ULAN 2 byIpSubnet 2 none 168 168 1 6 255 255 255 6 45 MM 16 byPort 4 None N A N A 75 ubs byPort 5 none N A N A 76 vines byProtocolld 1 vines N A N A 77 ipx882dot2 byProtocolld 1 ipx862dot2 N A N A 7 brouter byProtocolld 6 ip N A N A E Reference for the Passport 1000 Series Command Line Interface Rele
214. lt value gt ip lt value gt vian lt value gt ports lt value gt mit lt value gt config ip arp static mcastmac delete lt ipaddr gt config ip arp static mcastmac info page 190 config ip default ttl seconds page 178 config ip dhcp relay create fwd path agent value server value mode lt value gt state value config ip dhcp relay enable fwd path agent value server value config ip dhcp relay delete fwd path agent value server value config ip dhcp relay disable fwd path agent value server value config ip dhcp relay info config ip dhcp relay mode mode agent value server value page 197 config ip diffserv and mask lt integer gt config ip diffserv info config ip diffserv or rule1 lt integer gt config ip diffserv or rule2 lt integer gt config ip diffserv or rule3 lt integer gt config ip diffserv tos priority enable config ip diffserv tos threshold integer page 182 Reference for the Passport 1000 Series Command Line Interface Release 2 1 316 Appendix A CLI command list Table 14 CLI command list continued command Page No config ip dvmrp disable config ip dvmrp enable config ip dvmrp info config ip dvmrp interface lt ipaddr gt disable config ip dvmrp interface lt ipaddr gt enable config ip dvmrp interface lt ipaddr gt info config ip dvmrp interface lt ipaddr gt metric lt cost gt config ip dvmr
215. lters If a filter ID fid is entered data is displayed for the specific filter Otherwise all filters are shown The command syntax is show ip traffic filter destination lt fid gt show ip traffic filter disabled command The command displays information about the disabled filters on the switch If port numbers are entered information is displayed only for those ports The command syntax is show ip traffic filter disabled lt ports gt show ip traffic filter enabled command The show ip traffic filter enabled command displays information about the enabled filters on the switch or on specified ports The command syntax is show ip traffic filter enabled lt ports gt show ip traffic filter global command The show ip traffic filter global command displays global filters for a switch or for specified filter IDs The command syntax is show ip traffic filter global lt fid gt 202086 C Chapter 7 Configuring IP flow policies and filters 303 show ip traffic filter info global set command The show ip traffic filter info global set command displays information about a specified global filter list or all global filter lists on the switch The command syntax is show ip traffic filter info global set lt id gt show ip traffic filter info list command The show ip traffic filter info list command displays traffic filter information for a specified list or for all lists The command syntax is show ip
216. m and station requirements next e Accessing the Boot Monitor CLI on page 56 Boot monitor command list on page 56 System and station requirements You can use any terminal or personal computer PC with a terminal emulator as the CLI command station The terminal requires the following 9600 bits per second b s 8 data bits 1 stop bit no parity no flow control e Serial terminal emulation program such as Terminal or Hyperterm for Windows NT or Hyperterm for Windows 95 or Windows 98 e Cable and connector to match the Passport switch male DTE connector DB 9 Reference for the Passport 1000 Series Command Line Interface Release 2 1 56 Chapter 2 Boot Monitor command line interface Accessing the Boot Monitor CLI To access the Boot Monitor CLI do one of the following Interrupt the boot sequence by pressing a key at the following prompt Press any key to stop autoboot or e From the run time CLI enter the following commands config sys set flags autoboot false save Then reboot the system When you enter the Boot Monitor CLI the following prompt displays monitor gt Boot monitor command list For a boot monitor command list at the monitor prompt enter help commands For information about the boot load process see Boot sequence on page 36 202086 C Chapter 2 Boot Monitor command line interface 57 Table 7 lists the Boot Monitor CLI commands and the reference page n
217. mated number of seconds it takes to transmit a link state update over the interface 1 to 3600 Note Both sides of the OSPF connection must use the same authentication type and key show ip ospf commands The show ip ospf commands are used to display the switch OSPF parameters show ip ospf area command The show ip ospf area command displays the OSPF area parameters Figure 131 shows output for the show ip ospf area command Figure 131 show ip ospf area command output gen 11888 show ip ospf area Ospf Area AREA ID STUB AREA NSSA IMPORT SUM ACTIVE IFCNT 6 6 6 6 false false true 6 STUB COST SPF RUNS BDR RTR CNT ASBDR RTR CNT LSA_CNT LSACK SUM Reference for the Passport 1000 Series Command Line Interface Release 2 1 226 Chapter 6 Configuring layer 3 protocol features show ip ospf ase command The show ip ospf ase command displays the OSPF Autonomous System External ASE link state advertisements Information is displayed for all or a specified metric type The command syntax is show ip ospf ase metric type lt value gt detail Figure 132 shows output for the show ip ospf ase command Figure 132 show ip ospf ase command output Passport 118814 show ip ospf ase show ip ospf default metric command The show ip ospf default metric command displays the OSPF default metric information for each type of port Figure 133 shows output for the show ip ospf default metric command Fig
218. me CLI description Navigation commands The following navigation commands are available using the Passport Run Time CLI Navigation command Meaning syntax Displays all commands available at this level on the CLI tree back Takes you back one level box Returns to the top or box level cwc changes the current working context pwc Prints the current working context toplevel Returns to the top level Goes back one level same as the back command General commands The following general commands are available in the Passport Run Time CLI General command Meaning boot Reboots the system page 79 clear Clears statistics or flushes entries from a table page 80 date Displays the calendar time The command is valid only on Passport switches with a real time clock page 81 help Lists the commands in the CLI or displays syntax information for a specific command page 81 history Lists the commands you have already entered in the current CLI session and lets you modify and reenter commands page 84 login exit quit logout Ends the CLI session or allows you to change the access level page 85 202086 C Chapter 3 Run Time CLI description 79 General command Meaning ping Tests the network connectivity between the switch and another networking device page 85 pingipx Tests IPX network connectivity page 85
219. member from a VLAN bridge where mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 static add lt mac gt port lt value gt Adds a static member to a VLAN bridge mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 port value is the slot port slot port slot port static info Displays static members added or removed Figure 85 static remove lt mac gt Removes a static member from a VLAN where mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 202086 C Chapter 5 Configuring layer 2 features 167 Figure 82 config vlan fdb entry info command output Sub tontext clear config monitor show test trace Current Context aging time flush monitor priority monitor priority monitor priority monitor priority monitor priority 366 N A false low mac status false low mac status false low mac status false low mac status false low mac status 88 88 79 601 02 03 mgmt 88 88 81 bc ea 88 learned 88 88 81 bc ea 81 learned 88 88 81 c1 9b 81 learned 88 88 81 c1 f6 81 learned s Figure 83 config vlan fdb filter info command output Sub Context clear config monitor shou test trace Current Context add remove N A Figure 84 config vlan fdb filter notallowfrom info command output Sub Context clear config monitor show test trace Current Context add remove N A R
220. mit interval seconds config ip ospf area lt area gt virtual interface nbr transit delay seconds config ip ospf as boundary router lt enable disable delete gt page 222 config ip ospf auto vlink lt enable disable delete gt config ip ospf default metric ethernet lt value gt fast ethernet lt value gt gig ethernet lt value gt config ip ospf disable config ip ospf enable config ip ospf holddown seconds page 218 Reference for the Passport 1000 Series Command Line Interface Release 2 1 318 Appendix A CLI command list Table 14 CLI command list continued command Page No config ip ospf host route lt ipaddr gt create page 218 config ip ospf host route lt ipaddr gt delete config ip ospf host route lt ipaddr gt info config ip ospf host route lt ipaddr gt metric lt metric gt config ip ospf info config ip ospf interface lt ipaddr gt admin status lt enable disable gt page 221 config ip ospf interface lt ipaddr gt area lt area gt config ip ospf interface lt ipaddr gt authentication key lt authentication key gt config ip ospf interface lt ipaddr gt authentication type lt auth type gt config ip ospf interface lt ipaddr gt dead interval lt seconds gt config ip ospf interface lt ipaddr gt delete message digest key lt md5 key id gt config ip ospf interface lt ipaddr gt hello interval lt seconds gt config ip ospf interface lt ip
221. mmand The show ip dhep fwd path command displays DHCP routing information including interface server enabled disabled and mode forward BootP messages only DHCP messages only or both show ip dhcp counters command The show ip dhep counters command displays DHCP counter information including the number of requests and replies for each interface config ethernet ip dhcp relay commands The config ethernet ip dhep relay commands allow you to view and configure DHCP parameters on specified isolated routing ports The port commands require the parameter lt ports gt as the port or list of ports on which you are running the command The command syntax is slot port slot port The config ethernet ip dhep relay commands use the following options config ethernet lt ports gt ip dhcp relay followed by info Displays the current port DHCP configuration Figure 113 broadcast enable disable Sets whether the server reply is sent as a broadcast or unicast back to the end station disable Disables DHCP relaying on the port This is the default state enable Enables DHCP relaying on the port max hop lt max hop gt Sets the maximum number of hops before a BootP DHCP packet is discarded 1 to 16 The default is 4 202086 C Chapter 6 Configuring layer 3 protocol features 199 followed by config ethernet lt ports gt ip dhcp relay min sec lt min sec gt
222. n addition to the area reserved in Boot Flash for the switch configuration you can store and use configuration files in System Flash and PCMCIA Script files Script files are ASCII based text files containing CLI commands that are read by the switch The commands are executed as though they are typed during a console session 202086 C Chapter 1 Passport basics 43 Trace logs For debugging purposes the switch creates a trace log with diagnostic messages The trace log is not normally activated so it is not normally accessed by users The file system commands refer to the reserved trace area for the trace log Devices and file names The Passport 1000 Series Switch I C file system supports file naming and a device file number referencing scheme There are also reserved device names for reserved areas in flash memory System Flash and PCMCIA file names System Flash and PCMCIA support file names A file name can be up to 31 characters and can include printable characters and spaces File names must begin with a nonnumeric character The file name format is where device is the file name device indicates whether the file resides on flash or PCMCIA filename is the name of the file If the file name includes spaces enclose the entire file name in quotes when used as an argument for a command For example entering the command copy flash acc2 x x pcmcia old image file copies the acc2 x x in System Flash t
223. n info fdb static lt vid gt show vlan info vrrp main lt vid gt show vlan info vrrp extended lt vid gt page 245 Reference for the Passport 1000 Series Command Line Interface Release 2 1 342 Appendix A CLI command list Table 14 CLI command list continued command Page No show vlan igmp snoop access list lt vid gt lt Group Address gt show vlan igmp snoop all access list show vlan igmp snoop groups lt vid gt show vlan igmp snoop senders info lt vid gt show vlan igmp snoop static lt vid gt page 172 show web server page 126 squeeze lt device gt telnet lt ipaddr gt page 78 test artable test fabric test loopback ports lt int ext gt test stop artable test stop fabric test stop loopback lt ports gt page 92 toplevel page 78 trace clear trace level lt modid gt lt level gt trace off trace screen lt setting gt trace info tail traceroute lt ipaddr gt lt datasize gt m lt value gt p lt value gt q lt value gt w lt value gt v page 94 202086 C 343 Appendix B Port numbering and MAC address assignment Caution IP Multicast with IGMP and DVMRP is not supported on this platform This appendix explains how ports are numbered on the chassis It also explains how MAC addresses are assigned to MAC entities in the Passport 1000 Series switch Port
224. n key specified by the area authentication key command If MD5 they must contain the md5 key dead interval lt seconds gt Sets the dead interval for the virtual interface which is the number of seconds that a router s hello packets have not been seen before its neighbors declare the router down 1 to 214783647 This value must be at least four times the hello interval value The default is 60 delete message digest key lt md5 key id gt Deletes the specified md5 key ID from the configured md5 keys hello interval lt seconds gt Sets the hello interval for the virtual interface which is the length of time in seconds between the hello packets that the router sends on the interface 1 to 65535 The default is 10 add message digest key lt md5 key id gt md5 key lt value gt Adds an md5 key to the interface Two md5 keys can be configured to an interface Multiple md5 key configurations are used for md5 transitions without bringing down an interface 202086 C Chapter 6 Configuring layer 3 protocol features 225 config ip ospf area lt area gt virtual interface lt nbr gt followed by retransmit interval Sets the retransmit interval for the virtual interface lt seconds gt which is the number of seconds between link state advertisement retransmissions 1 to 3600 transit delay lt seconds gt Sets the transmit delay for the virtual interface which is the esti
225. n of OSPF virtual links when required The default is disable default metric ethernet value fast ethernet value gig ethernet lt value gt Sets the OSPF default metrics for 10 Mb s Ethernet default is 100 100 Mb s fast Ethernet default is 10 Gigabit gig Ethernet default is 1 Range is 1 to 65535 disable Globally disables OSPF enable Globally enables OSPF holddown lt seconds gt Sets the OSPF holddown timer value in seconds The range is 3 to 60 default is 10 router id lt ipaddr gt Sets the OSPF router ID IP address trap lt enable disable gt Enables or disables issuing traps relating to OSPF Reference for the Passport 1000 Series Command Line Interface Release 2 1 220 Chapter 6 Configuring layer 3 protocol features Figure 129 config ip ospf info command output Passport 1188i config ip ospf info Sub Context clear config monitor show test trace Current Context admin state disable as boundary router disable default metric ethernet 188 fast ethernet 18 gig ethernet 1 auto ulink disable holddoun 18 trap disable router id 22 131 38 3 T enable false P config ip ospf host route command Use the config ip ospf host route command to configure OSPF host route parameters The command syntax includes the IP address of the host router and the following parameters config ip
226. nclude the following options config ip policy netlist lt listid gt followed by info Displays settings for the IP policy network list Figure 184 add network lt ipaddr mask gt Adds a network with the IP address and subnet mask to the policy network list create Creates a policy network list delete Deletes the policy network list name lt name gt Assigns a name to the policy network list re lt ipaddr Removes an address from the policy address list masK gt Figure 184 shows output for the config ip policy netlist info command Figure 184 config ip policy netlist info command output Passport 118UH Contig ip policy netlist into object lt listid gt info is out of range object lt listid gt required lt listid gt list id 1 1666 policy netlist commands add network add network to network list create create a network list delete delete a network list info show current level parameter settings and next level directories name set network list name remove network remove network from network list Reference for the Passport 1000 Series Command Line Interface Release 2 1 282 Chapter 7 Configuring IP flow policies and filters config ip policy ospf command The config ip policy ospf commands are used to globally apply the configured OSPF accept or announce policies After you set up OSPF policies you must apply the policies before they take effect The comm
227. nfig ethernet ports unknown mac discard add allow mac mac lt none monitor gt lt low high gt config ethernet lt ports gt unknown mac discard activation lt enable disable gt config ethernet lt ports gt unknown mac discard autolearn lt enable disable gt config ethernet lt ports gt unknown mac discard autolearn mode lt one shot continuous gt config ethernet lt ports gt unknown mac discard default autolearn monitor lt none monitor gt config ethernet lt ports gt unknown mac discard default autolearn priority lt low high gt config ethernet lt ports gt unknown mac discard info config ethernet lt ports gt unknown mac discard lock autolearn mac lt enable disable gt config ethernet lt ports gt unknown mac discard remove allow mac lt mac gt config ethernet lt ports gt unknown mac discard violation downport lt enable disable gt config ethernet lt ports gt unknown mac discard violation logging lt enable disable gt config ethernet ports unknown mac discard violation sendtrap lt enable disable gt page 140 config info page 110 202086 C Appendix A CLI command list 315 Table 14 CLI command list continued command Page No config ip arp add ports lt value gt ip lt value gt mac lt value gt vlan lt value gt config ip arp aging lt seconds gt config ip arp delete lt ipaddr gt config ip arp info page 189 config ip arp static mcastmac add mac
228. nfig ipx sap info command 202086 C Chapter 6 Configuring layer 3 protocol features 271 Figure 178 config ipx sap info command output Passport 12004 config ipx sap info E Current Context create delete N A default delay default hold multiplier default interval hold multiplier update delay im update interval Sub Context clear config monitor shou test trace 56 msec 3 66 sec pr config ipx sap default The config ipx sap default command sets the global default values using the following options config ipx sap default followed by delay lt delay timer gt Sets the delay timer default values in milliseconds The range is 1 to 1000 the default is 50 ms hold multiplier lt age multiplier gt Sets the hold multiplier default value The range is 1 to 2147483647 the default is 3 default interval lt interval timer gt Sets the interval timer default values in seconds The range is 1 to 2147483647 the default is 60 seconds Reference for the Passport 1000 Series Command Line Interface Release 2 1 272 Chapter 6 Configuring layer 3 protocol features config ipx sap command The config ipx sap command sets the IPX SAP parameters using the following options config ipx sap followed by create lt service type gt lt service name gt lt ipxhost gt lt socket number gt lt hop count gt Creates a s
229. nfiguration create lt IPX network number gt Creates a protocol based VLAN using one of the lt encapsulation gt supported encapsulation methods as the protocol network number is the destination IPX network number for the route e vid is the VLAN ID in a range from 1 to 4095 e cencapsulations is ipx802dot3 ipx802dot2 ipxSnap pxEthernet2 gt delete Deletes the specified IPX network lt IPX network number gt 202086 C Chapter 6 Configuring layer 3 protocol features 267 config ipx set commands The config ipx set commands configure maximum entries for IPX parameters and use the following options config ipx set followed by info Displays current maximum entries set on the switch Figure 175 max route lt max entries gt Sets the maximum number of IPX routes that can be learned by the switch Note To take effect the configuration must be saved and the switch reset max sap lt max entries gt Sets the maximum number of IPX services that can be learned by the switch Note To take effect the configuration must be saved and the switch reset max static route lt max entries gt Sets the maximum number of static IPX routes that can be configured on the switch Note To take effect the configuration must be saved and the switch reset max static sap lt max entries gt Sets the maximum number of static IPX services that can be config
230. nfigured on the switch If an ID is not entered the display provides information for all RIP accept policies on the switch If a policy ID is entered the display lists information for only that policy The command syntax is show ip policy rip accept info id lt value gt show ip policy rip accept lists command The show ip policy rip accept lists command displays the accept lists on the switch in the syntax If an ID is not entered all OSPF accept lists are displayed If an ID is entered only that list is displayed The command syntax is show ip policy ospf accept lists id lt value gt show ip policy rip accept match network command The show ip policy rip accept match network command lists the policies that match the specified network with a range or exact match The command syntax is show ip policy rip accept match network lt value gt show ip policy rip announce info command The show ip policy rip announce info command displays information about RIP announce policies on the switch or about a specified RIP announce policy Reference for the Passport 1000 Series Command Line Interface Release 2 1 294 Chapter 7 Configuring IP flow policies and filters IP filters The command syntax is show ip policy rip announce info id lt value gt show ip policy rip announce lists command The show ip policy rip announce lists command displays information about RIP announce policy lists on the switch or about a
231. nfiguring 264 IPX RIP commands 268 IPX SAP commands 270 K keystrokes Run Time CLI 72 L 13 IP IGMP commands 257 layer 2 read write security access 52 layer 3 IGMP commands IP 257 port 260 show 258 VLAN 261 layer 3 read write security access 52 link state database 230 log commands Boot Monitor CLI 61 configure 106 show 107 log files 42 login command 85 login names default 52 logout command 85 MAC address assignment 344 management commands Boot Monitor CLI 60 Run Time CLI 88 management tools 34 mirror commands 145 MLT commands configure 146 show 148 monitor commands 305 Multi Link Trunking See MLT commands multicast commands 246 N naming files 43 navigation commands 78 network boot option 59 network lists 281 NVRAM 44 O Open Shortest Path First See OSPF OSPF accept policy 282 OSPF announce policy 284 OSPF commands IP 219 port 232 234 show 225 switch 220 VLAN 237 P Passport Configuration Page 35 Passport models 33 password commands 104 passwords default 52 levels 53 Run Time CLI 71 PCMCIA boot option 59 PCMCIA cards 41 physical MAC address 346 ping command Boot Monitor CLI 65 Run Time CLI 85 202086 C Index 353 pingipx command 86 port ARP commands configure 193 show 193 port commands configure 127 129 185 layer 127 OSPF configure 232 OSPF show 234 show 129 139 186 VRRP 240 port DHCP commands configure 198 show 199 port DV
232. numbering Some screens contain fields for selecting ports A port number includes the slot location of the I O module in the chassis as well as the port s position in the I O module In the Passport 1200 Switch slots are numbered from top to bottom Figure 198 shows slot numbering for the Passport 1200 Switch Figure 198 Passport 1200 slots I O slot 1 Power I O slot 2 SENT I O slot 3 FB SSF CPU board FB SSF CPU board Power I O slot 6 ee I O slot 7 I O slot 8 7814EA Reference for the Passport 1000 Series Command Line Interface Release 2 1 344 Appendix B Port numbering and MAC address assignment In the Passport 1100 Switch or Passport 1150 Switch the modular slots are slots 1 and 2 and the internal ports belong to slot 3 Figure 199 shows how slots on a Passport 1100 chassis are numbered from left to right Figure 199 Passport 1100 slots Slot 1 Slot 2 Slot 3 Ports in the chassis and in all modules are numbered from left to right For example the second port in an I O module located in slot 1 is 1 2 Figure 200 shows port numbering on modules Figure 200 Port numbering on I O modules On all I O modules ports are numbered from left to right 10 10 10 10 29 d 38x 32x 59 DOGG 40 40 40 40 kag
233. o the file old image file on PCMCIA Duplicate file names are allowed on a device The file name with the highest file number the last nondeleted file is the active command file You can also reference a file on System Flash and PCMCIA according to the device on which it resides and its ordinal position on the device by entering the command lt device gt lt file gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 44 Chapter 1 Passport basics where device indicates whether the file resides on flash or PCMCIA filet is the file number on the device For example the first file on System Flash is flash 1 and the second file on PCMCIA is pemcia 2 You can abbreviate device names to two letters For example flash 2 and fl 2 refer to the same file Reserved devices The file system commands use device names or file names as arguments Reserved device names have special meaning when used as command arguments Table 2 describes the reserved command arguments and their meanings Table 2 Command arguments and meaning Command Arguments Meaning Config and nvram The config and nvram device names refer to the area of Boot Flash reserved for the switch configuration You can copy files to and from the config and nvram areas TFTP Use the tftp device name to copy files to and from a Trivial File Transfer Protocol TFTP server When the TFTP device is used as a source or destin
234. obustval lt integer gt config ethernet lt ports gt ip 13 igmp version lt integer gt config ethernet lt ports gt ip info config ethernet lt ports gt ip ospf enable config ethernet ports ip ospf advertise when down lt enable disable gt config ethernet lt ports gt ip ospf disable config ethernet lt ports gt ip ospf area lt ipaddr gt config ethernet lt ports gt ip ospf authentication key lt string gt config ethernet lt ports gt ip ospf authentication type lt auth type gt config ethernet lt ports gt ip ospf dead interval lt seconds gt config ethernet lt ports gt ip ospf hello interval lt seconds gt page 232 config ethernet lt ports gt ip ospf info config ethernet lt ports gt ip ospf metric lt cost gt config ethernet lt ports gt ip ospf priority lt integer gt config ethernet lt ports gt ip proxy disable config ethernet lt ports gt ip proxy enable config ethernet lt ports gt ip proxy info page 192 202086 C Appendix A CLI command list 313 Table 14 CLI command list continued command Page No config ethernet lt ports gt ip rip advertise when down lt enable disable gt config ethernet lt ports gt ip rip auto aggr lt enable disable gt config ethernet lt ports gt ip rip default listen lt enable disable gt config ethernet lt ports gt ip rip default supply lt enable disable gt config ethernet lt ports gt ip rip disable config ethernet
235. olicy policy 2 host 10 125 200 25 Passport 118884 config sys access policy policy 2 mode deny Passport 11884 config sys access policy policy 2 service rlogin enable Passport 118884 config sys access policy policy 2 service http enable Passport 11888 config sys access policy policy 2 service snmp enablefi The host 10 125 200 35 will not have switch access to HTTP SNMP and rlogin show sys access policy info command The show sys access policy info command displays information about the specified access policy or all access policies on the switch In Figure 35 the policy created in the example above is displayed The command syntax is show sys access policy info lt polname gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 114 Chapter 4 Configuring switch management Figure 35 show sys access policy info command output 7 hederen Id Name PolicyEnable Hode Service Precedence NetAddr NetMask TrustedHostfddr TrustedHostUserNane ficcessLevel Usage Ne Id Name PolicyEnable Mode Service Precedence NetAddr NetHask TrustedHostAddr TrustedHostUserName AccessLevel Usage off 1 default true allow http telnet snmp 128 none readWrite config sys set action commands The config sys set action commands set system action using the following options config sys set action followed by info
236. ommand eneen 162 show vlan info fdb entry command neen 162 show vlan info fdb filter command za een ee aceon gees REOR CORREO RR Rd 163 show vlan info fdb static command aaneen 163 show vlan info ports command KARA kk vasken ERR md same 164 show vlan info sremac command 2 cccccccneencgeee cng eek KE amende 164 config vlan fdb forwarding database commands en 165 config vlan igmp snoop commands uuu caus ss ennn dn ae 168 show vlan igmp snoop commands neee 171 show vlan info snoop command ee 171 show vlan igmp snoop access list command 0000000 172 show vlan igmp snoop all access list command 173 show vlan igmp snoop groups command eee eee eee 173 show vlan igmp 3N00p senders INO ses wennen snaar KNR es 173 show vlan igmp snoop static ois seeks 4 breed 424 IE ERE vekt 174 Eon vlan l k CSS BE uuu sanat lk IR RO Ca Rc ded GOS 174 202086 C Contents 11 Chapter 6 Configuring layer 3 protocol features 00 cece eee eee eee 177 IP OOH COMME 44 49 epu viaa me edad idu audit e eq rade 177 config Ip COMMANIS ne ree eere a eR x x Rem dee RR x ee RR x 178 Sharp ONE cae cece repe AA ashok ers 180 show ip forwarding command eneen 180 show ip interface command 00 cece ee ee 180 show ip route discovery command Xa 206052 cee eee ee eee 181 show ip route info command cece cede see ew cebu RE Ex Ew AGE ENG 181 config ip diffserv rule commands
237. ommands The spanning tree group commands configure parameters for a spanning tree group STG and for ports in that group It also allows you to enable or disable the Spanning Tree Protocol in an STG Reference for the Passport 1000 Series Command Line Interface Release 2 1 150 Chapter 5 Configuring layer 2 features config stg commands The config stg commands configure parameters for the spanning tree group with the defined spanning tree group ID lt sid gt is from I to 25 The commands use the following options config stg lt sid gt followed by info Displays characteristics of a spanning tree group add port lt ports gt Adds ports to a spanning tree group create lt ports gt mac lt value gt vlan lt value gt Creates a new spanning tree group delete Deletes a spanning tree group forward delay lt timeval gt Sets the bridge forward delay time in 1 100 seconds 400 to 3000 group st lt enable Tdi sable gt aa or disables a spanning tree on a specified TG hello interval lt timeval gt Sets the bridge hello time in 1 100 seconds 400 to 3000 max age lt timeval gt Sets the bridge maximum age time in 1 100 seconds 600 to 4000 priority lt number gt Sets bridge priority number 0 to 65535 remove ports lt value gt Removes ports from a spanning tree group trap stp lt enable disable gt Enables or disa
238. on IPX interfaces The following three timing parameters control IPX RIP behavior e Hold multiplier e Delay timer nterval timer 202086 C Chapter 6 Configuring layer 3 protocol features 269 If the global default parameters are going to be different from the factory default set the default parameters prior to setting individual interface parameters config ipx rip default command The config ipx rip default commands set the IPX RIP default values using the following options followed by config ipx rip default delay lt delay timer gt Sets the delay timer default values in milliseconds The range is 1 to 1000 the default is 50 ms hold multiplier lt age multiplier gt Sets the hold multiplier default value The range is 1 to 2147483647 the default is 3 interval lt interval timer gt Sets the interval timer default values in seconds The range is 1 to 2147483647 the default is 60 seconds config ipx rip info command The config ipx rip info command displays IPX RIP settings on the switch Figure 177 shows output for the config ipx rip info command Figure 177 config ipx rip info command output a Passport 1266 config ipx rip info Current Context default hold multiplier 3 hold multiplier state update delay C update interval Sub Context clear config monitor show test trace default delay 58 msec default interval 68 sec E
239. onfig ethernet info command output Sub Context clear config monitor show test trace UN Current Context Port 1 1 lock true auto negotiate true duplex half high priority false speed 18 unknown mac discard disable oversize frame disable default vlan id 1 tagged frames discard disable perform tagging disable untagged frames discard disable state up C linktrap enable F show ports commands The show ports commands display information about the switching setup operation and counters for all or specific ports Definitions for the displayed fields are in Reference for Passport Management Software Switching Operations The show ports commands relating to routing operation are listed in Chapter 6 Configuring layer 3 protocol features The following command topics are included in this section e show ports error collision command next e show ports error main command on page 131 e show ports error extended command on page 132 e show ports info config command on page 133 e show ports info interface command on page 134 Reference for the Passport 1000 Series Command Line Interface Release 2 1 130 Chapter 5 Configuring layer 2 features e show ports stats bridging command on page 135 e show ports stats interface main command on page 136 e show ports stats interface extended command on page 137 show ports error collision command The
240. onitor ports stats stg lt ports gt page 156 monitor ports stats vrrp extended lt ports gt page 243 monitor ports stats vrrp main lt ports gt page 243 Figure 196 shows output for the monitor mlt stats interface utilization command Figure 196 monitor mit stats interface utilization command output MLT INTERFACE UTILIZATION S H onitor Interval 5sec Monitor Duration 366sec MLT ID IN OCTETS OUT OCTETS IN UTIL OUT UTIL 1 5137408 17798464 6 6 2 6 6 6 6 3 6 6 6 6 4 6 6 6 6 7 5137536 17798528 6 8 8 8 8 8 Figure 197shows output for the monitor ports stats interface utilization command 202086 C Chapter 8 Monitor commands 307 Figure 197 monitor ports stats interface utilization command output t 3 1 3 2 3 3 3 4 3 5 3 6 3 7 3 8 3 9 3 18 3 11 3 12 3 13 3 14 3 15 N 3 16 PORT INTERFACE UTILIZATION ka onitor Interval 5sec Monitor Duration 3 sec PORT NUM IN OCTETS OUT OCTETS IN UTIL OUT UTIL 111613923 9326818 5141376 17811904 5141248 17811840 8 8 8 8 54179469954 4969856 8 8 8 8 8 8 pon o o Reference for the Passport 1000 Series Command Line Interface Release 2 1 308 Chapter 8 Monitor commands 202086 C 309 Appendix A CLI command list S Caution Nortel Networks does not recommend or support IP Multicast with IGMP or DVMRP on the Passport 1000 platform This appendix provides an alphabetic l
241. operation Then if a lower version of the module is inserted error messages will indicate that the module is not operable See Note on page 118 location lt location gt Sets the location for the switch ASCII string name lt prompt gt Sets the box or root level prompt name for the switch ASCII string portlock lt on off gt Turns the port locking on or off sendtrap lt true false gt Sets whether to send authentication failure traps snmp community lt ro 11 12 I3 rw rwa gt lt commstr gt Sets the SNMP community string for the selected community ro is read only rw is read write 12 is layer 2 read write 13 is layer 3 and layer 2 read write rwa is read write all Reference for the Passport 1000 Series Command Line Interface Release 2 1 118 Chapte r4 Configuring switch management followed by config sys set lt commstr gt snmp trap recv lt ipaddr gt lt v1 v2c gt Sets an SNMP trap receiver where lt ipaddr gt is the IP address a b c d v1 v2c is the version select version 1 or version 2c lt commstr gt is the input community string string topology lt on off gt Turns topology on or off snmp info Displays current SNMP settings Figure 39 Note Some features require specific hardware versions A ARU2 or B ARU3 If there is a A or lower module installed in the switch in order
242. or ping are enabled or disabled ping virtual addr Enables all interfaces to respond to virtual IP pings ess lt enable disable gt send trap Enables all interfaces to send traps lt enable disable gt config ethernet port ip vrrp commands The config ethernet port ip vrrp command sets VRRP on a port and uses the following options config ethernet lt ports gt ip vrrp lt vrid gt followed by info Displays the current port VRRP configuration Figure 149 action lt action choice gt Bypasses hold down timer address lt ipaddr gt Sets the IP address of the virtual router interface adver int lt seconds gt Sets the advertising interval in seconds which is the time interval between sending advertisement messages The value must be the same on all participating routers The range is 1 to 255 and the default is 1 critical ip lt ipaddr gt Sets the critical IP address for VRRP This address is an IP interface on the local router configured so that a change in its state causes a role switch in the virtual router for example from master to backup in case the interface went down delete Deletes the VRRP from the port disable Disables the VRRP on the port enable Enables VRRP on the port Reference for the Passport 1000 Series Command Line Interface Release 2 1 242 Chapter 6 Configuring layer 3 protocol features config ethernet
243. ort basics 53 Telnet and console passwords When a Passport 1000 Series Switch is accessed for management the user is prompted for a login name and password Table 6 lists the default login and password values for console and Telnet sessions Table 6 Login and password default values Access level Default login Default password Read only ro ro Layer 1 read write H H Layer 2 read write l2 I2 Layer 3 and layer 2 read write 13 13 Read write rw rw Read write all rwa rwa You can change logins and passwords only if you log in with Read Write All privileges rwa access level You can also change the login name for different modes When the CLI prompts for login and password the access level is set according to the login and password entered The login command allows you to log in again using a different login access by entering the user name and password Note The prompt remains at the same level that you were before logging in again The logout command allows you to log out and reenter at the top level prompt If you connect to the switch through Telnet the logout command terminates the Telnet session Reference for the Passport 1000 Series Command Line Interface Release 2 1 54 Chapter 1 Passport basics CLI commands to change the console Telnet password You can use the following commands to change the console Telnet login name and password for each login access level
244. osts forcing the members to continuously send their own reports It multicasts data only to the participating group members and to the multicast routers within the VLAN 202086 C Chapter 5 Configuring layer 2 features 169 The commands use the following options followed by config vlan lt vid gt igmp snoop info Displays IGMP snooping characteristics of the VLAN Figure 86 access list create lt GroupAddress gt lt HostAddress gt lt HostMask gt lt denyRX denyTX denyBoths Creates an access list to control access to IGMP group membership Group Address is the multicast group address of the multicast stream Host Address is the IP address of the host whose membership is being controlled The options are to deny receive mode deny transmit mode or deny both access list delete lt GroupAddress gt lt HostAddress gt lt HostMask gt Deletes the access list controlling IGMP group membership access list lt GroupAddress gt info Displays the access list for the specified multicast address access list lt GroupAddress gt mode lt HostMask gt lt denyRX denyTX denyBoths Sets the mode for a group address host mask to deny receive mode deny transmit mode or deny both mrouter lt ports gt Sets the ports directly and indirectly attached to a multicast router so the multicast data is forwarded to the router These are static entries not to be confused w
245. oute 202086 C Chapter 6 Configuring layer 3 protocol features 179 config ip followed by static route enable Enables a static route lt ipaddr mask gt lt value gt static route info Displays characteristics of the created static route Figure 95 Figure 92 config ip info command output Sub Context clear config monitor show test trace Current Context disable 255 icmp net unreach default ttl Figure 93 config ip forwarding info command output Sub Context clear config monitor show test trace Current Context enable true Figure 94 config ip route discovery info command output Sub Context clear config monitor shou test trace Current Context enable false Reference for the Passport 1000 Series Command Line Interface Release 2 1 180 Chapter 6 Configuring layer 3 protocol features Figure 95 config ip static route info command output create b 8 0 0 0 0 0 0 0 next hop 18 18 58 1 cost 1 status ACTIVE enable TRUE disable N A delete N A NO enable N A E show ip commands The show ip commands display the general IP characteristics of the switch show ip forwarding command The show ip forwarding command displays the status of IP forwarding routing on the switch Figure 96 shows output for the show ip forwarding command Figure 96 show ip forwarding command output IP Forwarding is enabled IP
246. outing and use the following options config ip mroute followed by info Displays information about the multicast route interface lt ipaddr gt info Displays information about the multicast route interface mroute interface lt ipaddr gt ttl lt ttl gt Sets the default time to live threshold for the multicast route interface 202086 C Chapter 6 Configuring layer 3 protocol features 247 show ip mroute commands The show ip mroute commands display information about the multicast route set up on the switch show ip mroute interface command The show ip mroute interface command displays information about the multicast interface Figure 152 shows output for the show ip mroute interface command Figure 152 show ip mroute interface command output swlab edge2 show ip mroute interface Port2 1 1 dunrp Port2 2 1 dunrp Ulan1 1 dumrp show ip mroute next hop command The show ip mroute next hop command displays information about the next hop for the multicast route Figure 153 shows output for the show ip mroute next hop command Figure 153 show ip mroute next hop command output Passport 1266 show ip mroute next hop INTERFACE GROUP SOURCE SRCHASK ADDRESS INTERFACE STATE EXPIRY TIME CLOSE HOP PROTOCOL Total 6 Reference for the Passport 1000 Series Command Line Interface Release 2 1 248 Chapter 6 Configuring layer 3 protocol features show ip mroute
247. ow 186 VRRP 240 202086 C Index 351 executable files 42 exit command 85 F file management commands Boot Monitor CLI 60 Run Time CLI 88 file names 43 file system commands 45 files configuration 42 executable 42 flags command 59 flash boot option 59 flash memory 40 format command 46 61 88 G GUI Graphical User Interface 33 H help command boot 60 Boot Monitor CLI 62 Run Time CLI 73 81 history commands 62 84 I IGMP 168 IGMP snoop commands configure 169 show 171 image files 42 Internet Group Management Protocol See IGMP Internet Group Management Protocol See IGMP Internet Packet Exchange See IPX commands IP addresses 75 IP ARP commands configure 189 show 191 ip command Boot Monitor CLI 63 IP commands configure 178 show 180 IP DHCP commands configure 197 show 197 IP diffserv commands configure 184 show 184 IP DVMRP commands show 251 ip filter commands 29 IP filters 294 IP flow commands 277 IP forwarding commands 180 278 IP OSPF commands configure 219 show 225 231 IP policies 279 IP policy commands configure 279 289 show 289 IP RIP commands configure 208 show 210 IP traffic filter commands configure 295 301 show 301 IP VRRP commands port 241 show 246 IPX commands RIP 268 SAP 270 set 267 show 272 Reference for the Passport 1000 Series Command Line Interface Release 2 1 352 Index static route 268 VLAN 266 IPX co
248. owing options config ip diffserv followed by and mask lt integer gt The AND rule mask value 0 to 255 The default is 0 info Displays diffserve settings or rulel lt integer gt The first diffserv OR rule integer 0 to 255 The default is 0 or rule2 lt integer gt The second diffserv OR rule integer 0 to 255 The default is 0 or rule3 lt integer gt The third diffserv OR rule integer 0 to 255 The default is 0 tos priority enable Enables TOS based high priority mode tos threshold lt integer gt Changes the threshold value from 3 to a value between 0 highest priority and 7 no priority show ip diffserv command The show ip diffserv command displays the settings for the Passport switch release 2 0 diffserv commands and the Passport switch release 2 1 TOS based high priority forwarding Figure 100 shows output for the show ip diffserv command Figure 100 show ip diffserv command output tos priority tos threshold 202086 C Chapter 6 Configuring layer 3 protocol features 185 ethernet ports ip commands The ethernet ports ip commands are generic port related IP routing commands Other port commands are included in the section dealing with the protocol or feature for example DHCP config ethernet ports ip command In order for the config ethernet ports ip commands to take effect IP forwarding must be enabled on the switch using the command conf
249. p info command displays the ARP table The command syntax is show ip arp info lt ip address gt s lt value gt where lt ip address gt is the specific net IP address for the table s lt value gt is the specific subnet in the format a b c d x a b c d x x x x default Figure 106 shows output for the show ip arp info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 192 Chapter 6 Configuring layer 3 protocol features Figure 106 show ip arp info command output Ip Arp IP ADDRESS MAC ADDRESS ULAN PORT TYPE TTL 18 18 58 91 88 88 5f e7 eh 39 1 3 1 DYNAMIC 2153 18 18 58 161 88 88 28 79 8a f3 1 3 1 DYNAMIC 2136 10 10 40 84 68 66 26 8d 7c d6 1 371 DYNAMIC 2113 18 18 58 128 88 88 28 8f 69 b7 1 3 1 DYNAMIC 2162 18 18 58 289 88 88 2d 22 8e 88 1 3 1 DYNAMIC 2693 18 18 58 136 88 e8 16 a2 c2 88 1 3 1 DYNAMIC 2693 18 18 58 126 88 88 28 87 68 8b 1 3 1 DYNAMIC 2882 18 18 58 67 88 e8 16 88 88 808 1 3 1 DYNAMIC 2863 18 10 40 95 88 88 2d af 8b f 1 371 DYNAMIC 2663 10 10 40 94 66 86 2d 35 dF F4 1 3 1 DYNAMIC 2663 18 18 58 151 88 88 81 c1 f6 81 1 3 1 DYNAMIC 2656 18 18 58 219 88 88 2d 86 e5 92 1 3 1 DYNAMIC 2631 18 18 58 86 88 88 5f 3f eh fB 1 3 1 DYNAMIC 2623 18 18 58 152 88 88 81 c1 9b 81 1 3 1 DYNAMIC 2028 18 18 58 23 88 e8 16 53 bc 88 1 3 1 DYNAMIC 1996 18 18 58 51 88 88 2d 22 87 f 1 3 1 DYNAMIC 1993 18 18 58 182 88 088 28 75 a8 ab 1 3 1 DYNAMIC 1982 18 18 58 181 88 88 28 8e 1a ef 1 3 1 D
250. p ospf host route show ip ospf ifstats mismatch show ip ospf info show ip ospf interface show ip ospf int timers show ip ospf Isdb area lt value gt Isatype lt value gt Isid lt value gt adv rtr lt value gt detail show ip ospf neighbors show ip ospf range show ip ospf stats page 225 show ip policy addrlist info id lt value gt page 289 show ip policy netlist info id lt value gt page 290 show ip policy ospf accept info id lt value gt show ip policy ospf accept lists id lt value gt show ip policy ospf accept match network lt value gt page 291 show ip policy ospf announce info id lt value gt show ip policy ospf announce lists id lt value gt show ip policy ospf announce match network lt value gt page 292 show ip policy rip accept info id lt value gt show ip policy rip accept lists id lt value gt show ip policy rip accept match network lt value gt page 293 show ip policy rip announce info id lt value gt show ip policy rip announce lists id lt value gt show ip policy rip announce match network lt value gt page 294 show ip route discovery page 181 Reference for the Passport 1000 Series Command Line Interface Release 2 1 338 Appendix A CLI command list Table 14 CLI command list continued command Page No show ip rip info show ip rip interface lt ipaddr gt show ip route info lt ip a
251. p update interval lt integer gt config ip dvmrp triggered update interval lt integer gt config ip dvmrp leaf timeout lt integer gt config ip dvmrp nbr timeout lt integer gt config ip dvmrp nbr probe interval lt integer gt page 249 config ip forwarding disable config ip forwarding enable config ip forwarding info page 178 config ip 13 igmp info config ip 13 igmp interface lt ipaddr gt info config ip 13 igmp interface lt ipaddr gt last memb query int lt seconds gt config ip 13 igmp interface lt ipaddr gt query interval lt seconds gt config ip 13 igmp interface lt ipaddr gt query max resp lt integer gt config ip 13 igmp interface lt ipaddr gt robustval lt integer gt config ip 13 igmp interface lt ipaddr gt version lt integer gt page 257 config ip info page 257 config ip ipflow create src ip lt value gt src port lt value gt dst ip lt value gt dst port lt value gt protocol lt value gt config ip ipflow delete src ip lt value gt src port lt value gt dst ip lt value gt dst port lt value gt protocol lt value gt config ip ipflow info page 278 config ip mroute info config ip mroute interface lt ipaddr gt ttl info config ip mroute interface lt ipaddr gt ttl lt ttl gt page 178 202086 C Appendix A CLI command list 317 Table 14 CLI command list continued command Page No config ip ospf admin state lt enable disable
252. ports gt monitor ports stats vrrp main lt ports gt page 305 ping lt ipaddr gt lt datasize gt lt count gt s lt value gt t lt value gt d pingipx lt ipxhost gt lt count gt s q t lt value lt pwc quit recover lt device gt reset y rlogin lt ipaddr gt rsh lt ipaddr gt I value cmd save lt devfile gt standby page 78 show config verbose page 97 show cli info show cli password show cli who page 103 Reference for the Passport 1000 Series Command Line Interface Release 2 1 336 Appendix A CLI command list Table 14 CLI command list continued show ip mroute next hop show ip mroute route command Page No show ip arp info lt ip address gt s lt value gt page 191 show ip dhcp fwd path page 197 show ip dhcp counters show ip diffserv page 184 show ip dvmrp info page 251 show ip dvmrp interface show ip dvmrp neighbor show ip dvmrp next hop show ip dvmrp route show ip flow page 278 show ip forwarding page 180 show ip interface show ip 13 igmp cache page 258 show ip 13 igmp group show ip 13 igmp interface show ip mroute interface page 247 202086 C Appendix A CLI command list 337 Table 14 CLI command list continued command Page No show ip ospf area show ip ospf ase metric type lt value gt detail show ip ospf default metric show i
253. protocol features show port ospf commands The show port ospf commands display OSPF parameters and statistics for a specified port or all ports show ports error ospf command The show ports error ospf command displays extended information about OSPF errors for a specified port or all ports The command syntax is show ports error ospf lt ports gt Figure 143 shows output for the show ports error ospf command Figure 143 show ports error ospf command output Passport 1188 show ports error ospf PORT VERSION AREA AUTHTYPE AUTH NET MASK HELLOINT DEADINT OPTION NUM MISMATCH MISMATCH MISMATCH FAILURES MISMATCH MISMATCH MISMATCH MISMATCH show ports info ospf command The show ports info ospf command displays information about the OSPF parameters for a specified port or all ports The command syntax is show ports info ospf lt ports gt Figure 144 shows output for the show ports info ospf command 202086 C Chapter 6 Configuring layer 3 protocol features 235 Figure 144 show ports info ospf command output Passport 1166 show ports info ospf i Port Ospf PORT HELLO RTRDEAD OSPF NUH ENABLE INTUAL INTVAL PRIORITY METRIC AUTHTYPE AUTHKEY AREA ID 3 1 true 16 46 1 8 none 8 8 8 8 3 2 false 16 46 1 6 none 8 8 8 8 3 3 true 18 46 1 6 none 8 8 8 8 3 4 true 16 46 1 6 none 8 8 8 8 3 5 true 18 46 1 6 none 8 8 8 8 3 6 true 18 46 1 6 none 6 6 6 6 3 7 true 16 46 1 6 none 6 6 6 6 3 8 true 16 46 1 8
254. put buffers are reserved for high priority traffic Figure 37 config sys set flags info command output Sub Context clear config monitor show test trace Current Context autoboot true factorydefault false switchportiso false debugmode false highpriomode false Note When using the config sys set flags commands type save to save the changes and reboot the switch The changes take effect once the switch is rebooted 202086 C Chapter 4 Configuring switch management 117 Other config sys set commands The config sys set action and config sys set flags commands include the following system set commands and options config sys set followed by info Displays current settings Figure 38 boot lt primary secondary tertiary gt lt choice gt Sets the boot choice for the switch config lt choice gt Sets the switch configuration choice to be none flash pcmeia net skip nvram confi g filename contact lt contact gt Sets the contact for the switch ASCII string eoc mode lt eocmode gt Sets enforce operational configuration eoc mode default aru1 quid4 aru 2quid4 aru3quid5 By default the switch operates in the mode of the lowest version ASIC present in any module If you replace a module with a lower version the entire switch operates with the functionality of the lower version This command allows you to lock in a mode of
255. py the associated user manual solely in support of authorized use of the Software by Licensee This license applies to the Software only and does not extend to Nortel Networks Agent software or other Nortel Networks software products Nortel Networks Agent software or other Nortel Networks software products are licensed for use under the terms of the applicable Nortel Networks Inc Software License Agreement that accompanies such software and upon payment by the end user of the applicable license fees for such software 2 Restrictions on use reservation of rights The Software and user manuals are protected under copyright laws Nortel Networks and or its licensors retain all title and ownership in both the Software and user manuals including any revisions made by Nortel Networks or its licensors The copyright notice must be reproduced and included with any copy of any portion of the Software or user manuals Licensee may not modify translate decompile disassemble use for any competitive analysis reverse engineer distribute or create derivative works from the Software or user manuals or any copy in whole or in part Except as expressly provided in this Agreement Licensee may not copy or transfer the Software or user manuals in whole or in part The Software and user manuals embody Nortel Networks and its licensors confidential and proprietary intellectual property Licensee shall not sublicense assign or otherwise disclose to any third pa
256. r lt IPX network number gt lt hold multiplier gt config ipx sap info config ipx sap update delay lt IPX network number gt lt delay timer gt config ipx sap update interval lt lPX network number gt lt interval timer gt page 271 and page 272 config ipx set info config ipx set max route lt max_entries gt config ipx set max sap lt max_entries gt config ipx set max static route max entries gt config ipx set max static sap lt max entries gt page 267 config ipx static route info config ipx static route create lt IPX network number gt lt nexthop gt lt hop count gt lt tick count gt config ipx static route delete lt IPX network number gt page 268 config log clear config log info config log level lt level gt config log screen lt setting gt config log write lt str gt page 106 config mirror inport1 lt port gt lt enable disable gt config mirror inport2 lt port gt lt enable disable gt config mirror outport lt port gt lt enable disable gt config mirror saveconfig lt true false gt page 145 202086 C Appendix A CLI command list 325 Table 14 CLI command list continued command Page No config radius attribute value lt value gt page 142 config radius enable lt true false gt config radius info config radius maxserver lt value gt config radius server create lt ipaddr gt secret lt value gt port lt value gt prior
257. r 3 protocol features e Chapter 7 Configuring IP flow policies and filters e Chapter 8 Monitor commands The remainder of this chapter describes the general CLI commands 202086 C Chapter 3 Run Time CLI description 77 Figure 9 Partial Run Time CLI tree arp m dhcp relay T dvmrp sig igmp boot O tagging ospf clear oli a proxy ethernet ports difserv Mg ad config ip dhep relay traffic filter ipx dvmrp kap date log rip forwarding r ee mirror sap I3 igmp area addrlist delete mit set mroute host route netlist rmon statie route ospf Interface rip accept directory setdate 2 policy rip are sti i ospf accep format Bi tag vr filter ospf announce vlan static route globale 2 help web server traffic filter it interface p udpfwd portfwd list history m access policy protocol i mit set action Monitor ports ho set flags dhcp relay 5 syslog dvmrp ping igmp snoop B I3 igmp IP ospf quit arp proxy recover dvmrp biag cli pa vrrp reset p L ip forwarding rlogin ipx mroute log ospf save mit error policy ports info rip show rmon stats route stg E traffic filter squeeze sys udpfwd tech vrrp test gt telnet artable acd E ie fabric vlan Bs loopback web server Pep trace E 8778EA Reference for the Passport 1000 Series Command Line Interface Release 2 1 78 Chapter 3 Run Ti
258. r commands on page 296 e config ip traffic filter filter action command on page 297 e config ip traffic filter filter match commands on page 299 e config ip traffic filter global set commands on page 300 e config ip traffic filter set commands on page 300 e config ethernet ip traffic filter commands on page 301 config ip traffic filter commands The generic filter commands use the following options config ip traffic filter followed by info Displays IP traffic filter settings Figure 193 clear stats lt fid gt Clears filter statistics for the specified filter ID where the traffic filter ID range is 1 to 4000 log interval lt seconds gt Sets the filter log interval for traffic filter statistics logging in seconds 0 to 36000 Figure 193 shows output for the config ip traffic filter info command Figure 193 config ip traffic filter info command output swlab edge2 config ip traffic filter info Sub Context clear config monitor show test trace Current Context log interval 5 clear stats N A Reference for the Passport 1000 Series Command Line Interface Release 2 1 296 Chapter 7 Configuring IP flow policies and filters config ip traffic filter create commands The config ip traffic filter create commands are used to configure source destination and global traffic filters for the interface These commands use the following op
259. r of servers that you use The value is between 1 and 10 202086 C Chapter 5 Configuring layer 2 features 143 config radius followed by server create lt ipaddr gt secret lt value gt ports lt value gt priority lt value gt retry lt value gt timeout lt value gt enable lt value gt Creates and configures a server for the authentication feature e ipaddr the IP address of the server you want to add secret lt value gt the secret key of the authentication client ports lt value gt the UDP ports you want to use from 1 to 65536 The default is 1812 priority lt value gt the priority from 1 to 10 for this server retry lt value gt the number of authentication retries the server will accept timeout lt value gt the number of seconds before the authentication request times out enable lt value gt to enable this server set the value to true server set lt ipaddr gt secret lt value gt ports lt value gt priority lt value gt retry lt value gt timeout lt value gt enable lt value gt Changes specified server values without having to delete the server and re create it again Configures a server for the authentication feature e e ipaddr the IP address of the server you want to add secret lt value gt the secret key of the authentication client ports lt value gt the UDP ports you want to use
260. raffic filter filter match commands These commands are the traffic filter match commands where lt fids gt is the traffic filter ID 1 to 4000 The commands use the following options followed by config ip traffic filter filter lt fid gt match info Displays the matching settings for the filter dst port lt port gt dst option lt value gt Sets the TCP UDP destination port and destination option e lt port gt is the TCP UDP destination port to filter on 0 to 65535 dst option value is the TCP UDP destination port option ignore equal less greater notequal packet limit lt pktlimit gt Sets the packet limit number of hits for the filter When the limit is reached the filter stops applying action The range is 0 to 65535 protocol lt protocoltype gt Sets the protocol type for the filter where protocol type is ignore ICMP TCP e UDP src port lt port gt src option value Sets the TCP UDP source port and source option e lt port gt is the TCP UDP source port to filter on 0 to 65535 sre option value is the option ignore equal less greater notequal Reference for the Passport 1000 Series Command Line Interface Release 2 1 300 Chapter 7 Configuring IP flow policies and filters config ip traffic filter global set commands The config ip traffic filter global set commands configure the IP traffic filter global list whe
261. ral storage It is divided into 64K blocks Files stored in System Flash are stored in an integral number of blocks Files stored in System Flash are numbered sequentially starting with number one Files are assigned names by the user or referenced by an ordinal position in flash memory The file naming convention for System Flash files is flash filename or flash file For example flash 3 and flash acc2 0 O both refer to files in System Flash In the first example it is the third file in System Flash In the second example it is the file named acc 2 0 0 in System Flash PCMCIA pcmcia A Passport 1200 Switch can use an optional PCMCIA flash memory card You can use PCMCIA cards for general storage of all file types The PCMCIA card used in the Passport 1200 Switch is the XLR1299PC PCMCIA Flash Memory Module It has a capacity of 4 MB of memory with a block size of 128K As with System Flash files stored on PCMCIA are numbered sequentially starting with number I and can be given file names Use the following naming convention for PCMCIA files pemcia filename or pemeia filet File types Although System Flash and PCMCIA are primarily used for run time images configuration files and the system log they are also used to store other types of files The following sections describe the types of files you can store in the System Flash and PCMCIA For a given file the file type is reflected in the flags in a directory
262. rameters and enabling or disabling Spanning Tree Protocol on an STG e Configuring and displaying Multilink Trunking MLT parameters e Setting IP policies for RIP and OSPF e Setting traffic filters for the switch e Testing the Passport 1000 Series chassis switching fabric and performing internal and external loopback tests on individual ports e Creating and managing port based VLANs or policy based VLANs 202086 C Chapter 3 Run Time CLI description 71 Note The CLI commands enable you to perform most configuration tasks To perform a task not available using CLI commands use the Passport Device Manager Passwords There are six defined levels of password protected access to the CLI ro read only e LI layer 1 read write e 12 layer I and layer 2 read write e 13 layer 2 and layer 3 read write e rw read write for all levels e rwa read write all When you access the CLI it prompts you for a login name and password and sets your access level accordingly Only users with rwa access can change login names and passwords Navigating through the CLI The CLI is organized into a tree data structure Help can be accessed from any level of the tree by typing a question mark Typing the word help provides an explanation of the available help Typing the help command explains what the command does and give the syntax Typing results in a list of all commands Typing the word syntax displays a pat
263. re lt setid gt is the global set ID 1 to 100 The commands use the following options config ip traffic filter global set lt setid gt followed by info Displays the global set characteristics add filter lt fid gt Adds a global filter to a global set with the traffic filter ID range of 1 to 4000 create name lt value gt Creates a global set where name lt value gt is the set name string delete Deletes a global set remove filter lt fid gt Removes a global filter from a global set config ip traffic filter set commands The config ip traffic filter set commands configure the filter set where lt set id is the set ID 300 to 1000 The commands use the following options config ip traffic filter list lt setid gt followed by info Displays the filter set characteristics add filter lt fid gt Adds a filter to a filter set where the traffic filter ID has a range of 1 to 4000 create name lt value gt Creates a filter set with the name string delete Deletes a filter set remove filter lt fid gt Removes a filter from a filter set 202086 C Chapter 7 Configuring IP flow policies and filters 301 config ethernet ip traffic filter commands The config ethernet ip traffic filter commands are used at the port level to set filters used to manage traffic Each filter set includes match conditions and actions to be performed when a match
264. re interval is in seconds to 600 To clear the display press Ctrl L Table 13 lists the available monitor commands and a page reference for the corresponding show command Table 13 Monitor and show commands Corresponding show Monitor commands command page reference monitor mlt error collision lt mid gt page 147 monitor mlt error main lt mid gt page 148 monitor mlt stats interface main lt mid gt page 149 monitor mlt stats interface utilization lt mid gt page 306 monitor ports error collision lt ports gt page 130 monitor ports error extended lt ports gt page 132 monitor ports error main lt ports gt page 148 monitor ports error ospf lt ports gt page 234 monitor ports stats bridging lt ports gt page 135 Reference for the Passport 1000 Series Command Line Interface Release 2 1 306 Chapter 8 Monitor commands Table 13 Monitor and show commands continued Corresponding show Monitor commands command page reference monitor ports stats dhcp lt ports gt page 200 monitor ports stats interface main lt ports gt page 136 monitor ports stats interface extended lt ports gt page 137 monitor ports stats interface utilization lt ports gt page 307 monitor ports stats ospf main lt ports gt page 235 monitor ports stats ospf extended lt ports gt page 236 monitor ports stats routing lt ports gt page 249 m
265. reate lt protoname gt config ip udpfwd protocol lt updport gt delete config ip udpfwd protocol lt updport gt info page 203 config ipx forwarding disable lt IPX network number gt config ipx forwarding enable lt IPX network number gt config ipx forwarding info config ipx info page 264 config ipx rip default delay lt delay timer gt config ipx rip default hold multiplier lt age multiplier gt config ipx rip default interval lt interval timer gt config ipx rip info page 269 config ipx rip age multiplier lt IPX network number gt lt age multiplier gt config ipx rip state lt IPX network number gt on off config ipx rip update delay lt IPX network number gt lt delay timer gt config ipx rip update interval lt IPX network number gt lt interval timer gt page 270 Reference for the Passport 1000 Series Command Line Interface Release 2 1 324 Appendix A CLI command list Table 14 CLI command list continued command Page No config ipx sap age multiplier lt IPX network number gt lt age multiplier gt config ipx sap create lt service type gt lt service name gt lt ipxhost gt lt socket number gt lt hop count gt config ipx sap delete lt service name gt config ipx sap default delay lt delay timer gt config ipx sap default hold multiplier lt age multiplier gt config ipx sap default interval lt interval timer gt config ipx sap hold multiplie
266. reset y Resets the Passport 1000 Series switch page 86 traceroute Allows you to trace the route to a remote host page 87 Boot command The boot command reboots the Passport 1000 Series chassis with an image and configuration file or choices The optional parameters of the command let you specify the boot source flash PCMCIA card or TFTP server and file name The syntax for the boot command is boot lt devfile gt config lt value gt ip lt value gt file lt value gt where devfile is the boot image flash pemcia config nvram tftp trace nic filename config lt value gt is the boot source none flash pcemcia net skip nvram config filename ip value is the IP address of the TFIP server if booting from the server file lt value gt is the TFIP file to boot If you do not specify a device and file the CLI uses the software and configuration files on the primary boot device Reference for the Passport 1000 Series Command Line Interface Release 2 1 80 Chapter 3 Run Time CLI description Boot using a configuration script file An extension of the boot command allows you to use an ASCII based text file containing CLI commands to configure a Passport switch When using this option the switch boots using the factory default mode The CLI commands contained in the configuration script are applied against the default configuration The script file is an ASCII text file The fi
267. rface during the election process for the designated router The interface with the highest priority number is the designated router The interface with the second highest priority becomes the backup designated router If the priority is 0 the interface cannot become either the designated router or a backup The priority is used only during election of the designated router and backup designated router The range is 0 to 255 The default is 1 retransmit interval Sets the retransmit interval for the OSPF interface lt seconds gt the number of seconds between link state advertisement retransmissions 1 to 3600 transit delay lt seconds gt Sets the transit delay time for the OSPF interface the estimated time in seconds it takes to transmit a link state update packet over the interface 1 to 3600 config ip ospf area The config ip ospf area commands control the OSPF area parameters where lt area gt is the IP address of an OSPF area Use dotted decimal notation to specify the area name You can use any value for the OSPF area name for example 1 1 1 1 or 200 200 200 200 The config ip ospf area commands use the following options config ip ospf area lt area gt followed by info Displays OSPF area characteristics Figure 130 create Creates an OSPF area delete Deletes an OSPF area import summaries Sets the area s support for importing summary lt true false gt advertisemen
268. ription format fo Formats flash or PCMCIA directory di Lists contents of flash or PCMCIA copy CO Copies a file to a device appending a new file to the destination device delete de Marks a file for deletion on a flash device squeeze sq Reclaims space used and removes files marked for deletion recover re Unmarks a file for deletion Reference for the Passport 1000 Series Command Line Interface Release 2 1 46 Chapter 1 Passport basics Format The format command permanently erases a device preparing the device for use To permanently erase a device enter the command usage format lt device gt where device indicates whether the file resides on flash or PCMCIA It is advisable to run the format command on any new PCMCIA card to ensure that it is ready for use by the Passport 1000 Series file system Directory The directory command displays the contents of flash or PCMCIA To display the contents of flash or PCMCIA enter the command usage directory lt device gt 1 where device indicates whether the file resides on flash or PCMCIA 1 displays the file details When the directory command is invoked with no arguments it displays the contents of all flash devices When a device is specified directory displays only the contents of that device Information included in the directory output includes the file number FN file name Name file size Length and file flags Flags Flags display in
269. riptions 52 security RADIUS 142 set dates 110 show clicommands 103 show commands Boot Monitor CLI 59 67 show config command 97 show log commands 107 show ports commands 129 139 show ports stats commands 248 show radius commands 144 show rip command 301 show sys commands 119 show tech command 100 show test commands 93 94 show web server command 126 Silicon Switch Fabric See SSF skip boot options 59 squeeze command 51 61 88 SSF 36 standby SSF module accessing 92 station requirements Boot Monitor CLI 55 Run Time CLI 69 STG commands configure 150 show 156 support Nortel Networks 32 syntax command 71 sys set action commands 114 sys setcommands 117 sys set flags commands 115 116 syslog commands configure 123 show 125 system commands 110 system flash memory 41 43 T technical publications 31 technical support 32 telnet command 88 test commands Boot Monitor CLI 59 Run Time CLI 92 show 93 tests command 59 text conventions 28 TFIP 44 tftp command 60 trace commands 61 94 tracelog 43 traceroute command 87 traffic filter commands port 301 show 301 Type of Service 182 202086 C Index 355 U UDP commands configure 204 show 205 UNIX 123 User Data Protocol See UDP commands V virtual MAC address 347 Virtual Router Redundancy Protocol See VRRP commands VLAN ARP commands configure 194 show 195 VLAN commands config 157 configure forwarding database 1
270. route The show ip mroute route command displays information about the multicast route Figure 154 shows output for the show ip mroute route command Figure 154 show ip mroute route command output Passport 1266 show ip mroute route Total 6 show ports stats routing command The show ports stats routing command displays routing information about a specified port or for all ports The command syntax is show ports stats routing lt ports gt Figure 155 shows output for the show ports stats routing command 202086 C Chapter 6 Configuring layer 3 protocol features 249 Figure 155 show ports stats routing command output Passport 1266 show ports stats routing OX Port Stats Routing PORT IN FRAME IN FRAME IN OUT FRAME OUT FRAME NUM UNICAST MULTICAST DISCARD UNICAST MULTICAST 1 1 5489 8 1 6 6 1 2 8 8 8 6 8 1 3 8 8 8 6 6 1 4 8 8 8 8 8 1 5 8 8 8 8 8 1 6 8 8 8 8 8 177 8 8 8 8 8 1 8 8 8 8 8 8 1 9 8 8 8 8 8 1 18 8 8 8 8 8 1 11 8 8 8 8 8 1 12 8 8 8 8 8 1 13 8 8 8 8 8 1 15 8 8 8 8 8 1 15 8 8 8 8 8 N 1 16 8 8 8 8 8 E DVMRP commands Caution Nortel Networks does not recommend or support IP Multicast with IGMP or DVMRP on the Passport 1000 platform Distance Vector Multicast Routing Protocol DVMRP is used between routers to exchange multicast routing information The protocol can be configured on an isolated routing port or on a VLAN It must be enabled globally in order to take eff
271. rst line of the file must include a pound sign followed by a carriage return with the remaining lines containing valid CLI commands one per line Using a configuration script that resides on the flash file system the command format is boot lt bootdevice gt bootfile gt config flash pcmcia lt configscriptname gt For example Passport boot flash 2 config flash config script txt Clear commands The clear commands are used to clear statistics from counters or to flush entries from a table These commands use the parameters port the port number and vid the VLAN ID The elear commands include the following options clear followed by ip arp ports lt port gt Clears ARP port entries from the ARP table ip arp vlan lt vid gt Clears ARP VLAN entries from the ARP table ip route ports lt port gt Clears route entries associated with the specified port ip route vlan lt vid gt Clears route entries associated with the specified VLAN 202086 C Chapter 3 Run Time CLI description 81 clear followed by igmp snoop groups lt vid gt Clears the dynamically learned multicast group members igmp snoop mrouter lt vid gt Clears the learned multicast router ports ports stats lt ports gt Clears port statistics from the switch counters Date command The date command is available only when the switch real time clock is set Not all Passpor
272. rty the Software or any information about the operation design performance or implementation of the Software and user manuals that is confidential to Nortel Networks and its licensors however Licensee may grant permission to its consultants subcontractors and agents to use the Software at Licensee s facility provided they have agreed to use the Software only in accordance with the terms of this license 3 Limited warranty Nortel Networks warrants each item of Software as delivered by Nortel Networks and properly installed and operated on Nortel Networks hardware or other equipment it is originally licensed for to function substantially as described in its accompanying user manual during its warranty period which begins on the date Software is first shipped to Licensee If any item of Software fails to so function during its warranty period as the sole remedy Nortel Networks will at its discretion provide a suitable fix patch or workaround for the problem that may be included in a future Software release Nortel Networks further warrants to Licensee that the media on which the Software is provided will be free from defects in materials and workmanship under normal use for a period of 90 days from the date Software is first shipped to Licensee Nortel Networks will replace defective media at no charge if it is returned to Nortel Networks during the warranty period along with proof of the date of shipment This warranty does not apply if the med
273. ructure otherwise displays parameter help C for the the command A To see a list of all commands available at the current login access level type help commands at the prompt Figure 12 on page 84 shows the help commands with read write all access in the Run Time CLI Not all of these commands are available at all login access levels 202086 C Chapter 3 Run Time CLI description 83 Figure 11 help command output in the Run Time CLI back back up one level N boot boot the system with an image and configuration file or choices box go to top or box level clear clear configuration commands config configuration commands copy copy a file to a device CWC change current working level date display calender time delete delete a file from a device directory list files on a device exit logout of system format format a device help display help about cli commands history show command history login re login to a different access level logout logout of system monitor display switch configuration in time interyal ping ping an ip address pingipx ping IPX address puc print current working level quit logout of system recover recover deleted files on a device reset reset the system rlogin rlogin to a remote host rsh execute a shell command on a remote machine save save running configuration to a file or nvram show display switch configuration squeeze reclaim deleted file space on a device telnet telnet to a remote host test test t
274. s emergency alert critical error warning notice info debug host id maperror Specifies the syslog severity to use for Passport Error level messages emergency alert critical error warning notice info debug host lt id gt mapfatal Specifies the syslog severity to use for Passport Fatal lt level gt messages emergency alert critical error warning notice info debug host lt id gt severity info warning error fatal lt info warning error fatal gt Specifies the severity levels for which syslog messages should be sent for the specified modules where severity is the severity for which syslog messages will be sent host lt id gt lt port gt udp port Specifies the UDP port number on which to send syslog messages to the syslog host where udp port is the UNIX system syslog host port number 514 to 530 max hosts lt maxhost gt Specifies the maximum number of syslog hosts supported state lt enable disable gt Enables or disables sending syslog messages on the switch Figure 46 config sys syslog command output Sub Context clear config monitor show test trace Current Context max host state v5 enable 202086 C Chapter 4 Configuring switch management 125 show commands The show commands display information about the syslog feature as set up on the switch show sys syslog general info command The show sys syslog gener
275. s a RIP accept policy disable Disables a RIP accept policy enable Enables a RIP accept policy inject net list lt netlist id gt Sets a RIP accept policy that inserts networks into the routing table that differ from the actual advertised network The inject net list ID range is 0 to 1000 name lt string gt Assigns a RIP accept policy name precedence lt precedence gt Sets the precedence for the OSPF accept policy The range is 0 to 65535 If multiple policies apply the higher precedence is used range net list lt netlist id gt Sets the RIP accept policy to match any network number that falls into the indicated range The netlist id range is 0 to 1000 rip gateway list lt addrlist id gt Identifies the RIP gateway lists that are associated with this policy The RIP gateway list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source rip interface list lt listid gt Indicates the entries in the RIP interface lists that are associated with this policy The RIP interface list ID 0 to 1000 applies only to RIP sourced routes if RIP is included as a route source Figure 187shows output for the config ip policy rip accept info command 202086 C Chapter 7 Configuring IP flow policies and filters 287 Figure 187 config ip policy rip accept info command output 1266 config ip policy rip accept info object lt pid gt info is
276. s display current system status and configuration show sys community command The show sys community command displays the community strings on the switch Figure 40 shows output from the show sys community command Figure 40 show sys community command output community ro 11 12 13 ru rua public private private private private secret Reference for the Passport 1000 Series Command Line Interface Release 2 1 120 Chapter 4 Configuring switch management show sys diag info command The show sys diag info command shows whether the ARU monitor is enabled or disabled Figure 41 shows output for the show sys diag info command Figure 41 show sys diag info command output Passport 1106 show sys diag info Diag Info aru monitor disable show sys info command The show sys info command lists the general system settings and status Figure 42 shows partial output for the show sys info command Figure 42 show sys info command output Z Passport 11888 show sys info UN General Info SysName Passport 1166 SysUpTime 42 day s 21 33 34 SysContact support baynetworks com SysLocation 4461 Great America Parkway Santa Clara CA 95052 Chassis Info Chassis 1188 Serial 66252 HwRey v3 8 NumSlots 3 firuHode AruThree EocHode default Power Supply Info Psit1 Status up Psit1 Type 118U AC Power Supply Pstt1 Serial Number Psit1 Version E N
277. s info show radius server config show radius server stat page 142 show rmon page 109 show stg info config lt sid gt show stg info status lt sid gt page 152 show sys access policy info lt polname gt page 113 show sys community show sys diag info show sys info show sys perf show sys sw show sys syslog general info show sys syslog host lt id gt info page 119 show tech page 100 show test artable show test fabric show test loopback lt ports gt page 93 202086 C Appendix A CLI command list 341 Table 14 CLI command list continued command Page No show trace file tail show trace level page 95 show vlan info advance lt vid gt show vlan info all lt vid gt by lt value gt page 161 show vlan info arp lt vid gt show vlan info autolearn mac show vlan info basic lt vid gt show vlan info dhep lt vid gt page 194 show vlan info dvmrp lt vid gt show vlan info fdb entry lt vid gt page 162 show vlan info fdb filter lt vid gt show vlan info igmp lt vid gt show vlan info ip lt vid gt show vlan info ipx lt vid gt page 263 show vlan info manual edit mac page 164 show vlan info ospf lt vid gt show vlan info ports lt vid gt show vlan info rip lt vid gt show vlan info snoop lt vid gt page 217 show vlan info srcmac lt vid gt show vla
278. s level Sets policy access level where level is policy access level lt level gt ro rw rwa or read only read write read write all create Creates a new access policy with a policy ID from 1 to 65535 Reference for the Passport 1000 Series Command Line Interface Release 2 1 112 Chapter 4 Configuring switch management config sys access policy policy lt pid gt followed by delete Deletes the access policy with a specified policy ID 1 to 65535 disable Disables the specified access policy 1 to 65535 enable Enables the specified access policy 1 to 65535 host lt ipaddr gt Sets the access policy trusted host address Applicable only for remote login and remote shell execution and is the IP address a b c d of the host used to authenticate the user The login must be the specified user at the specified host for access mode lt mode gt Defines the specified access policy mode as allow or deny access name lt name gt Sets the specified access policy name string network lt addr mask gt Sets the access policy network address and subnet mask a b c d x a b c d x x x x default precedence Sets the access policy precedence The precedence lt precedence gt determines which policy to use if multiple policies apply The precedence range is from 1 to 128 with the lowest number having the highest precedence service http Ena
279. s two onboard flash memory devices Boot Flash and System Flash A Passport 1200 Series switch can use optional PCMCIA flash cards refer to PCMCIA pcmcia on page 41 Boot Flash The Boot Flash memory is 512 kilobytes KB and is divided into the following reserved areas for the boot monitor image and the switch configuration e Boot monitor image The boot monitor image is not directly user accessible It is updated using a special boot monitor updater that writes to the area reserved for the boot image e Switch configuration config and nvram The switch configuration is written whenever a save operation is performed on the configuration of the device By default the switch configuration is stored in a reserved area in Boot Flash although it is possible to specify alternative locations in the file system for the switch configuration In the Boot Monitor CLI enter the choice command In the Run Time CLI enter the config sys set config choice command 202086 C Chapter 1 Passport basics 41 The area reserved in Boot Flash for switch configuration is accessed by the file system commands using the config or nvram file names Both config and nvram refer to the same file Note that the switch configuration is read only when the run time image loads System Flash flash The System Flash memory is 4 megabytes MB and is primarily used for run time images the system log configuration files and other gene
280. se 4 Very verbose Phase2 OSPF Hardware I F N A 9 CP Port 18 N A 11 ULAN Manager 12 CLI 13 Hain 14 Phase2 IP RIP 15 RCC IP 16 HTTP Server 17 ASIC I F 18 Gigabit 19 Watch Dog Timer 20 Topology Discovery 21 N A 22 N A 23 IGHP 24 IPFIL 25 HLT 27 IPMC 29 DUMRP 38 P2IPX 31 RCIPX 36 RADIUS D 202086 C 97 Chapter 4 Configuring switch management This chapter describes the CLI commands that you use to configure switch management functions in the Passport 1000 Series switch The configuration config branch is a main branch in the CLI tree used to access all the parameters in the switch The chapter includes the following sections e show config command next e show tech command on page 100 e CLI management commands on page 101 e Log commands on page 105 e RMON commands on page 109 e config setdate command on page 110 e System commands on page 110 e Syslog commands on page 123 e web server commands on page 125 show config command The show config command displays the current switch configuration Note N A displayed in a show command output indicates that the value is not applicable Figure 22 shows partial output for the show config command Reference for the Passport 1000 Series Command Line Interface Release 2 1 98 Chapter 4 Configuring switch management
281. sessions from 0 to 8 default is 8 timeout lt nseconds gt Sets the idle timeout period before automatic logout for CLI sessions from 30 to 65535 seconds default is 90 seconds 202086 C Chapter 4 Configuring switch management 103 Figure 24 config cli info command output Sub Context clear config monitor show test trace N Current Context defaultlogin true defaultpassword true loginprompt Login more true passwordprompt Password prompt swlab edge2 rlogin sessions 8 screen lines 23 telnet sessions 8 timeout 988 E show cli commands The show eli command outputs display information about the switch CLI configuration show cli info command The show cli info command displays the CLI configuration Figure 25 shows output for the show c1i info command Figure 25 show cli info command output si configuration N more true screen lines 28 telnet sessions 8 rlogin sessions 8 timeout 988 seconds monitor duration 388 seconds monitor interval 5 seconds use default login prompt true default login prompt Login custom login prompt Login use default password prompt true default password prompt Password N custom password prompt Password E Reference for the Passport 1000 Series Command Line Interface Release 2 1 104 Chapter 4 Configuring switch management show cli who command The show cli who command displays
282. show ports error collision command displays the number and type of Ethernet collision errors for all or specified ports Figure 50 on page 131 is a sample display The command syntax is show ports error collision lt ports gt 202086 C Chapter 5 Configuring layer 2 features 131 Figure 50 show ports error collision command output 2 18 2 11 2 12 2 13 2 14 2 15 oe C C202 0202 02 02 02 02 02 02 C2 02 C2 C2 C2 C2 02 C2 C2 02 02 02 02 02 02 02 02 02 02 02 8 C C202 02 02 02 02 02 C2 02 02 02 02 C2 C02 02 C2 02 C2 C02 02 02 20 02 02 02 02 02 02 02 I VS C 02 02 02 02 02 02 02 C2 C2 C2 C2 C2 20 02 02 02 C2 C2 C2 C2 C2 C2 02 02 02 02 02 02 02 02 e c0 020202 020202 0202 0202 02 02 02 02 show ports error main command The show ports error main command displays information about the number of different types of Ethernet errors for all or specified ports The command syntax is show ports error main lt ports gt Figure 51 shows output for the show ports error main command Reference for the Passport 1000 Series Command Line Interface Release 2 1 132 Chapter 5 Configuring layer 2 features Figure 51 show ports error main command output PORT ERROR ERROR FRAMES TOO LINK CARRIER CARRIER SQETEST NUM ALIGN FCS LONG SHORT FAILURE SENSE ERRORS ERRORS 2 9 2 18 2 11 2 12 2 13 2 15 2 15 show ports error extended command N mb C C2 C2 C2 C2 C2 ce 02 C2 C2 C2 C2 C2 C2 02 02 02
283. six levels of security access for device management Table 5 describes the access levels and lists their default login names and passwords Table 5 Access levels and default login names and passwords Default Default Access level Description a login password Read only Allows only viewing of configuration and status ro ro information and is equivalent to SNMP read only community access Layer 1 Allows viewing and changing configuration H H read write and status information for layer 1 physical layer functions Layer 2 Allows viewing and changing configuration 12 12 read write and status information for layer 1 and layer 2 bridging switching functions Layer 3 Allows viewing and changing configuration 13 13 read write and status information for layer 2 and layer 3 routing functions Read write Allows viewing and changing configuration rw rw and status information across the switch It does not allow changing security and password settings and is equivalent to SNMP read write community access Read write all Allows all the rights of Read Write access rwa rwa and the ability to change security settings including the CLI and Web based management user names and passwords and the SNMP community strings For example if you want to log on with read write all access through the console port log on as rwa using the password rwa at the login prompt 202086 C Chapter 1 Passp
284. sk gt followed by create advertise mode Creates an OSPF area range with the specified IP value lsa type value address and advertising mode delete Deletes an OSPF area range info Displays information about the OSPF area range settings Reference for the Passport 1000 Series Command Line Interface Release 2 1 224 Chapter 6 Configuring layer 3 protocol features config ip ospf area virtual interface command The config ip ospf area virtual interface commands configure an OSPF area virtual interface All of the commands have the following required parameters area is the identification of an OSPF area in dotted decimal notation You can use any value for the OSPF area name for example 1 1 1 1 or 200 200 200 200 e virtual interface lt nbr gt is the OSPF router ID of the neighbor config ip ospf area lt area gt virtual interface lt nbr gt followed by info Displays current OSPF area virtual interface information create Creates a virtual interface area identifier delete Deletes the virtual interface authentication key lt authentication key gt Sets the authentication key simple password in eight characters lt type string gt authentication type lt auth type gt Sets the OSPF authentication type for the OSPF area none simple password or MD5 authentication If simple all OSPF updates received by the interface must contain the authenticatio
285. specific RIP announce policy list The command syntax is show ip policy rip announce lists id lt value gt show ip policy rip announce match network command The show ip policy rip announce match network command lists the policies that match the specified network with a range or exact match The command syntax is show ip policy rip announce match network lt value gt IP filters on Passport routing switches can be used to manage traffic and in some cases provide security Each filter set includes match conditions and actions to be performed when a match condition is satisfied Note Implementation of IP traffic filters requires A ARU2 or later hardware Packet filters apply to all routed packets to be forwarded through the routing switch on specified ingress ports The filter sets are applied to the port and a default action forward or drop is set for the port All packets not matching any filter take the default action Packets matching a single filter with the opposite action will take that action For more information about filtering refer to Networking Concepts for the Passport 1000 Series Switch 202086 C Chapter 7 Configuring IP flow policies and filters 295 config ip filter commands The following command topics are included in this section e config ip traffic filter commands on page 295 e config ip traffic filter create commands on page 296 e config ip traffic filter filte
286. sport switch male DTE connector DB 9 Reference for the Passport 1000 Series Command Line Interface Release 2 1 70 Chapter 3 Run Time CLI description You can access the CLI through a direct serial port connection to the switch For the Run Time CLI you can access the switch through a Telnet connection or asynchronous dial up modem Passport 1000 Series switches support up to two CLIs at the modem and console serial ports and up to eight Telnet sessions Note Some features require ARU2 or ARU3 hardware To determine the hardware version in your chassis use the show sys info command The display indicates the ARU level of the chassis and if applicable the cards General usage When the switch is up and running the Run Time CLI commands enable you to perform most of the configuration and management functions necessary to manage your Passport switch These functions include the following e Resetting or rebooting the Passport 1000 Series chassis e Saving your configuration to NVRAM nonvolatile RAM e Adding deleting and displaying ARP table entries e Configuring RIP DHCP OSPF VRRP IGMP DVMRP and IPX parameters e Pinging another networking device e Displaying and setting configuration parameters for the entire Passport 1000 Series chassis and for individual ports e Adding and deleting static IP routes including default routes in the IP route table e Configuring and displaying spanning tree group STG pa
287. ss and the protocol for IP flow configuration 202086 C Chapter 7 Configuring IP flow policies and filters 279 Figure 182 shows output for the show ip flow command Figure 182 show ip flow command output Passport 1166 show ip flow Passport 11881 J IP policies The ip policy commands allow you to configure and view IP policy features supported on a Passport 1000 Series switch The accept and announce policies can be configured for the switch according to the selected protocol RIP or OSPF A policy is made up of three parts e Matching criteria e Set parameters e Action The matching criteria are used to decide whether a policy should be applied to a certain route After an announce policy is selected for a route the set parameters are used to construct the route advertisement After an accept policy is selected for a route the set parameters are used to introduce the route into the routing table config ip policy commands Several categories of IP policy commands are available e config ip policy info command on page 280 e config ip policy addrlist command on page 280 e config ip policy netlist command on page 281 Reference for the Passport 1000 Series Command Line Interface Release 2 1 280 Chapter 7 Configuring IP flow policies and filters e config ip policy ospf command on page 282 e config ip policy rip commands on page 285 config ip policy info comman
288. ssport 1166 show ports info urrp main show ports info vrrp extended command The show ports info vrrp extended command displays extended VRRP configuration information about a specified port or all ports The command syntax is show ports info vrrp extended lt ports gt Figure 151 shows output for the show ports info vrrp extended command The Master IPaddr is the IP address of the master router Figure 151 show ports info vrrp extended command output Passport 1166 show ports info urrp extended show ports stats vrrp command The show ports stats vrrp command displays VRRP information about a specified port or all ports The command syntax is show ports stats vrrp lt ports gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 244 Chapter 6 Configuring layer 3 protocol features config vlan ip vrrp commands The vlan vrrp commands set VRRP on a VLAN using required parameters The command syntax is config vlan lt vid gt ip vrrp lt vrid gt where vidis the VLAN ID 1 to 4095 vrid is the virtual router ID 1 to 255 a number that uniquely identifies a virtual router on a given VRRP router The virtual router acts as the default router for one or more assigned addresses The vlan vrrp commands use the following options followed by config vlan lt vid gt ip vrrp lt vrid gt action action choices Bypasses the hold down timer info
289. ssport file system commands eeen 45 Table 4 Passport directory TAGS uu annae vekster Ree deo ERE 46 Table 5 Access levels and default login names and passwords 52 Table 6 Login and password default values 2 53 Table 7 Boot Monitor CLI commands searararssaarsiers innn din y tants 57 Table 8 Boot Monitor CLI boot parameters nn een 59 Table 9 File management commands neee 60 Table 10 History commande 6 cei had tobias Shu dd d444 AG ORA n de dg 63 Table 11 PE VES uL EE ded wensen ad pe aS ck ed ed de edle BO 183 Table 12 RIP supply and listen settings and switch action 214 Table 13 Monitor and show commands ne 305 Table 14 OL command ISL armere eren RR RC ORDER RR 309 Table 15 Last byte of physical MAC address 0 0 e eee eee 346 Reference for the Passport 1000 Series Command Line Interface Release 2 1 26 Tables 202086 C 27 Preface The Nortel Networks Passport command line interface CLI is used to configure and manage a Passport 1000 Series switch The CLI as well as the Passport Management Software graphical user interface GUI allows you to set up configure and manage your Passport switch as a layer 2 switching or layer 3 routing device This guide provides information about using the features and capabilities of the CLI to perform network management operations on Passport switches It also contains a complete list of CLI comman
290. syntax is show ports info vlans lt ports gt Figure 58 shows output for the show ports info vlans command Figure 58 show ports info vlans command output PORT DISCARD DISCARD DEFAULT ULAN NUM TAGGING TAGFRAM UNTAGFRAM ULANID IDS 1 1 disable false false 1 2 disable false false 1 3 disable false false 1 4 disable false false 1 5 disable false false 1 6 disable false false 147 disable false false 1 8 disable false false 1 9 disable false false 1 18 disable false false 1 11 disable false false 1 12 disable false false 1 13 disable false false 1 14 disable false false 1 15 disable false false 1 16 disable false false 2 3 disable false false 2 4 disable false false 2 5 disable false false 2 6 disable false false 2 7 disable false false 2 8 disable false false 2 9 disable false false 2 18 disable false false 2 11 disable false false 2 12 disable false false 2 13 disable false false 2 14 disable false false 2 15 disable false false 2 16 disable false false b ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab ab eC C C C2 00 00 02 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 C2 9 C2 02 02 02 02 02 02 02 Reference for the Passport 1000 Series Command Line Interface Release 2 1 140 Chapter 5 Configuring layer 2 features config ethernet ports ip commands The config ethernet ports ip commands allow you to assign and delete an IP address for a port config ethern
291. t EEE clear config monitor show test trace Current Context aging 366 delete N A add ports 3 1 ip 16 16 mac 68 66 vlan 1 ports 3 1 ip 16 16 mac 88 88 vlan 1 ports 3 1 ip 18 18 mac 88 e8 vlan 1 ports 3 1 ip 18 18 mac 88 88 vlan 1 49 126 20 8 69 b7 49 209 2d 22 0e 00 48 136 16 a2 c2 88 40 126 20 87 60 8b B config ip arp static mcastmac Use the config ip arp static mcastmac command to add delete and display multicast MAC entries config ip arp static mcastmac followed by ad mac lt value gt ip lt value gt vlan lt value gt ports lt value gt mlt lt value gt Adds static multicast MAC entries where mac value is the MAC address ipxvalues is the IP address vlan value is the VLAN ID number ports value are the ports to receive the multicast flooding mlt value is the MID delete lt ipaddr gt Deletes static multicast MAC entries info Displays current settings 202086 C Chapter 6 Configuring layer 3 protocol features 191 Note If the user creates an ARP entry for which there is not an existing multicast MAC address on the VLAN gt Snoop gt Multicast tab the software creates an L2 multicast MAC address entry show ip arp commands The show ip arp commands display ARP configuration on the switch show ip arp info command The show ip ar
292. t query interval query max resp robustval version 125 16 202086 C Chapter 6 Configuring layer 3 protocol features 263 show vlan info 13 igmp command The show vlan info 13 igmp command displays the IGMP configuration for a specified VLAN or for all VLANs The command syntax is show vlan info igmp lt vid gt Figure 172 shows output for the show vlan info 13 igmp command Figure 172 show vlan info 13 igmp command output Passport 1266 show vlan info 13 igmp 1 125 18 2 version2 1 IPX commands This section provides information about using the Passport CLI for configuring and displaying the Internet Packet Exchange IPX protocol the Novell Inc adaptation of the Xerox Network System XNS protocol The Passport implementation of IPX supports four Ethernet frame formats Ethernet II ipxEthernet2 e 802 2 LLC ipx802dot2 e 802 3 RAW ipx802dot3 e 802 3 SNAP ipxSnap In addition to the IPX configuration commands there are also commands for IPX RIP and IPX SAP Reference for the Passport 1000 Series Command Line Interface Release 2 1 264 Chapter 6 Configuring layer 3 protocol features config ipx commands The IPX commands allow you to configure an IPX interface on the switch To configure an IPX interface 1 Create a protocol based VLAN using one of the four supported Ethernet frame formats config vlan lt vid gt create byprotocol lt sid gt lt ipx802
293. t continued format lt device gt y help lt command gt history login logout command Page No config web server disable page 126 config web server enable config web server info config web server set info config web server set password lt ro rw rwa gt lt username gt lt passwd gt copy lt srcdevfile gt lt destdevfile gt debug ip lt value gt page 88 cwc page 78 date delete lt devfile gt page 88 directory lt device gt exit page 78 202086 C Appendix A CLI command list 335 Table 14 CLI command list continued command Page No monitor mlt error collision lt mid gt monitor mlt error main lt mid gt monitor mlt stats interface main lt mid gt monitor mlt stats interface utilization lt mid gt monitor ports error collision lt ports gt monitor ports error extented lt ports gt monitor ports error main lt ports gt monitor ports error ospf lt ports gt monitor ports stats bridging lt ports gt monitor ports stats dhcp lt ports gt monitor ports stats interface main lt ports gt monitor ports stats interface extended lt ports gt monitor ports stats interface utilization lt ports gt monitor ports stats ospf main lt ports gt monitor ports stats ospf extended lt ports gt monitor ports stats routing lt ports gt monitor ports stats stp lt ports gt monitor ports stats vrrp extended lt
294. t XXX gt An IP address with a subnet mask can be specified in two forms lt XKX gt lt KKX gt lt KKX gt lt KKX gt lt YVYY gt lt YYY gt lt YYY gt lt Yyy gt or lt XXX gt lt XXX gt lt XXX gt lt XXX gt lt n gt where XXX XXX XXX XXX IS the IP address in dotted decimal notation yyy yyy yyy yyy is the subnet mask in dotted decimal notation nis the number of subnet mask bits Reference for the Passport 1000 Series Command Line Interface Release 2 1 76 Chapter 3 Run Time CLI description The following examples refer to the same IP address and subnet mask pair 10 10 10 1 255 255 255 0 10 10 10 1 24 Accessing the Run Time CLI To access the Run Time CLI log on to the switch using a Telnet connection from a terminal that has access to the Passport 1000 Series chassis When you enter the CLI the name of the system is the displayed prompt For example Passport 1100 gt To open a Telnet session from Passport Device Manager click the Telnet icon from the tool bar E Run time command list tree Figure 9 shows an outline diagram of the main command groups in the Run Time CLI tree Appendix A CLI command list contains an alphabetical list of the Run Time CLI commands Other chapters in this manual list and describe the commands according to their function e Chapter 4 Configuring switch management e Chapter 5 Configuring layer 2 features e Chapter 6 Configuring laye
295. t commands output 90 Figure 17 show test artable command output aoe 93 Figure 18 show test fabric command output ne 94 Figure 19 show test loopback command output ane 94 Figure 20 show trace file command output aoe 96 Figure 21 show trace level command output eee 96 Figure 22 show config command output c0ccsceccsncesceee kasse ness 98 Figure 23 show tech command output ane ee 101 Figure 24 config cli info command output aar renner annen 103 Figuie2S show el info command output gt esrsrersarersereranersereink ne 103 Figure 26 show cli who command output eeen 104 Figure 27 config cli password info command output 105 Figure 28 show cli password command output ane 105 Figure 29 config log command output n eee 106 Reference for the Passport 1000 Series Command Line Interface Release 2 1 20 Figures Figure 30 Figure 31 Figure 32 Figure 33 Figure 34 Figure 35 Figure 36 Figure 37 Figure 38 Figure 39 Figure 40 Figure 41 Figure 42 Figure 43 Figure 44 Figure 45 Figure 46 Figure 47 Figure 48 Figure 49 Figure 50 Figure 51 Figure 52 Figure 53 Figure 54 Figure 55 Figure 56 Figure 57 Figure 58 Figure 59 Figure 60 Figure 61 Figure 62 Figure 63 Figure 64 show log file tail command output en 108 show log level command output eee 108 show rmon command output eee sar cue ae amer a re mms 109 config sys access policy
296. t listen lt enable disable gt Allows the user to enable or disable setting RIP listen to accept the default route via RIP default supply lt enable disable gt Disables RIP on the VLAN This is the default setting disable Enables RIP on the VLAN enable Allows the user to send a default route only if one exists in the routing table listen lt enable disable gt Configures whether the switch listens for a default route without listening for any other routes manualtrigger Allows you to manually issue a RIP update poison lt enable disable gt Sets whether RIP routes on the VLAN learned from a neighbor are advertised back to the neighbor If disabled split horizon is invoked and IP routes learned from an immediate neighbor are not advertised back to the neighbor If enabled the RIP updates sent to a neighbor from which a route is learned are poisoned with a metric of 16 Therefore the receiver neighbor ignores this route because the metric 16 indicates infinite hops in the network supply lt enable disable gt Configures whether the switch supplies talk to the default route without advertising any other routes trigger lt enable disable gt Enables or disables automatic triggered updates for RIP Refer to Table 12 on page 214 for actions resulting from RIP supply and listen settings Figure 127 shows output for the config vlan ip rip info command
297. t ports gt show ports info ip lt ports gt show ports info name lt port gt show ports info ospf lt ports gt show ports info rip lt ports gt show ports info stg main lt ports gt show ports info stg extended lt ports gt show ports info unknown mac discard lt ports gt show ports info vlans lt ports gt show ports info vrrp main lt ports gt show ports info vrrp extended lt ports gt command Page No show mit error collision lt mid gt page 147 show mlt error main lt mid gt show mlt info lt mid gt show mlt stats lt mid gt show mirrorinfo page 145 show ports error collision lt ports gt page 129 show ports error extented lt ports gt show ports error main lt ports gt show ports error ospf lt ports gt show ports info all lt ports gt by lt value gt page 133 Reference for the Passport 1000 Series Command Line Interface Release 2 1 340 Appendix A CLI command list Table 14 CLI command list continued command Page No show ports stats bridging lt ports gt show ports stats dhcp lt ports gt show ports stats interface main lt ports gt show ports stats interface extended lt ports gt show ports stats ospf main lt ports gt show ports stats ospf extended lt ports gt show ports stats routing lt ports gt show ports stats stg lt ports gt show ports stats vrrp lt ports gt page 135 show radiu
298. t switches have real time clocks The date command displays the calendar time in the format day of the week month hh mm ss year If the date command is entered on a device that does not have a real time clock the following message is displayed The Real Time Clock is not present Use the config setdate command to set the real time clock Help command Online help is available in the Passport 1000 Series Run Time CLI Use the help command to see the available types of online Help Figure 10 Reference for the Passport 1000 Series Command Line Interface Release 2 1 82 Chapter 3 Run Time CLI description Figure 10 Passport 1000 Series online Help P Typing help describes help features 2 Typing help commands provides a list of commands you can enter from the current prompt 3 Typing help ttychars provides a list of special terminal editing characters 4 Typing syntax displays a path list of commands and parameters available from the current prompt or lt command gt forward 5 Typing help lt command gt or lt command gt help describes a specific command or provides a list of sub commands you can enter from with in lt command gt 6 Typing displays the sub and current context commands available from the current prompt 7 Typing command displays the sub and current context commands available from the current prompt if the command is a intermediate node in the command tree st
299. tains a redundant SSF module one SSF module becomes the master SSF module when powering up or resetting The boot monitor image is loaded from the flash memory on that SSF module When the boot monitor image is loaded the CPU and basic system devices such as the console port modem port PCMCIA card slot if applicable and debug Ethernet port are initialized Note I O ports are not available at the boot monitor image load stage The I O ports are not initialized until later in the boot process Stage 2 Boot configuration load After the bootstrap image loads the boot configuration is loaded The boot configuration resides in boot flash memory on the SSF module It consists of parameters that control how the boot process proceeds and how the devices initialized by the boot monitor are configured For information about boot monitor commands refer to Chapter 2 Boot Monitor command line interface 202086 C Chapter 1 Passport basics 37 Table I lists the boot monitor parameters Table 1 Boot monitor parameters Configuration Parameter Description Autoboot Switch automatically proceeds to stage 3 If you do not want autoboot to proceed you can interrupt the sequence at stage 2 using the console port Factory Determines whether the factory default configuration or a user defined configuration is used For more information refer to Stage 4 Switch configuration load Isolate All I O Ports
300. tatic SAP entry where Service type is defined by an integer 1 65535 Examples include 0000h unknown 0003h print queue 0004h file server 0005h job server 0007h print server 0009h archive server 0024h remote bridge server 0047h advertising print server service name is a character string 1 to 47 characters ipxhost is the network and node network IPX network number 1 2147483647 node Xx yy Zz Uu vv ww where xx yy ZZ uu yy and ww are 2 digit hexadecimal numbers e socket number is 0 65535 e hop count is 1 to 15 delete lt service name gt Deletes a static SAP entry age multiplier lt IPX network number gt lt age multiplier gt Sets the hold multiplier value for the IPX interface The range is 1 to 2147483647 the default is 3 update delay lt IPX network number gt lt delay timer gt Sets the update delay timer for the IPX interface The range is 1 to 1000 ms the default is 50 ms update interval lt I PX network number gt lt interval timer gt Sets the update interval for the IPX interface in seconds The range is 1 to 2147483647 the default is 60 seconds show ipx commands The show ipx commands display the configuration of IPX on the switch 202086 C Chapter 6 Configuring layer 3 protocol features 273 show ipx config command The show ipx config command displays general IPX configuration information for the switch or for
301. tests do not interfere with the normal bridging and routing activities of the switch but they do occupy the CPU The test commands include the following options test followed by artable Runs the Address Resolution table test fabric Tests the switch fabric of the switch test loopback Places individual ports into internal or external loopback ports int ext mode ports is the port list slot port slot port 1 int ext gt is internal or external loopback mode defined by an ASCII string stop artable Stops the current Address Resolution table test stop fabric Stops the current switch fabric test 202086 C Chapter 3 Run Time CLI description 93 test followed by stop loopback Stops the current loopback test lt ports gt ports stats Clears port statistics from the switch counters lt ports gt Note To test a port in loopback mode the port must first be put into the testing state using the config ethernet lt port gt state test command After completing the test put the port back in normal mode using the config ethernet lt port gt state enable command show test commands The show test commands provide information about tests that are run on the switch show test artable command The show test artable command displays information about the AR table test results Figure 17 Figure 17 show test artable command outp
302. th layer 3 routing For information about features supported in Passport switches refer to Networking Concepts for the Passport 1000 Series Switch The Passport 1000 Series includes the following models e The Passport 1100 Switch e The Passport 1150 Switch e The Passport 1200 Switch You can manage these switches using the Device Manager graphical user interface GUI or the command line interface CLI Note For procedures to perform initial setup of the switch configured for basic switching and routing operation refer to Installing the Passport 1000 Series Chassis shipped in hard copy and on the Passport Documentation CD Reference for the Passport 1000 Series Command Line Interface Release 2 1 34 Chapter 1 Passport basics This chapter provides information about the basic operation of a Passport 1000 Series switch Topics covered in this chapter include the following e Management tools next Boot sequence on page 36 e Flash PCMCIA file system on page 40 e Passport access levels and passwords on page 52 Management tools You can monitor and manage your Passport switch using the following tools e Device Manager Boot Monitor command line interface e Run Time command line interface e Passport Configuration Page Device Manager Device Manager is an SNMP based graphical user interface tool designed to manage single devices In order to use this tool you must have network connectiv
303. tic members or blocked not allowed to join 202086 C Chapter 5 Configuring layer 2 features 171 Figure 86 config vlan igmp snoop info command output Sub Context clear config monitor show test trace Current Context mrouter query interval 125 report proxy enable robust value 2 state disable show vlan igmp snoop commands The show vlan igmp snoop commands display information about the IGMP snooping feature used to optimize data flow within all or a selected VLAN show vlan info snoop command The show vlan info snoop command shows the IGMP snoop parameters configured for all or specified VLANs The command syntax is show vlan info snoop vid Figure 87 shows output for the show vlan info snoop command Reference for the Passport 1000 Series Command Line Interface Release 2 1 172 Chapter 5 Configuring layer 2 features Figure 87 show vlan info snoop command output IGMP PROXY QUERY MROUTER ACT RTR LAST OO QUERIER ULAN UID SNOOP ENABLE ROBUST INTUAL PORTS PORTS QUERIER PORT EXP NAME 1 false true 2 15 040020 O Default 2 false true 2 125 6 8 8 8 8 ULRN 2 45 false true 2 125 6 6 8 6 6 MM 16 75 false true 2 125 8 8 8 8 6 ubs 76 false true 2 125 8 8 6 8 8 vines d false true 2 125 8 8 8 8 8 ipx862d ot ce false true 2 125 8 6 6 8 8 brouter J show vlan igmp snoop access list command The show vlan igmp snoop access list command displays the acc
304. tid gt delete config ip traffic filter global set lt gsetid gt info config ip traffic filter global set lt gsetid gt remove filter lt fid gt config ip traffic filter info config ip traffic filter log interval lt seconds gt config ip traffic filter set lt setid gt add filter lt fid gt config ip traffic filter set lt setid gt create name lt value gt config ip traffic filter set lt setid gt delete config ip traffic filter set lt setid gt info config ip traffic filter set lt setid gt remove filter lt fid gt page 295 202086 C Appendix A CLI command list 323 Table 14 CLI command list continued command Page No config ip udpfwd info config ip udpfwd interface lt ipaddr gt create lt fwdlistid gt config ip udpfwd interface lt ipaddr gt delete config ip udpfwd interface lt ipaddr gt info config ip udpfwd interface lt ipaddr gt maxttl lt maxttl gt config ip udpfwd interface lt ipaddr gt udpportfwdlist lt fwdlistid gt config ip udpfwd portfwdlist lt fwdlistid gt add portfwd lt udpport gt lt ipaddr gt config ip udpfwd portfwdlist lt fwdlistid gt create config ip udpfwd portfwdlist lt fwdlistid gt delete config ip udpfwd portfwdlist lt fwdlistid gt info config ip udpfwd portfwdlist lt fwdlistid gt name lt name gt config ip udpfwd portfwdlist lt fwdlistid gt remove portfwd lt udpport gt lt ipaddr gt config ip udpfwd protocol lt updport gt c
305. tions followed by config ip traffic filter create info Displays the destination source and global filters that have been created sre ip lt value gt id lt value gt destination dst ip lt value gt Creates a destination filter dst ip value is the destination IP mask a b c d x a b c d x x x x default src ip value is the source IP mask a b c d x a b c d x x x x default global src ip lt value gt dst ip lt value gt id lt value gt Creates a global filter src ip value is the source IP mask a b c d x a b c d x x x x default dst ip value is the destination IP mask a b c d x a b c d x x x x default Source src ip value dst ip value id lt value gt Creates a source filter src ip value is the source IP mask a b c d x a b c d x x x x default dst ip value is the destination IP mask a b c d x a b c d x x x x default config ip traffic filter filter commands The config ip traffic filter commands are the general config ip traffic filter filter commands where fid is the traffic filter ID 1 to 4000 The commands use the following options config ip traffic filter filter lt fid gt followed by info Displays the settings for the specified filter delete Deletes the specified traffic filter 202086 C Chapter 7 Configuring IP flow policies
306. to another networking device The command sends an Internet Control Message Protocol ICMP packet from the switch to the target device If the device receives the packet it sends a ping reply When the switch receives the reply it displays a message indicating that the specified IP address is active If no reply is received a message indicates that the address is not responding The command syntax for the ping command is ping lt ipaddr gt lt datasize gt lt count gt s I lt value gt t lt value gt d where ipaddr is the IP address of the other networking device datasize is the size of the ping data 16 to 4076 count is any integer value equal to or greater than 1 from 1 to 9999 The default is 1 Reference for the Passport 1000 Series Command Line Interface Release 2 1 86 Chapter 3 Run Time CLI description s is a continuous ping at the interval rate I value is the interval between transmissions in seconds 1 to 60 t value is the no answer timeout value in seconds 1 to 120 d is the set ping debug Figure 14 shows output for the ping command Figure 14 ping command output PING 16 160 46 169 56 data bytes 64 bytes from 18 18 58 169 icmp seq 8 time 2 ms ping timeout 18 18 58 169 PING Statistics 1 packets transmitted 1 packets received 6 packet loss round trip ms min avg max 2 2 2 The pingipx command tests an IPX network connection us
307. to utilize a feature requiring ARU3 you must remove the module or set eoc status to aru3quid5 which allows you to utilize ARU3 features but leaves the lower version module inoperable Figure 38 config sys set info command output Sub Context clear config monitor show test trace A Current Context boot contact location name portlock sendtrap topology eoc mode primary flash 3 secondary flash acc21newb15 tertiary flash acc21newb15 config flash 2 edwin 4461 Great America Parkway Santa Clara CA 95652 swlab edge2 on false on default E 202086 C Chapter 4 Configuring switch management 119 Figure 39 config sys set snmp info command output Passport 118884 config sys set snmp info sy community trap recu 10 10 40 91 10 10 40 92 16 122 66 182 16 122 66 188 134 177 25 24 134 177 25 49 134 177 25 61 134 177 25 78 134 177 25 106 134 177 25 176 134 177 80 11 135 177 88 181 135 177 88 189 135 177 88 113 135 177 88 125 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 v1 KANTEN EN EN ETNA ro 11 12 13 ru rua public public optivity96 autotrap superagent_autotrap public public public public public public public public public public public Sub Context clear config monitor show test trace Current Context public private private private private secret N show sys commands The show sys command
308. top bit e Hardware flow control For pinout information about required cables refer to Appendix A in Using the Passport 1000 Series Switch You can also access the Run Time CLI through a Telnet or rlogin session Many Run Time CLI commands are listed and defined in this manual Passport Configuration Page The Passport Configuration Page is a Web based graphical user interface tool that operates with a Web browser It has limited functionality and is intended for use as a tool to access and monitor devices on your network from various locations For more information about using the Passport Configuration Page refer to the section about Web Management in Reference for Passport Management Software Switching Operations Reference for the Passport 1000 Series Command Line Interface Release 2 1 36 Chapter 1 Passport basics Boot sequence Passport 1000 Series switches go through a four stage boot sequence The boot sequence includes the following four stages e Stage 1 Boot monitor image load Stage 2 Boot configuration load e Stage 3 Run time image load Stage 4 Switch configuration load The following sections describe the stages in the boot process Stage 1 Boot monitor image load When you power up or reset a switch the processor on the Silicon Switch Fabric SSF module or board loads the boot monitor image The boot monitor image is contained in flash memory on the SSF module If a Passport 1200 Switch con
309. tput Passport 12888 config ip dumrp info Current Context enable update interval triggered update interval leaf timeout nbr timeout N nbr probe interval N Sub Context clear config monitor show test trace false 66 15 266 35 16 E 202086 C Chapter 6 Configuring layer 3 protocol features 251 config ip dvmrp interface command The config ip dvmrp interface commands require an IP address and use the following options config ip dvmrp interface lt ipaddr gt followed by disable Disables DVMRP on the local router interface enable Enables DVMRP on the local router interface info Displays information about the specified DVMRP local router interface metric lt cost gt Sets the cost metric maximum number of hops for the router interface The range is 1 to 31 show ip dvmrp commands The show ip dvmrp commands display information about the DVMRP as set on the switch show ip dvmrp info command The show ip dvmrp command displays information about the general DVMRP group Figure 157 shows output for the show ip dvmrp command Reference for the Passport 1000 Series Command Line Interface Release 2 1 252 Chapter 6 Configuring layer 3 protocol features Figure 157 show ip dvmrp info command output Passport 12884 show ip dumrp info N Dumrp General Group AdminStat disabled Genid 6 Version null NumRoutes
310. tput sk ER ERE NREN KR KEN KKR E 279 config ip policy addrlist info command output 280 config ip policy netlist info command output a 281 config ip policy ospf accept info command output 283 config ip policy ospf announce info command output 285 config ip policy rip accept info command output 287 config ip policy rip announce info command output 289 show ip policy addrlist info command output 290 show ip policy addrlist info id 1 command output 290 show ip policy netlist info command output 291 show ip policy netlist info id 1 command output 291 config ip traffic filter info command output 200005 295 config ip traffic filter filter info command output 297 config ip traffic filter filter action info command output 298 monitor mit stats interface utilization command output 306 monitor ports stats interface utilization command output 307 Pasep 120051018 causes augue wapa dd Ras RE AA RR HEER SERENE 343 Passport 1100 BOB cc ars oane exe khe REOR Rx Ete e 344 Port numbering on I O modules ss ss sean a ea dC cn 344 202086 C 25 Tables Table 1 Boot monitor parameters ccisaucsasccauReka Ru REX ARERARGKRCGXSAEGAA 37 Table 2 Command arguments and meaning eneen 44 Table 3 Pa
311. tput T Passport 1166 show ip route info UN Total 5 routes 8 0 0 8 8 0 0 8 18 18 58 1 1 1 3 1 TRUE STATIC 18 18 58 8 255 255 255 0 16 186 46 168 1 1 TRUE LOCAL 18 168 58 8 255 255 255 6 16 168 46 168 1 75 TRUE LOCAL 18 168 168 8 255 255 255 0 10 168 168 168 1 3 f TRUE LOCAL 192 168 36 6 255 255 255 9 192 168 386 168 1 3 13 TRUE LOCAL Total 5 printed out of 5 E RIP commands This section describes the commands used to configure the Routing Information Protocol RIP on the Passport 1000 Series switch RIP is configured on an isolated routing port or on a VLAN but it must also be enabled globally config ip rip commands The config ip rip commands allow you to globally enable or disable RIP on the switch and use the following options config ip rip followed by Displays current RIP configuration settings info Figure 122 disable Globally disables RIP on the switch domain ipaddr value Changes the RIP interface configuration domain the value inserted into the routing domain field of all RIP packets sent on this interface ipaddris the interface IP address a b c d value is the domain value 0 to 39321 enable Globally enables RIP on the switch 202086 C Chapter 6 Configuring layer 3 protocol features 209 config ip rip followed by holddown lt seconds gt Sets the RIP holddown timer value the length of time in seconds that
312. trace Current Context ACCESS rwa ru 13 12 11 ro LOGIN rua ru 13 12 11 ro PASSWORD Fwa ru 13 12 11 ro show cli password command The show cli password command displays the CLI access login and password combinations Figure 28 shows output for the show cli password command Figure 28 show cli password command output ACCESS rua ru 13 12 11 ro LOGIN rwa ru 13 12 11 ro PASSWORD rwa ru 13 12 11 ro Log commands The log commands configure and display the switch log files Reference for the Passport 1000 Series Command Line Interface Release 2 1 106 Chapter 4 Configuring switch management config log commands The config log commands allow you to show write or clear the log file created automatically by the system The config log commands use the following syntax and options config log followed by info Displays current log settings Figure 29 clear Clears the log file level lt level gt Shows and sets the log level to one of the following values 0 Information 1 Warning 2 Error 3 Manufacturing 4 Fatal screen lt setting gt Sets the log display on the screen on or off off on write lt str gt Writes the log file with the designated string where string is the string or command that you append to the log file If the name contains spaces you must enclose it in quotation marks
313. ts into a stub area This field should be used only if the area stub is set to true nssa lt true false gt Sets a not so stubby area true or false An NSSA prevents flooding of normal route advertisements into the area by replacing them with a default route 202086 C Chapter 6 Configuring layer 3 protocol features 223 config ip ospf area lt area gt followed by stub lt true false gt Sets the import external option for this area to be stub or not true false A stub area has only one exit point router interface out of the area stub metric lt stub metric gt Stub default metric for this stub area which is the cost from 0 to 16777215 This is the metric value applied at the indicated type of service Figure 130 config ip ospf area info command output Passport 1166 config ip ospf area 1 6 6 6 info N Sub Context clear config monitor show test trace Current Context create not created delete not created import summaries not created nssa not created stub not created Ser stub metric not created P config ip ospf area range commands The config ip ospf area range commands control the OSPF area range parameters where lt area gt is the identification of an OSPF area and ipaddr mask is the IP address and subnet mask of the range The config ip ospf area range commands use the following options config ip ospf area area range lt ipaddr ma
314. tus false ExternLsaCount 8 ExternLsaCksumSum 8 8x8 TOSSupport 8 OriginateNewLsas 8 RxNeuLsas 8 TrapEnable false RutoUirtLinkEnable false SpfHoldDounTime 18 ag show ip ospf interface command The show ip ospf interface command displays information about the OSPF interface Figure 136 shows output for the show ip ospf interface command 202086 C Chapter 6 Configuring layer 3 protocol features 229 Figure 136 show ip ospf interface command output passport 1166 show ip ospf interface SK Ospf Interface INTERFACE AREAID ADMINST IFST METR PRIO DR BDR AUTHKEY AUTHTYPE 168 192 18 168 6 6 6 6 disable Down 18 1 6 6 6 6 none 6 6 6 6 192 168 668 168 6 6 6 6 disable Down 18 1 8 8 8 8 none 8 8 8 8 18 18 58 168 8 0 8 8 disable Doun 18 1 6 6 6 6 none 8 8 8 8 192 168 18 168 8 8 8 8 disable Doun 18 1 8 8 8 8 none 8 8 0 8 192 168 30 168 6 6 6 6 enable Down 18 1 8 8 0 8 none M mn A show ip ospf int timers command The show ip ospf int timers command displays the parameters for the OSPF interface timers Figure 137 shows output for the show ip ospf int timers command Figure 137 show ip ospf int timers command output Passport 1166 show ip ospf int timers N Ospf Interface Timer TRANSIT RETRANS HELLO DEAD POLL INTERFACE AREAID DELAY INTERVAL INTERVAL INTERVAL INTERVAL 168 192 186 168 6 6 6 6 1 5 16 46 126 192 168 66 168 6 6 6 6 1 5 16 46 126 18 18 548 168 8 8 8 8 1 5 18 48 128 1
315. umbers for more information Table 7 Boot Monitor CLI commands Command See page flags reset y save boot device gt filename lt cfgfile gt lt tftp gt lt file gt ll choices lt choice gt lt source gt lt filename gt devices lt device name or device number gt tests lt device name or device number gt tftp server ip address gt lt file gt Note Entering a boot command with no arguments causes the switch to follow the current boot choices and boot the switch Boot commands Use these commands to display and modify boot parameters and to 59 reboot the Passport 1000 Series chassis copy src device gt filename dest device filename gt delete device name or device number lt filename gt directory device name or device number format device name or device number recover device name or device numbers Squeeze device name or device numbers File and device management commands Use these commands to manage system 60 software files and configuration files and to manage the flash module and PCMCIA card help command help command Use this command to list all boot monitor commands or to display 62 command syntax Reference for the Passport 1000 Series Command Line Interface Release 2 1 58 Chapter 2 Boot Monitor command line interface Table 7 Boot Monitor CLI commands continued trace show tail lt d
316. unce lt pid gt rip interface list lt addrlist id gt page 284 config ip policy ospf apply accept config ip policy ospf apply announce page 282 config ip policy ospf info page 282 Reference for the Passport 1000 Series Command Line Interface Release 2 1 320 Appendix A CLI command list Table 14 CLI command list continued command Page No config ip policy rip accept pid action lt acceptlignore gt config ip policy rip accept lt pid gt apply mask lt ipmask gt config ip policy rip accept lt pid gt create config ip policy rip accept lt pid gt delete config ip policy rip accept lt pid gt disable config ip policy rip accept lt pid gt enable config ip policy rip accept lt pid gt exact netlist lt netlist id gt config ip policy rip accept lt pid gt info config ip policy rip accept lt pid gt inject netlist lt netlist id gt config ip policy rip accept lt pid gt name lt string gt config ip policy rip accept lt pid gt precedence lt precedence gt config ip policy rip accept lt pid gt range netlist lt netlist id gt config ip policy rip accept lt pid gt rip gateway list lt addrlist id gt config ip policy rip accept lt pid gt rip interface list lt listid gt page 286 config ip policy rip announce pid action lt announcelignore gt config ip policy rip announce pid add route source lt direct static rip ospfjany gt config ip policy rip announc
317. ure 133 show ip ospf default metric command output Passport 1166 show ip ospf default metric 16MbpsPortDefaultMetric 188 188HbpsPortDefaulthHetric 18 1888HbpsPortDefaultHetric 1 202086 C Chapter 6 Configuring layer 3 protocol features 227 show ip ospf host route command The show ip ospf host route command displays the OSPF host route configuration including host IP address type of service and the metric used show ip ospf ifstats command The show ip ospf ifstats command displays IP OSPF interface statistics The command syntax is show ip ospf ifstats mismatch where mismatch is the number of times the area ID is not matched Figure 134 shows output for the show ip ospf ifstats command Figure 134 show ip ospf ifstats command output Passport 1108 show ip ospf ifstats HELLOS DBS LS REQ LS UDP LS ACK INTERFACE RX TX RX TX RX TX RX TX RX Tx 192 168 360 168 6 8 8 6 8 6 8 8 8 0 show ip ospf info command The show ip ospf info command displays the current OSPF settings for the switch Figure 135 shows output for the show ip ospf info command Reference for the Passport 1000 Series Command Line Interface Release 2 1 228 Chapter 6 Configuring layer 3 protocol features Figure 135 show ip ospf info command output Passport 1186 show ip ospf info bi RouterId 22 131 38 3 AdminStat disabled VersionNumber 2 fireaBdrRtrStatus false ASBdrRtrSta
318. ured on the switch Note To take effect the configuration must be saved and the switch reset Figure 175 config ipx set info command output Passport 12888 config ipx set info max route max sap max static route max static sap netbios 128 1588 128 65 ON Reference for the Passport 1000 Series Command Line Interface Release 2 1 268 Chapter 6 Configuring layer 3 protocol features config ipx static route commands The ipx static route commands are used to create or delete a static IPX network route The commands use the following options config ipx static route followed by info Displays IPX routes created and or deleted Figure 176 create Creates a static IPX network route where lt IPX network number gt nexthopis the IPX address of the next lt nexthop gt lt hop count gt router Ca hop count is the number of passes through a router tick count is the number of ticks 1 18th of a second To create a default route enter FF FF FF FE as the IPX network number delete Deletes the static IPX network route lt IPX network number gt Figure 176 config ipx static route info command output Passport 1266 config ipx static route info Sub Context clear config monitor show test trace Current Context create delete N A config ipx rip commands The config ipx rip commands are used to configure Routing Information Protocol RIP
319. ut Running a switch fabric test Current test results IfIndex 6 Result inProgress PassCount 1157687756 FailCount 6 show test fabric command The show test fabric C Font command displays the result of the latest switch fabric test Figure 18 Reference for the Passport 1000 Series Command Line Interface Release 2 1 94 Chapter 3 Run Time CLI description Figure 18 show test fabric command output Running a switch fabric test Current test results IfIndex 8 Result inProgress PassCount 1157719536 FailCount 8 show test loopback command The show test loopback command displays the results of the latest loopback test for the switch or for the specified port s in the format show test loopback ports Figure 19 displays sample output for port 1 1 Figure 19 show test loopback command output Waiting for last test to clean up amp exit Last test results Port 1 1 IfIndex 16 Result none PassCount 8 FailCount 8 Trace commands The trace commands allow you to see the status of the switch in a given time frame Note Using the trace command slows the performance of your switch gt 202086 C Chapter 3 Run Time CLI description 95 The trace commands use the following parameters trace followed by info tail Shows the trace message file The tail option allows you to view the log from the back first clear Clears tracing on a
320. utput ene 234 Figure 144 show ports info ospf command output en 235 Figure 145 show ports stats ospf main command output 236 Figure 146 show ports stats ospf extended command output 237 Figure 147 config vlan ip ospf info command output ene 239 Figure 148 show vlan info ospf command output a 239 Figure 149 config ethernet ports ip vrrp info command output 242 Figure 150 show ports info vrrp main command output ranerne 243 Figure 151 show ports info vrrp extended command output 243 Figure 152 show ip mroute interface command output 247 Figure 153 show ip mroute next hop command output 247 Figure 154 show ip mroute route command output ene 248 Figure 155 show ports stats routing command output n en 249 Figure 156 config ip dvmrp info command output 250 Figure 157 show ip dvmrp info command output a 252 Figure 158 show ip dvmrp interface command eene ee 252 Figure 159 show ip dvmrp neighbor command output 2 00 008 253 Figure 160 show ip dvmrp next hop command output 24 253 Figure 161 show ip dvmrp route command output vnr eee eee 254 Figure 162 config ethernetip dvmrp info command output 254 Figure 163 show ports info dvmrp command output 255 Figure 164 config vlan ip dvmrp info command output 256 Figure 165 show vlan info d
321. vice name or device number gt Reference for the Passport 1000 Series Command Line Interface Release 2 1 60 Chapter 2 Boot Monitor command line interface Table 8 Boot Monitor CLI boot parameters continued Command Description tftp Changes TFTP server information help Lists all boot monitor commands or displays a command syntax To list the boot devices on your routing switch enter the show devices command To list the file names enter the directory command The flags reset save and tftp commands do not require parameters flags and tftp commands prompt you to select options File and device management commands The file and device management commands enable you to manage files on the boot devices flash PCMCIA card and TFTP server In addition these commands allow you to manage the flash module and PCMCIA card The file management commands include those listed in Table 9 Table 9 File management commands copy lt src device gt filename lt dest Copies a file from one boot device to device gt filename another or copies it to the same boot device using a new file name With no where arguments it prompts the user src deviceisthe device from which you are copying a file dest device is the device onto which you are copying a file filename is a file name delete lt device gt filename gt Deletes a file from a flash or PCMCIA device
322. vmrp command output a 257 Figure 166 show ip 13 igmp cache command output ene 258 Figure 167 show ip 13 igmp group command output 259 Figure 168 show ip 13 igmp interface command output 259 Figure 169 config ethernet ip I3 igmp info command output 260 Reference for the Passport 1000 Series Command Line Interface Release 2 1 24 Figures Figure 170 Figure 171 Figure 172 Figure 173 Figure 174 Figure 175 Figure 176 Figure 177 Figure 178 Figure 179 Figure 180 Figure 181 Figure 182 Figure 183 Figure 184 Figure 185 Figure 186 Figure 187 Figure 188 Figure 189 Figure 190 Figure 191 Figure 192 Figure 193 Figure 194 Figure 195 Figure 196 Figure 197 Figure 198 Figure 199 Figure 200 show ports info 13 igmp command output aasan 261 config vlan ip I3 igmp info command output 262 show vlan info 13 igmp command output ravnen 263 config ipx info command output eee 266 config ipx forwarding info command output 266 config ipx set info command output 02002 267 config ipx static route info command output 268 config ipx rip info command output 269 config ipx sap info command output lille 271 show ipx default command output 0 00 ee ee 273 show ipx stats command output aa 274 contig ip ilaw command output 62462655 saque rrr R 4 RERO PE Mn 278 show ip flow command ou
323. warding database status other invalid learned self mgmt entry priority lt mac gt status value high lows Sets the VLAN forwarding database priority to high or low mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 status value is the forwarding database status other invalid learned self mgmt filter add lt mac gt port lt value gt Adds a filter member to a VLAN bridge mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 port value is the slot port slot port slot port filter info Indicates forwarding database filters added or removed Figure 83 Reference for the Passport 1000 Series Command Line Interface Release 2 1 166 Chapter 5 Configuring layer 2 features config vlan lt vid gt fdb followed by filter notallowfrom add lt mac gt port lt value gt Adds a not allowed filter member to a VLAN bridge mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 port value is the portlist slot port slot port filter notallowfrom info Displays not allowed filter members added or removed Figure 84 filternotallowfrom remove lt mac gt port lt value gt Removes a not allowed filter member from a VLAN bridge mac is the MAC address 0x00 0x00 0x00 0x00 0x00 0x00 port value is the portlist slot port slot port filter remove lt mac gt Removes a filter
324. who is logged in to the switch Figure 26 shows output for the show cli who command Figure 26 show cli who command output SESSION USER ACCESS IP ADDRESS Telnet rua rua 134 177 25 214 Console none Hoden none config cli password commands The config cli password commands allow you to view or change the login or password for the different access levels of the routing switch where password is the password associated with the user name or login name You must have read write all privileges in order to view or change passwords The command syntax is config cli password The config cli password command uses the following options config cli password followed by info Displays current login and password settings ro username password Sets the Read Only login and or password 11 username password Sets the layer 1 login and or password 12 username password Sets the layer 2 login and or password 13 username password Sets the layer 3 login and or password rw username lt password gt Sets the read write login and or password rwa username password Sets the read write all login and or password 202086 C Chapter 4 Configuring switch management 105 Figure 27 shows output for the config cli password info command Figure 27 config cli password info command output Sub Context clear config monitor show test
325. witch Table 8 lists the Boot Monitor CLI boot parameters Table 8 Boot Monitor CLI boot parameters Command Description boot Boots the switch lt device gt filename lt cfgfile gt device is the name or number of a boot device lt tftp gt lt file gt filename is the software image file name cfgfileis the software configuration device and file or NVRAM file name e tftp file specifies a file that is on the TFTP server choices Displays or changes the order in which the boot lt choice gt source lt filename gt sources flash and PCMCIA card are accessed choice is the order in which the specified boot device is accessed when you reboot the switch primary secondary or tertiary source is the boot source none flash pcmcia net skip If you specify none no boot source is accessed for the choice primary secondary or tertiary you are configuring If you specify skip the choice you are configuring is skipped devices Enables or disables the specified boot device lt device name or device number gt flags Enables or disables autoboot and booting using the default configuration settings reset y Resets the system by loading the configuration file or by using the default settings save Saves changes to the boot configuration parameters show Displays the boot configuration parameters tests Enables or disables the bootup diagnostic tests lt de
326. x is slot port slot port 1 Reference for the Passport 1000 Series Command Line Interface Release 2 1 128 Chapter 5 Configuring layer 2 features These commands include media layer commands and network layer commands for the specified ports The commands use the following options followed by config ethernet lt ports gt info Displays the current port settings Figure 49 auto negotiate enable disable gt Enables or disables autonegotiation adjusting between 10 Mb s and 100 Mb s and half or full duplex on the port See note on page 129 Enabled by default duplex lt half full gt Sets the operating mode of the port to half duplex or full duplex when autonegotiation is disabled speed lt 10 100 gt Sets the port speed to 10 Mb s or 100 Mb s when autonegotiation is disabled state enable disable tests Specifies the administrative state on the port as up down or test The default is up enabled default vlan id vid Directs the switch to send the untagged frames to a default VLAN if received on a tagged port vidis the VLAN ID of the default VLAN to which the discarded frames should be sent high priority lt true false gt Enables or disables setting the port as high priority linktrap lt enable disable gt Enables or disables the link up down trap for a port lock lt true false gt Locks a port for exclusive use if the portlo
327. y ospf announce command The config ip policy ospf announce commands allow you to configure the OSPF announce policy where the OSPF announce policy ID is in the range 2001 to 3000 The commands use the following options config ip policy ospf announce lt pid gt followed by info Displays the settings for the OSPF announce policy Figure 186 action lt accept ignore gt Selects whether the OSPF policy action accepts or ignores external route information add route source lt direct static rip any gt Adds a route source to the announce policy sets direct static RIP or any as accepted sources from which the route can be learned advertise netlist lt netlist id gt If the action is set to announce allows sending or advertising networks that differ from the actual network in the routing table The netlist ID is the advertised netlist ID 0 to 1000 and allows advertisement of an aggregate or default along with the actual network create Creates an OSPF announce policy delete Deletes an OSPF announce policy disable Disables an OSPF announce policy enable Enables an OSPF announce policy exact net list lt netlist id gt Sets an OSPF announce policy in which networks only match the specific network advertisement The netlist id range is 0 to 1000 ext metric lt ext metric gt Sets the OSPF announce external metric 0 to 65535 ext metric type typel type2
328. yte of the MAC address for VLAN I is always 81 For other VLANs the MAC address assigned can be found in Device Manager VLAN gt VLAN gt Advanced or through the run time CLI show vlan info advance command Reference for the Passport 1000 Series Command Line Interface Release 2 1 348 Appendix B Port numbering and MAC address assignment 202086 C 349 Index A boot factory default 39 accept policy boot flash memory 40 OSPF 282 Boot Monitor CLI RIP 286 accessing 56 access levels 52 access policies 110 access policy commands configure 111 show 113 address lists 280 alphabetical list of commands 309 announce policy OSPF 284 RIP 287 ARP commands configure 188 IP 189 port 192 show 191 VLAN 194 ARU2 hardware 70 ARU3 hardware 70 authentication RADIUS 142 B base MAC address 345 boot command Boot Monitor CLI 59 Run Time CLI 79 boot configuration 36 59 command list 56 definition 35 55 Boot Monitor CLI commands boot 59 choices 59 delete 60 device management 60 devices 59 directory 61 file management 60 flags 59 format 61 help 62 history 62 ip 63 log 61 ping 65 quit 67 recover 61 reset 59 save 59 show 59 67 squeeze 61 tests 59 tftp 60 trace 61 boot monitor image file 42 boot options internal flash 59 network 59 PCMCIA 59 Reference for the Passport 1000 Series Command Line Interface Release 2 1 350 Index skip 59 boot order specifying 59 boot sequence
329. yte packets 10 10 46 1 4 ms 10 10 11 1 2 ms 134 177 181 1 2 ms 134 177 186 1 5 ms 3 ms 3 ms 134 177 184 2 2 ms 3 ms 2 ms 134 177 103 2 3 ms KAL 134 177 1 22 3 ms ONAN EWN Reference for the Passport 1000 Series Command Line Interface Release 2 1 88 Chapter 3 Run Time CLI description File and device management commands The file and device management commands enable you to manage files on the flash module the PCMCIA card or the network These commands operate the same way as the boot monitor CLI commands The file management commands include the log and trace commands as well as the following options copy lt srcdevfile gt lt destdevfile gt debug Copies a file from one device to another e srcdevfile is the source device flash PCMCIA configuration TFTP etc and file name destdevfile is the destination device and file name debug allows you to debug the CLI script output delete lt devfile gt Deletes a file from a boot device devfile is the destination device and file name directory lt devfile gt 1 Lists the files on a boot device devfile is the destination device and file name e value is the user login name string format lt device gt y Formats the flash module or PCMCIA card device is flash or PCMCIA recover lt device gt Recovers files marked for deletion from the flash module or PCMCIA card
Download Pdf Manuals
Related Search