command line reference guide version 1 - fujitsu...
TRANSCRIPT
Dieses Handbuch wurde erstellt von / This manual was produced by
cognitas. Gesellschaft für Technik-Dokumentation mbH — www.cognitas.de
Herausgegeben von / Published by
Fujitsu Siemens Computers GmbH
Printed in the Federal Republic of Germany
Ausgabe/Edition Ausgabestand
* *
Bestell-Nr./ Order No.:
Bestellnummer
Seitenanzahl: 70
PRIMERGY BX600 10GbE Switch Blade 10/2 Command Line Reference Guide Version 1.0
English
ii
COPYRIGHT NOTICE AND DISCLAIMER © Copyright 2008 Fujitsu Siemens Computers GmbH All Rights Reserved. This document and the software described in this document are furnished under and are subject to the terms of a license agreement and constitute the confidential and proprietary information of Fujitsu Siemens Computers GmbH. Except as permitted in the license agreement, no part of this document may be reproduced in any form or by any means without the express written consent of Fujitsu Siemens Computers GmbH. This document is the copyrighted work of Fujitsu Siemens Computers GmbH and is owned by Fujitsu Siemens Computers GmbH. EXCEPT AS MAY BE EXPRESSLY SET FORTH IN THE LICENSE AGREEMENT, FUJITSU SIEMENS COMPUTERS GMBH PROVIDES THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT “AS IS” WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. FUJITSU SIEMENS COMPUTERS GMBH SHALL NOT BE LIABLE FOR ANY DAMAGE OR LOSS RESULTING FROM THE USE OF THIS DOCUMENT. This document may include technical inaccuracies or omissions or typographical errors and Fujitsu Siemens Computers GmbH shall not be liable for such inaccuracies, omissions or errors contained herein. Fujitsu Siemens Computers GmbH reserves the right to make changes to this document without prior notice. TRADEMARKS ServerEngines, the ServerEngines logo, BladeXchange, and BladeEngine are trademarks or registered trademarks of ServerEngines Corporation. Microsoft, Windows, Windows XP, and Windows 2003 are U.S. registered trademarks of Microsoft Corporation. Adobe and Acrobat are trademarks of Adobe Systems Incorporated. Other product names are the trademarks or registered trademarks of their respective owners.
III
TABLE OF CONTENTS
1. COMMAND LINE INTERFACE ENVIRONMENT ....................................................................................................1 ABOUT THIS COMMAND REFERENCE .......................................................................................................................................1 COMMAND LINE INTERFACE PRIMER .......................................................................................................................................1
Definitions...........................................................................................................................................................................1 Command Line Help ...........................................................................................................................................................1 Syntax Help .........................................................................................................................................................................2
COMMAND REFERENCE PRIMER...............................................................................................................................................4 Typographic Conventions ...................................................................................................................................................4
FORMAT USED FOR COMMAND DESCRIPTION...........................................................................................................................6 Command Negation.............................................................................................................................................................6 Variable Parameter Expansion...........................................................................................................................................7
SHOW COMMAND TOKENS .......................................................................................................................................................7 COMMON COMMAND MODES ..................................................................................................................................................8
2. BX SHELL COMMANDS..............................................................................................................................................10
3. COMMON STP COMMANDS......................................................................................................................................26
4. STP COMMANDS..........................................................................................................................................................35
5. RSTP COMMANDS .......................................................................................................................................................39
6. MSTP COMMANDS ......................................................................................................................................................43
7. LACP COMMANDS ......................................................................................................................................................55
8. LAYER 2 COMMANDS ................................................................................................................................................60 COMMON COMMANDS ...........................................................................................................................................................60 BROADCAST STORM COMMANDS...........................................................................................................................................62 BRIDGE COMMANDS ..............................................................................................................................................................64 VLAN COMMANDS ...............................................................................................................................................................75 IGMP SNOOPING COMMANDS ...............................................................................................................................................85 GVRP COMMANDS..............................................................................................................................................................102
9. IP ADDRESS COMMANDS........................................................................................................................................108
10. FIRMWARE UPGRADE COMMANDS................................................................................................................115
11. PORT BACKUP COMMANDS...............................................................................................................................117
12. NTP COMMANDS ...................................................................................................................................................118
13. SSH COMMANDS....................................................................................................................................................122
14. EVENT LOG COMMANDS....................................................................................................................................124
15. CONFIGURATION COMMANDS.........................................................................................................................125
16. TACACS+ COMMANDS .........................................................................................................................................127
17. RADIUS COMMANDS ............................................................................................................................................130
IV
18. SNMP COMMANDS ................................................................................................................................................133
19. LOGGING COMMANDS ........................................................................................................................................138
20. APPENDIX A: REDBOOT COMMANDS.............................................................................................................140
21. APPENDIX B: LOGGED ERROR MESSAGES...................................................................................................143
1. Command Line Interface Environment
1
1. Command Line Interface Environment
About This Command Reference
Network administrators and application developers who install and configure BladeXchange module should use this Command Reference.
Command Line Interface Primer
The BladeXchange Command Line Interface (CLI) is a text based facility conforming to industry standards. Many of the commands may be used in scripts to automate configuration tasks. Each command CLI is usually associated with a specific function or a common function performing a specific task. Multiple users can telnet and issue commands using the Exec mode and the Privileged Exec mode. However, only one user is allowed to use the Configure mode at a time. This prevents multiple users from issuing configuration commands simultaneously.
The IMI Shell gives users and administrators the ability to issue commands to several daemons from a single telnet session.
Definitions
token A non-character, non-numeric symbol: {}, {}, (), <>, |, ?, >, ., = parameter An UPPERCASE term for which the user substitutes input. keyword A lowercase term that the user types exactly as shown.
Command Line Help
The BladeXchange CLI contains a text-based help facility. Access this help by typing in the full or partial command string then typing a question mark “?”. The BladeXchange CLI displays the command keywords or parameters along with a short description.
For example, at the CLI command prompt, type
BX > show ? (the CLI does not display the question mark). The CLI displays this keyword list with short descriptions for each keyword:
BX# show
history Display the session command history ip IP information memory Memory statistics route-map route-map information running-config running configuration startup-config Contents of startup configuration version Displays BladeXchange version
If the ? is typed in the middle of a keyword, BX displays help for that keyword only.
BX> show de? (the CLI does not display the question mark). debugging Debugging functions (see also 'undebug')
1. Command Line Interface Environment
2
If the ? is typed in the middle of a keyword but the incomplete keyword matches several other keywords, BX displays help for all matching keywords.
BX> show i? (the CLI does not display the question mark). interface Interface status and configuration ip IP information isis ISIS information
Syntax Help Command Completion
The BX CLI can complete the spelling of a command or a parameter. Begin typing the command or parameter and then press TAB. For example, at the CLI command prompt type sh:
BX> sh
Press TAB. The CLI shows:
BX> show
If the command or parameter partial spelling is ambiguous, the BX CLI displays the choices that match the abbreviation. Type show i and press TAB. The CLI shows:
BX> show i interface ip isis BX> show i
The CLI displays the interface and ip keywords. Type n to select interface and press TAB. The CLI shows:
BX> show in BX> show interface
Type ? and the CLI displays the list of parameters for the show interface command.
BX> show interface IFNAME Interface name | Output modifiers > Output redirection<cr>
The CLI displays the only parameter associated with this command, the IFNAME parameter. For more information on the output modifiers and output redirection, see the Special Tokens for Show Commands section.
Command Abbreviations
The BX CLI accepts abbreviations for commands. For example,
sh in eth0
is an abbreviation for the show interface command.
1. Command Line Interface Environment
3
Command Line Errors
Any unknown spelling variation causes the command line parser to display in response to the ?, the error Unrecognized command. The parser re-displays the command as last entered. When the user presses the enter key after typing an invalid command, the parser displays:
BX(config)#router ospf here
^ % Invalid input detected at '^' marker.
where the ^ points to the first character in error in the command.
If a command is incomplete it displays this message:
BX> show % Incomplete command.
Some commands are too long for the display line and can wrap in mid-parameter or mid-keyword:
area 10.10.0.18 virtual-link 10.10.0.19 authent ication-key 57393
1. Command Line Interface Environment
4
Command Reference Primer Typographic Conventions
The following table lists typographic conventions for command syntax descriptions.
Convention Name Description Example
Monospaced font Convention Represents command strings entered on a command line and sample source code.
show ip ospf
Proportional font
Description Gives specific details about a parameter. advertise range Advertises this range
UPPERCASE Variable Parameter Indicates user input. Values to be entered according to the descriptions that follow. Each uppercased token expands into one or more other tokens.
area AREAID ADDRESS
lowercase Keyword parameter Indicates keywords. Values to be entered exactly as shown in the command description.
show ip ospf
| Vertical bar Delimits choices; One to be selected from the list. Not to be entered as part of the command.
A.B.C.D|<04294967295>
( ) Parenthesis Encloses optional parameters. None or only one to be chosen. Not to be entered as part of the command.
(A.B.C.D|<04294967295>)
{ } Braces Encloses optional parameters. None, one or more than one to be chosen. Not to be entered as part of the command.
{priority <0-255>|poll-interval <165535>}
[ ] Square brackets Encloses optional parameters. Choose one. Not to be entered as part of the command.
[parm2|parm2|parm3]
? Question mark Used with the square brackets to limit the immediately following token to one occurrence. Not to be entered as part of the command.
[parm1|parm2|?parm3] expands to parm1 parm3 parm1 parm2 (with parm3 occurring once)
< > Angle brackets Enclose a numeric range, endpoints inclusive. Not to be entered as part of the command.
<0-65535>
= Equal sign Separates the variable from explanatory text. Not to be entered as part of the command.
PROCESSID = <0-65535>
. Dot (period) Allows the repetition of the element that immediately follows it multiple times. Not to
be entered as part of the command.
.AA:NN can be expanded to:1:01 1:02 1:03.
A.B.C.D. IP Address An IPv4-style address. 10.0.11.123
1. Command Line Interface Environment
5
X:X::X:X IP Address An IPv6-style address. 3ffe:506::1, where the:: represents all 0s for those address components not explicitly given
LINE End-of-line input token
Indicates user input of any string, including spaces. No other parameters may be entered after input for this token.
string of words
WORD Single Token Indicates user input of any contiguous string (excluding spaces).
singlewordnospaces
IFNAME Single Token Indicates the name of an interface. eth0
1. Command Line Interface Environment
6
Format used for Command Description Command Name Description of the command. What the command does and when should it be used.
Command Syntax
sample command name mandatory-parameters (OPTIONAL-PARAMETERS)
Default
The status of the command before it is executed. Is it enabled or disabled by default. Command Mode
Name of the command mode in which this command is to be used. Such as, Exec, Privilege Exec, Configure mode and so on.
Usage
This section is optional. It describes the the usage of a specific command and the interactions between parameters. It also includes appropriate sample outputs for show commands.
Example
Used if needed to show the complexities of the command syntax. Related Commands
This section is optional and lists those commands that are of immediate importance. Equivalent Commands
This section is optional and lists commands that accomplish the same function. Validation Commands
This section is optional and lists commands that can be used to validate the effects of other commands.
Command Negation Some commands can be negated by using a no keyword.
In the following area virtual-link command, the no keyword is optional, This means that the entire syntax can be negated. Depending on the command or the parameters, command negation can mean the disabling of one entire feature for the router or the disabling of that feature for a specific ID, interface or address.
(no) area AREAADDRESSID virtual-link ROUTERID (AUTHENTICATE|MSGD|INTERVAL)
In the following example, negation is for the base command only. The negated form does not take any parameter.
default-metric <1-16777214>
no default-metric
1. Command Line Interface Environment
7
Variable Parameter Expansion
For the area virtual-link command,
(no) area AREAADDRESSID virtual-link ROUTERID (AUTHENTICATE|MSGD|INTERVAL)
the AREAADDRESSID parameter is replaced by either an IP address or a number in the given range:
AREAADDRESSID=A.B.C.D|<0-4294967295>
and ROUTERID by an IP address. The minimum command then is:
area 10.10.0.11 virtual-link 10.10.0.12
The parameters in the string (AUTHENTICATE|MSGD|INTERVAL) are optional, and only one may be chosen. Each one can be replaced by more keywords and parameters. One of these parameters, MD5, is replaced by the following string:
MD5= [message-digest-key <1-255> md5 MD5_KEY]
with MD5_KEY replaced by a 1-16 character string. Show Command Tokens
Two tokens modify the output of the show commands. Use the ? after typing the command to display:
BX# show users
| Output modifiers > Output redirection
Note: These tokens are available only through the IMI shell; they are unavailable to users who telnet to daemons. Output Modifiers
Type the | (vertical bar) to use Output modifiers.
begin Begin with the line that matches exclude Exclude lines that match include Include lines that match redirect Redirect output
Begin
The begin parameter displays the output beginning with the first line containing a token matching the input string (everything typed after the begin token).
BX# show run | begin eth1
...skipping interface eth1 ipv6 address fe80::204:75ff:fee6:5393/64
! interface eth2 ipv6 address fe80::20d:56ff:fe96:725a/64
! line con 0 login
line vty 0 4 login
1. Command Line Interface Environment
8
! end
Exclude
The exclude parameter excludes all lines of output that contain the input string. In the following output all lines containing the word “include” are excluded:
BX# show interface eth1 | exclude input Interface eth1
Scope: both Hardware is Ethernet, address is 0004.75e6.5393 index 3 metric 1 mtu 9000 <UP,BROADCAST,RUNNING,MULTICAST> VRF Binding: Not bound Label switching is disabled No Virtual Circuit configured Administrative Group(s): None DSTE Bandwidth Constraint Mode is MAM inet6 fe80::204:75ff:fee6:5393/64
output packets 4438, bytes 394940, dropped 0 output errors 0, aborted 0, carrier 0, fifo 0, heartbeat 0, window 0 collisions 0
Include
The include parameter includes only those lines of output that contain the input string. In the output below, all lines containing the word “input” are included:
BX# show interface eth1 | include input
input packets 80434552, bytes 2147483647, dropped 0, multicast packets 0 input errors 0, length 0, overrun 0, CRC 0, frame 0, fifo 1, missed 0
Redirect
The redirect parameter puts the lines of output into the indicated file. BX# show history | redirect /var/frame.txt Output Redirection
The output redirection token > allows the user to specify a target file for the lines of output. BX# show history > /var/frame.txt
Common Command Modes The commands available for each protocol are separated into several modes (nodes) arranged in a hierarchy; the Exec mode is the lowest. Each mode has its own special commands; in some modes, commands from a lower level are available. Note: Multiple users can telnet and issue commands using the Exec mode and the Privileged Exec mode. However, only one user is allowed to use the Configure mode at a time, to avoid multiple users from issuing configuration commands simultaneously. Exec mode also called the View mode, is the base mode from where users can perform basic commands like show, exit, quit, help, clear, and enable. All BX daemons have this mode. Privileged Exec mode also called the Enable mode, allows users to write (for saving and viewing the configuration)
1. Command Line Interface Environment
9
and show commands. Configure mode also called Configure Terminal mode, this mode serves as a gateway into the Interface, Router Line, Route Map, Key Chain and Address Family modes. Interface Mode Is used to configure protocol-specific settings for a particular interface. Any attribute configured in this mode overrides an attribute configured in the Router mode. Line Mode makes the access-class commands available. This diagram displays the common command mode tree:
Startup Router in EXEC mode(View Mode)
enable (password)
Command Mode
Command used to create the next Command Mode
Privileged EXEC mode (Enable mode)
configure
Configure Mode
Interface IFNAME
Line modeInterface mode
Line vty [FIRST] (LAST)
2. BX Shell Commands
10
2. BX Shell Commands show interface Use this command to show the running system status and configuration for a specified interface.
To modify the lines displayed, use the | (output modifier token), and to save the output to a file, use the > (output redirection token).
Command Syntax
show interface (IFNAME)
IFNAME the interface name
Command Mode
Exec and Privileged Exec Usage
NET3#show interface Interface eth0 is UP Hardware is Ethernet, address is 00-19-99-11-0f-cf Description: 1Gb Management Port index 2 metric 1 mtu 1500 <UP,BROADCAST,RUNNING,MULTICAST,ENABLE> inet 10.10.10.240/24 broadcast 10.10.10.255 input packets 140, bytes 9547, dropped 0, multicast packets 0 input errors 0, length 0, overrun 0, CRC 0, frame 0, fifo 0, missed 0 output packets 105, bytes 7264, dropped 0 output errors 0, aborted 0, carrier 0, fifo 0, heartbeat 0, window 0 collisions 0 Interface ap1 is UP Hardware is Ethernet, address is 7c-08-02-a6-3c-21 Description: Server Blade 1 index 4 metric 1 mtu 9216 <UP,BROADCAST,RUNNING,MULTICAST,ENABLE> Bandwidth 10g input bytes 56656, packets 698 unicast 0 multicast 651 broadcast 47 input packets dropped 32 input control frames 0, pause frames 0, fragments 0 input undersize packets 0, oversize packets 0 input errors fcs 0, alignment 0, frame length 0, code 0 input errors carrier sense 0, unknown opcode 0, jabbers 0 output bytes 64293, packets 875, unicast 610, multicast 170, broadcast 95 output packets dropped 0 output control frames 0, pause frames 0, fragments 0 output undersize packets 0, oversize packets 0 output errors fcs 0, dropped due to lifetime 0, jabbers 0 forwarded 0, flooded 0, vlandrops 0, buffer overflow drops 0 storm control drops 0, early detection control drops 0 transmit-receive frame counter 64bytes 803, (65-127)bytes 725, (128-255)bytes 28 (256-511)bytes 17, (512-1023)bytes 0, (1024-1518)bytes 0, (1519-1522)bytes 0 . . .
2. BX Shell Commands
11
interface Use this command to enter the Interface mode, and configure interface properties. Use the no parameter with this command to set it back to its default. Command Syntax
interface IFNAME no interface IFNAME
IFNAME Name of the interface for which the properties are to be configured. Command Mode
Configure mode Example
BX# configure BX(config)# interface eth0 BX(config-if)#
show startup-config Use this command to display the startup configuration of the switch.
Command Syntax
show startup-config
Command Mode
Privileged Exec mode Usage BX# show startup-config ! no service password encryption ! ip http server ip http secure-server ip http port 80 ip http secure-port 443 ! . . .
show running-config Use this command to show the running system status and configuration.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > (output redirection token).
Command Syntax
show running-config
Command Mode
Privileged Exec mode
2. BX Shell Commands
12
Usage BX# show running-config
! no service password-encryption ! ip http server ip http secure-server ip http port 80 ip http secure-port 443 ! no tacacs ! no radius ! snmp-server sysname snmp-server location snmp-server contact snmp-server community private ip localhost rw snmp-server community public ip 0.0.0.0 ro ! user username root passwd root user username guest passwd root ! vld on no port-backup ! bridge 1 protocol ieee vlan-bridge bridge 1 acquire no bridge 1 spanning-tree enable . . .
show running-config interface Use this command to show the current operating configuration of the switch.
To modify the lines displayed, use the | (output modifier token), and to save the output to a file, use the > (output redirection token).
Command Syntax
show running-config interface IFNAME
IFNAME the interface name Command Mode
Privileged Exec mode Usage
BX# show running-config interface ap1 ! interface ap1 bandwidth 10g switchport bridge-group 1 switchport mode access flowcontrol receive enable spanning-tree portfast !
2. BX Shell Commands
13
show cli Use this command to show the CLI tree of the current mode.
Command Syntax
show cli
Command Mode
Exec and Privileged Exec, Configure, and Interface Example BX# show cli
show list Use this command to show command lists.
Command Syntax
show list
Command Mode
Exec and Privileged Exec, Configure, and Interface Example BX# show list
show history Use this command to show the session command history.
Command Syntax
show history
Command Mode
Exec and Privileged Exec, and Configure Example BX# show history
show system Use this command to display system description.
Command Syntax
show system
Command Mode
Exec and Privileged Exec mode
2. BX Shell Commands
14
Usage BX# show system
System Description: PRIMERGY BX600 10GbE Switch Blade 10/2 System Uptime: 00:36:05 System Contact: System Name: System Location: IP Address: 10.21.1.50 MAC Address: 00-10-58-04-02-a1
show usernames Use this command to display users.
Command Syntax
show usernames
Command Mode
Privileged Exec mode Usage BX# show usernames username guest username guest 2
show x2fru Use this command to display FRU information.
Command Syntax
show x2fru
Command Mode
Privileged Exec Usage BX# show x2fru
Interface ap11 X2 FRU Information: Optical Connector Type: SC Standard Compliance Codes: 10GBASE-SR Vendor Name: Opnext,Inc Vendor Part Number: TRT2000EN-SM Vendor Revision: 00 Vendor Serial Number: T05M59271 Manufacturing Date: 2006-08-27
Interface ap12 X2 FRU Information: Optical Connector Type: Unspecified Standard Compliance Codes: Unspecified Vendor Name: OPNEXT,INC Vendor Part Number: TRTC010EN-BM Vendor Revision: 00 Vendor Serial Number: S05M94001 Manufacturing Date: 2005-12-05
2. BX Shell Commands
15
do Use this command to run Exec mode commands in Configure mode.
Command Syntax
do LINE
LINE Specify the command and its parameters. Command Mode
Configure mode Example
BX# configure BX(config)# do ping 10.10.0.23
hostname Use this command to set the system’s network name. Use the no parameter with this command to set it back to its default.
Command Syntax
hostname WORD (no) hostname WORD
WORD The system’s network name Command Mode
Configure mode Example
BX# configure BX(config)# hostname bxserver22
logout Use this command to exit from the Exec mode.
Command Syntax
logout
Command Mode
Exec mode Example
BX# logout
2. BX Shell Commands
16
exit Use this command to end current mode and go down to previous mode.
Command Syntax
exit
Command Mode
Exec, Privileged Exec, Configuration, and Interface mode Example
BX# exit
disable Use this command to turn off privileged mode command.
Command Syntax
logout
Command Mode
Privileged Exec mode Example
BX# disable
ping Use the ping utility to query another host (send echo messages).
Command Syntax
ping WORD WORD Specify the destination address or hostname. Use the form, A.B.C.D.
Command Mode
Privileged Exec mode Examples
BX# ping 10.10.0.5
privilege Use this command to set a new command privilege level.
Command Syntax
privilege level PRIVLVL
PRIVLVL = <0-15> The privilege level. level Assign the default privilege level for the line.
2. BX Shell Commands
17
Command Mode
Line mode Example
BX# configure BX(config)# line vty 0 5 BX(config-line)# privilege 15
show privilege Use this command to display the current privilege level set in the IMISH. The privilege level varies from 1-15.
Note: Currently, privilege levels 2-14 are undefined.
Command Syntax
show privilege Command Mode
Exec mode and Privileged Exec mode Example
BX# show privilege Current privilege level is 15
date Use the ‘date’ command to set date and time for switch. This date will not be preserved across reboots. Command Syntax
Date format Date – command to set the date and time Format – should be MMDDhhmmYYYY [month day hour minutes year]
Command Mode Privileged Exec mode Examples
BX# date 012911132007 Validation commands show date
show date Use this command to display the current date and time of the switch. Command Syntax
Show date
2. BX Shell Commands
18
Command Mode Privileged Exec mode Examples
BX# show date Sun Jan 29 12:45:07 UTC 2006
show dhcp Use this command to display the DHCP client daemon status. Command Syntax
show dhcp
Command Mode Privileged Exec mode Examples
BX# show dhcp
password Use this command to enable password for a particular user. Use the no parameter with this command to disable password for a particular user. Note: Password cannot be disabled for root user. Command Syntax
password <username>
no password <username>
Command Mode Privileged Exec mode Examples
BX# password guest
banner Use this command to define a login banner. Use the no parameter with this command to cancel the default banner. Command Syntax banner motd LINE banner motd default no banner default
motd message of the day LINE custom string default default string
2. BX Shell Commands
19
Command mode Configure Mode Examples
BX# banner motd default
show version Use this command to display BladeXchange firmware version. Command Syntax
show version
Command Mode Exec mode Examples
BX# show version Version Number: 1.0.1720 Number of Ports: 12 Machine Model: PRIMERGY BX600 10GbE Switch Blade 10/2
Related Commands Show board revision Validation Commands None
show board revision Use this command to display BladeXchange board revision. Command Syntax
show board revision
Command Mode Exec mode Examples
BX# show board revision Board Revision: E
Related Commands show version Validation Commands None
2. BX Shell Commands
20
show http Use this command to display HTTP configuration details. Command Syntax
show http
Command Mode Privileged Exec mode Examples
BX# show http HTTP Mode: Enabled HTTP Port: 80 Secure HTTP Mode: Enabled Secure HTTP Port: 443 Secure Protocols: TLS1, SSL3
clear interface Use this command to clear interface statistics. Command Syntax
clear interface (IFNAME)
IFNAME the interface name
Command Mode Privileged Exec mode Examples
BX# clear interface eth0
configure Use this command to enter the configuration mode. Command Syntax
configure
Command Mode Privileged Exec mode Examples
BX# configure BX(config)#
2. BX Shell Commands
21
enable Use this command to turn on the privileged mode. Command Syntax
enable
Command Mode Privileged Exec mode Examples
BX> enable BX#
help Use this command to describe the interactive help system. Command Syntax
help
Command Mode Privileged Exec, Configuration, and Interface mode Usage
BX# help This CLI provides advanced help features. When you need help, anytime at the command line please press ‘?’. If nothing matches, the help list will be empty and you must backup until entering a ‘?’ shows the available options. Two styles of help are provided: 1. Full help is available when you are ready to enter a Command argument (e.g. ‘show ?’) and describes each possible argument. 2. Partial help is provided when an abbreviated argument is entered and you want to know what arguments match the input (e.g. ‘show ve ?’.)
reboot Use this command to restart the switch. Command Syntax
reboot
Command Mode Privileged Exec mode
2. BX Shell Commands
22
Examples
BX# reboot
telnet Use this command to open a telnet session. Command Syntax
telnet WORD
WORD Specify the IP address or hostname of a remote system Command Mode Privileged Exec mode Examples
BX# telnet 10.20.0.1
shutdown Use this command to administratively shutdown the selected interface. This will bring the interface DOWN. Use the no parameter with this command to bring the interface from shutdown. This will bring the interface UP. Command Syntax
shutdown
no shutdown
Command Mode
Interface mode Example
BX(config-if)# shutdown
terminal length Use this command to set the number of lines on a screen. Use the no parameter with this command to turn off this command. Command Syntax
terminal length (<5-512>|0)
terminal no length (<5-512>|0)
<5-512>Number of lines displayed on a terminal 0 Infinite terminal length
Command Mode Privileged Exec mode
2. BX Shell Commands
23
Examples
BX# terminal length 5
service terminal-length Use this command to configure system wide terminal length. Use the no parameter with this command to disable terminal length. Command Syntax
service terminal-length <0-512>
no service terminal-length <0-512>
<0-512> The number of lines of VTY (0 means no line control)
Command Mode Configuration mode Examples
BX(config)# service terminal-length 5
line console Use this command to configure a primary terminal line.
Command Syntax
line console <0-0>
<0-0> The first line number
Command Mode
Configuration mode Example
BX(Config)# line console 0
line vty Use this command to configure a virtual terminal. Use the no parameter to cancel this command.
Command Syntax
line vty <0-63>
no line vty <0-63>
<0-63> The first line number
Command Mode
Configuration mode Example
BX(Config)# line vty 0 63
2. BX Shell Commands
24
service-advanced-vty Use this command to enable the advanced mode vty interface. Use the no parameter with this command to disable the advanced mode vty interface. Command Syntax
service-advanced-vty
no service-advanced-vty
Command Mode Configuration mode Examples
BX(config)# service-advanced-vty multicast Use this command to set a multicast flag to the interface. Use the no parameter to disable the multicast flag. Command Syntax
Multicast
no multicast
Command Mode
Interface mode Example
BX(config-if)# multicast
service password-encryption Use this command to encrypt system passwords. Use the no parameter with this command to disable password-encryption. Command Syntax
service password-encryption
no service password-encryption
Command Mode Configuration mode Examples
BX(config)# service password-encryption
2. BX Shell Commands
25
cisco-interoperability
Use this command to enable/disable Cisco interoperability for each interface. Command Syntax
cisco-interoperability (enable | disable)
enable Enable Cisco interoperability disable Disable Cisco interoperability
Default
If this command is not used, Cisco interoperability is disabled. Command Mode
Interface mode Usage
If Cisco interoperability is required, all BX boxes in the switched LAN must be Cisco-interoperability enabled. When BX is interoperating with Cisco, the only criteria used to classify a region are the region name and revision level. VLAN to instance mapping is not used to classify regions when interoperating with Cisco.
Examples
BX# configure terminal BX(config)# cisco-interoperability enable
3. Common STP Commands
26
3. Common STP Commands
bridge forward-time
Use this command to set the time (in seconds) after which (if this bridge is the root bridge) each port changes states to learning and forwarding. This value is used by all instances. To restore the default value of 15 seconds, use the no parameter with this command.
Command Syntax
bridge <1-1> forward-time FORWARD_DELAY
no bridge <1-1> forward-time
<1-1> The ID of the bridge group to which this delay time is assigned. FORWARD_DELAY = <4-30> the forwarding time delay in seconds.
Command Mode
Configure mode Default
The default value is 15 seconds. Usage
The allowable range for forward-time is 4-30 seconds. Care should be exercised if the value is to be made below 7 seconds.
Examples
BX# configure BX(config)# bridge 1 forward-time 8
Related Commands
bridge protocol ieee bridge hello-time
Use this command to set the hello-time, the time in seconds after which (if this bridge is the root bridge) all the bridges in a bridged LAN exchange Bridge Protocol Data Units (BPDUs). A very low value of this parameter leads to excessive traffic on the network, while a higher value delays the detection of topology change.
This value is used by all instances. To restore the default value of the hello time, use the no parameter. Command Syntax
bridge <1-1> hello-time HELLOTIME
no bridge <1-1> hello-time
<1-1> The ID of the bridge group to which this hello time is assigned. HELLOTIME = <1-10> The hello BPDU interval in seconds.
Default
Default value is 2 seconds.
3. Common STP Commands
27
Command Mode
Configure mode Usage
Configure the bridge instance NAME before using this command. The allowable range of values is 1-10 seconds. However, make sure that the value of hello time is always greater than the value of hold time (1 second by default).
Examples
BX# configure BX(config)# bridge 1 hello-time 3
bridge max-age
Use this command to set the max-age for a bridge. This value is used by all instances.
Use the no parameter with this command to restore the default value of max-age.
Command Syntax
bridge <1-1> max-age MAXAGE
no bridge <1-1> max-age
<1-1> The ID of the bridge group to which this maximum age time is assigned. MAXAGE = <6-40> The maximum time, in seconds, to listen for the root bridge.
Command Mode
Configure mode Default
The default value of bridge max-age is 20 seconds. Usage
Max-age is the maximum time in seconds for which (if a bridge is the root bridge) a message is considered valid. This prevents the frames from looping indefinitely.
The value of max-age should be greater than twice the value of hello time plus one, but less than twice the value of forward delay minus one. The allowable range for max-age is 6-40 seconds. Configure this value sufficiently high, so that a frame generated by root can be propagated to the leaf nodes without exceeding the max-age.
Examples
BX# configure BX(config)# bridge 1 max-age 12
bridge priority
Use this command to set bridge priority for the common instance. Using a lower priority indicates a greater likelihood of the bridge becoming root.
3. Common STP Commands
28
Command Syntax
bridge <1-1> priority PRIORITY
<1-1> = The ID of the bridge group for which the priority is set. PRIORITY = <0-61440> The bridge priority.
Command Mode
Configure mode Default
The default priority is 32678 (or hex 0x8000). Usage
This command must be used to set the priority of the bridge. The priority values can be set only in increments of 4094. Examples
BX# configure BX(config)# bridge 1 priority 128
bridge spanning-tree errdisable-timeout enable
Use this command to enable the errdisable-timeout facility, which sets a timeout for ports that are disabled due to the BPDU guard feature.
Command Syntax
bridge <1-1> spanning-tree errdisable-timeout enable
<1-1> Bridge group name for bridging. Default
By default, the port is enabled after 300 seconds. Command Mode
Configure mode Usage
The BPDU guard feature shuts down the port on receiving a BPDU on a BPDU-guard enabled port. This command associates a timer with the feature such that the port gets enabled back without manual intervention after a set interval. This interval can be configured by the user using the bridge spanning-tree errdisable-timeout interval command.
Example
BX# configure BX(config)# bridge 1 spanning-tree errdisable-timeout enable
bridge spanning-tree errdisable-timeout interval
Use this command to specify the time interval after which a port is brought back up.
3. Common STP Commands
29
Command Syntax
bridge <1-1> spanning-tree errdisable-timeout interval <10-1000000>
<1-1> Bridge group name for bridging. <10-1000000> Specify the errdisable-timeout interval in seconds.
Default
By default, the port is enabled after 300 seconds. Command Mode
Configure mode Example
BX# configure BX(config)# bridge 1 spanning-tree errdisable-timeout interval 34
bridge spanning-tree portfast bpdu-filter
Use this command to set portfast BPDU filter for the bridge. All ports that have their BPDU filter set to default take the same value of bpdu-filter as that of bridge.
Use the no parameter with this command to disable the BPDU filter for the bridge. Command Syntax
(no) bridge <1-1> spanning-tree portfast bpdu-filter
<1-1> Bridge group name for bridging. Command Mode
Configure mode Usage
The Spanning Tree Protocol sends BPDUs from all ports. Enabling the BPDU Filter feature ensures that PortFast- enabled ports do not transmit or receive any BPDUs.
Use the show spanning tree command to display administratively configured and currently running values of the bpdu-filter parameter for bridge and port.
Example
BX# configure BX(config)# bridge 1 spanning-tree portfast bpdu-filter
Related Commands
spanning-tree portfast bpdu-filter bridge spanning-tree portfast bpdu-guard
Use this command to enable the BPDU (Bridge Protocol Data Unit) Guard feature on a bridge.
Use the no parameter with this command to disable the BPDU Guard feature on a bridge.
3. Common STP Commands
30
Command Syntax bridge <1-1> spanning-tree portfast bpdu-guard
(no) bridge <1-1> spanning-tree portfast bpdu-guard
<1-1> Bridge group name for bridging. Command Mode
Configure and Interface mode Usage
When the BPDU Guard feature is set for a bridge, all portfast-enabled ports of the bridge that have bpdu-guard set to default shut down the port on receiving a BPDU. In this case, the BPDU is not processed. You can either bring the port back up manually by using the no shutdown command, or configure the errdisable-timeout feature to enable the port after the specified time interval.
Use the show spanning-tree command to display the bridge and port configurations for the BPDU Guard feature. It shows both the administratively configured and currently running values of bpdu-guard.
Example
BX# configure BX(config)# bridge 1 spanning-tree portfast bpdu-guard
Related Commands
spanning-tree portfast bpdu-guard, show spanning-tree bridge-group path-cost
Use this command to set the cost of a path associated with a bridge-group. The lower the path cost, the greater the likelihood of the bridge becoming root.
Command Syntax
bridge-group <1-1> path-cost PATHCOST
no bridge-group <1-1> path-cost
<1-1> the ID of the bridge group. PATHCOST = <1-200000000> The cost to be assigned to the group.
Default
The default bridge-group path cost is 0. Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap11 BX(config-if)# bridge-group 1 path-cost 200
3. Common STP Commands
31
bridge-group priority
Use this command to set the port priority for a bridge. The lower priority indicates a greater likelihood of the bridge becoming root.
Command Syntax
bridge-group <1-1> priority PRIORITY
<1-1> the ID of the bridge group. PRIORITY = <0-240> The priority to be assigned to the group.
Default
The default priority is 1. Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap11 BX(config-if)# bridge-group 1 priority 128
show user-priority
Use this command to display the user priority data.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > (output redirection token).
Command Syntax
show user-priority interface IFNAME
Command Mode
Privileged Exec mode Usage
The following is an output of this command displaying set user priority for interface eth4. BX# show user-priority interface eth4 Default user priority : 7
Examples
BX# show user-priority interface ap11
spanning-tree guard root
Use this command to enable the Root Guard feature for the port. The root guard feature disables reception of superior BPDUs.
Use the no parameter with this command to disable the root guard feature for the port.
3. Common STP Commands
32
Command Syntax
(no) spanning-tree guard root Command Mode
Interface mode Usage
The Root Guard feature makes sure that the port on which it is enabled is a designated port. If the Root Guard enabled port receives a superior BPDU, it goes to a Listening state (for STP) or discarding state (for RSTP and MSTP).
Example
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree guard root
spanning-tree portfast
Use this command to enable rapid transitions.
Use the no parameter with this command to disable rapid transitions. Command Syntax
(no) spanning-tree portfast
Command Mode
Interface Mode Examples
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree portfast
spanning-tree portfast bpdu-filter Use this command to set portfast BPDU filter for the port.
Use the no parameter with this command to revert the port BPDU filter value to default. Command Syntax
(no) spanning-tree portfast bpdu-filter (enable|disable|default)
Command Mode
Interface mode Usage
Use this command to set the BPDU-filter value for individual ports. When the enable or disable parameter is used with this command, this configuration takes precedence over bridge configuration. However, when the default parameter is used with this command, the bridge level BPDU-filter configuration takes effect for the port. Use the bridge spanning-tree portfast bpdu-filter command to configure the BPDU filter feature on a bridge.
3. Common STP Commands
33
Use the show spanning tree command to display administratively configured, and currently running values, of the bpdu-filter parameter for the bridge and port.
Example
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree portfast bpdu-filter enable
Related Commands
bridge spanning-tree portfast bpdu-filter spanning-tree portfast bpdu-guard Use this command to enable or disable the BPDU Guard feature on a port.
Use the no parameter with this command to set the BPDU Guard feature on a port to default. Command Syntax
spanning-tree portfast bpdu-guard [enable|disable|default]
Command Mode
Interface mode Usage
This command supersedes the bridge level configuration for the BPDU Guard feature. When the enable or disable parameter is used with this command, this configuration takes precedence over bridge configuration. However, when the default parameter is used with this command, the bridge level BPDU-Guard configuration takes effect. Use the bridge spanning-tree portfast bpdu-guard command to configure the BPDU Guard feature on a bridge.
Use the show spanning-tree command to display the bridge and port configurations for the BPDU Guard feature. It shows both the administratively configured and currently running values of bpdu-guard.
Example
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree portfast bpdu-guard enable
Related Commands
bridge spanning-tree portfast bpdu-guard, show spanning-tree
user-priority Use this command to set the default user priority associated with the Layer-2 interface.
Command Syntax
(no) user-priority PRIORITY
PRIORITY <0-7> Set the name of the bridge to use with this VLAN.
Command Mode
Interface mode
3. Common STP Commands
34
Examples BX# configure BX(config)# interface ap11 BX(config-if)# user-priority 3
4. STP Commands
35
4. STP Commands bridge shutdown Use the bridge shutdown command to disable a bridge, and no bridge shutdown to reset the bridge.
Command Syntax
bridge shutdown <1-1>
no bridge shutdown <1-1>
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Usage
Make sure to use the bridge instance NAME command before using this command. Examples
BX# configure BX(config)# bridge shutdown 1
Related Commands
bridge instance bridge spanning-tree enable Use this command to enable the Spanning Tree Protocol on a bridge. Use the no parameter to disable the (STP| RSTP | MSTP) protocol on the bridge. You can also optionally use the no-bridge-forward parameter to disable the (STP| RSTP | MSTP) protocol and put all the ports in the forwarding state.
Command Syntax
bridge <1-1> spanning-tree enable
no bridge <1-1> (spanning-tree| multi-spanning-tree| rapid-spanning-tree) enable
no bridge <1-1> (spanning-tree| rapid-spanning-tree| multi-spanning-tree) enable bridge-forward.
Command Mode
Configure mode Default
There is no default value. Example
BX# configure
BX(config)# bridge 1 spanning-tree enable
4. STP Commands
36
disable spanning-tree Use this command to disable the spanning tree, configure all the ports in forwarding state and disable BPDU flooding. Command Syntax
no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-fwd no-bpdu-flood
no Negate a command or set its defaults bridge Configure bridge settings <1-1> Bridge group number to configure spanning-tree spanning-tree multiple-spanning-tree Configure multiple spanning tree protocol (MSTP) rapid-spanning-tree Configure rapid spanning tree protocol (RSTP) enable Disable spanning tree protocol bridge-fwd Put all ports of the bridge into forwarding state no-bpdu-flooding Disable flooding of BPDUs Command Mode
Configure mode Usage BX(config)#no bridge 1 spanning-tree enable bridge-fwd no-bpdu-flood or BX(config)#no bridge 1 rapid-spanning-tree enable bridge-fwd no-bpdu-flood or BX(config)#no bridge 1 multiple-spanning-tree enable bridge-fwd no-bpdu-flood Example
BX(config)#no bridge 1 spanning-tree enable bridge-fwd no-bpdu-flood BX(config)# Related Commands no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-fwd no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable
disable spanning-tree Use this command to disable the spanning tree and configure all the ports in forwarding state. The execution of this command will allow flooding of the BPDUs.
Command Syntax
no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-fwd
no Negate a command or set its defaults bridge Configure bridge settings <1-1> Bridge group number to configure
4. STP Commands
37
spanning-tree spanning-tree multiple-spanning-tree Configure multiple spanning tree protocol (MSTP) rapid-spanning-tree Configure rapid spanning tree protocol (RSTP) enable Disable spanning tree protocol bridge-fwd Put all ports of the bridge into forwarding state Command Mode
Configure mode Usage BX(config)#no bridge 1 spanning-tree enable bridge-fwd or BX(config)#no bridge 1 rapid-spanning-tree enable bridge-fwd or BX(config)#no bridge 1 multiple-spanning-tree enable bridge-fwd Example
BX(config)#no bridge 1 spanning-tree enable bridge-fwd BX(config)# Related Commands no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-forward no-bpdu-flood no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable
disable spanning-tree Use this command to disable the spanning tree and configure all the ports in disabled state. It will also not allow flooding of the BPDUs.
Command Syntax
no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable
no Negate a command or set its defaults bridge Configure bridge settings <1-1> Bridge group number to configure spanning-tree spanning-tree multiple-spanning-tree Configure multiple spanning tree protocol (MSTP) rapid-spanning-tree Configure rapid spanning tree protocol (RSTP) enable Disable spanning tree protocol Command Mode
Configure mode Usage BX(config)#no bridge 1 spanning-tree enable or BX(config)#no bridge 1 rapid-spanning-tree enable or BX(config)#no bridge 1 multiple-spanning-tree enable
4. STP Commands
38
Example
BX(config)#no bridge 1 spanning-tree enable BX(config)# Related Commands no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-fwd no-bpdu-flood no bridge <1-1> (spanning-tree|multiple-spanning-tree|rapid-spanning-tree) enable bridge-fwd show spanning-tree This command shows the state of the spanning tree for all named bridge groups.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > (output redirection token).
Command Syntax
show spanning-tree spanning-tree Detailed display of spanning tree settings and statistics
Command Mode
Privileged Exec mode Examples BX# show spanning-tree
Usage
The following is an output of this command displaying the spanning tree. BX# show spanning-tree % 1: Spanning Tree enabled % 1: root path cost 0 - priority 32768 % 1: forward-time 15 - hello-time 2 - max-age 20 - root port 0 % 1: root id 8000001688040202 % 1: bridge id 8000001688040202 % 1: hello timer 1 - tcn timer 0 - topo change timer 0 % 1: 0 topology changes - last topology change Thu Jan 1 00:00:00 1970 % 1: portfast bpdu-filter disabled % 1: portfast bpdu-guard disabled % 1: portfast errdisable timeout disabled % 1: portfast errdisable timeout interval 300 sec % 1: bridge forwarding disabled % 1: bpdu flooding disabled % ap12: port 15 - id 800f - path cost 2000 - designated cost 0 % ap12: designated port id 800f - state Disabled - priority 128 % ap12: designated root 8000001688040202 % ap12: designated bridge 8000001688040202 % ap12: forward-timer 0 - hold-timer 0 - msg age timer 0 % ap12: forward-transitions 1 % ap12: portfast disabled % ap12: portfast bpdu-guard default - Current portfast bpdu-guard off % ap12: portfast bpdu-filter default - Current portfast bpdu-filter off
5. RSTP Commands
39
5. RSTP Commands bridge rapid-spanning-tree enable
Use this command to enable the Rapid Spanning Tree Protocol on a bridge. Use the no parameter to disable the (STP| RSTP | MSTP) protocol on the bridge.
Command Syntax
bridge <1-1> rapid-spanning-tree enable
no bridge <1-1> (spanning-tree| multi-spanning-tree| rapid-spanning-tree) enable
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Default
There is no default value. Examples
BX# configure BX(config)# bridge 1 rapid-spanning-tree enable
bridge shutdown
Use this command to reset a bridge. Use the bridge shutdown command to disable a bridge, and no bridge shutdown to return the bridge to operation.
Command Syntax
bridge shutdown <1-1>
no bridge shutdown <1-1>
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Usage
The bridge instance NAME must exist prior to using this command. Examples
BX# configure BX(config)# bridge shutdown 1
clear spanning-tree detected protocols Use this command to clear the detected protocols for a specific bridge or interface.
5. RSTP Commands
40
Command Syntax
clear spanning-tree detected protocols [bridge <1-1>]|[interface IFNAME]
<1-1> Specify the number of the bridge group on which protocols have to be cleared. IFNAME Specify the name of the interface on which protocols have to be cleared.
Command Mode
Privileged Exec mode Example
BX# clear spanning-tree detected protocols bridge 1
show spanning-tree This command shows the state of the spanning tree for all named bridge-groups.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > (output redirection token). Command Syntax
show spanning-tree
Command Mode
Privileged Exec mode Examples
BX# show spanning-tree
Usage
The following is an output of this command displaying the state of the spanning tree. BX# show spanning-tree
% 1: Rapid Spanning Tree Enabled % 1: Ageing Time 300 - Root Path Cost 2000 - Priority 32768 % 1: Forward Delay 15 - Hello Time 2 - Max Age 20 - Root Port 15 % 1: Root Id 8000001636e1fde7 % 1: Bridge Id 80007c0802a63c21 % 1: 0 topology changes - last topology change Thu Jan 1 00:00:00 1970 % 1: portfast bpdu-filter disabled % 1: portfast bpdu-guard disabled % 1: portfast errdisable timeout disabled % 1: portfast errdisable timeout interval 300 sec % % ap12: Port 15 - Id 800f - Role Rootport - State Discarding % ap12: Configured path cost 2000 - Designated path cost 0 % ap12: Designated port id 8012 - Priority 128 % ap12: Designated Root 8000001636e1fde7 % ap12: Designated Bridge 8000001636e1fde7 % ap12: Message Age 0 - Max Age 20 % ap12: Hello Time 2 - Forward Delay 15 % ap12: Forward Timer 6 - Msg Age Timer 5 - Hello Timer 0 % ap12: Version Rapid Spanning Tree Protocol - Received RSTP - Sent RSTP % ap12: No portfast configured - Current portfast off
5. RSTP Commands
41
% ap12: portfast bpdu-guard default - Current portfast bpdu-guard off % ap12: portfast bpdu-filter default - Current portfast bpdu-filter off % ap12: no root guard configured - Current root guard off % ap12: Configured Link Type point-to-point - Current point-to-point % ap12: forward-transitions 0
spanning-tree force-version Use this command to specify the version. A version identifier of less than a value of 2 enforces the spanning tree protocol. Although the command supports an input range of 0-3, for RSTP, the valid range is 0-2.
Use the no parameter with this command to set the default protocol version. Command Syntax
(no) spanning-tree force-version VERSION
VERSION <0-3> Version identifier. (0 - STP, 1- Not supported, 2 - RSTP, 3 - MSTP) Command Mode
Interface mode Examples
Set the value to enforce the spanning tree protocol:
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree force-version 1
Set the default protocol version:
BX# configure BX(config)# interface ap11 BX(config-if)# no spanning-tree force-version
spanning-tree link-type
Use this command to enable or disable point-to-point or shared link types. Use the
no parameter with this command to disable rapid transition.
Command Syntax
(no) spanning-tree link-type point-to-point
(no) spanning-tree link-type shared shared
Disable rapid transition. point-to-point Enable rapid transition.
Command Mode
Interface mode Usage
RSTP has a backward-compatible STP mode, spanning-tree link-type shared. An alternative is the spanning-tree force-version 0.
5. RSTP Commands
42
Examples
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree link-type point-to-point
6. MSTP Commands
43
6. MSTP Commands bridge cisco-interoperability
Use this command to enable/disable Cisco interoperability for MSTP. Command Syntax
bridge <1-1> cisco-interoperability (enable | disable)
<1-1> Specify the bridge group ID. enable Enable Cisco interoperability for MSTP bridge. disable Disable Cisco interoperability for MSTP bridge
Default
If this command is not used, Cisco interoperability is disabled. Command Mode
Configure mode Usage
If Cisco interoperability is required, all BX boxes in the switched LAN must be Cisco-interoperability enabled. When BX is interoperating with Cisco, the only criteria used to classify a region are the region name and revision level. VLAN to instance mapping is not used to classify regions when interoperating with Cisco.
Examples
To enable Cisco interoperability on a Layer-2 switch for a particular bridge (bridge 1 in this example):
BX# configure BX(config)# bridge 1 cisco-interoperability enable
To disable Cisco interoperability on a Layer-2 switch for a particular bridge:
BX# configure BX(config)# bridge 1 cisco-interoperability disable
bridge instance priority
Set the bridge priority for an MST instance to the value specified.
To restore the default value of the bridge priority, use the no parameter with this command. Command Syntax
bridge <1-1> instance INSTANCE_ID priority BRIDGE_PRIORITY
no bridge <1-1> instance INSTANCE_ID priority
<1-1> Specify the bridge-group ID.
INSTANCE_ID Specify the instance ID. BRIDGE_PRIORITY <0-61440> Specify the bridge priority (a lower priority indicates a greater
likelihood of the bridge becoming root).
6. MSTP Commands
44
Command Mode
Configure mode. Default
The default value of the priority for each instance is 32768. Usage
The lower the priority of the bridge, the better the chances are of the bridge becoming a root bridge or a designated bridge for the LAN.
The permitted range of values is 0-61440. The priority values can be set only in increments of 4094. Examples
BX# configure BX(config)# bridge 1 instance 3 priority 128
bridge instance vlan
Use this command to create an instance of a VLAN. This command can be used only after the VLAN is defined. Command Syntax
bridge <1-1> instance INSTANCE_ID vlan VLAN_ID
no bridge <1-1> vlan VLAN_ID
<1-1> Specify the bridge-group ID. INSTANCE_ID Specify the instance ID. VLAN_ID <1-4094> Specify a VLAN ID to be associated to the instance.
Command Mode
MST Configuration Mode Usage
The permitted range of instances is 0-15. Instance 0 refers to the internal spanning tree. The VLANs must be created before being associated with an MST instance (MSTI). If the VLAN range is not specified, the MSTI will not be created.
Example
BX# configure BX(config)# bridge 1 protocol mstp BX(config)# spanning-tree mst configuration BX(config-mst) bridge 1 instance 2 vlan 30
bridge max-hops Use this command to specify the maximum allowed hops for a BPDU in an MST region. This parameter is used by all the instances of the MST. To restore the default value, use the no parameter with this command.
Command Syntax
bridge <1-1> max-hops HOP_COUNT
no bridge <1-1> max-hops
<1-1> Specify the bridge-group ID. HOP_COUNT Maximum hops the BPDU will be valid for.
6. MSTP Commands
45
Command Mode
Configure Mode Default
The default max-hops in a MST region are 20. Usage
Specifying the max hops for a BPDU prevents the messages from looping indefinitely in the network. When a bridge receives a MST BPDU that has exceeded the allowed max-hops, it discards the BPDU.
Examples
BX# configure BX(config)# bridge 1 max-hops 25
bridge multiple-spanning-tree enable Use this command to enable the Multiple Spanning Tree Protocol on a bridge. Use the no parameter to disable the (STP| RSTP | MSTP) protocol on the bridge. Command Syntax
bridge <1-1> multiple-spanning-tree enable
no bridge <1-1> (spanning-tree| multi-spanning-tree| rapid-spanning-tree) enable
<1-1> Specify the bridge-group ID. Command Mode
Configure mode Default
There is no default value. Example
BX# configure BX(config)# bridge 1 multiple-spanning-tree enable
bridge region
Use this command to create an MST region, and specify a name to it. MST bridges of a region form different spanning trees for different VLANs.
Command Syntax
bridge <1-1> region REGION_NAME
no bridge <1-1> region REGION_NAME
<1-1> Specify the bridge-group ID. REGION_NAME Specify the name of the region.
Command Mode
MST Configuration mode
6. MSTP Commands
46
Default
By default, each MST bridge starts with the region name as its bridge address. This means each MST bridge is a region by itself, unless specifically added to one.
Examples
BX# configure BX(config)# spanning-tree mst configuration BX(config-mst)# bridge 1 region server79
bridge revision Use this command to specify the number for configuration information.
Command Syntax
bridge <1-1> revision REVISION_NUM
<1-1> Specify the bridge-group ID. REVISION_NUM <0-255> Revision number.
Command Mode
MST Configuration Mode Default
The default value of revision number is 0. Examples
BX# configure BX(config)# spanning-tree mst configuration BX(config-mst)# bridge 1 revision 25
bridge-group instance Use this command to assign a Multiple Spanning Tree instance to a port. Use the no parameter with this command to remove the instance. Command Syntax
bridge-group <1-1> instance INSTANCE_ID
no bridge-group <1-1> instance
<1-1> Specify the bridge-group number for bridging. INSTANCE_ID <1-16> Specify the instance ID.
Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap11 BX(config-if)# bridge-group 1 instance 3
6. MSTP Commands
47
bridge-group instance path-cost Use this command to set the cost of a path associated with an interface. Use the no parameter with this command to restore the default cost value of the path.
Command Syntax
bridge-group <1-1> instance INSTANCE_ID path-cost PATH_COST
no bridge-group <1-1> path-cost
<1-1> Specify the bridge-group number for bridging PATH_COST <1-200000000> Specify the cost of path in the range of <1-200000000> (a lower path-cost
indicates a greater likelihood of the specific interface becoming a root) Command Mode
Interface mode Default
Assuming a 10 Mb/s link speed, the default value is configured as 200,000. Examples
BX# configure BX(config)# interface ap11 BX(config-if)# bridge-group 1 instance 3 path-cost 1000
bridge-group instance priority Use this command to set the port priority for a bridge group. Use the no parameter with this command to restore the default priority value.
Command Syntax
bridge-group <1-1> instance INSTANCE_ID priority PRIORITY
no bridge-group <1-1> instance priority INSTANCE_ID
<1-1> Specify the bridge-group number for bridging. INSTANCE_ID Specify the identifier. PRIORITY <0-240> Specify the port priority in a range of <0-240> (a lower priority indicates greater
likelihood of the interface becoming a root). Command Mode
Interface mode
Default
The default value of port priority for each instance is 128. Usage
The Multiple Spanning Tree Protocol uses port priority as a tiebreaker to determine which port should forward frames for a particular instance on a LAN, or which port should be the root port for an instance. A lower value implies a better priority. In the case of the same priority, the interface index will serve as the tiebreaker, with the lower-numbered interface being preferred over others.
The permitted range is 0-240. The priority values can only be set in increments of 16.
6. MSTP Commands
48
Examples
BX# configure BX(config)# interface eth0 BX(config-if)#bridge-group 1 instance 3 priority 128
clear spanning-tree detected protocols
Use this command to clear the detected protocols for a specific bridge or interface. Command Syntax
clear spanning-tree detected protocols [bridge <1-1>]|[interface IFNAME]
<1-1> Specify the number of the bridge group on which protocols have to be cleared. IFNAME Specify the name of the interface on which protocols have to be cleared
Command Mode
Privileged Exec mode Default
The default value of revision number is 0. Examples
BX# clear spanning-tree detected protocols bridge 1
show spanning-tree interface Use this command to display the spanning-tree interface.
Command Syntax
show spanning-tree interface IFNAME
IFNAME Specify the name of the interface
Command Mode
Privileged Exec mode Usage
The following is an output of this command:
BX# show spanning-tree interface ap11 % 1: Bridge up - Multiple Spanning Tree Enabled % 1: CIST Root Path Cost 2000 - CIST Root Port 15 - CIST Bridge Priority 32768 % 1: Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % 1: CIST Root Id 8000001636e1fde7 % 1: CIST Reg Root Id 80007c0802a63c21 % 1: CST Bridge Id 80007c0802a63c21 % 1: Cisco Interoperability Mode disabled % 1: portfast bpdu-filter disabled % 1: portfast bpdu-guard disabled % 1: portfast errdisable timeout disabled
6. MSTP Commands
49
% 1: portfast errdisable timeout interval 300 sec % ap12: Port 15 - Id 800f - Role Rootport - State Forwarding % ap12: Designated External Path Cost 0 -Internal Path Cost 0 % ap12: Configured Path Cost 2000 - Add type Explicit ref count 1 % ap12: Designated Port Id 8012 - CST Priority 128 - % ap12: CIST Root 8000001636e1fde7 % ap12: Regional Root 80007c0802a63c21 % ap12: Designated Bridge 8000001636e1fde7 % ap12: Message Age 1 - Max Age 20 % ap12: CIST Hello Time 2 - Forward Delay 15 % ap12: CIST Forward Timer 0 - Msg Age Timer 5 - Hello Timer 1 % ap12: Version Multiple Spanning Tree Protocol - Received MSTP - Sent MSTP % ap12: No portfast configured - Current portfast off % ap12: portfast bpdu-guard default - Current portfast bpdu-guard off % ap12: Cisco Interoperability Mode disabled % ap12: portfast bpdu-filter default - Current portfast bpdu-filter off % ap12: no root guard configured - Current root guard off % ap12: Configured Link Type point-to-point - Current point-to-point
show spanning-tree mst Use this command to display the filtering database values. This command displays the number of instances created, and VLANs associated with it.
Command Syntax
show spanning-tree mst
Command Mode
Enable mode and Interface mode Usage
The following is an output of this command displaying the number of instances created, and the VLANs associated with it.
BX# show spanning-tree mst % b: Bridge up - Spanning Tree Enabled % b: CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 32768 % b: Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % b: CIST Root Id 8000000475e93ffe % b: CIST Reg Root Id 8000000475e93ffe % b: CST Bridge Id 8000000475e93ffe % % Instance VLAN % 0: 1 % 2: 4
show spanning-tree mst config Use this command to display MSTP configuration information for a bridge.
Command Syntax
show spanning-tree mst config
6. MSTP Commands
50
Command Mode
Exec mode and Privileged Exec mode
Usage
The following show output displays the MSTP configuration information for bridge b. BX# show spanning-tree mst config % % MSTP Configuration Information for bridge b : %------------------------------------------------------
% Format Id : 0 % Name : My Name % Revision Level : 0 % Digest : 0x80DEE46DA92A98CF21C603291B22880A
%------------------------------------------------------
show spanning-tree mst detail Use this command to display the filtering database values. The show spanning-tree mst detail prints the detailed information about each instance, and all interfaces associated with that particular instance.
Command Syntax
show spanning-tree mst detail interface IFNAME
IFNAME Specify the interface name
Command Mode
Exec mode and Privileged Exec mode Usage
The following is an output of this command displaying detailed information about each instance, and all interfaces associated with them.
BX# show spanning-tree mst detail ap11 % 1: Bridge up - Spanning Tree Enabled % 1: CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 0 % 1: Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % 1: CIST Root Id 0000009027342b72 % 1: CIST Reg Root Id 0000009027342b72 % 1: CST Bridge Id 0000009027342b72 % 1: portfast bpdu-filter disabled % 1: portfast bpdu-guard disabled % 1: portfast errdisable timeout disabled % 1: portfast errdisable timeout interval 1 sec % ap11: Port 4 - Id 8004 - Role Designated - State Forwarding % ap11: Designated External Path Cost 0 -Internal Path Cost 0 % ap11: Configured Path Cost 200000 - Add type Explicit ref count 2 % ap11: Designated Port Id 8004 - CST Priority 128 - % ap11: CIST Root 0000009027342b72 % ap11: Regional Root 0000009027342b72 % ap11: Designated Bridge 0000009027342b72 % ap11: Message Age 0 - Max Age 20 % ap11: CIST Hello Time 2 - Forward Delay 15 % ap11: CIST Forward Timer 0 - Msg Age Timer 0 - Hello Timer 0
6. MSTP Commands
51
% ap11: Version Multiple Spanning Tree Protocol - Received None - Sent STP % ap11: No portfast configured – Current portfast off % ap12: portfast bpdu-guard default – Current portfast bpdu-guard off % ap12: portfast bpdu-filter default – Current portfast bpdu-filter off % ap12: no root guard configured – Current root guard off % ap12: Configured Link Type point-to-pooint – Current point-to-point % ap11: Port 3 - Id 8003 - Role Designated - State Forwarding % ap11: Designated External Path Cost 0 -Internal Path Cost 0 % ap11: Configured Path Cost 200000 - Add type Explicit ref count 2 % ap11: Designated Port Id 8003 - CST Priority 128 - % ap11: CIST Root 0000009027342b72 % ap11: Regional Root 0000009027342b72 % ap11: Designated Bridge 0000009027342b72 % ap11: Message Age 0 – Max Age 20 % ap11: CIST Hello Time 2 – Forward Delay 15 % ap11: CIST Forward Timer 2 – Msg Age Timer 0 – Hello Timer 0 % ap11: Version Multiple Spanning Tree Protocol – Received STP – Sent STP % ap11: No portfast configured – Current portfast off % ap11: portfast bpdu-guard default – Current portfast bpdu-guard off % ap11: portfast bpdu-filter default – Current portfast bpdu-filter off % ap11: no root guard configured - Current root guard off % ap11: Configured Link Type point-to-point – Current point-to-point % Instance 1: Vlans: 2 % 1: MSTI Root Path Cost 0 - MSTI Root Port 0 - MSTI Bridge Priority 32768 % 1: MSTI Root Id 8001009027342b72 % 1: MSTI Bridge Id 8001009027342b72 % ap12: Port 4 - Id 8004 - Role Designated - State Forwarding % ap12: Designated Internal Path Cost 0 - Designated Port Id 8004 % ap12: Configured Internal Path Cost 200000 % ap12: Configured CST External Path cost 200000 % ap12: CST Priority 128 - MSTI Priority 128 % ap12: Designated Root 8001009027342b72 % ap12: Designated Bridge 8001009027342b72 % ap12: Message Age 0 - Max Age 0 % ap12: Hello Time 2 - Forward Delay 15 % ap12: Forward Timer 0 - Msg Age Timer 0 - Hello Timer 0 % % ap11: Port 3 - Id 8003 - Role Designated - State Forwarding % ap11: Designated Internal Path Cost 0 - Designated Port Id 8003 % ap11: Configured Internal Path Cost 200000 % ap11: Configured CST External Path cost 200000 % ap11: CST Priority 128 - MSTI Priority 128 % ap11: Designated Root 8001009027342b72 % ap11: Designated Bridge 8001009027342b72 % ap11: Message Age 0 - Max Age 0 % ap11: Hello Time 2 - Forward Delay 15 % ap11: Forward Timer 0 – Msg Age Timer 0 – Hello Timer 0
6. MSTP Commands
52
show spanning-tree mst instance
The show spanning-tree mst instance displays detailed information for the specified instance, and all interfaces associated with that instance.
Command Syntax
show spanning-tree mst instance INSTANCE_ID <0-15> interface IFNAME
INSTANCE_ID < 0 - 1 5 > Specify the instance ID for which information needs to be displayed
IFNAME Specify the interface name
. Command Mode
Exec mode and Privileged Exec mode Usage
The following is an output of this command displaying detailed information for instance 2. BX# show spanning-tree mst instance 2 ap11 % 1: Bridge up - Spanning Tree Enabled % 1: CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 0 % 1: Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % 1: CIST Root Id 0000009027342b72 % 1: CIST Reg Root Id 0000009027342b72 % 1: CST Bridge Id 0000009027342b72 % 1: portfast bpdu-filter disabled % 1: portfast bpdu-guard disabled % 1: portfast errdisable timeout disabled % 1: portfast errdisable timeout interval 1 sec % 1: MSTI Root Path cost 0 – MSTI Root Port 0 – MSTI Bridge Priority 32768 % 1: MSTI Root Id 8002009027342b72 % 1: MSTI Bridge Id 8002009027342b72 % ap12: Port 4 - Id 8004 - Role Designated - State Discarding % ap12: Designated Internal Path Cost 0 - Designated Port Id 8004 % ap12: Configured Internal Path Cost 200000 % ap12: Configured CST External Path cost 200000 % ap12: CST Priority 128 - MSTI Priority 128 % ap12: Designated Root 8002009027342b72 % ap12: Designated Bridge 8002009027342b72 % ap12: Message Age 0 - Max Age 0 % ap12: Hello Time 2 - Forward Delay 15 % ap12: Forward Timer 11 - Msg Age Timer 0 - Hello Timer 1 % % ap11: Port 3 - Id 8003 - Role Designated - State Discarding % ap11: Designated Internal Path Cost 0 - Designated Port Id 8003 % ap11: Configured Internal Path Cost 200000 % ap11: Configured CST External Path cost 200000 % ap11: CST Priority 128 - MSTI Priority 128 % ap11: Designated Root 8002009027342b72 % ap11: Designated Bridge 8002009027342b72 % ap11: Message Age 0 - Max Age 0
6. MSTP Commands
53
% ap11: Hello Time 2 - Forward Delay 15
% ap11: Forward Timer 7 - Msg Age Timer 0 - Hello Timer 1
spanning-tree force-version Use this command to specify the spanning-tree force (STP) version. A version identifier of less than a value of 2 enforces the spanning tree protocol.
Use the no parameter with this command to set the default protocol version. Command Syntax
(no) spanning-tree force-version VERSION
VERSION <0-3> Version identifier. (0 - STP, 1- Not supported, 2 - RSTP, 3 - MSTP) Command Mode
Interface mode Examples
Set the value to enforce the spanning tree protocol:
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree force-version 1
Set the default protocol version:
BX# configure BX(config)# interface ap11 BX(config-if)# no spanning-tree force-version
spanning-tree link-type Use this command to enable point-to-point or shared link types. Use the no parameter with this command to disable point-to-point or shared link types.
Command Syntax
(no) spanning-tree link-type point-to-point
(no) spanning-tree link-type shared
shared Disable rapid transition. point-to-point Enable rapid transition.
Command Mode
Interface mode Usage
MSTP has a backward-compatible STP mode, spanning-tree link-type shared. An alternative is the spanning-tree force-version 0.
Examples
BX# configure BX(config)# interface ap11 BX(config-if)# spanning-tree link-type point-to-point
6. MSTP Commands
54
spanning-tree mst configuration Use this command to enter the Multiple Spanning Tree Configuration mode.
Command Syntax
spanning-tree mst configuration
Command Mode
Configure mode Examples
BX# configure BX(config)# spanning-tree mst configuration BX(config-mst)#
7. LACP Commands
55
7. LACP Commands clear lacp counters Use this command to clear all counters of all present link aggregation control protocol (LACP) aggregators or a given LACP aggregator.
Command Syntax
clear lacp counters
Command Mode
Privileged Exec mode Example
BX# clear lacp counters
lacp port-priority Set the priority of a channel. Channels are selected for aggregation based on their priority with the higher priority (numerically lower) channels selected first.
Use the no parameter with this command to reset the priority of port to the default value (32768). Command Syntax
lacp port-priority <1-65535>
no lacp port-priority
<1-65535> Specify the LACP port priority.
Command Mode
Interface mode Example
BX# configure BX(config)# interface ap11 BX(config-if)# lacp port-priority 4096
lacp system-priority
Use this command to set the system priority of a local system. This is used in determining the system responsible for resolving conflicts in the choice of aggregation groups.
Note: Lower numerical values have higher priorities.
Use the no parameter with this command to reset the system priority of the local system to the default value (32768). Command Syntax
lacp system-priority <1-65535>
no lacp system-priority
<1-65535> LACP system priority. The default system priority is 32768.
7. LACP Commands
56
Command Mode
Configure mode Example
BX# configure BX(config)# lacp system-priority 8192
lacp timeout
Set the short or long timeout on a port. Command Syntax
lacp timeout short|long
timeout Number of seconds before invalidating a received LACP data unit (DU). short LACP short timeout. Short timeout value is 3 seconds. long LACP long timeout. Long timeout value is 90 seconds.
Command Mode
Interface mode Default
The default is long timeout. Usage
If the LACP_timeout bit (encoded in Actor_State and Partner_State fields) is set to 1, the short timeout takes effect; if set to 0, the long timeout takes effect.
Example
The following sets the LACP short timeout on a port.
BX# configure BX(config)# interface ap11 BX(config-if)# lacp timeout short
show etherchannel Use this command to display information about all LACP channels.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > output redirection token.
Command Syntax
show etherchannel detail show etherchannel load-balance show etherchannel summary
detail displays detailed LACP etherchannel information load-balance didsplays load-balance algorithm summary displays a summary of LACP etherchannel information
7. LACP Commands
57
Command mode
Privileged Exec mode Examples
BX# show etherchannel detail % Lacp Aggregator: po1 % Member: ap11 - Link up ap12 - Link up % Aggregator po1 16 % Aggregator state: Aggregated % Mac address: 00:16:88:04:02:0c % Admin Key: 0001 - Oper Key 0001 % Receive link count: 1 - Transmit link count: 0 % Individual: 0 - Ready: 1 % Partner LAG-ID: 0x8000,00-16-88-04-00-40 % Link: ap12 (0xf) sync: 0 (LACP aggregation down) % Link: ap11 (0xe) sync: 1 (LACP aggregation up)
BX# show etherchannel load-balance % Lacp Aggregator: po1 Destination Mac address
BX# show etherchannel summary % LACP Aggregator: po1 % Member: ap11 - Link up ap12 - Link up % Aggregator po1 16 % Aggregator state: Not Aggregated % Admin Key: 0001 - Oper Key 0001 % Link: ap12 (0xf) sync: 0 (LACP aggregation down) % Link: ap11 (0xe) sync: 0 (LACP aggregation down)
show lacp-counter Use this command to display the packet traffic on all ports of all present LACP aggregators, or a given LACP aggregator.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > output redirection token.
Command Syntax
show lacp-counter
Command Mode
Privileged Exec mode show lacp sys-id
Use this command to display the LACP system ID and priority.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > output redirection token.
7. LACP Commands
58
Command Syntax
show lacp sys-id Command Mode
Privileged Exec mode show port etherchannel
Use this command to show details of the LACP port specified by the interface name (IFNAME).
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > output redirection token.
Command Syntax
show port etherchannel IFNAME
IFNAME Specify the name of the interface interface
Command mode
Privileged Exec mode Example
BX# show port etherchannel ap11
port-channel This command is used to set the link aggregation control protocol’s (LACP) distribution mechanism (load balancing). Use the no parameter to reset the LACP load balance algorithm to its default value. Command Syntax
port-channel load-balance <dst-mac : src-mac : src-dst-mac> (no) port-channel load-balance
load-balance Set LACP port-channel load balance algorithm dst-mac destination MAC address based load balancing src-mac source MAC address based load balancing src-dst-mac source and destination MAC address based load balancing
Command mode Interface mode Examples
bx(config-if)# port-channel load-balance src-mac bx(config-if)# port-channel load-balance dst-mac bx(config-if)# port-channel load-balance src-dst-mac bx(config-if)# no port-channel load-balance
7. LACP Commands
59
static-channel-group Use this command to create a static channel group. This command will create a channel group 1 and may be used for debug purposes. It is recommended that the LACP protocol is always used to form a channel group. Command Syntax
static-channel-group (no) static-channel-group
Command mode Interface mode Examples
BX(config-if)# static-channel-group
show static-channel-group Use this command to display static channel group information. Command Syntax
show static-channel-group Command mode Privileged Exec mode Examples
BX(config-if)# show static-channel-group
channel-group mode Use this command to enable LACP channel mode commands. Use the no parameter with this command to disable the channel mode commands.
Command Syntax
channel-group mode (active|passive)
no channel-group
active Enable initiation of LACP negotiation on a port. passive Disable initiation of LACP negotiation on a port.
Command Mode
Interface mode Example
BX(config-if)# channel-group mode active
8. Layer 2 Commands
60
8. Layer 2 Commands
Common Commands flowcontrol receive enable Use this command to enable receive flow control.
Command Syntax
flowcontrol receive enable
Command Mode
Interface mode Example
BX# configure BX(config)# interface ap11 BX(config-if)# flowcontrol receive enable
flowcontrol transmit enable Use this command to transmit flow control. Use the no parameter to disable transmit flow control.
Command Syntax
(no) flowcontrol transmit enable
Command Mode
Interface mode Example
BX# configure BX(config)# interface ap11 BX(config-if)# flowcontrol transmit enable
show flowcontrol interface
Use this command to display flow control information. Command Syntax
show flowcontrol interface IFNAME
IFNAME Specifies the name of the interface to be displayed. Command Mode
Exec mode
8. Layer 2 Commands
61
Example BX# show flowcontrol interface ap11
Usage
The following is a sample output of the show flowcontrol interface command displaying flow control information:
BX# show flowcontrol interface ap11 Port Send FlowControl Receive FlowControl RXPause TXPause admin oper admin oper ----- ------- -------- ------- -------- ------- ------- ap11 off off on on 0 0
mirror interface
Use this command to define a mirror source port and its direction. This command must be run separately for each source port. Use the no parameter with this command to disable port mirroring by the destination port on the specified source port.
Command Syntax
mirror interface SOURCE direction DIRECTION
no mirror interface SOURCE direction DIRECTION
SOURCE Name of the source interface to be used. DIRECTION [receive|transmit]
receive Specifies mirroring of received traffic.
transmit Specifies mirroring of transmitted traffic.
Command Mode
Interface mode Example
BX# configure BX(config)# interface ap11 BX(config-if)# mirror interface ap2 direction receive
show mirror
Use this command to display the status of all mirrored ports. Command Syntax
show mirror
Command Mode
Exec mode and Privileged Exec mode Example
BX# show mirror
Port mirror: Enabled
8. Layer 2 Commands
62
Monitored port: ap3
Mirror receive traffic to port: ap9
Mirror transmit traffic to port: ap10
Broadcast Storm Commands Broadcast and Multicast traffic perform valuable roles in terms of network discovery and content delivery, but too much of either can have an adverse effect on performance. Excessive amounts of broadcast or multicast not only waste bandwidth, but also degrade the performance of every device attached to the network. Broadcast Storm control is the mechanism to minimize the effects of broadcast and multicast traffic without compromising application functionality or performance. Blade Exchange hardware supports a way to enable/disable Broadcast Storm control or Multicast and Broadcast Storm Control on per interface basis. The following commands can be used to control the Broadcast Storm Control:
storm-control mode Use this command to set the storm-control mode to either broadcast or multicastbroadcast. Use the no parameter with this command to reset the storm-control mode to default broadcast only mode Command Syntax
storm-control mode(broadcast | multicastbroadcast) Broadcast – enables strom control for broadcast packets only
Multicastbroadcast – enabled storm control for both multicast and broadcast. no storm-control mode
Command Mode
Configuration mode Default
Broadcast Mode
storm-control threshold-level Use this command sets the storm-control level globally with the selected value. Use the no parameter of this command to reset the storm-control level globally to default level 1. Command Syntax
storm-control threshold-level (1 | 2 | 3 | 4)
no storm-control threshold-level
Description This command sets the storm-control level globally with the selected value.
8. Layer 2 Commands
63
Level 1 Threshold level is set to 31 pps (packets per second) Level 2 Threshold level is set to 63 pps (packets per second) Level 3 Threshold level is set to 127 pps (packets per second) Level 4 Threshold level is set to 255 pps (packets per second) Command Mode
Configuration mode Default
Level 1 31 pps (packets per second)
storm-control enable all Use this command to enable the storm-control globally for all interfaces. Use the no parameter with this command to disable the storm-control globally for all interfaces.
Command Syntax
storm-control enable all no storm-control enable all
Command Mode
Configuration mode Default
Disable
storm-control enable Use this command to enable the storm-control for a particular interface. Use the no parameter with this command to disable the storm-control for a particular interface
Command Syntax
storm-control enable no storm-control enable
Command Mode
Interface mode Default Disable
8. Layer 2 Commands
64
show storm-control Use this command to display the storm-control values for all interfaces or a particular interface.
Command Syntax
show storm-control [IFNAME]
IFNAME Specifies the name of the interface for which storm-control information is to be displayed. Command Mode
Privileged Exec mode Usage
Display format:
IFNAME MODE Level Rate (pps) Status Drops AP1 Broadcast 1 31 Enable 0 AP2 Broadcast 1 31 Enable 10 AP3 Broadcast 1 31 Disable 40
Bridge Commands
bridge acquire
Use this command to enable a specific bridge to learn station location information for an instance. This helps in making forwarding decisions.
Use the no parameter with this command to disable learning,
Command Syntax
bridge <1-1> acquire
no bridge <1-1> acquire
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Default
Learning is enabled by default for all instances. Examples
BX# configure BX(config)# bridge 1 acquire
8. Layer 2 Commands
65
bridge address Use this command to statically configure a bridge entry to forward or discard matching frames.
Command Syntax
bridge <1-1> address MAC forward|discard IFNAME
no bridge <1-1> address MAC forward|discard IFNAME
<1-1> Bridge-group ID used for bridging. MAC the Media Access Control (MAC) address in the HHHH.HHHH.HHHH format. IFNAME the interface on which the frame comes in.
Command Mode
Configure mode Examples
BX# configure BX(config)# bridge 1 address 2222.2222.2222 forward eth0
bridge ageing-time Use this command to specify an ageing-out time for a learned MAC address. The learned MAC address will persist till this specified time.
Command Syntax
bridge-group <1-1> ageing-time AGEINGTIME
no bridge-group <1-1> ageing-time
<1-1> The ID of the bridge-group that this ageing time is for. AGEINGTIME = <10-3515> The number of seconds of persistence.
Default
The default ageing time is 300 seconds. Command Mode
Configure mode Examples
BX# configure BX(config)# bridge 1 ageing-time 1000
show bridge ageing-time Use this command to display the ageing-out time for a learned MAC address.
Command Syntax
show bridge <1-1> ageing-time
<1-1> The ID of the bridge-group that this ageing time is for.
8. Layer 2 Commands
66
Default
The default ageing time is 300 seconds. Command Syntax
show bridge <1-1> ageing-time
Command Mode
Privileged Exec mode Example
BX# show bridge 1 ageing-time Bridge Ageing Time 300
show address interface
Use this command to display the MAC addresses of the switch interfaces.
Command Syntax
show address interface IFNAME IFNAME Specify the name of the interface
Command Mode
Privileged Exec Example
BX# show address interface ap1
MAC Address 7c-08-02-a6-3c-21
show mac-address-table
Use this command to display all MAC entries in the forwarding table.
Command Syntax
show mac-address-table (ieee|rstp|mstp) ieee forwarding information of STP bridges rstp forwarding information of RSTP bridges mstp forwarding information of MSTP bridges
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table ieee command. BX# show mac-address-table ieee
Entry No Entry Type MAC Address Interface Name 0 DYNAMIC 00-00-00-00-00-00 ap11 429 DYNAMIC 00-0e-0c-9f-d7-fc ap4 667 STATIC 00-0e-12-33-12-34 ap9 5138 STATIC 01-00-5e-12-12-34 ap5 ap3 ap0 ap8 ap6 ap10 ap11 5430 DYNAMIC 00-0e-0c-a1-72-ee ap2
8. Layer 2 Commands
67
show mac-address-table interface
Use this command to display all mac entries for an interface in the forwarding table.
Command Syntax
show mac-address-table interface IFNAME
IFNAME the interface name
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table interface command. BX# show mac-address-table ieee interface ap2
Entry No Entry Type MAC Address Interface Name 5430 DYNAMIC 00-0e-0c-a1-72-ee ap2
show mac-address-table multicast igmp-snooping
Use this command to display all multicast igmp-snooping MAC entries in the forwarding table. Command Syntax
show mac-address-table multicast igmp-snooping
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table multicast command. BX# show mac-address-table multicast igmp-snooping
Entry No Entry Type MAC Address Interface Name 5138 STATIC 01-00-5e-12-12-34 ap5 ap3 ap0 ap8 ap6 ap10 ap11
show mac-address-table dynamic interface
Use this command to display dynamic MAC entries for an interface in the forwarding table.
Command Syntax
show mac-address-table dynamic interface IFNAME IFNAME the interface name
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table dynamic command:
8. Layer 2 Commands
68
BX# show mac-address-table dynamic interface ap2 Entry No Entry Type MAC Address Interface Name 429 DYNAMIC 00-0e-0c-9f-d7-fc ap4
show mac-address-table multicast interface
Use this command to display multicast MAC entries for an interface in the forwarding table.
Command Syntax
show mac-address-table multicast interface IFNAME IFNAME the interface name
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table multicast command: BX# show mac-address-table multicast interface ap2
Entry No Entry Type MAC Address Interface Name 5138 STATIC 01-00-5e-12-12-34 ap5 ap3 ap0 ap8 ap6 ap10 ap11
show mac-address-table static interface
Use this command to display static MAC entries for an interface in the forwarding table.
Command Syntax
show mac-address-table static interface IFNAME IFNAME the interface name
Command Mode
Privileged Exec Usage
The following is a sample output of the show mac-address-table static command: BX# show mac-address-table static interface ap2
Entry No Entry Type MAC Address Interface Name 667 STATIC 00-0e-12-33-12-34 ap9
show mac-address-table address MAC
Use this command to display MAC address entries for an interface in the forwarding table.
Command Syntax
show mac-address-table address MAC vid
MAC The MAC Address in HHHH.HHHH.HHHH format
vid <1-4094> The VLAN ID of the VLAN to display data for. Command Mode
Privileged Exec
8. Layer 2 Commands
69
Usage
The following is a sample output of the show mac-address-table address command: BX# show mac-address-table address 2222.2222.2222. 1
Entry No Entry Type MAC Address Interface Name 667 STATIC 2222.2222.2222 ap9
bridge-group Use this command to bind an interface with a bridge specified by the parameter. Use the no parameter with this command to remove it.
Command Syntax
(no) bridge-group <1-1>
<1-1> Bridge-group ID used for bridging. Command Mode
Interface mode Examples
BX# configure BX(config)# interface eth1 BX(config-if)# bridge-group 1
bridge protocol ieee Use this command to add a IEEE 802.1d Spanning Tree Protocol bridge. Use the no parameter to remove a bridge.
Command Syntax
bridge <1-1> protocol ieee
no bridge <1-1>
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Default
There is no default value. Usage
After creating a bridge instance, add interfaces to the bridge using the bridge-group command. Bring the bridge instance into operation with the no shutdown command in interface mode.
Examples
BX# configure BX(config)# bridge 1 protocol ieee
Related Commands
bridge ageing-time
8. Layer 2 Commands
70
bridge protocol ieee vlan-bridge
Use this command to add a VLAN bridge (according to the IEEE 802.1q Spanning Tree Protocol) to the spanning tree. Command Syntax
bridge <1-1> protocol ieee vlan-bridge
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Examples
BX# configure BX(config)# bridge 1 protocol ieee vlan-bridge
bridge protocol mstp
Use this command to create a multiple spanning-tree protocol (MSTP) bridge of a specified parameter.
Use the no parameter with this command to unmap the VLANs from a particular instance, and associate it back to the default instance of 0.
Command Syntax
bridge <1-1> protocol mstp
no bridge <1-1>
<1-1> Specify the bridge group ID. Command Mode
Configure mode Usage
The MSTP bridges can have different spanning-tree topologies for different VLANs inside a region of “similar” MSTP bridges. The multiple spanning tree protocol, like the rapid spanning tree protocol, provides rapid reconfiguration capability, while providing load balancing ability.
Using this command creates an instance of the spanning tree, and associates the VLANs specified with that instance.
A bridge created by the above command forms its own separate region unless it is added explicitly to a region by using the region name command.
Examples
BX# configure BX(config)# bridge 1 protocol mstp
bridge protocol rstp
Use this command to add a IEEE 802.1w Rapid Spanning Tree Protocol bridge. Command Syntax
bridge <1-1> protocol rstp
<1-1> Bridge-group ID used for bridging.
8. Layer 2 Commands
71
Command Mode
Configure mode Usage
After creating a bridge instance, add interfaces to the bridge using the bridge-group command. Bring the bridge instance into operation with the no shutdown command in interface mode.
Examples
BX# configure BX(config)# bridge 1 protocol rstp
bridge protocol rstp vlan-bridge
Use this command to add a VLAN bridge to the rapid spanning tree. Command Syntax
bridge <1-1> protocol rstp vlan-bridge
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Examples
BX# configure BX(config)# bridge 1 protocol rstp vlan-bridge
clear mac address-table bridge
Use this command to:
• clear the filtering database
• clear all filtering database entries configured through CLI (static)
• clear all multicast filtering database entries
• clear all multicast filtering database entries for a given VLAN or interface
• clear all static or multicast database entries based on a mac address Command Syntax
clear mac address-table (static|multicast) (address|vlan|interface) WORD bridge NAME
static Filtering database entries configured through CLI. multicast Multicast filtering database entries. address Filtering database entries with the given mac address. vlan Filtering database entries for the given VLAN. interface Filtering database entries for the given interface. WORD
VLAN ID when filtering database entries are cleared based on VLANs. Value range is 1-4094. Interface name when filtering database entries are cleared based on an interface name. Mac address name when filtering database entries are cleared based on the mac address.
NAME Bridge name <1-1>.
8. Layer 2 Commands
72
Command Mode
Privileged Exec mode Examples
This example shows how to clear all filtering database entries configured through CLI.
BX# clear mac address-table static bridge 1
This example shows how to clear multicast filtering database entries.
BX# clear mac address-table multicast bridge 1
This example shows how to clear all filtering database entries for a given interface.
BX# clear mac address-table static interface eth0 bridge 1
This example shows how to clear multicast filtering database entries for a given VLAN.
BX# clear mac address-table multicast vlan 2 bridge 1
This example shows how to clear static filtering database entries for a given mac address.
BX# clear mac address-table static address 0202.0202.0202 bridge 1
clear mac address-table dynamic bridge Use this command to clear the filtering database of all entries learned through bridge operation, or clear filtering database entries learned through bridge operation for a given MAC address, interface, or VLAN.
Command Syntax
clear mac address-table dynamic bridge NAME
NAME Bridge name <1-1>. clear mac address-table dynamic address|interface|vlan WORD bridge NAME
address Filtering database entries for the given MAC address. interface Filtering database entries for the given interface. vlan Filtering database entries for the given VLAN. WORD
MAC address when filtering database entries are cleared based on an MAC address. Interface name when filtering database entries are cleared based on an interface name. VLAN ID when filtering database entries are cleared based on VLANs. Value range is 1-4094.
Command Mode
Privileged Exec mode Examples
This example shows how to clear all filtering database entries learned through bridge operation for a given MAC address.
BX# clear mac address-table dynamic address 0202.0202.0202 bridge 1
show bridge
Use this command to display the filtering database values.
To modify the lines displayed, use the | (output modifier token); to save the output to a file, use the > output redirection token.
8. Layer 2 Commands
73
Command Syntax
show bridge
Command Mode
Privileged Exec, Configure and Interface modes. Usage
The following is a sample output of the show bridge command. BX# show bridge % b: bridge up - spanning tree enabled - learning enabled % b: ageing-time 300 - root path cost 0 - priority 32768 % b: forward-time 15 - hello-time 2 - max-age 20 - root port 0 % b: root id 8000000000000000 % b: bridge id 8000000000000000 % b: hello timer 0 - tcn timer 0 - topo change timer 0 % b: 0 topology changes - last topology change Wed Dec 31 19:00:00 1969 BX#con t Enter configuration commands, one per line. End with CNTL/Z. BX(config)#int eth1 BX(config-if)#bridge-group b BX# show bridge % b: bridge up - spanning tree enabled - learning enabled % b: ageing-time 300 - root path cost 0 - priority 32768 % b: forward-time 15 - hello-time 2 - max-age 20 - root port 0 % b: root id 8000000476e6c88c % b: bridge id 8000000476e6c88c % b: hello timer 0 - tcn timer 0 - topo change timer 0 % b: 0 topology changes - last topology change Wed Dec 31 19:00:00 1969 % eth1: port 3 - id 8003 - path cost 20000000 - designated cost 0 % eth1: designated port id 8003 - state Listening - priority 128 % eth1: designated root 8000000476e6c88c % eth1: designated bridge 8000000476e6c88c % eth1: forward-timer 10 - hold-timer 0 - msg age timer 0 % eth1: forward-transitions 0
show interface switchport bridge
Use this command to display the characteristics of the Layer-2 interface with the current VLAN.
Command Syntax
show interface switchport bridge <1-1>
<1-1> Specify the ID of the bridge-group for which information has to be displayed. Command Mode
Privileged Exec mode Usage
The following is an output of this command displaying the characteristics of this interface on bridge b.
8. Layer 2 Commands
74
BX# show interfaces switchport bridge 1 Interface name : eth5 Switchport mode : access Ingress filter : disable Acceptable frame types : all Vid swap : disable Default vlan : 2 Configured vlans : 2
Interface name : eth4 Switchport mode : access Ingress filter : disable Acceptable frame types : all Vid swap : disable Default vlan : 1 Configured vlans : 1
Example BX# show interface switchport bridge 1
switchport
Use this command to set the switching characteristics of the Layer-2 protocols when using the BX Hybrid Layer-2/ Layer-3 solution.
Use the no parameter with this command to revert to the default behavior. Command Syntax
(no) switchport
Command Mode
Interface mode Usage
In case of BX Hybrid L-2/ L-3, it is important to understand that by default, all interfaces are configured as routed interfaces; and if you want to change the behavior of a port from a Switched port to a routed port, you must explicitly configure this using the no switchport command in the interface mode.
Examples
BX# configure BX(config)# interface eth0 BX(config-if)# no switchport
show port-list Use this command to display the bridge port list Command Syntax
show port-list (external | internal) External External ports
Inernal Internal ports
8. Layer 2 Commands
75
Command Mode
Privileged Exec mode Examples BX# show port-list external
ap11 ap12 Number of external switch ports : 2
BX# show port-list internal ap1 ap2 ap3 ap4 ap5 ap6 ap7 ap8 ap9 ap10 Number of internal switch ports : 10
VLAN Commands show vlan
Use this command to display information about a particular VLAN by specifying the VLAN ID. It displays information for all the bridges configured.
Command Syntax
show vlan VLANID
VLANID The VID of the VLAN to display data for. Command Mode
Privileged Exec mode Usage
The following is an output of this command displaying information about VLAN 2. BX# show vlan 2
Bridge Group VLAN ID Name State Member ports (u)-Untagged, (t)-Tagged
============ ========= =========== ============ ======================================
1 2 VLAN0002 ACTIVE eth1(u) eth2(t)
show vlan all bridge
Use this command to display information about all VLANs on a bridge. Command Syntax
show vlan all bridge <1-1>
<1-1> Specify the ID of the bridge-group for which information has to be displayed. Command Mode
Privileged Exec mode Usage
The following is a sample output of this command displaying all VLANs on bridge 1.
8. Layer 2 Commands
76
BX# show vlan all bridge 1 Bridge VLAN ID Name State Member ports (u)-Untagged, (t)-Tagged
=========== ========= =========== ============ ======================================
1 1 default ACTIVE eth1(u) 1 2 VLAN0002 ACTIVE eth2(t)
Example BX# show vlan all bridge 1
show vlan brief
Use this command to display information about all VLANs configured for all bridges. Command Syntax
show vlan brief
Command Mode
Privileged Exec mode Usage
BX# show vlan brief Bridge VLAN ID Name State Member ports (u)-Untagged, (t)-Tagged
1 1 default active eth2(t)
1 2 VLAN0002 active eth1(u) eth2(t)
1 3 VLAN0003 active eth2(t)
show vlan dynamic bridge Use this command to display information about all dynamic VLANs on a bridge.
Command Syntax
show vlan dynamic bridge <1-1>
<1-1> Specify the ID of the bridge-group for which information has to be displayed Command Mode
Privileged Exec mode Usage
The following is a sample output of this command displaying dynamic VLANs on bridge 1. BX# show vlan dynamic bridge 1 Bridge VLAN ID Name State Member ports (u)-Untagged, (t)-Tagged
8. Layer 2 Commands
77
============ ========= =========== ============ ====================================== Example
BX# show vlan dynamic bridge 1
show vlan static bridge Use this command to display information about all static VLANs on a bridge.
Command Syntax
show vlan static bridge <1-1>
<1-1> Specify the ID of the bridge-group for which information has to be displayed Command Mode
Privileged Exec mode Usage
The following is a sample output of this command displaying static VLANs on bridge 1. BX# show vlan static bridge 1 Bridge VLAN ID Name State Member ports (u)-Untagged, (t)-Tagged
1 1 default active eth2(t)
1 2 VLAN0002 active eth1(u) eth2(t)
1 3 VLAN0003 active eth2(t)
Example
BX# show vlan static bridge 1
switchport access vlan Use this command to change the default VLAN on the current interface. Use the no parameter to remove a previously created VLAN with the specified VLAN ID.
Command Syntax
(no) switchport access vlan VLANID
VLANID = < 2-4094> The default VLAN ID for the specified interface. Command Mode
Interface mode Usage
IPI does not recommend the use of VLANID identifier 1 because of interoperability issues with other vendors’ equipment.
Examples
This example shows the steps of a typical VLAN session, creating and destroying a VLAN.
8. Layer 2 Commands
78
BX# configure BX(config)# interface ap1 BX(config-if)# switchport access vlan 3 ...
BX(config)# interface ap1 BX(config-if)# no switchport access vlan 3 Related Commands
show vlan
switchport hybrid allowed vlan Use this command to set the switching characteristics of the Layer-2 interface to hybrid. Both tagged and untagged frames will be classified over hybrid interfaces.
Use the no parameter to turn off allowed hybrid switching. Command Syntax
switchport hybrid allowed vlan all
switchport hybrid allowed vlan none
switchport hybrid allowed vlan add VLANID (egress-tagged [enable|disable])
switchport hybrid allowed vlan remove VLANID
no switchport hybrid vlan
all Allow all VLANs to transmit and receive through the Layer-2 interface. none Allow no VLANs to transmit and receive through the Layer-2 interface. add Add a VLAN to the member set. remove Remove a VLAN from the member set. VLANID = <2-4094> The ID of the VLAN or VLANs that will be added to, or removed from, the Layer-2
interface. For a VLAN range, specify two VLAN numbers: lowest, then highest number in the range, separated by a hyphen. For a VLAN list, specify the VLAN numbers separated by commas.
Note: Do not enter spaces between hyphens or commas when setting parameters for VLAN ranges or lists.
egress-tagged enable Enable the egress tagging for the outgoing frames. disable Disable the egress tagging for the outgoing frames.
Command Mode
Interface mode Examples
The following shows adding a single VLAN to the member set:
BX# configure BX(config)# interface ap2 BX(config-if)# switchport hybrid allowed vlan add eg
switchport hybrid allowed vlan add 2 egress-tagged enable
8. Layer 2 Commands
79
The following shows adding a range of VLANs to the member set:
BX# configure BX(config)# interface ap2 BX(config-if)# switchport hybrid allowed vlan add eg switchport hybrid allowed vlan add 2-4 egress-tagged enable
The following shows adding a list of VLANs to the member set:
BX# configure BX(config)# interface ap2 BX(config-if)# switchport hybrid allowed vlan add eg switchport hybrid allowed vlan add 2,3,4 egress-tagged enable
switchport hybrid vlan
Use this command to set the switching characteristics of the Layer-2 interface to hybrid.
Use the no parameter to turn off hybrid switching (no switchport hybrid), or add the Layer 2 interface to the default VLAN (no switchport hybrid vlan).
Command Syntax
switchport hybrid vlan VLANID
VLANID The ID of the VLAN that will be added to, or removed from, the Layer-2 interface no switchport hybrid
Turns off the Layer 2 switching characteristic. no switchport hybrid vlan
Adds the Layer 2 interface to the default VLAN. Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap2 BX(config-if)# switchport hybrid vlan 18
switchport mode access
Use this command to set the switching characteristics of the Layer-2 interface to access mode, and classify untagged frames only. Received frames are classified based on the VLAN characteristics, then accepted or discarded based on the specified filtering criteria.
Use the no parameter with this command to reset the mode of the Layer-2 interface to access (default). Command Syntax
switchport mode access (ingress-filter [enable|disable])
no switchport mode
ingress-filter Set the ingress filtering for the received frames.
enable Set the ingress filtering for received frames. Received frames that cannot be classified in the previous step based on the acceptable frame type parameter (access/trunk) are discarded.
disable Turn off ingress filtering to accept frames that do not meet the classification criteria. This is the default value.
8. Layer 2 Commands
80
Default
The result of not using this command is that ingress filtering is off, and that all frame types are classified and accepted.
Using this command without the ingress-filter parameter causes this command to use the default values.
Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap1 BX(config-if)# switchport mode access ingress-filter enable
switchport mode hybrid
Use this command to set the switching characteristics of the Layer-2 interface as hybrid, and classify both tagged and untagged frames. Received frames are classified based on the VLAN characteristics, then accepted or discarded based on the specified filtering criteria.
Use the no parameter to reset the mode of the Layer-2 interface to access (default). Command Syntax
switchport mode hybrid
switchport mode hybrid ingress-filter [enable|disable]
switchport mode hybrid acceptable-frame-type (vlan-tagged|all)
no switchport mode
ingress-filter Set the ingress filtering for the frames received. enable Set the ingress filtering for received frames. Received frames that cannot be classified in the
previous step based on the acceptable frame type parameter (access/trunk) are discarded. disable -- Turn off ingress filtering to accept frames that do not meet the classification criteria. This
is the default value. acceptable-frame-type Set the Layer-2 interface acceptable frame types. This processing occurs
after VLAN classification. vlan-tagged -- Accept only classified frames which belong to the port's member set. all -- Accept all classified frames which belong to the port's member set.
Default The result of not using this command is that ingress filtering is off, and that all frame types are classified and accepted.
Using this command without either ingress-filter or acceptable-frame-type parameters causes this command to use the default values for each.
Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap1 BX(config-if)# switchport mode hybrid BX(config-if)# switchport mode hybrid acceptable-frame-type vlan-tagged
8. Layer 2 Commands
81
switchport mode trunk
Use this command to set the switching characteristics of the Layer-2 interface as trunk, and specify only tagged frames. Received frames are classified based on the VLAN characteristics, then accepted or discarded based on the specified filtering criteria.
Use the no parameter to reset the mode of the Layer-2 interface to access (default). Command Syntax
switchport mode trunk (ingress-filter [enable|disable])
no switchport mode
ingress-filter Set the ingress filtering for the frames received. enable Set the ingress filtering for received frames. Received frames that cannot be classified in the
previous step based on the acceptable frame type parameter (access/trunk) are discarded. disable Turn off ingress filtering to accept frames that do not meet the classification criteria. This is
the default value. Default
The result of not using this command is that ingress filtering is off, and that all frame types are classified and accepted.
Using this command without the ingress-filter parameter causes this command to use the default values.
Command Mode
Interface mode Examples
BX# configure BX(config)# interface ap1 BX(config-if)# switchport mode trunk BX(config-if)# switchport mode trunk ingress-filter enable
switchport trunk allowed vlan
Use this command to set the switching characteristics of the Layer-2 interface to trunk.The all parameter indicates that any VLAN ID is part of its port’s member set. The none parameter indicates that no VLAN ID is configured on this port. The add and remove parameters will add and remove VLAN IDs to/from the port’s member set.
Use the no parameter to remove all VLAN IDs configured on this port. Command Syntax
switchport trunk allowed vlan all
switchport trunk allowed vlan none
switchport trunk allowed vlan add VLANID
switchport trunk allowed vlan remove VLANID
switchport trunk allowed vlan except VLANID
no switchport trunk vlan
all Allow all VLANs to transmit and receive through the Layer-2 interface.
none Allow no VLANs to transmit and receive through the Layer-2 interface. add Add a VLAN to transmit and receive through the Layer-2 interface.
8. Layer 2 Commands
82
remove Remove a VLAN from transmit and receive through the Layer-2 interface. except All VLANs, except the VLAN for which the ID is specified, are part of its ports member set. VLANID <2-4094> The ID of the VLAN or VLANs that will be added to, or removed from, the Layer-2
interface. A single VLAN, VLAN range, or VLAN list can be set. For a VLAN range, specify two VLAN numbers: lowest, then highest number in the range, separated by
a hyphen. For a VLAN list, specify the VLAN numbers separated by commas.
Note: Do not enter spaces between hyphens or commas when setting parameters for VLAN ranges or lists.
Command Mode
Interface mode Examples
The following shows adding a single VLAN to the port’s member set.
BX# configure BX(config)# interface ap2 BX(config-if)# switchport trunk allowed vlan add V2
The following shows adding a range of VLANs to the port’s member set.
BX# configure BX(config)# interface ap2 BX(config-if)# switchport trunk allowed vlan add V2-4
The following shows adding a list of VLANs to the port’s member set.
BX# configure BX(config)# interface ap2 BX(config-if)# switchport trunk allowed vlan add V2,3,4
switchport trunk native vlan
Use this command to configure native VLANs for this port. The native BLAN is used for classifying the incoming untagged packets. Use the no parameter to revert the native BLAN to the default VLAN ID1. Command Syntax switchport trunk native vlan VLANID
no switchport trunk native vlan VLANID <2-4094> The ID of the VLAN that will be used to classify the incoming untagged packets. The VLAN ID must be a part of the VLAN member set of the port. Command Mode
Interface mode Examples
The following shows adding a single VLAN to the port’s member set.
BX# configure terminal BX(config)# interface ap1 BX(config-if)# switchport trunk native vlan 2
8. Layer 2 Commands
83
vlan bridge
This command enables or disables the state of a particular VLAN on a bridge basis. Specifying the disable state causes all forwarding over the specified VLAN ID on the specified bridge to cease. Specifying the enable state allows forwarding of frames on the specified VLAN-aware bridge.
Command Syntax
vlan VLANID bridge <1-1> (name VLAN_NAME) (state [enable|disable])
no vlan VLANID bridge <1-1>
VLANID The VID of the VLAN that will be enabled or disabled on the bridge <2-4094>. <1-1> The ID of the bridge-group on which the VLAN will be affected. VLAN_NAME The ASCII name of the VLAN. Maximum length: 16 characters. enable Sets VLAN into an enable state. disable Sets VLAN into a disable state.
Command Mode
VLAN Configuration mode Examples
BX# configure BX(config)# vlan database BX(config-vlan)#vlan 45 bridge 1 name vlan2 state enable
vlan database Use this command to enter the VLAN configuration mode.
Command Syntax
vlan database
Command Mode
Configure mode Usage
Use this command to enter the VLAN configuration mode, and add, delete, or modify values associated with a single VLAN.
Examples
In the following example, note the change to VLAN configuration mode from Configure mode:
BX# configure BX(config)# vlan database BX(config-vlan)#
Related Commands
vlan bridge
monitor vlan vid
Use this command to start monitoring statistics on a particular VLAN. Maximum number of vlans that can be
8. Layer 2 Commands
84
monitored are 32. Use the no parameter with this command to stop monitoring statistics on a particular VLAN. Command Syntax
Monitor vlan VLANID
no monitor vlan VLANID
VLANID The VID of the VLAN that will be enabled or disabled <1-4094>. Command Mode
VLAN Configuration mode Examples
BX# configure BX(config)# vlan database BX(config-vlan)#monitor vlan 1 BX(config-vlan)#no monitor vlan 1
show monitor vlans
This command shows the list of VLANs being monitored for statistics. Maximum number of vlans that can be monitored are 32.
Command Syntax
Show monitor vlans
Command Mode
Privileged Exec mode Examples
BX#show monitor vlans VID 1 2
show vlan counters VID
This command shows the statistics of the VLAN if it is being monitored. Command Syntax
Show vlan counters VID
Command Mode
Privileged Exec mode Examples
BX#show vlan counters 1 VLAN ID 1 Unicast packets = 0 Unicast bytes = 0 Multicast packets = 0 Multicast bytes = 0
8. Layer 2 Commands
85
clear vlan counters VID
This command clears the statistics of the VLAN if it is being monitored. Command Syntax
Clear vlan counters VID
Command Mode
Privileged Exec mode Examples
BX#Clear vlan counters 1
IGMP Snooping Commands
ip igmp snooping Use this command to globally enable IGMP snooping. Use the no parameter of this command to globally disable IGMP snooping.
Command Syntax
ip igmp snooping
no ip igmp snooping Command Mode Configure mode
Default If this command is not used, snooping is enabled.
Examples
BX# configure BX(config)# ip igmp snooping
Usage
Before enabling GMRP, disable IGMP snooping by using the no ip igmp snooping bridge command. ip igmp snooping bridge Use this command to enable IGMP snooping on a bridge. Use the no parameter of this command to disable IGMP snooping on a bridge.
Command Syntax
ip igmp snooping bridge <1-1>
no ip igmp snooping bridge <1-1>
8. Layer 2 Commands
86
<1-1> Bridge-group ID used for bridging. Command Mode Configure mode
Default If this command is not used, IGMP snooping is enabled on a bridge
Examples
BX# configure BX(config)#ip igmp snooping bridge 1
Usage
Before enabling or disabling IGMP snooping on a bridge, configure IGMP snooping globally.
Enabling/disabling IGMP snooping on a bridge results in setting all VLANs associated with that bridge to the same state.
Ip igmp snooping explicit-tracking Use this command to enable explicit host tracking. Use the no parameter with this command to disable explicit host tracking.
Command Syntax
ip igmp snooping explicit-tracking vlan VLANID (bridge <1-1>)
no ip igmp snooping explicit-tracking vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Configure mode
Default If this command is not used, explicit tracking is enabled. Examples This example shows how to enable explicit tracking on a VLAN (either default or specific) when only one bridge is configured:
BX(config)#ip igmp snooping explicit-tracking vlan default! BX(config)#ip igmp snooping explicit-tracking vlan 2
This example shows how to enable explicit tracking on a VLAN (either default or specific) when more than one bridge is configured:
BX (config) #ip igmp snooping Explicit-tracking vlan Default bridge 1 ! BX (config) #ip igmp snooping Explicit-tracking vlan 2 bridge 1
Usage
Explicit host tracking is supported only with IGMPv3 hosts.
8. Layer 2 Commands
87
With explicit host tracking enabled, the switch is in its proxy-reporting mode. In proxy-reporting mode, the switch forwards the first report only for a source-multicast group pair to the router, and suppresses all other reports for the same pair. With IGMPv3 proxy reporting, the switch does proxy reporting for unsolicited reports and reports that are received in the general query interval. By enabling explicit tracking, the router might not be able to track all the hosts that are behind a VLAN interface
Disabling explicit tracking disables fast-leave processing and proxy reporting.
With proxy reporting disabled, the switch works in transparent mode, and updates the IGMP snooping database as it receives reports, then forwards this information to the upstream router. The router can then explicitly track all reporting hosts. The explicit host-tracking database contains membership information. This explicit host-tracking database is used for fast-leave processing for IGMPv3 hosts, proxy reporting, and statistics collection. With explicit host-tracking enabled on a BLAN, the IGMP snooping software processes the IGMPv3 report that it receives from a host, and maintains an explicit host-tracking database that contains the following information:
• The port that is connected to the host (reporter).
• The (multicast group - sources) tuples that are reported by the host.
• The filter mode for each group that are reported by the host.
• The list of sources for each group that are reported by the hosts.
• For each group, the list of hosts that request the source. ip igmp snooping fast-leave
Use this command to enable IGMPv3 snooping fast-leave processing. Use the no parameter of this command to disable fast-leave processing. Command Syntax
ip igmp snooping fast-leave vlan VLANID (bridge <1-1>)
no ip igmp snooping fast-leave vlan VLANID
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode
Configure mode Default
If this command is not used, fast leave snooping is enabled. Examples
This example shows how to enable fast leave processing on a VLAN (either default or specific) when only one bridge is configured:
BX# configure BX(config)#ip igmp snooping fast-leave vlan default! BX(config)#ip igmp snooping fast-leave vlan 2
This example shows how to enable fast leave processing on a VLAN (either default or specific) when more than one bridge is configured:
8. Layer 2 Commands
88
BX(config)#ip igmp snooping fast-leave vlan Default bridge 1 ! BX(config)#ip igmp snooping fast-leave vlan 2 bridge 1
ip igmp snooping last-member-query-interval
Use this command to configure the last-member-query interval for IGMP snooping. Use the no parameter of this command to return to the default setting.
Command Syntax
ip igmp snooping last-member-query-interval INTERVAL vlan VLANID (bridge <1-1>)
no ip igmp snooping last-member-query-interval vlan VLANID (bridge <1-1>)
default indicates the use of the default VLAN. VLANID = default | <2-4094> the numerical ID of the bridge; default indicates the use of the default VLAN. <1-1> Bridge-group ID used for bridging. INTERVAL = <1-3600> the last member query; in seconds. default: 1 second.
Command Mode Configure mode
Default Default query interval value is 1 second.
Examples
BX# configure BX(config)# ip igmp snooping last-member-query-interval 700 vlan default
Usage
When a multicast host leaves a group, the host sends an IGMP leave. When the leave is seen, the group is removed from the bridge database. If the database indicates that there are no hosts associated with the group, the bridge will report the leave to the multicast router. Before this leave is sent to the multicast router, the bridge checks if this host is the last to leave the group by sending out an IGMP specific group query, and a timer is started. If no reports are received before the timer expires, the group record is deleted.
The interval is the actual time that the bridge waits for a response for the group-specific query.
With IGMP fast-leave processing enabled, the no igmp snooping last-member-query-interval command sets the interval to 0 seconds; fast-leave always assumes a higher priority.
ip igmp snooping max-response-time Use this command to configure the interval in which the reply for the IGMP snooping query being sent should be received. Use the no parameter of this command to unset the value of the maximum response time.
Command Syntax
ip igmp snooping max-response-time INTERVAL vlan default|<2-4094> (bridge <1-1>)
no ip igmp snooping max-response-time INTERVAL vlan default|<2-4094> (bridge <1- 32>)
8. Layer 2 Commands
89
INTERVAL = <1-3599> the maximum response time; in seconds; default: 10 seconds. vlan default|<2-4094>
<2-4094> the numerical ID of the bridge. default the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Configure mode
Examples
BX# configure BX(config)# ip igmp snooping max-response-time 200 vlan default bridge 1
ip igmp snooping mrouter Use this command to configure a Layer-2 port as a multicast router port. Use the no parameter of this command to remove the configuration.
Command Syntax
ip igmp snooping mrouter interface IFNAME
no ip igmp snooping mrouter interface IFNAME
IFNAME Specify the name of the interface
Command Mode Configure mode
Default If this command is not used, no ports are configured.
Examples This example shows how to specify the next-hop interface to the multicast router:
BX# configure BX(config)# ip igmp snooping mrouter interface eth0
ip igmp snooping proxy Use this command to enable IGMP proxy for the box. IGMP proxy makes the box function as proxy for the hosts attached to the downstream. Upon receiving a query from a multicast router, a proxy-enabled box, itself, sends the reports for all the group mac addresses it has learned, instead of forwarding the reports to its ports.
Upon learning a new group mac address, the report is forwarded to all multicast router interfaces. Upon receiving a leave message from downstream hosts, the protocol data unit (PDU) is forwarded to all multicast router interfaces.
Use the no parameter of this command to disable IGMP proxy. Command Syntax
ip igmp snooping proxy
no ip igmp snooping proxy Command Mode Configure mode
8. Layer 2 Commands
90
Default If this command is not used, snooping is enabled.
Examples
BX# configure BX(config)# ip igmp snooping
Usage
Before enabling GMRP, disable IGMP snooping by using the no ip igmp snooping bridge command. ip igmp snooping querier
Use this command to enable multicast support within a subnet when no multicast routing protocol is configured in the VLAN or subnet. Use the no parameter of this command to disable multicast support within a subnet when no multicast routing protocol is configured.
Command Syntax
ip igmp snooping querier vlan VLANID (bridge <1-1>)
no ip igmp snooping querier vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default Indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Configure mode
Default If this command is not used, the multicast support is enabled.
Examples
BX# configure BX(config)# ip igmp snooping querier vlan default bridge 1
Usage
This command has the scope of VLAN only.
The IGMP snooping querier uses the 0.0.0.0 IP address as it represents a special case where the switch proxies IGMP Queries for faster network convergence, but is not itself the querier. The switch does not use its own IP address (even if it has one), because this would cause the queries to be seen as coming from a newly elected querier. The 0.0.0.0 address is used to indicate that the query packets are not from a multicast router.
The IGMP snooping querier supports IGMPv2.
When enabled, the IGMP snooping querier does the following:
• Does not start if it detects a membership query message from a multicast router.
• BX stops itself if it detects an IGMP membership query message sent by the multicast router, however, it polls for multicast router query messages every 120 seconds. If the multicast router stops sending membership queries within this interval, the BX querier will, again, send the membership query messages to all hosts.
• Multicast traffic does not affect the BX querier functionality.
When IGMP snooping querier is enabled, if multicast routers are not present on the VLAN or subnet, the bridge, in
8. Layer 2 Commands
91
effect, becomes the IGMP querier for the VLAN.
Enter the ip igmp snooping querier command at any time, but the IGMP snooping querier starts only when no other multicast routers are present in the VLAN or subnet.
ip igmp snooping query-interval
Use this command to configure the query interval of the querier. Use the no parameter of this command to return to the default setting.
Command Syntax
ip igmp snooping query-interval INTERVAL vlan VLAN ID (bridge <1-1>)
no ip igmp snooping query-interval INTERVAL vlan VLAN ID (bridge <1-1>) INTERVAL <2-3600> the last member query query interval value in seconds; default: 125 seconds. VLANID = default | <2-4094>
default indicates the use of the default VLAN <2-4094> the numerical ID of the VLAN
<1-1> Bridge-group ID used for bridging Command Mode Configure mode
Default Default query interval value is 125 seconds.
Example
BX# configure BX(config)# ip igmp snooping query-interval 800 vlan default bridge 1
ip igmp snooping ssm-safe-reporting
Use this command to enable Source Specific Multicast (SSM)-safe reporting in the presence of a mix of IGMPv2 and IGMPv3 hosts. Use the no parameter of this command to return to the default setting.
Command Syntax
ip igmp snooping ssm-safe-reporting vlan VLANID (bridge <1-1>)
no ip igmp snooping ssm-safe-reporting vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Global Configuration
Default If this command is not used, safe reporting is disabled. Usage
The following is a sample output of this command showing that SSM-safe-reporting is enabled: BX# show ip igmp snooping ssm-safe-reporting
8. Layer 2 Commands
92
IGMP Snooping ssm-safe-reporting is enabled Examples
This example shows how to enable SSM-safe reporting:
BX# configure BX(config)#ip igmp snooping mrouter interface eth0
ip igmp snooping version
Use this command to configure the version of the IGMP reports sent out of a port. Use the no parameter of this command to unset the value of the interface version.
The reports sent to the multicast router are sent based on the version of that interface. A user can administratively configure the version of the port as 1 or 2. If the user has configured the version specifically, the reports are always sent out with only this version. If the user has not administratively configured the version value, and a v1 query is received on an interface, this interface is made a v1 interface, and all reports sent out of this interface are v1 reports. If no v1 query is received on an interface for the v1 router present time-out period (400 seconds), the interface version goes back to its default value (2).
Command Syntax
ip igmp snooping version <1-2> vlan default|<2-4094> (bridge <1-1>) IFNAME
no ip igmp snooping version vlan default|<2-4094> (bridge <1-1>) IFNAME
vlan default|<2-4094>
<2-4094> the numerical ID of the bridge. default the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. IFNAME Specify the name of the interface
Command Mode Configure mode
Examples
BX# configure BX(config)# ip igmp snooping version 2 vlan default eth0
ip igmp snooping vlan
Use this command to enable IGMP snooping on a VLAN. Use the no parameter of this command to disable IGMP snooping on a VLAN.
Command Syntax
ip igmp snooping vlan VLANID (bridge <1-1>)
no ip igmp snooping vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Configure mode
Default If this command is not used, IGMP snooping is enabled on a VLAN.
8. Layer 2 Commands
93
Examples
These examples show how to enable IGMP snooping on a VLAN (either default or specific) when only one bridge is configured:
BX(config)#ip igmp snooping vlan default! BX(config)#ip igmp snooping vlan 2
This example shows how to enable IGMP snooping on a VLAN (either default or specific) when more than one bridge is configured:
show ip igmp snooping Use this command to display the state of IGMP Snooping. Command Syntax
show ip igmp snooping (bridge <1-1>)
<1-1> Bridge-group ID used for bridging. Command Mode Exec and Privileged Exec mode Usage
If no VLAN or bridge is specified with this command, it displays all bridges and VLANs. BX# show ip igmp snooping
IGMP snooping is globally enabled
Bridge 1: VLAN: default
IGMP snooping is enabled IGMP snooping fast-leave is disabled IGMP snooping querier is disabled IGMP snooping explicit-tracking is enabled IGMP snooping ssm-safe-reporting is enabled IGMP snooping last member query interval is 1000 ms
Bridge 1: VLAN: default
IGMP snooping is enabled IGMP snooping fast-leave is disabled IGMP snooping querier is disabled IGMP snooping explicit-tracking is enabled IGMP snooping ssm-safe-reporting is enabled IGMP snooping last member query interval is 1000 ms
BX(config)#ip igmp snooping vlan default bridge 1 !
BX(config)#ip igmp snooping vlan 2 bridge 2
8. Layer 2 Commands
94
Example BX# show ip igmp snooping bridge 1
show ip igmp snooping explicit-tracking Use this command to display information about the explicit host tracking status for IGMPv3 hosts.
Command Syntax
show ip igmp snooping explicit-tracking (bridge <1-1>)
show ip igmp snooping explicit-tracking vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Specify the ID of the bridge-group. Command Mode Exec and Privileged Exec mode
Usage
If no VLAN or bridge is specified, all bridges/VLANs are displayed.
If only a bridge is specified, all VLANs on that bridge are displayed.
If only a VLAN is specified, this command assumes that only one bridge is configured. BX# show ip igmp snooping explicit-tracking vlan 25 Source/Group Interface Reporter Filter_mode ------------------------------------------------------------------------ 10.1.1.1/226.2.2.2 eth0 16.27.2.3 INCLUDE10.2.2.2/226.2.2.2 eth0 16.27.2.3 INCLUDE
Example
BX# show ip igmp snooping explicit-tracking vlan default
show ip igmp snooping fast-leave Use this command to display information about the fast-leave processing for IGMP hosts
Command Syntax
show ip igmp snooping fast-leave (bridge <1-1>)
show ip igmp snooping fast-leave vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Specify the ID of the bridge-group. Command Mode Exec and Privileged Exec mode
8. Layer 2 Commands
95
Examples
The following is an output of this command displaying information about the fast-leave processing for IGMP hosts. BX# show ip igmp snooping fast-leave vlan 2 bridge 1 Fast-Leave Processing is enabled for VLAN 2 Bridge 1 Usage
If no VLAN or bridge is specified, all bridges/VLANs are displayed.
If only one bridge is specified, all VLANs on that bridge are displayed.
If only one VLAN is specified, this command assumes that only one bridge is configured. show ip igmp snooping group-membership-interval Use this command to display the value of the group-membership interval.
Command Syntax
show ip igmp snooping group-membership-interval (bridge <1-1>)
show ip igmp snooping group-membership-interval (vlan default|<2-4094>)
show ip igmp snooping group-membership-interval (vlan <2-4094>) (bridge <1-1>)
vlan default|<2-4094>
<2-4094> the numerical ID of the bridge. default the use of the default VLAN.
bridge <1-1> Specify the ID of the bridge-group. Command Mode Exec and Privileged Exec mode Examples
The following is an output of this command displaying the value of the other querier interval. BX# show ip igmp snooping group-membership-interval Bridge 1: VLAN 1
IGMP Snooping group-membership-interval is 260 sec Bridge 1: VLAN 2
IGMP Snooping group-membership-interval is 120 sec
show ip igmp snooping last-member-query-interval Use this command to display information about the last-member-query-interval processing for IGMP hosts.
Command Syntax
show ip igmp snooping last-member-query-interval (bridge <1-1>)
show ip igmp snooping last-member-query-interval vlan VLANID (bridge <1-1>) VLANID
= default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Specify the ID of the bridge-group.
8. Layer 2 Commands
96
Command Mode Exec and Privileged Exec mode
Examples
The following is an output of this command displaying information about the last-member-query-interval processing for IGMP hosts.
BX# show ip igmp snooping last-member-query-interval vlan 2 bridge 1 IGMP snooping last-member-query-interval is 9 sec
show ip igmp snooping max-response-time Use this command to display the value of the maximum response time.
Command Syntax
show ip igmp snooping max-response-time (bridge <1-1>)
show ip igmp snooping max-response-time (vlan default|<2-4094>)
show ip igmp snooping max-response-time (vlan <2-4094>) (bridge <1-1>)
vlan default|<2-4094>
<2-4094> the numerical ID of the bridge. default the use of the default VLAN.
bridge <1-1> Specify the ID of the bridge-group. Command Mode Exec and Privileged Exec mode Examples
The following is an output of this command displaying the value of the other querier interval. BX# show ip igmp snooping other-querier-interval Bridge 1: VLAN 1
IGMP Snooping max-response-time is 9 sec Bridge 1: VLAN 2
IGMP Snooping max-response-time is 9 sec
show ip igmp snooping mrouter Use this command to display the multicast router interfaces in default VLAN.
Command Syntax
show ip igmp snooping mrouter (bridge <1-1>)
show ip igmp snooping mrouter interface IFNAME
show ip igmp snooping mrouter vlan VLANID (bridge <1-1>)
IFNAME the name of the interface. VLANID = default | <2-4094> the numerical ID of the bridge.
default indicates the use of the default VLAN. <1-1> Bridge-group ID used for bridging.
8. Layer 2 Commands
97
Command Mode Exec and Privileged Exec mode
Examples
The following is an output of this command displaying the multicast router interfaces in default VLAN: BX# show ip igmp snooping mrouter vlan default
vlan ports -----+----------------------------------------
1 eth0,Router
show ip igmp snooping other-querier-interval
Use this command to display the value of the other querier interval. Command Syntax
show ip igmp snooping other-querier-interval (bridge <1-1>)
show ip igmp snooping other-querier-interval (vlan default|<2-4094>)
show ip igmp snooping other-querier-interval (vlan <2-4094>) (bridge <1-1>)
vlan default|<2-4094>
<2-4094> the numerical ID of the bridge. default the use of the default VLAN.
bridge <1-1> Specify the ID of the bridge-group. Command Mode Exec and Privileged Exec mode
Examples
The following is an output of this command displaying the value of the other querier interval. BX# show ip igmp snooping other-querier-interval Bridge 1: VLAN 1
IGMP Snooping other-querier-interval is 9 sec Bridge 1: VLAN 2
IGMP Snooping other-querier-interval is 9 sec
show ip igmp snooping querier
Use this command to display the state of the IGMP snooping querier. Command Syntax
show ip igmp snooping querier vlan VLANID (bridge <1-1>)
show ip igmp snooping querier (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging.
8. Layer 2 Commands
98
Command Mode Exec and Privileged Exec mode
Examples
The following is an output of this command displaying the state information about the IGMP snooping querier. BX# show ip igmp snooping querier
IGMP Snooping querier is enabled
show ip igmp snooping ssm-safe-reporting
Use this command to display the state information about the IGMP snooping SSM-safe-reporting. Command Syntax
show ip igmp snooping ssm-safe-reporting (bridge <1-1>)
show ip igmp snooping ssm-safe-reporting vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging. Command Mode Exec and Privileged Exec mode Examples The following is an output of this command displaying the state information about the IGMP snooping SSM-safe- reporting.
BX# ip igmp snooping ssm-safe-reporting vlan 2 bridge 1 IGMP Snooping ssm-safe-reporting is enabled for VLAN 2 Bridge 1 BX#
show ip igmp snooping statistics
Use this command to display IGMPv2 or IGMPv3 statistical information. Command Syntax
show ip igmpV2|igmpV3 snooping statistics (bridge <1-1>)
igmpV2 IGMPv2 igmpV3 IGMPv3 <1-1> Bridge-group ID used for bridging.
Command Mode Exec and Privileged Exec mode
Examples
The following is an output of this command displaying IGMPv3 statistical information for bridge 1. BX# show ip igmpV3 snooping statistics
IGMP Snooping Statistics: Bridge 1 VLAN default Source/Group Interface Reporter Uptime
8. Layer 2 Commands
99
Last-Jo in Last_Leave -------------------------------------------------------------------------
The following is the output of this command displaying IGMPv2 statistical information for Bridge 1. BX# show ip igmpV2 snooping statistics bridge 1
IGMP-V2 Snooping Statistics: Bridge 1 VLAN default Total valid pkts rcvd : 0 Total invalid pkts rcvd : 0 Number of Reports rcvd : 0 Number of Leaves rcvd : 0 Number of Membership Queries rcvd : 0 Number of Reports tx : 0 Number of Leaves tx : 0 Number of Group-Specific Queries tx : 0 Number of General Queries tx : 0
IGMP-V2 Snooping Statistics: Bridge 1 VLAN 3
Total valid pkts rcvd : 0 Total invalid pkts rcvd : 0 Number of Reports rcvd : 0 Number of Leaves rcvd : 0 Number of Membership Queries rcvd : 0 Number of Reports tx : 0 Number of Leaves tx : 0 Number of Group-Specific Queries tx : 0 Number of General Queries tx : 0
show ip igmp snooping statistics vlan Use this command to display IGMPv2 or IGMPv3 statistical information for a VLAN.
Command Syntax
show ip igmpV2|igmpV3 snooping statistics vlan VLANID (bridge <1-1>)
igmpV2 IGMPv2 igmpV3 IGMPv3 VLANID = default | <2-4094> the numerical ID of the bridge.
default indicates the use of the default VLAN. <1-1> Bridge-group ID used for bridging.
Command Mode Exec and Privileged Exec mode
Example
The following is an output of this command displaying IGMPv3 statistical information for the default VLAN on one bridge: BX# show ip igmpV3 snooping statistics vlan default
IGMP Snooping statistics: Bridge 1 VLAN default #Sources: 3
8. Layer 2 Commands
100
#hosts : 3 Source/Group Interface Reporter Uptime Last-Join Last-Leave 10.7.20.1,239.1.1.1 eth0 10.5.20.1 00:12:00 1:10:00 - 10.7.30.1,239.1.1.1 eth0 10.5.30.1 00:50:10 1:10:02 0:30:02 10.7.40.1,239.1.1.1 eth0 10.5.40.1 00:10:10 1:10:03 -
The following is the output of this command displaying IGMPv2 statistical information for the default VLAN on one bridge:
BX# show ip igmpV2 snooping statistics vlan default
IGMP-V2 Snooping Statistics: Bridge 1 VLAN default
Total valid pkts rcvd : 0 Total invalid pkts rcvd : 0 Number of Reports rcvd : 0 Number of Leaves rcvd : 0 Number of Membership Queries rcvd : 0 Number of Reports tx : 0 Number of Leaves tx : 0 Number of Group-Specific Queries tx : 0 Number of General Queries tx : 1
show ip igmp snooping interface version Use this command to display the value of the IGMP snooping version supported by the interface.
Command Syntax
show ip igmp snooping interface version
Command Mode Exec and Privileged Exec mode
Examples BX# show ip igmp snooping interface version IGMP Snooping version for interface eth0 vlan 1 bridge 1 is 2 IGMP Snooping version for interface eth1 vlan 1 bridge 1 is 2
show ip igmp snooping vlan Use this command to display the IGMP snooping state for the default VLAN.
Command Syntax
show ip igmp snooping vlan VLANID (bridge <1-1>)
VLANID = default | <2-4094> the numerical ID of the bridge. default indicates the use of the default VLAN.
<1-1> Bridge-group ID used for bridging.
Command Mode Exec and Privileged Exec mode
8. Layer 2 Commands
101
Usage
The following is an output of this command displaying the IGMP snooping state for the default VLAN. BX# show ip igmp snooping vlan default IGMP snooping is globally enabled
Bridge 1: VLAN: default
IGMP snooping is enabled IGMP snooping fast-leave is disabled IGMP snooping querier is disabled IGMP snooping explicit-tracking is enabled IGMP snooping ssm-safe-reporting is enabled
IGMP snooping last member query interval is 1 sec
show ip igmp snooping query-interval
Use this command to display the igmp snooping query interval. Command Syntax
show ip igmp snooping query-interval
Command Mode Priviled Exec mode
Usage
BX# show ip igmp snooping query-interval Bridge 1 : VLAN 1 IGMP Snooping query-interval is 125 seconds
show ip igmp snooping query-interval bridge
Use this command to display the query interval on the bridge Command Syntax
show ip igmp snooping query-interval bridge <1-1>
Command Mode Priviled Exec mode
Example
BX# show ip igmp snooping query-interval bridge 1 Bridge 1 : VLAN 1 IGMP Snooping query-interval is 125 sec
show ip igmp snooping query-interval vlan
Use this command to display the query interval on a VLAN. Command Syntax
show ip igmp snooping query-interval vlan default|<2-4094> bridge
8. Layer 2 Commands
102
vlan = default|<2-4094>
default indicates the use of the default VLAN <2-4094> the numerical ID of the VLAN <1-1> Bridge-group ID used for bridging
Command Mode Priviled Exec mode
Example
BX# show ip igmp snooping query-interval vlan 2 bridge 1 Bridge 1 : VLAN 1 IGMP Snooping query-interval is 125 sec
GVRP Commands
clear gvrp statistics Use this command to clear GVRP statistics for all VLANs or a specific VLAN.
Command Syntax
clear gvrp statistics all bridge <1-1>
clear gvrp statistics vid VLANID bridge <1-1>
<1-1> Bridge-group ID used for bridging. VLANID = <1-4094> Specify VLAN ID value.
Command Mode
Privileged Exec mode Examples
BX# clear gvrp statistics vid 333 bridge 1
garp gvrp applicant Use this command to set the GVRP applicant state to normal or active.
Command Syntax
garp gvrp applicant state [active|normal] IFNAME
active Active state normal Normal state IFNAME Name of the interface.
Command mode
Configure mode Examples
BX# configure
8. Layer 2 Commands
103
BX(config)# garp gvrp applicant state active eth0
garp gvrp bridge Use this command to enable and disable GVRP globally for the bridge instance. This command does not enable/disable GVRP in all ports of the bridge. After enabling GVRP globally, use the garp port gvrp command to enable GVRP on individual ports of the bridge.
Command Syntax
garp gvrp enable bridge <1-1>
garp gvrp disable bridge <1-1>
<1-1> Bridge-group ID used for bridging. Command mode
Configure mode Examples
BX# configure BX(config)# garp gvrp enable bridge 1
garp gvrp dynamic-vlan-creation Use this command to enable and disable dynamic VLAN creation for a specific bridge instance.
Command Syntax
garp gvrp dynamic-vlan-creation enable bridge <1-1>
garp gvrp dynamic-vlan-creation disable bridge <1-1>
<1-1> Bridge-group ID used for bridging. Command mode
Configure mode Examples
BX# configure BX(config)# garp gvrp dynamic-vlan-creation enable bridge 1 BX(config)# garp gvrp dynamic-vlan-creation disable bridge 1
garp gvrp registration Use this command to set GVRP Registration to normal, fixed, and forbidden Registration mode for a given port.
Command Syntax
garp gvrp registration normal IF_NAME
garp gvrp registration fixed IF_NAME
garp gvrp registration forbidden IF_NAME
normal Specify dynamic GVRP multicast registration and deregistration on the port. fixed Specify the multicast groups currently registered on the switch are applied to the port, but any
subsequent registrations or deregistrations do not affect the port. Any registered multicast groups on the port are not deregistered based on the GARP timers.
8. Layer 2 Commands
104
forbidden Specify that all GVRP multicasts are deregistered, and prevent any further GVRP multicast registration on the port.
IF_NAME The name of the interface. Command mode
Configure mode Examples
BX# configure BX(config)# garp gvrp registration fixed eth0
garp gvrp timer Use this command to set GVRP timers for a specific interface.
Command Syntax
garp gvrp timer [join|leave|leaveall] TIMER_VALUE IF_NAME join to set the timer for joining the group leave to set the timer for leaving a group
leaveall to set the time for leaving all groups. TIMER_VALUE = <1-65535> The timer value in hundredths of a second IF_NAME The name of the interface. Command mode
Configure mode Examples
BX# configure BX(config)# set gvrp timer leave 245 eth0
garp gvrp timer all Use this command to set GVRP timer values. This command takes all three timer values from the user and applies timer relationship rules on them. If it satifies the rules it sets these timer values.
Command Syntax
garp gvrp timer <20-100> <60-300> <61-2147483647> IF_NAME
<20-100> is Join timer value range in centiseconds <60-300> is Leave timer value range in centiseconds <61-2147483647> is Leaveall timer value range in centiseconds IF_NAME interface name for which the timers are being set
Command mode
Configure mode
8. Layer 2 Commands
105
Usage
If timer relationship rule fails it will give these error messages: bx(config)#garp gvrp timer all 40 80 1000 ap1 % Leave Timer should be >= 120 centisec. It does not meet the timer relationship rule. [(Join_Timer * 3) <= Leave_Timer < Leave_All_Timer] bx(config)# or bx(config)#garp gvrp timer all 50 150 150 ap1 % Leave All Timer should be > 150 centisec. It does not meet the timer relationship rule. [(Join_Timer 3) <= Leave_Timer < Leave_All_Timer] bx(config)# If the timer relation is satisfied then the output will be like this: bx(config)#garp gvrp timer all 50 150 151 ap1 bx(config)#
garp port gvrp
Use this command to enable and disable GVRP on a port. Command Syntax
garp port gvrp enable (IFNAME|all) garp prot gvrp disable (IFNAME|all)
IF_NAME The name of the interface
all All the ports
Command mode
Configure mode Examples
BX# configure BX(config)# garp port gvrp enable eth0
show gvrp configuration
Use this command to display GVRP configuration bridge data for a specified bridge instance. Command Syntax
show gvrp configuration (bridge <1-1>)
<1-1> Bridge-group ID used for bridging. Command mode
Exec and Privileged Exec mode
8. Layer 2 Commands
106
Usage
The following is an output of this command displaying the GVRP configuration for bridge b. BX# show gvrp configuration bridge 1 Global GVRP Configuration for bridge 1: GVRP Feature: Enabled Dynamic Vlan Creation: Disabled Port based GVRP Configuration: Timers(centiseconds) Port GVRP Status Registration Applicant Join Leave LeaveAll -------------------------------------------------------------------------------- eth4 Enabled Normal Normal 20 60 1000
eth5
Enabled
Normal
Normal
200
600
10000
Example
BX# show gvrp configuration bridge 1
show gvrp machine bridge
Use this command to display the state machine for GVRP. Command Syntax
show gvrp machine bridge <1-1>
<1-1> Bridge-group ID used for bridging. Command Mode
Exec, Privileged Exec and Configure modes Usage
The following is an output of this command displaying the GVRP state machine. BX# show gvrp machine bridge 1
port = eth5 applicant state = QA registrar state = INNport = eth4 applicant state = QA registrar state = INN
Example
BX# show gvrp machine bridge 1
show gvrp statistics
Use this command to display a statistical summary for a bridge. Command Syntax
show gvrp statistics IFNAME IFNAME
Name of the port.
Command mode
Exec and Privileged Exec mode
8. Layer 2 Commands
107
Usage
The following is an output of this command displaying a statistical summary for bridge 1. BX# show gvrp statistics Bridge: b
Port JoinEmpty JoinIn LeaveEmpty LeaveIn Empty
eth5 RX 0 2 0 0 0 TX 0 0 0 0 0eth4 RX 0 1 0 0 1 TX 0 0 0 0 0
Example
BX# show gvrp statistics eth0
show gvrp timer
Use this command to display data for the timers. Command Syntax
show gvrp timer IF_NAME
Command mode
Exec and Privileged Exec mode Usage
The following show output displays data for timer on interface eth4. BX# show gvrp timer eth4 Timer Timer Value (centiseconds) ------------------------------------------ Join 20 Leave 60 Leave All 1000
10. Firmware Upgrade Commands
108
9. IP Address Commands ip address Use this command to set IP address, subnet mask and gateway address for an interface. Command Syntax
ip address <IP-ADDRESS> <SUBNETMASK> [<GATEWAY>] <secondary> IP-ADDRESS - Specifies the IP address of an interface in A.B.C.D
Format SUBNETMASK - Specifies the subnetmask of an interface in A.B.C.D Format GATEWAY - Optional parameter. Specifies the gateway IP address in
A.B.C.D format secondary - Specifies that the IP address is secondary.
Command mode Interface mode Usage When the secondary parameter is not specified with this command, this command overwrites the primary IP address. When the secondary parameter is specified with this command, this command adds a new IP address to the interface. The secondary address cannot be configured in the absence of a primary IP address. The primary address cannot be removed when a secondary address is present. Examples
BX# configure BX(config)# interface eth0 BX(config-if)# ip address 10.10.10.50 255.255.255.0 10.10.10.1 BX(config-if)# ip address 10.10.11.50 255.255.255.0 10.10.11.1 secondary
Validation commands show running-config, show interface ip address Use this form of the ip address command to set the IP address and gateway address of an interface using mask bits instead of a subnet mask. Specify mask bits as the prefix length for an interface. Use the no parameter with this command to remove all IP addresses from an interface or to remove secondary IP address from an interface.
10. Firmware Upgrade Commands
109
Command Syntax
ip address <IP-ADDRESS> [<GATEWAY>] <secondary>
no ip address
no ip address <IP-ADDRESS> secondary
IP-ADDRESS Specifies the IP address and prefix length of an interface in A.B.C.D/M format.
GATEWAY Optional parameter. Specifies the gateway IP address in A.B.C.D format.
Secondary Specifies the IP address as secondary. Command mode Interface mode Usage When the secondary parameter is not specified with this command, this command overwrites the primary IP address. When the secondary parameter is specified with this command, this command adds a new IP address to the interface. The secondary address cannot be configured in the absence of a primary IP address. The primary address cannot be removed when a secondary address is present. Examples
BX# configure BX(config)# interface eth0 BX(config-if)# ip address 10.10.10.50/24 10.10.10.1 BX(config-if)# ip address 10.10.11.50/24 10.10.11.1 secondary
Validation commands show running-config, show interface
ip default-gateway Use this command to set the IP address of default gateway. Use the no parameter with this command to restore the default IP address (0.0.0.0) for the default gateway. Command Syntax
ip default-gateway <DEFAULT GATEWAY> no ip default-gateway <DEFAULT GATEWAY>
DEFAULT GATEWAY Specifies the default gateway IP address in A.B.C.D format
Command Mode Interface mode Usage The following is a sample output of the ip default-gateway command :
bx#configure bx(config)# interface eth0 bx# ip default-gateway 10.20.0.1
10. Firmware Upgrade Commands
110
Validation commands show ip redirect show ip redirect Use this command to display the default gateway for this switch. Command Syntax
show ip redirect
Command Mode Privileged Exec
Examples Bx# show ip redirect
IP Default Gateway is 10.20.0.1
ip dhcp Use this command to set the IP address of an interface using DHCP. Use the no parameter to cancel this command. Command Syntax
ip dhcp
no ip dhcp
Command Mode Interface mode Examples
BX# ip dhcp
ip dns-server Use this command to configure the DNS server. Use the no parameter with this command to set it back to cancel this command. Command Syntax
ip dns-server <IP-ADDRESS>
no ip dns-server <IP-ADDRESS>
IP-ADDRESS of the dns-server in A.B.C.D format
Command Mode Configuration mode Examples
BX(config)# ip dns-server 172.50.4.31
10. Firmware Upgrade Commands
111
show ip dns-servers Use this command to show DNS server configuration details.
To modify the lines displayed, use the | (output modifier token), and to save the output to a file, use the > (output redirection token).
Command Syntax
show ip dns-servers
Command Mode
Privileged Exec mode Example
BX# show ip dns-servers
ip http port Use this command to configure the HTTP TCP port. Command Syntax
ip http port <1-65535>
<1-655335> Enter the TCP port number. The default port is 80.
Command Mode Configuration mode Examples
BX(config)# ip http port 12
ip http secure-port Use this command to configure the secure HTTP TCP port. Command Syntax
ip http secure-port <1-65535>
<1-655335> Enter the TCP port number. The default port is 443.
Command Mode Configuration mode Examples
BX(config)# ip http secure-port 443
ip http secure-server Use this command to enable secure HTTP support. Use the no parameter with this command to disable secure HTTP support.
10. Firmware Upgrade Commands
112
Command Syntax
ip http secure-server
no ip http secure-server
Command Mode Configuration mode Examples
BX(config)# ip http secure-server
ip http server Use this command to enable HTTP support. Use the no parameter with this command to disable HTTP support. Command Syntax
ip http server no ip http server
Command Mode Configuration mode Examples
BX(config)# ip http server
show ip interface Use this command to show the IP status and configuration for a specified interface.
To modify the lines displayed, use the | (output modifier token), and to save the output to a file, use the > (output redirection token).
Command Syntax
show ip interface IFNAME
IFNAME the interface name Command Mode
Privileged Exec mode Example
BX# show ip interface eth0
Interface IP Address Status Protocol
eth0 10.20.1.21 up up
10. Firmware Upgrade Commands
113
ip ssh enable Use this command to enable SSH to BladeXchange. Use the no parameter with this command to disable SSH to BladeXchange.
Command Syntax
ip ssh enable
no ip ssh enable
Command Mode
Configure mode Example
BX(config)# ip ssh enable
ip telnet enable Use this command to enable Telnet to BladeXchange. Use the no parameter with this command to disable Telnet to BladeXchange.
Command Syntax
ip telnet enable
no ip telnet enable
Command Mode
Configure mode Example
BX(config)# ip telnet enable
show ip telnet Use this command to display the status availability of Telnet to BladeXchange.
Command Syntax
show ip telnet
Command Mode
Privileged Exec mode Example
BX# show ip telnet
10. Firmware Upgrade Commands
114
show ip ssh Use this command to display the status availability of SSH to BladeXchange.
Command Syntax
show ip ssh
Command Mode
Privileged Exec mode Example
BX# show ip ssh
10. Firmware Upgrade Commands
115
10. Firmware Upgrade Commands The firmware image is packaged as an Unified Flash Image(UFI) file that contains vmlinux.gz, ramdisk.gz and redboot1.bin. The UFI image names are l2-f-xxx.ufi and supernic-f-xxx.ufi, where xxx denotes the Build Number. fwupgrade Use this command for downloading an ufi image through TFTP server. This command can be executed through a telnet into BX switch. The image must be placed under /tftpboot directory on the TFTP server. ‘fwupgrade’ command always downloads the UFI image onto an area allocated for the other copy of the image. After a successful upgrade, the newly downloaded image will be automatically selected as boot image for the next boot. On the next boot, the device will decompress and run the boot image unless chosen otherwise. "whichboot" command can be used to verify that the newly upgraded image is selected for the next boot. Command Syntax
fwupgrade <tftp server ip address> <image name> <tftp server ip address> - IP address of the TFTP server in
A.B.C.D format <image name> - UFI file name
Command Mode Privileged Exec mode Example
bx#fwupgrade 172.40.1.108 l2-f-1302.ufi Mode.....................................TFTP Set TFTP Server IP.......................172.40.1.108 Image name...............................l2-f-1302.ufi Are you sure you want to start? (y/n): y Firmware upgrade starts now... Getting the image from TFTP server....Please wait Transfer timed out. bx#fwupgrade 172.40.1.108 l2-f-1302.ufi Mode.....................................TFTP Set TFTP Server IP.......................172.40.1.108 Image name...............................l2-f-1302.ufi Are you sure you want to start? (y/n): y Firmware upgrade starts now... Getting the image from TFTP server....Please wait Received 14000112 bytes Received l2-f-1302.ufi ......Storing it in Flash.. Build = 1302, File length = 13893728 Image 1 will be upgraded Flashing vmlinux.... Flashing ramdisk.... Flashing redboot.... Firmware Upgrade completed successfully. Please reboot the switch, for the new Firmware to take effect.
10. Firmware Upgrade Commands
116
Related Commands whichboot, bootselect Validation Commands Whichboot
Whichboot Use this command to verify which firmware image is currently active. This command displays both the images with their version number and boot status. A 'Y' in boot status indicates a bootable image. Command Syntax
whichboot
Command Mode Privileged Exec mode Examples
BX#whichboot Firmware Version Boot Image -------------------------------------------------- 1.BX Firmware(L2) Build 577 Y 2.BX Firmware(L2) Build 553 N
Related Commands fwupgrade, bootselect bootselect Use this command to select a firmware image for next boot. The option [1-2] denotes the firmware image to use for next boot. "whichboot" command can be used to verify that the image indicated in "bootselect" is selected for the next boot. Command Syntax
bootselect -s [1-2]
Command Mode Privileged Exec mode Examples
BX# bootselect -s 1 Image 1 set as BOOT image successfully.
Related Commands fwupgrade, whichboot
11. Port Backup Commands
117
11. Port Backup Commands port-backup This command is used to enable port backup and to set active and backup port. Default active port is “ap11” and default backup port is “ap12”. When this command is invoked with no arguments, default values are taken for active and backup ports. Link Aggregation and Port Backup cannot co-exist with each other. Link Aggregation must be disabled before enabling Port Backup. Use the no parameter with this command to disable port backup. Command Syntax
port-backup port-backup active <IFNAME> backup <IFNAME> no port-backup
Default Setting
Disable Command Mode
Configure mode Examples
BX#port-backup active ap12 backup ap11 Related Commands show port-backup show port-backup Use this command to display port-backup information. Command Syntax show port-backup
Command Mode Privileged Exec mode Examples
BX(config)# show port-backup
Related Commands port-backup, no port-backup
12. NTP Commands
118
12. NTP Commands NTP (Network Time Protocol) NTP (Network Time Protocol) is an Internet protocol that allows the switch to set up its internal clock based on periodic updates from a time server. These commands allow users to enable, disable NTP, configure NTP server ip address and show NTP status.
ntp on Use this command to execute the ntp daemon. If the daemon is already running when this command is issued, the command will return a success. Use the no parameter with this command to stop the execution of the ntp daemon only if the daemon is running. The no ntp command will return a success even if the daemon executed first is not running. Command Syntax
ntp on
no ntp
Command Mode Configure mode Examples
BX(config)# ntp on
Related Commands show ntp status Validation Commands Show ntp status show ntp status Use this command to display the switch module’s NTP daemon status. Command Syntax
show ntp status
Command Mode Privileged Exec mode Examples
bx> show ntp status NTP is ON Clock is synchronized, stratum 3, reference is 66.250.45.2 actual frequency is 11.3420 Hz, precision is 2**-18 sec reference time is caaff6d2.d7ed2029 (23:33:38.843 UTC Thu Oct 4 2007) clock offset is 4294967295.912 msec, root delay is 296.748 msec root dispersion is 118097.000 msec
12. NTP Commands
119
Related Commands show ntp associations show ntp associations Use this command to display the NTP server's details. It displays the details of all the peers configured in NTP configuration file. Command Syntax
show ntp associations (|detail)
associations NTP associations detail Show detail
Command Mode Privileged Exec mode Examples bx#show ntp associations address ref clock st when poll reach delay offset disp *~66.250.45.2 18.26.4.105 2 - 256 377 0.3 4294967295.9 2.8 ~127.127.1.0 127.127.1.0 5 1 64 377 0.0 0.0 0.9 * master (synced), # master (unsynced), + selected, - candidate, ~ configured bx#
Related Commands show ntp associations detail
ntp server word Use the command to add one particular NTP server to the NTP configuration file. Use the no parameter with this command to remove one particular NTP server from the NTP configuration file. Command Syntax
ntp server WORD no ntp server WORD WORD IP address or hostname of the server
Command Mode Privileged Exec mode Examples
bx#ntp server 66.250.45.2
Related Commands show ntp associations
12. NTP Commands
120
show ntp servers Use the command to display the configured NTP server’s IP address or hostnames. Command Syntax
show ntp servers
Command Mode Privileged Exec mode Examples
bx#show ntp servers NTP Server (IP Address/Hostnames) _______________ 66.250.45.2 3.pool.ntp.org bx#
ntp timezone Use the command to add time zone to the switch module. All time zones configure for the switch are user defined. Use the no parameter to revert the time zone configuration to use and display the UTC time. Command Syntax
ntp timezone <0-12> <0-59> (before-utc|after-utc) LINE
no ntp timezone
timezone Specify a time zone for the switch module <0-12> Number of hours before/after UTC. <0-59> Number of minutes before/after UTC. after-utc Set the local time zone after (west) of UTC before-utc Set the local time zone before (east) of UTC
LINE User defined name of time zone (Range: 1-15 characters) Command Mode Configuration mode Examples bx(config)#ntp timezone 7 0 after-utc San Jose
Related Commands show ntp timezone
12. NTP Commands
121
show ntp timezone Use the command to display the configured timezone. Command Syntax
show ntp timezone
ntp Display network time protocol status and settings timezone Current time zone details
Command Mode Privileged Exec Mode Examples
bx#show ntp timezone Zone Name Time Direction --------------- ----- ---------- San Jose 07:00 After UTC bx#
Related Commands ntp timezone
13. SSH Commands
122
13. SSH Commands upload sshkey Use this command to upload a SSH host key from flash to an external server through TFTP. Command Syntax
upload sshkey <tftp server ip address> <key file name>
<tftp server ip address> - IP address of the TFTP server in A.B.C.D format
<key file name> - One of the 3 key file names – ssh_host_key, ssh_host_rsa_key, ssh_host_dsa_key
Command Mode Privileged Exec mode Examples
BX# upload sshkey 10.20.1.104 ssh_host_key BX# upload sshkey 10.20.1.104 ssh_host_rsa_key BX# upload sshkey 10.20.1.104 ssh_host_dsa_key
download sshkey Use this command to fetch a SSH host key from an external server through TFTP, and download the key to the flash. Command Syntax
download sshkey <tftp server ip address> <key file name>
<tftp server ip address> - IP address of the TFTP server A.B.C.D format <key file name> - One of the 3 key file names –
ssh_host_key, ssh_host_rsa_key, ssh_host_dsa_key
Command Mode Privileged Exec mode Examples
BX# download sshkey 10.20.1.104 ssh_host_key Received ssh_host_key
13. SSH Commands
123
clear sshkey Use this command to clear the SSH host keys saved in the Flash. Command Syntax
clear sshkey <key file name> <key file name> - One of the 3 key file names - ssh_host_key,
ssh_host_rsa_key, ssh_host_dsa_key
Command Mode Privileged Exec mode Examples
BX# clear sshkey ssh_host_key
show sshkey Use this command to show a list of SSH host keys stored on the switch. Command Syntax
show sshkey
Command Mode Privileged Exec mode Examples
BX# show sshkey SSH Keys Stored on Switch: ssh_host_dsa_key ssh_host_key ssh_host_rsa_key
14. Event Log Commands
124
14. Event Log Commands event log upload Most recent event log file can be uploaded to any system using TFTP. It requires a TFTP Server IP Address to be provided. It also requires that a file called "EventLog" be created in the tftp directory at the Server and the file must have write permissions. Command Syntax
upload eventlog <tftp server ip address>
<tftp server ip address> - IP address of the TFTP server in A.B.C.D format
Command Mode Privileged Exec mode Examples
BX# upload eventlog 10.20.2.52
show event log Event log messages can be displayed using this show command. It requires the user to enter the number of entries to be displayed. Messages are displayed starting from the most recent events. Command Syntax
show eventlog <1-4096> <1-4096> - Number of messages to be displayed
Command Mode Privileged Exec mode Examples
BX# show eventlog 10
clear event log This is used to clear the event log file. Command Syntax
clear eventlog
Command Mode Privileged Exec mode Examples
BX# clear eventlog
15. Configuration Commands
125
15. Configuration Commands write Use the write command to save configuration data instantly without the need for a reboot. Command Syntax
write Command Mode Privileged Exec mode Examples
BX# write [OK]
Related Commands Show running-config sync-reboot This command is used to synchronize with peer blade exchange switch configuration. Command Syntax
sync-reboot Command mode Privileged Exec mode Examples
BX# sync-reboot This command must be issued on the target switch. This command should be used after sync-upload-config has been issued on the peer switch. This command synchronizes the configuration and reboots the system. The previous configuration is preserved. sync-restore This command restores the previous configuration on the target switch. Command Syntax
sync-restore Command mode Privileged Exec mode Examples
BX# sync-restore
15. Configuration Commands
126
upload-config This command uploads the switch configuration to the TFTP server. The file uploaded is bx.cfg. Command Syntax
upload-config <tftp server ip address> <tftp server ip address> - IP address of the TFTP server in
A.B.C.D format Command mode Privileged Exec mode Examples
upload-config 10.20.2.52
download config Use this command to download a configuration file to a switch. The configuration filename must be bx.cfg. Command Syntax
download config <tftp server ip address> <tftp server ip address> - IP address of the TFTP server where you can download the configuration file to the switch (in A.B.C.D format.
Command Mode Privileged Exec mode Examples BX# download config 10.20.2.52
sync-upload-config This command synchronizes and uploads the saved switch configuration to peer switch. Command Syntax upload-config <IP-address>
A.B.C.D specifies the peer switch IP address Command mode Privileged Exec mode Examples
sync-upload-config 10.10.10.20 Where 10.10.10.20 is the peer switch IP address where the configuration needs to be uploaded.
16. TACACS+ Commands
127
16. TACACS+ Commands TACACS+ is a security application that provides centralized validation of users attempting to gain access to BladeXchange. The user’s database is maintained on a remote tacacs server that will validate the BladeXchange users based on user’s database. tacacs enable Use this command to enable tacacs+ authentication feature. Use the no parameter with this command to disable tacacs+ authentication feature. Command Syntax
tacacs enable no tacacs enable
Command Mode Configure mode Examples
bx#tacacs enable
tacacs server enable Use this command to enable tacacs+ server. Use the no parameter with this command to disable tacacs+ server. Command Syntax
tacacs server <1-3> enable
no tacacs server <1-3> enable
Command Mode Configure mode Examples
bx#tacacs server 2 enable
tacacs server-ip Use this command to assign the tacacs+ server ipaddress. Use the no parameter with this command to reset the tacacs+ server ipaddress to default factory setting. Command Syntax
tacacs server-ip <1-3> A.B.C.D no tacacs server-ip <1-3>
Command Mode Configure mode
16. TACACS+ Commands
128
Examples
bx# tacacs server-ip 2 10.10.10.10
tacacs key Use this command to assign the tacacs+ server secret key. Use the no parameter with this command to assign tacacs+ server secret key to factory default setting. Command Syntax
tacacs key <1-3> WORD
no tacacs key <1-3>
Command Mode Configure mode Examples
bx# tacacs key 2 sengines tacacs port Use this command to assign the port, through which tacacs+ server should be connected. Use the no parameter with this command to set tacacs+ server port to factory default setting. Command Syntax
tacacs port <1-3> <1-65535>
no tacacs port <1-3>
Command Mode Configure mode Examples
bx# tacacs port 2 49
tacacs retry Use this command to assign the number of retries the client should try to get authenticated by the server. Use the no parameter with this command to set tacacs+ server retries to factory default setting. Command Syntax
tacacs retry <1-3> <1-9>
no tacacs retry <1-3>
Command Mode Configure mode
16. TACACS+ Commands
129
Examples
bx# tacacs retry 2 5 show tacacs Use this command to retrieve current Tacacs+ configuration. Command Syntax
show tacacs
Command Mode Privileged Exec mode Examples
bx# show tacacs
17. RADIUS Commands
130
17. RADIUS Commands Radius is a security application that provides centralized validation of users attempting to gain access to BladeXchange. The user’s database is maintained on a remote radius server that will validate the BladeXchange users based on user’s database. radius-server enable Use this command to enable radius authentication feature. Use the no parameter with this command to disable radius authentication feature. Command Syntax
radius-server enable
no radius-server enable
Command Mode Configure mode Examples
bx#radius-server enable
radius-server server enable Use this command to enable a radius server. Use the no parameter with this command to disable a radius server. Command Syntax
radius-server server <1-3> enable
no radius-server server <1-3> enable
Command Mode Configure mode Examples
bx#radius-server server 3 enable
radius-server server-ip Use this command to assign the radius server ip addres. Use the no parameter with this command to reset the radius server ip addres to factory default value. Command Syntax
radius-server server-ip <1-3> A.B.C.D
no radius-server server-ip <1-3>
Command Mode Configure mode
17. RADIUS Commands
131
Examples
bx#radius-server server-ip 1 10.10.10.10
radius-server key Use this command to assign the radius server secret key. Use the no parameter with this command to assign the radius server secret key to factory default value. Command Syntax
radius-server key <1-3> WORD
no radius-server key <1-3>
Command Mode Configure mode Examples
bx# radius-server key 2 sengines
radius-server retry Use this command to assign the number of retries the client should try to get authenticated by the server. Use the no parameter with this command to set radius server retries to factory default setting. Command Syntax
radius-server retry <1-3> <1-15>
no radius-server retry <1-3>
Command Mode Configure mode Examples
bx# radius-server retry 2 5
radius-server port Use this command to assign the PortNumber of radius server. Use the no parameter with this command to reset Port Number of radius server to factory default setting. Command Syntax
radius-server port <1-3> <1-65535>
no radius-server port <1-3>
Command Mode Configure mode Examples
bx# radius-server port 2 5
17. RADIUS Commands
132
show radius Use this command to retrieve current Radius configuration. Command Syntax
show radius
Command Mode Privileged Exec mode Examples
bx# show radius
18. SNMP Commands
133
18. SNMP Commands Simple Network Management Protocol (SNMP) is a widely used protocol for monitoring the health and welfare of network equipment (eg. routers), computer equipment and even devices like UPSs. snmp-server community Use this command to configure SNMP communities. Use the no parameter with this command to delete an existing SNMP community. Command Syntax
snmp-server community <name> ip <ipaddress> <access( ro | rw )>
no snmp-server community <name> ip <ipaddress>
Command Mode Configure mode Examples
bx# configure bx(config)# snmp-server community private ip 172.40.4.68 ro
snmp-server contact Use this command to set the system contact Command Syntax
snmp-server contact WORD WORD Specify the system contact name
Command Mode Configure mode Examples
bx# configure bx(config)# snmp-server contact WORD
snmp-server location Use this command to configure SNMP communities. Command Syntax
snmp-server contact WORD WORD Specify the system location
Command Mode Configure mode
18. SNMP Commands
134
Examples
bx# configure bx(config)# snmp-server locaton WORD
snmp-server sysname Use this command to configure SNMP communities. Command Syntax
snmp-server contact WORD
WORD Specify the system name
Command Mode Configure mode Examples
bx# configure bx(config)# snmp-server sysname WORD
show snmp Use this command to display all the existing SNMP communities. Command Syntax
show snmp
Command Mode Privileged Exec mode Examples
bx# show snmp snmptrap Use this command to create SNMP trap community. Use the no parameter with this command to delete SNMP trap community. Command Syntax
snmptrap community <name> ip <ipaddress> <v1 | v2> no snmptrap community <name> ip <ipaddress>
Command Mode Configure mode Examples
bx# configure bx(config)#snmptrap community trapprog ip 172.40.4.68 v1
18. SNMP Commands
135
show snmptrapreceivers Use this command to display all the existing SNMP trap communities. Command Syntax
show snmptrapreceivers Command Mode Privileged Exec mode Examples
bx# show snmptrapreceivers show snmptrapentries Use this command to display all the logged trap entries received by SNMP trap daemon. Command Syntax
show snmptrapentries Command Mode Privileged Exec mode Examples
bx# show snmptrapentries clear snmptrapentries Use this command to clear all the trap entries logged. Command Syntax
clear snmptrapentries Command Mode Privileged Exec mode Examples
bx# clear snmptrapentries user Use this command to create a user for BX login and with SNMP v3 configuration without authentication and encryption. Use the no parameter with this command to delete an existing SNMP v3 user. Command Syntax
user username <username> passwd <password>
no user username <username>
18. SNMP Commands
136
Command Mode Configure mode Examples
bx# configure bx(config)# user username myuser passwd mypassword
show users Use this command to display all the BX users with their names. Command Syntax
show users Command Mode Privileged Exec mode Examples
bx# show users user snmpv3authprotocol Use this command to provide authentication for an existing SNMP v3 user. The authentication protocols supported are MD5 and SHA. To enable authentication for an existing v3 user, the password of the user must be 8 characters in length. Use the no parameter with this command to remove authentication for an authenticated SNMP v3 user. Command Syntax
user snmpv3authprotocol <username> [MD5|SHA|None]
no user snmpv3authprotocol <username>
Command Mode Configure mode Examples
bx# configure bx(config)# user snmpv3authprotocol myuser MD5
user snmpv3encrypt Use this command to provide privacy(encryption) for an existing authenticated SNMP v3 user. The encryption protocol supported is DES. Use the no parameter with this command to remove privacy (encryption) for an existing authenticated SNMP v3 user with encryption support Command Syntax
user snmpv3encrypt <username> [DES | None] <key> <key> must have a minimum length of 8 characters.
no user snmpv3encrypt <username>
18. SNMP Commands
137
Command Mode Configure mode Examples
bx# configure bx(config)# user snmpv3encrypt myuser DES myuserkey
show snmpv3users Use this command to display all the SNMP v3 users with their names, authentication properties and privacy properties. Command Syntax
show snmpv3users Command Mode Privileged Exec mode Examples
bx# show snmpv3users
19. Logging Commands
138
19. Logging Commands
show logging syslog Use this command to display all the remote syslog hosts that are configured. Command Syntax
show logging syslog Command Mode Privileged Exec mode Examples
bx# show logging syslog
logging syslog Use this command to add a remote syslog host. Use the no parameter with this command to delete a remote syslog host.
Command Syntax
logging syslog <ip-address> <0-7> no logging syslog <ip-address>
Command Mode Configure mode Examples
bx# configure bx(config)# logging syslog 192.168.0.41 1
Note <0-7> The value is specified as an integer from 0 to 7 which maps to : 0 - emergency, 1 - alert, 2 - critical, 3 - error, 4 - warning, 5 - notice, 6 - informational, 7 - debug.
logging console Use this command to log messages to console. Use the no parameter with this command to delete logging messages to console.
Command Syntax
logging console <0-7>
no logging console
19. Logging Commands
139
Command Mode Configure mode Examples
bx# configure bx(config)# logging console 7
Note <0-7> The value is specified as an integer from 0 to 7 which maps to : 0 - emergency, 1 - alert, 2 - critical, 3 - error, 4 - warning, 5 - notice, 6 - informational, 7 - debug.
show logging console Use this command to know the status of console logging. Command Syntax
show logging console Command Mode Privileged Exec mode Examples
bx# show logging console
20. Appendix A: RedBoot Commands
140
20. Appendix A: RedBoot Commands
fwupgrade Use this command for downloading an ufi image from Redboot, through TFTP. The image must be placed under /tftpboot directory on the TFTP server. TFTP server ip address and image name must be supplied when prompted. ‘fwupgrade’ always downloads the UFI image onto an area allocated for the other copy of the image. After a successful upgrade, the newly downloaded image will be automatically selected as boot image for the next boot. "whichboot" command can be used to verify that the newly upgraded image is selected for the next boot. Command Syntax
fwupgrade <tftp server ip address> <image name> <tftp server ip address> - IP address of the TFTP server in
A.B.C.D format <image name> - UFI file name
Command Mode Not applicable Example
FSC_SEBX> fwupgrade IP: 10.20.0.131 TFTP Server: 10.20.1.133 Image Name: supernic-1241.ufi Loading / Raw file loaded 0x00100000-0x00a4005f, assumed entry at 0x00100000 Loaded bx.ufi into memory fis create -b 0x100060 -f 0xfe020000 -l 0x100000 vmlinux1.gz ... Erase from 0xfe020000-0xfe120000: ........ ... Program from 0x00100060-0x00200060 at 0xfe020000: ........ ... Erase from 0xfffe0000-0xffffffff: . ... Program from 0x06fdf000-0x06fff000 at 0xfffe0000: . fis create -b 0x200060 -f 0xfe120000 -l 0x800000 ramdisk1.gz ... Erase from 0xfe120000-0xfe920000: .................................................... ............ ... Program from 0x00200060-0x00a00060 at 0xfe120000: .................................... ............................ ... Erase from 0xfffe0000-0xffffffff: . ... Program from 0x06fdf000-0x06fff000 at 0xfffe0000: . Wait for reboot ......
20. Appendix A: RedBoot Commands
141
Related Commands whichboot, bootselect Validation Commands whichboot whichboot Use this command to verify which firmware image is currently active, from RedBoot. This command displays both the images with their version number and boot status. A 'Y' in boot status indicates a bootable image. Command Syntax
whichboot
Command Mode Not Applicable. Examples
bx#whichboot Current Running Image: BX Firmware(L2) Build 1296 Boot Status of Flash Images: --------------------------------------------------- Firmware Version Boot Image --------------------------------------------------- 1.BX Firmware(L2) Build 1275 N 2.BX Firmware(L2) Build 1296 Y bx#
Related Commands fwupgrade, bootselect bootselect Use this command is used to select a firmware image for next boot, from RedBoot. The option [1-2] denotes the firmware image to use for next boot. "whichboot" command can be used to verify that the image indicated in "bootselect" is selected for the next boot. Command Syntax
bootselect -s [1-2]
Command Mode Not applicable. Examples
FSC_SEBX> bootselect -s 1 Image 1 set as BOOT image successfully.
20. Appendix A: RedBoot Commands
142
Related Commands fwupgrade, whichboot resetconfig Use this command is used to reset entire BX configuration including passwords, to factory default settings. Command Syntax
resetconfig
Command Mode
Not applicable. Examples
FSC_SEBX> resetconfig
Related Commands None.
21. Appendix B: Logged Error Messages
143
21. Appendix B: Logged Error Messages The following is a list of error messages logged by the BX Event Log. Error Messages Logged by AUTHD Module Error Message Unable to allocate memory
PORT[<interface name>]: Unable to allocate memory
EVENT: pal_sock error(<error string>)
EVENT: socket error(<error string>)
NSM: Server protocol version(<protocol version>) error
NSM: Service(0x<service bits>) is not sufficient
Error Messages Logged by IMI Module Error Message NSM server protocol version error
NSM service is not sufficient
Error Messages Logged by LACPD Module Error Message open_lacp: Error opening socket (<socket id>)
<function name>: lacp socket is not open
error, BM id failed
error, open file <config file> failed
Error: unknown config line: <config file line>
lacp_add_link: invalid link name parameter
lacp_add_link: unable to allocate link <link name>
lacp_add_aggregator: maximum aggregators already allocated: <aggregator name>
lacp_add_aggregator: unable to allocate aggregator <aggregator name>
lacp_add_aggregator: add aggregator <aggregator name> failed in init
<function name>(<line>): link->key: <actor oper port key>, can_link->key: <candidate link oper port key>
<function name>: send packet failed.
Error Messages Logged by MSTP Module
Error Message Bridge <bridge name> Not Found
Could not validate BPDU version
Invalid BPDU received on port <interface name>
21. Appendix B: Logged Error Messages
144
Name size is greater than max allowed <max bridge name len>
Cannot allocate ifindex_id <port index>
Cannot allocate memory for port <port index>
Instance <mst instance id> not within allowed range
Cannot add vlan <vlan id> to instance <mst instance id> : absent in common instance
Error ;Port(<interface name>) on bridge <bridge name> not found
Error ;Port(<interface name>) for instance(<mst instance id>) not found
Unable to allocate memory for bridge <bridge name>
Error opening socket (<socket id>)
Incorrect info type value received <info type>
mstp_msti_handle_rootport_transition:Invalid Data
Could not allocate memory for mstp interface
Cannot allocate memory for MSTI info
WMI Port <interface name> Identifier TLV: error <status> in writing header
WMI Port <interface name> Identifier TLV: error <status> in writing data
WMI Bridge <bridge name> Identifier TLV: error <status> in writing header
WMI Bridge <bridge name> Identifier TLV: error <status> in writing data
WMI Port <interface name> Bridge Group Extended TLV: invalid instance id
WMI Port <interface name> Bridge Group Extended TLV: error <status> in writing header
WMI Port <interface name> Bridge Group Extended TLV: error <status> in writing data
WMI Port <interface name> Bridge Group TLV: error <status> in writing data
WMI Port <interface name> Bridge Group TLV: error <status> in writing header
WMI Port <interface name> Setting TLV: error <status> in writing header
WMI Port Data MSG: length <msg len> exceeds the limit <WMI max msg len>
WMI Port Data MSG: error <status> in writing header
WMI Port <interface name> MSTP Instance Setting TLV: error <status> in writing header
WMI Port <interface name> MSTP Instance Setting TLV: error <status> in writing data
WMI Port <interface name> MSTP Bridge Setting TLV: error <status> in writing data
WMI Port <interface name> MSTP Bridge Setting TLV: error <status> in writing header
WMI Bridge <bridge name> General TLV: error <status> in writing header
WMI Bridge <bridge name> General TLV: error <status> in writing data
WMI MSTP Bridge <bridge name> Instance TLV: error <status> in writing header
WMI MSTP Bridge <bridge name> Instance TLV: error <status> in writing data
WMI Bridge <bridge name> Setting TLV: error <status> in writing header
WMI Bridge <bridge name> Port List TLV: error <status> in writing header
WMI VLAN <vlan id> Identifier TLV: invalid bridge name
WMI VLAN <vlan id> Identifier TLV: could not find bridge
WMI VLAN <vlan id> Identifier TLV: invalid VLAN ID
WMI VLAN <vlan id> Identifier TLV: error <status> in writing header
21. Appendix B: Logged Error Messages
145
WMI VLAN <vlan id> Identifier TLV: error <status> in writing data
WMI Bridge <bridge name> Instance <instance id> Port List TLV: error <status> in writing header
WMI Bridge <bridge name> Instance <instance id> VLAN List TLV: error <status> in writing header
WMI MSTP Bridge <bridge name> Instance <instance id> Detail TLV: error <status> in writing data
WMI MSTP Bridge <bridge name> Instance <instance id> Detail TLV: error <status> in writing header
WMI MSTP Bridge <bridge name> Detail Extended TLV: error <status> in writing data
WMI MSTP Bridge <bridge name> Detail Extended TLV: error <status> in writing header
WMI Bridge Data MSG: length <len> exceeds the limit <max bridge data msg len>
WMI Bridge Data MSG: error <status> in writing header
WMI MSTP Port <interface name> Detail MSG: length <msg len> exceeds the limit <max WMI msg len>
WMI MSTP Port <interface name> Detail MSG: error <status> in writing header
WMI Bridge <bridge name> Detail MSG: length <msg len> exceeds the limit <max WMI msg len>
WMI Bridge <bridge name> Detail MSG: error <status> in writing header
WMI show port: the first page of WMI is NULL
WMI show mstp port <interface name>: the first page of WMI is NULL
WMI show bridge: the first page of WMI is NULL
WMI show bridge <bridge name>: the first page of WMI is NULL
Can't create and initialize MSTP WMI server
Error Messages logged by NSM Module Error Messages Flow control is not supported
PDU[RECV]: socket is not open (<socket>)
PDU[RECV]: receive failed (<error code>) - aborting recv thread
To and From interface is the same
Port already mirrored
Couldn't add port mirror
Bridge Port add failed(<status>) on aggregator member <interface name>
Bridge Port delete failed(<status>) on aggregator member <interface name>
<function name>: Unknown event <event type>
<function name>(<line>): invalid vld_link: <port index>
<function name>(<line>): allocate memmory failed.
<fuction name>: can not find ifindex:<port index>
<function name>: unknown mode: <mode>
No bridge master found
21. Appendix B: Logged Error Messages
146
No Bridge configured
<function name>, No bridge found.
<function name>: send packet failed.
WMI Port <interface name> Identifier TLV: error <status> in writing header
WMI Port <interface name> Identifier TLV: error <status> in writing data
WMI Port <interface name> Ifindex <port index> TLV: error <status> in writing data
WMI Port <interface name> General TLV: error <status> in writing header
WMI Port <interface name> General TLV: error <status> in writing data
WMI Port <interface name> Mirror Setting TLV: error <status> in writing data
WMI Port <interface name> Mirror Setting TLV: error <status> in writing header
WMI Port <interface name> Setting TLV: error <status> in writing header
WMI Port Data MSG: length <msg len> exceeds the limit <max len>
WMI Port Data MSG: error <status> in writing header
WMI Port <interface name> Detail MSG: length <msg len> exceeds the limit <max len>
WMI Port <interface name> Detail MSG: error <status> in writing header
WMI show port: the first page of WMI is NULL
WMI Port <interface name> Mirror Summary (each) TLV: error <status> in writing data
WMI Port <interface name> Mirror Summary (each) TLV: error <status> in writing header
WMI Port Mirror MSG: length <msg len> exceeds the limit <max len>
WMI Port Mirror MSG: error <status> in writing header
WMI Bridge Identifier TLV: invalid bridge pointer
WMI Bridge <bridge name> Identifier TLV: error <status> in writing header
WMI Bridge <bridge name> Identifier TLV: error <status> in writing data
WMI Bridge <bridge name> Setting TLV: error <status> in writing header
WMI Bridge Data MSG: length <msg len> exceeds the limit <max len>
WMI Bridge Data MSG: error <status> in writing header
Can't create and initialize NSM WMI server
GVRP build PDU failed
WMI Port <port index> VLAN Setting TLV: bridge <bridge name> could not get vlan_port
WMI Port <port index> VLAN Setting TLV: error <status> in writing header
WMI Port <port index> VLAN Setting TLV: error <status> in writing data
WMI Port VLAN List TLV: invalid interface pointer
WMI Port <interface name> VLAN List TLV: port_no <port no> could not exceed the limit <max ports>
WMI Port <interface name> VLAN List TLV: error <status> in writing header
WMI VLAN <vlan id> Identifier TLV: invalid bridge name
WMI VLAN <vlan id> Identifier TLV: could not find bridge
WMI VLAN <vlan id> Identifier TLV: invalid VLAN ID
WMI VLAN <vlan id> Identifier TLV: error <status> in writing header
21. Appendix B: Logged Error Messages
147
WMI VLAN <vlan id> Identifier TLV: error <status> in writing data
WMI VLAN <vlan id> General TLV: invalid bridge pointer
WMI VLAN <vlan id> General TLV: error <status> in writing data
WMI VLAN <vlan id> General TLV: error <status> in writing header
WMI VLAN <vlan id> Switch Link TLV: can't get interface
WMI VLAN <vlan id> Switch Link TLV: port <interface name>, error <status> in writing data
WMI VLAN <vlan id> Switch Link TLV: invalid bridge pointer
WMI VLAN <vlan id> Switch Link TLV: invalid VLAN ID
WMI VLAN <vlan id> Switch Link TLV: error <status> in writing header
WMI VLAN <vlan id> Setting TLV: invalid bridge pointer
WMI VLAN <vlan id> Setting TLV: invalid bridge name
WMI VLAN <vlan id> Setting TLV: invalid VLAN ID
WMI VLAN <vlan id> Setting TLV: bridge <bridge name> is not vlan_aware
WMI VLAN <vlan id> Setting TLV: error <status> in writing header
WMI Bridge VLAN List TLV: invalid bridge name
WMI Bridge <bridge name> VLAN List TLV: could not find a bridge
WMI VLAN Data MSG: length <msg len> exceeds the limit <max len>
WMI VLAN Data MSG: error <status> in writing header
WMI VLAN <vlan id> Detail MSG: invalid VLAN ID
WMI VLAN Detail MSG: length <msg len> exceeds the limit <max len>
WMI VLAN Detail MSG: error <status> in writing header
WMI show vlan: the first page of WMI is NULL
NSM message send error socket <sock id> <error string>
VPLS MAC Address Withdraw for VPLS Instance:<vpls id>failed with error= <status>
VPLS FIB add processing failed for vpls id <vpls id>
VPLS FIB delete processing failed for vpls id <vpls id>, error = <status>
Interface not found for ifindex <port index>
Cannot allocate snmp shadow route table
memory allocation failed for nsm_snmp_shadow_route_create
Cannot allocate memory for snmp cidr route entry
Can't get FIB
OS: Creating FIB for <name> VRF failed
OS: Deleting FIB for <name> VRF failed
Error Messages logged by Pal Error Message getifaddrs(): <error string>
if_getaddrs(): Can't lookup interface <interface name>
21. Appendix B: Logged Error Messages
148
VRRP Error: Open RAW socket failed.
VRRP Error: Open DGRAM socket failed.
VRRP Error: Open PACKET socket failed.
VRRP Error: error binding to socket (grat arp)
VRRP Error: sendto sent short Gratuitous ARP
VRRP Error: Couldn't set Mac address via ioctl
Can't open <net link socket name> socket: <error string>
Can't set <netlink socket name> socket flags: <error string>
Can't bind <netlink socket name> socket to group 0x<group>: <error string>
Can't get <netlink socket name> socket name: <error string>
<netlink socket name> socket isn't active.
<netlink socket name> sendto failed: <error string>
<netlink socket name> recvmsg overrun: <error string>
Ignoring non kernel message from pid <pid>
<netlink socket name> EOF
<netlink socket name> sender address length error: length <msg len>
<netlink socket name> error: message truncated
<netlink socket name> error: <error string> , type= <msg type> , seq=<msg seq> , pid=<pid>
<netlink socket name> filter function error
<netlink socket name> error: data remnant size <status>
netlink_interface_addr can't find interface by index <port index>
netlink_talk sendmsg() error: <error string>
<function name> : <line> F_GETFL error: <error string>
<function name> : <line> F_SETFL error: <error string>
netlink_route_multipath_ipv6(<look up>) <prefix>:<error string>
Error Messages Logged by RSTP Module Error Message Cannot allocate ifindex_id <Ifindex>.
Cannot allocate memory for port <Ifindex>.
Error opening socket <Socket name>.
PDU[RECV]: socket is not open <Socket name>.
WMI Port <Interface name> Identifier TLV: error <Status> in writing header.
WMI Port <Interface name> Identifier TLV: error <Status> in writing data.
WMI Bridge <Bridge name> Identifier TLV: error <Status> in writing header.
WMI Bridge <Bridge name> Identifier TLV: error <Status> in writing data.
WMI Port <Interface name> Bridge Group TLV: error <Status> in writing data.
WMI Port <Interface name> Bridge Group TLV: error <Status> in writing header.
21. Appendix B: Logged Error Messages
149
WMI Port <Interface name> Setting TLV: error <Status> in writing header.
WMI Port Data MSG: length <Message Length> exceeds the limit <Message Maximum Length>.
WMI Port Data MSG: error <Status> in writing header.
WMI Port <Interface name> RSTP Bridge Setting TLV: error <Status> in writing data.
WMI Port <Interface name> RSTP Bridge Setting TLV: error <Status> in writing header.
WMI Bridge <Bridge name> General TLV: error <Status> in writing header.
WMI Bridge <Bridge name> General TLV: error <Status> in writing data.
WMI Bridge <Bridge name> Setting TLV: error <Status> in writing header.
WMI Bridge <Bridge name> Port List TLV: error <Status> in writing header.
WMI Bridge <Bridge name> Detail Extended TLV: error <Status> in writing header.
WMI Bridge <Bridge name> Detail Extended TLV: error <Status> in writing data.
WMI Bridge Data MSG: length <Message Length> exceeds the limit <Message Maximum Length>.
WMI Bridge Data MSG: error <Status> in writing header.
WMI RSTP Port <Interface name> Detail MSG: length <Message Length> exceeds the limit <Message Maximum Length>.
WMI Port <Interface name> Detail MSG: error <Status> in writing header.
WMI Bridge <Interface name> Detail MSG: length <Message Length> exceeds the limit <Message Maximum Length>.
WMI Bridge <Bridge name> Detail MSG: error <Status> in writing header.
WMI show port: the first page of WMI is NULL.
WMI show rstp port <Interface name>: the first page of WMI is NULL.
WMI show bridge: the first page of WMI is NULL.
WMI show bridge <Bridge name>: the first page of WMI is NULL.
Can't create and initialize RSTP WMI server.
Error Messages Logged by STP Module Error Message Error opening socket (<sock id>)
Could not allocate memory for stp interface
PDU[RECV]: socket is not open (<sock id>)
WMI Port <interface name> Identifier TLV: error <status> in writing header
WMI Port <interface name> Identifier TLV: error <status> in writing data
WMI Bridge <bridge name> Identifier TLV: error <status> in writing header
WMI Bridge <bridge name> Identifier TLV: error <status> in writing data
WMI Port <interface name> Bridge Group TLV: error <status> in writing data
WMI Port <interface name> Bridge Group TLV: error <status> in writing header
WMI Port <interface name> Setting TLV: error <status> in writing header
WMI Port Data MSG: length <len> exceeds the limit <max len>
WMI Port Data MSG: error <status> in writing header
21. Appendix B: Logged Error Messages
150
WMI Port <interface name> STP Bridge Setting TLV: error <status> in writing data
WMI Port <interface name> STP Bridge Setting TLV: error <status> in writing header
WMI Bridge <bridge name> General TLV: error <status> in writing header
WMI Bridge <bridge name> General TLV: error <status> in writing data
WMI Bridge <bridge name> Setting TLV: error <status> in writing header
WMI Bridge <bridge name> Port List TLV: error <status> in writing header
WMI Bridge <bridge name> Detail Extended TLV: error <status> in writing header
WMI Bridge <bridge name> Detail Extended TLV: error <status> in writing data
WMI Bridge Data MSG: length <len> exceeds the limit <max len>
WMI Bridge Data MSG: error <status> in writing header
WMI STP Port <interface name> Detail MSG: length <len> exceeds the limit <max len>
WMI STP Port <interface name> Detail MSG: error <status> in writing header
WMI Bridge <bridge name> Detail MSG: length <len> exceeds the limit <max len>
WMI Bridge <bridge name> Detail MSG: error <status> in writing header
WMI show port: the first page of WMI is NULL
WMI show stp port <interface name>: the first page of WMI is NULL
Can't create and initialize STP WMI server
ServerEngines Corporation 209 N. Fair Oaks Ave. Sunnyvale, CA 94085 © Copyright 2003-2008 ServerEngines Corporation All rights reserved. Version 1.0 02/08
Information on this document On April 1, 2009, Fujitsu became the sole owner of Fujitsu Siemens Compu-ters. This new subsidiary of Fujitsu has been renamed Fujitsu Technology So-lutions.
This document from the document archive refers to a product version which was released a considerable time ago or which is no longer marketed.
Please note that all company references and copyrights in this document have been legally transferred to Fujitsu Technology Solutions.
Contact and support addresses will now be offered by Fujitsu Technology So-lutions and have the format …@ts.fujitsu.com.
The Internet pages of Fujitsu Technology Solutions are available at http://ts.fujitsu.com/... and the user documentation at http://manuals.ts.fujitsu.com.
Copyright Fujitsu Technology Solutions, 2009
Hinweise zum vorliegenden Dokument Zum 1. April 2009 ist Fujitsu Siemens Computers in den alleinigen Besitz von Fujitsu übergegangen. Diese neue Tochtergesellschaft von Fujitsu trägt seit-dem den Namen Fujitsu Technology Solutions.
Das vorliegende Dokument aus dem Dokumentenarchiv bezieht sich auf eine bereits vor längerer Zeit freigegebene oder nicht mehr im Vertrieb befindliche Produktversion.
Bitte beachten Sie, dass alle Firmenbezüge und Copyrights im vorliegenden Dokument rechtlich auf Fujitsu Technology Solutions übergegangen sind.
Kontakt- und Supportadressen werden nun von Fujitsu Technology Solutions angeboten und haben die Form …@ts.fujitsu.com.
Die Internetseiten von Fujitsu Technology Solutions finden Sie unter http://de.ts.fujitsu.com/..., und unter http://manuals.ts.fujitsu.com finden Sie die Benutzerdokumentation.
Copyright Fujitsu Technology Solutions, 2009