Part No. 313194-A Rev 00 October 2001 4401 Great America Parkway Santa Clara, CA 95054
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
2
Copyright © 2001 Nortel Networks All rights reserved. October 2001. The information in this document is subject to change without notice. The statements, configurations, technical data, and recommendations in this document are believed to be accurate and reliable, but are presented without express or implied warranty. Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel Networks Inc.
Trademarks Nortel Networks, the Nortel Networks logo, the Globemark, Unified Networks, Passport, BayStack, OPTera, and Optivity are trademarks of Nortel Networks. Microsoft, Windows, and Windows NT are trademarks of Microsoft Corporation. Adobe and Acrobat Reader are trademarks of Adobe Systems Incorporated.
Statement of conditions In the interest of improving internal design, operational function, and/or reliability, Nortel Networks Inc. reserves the right to make changes to the products described in this document without notice. Nortel Networks Inc. does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.
Nortel Networks Inc. software license agreement NOTICE: Please carefully read this license agreement before copying or using the accompanying software or installing the hardware unit with pre-enabled software (each of which is referred to as “Software” in this Agreement). BY COPYING OR USING THE SOFTWARE, YOU ACCEPT ALL OF THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT. THE TERMS EXPRESSED IN THIS AGREEMENT ARE THE ONLY TERMS UNDER WHICH NORTEL NETWORKS WILL PERMIT YOU TO USE THE SOFTWARE. If you do not accept these terms and conditions, return the product, unused and in the original shipping container, within 30 days of purchase to obtain a credit for the full purchase price. 1. License grant. Nortel Networks Inc. (“Nortel Networks”) grants the end user of the Software (“Licensee”) a personal, nonexclusive, nontransferable license: a) to use the Software either on a single computer or, if applicable, on a single authorized device identified by host ID, for which it was originally acquired; b) to copy the Software solely for backup purposes in support of authorized use of the Software; and c) to use and copy the associated user manual solely in support of authorized use of the Software by Licensee. This license applies to the Software only and does not extend to Nortel Networks Agent software or other Nortel Networks software products. Nortel Networks Agent software or other Nortel Networks software products are licensed for use under the terms of the applicable Nortel Networks Inc. Software License Agreement that accompanies such software and upon payment by the end user of the applicable license fees for such software. 2. Restrictions on use; reservation of rights. The Software and user manuals are protected under copyright laws. Nortel Networks and/or its licensors retain all title and ownership in both the Software and user manuals, including any revisions made by Nortel Networks or its licensors. The copyright notice must be reproduced and included with any copy of any portion of the Software or user manuals. Licensee may not modify, translate, decompile, disassemble, use for any competitive analysis, reverse engineer, distribute, or create derivative works from the Software or user manuals or any copy, in whole or in part. Except as expressly provided in this Agreement, Licensee may not copy or transfer the Software or user manuals, in whole or in part. The Software and user manuals embody Nortel Networks’ and its licensors’ confidential and proprietary intellectual property. Licensee shall not sublicense, assign, or otherwise disclose to any third party the Software, or any information about the operation, design, performance, or implementation of the Software and user manuals that is confidential to Nortel Networks and its licensors; however, Licensee may grant
313194-A Rev 00
3 permission to its consultants, subcontractors, and agents to use the Software at Licensee’s facility, provided they have agreed to use the Software only in accordance with the terms of this license. 3. Limited warranty. Nortel Networks warrants each item of Software, as delivered by Nortel Networks and properly installed and operated on Nortel Networks hardware or other equipment it is originally licensed for, to function substantially as described in its accompanying user manual during its warranty period, which begins on the date Software is first shipped to Licensee. If any item of Software fails to so function during its warranty period, as the sole remedy Nortel Networks will at its discretion provide a suitable fix, patch, or workaround for the problem that may be included in a future Software release. Nortel Networks further warrants to Licensee that the media on which the Software is provided will be free from defects in materials and workmanship under normal use for a period of 90 days from the date Software is first shipped to Licensee. Nortel Networks will replace defective media at no charge if it is returned to Nortel Networks during the warranty period along with proof of the date of shipment. This warranty does not apply if the media has been damaged as a result of accident, misuse, or abuse. The Licensee assumes all responsibility for selection of the Software to achieve Licensee’s intended results and for the installation, use, and results obtained from the Software. Nortel Networks does not warrant a) that the functions contained in the software will meet the Licensee’s requirements, b) that the Software will operate in the hardware or software combinations that the Licensee may select, c) that the operation of the Software will be uninterrupted or error free, or d) that all defects in the operation of the Software will be corrected. Nortel Networks is not obligated to remedy any Software defect that cannot be reproduced with the latest Software release. These warranties do not apply to the Software if it has been (i) altered, except by Nortel Networks or in accordance with its instructions; (ii) used in conjunction with another vendor’s product, resulting in the defect; or (iii) damaged by improper environment, abuse, misuse, accident, or negligence. THE FOREGOING WARRANTIES AND LIMITATIONS ARE EXCLUSIVE REMEDIES AND ARE IN LIEU OF ALL OTHER WARRANTIES EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION ANY WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Licensee is responsible for the security of its own data and information and for maintaining adequate procedures apart from the Software to reconstruct lost or altered files, data, or programs. 4. Limitation of liability. IN NO EVENT WILL NORTEL NETWORKS OR ITS LICENSORS BE LIABLE FOR ANY COST OF SUBSTITUTE PROCUREMENT; SPECIAL, INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES; OR ANY DAMAGES RESULTING FROM INACCURATE OR LOST DATA OR LOSS OF USE OR PROFITS ARISING OUT OF OR IN CONNECTION WITH THE PERFORMANCE OF THE SOFTWARE, EVEN IF NORTEL NETWORKS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. IN NO EVENT SHALL THE LIABILITY OF NORTEL NETWORKS RELATING TO THE SOFTWARE OR THIS AGREEMENT EXCEED THE PRICE PAID TO NORTEL NETWORKS FOR THE SOFTWARE LICENSE. 5. Government licensees. This provision applies to all Software and documentation acquired directly or indirectly by or on behalf of the United States Government. The Software and documentation are commercial products, licensed on the open market at market prices, and were developed entirely at private expense and without the use of any U.S. Government funds. The license to the U.S. Government is granted only with restricted rights, and use, duplication, or disclosure by the U.S. Government is subject to the restrictions set forth in subparagraph (c)(1) of the Commercial Computer Software––Restricted Rights clause of FAR 52.227-19 and the limitations set out in this license for civilian agencies, and subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause of DFARS 252.227-7013, for agencies of the Department of Defense or their successors, whichever is applicable. 6. Use of software in the European Community. This provision applies to all Software acquired for use within the European Community. If Licensee uses the Software within a country in the European Community, the Software Directive enacted by the Council of European Communities Directive dated 14 May, 1991, will apply to the examination of the Software to facilitate interoperability. Licensee agrees to notify Nortel Networks of any such intended examination of the Software and may procure support and assistance from Nortel Networks. 7. Term and termination. This license is effective until terminated; however, all of the restrictions with respect to Nortel Networks’ copyright in the Software and user manuals will cease being effective at the date of expiration of the Nortel Networks copyright; those restrictions relating to use and disclosure of Nortel Networks’ confidential information shall continue in effect. Licensee may terminate this license at any time. The license will automatically terminate if Licensee fails to comply with any of the terms and conditions of the license. Upon termination for any reason, Licensee
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
4 will immediately destroy or return to Nortel Networks the Software, user manuals, and all copies. Nortel Networks is not liable to Licensee for damages in any form solely by reason of the termination of this license. 8. Export and re-export. Licensee agrees not to export, directly or indirectly, the Software or related technical data or information without first obtaining any required export licenses or other governmental approvals. Without limiting the foregoing, Licensee, on behalf of itself and its subsidiaries and affiliates, agrees that it will not, without first obtaining all export licenses and approvals required by the U.S. Government: (i) export, re-export, transfer, or divert any such Software or technical data, or any direct product thereof, to any country to which such exports or re-exports are restricted or embargoed under United States export control laws and regulations, or to any national or resident of such restricted or embargoed countries; or (ii) provide the Software or related technical data or information to any military end user or for any military end use, including the design, development, or production of any chemical, nuclear, or biological weapons. 9. General. If any provision of this Agreement is held to be invalid or unenforceable by a court of competent jurisdiction, the remainder of the provisions of this Agreement shall remain in full force and effect. This Agreement will be governed by the laws of the state of California. Should you have any questions concerning this Agreement, contact Nortel Networks Inc., 2375 N. Glenville Dr., Richardson, TX 75082. LICENSEE ACKNOWLEDGES THAT LICENSEE HAS READ THIS AGREEMENT, UNDERSTANDS IT, AND AGREES TO BE BOUND BY ITS TERMS AND CONDITIONS. LICENSEE FURTHER AGREES THAT THIS AGREEMENT IS THE ENTIRE AND EXCLUSIVE AGREEMENT BETWEEN NORTEL NETWORKS AND LICENSEE, WHICH SUPERSEDES ALL PRIOR ORAL AND WRITTEN AGREEMENTS AND COMMUNICATIONS BETWEEN THE PARTIES PERTAINING TO THE SUBJECT MATTER OF THIS AGREEMENT. NO DIFFERENT OR ADDITIONAL TERMS WILL BE ENFORCEABLE AGAINST NORTEL NETWORKS UNLESS NORTEL NETWORKS GIVES ITS EXPRESS WRITTEN CONSENT, INCLUDING AN EXPRESS WAIVER OF THE TERMS OF THIS AGREEMENT.
313194-A Rev 00
5
Contents Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 Before you begin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 Text conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18 Acronyms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20 Related publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21 How to get help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Chapter 1 CLI basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25 Management tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26 Device Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 Web management interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 Boot Monitor command line interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 Run-Time command line interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 Accessing the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28 Boot Monitor and Run-Time CLIs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29 Getting Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30 Navigation commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 help command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33 history commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34 Remote host commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35 Passport access levels and passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35 Telnet and console passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36 CLI commands to change the console/Telnet password . . . . . . . . . . . . . . . . . 37 Switch file system . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37 File management commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38 copy command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42 edit command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
6
Contents
Chapter 2 Boot Monitor command line interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45 Accessing the Boot Monitor CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46 Boot Monitor command hierarchy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47 Using the CLI to configure L2 Redundancy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48 Configuring L2 Redundancy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51 Boot Monitor commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51 boot command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51 choice commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52 cli commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53 date command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54 delay command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54 flags commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55 host commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58 master command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59 net commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59 ping command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61 Quit commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 reset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 save command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 setdate command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63 show commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63 sio commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65 tz commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Chapter 3 Run-Time command line interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 General usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 Run-time command hierarchy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71 General commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72 boot command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72 clear commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73 help command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74 login, exit, logout, and quit commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75 peer command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75 313194-A Rev 00
Contents
7
ping and pingipx commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75 reset command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77 save command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77 traceroute command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77 test and show test commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79 show test commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80 show test artable command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80 show test fabric command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80 show test loopback command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81 trace and show trace commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 show trace commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 show trace file command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83 show trace level command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Chapter 4 General switch management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85 show config command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85 show tech command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88 show sys info command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 bootconfig commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90 config bootconfig choice commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91 config bootconfig delay command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91 config bootconfig flags commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92 config bootconfig host commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 config bootconfig master command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95 config bootconfig net commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95 config bootconfig show commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97 config bootconfig sio commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98 config bootconfig tz commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100 show bootconfig commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101 Commands for configuring the Run-Time CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103 config cli commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103 show cli commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106 show cli info command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106 show cli who command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
8
Contents show cli password command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107 config cli password commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108 Commands for configuring the Boot Monitor CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109 config bootconfig cli commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109 System commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 110 Access policy commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111 config sys access-policy commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111 config sys access-policy policy commands . . . . . . . . . . . . . . . . . . . . . . . . . . 112 Setting an access policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115 show sys access-policy info command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116 config sys set action commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 117 config sys set snmp commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 118 config sys set mgmt-virtual-ip command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120 Other config sys set commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120 show sys commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122 show sys community command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123 show sys msg-control command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123 show sys perf command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123 show sys sw command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124 show sys topology command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125 config sys link-flap-detect commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125 show sys link-flap-detect general-info command . . . . . . . . . . . . . . . . . . . . . . . . . 126 dump ar command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127 Syslog commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127 config sys syslog commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127 show sys syslog commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129 Log commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131 config log commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131 show log commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132 show log file command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132 show log level command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133 RMON commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134 config rmon commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134 show rmon commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137 config setdate command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
313194-A Rev 00
Contents
9
web-server commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138 config web-server commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139 show web-server command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140
Appendix A Edit commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141 Appendix B Special terminal characters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145 Appendix C Connecting a modem . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147 Appendix D PPP configuration file options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151 Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154
Appendix E Tap and OctaPID Assignment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 155 Appendix F CLI command list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161 Appendix G Additional reference sources . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 173 Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
10
Contents
313194-A Rev 00
11
Figures Figure 1
Subcontext and context in CLI example . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Figure 2
help config command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Figure 3
history command in the Boot Monitor CLI . . . . . . . . . . . . . . . . . . . . . . . . . 34
Figure 4
show cli password command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Figure 5
directory command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Figure 6
more command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Figure 7
edit command partial output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Figure 8
Partial Boot Monitor CLI command tree . . . . . . . . . . . . . . . . . . . . . . . . . . 47
Figure 9
show bootconfig flags command output . . . . . . . . . . . . . . . . . . . . . . . . . . 50
Figure 10
choice primary info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Figure 11
cli info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Figure 12
date command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Figure 13
flags info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57
Figure 14
host info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Figure 15
net mgmt info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
Figure 16
ping command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Figure 17
show master command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
Figure 18
sio console info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Figure 19
tz info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Figure 20
Command groups in the Run-Time CLI hierarchy . . . . . . . . . . . . . . . . . . 71
Figure 21
help command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
Figure 22
ping command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
Figure 23
traceroute command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Figure 24
show test artable command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Figure 25
show test fabric command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Figure 26
show test loopback command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Figure 27
show trace file command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Figure 28
show trace level command (partial output) . . . . . . . . . . . . . . . . . . . . . . . . 84
Figure 29
show config command (partial output) . . . . . . . . . . . . . . . . . . . . . . . . . . . 86
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
12
Figures Figure 30
show config verbose command (partial output) . . . . . . . . . . . . . . . . . . . . 87
Figure 31
show tech command (partial output) . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88
Figure 32
show sys info command (partial output) . . . . . . . . . . . . . . . . . . . . . . . . . . 90
Figure 33
config bootconfig flags info command output . . . . . . . . . . . . . . . . . . . . . . 93
Figure 34
config bootconfig host info command output . . . . . . . . . . . . . . . . . . . . . . 95
Figure 35
config bootconfig net cpu info command output . . . . . . . . . . . . . . . . . . . . 97
Figure 36
config bootconfig show info command output . . . . . . . . . . . . . . . . . . . . . 98
Figure 37
config bootconfig sio console info command output . . . . . . . . . . . . . . . . . 99
Figure 38
show bootconfig choice command output . . . . . . . . . . . . . . . . . . . . . . . 102
Figure 39
show bootconfig info command . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102
Figure 40
config cli info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106
Figure 41
show cli info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Figure 42
show cli who command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Figure 43
config cli password info command output . . . . . . . . . . . . . . . . . . . . . . . . 109
Figure 44
config bootconfig cli info command output . . . . . . . . . . . . . . . . . . . . . . . 110
Figure 45
config sys access-policy policy info command output . . . . . . . . . . . . . . 114
Figure 46
Commands to deny access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115
Figure 47
show sys access-policy info policy2 command output—default policy . . 116
Figure 48
show sys access-policy info policy2 command output . . . . . . . . . . . . . . 117
Figure 49
config sys set action info command output . . . . . . . . . . . . . . . . . . . . . . . 118
Figure 50
config sys set snmp info command output . . . . . . . . . . . . . . . . . . . . . . . 119
Figure 51
config sys set info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
Figure 52
show sys community command output . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Figure 53
show sys perf command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Figure 54
show sys sw command partial output . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Figure 55
show sys topology command output . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Figure 56
config sys link-flap-detect info command output . . . . . . . . . . . . . . . . . . . 126
Figure 57
config sys syslog info command output . . . . . . . . . . . . . . . . . . . . . . . . . 129
Figure 58
show sys syslog general-info command output . . . . . . . . . . . . . . . . . . . 130
Figure 59
show sys syslog host info command output . . . . . . . . . . . . . . . . . . . . . . 130
Figure 60
config log info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
Figure 61
show log file tail command partial output . . . . . . . . . . . . . . . . . . . . . . . . 133
Figure 62
show log level command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133
Figure 63
config rmon event info command output . . . . . . . . . . . . . . . . . . . . . . . . 137
Figure 64
show rmon info command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
313194-A Rev 00
Figures
13
Figure 65
config setdate command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
Figure 66
config web-server info command output . . . . . . . . . . . . . . . . . . . . . . . . . 139
Figure 67
show web-server command output . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
14
Figures
313194-A Rev 00
15
Tables Table 1
Related publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Table 2
Default logins and passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Table 3
Commands available in edit mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
Table 4
Special terminal characters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145
Table 5
DTE-to-DCE straight-through pin assignments . . . . . . . . . . . . . . . . . . . 147
Table 6
Available module types and OctaPID ID assignments . . . . . . . . . . . . . . 156
Table 7
Passport 8608GBE, Passport 8608GTE, and Passport 8608SXE modules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156
Table 8
Passport 8616SXE module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157
Table 9
Passport 8624FXE module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157
Table 10
Passport 8632TXE module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Table 11
Passport 8648TXE module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Table 12
Passport 8672ATME module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159
Table 13
Passport 8683POSE module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159
Table 14
CLI command list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
16
Tables
313194-A Rev 00
17
Preface Nortel Networks* Passport* command line interface (CLI) is one of the tools used to configure and manage a Passport 8000 Series switch. You can set up, configure, and manage a Passport 8000 Series switch using the CLI and the Device Manager graphical user interface (GUI). The Passport 8000 Series switch is composed of a Passport 8000 Series chassis with one of the following types of installed modules: • •
Passport 8600 module Passport 8100 module
This guide provides instructions for using the CLI to perform basic switch management for Passport switches. It also contains a complete list of CLI commands. Most of the commands in this guide can be used in both the Passport 8600 module and the Passport 8100 module. If a command can only be used with one of these modules, it is noted in the text.
Before you begin This guide is intended for network administrators with the following background: • • •
Basic knowledge of networks, Ethernet bridging, and IP and IPX routing Familiarity with networking concepts and terminology Basic knowledge of network topologies
Before using this guide, you must complete the following procedures. For a new switch: • •
Install the switch (refer to the installation guide for your switch chassis) Connect the switch to the network. See Getting Started with the Passport 8000 Series Switch Management Software.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
18
Preface
Text conventions This guide uses the following text conventions: angle brackets (< >)
Indicate that you choose the text to enter based on the description inside the brackets. Do not type the brackets when entering the command. Example: If the command syntax is ping
, you enter ping 192.32.10.12
bold Courier text
Indicates command names and options and text that you need to enter. Example: Use the dinfo command. Example: Enter show ip {alerts|routes}.
braces ({})
Indicate required elements in syntax descriptions where there is more than one option. You must choose only one of the options. Do not type the braces when entering the command. Example: If the command syntax is show ip {alerts|routes}, you must enter either show ip alerts or show ip routes, but not both.
brackets ([ ])
Indicate optional elements in syntax descriptions. Do not type the brackets when entering the command. Example: If the command syntax is show ip interfaces [-alerts], you can enter either show ip interfaces or show ip interfaces -alerts.
ellipsis points (. . . )
Indicate that you repeat the last element of the command as needed. Example: If the command syntax is ethernet/2/1 [<parameter> ]... ,
you enter ethernet/2/1 and as many parameter-value pairs as needed.
313194-A Rev 00
Preface
19
italic text
Indicates new terms, book titles, and variables in command syntax descriptions. Where a variable is two or more words, the words are connected by an underscore. Example: If the command syntax is show at , valid_route is one variable and you substitute one value for it.
plain Courier text
Indicates command syntax and system output, for example, prompts and system messages. Example: Set Trap Monitor Filters
separator ( > )
Shows menu paths. Example: Protocols > IP identifies the IP option on the Protocols menu.
vertical line ( | )
Separates choices for command keywords and arguments. Enter only one of the choices. Do not type the vertical line when entering the command. Example: If the command syntax is show ip {alerts|routes}, you enter either show ip alerts or show ip routes, but not both.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
20
Preface
Acronyms This guide uses the following acronyms: AUI
attachment unit interface
BootP
Bootstrap Protocol
BRI
basic rate interface
CSMA/CD
carrier sense multiple access/collision detection
DLCMI
Data Link Control Management Interface
HDLC
High-level Data Link Control
IP
Internet Protocol
ISDN
Integrated Services Digital Network
ISO
International Organization for Standardization
ITU-T
International Telecommunication Union-Telecommunication Standardization Sector (formerly CCITT)
MAC
media access control
MAU
media access unit
MDI-X
medium dependent interface crossover
NBMA
nonbroadcast multi-access
OSPF
Open Shortest Path First
PPP
Point-to-Point Protocol
SMDS
Switched Multimegabit Data Service
SNMP
Simple Network Management Protocol
STP
shielded twisted pair
TPE
twisted pair Ethernet
313194-A Rev 00
Preface
21
Related publications For more information about using a Passport 8000 Series switch, the resident CLI or Device Manager, refer to the following publications: •
Release Notes for the Passport 8000 Series Switch Release 3.2 (part number 313946-A Rev 00) Provides a list of new features and late-breaking information about the hardware and software that is not included in the Passport 8000 Series switch documentation.
•
Installing and Maintaining the Passport 8003 Chassis and Components (part number 313074-B Rev 00) Provides instructions for installing the Passport 8003 Chassis in an equipment rack and for installing and replacing fan trays, power supplies, modules, gigabit interface converters, and media dependent adapters. This guide describes some of the routine tasks of operating the Passport 8003 Chassis and includes technical specifications for the chassis and the modules.
•
Installing and Maintaining the Passport 8006 Chassis and Components (part number 312748-B Rev 00) Provides instructions for installing the Passport 8006 Chassis in an equipment rack and for installing and replacing fan trays, power supplies, modules, gigabit interface converters, and media dependent adapters. This guide describes some of the routine tasks of operating the Passport 8006 Chassis and includes technical specifications for the chassis and the modules.
•
Installing and Maintaining the Passport 8010 Chassis and Components (part number 312747-B Rev 00) Provides instructions for installing the Passport 8010 Chassis in an equipment rack and for installing and replacing fan trays, power supplies, modules, gigabit interface converters, and media dependent adapters. This guide describes some of the routine tasks of operating the Passport 8010 Chassis and includes technical specifications for the chassis and the modules.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
22
Preface
•
Installing and Maintaining the Passport 8010co Chassis and Components (part number 312746-B Rev 00) Provides instructions for installing the Passport 8010co Chassis in an equipment rack and for installing and replacing fan trays, power supplies, modules, gigabit interface converters, and media dependent adapters. This guide describes some of the routine tasks of operating the Passport 8010co Chassis and includes technical specifications for the chassis and the modules.
•
Installing the Breaker Interface Panel for the Passport 8010co Chassis (part number 312755-B Rev 00) Describes how to install the breaker interface panel in an equipment rack, connect cables, and interpret LEDs. It includes technical specifications for the breaker interface panel.
•
Networking Concepts for the Passport 8000 Series Switch (part number 313196-A Rev 00) Provides general information and a description of how a Passport 8000 Series switch handles various networking features, such as VLANs, MultiLink Trunking, OSPF, RIP, and IPX.
•
Network Design Guidelines for the Passport 8000 Series Switch (part number 313197-A Rev 00) Provides guidelines for using the switching and routing features of the Passport 8000 Series hardware and software in your network design. This companion guide to Networking Concepts for the Passport 8000 Series Switch incorporates feedback from beta testing of the switch and focuses on optimizing network performance.
•
Getting Started with the Passport 8000 Series Switch Management Software (part number 313189-A Rev 00) Provides instructions for installing the Passport 8000 Series switch management software and describes initial setup procedures.
•
Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using the Command Line Interface Release 3.2 (part number 313191-A Rev 00) Describes the CLI commands and parameters for configuring layer 2 (switching) and layer 3 (routing) operations.
313194-A Rev 00
Preface
•
23
Managing the Passport 8000 Series Switch Using Device Manager Release 5.x.x (part number 313195-A Rev 00) Describes the structure of Device Manager and how to use it to perform basic switch management operations, such as working with switch files and setting up security features.
•
Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using Device Manager Release 5.x.x (part number 313193-A Rev 00) Describes how to use Device Manager to configure and manage layer 2 (switching) and layer 3 (routing) functions.
You can print selected technical manuals and release notes free, directly from the Internet. Go to the www.nortelnetworks.com/documentation URL. Find the product for which you need documentation. Then locate the specific category and model or version for your hardware or software product. Use Adobe* Acrobat Reader* to open the manuals and release notes, search for the sections you need, and print them on most standard printers. Go to Adobe Systems at the www.adobe.com URL to download a free copy of the Adobe Acrobat Reader. You can purchase selected documentation sets, CDs, and technical publications through the Internet at the www1.fatbrain.com/documentation/nortel/ URL. For more information about using a Passport 8000 Series switch, the resident CLI, or Device Manager, refer to the following publications:
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
24
Preface
How to get help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller for assistance. If you purchased a Nortel Networks service program, contact one of the following Nortel Networks Technical Solutions Centers: Technical Solutions Center
Telephone
Europe, Middle East, and Africa
(33) (4) 92-966-968
North America
(800) 4NORTEL or (800) 466-7835
Asia Pacific
(61) (2) 9927-8800
China
(800) 810-5000
Additional information about the Nortel Networks Technical Solutions Centers is available from the www.nortelnetworks.com/help/contact/global URL. An Express Routing Code (ERC) is available for many Nortel Networks products and services. When you use an ERC, your call is routed to a technical support person who specializes in supporting that product or service. To locate an ERC for your product or service, go to the http://www130.nortelnetworks.com/cgi-bin/ eserv/common/essContactUs.jsp URL.
313194-A Rev 00
25
Chapter 1 CLI basics Management tools for the Passport 8000 Series switch include Device Manager software and the command line interface (CLI). This manual provides information about CLI commands for basic management tasks, including lists of basic management commands and parameters in Passport software version 3.2. The Passport 8000 Series switch is composed of a Passport 8000 Series chassis with a choice of the following installed switch modules. Passport 8100 module
High-performance, low-cost, high-density switching
Passport 8600 module
Very high-speed packet forwarding Routing of Internet Protocol (IP) and Internetwork Packet Exchange (IPX) Protocol traffic
In a single chassis, you should install either Passport 8100 modules or Passport 8600 modules, but not both. The Passport 8600 modules include the following two specialized switching modules: • •
Passport 8683POSE Module Passport 8672ATME Module
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
26
Chapter 1 CLI basics
Table 1 lists additional references for the Passport 8000 Series switch. Table 1 Related publications Topic
Publication
Managing switching and routing operations in Configuring Switching and Routing Operations for the a Passport 8000 Series switch Passport 8000 Series Switch Using the Command Line Interface Release 3.2 Networking features in Passport products
Networking Concepts for the Passport 8000 Series Switch
Using the Passport Device Manager software Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using Device Manager Release 5.x.x Performing the initial setup of the switch configured for basic switching
Getting Started with the Passport 8000 Series Switch Management Software
For a complete list of supporting documentation, see “Related publications” on page 21. This chapter provides an overview of the CLI, and includes the following information: • • • •
“Management tools,” next “Accessing the CLI” on page 28 “Boot Monitor and Run-Time CLIs” on page 29 “Passport access levels and passwords” on page 35
Management tools Four management tools enable you to monitor and manage your Passport switch: • • • •
313194-A Rev 00
“Device Manager,” next “Web management interface” on page 27 “Boot Monitor command line interface” on page 27 “Run-Time command line interface” on page 27
Chapter 1 CLI basics
27
Device Manager Device Manager is an SNMP-based graphical user interface tool designed to allow you to manage a single device. In order to use Device Manager, you must have network connectivity to a management station running Device Manager on one of the supported platforms. For more information about using Device Manager, refer to: • •
Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using Device Manager Release 5.x.x The online Help within Device Manager
Web management interface The Passport Web management interface is a Web-based graphical user interface tool that operates in conjunction with a Web browser. It has somewhat limited functionality and is intended for use as a tool to access and monitor devices on your network from various locations. For more information about using the Web management interface, refer to Getting Started with the Passport 8000 Series Switch Management Software.
Boot Monitor command line interface The Boot Monitor CLI contains commands that enable you to configure boot options and manage files. In the Boot Monitor CLI, you can change boot flags, serial and network port configuration, and remote host information. For more information about the Boot Monitor CLI, refer to Chapter 2, “Boot Monitor command line interface.”
Run-Time command line interface The Run-Time CLI allows you to perform most switch management tasks. For detailed information about the Run-Time CLI commands for basic management tasks, see the following chapters: • •
Chapter 3, “Run-Time command line interface,” on page 69 Chapter 4, “General switch management,” on page 85
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
28
Chapter 1 CLI basics
For detailed information about Run-Time CLI commands for managing switching and routing functions, see Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using the Command Line Interface Release 3.2.
Accessing the CLI To access the Run-Time or Boot Monitor CLI the first time, you need a direct connection to the switch from a terminal or personal computer (PC). You can use any terminal or PC with a terminal emulator as the CLI command station. Be sure the terminal has the following features: • • •
9600 bits per second (b/s), 8 data bits, 1 stop bit, no parity, no flow control Serial terminal-emulation program such as Terminal or Hyperterm for Windows NT® or Hyperterm for Windows® 95 or Windows 98 Cable and connector to match the male DTE connector (DB-9) on the Passport switch console port, with the DCE/DTE switch on the switch management module set to DTE
For information about required cables, see Installing Passport 8100 Switch Modules or Installing Passport 8600 Switch Modules. You can also access the CLI through a modem connection. To set up a modem connection, refer to Appendix C, “Connecting a modem,” on page 147. To access the Boot Monitor CLI, you interrupt the switch boot process (see page 46). To access the Run-time CLI, you wait for the login prompt. At the login prompt, enter a login user name and password (page 36). You can also access the Run-Time CLI through a Telnet or rlogin session. To access the CLI remotely, the management port must have an assigned IP address and remote access must be enabled. You can log on to the switch using Telnet from a terminal that has access to the Passport 8000 Series switch. At the login prompt, enter a login user name and password (page 36).
313194-A Rev 00
Chapter 1 CLI basics
29
When you enter the CLI, the name of the system is the displayed prompt; the Run-Time CLI prompt ends with the slot number of the active switch management module. For example, the Run-Time CLI prompt is: Passport-8010:6#
However, in the Boot Monitor CLI, the prompt is different: monitor#
You can customize the Run-Time CLI prompt to begin with a different character string (page 103). However, the final character is still the slot number of the active switch management module. To open a Telnet session from Device Manager, click the Telnet icon on the Device Manager toolbar.
Boot Monitor and Run-Time CLIs The Boot Monitor and Run-Time CLIs are organized into tree data structures. When you type a command, you see the command’s context and subcontext. Context indicates commands at that level, and subcontext indicates one or more command layers available. Figure 1 shows an example with the subcontext and current context displayed.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
30
Chapter 1 CLI basics Figure 1 Subcontext and context in CLI example Passport_8100:5# config vlan 1 info Sub-Context: clear config dump monitor show trace Current Context: action add-mlt agetime delete qoslevel name
: : : : : :
N/A N/A N/A 1 Default
When you are within a given branch of the tree, you need to type only the subcommand for that level. For example, to view the configuration information of VLAN 1 from the top or prompt level, type config vlan 1 info. When you are already in the “config” branch (as in Figure 1), you need only type vlan 1 info. In addition, when you are at a certain level, you will remain at that level until you type a command that changes your level, such as box. This feature enables you to create, delete, or change all relevant parameters at a level without reentering information. Instead of typing complete commands, you can enter a shortened version of the command, such as dis for disable or en for enable, or type part of a command and then press the Tab key to complete the command. If the letters you typed are unique to a command, the command is completed automatically. If not, nothing happens, indicating that more information is necessary.
Getting Help When you navigate through the Boot Monitor or Run-Time CLI, online Help is available at all levels. From any level of the tree, you can access Help in four ways: • • •
313194-A Rev 00
Typing a question mark (?) at the prompt results in a list of all commands in that command context and the subcontext of that command. Typing the word help at the prompt provides an explanation of the available help. Typing help explains what the command does and gives its syntax.
Chapter 1 CLI basics
•
31
Typing syntax displays a list of commands and parameters available for that command.
Refer to “help command” on page 33 for more information about the specific types of online Help.
Navigation commands The following navigation commands are available in the Boot Monitor and Run-Time CLIs: • • • • • • •
back—takes you back up one level. box—goes to the top or the box level. cwc—changes the current working context. pwc—displays the current working context. pwd—prints the current working directory in the file system. top—goes to the box or top level (same as the box command). ..—goes back up one level (same as the back command).
Throughout the CLI, you can use the following keystrokes: • • • •
• • • •
The up arrow key or Control-P: to view and scroll through the previous history commands. The down arrow key or Control-N: to view and scroll through the next history commands. Control-U: to delete a line; clears the line and allows you to enter a new command. Control-C: to abort a line entry; aborts the command entry and puts you at a new prompt. Note that this command does not abort the current command level that is running, only the new entry. Control-D: logs you off the system. Control-S/Control-Q: software flow control XON/XOFF. The Tab key or Control-I: command completion; completes the command when you have entered part of a word (sh for show). The Backspace key or Control-H: backspace.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
32
Chapter 1 CLI basics
For a complete list of the keystrokes available in the CLI, see Appendix B, “Special terminal characters,” on page 145. Parameter values in the CLI are indicated by angle brackets < >. Parameters can be optional or required. Required parameters must be in the specified order, followed by optional parameters. Optional parameters are displayed in brackets [ ]. For a complete list of text conventions used to denote the CLI, see “Text conventions” on page 18. When you enter multiple CLI commands, you can terminate a command within a single line of input by using the semicolon (;) as the separator. A semicolon is treated like a carriage return by the CLI.
313194-A Rev 00
Chapter 1 CLI basics
33
help command In the Boot Monitor or Run-Time CLI, if you type help, followed by a specific command (help []), a description of the command is displayed with a list of subcommands or required and optional parameters. Figure 2 shows the result of typing help config at the prompt. Figure 2 help config command output Passport_8100:5# help config Configuration cli commands atm atm port configuration commands atmcard ATM card specific configuration commands bootconfig boot cli configuration commands cli cli configuration commands diag diag commands ethernet ethernet port configuration commands info show current level parameter settings and next level directories ip ip protocol configuration ipx ipx configuration commands log system log file commands mlt Multi-link trunking commands ntp ntp protocol configuration commands radius radius protocol configuration pos Packet over sonet configuration commands poscard Packet over sonet card specifc configuration commands rmon remote monitor commands setdate set calendar time stg spanning tree commands sys system configuration commands vlan vlan configuration commands web-server web server commands
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
34
Chapter 1 CLI basics
history commands The history commands let you list the commands you have entered during the current session; they also let you reenter commands. The history commands include the following options: history
Lists the commands that you have entered during the current CLI session.
!!
Reenters the most recently entered command.
!
Enters the command identified in the command history by the variable number.
!<str>
Runs the last command that matches the given string str.
!?<substr>
Runs the last command that matches the given substring
substr. ^<sstr>^
Enters the most recent command but substitutes a new string for a given string.
Figure 3 shows sample output for the history command in the boot monitor CLI. Figure 3 history command in the Boot Monitor CLI monitor# history 0 cli info 1 more boot.cfg 2 flags info 3 history
To reenter the flags info command, you could retype the command; then press [Enter]. Alternatively, you could enter!2.
313194-A Rev 00
Chapter 1 CLI basics
35
Remote host commands In the Boot Monitor and the Run-Time CLIs, the remote host commands use the same syntax. These commands allow you to log in to another device from the Passport 8000 Series switch. Remote host commands include the following options: rlogin
Allows login to a remote device. ipaddr is the IP address of the remote device.
rsh -l
Executes a shell command on a remote device. • ipaddr is the IP address of the remote device. • -l is the user login name, from 0 to 256 characters. • cmd is the command to execute on the remote host (string length 1 to 256).
telnet []
Allows you to set up a Telnet session to a remote device, for example, to the standby CPU. ipaddr is the IP address of the remote device.
Passport access levels and passwords The Passport 8000 Series switch uses a security scheme with five levels of management access. The five levels of security access are: • • •
•
Read-only access—You can view the device settings, but you cannot change any of the settings. Layer 1 read/write access—You can view most switch configuration and status information and can change physical port parameters. Layer 2 read/write access—You can view and edit device settings related to layer 2 (bridging) functionality. The layer 3 settings (such as OSPF, DHCP) are not accessible. You cannot change the security and password settings. Layer 3 read/write access—You can view and edit device settings related to layer 2 (bridging) and layer 3 (routing) functionality. You cannot change the security and password settings.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
36
Chapter 1 CLI basics
• •
Read/write access—You can view and edit most device settings. You cannot change the security and password settings. Read/write/all access—You have all the privileges of read-write access and the ability to change the security settings. The security settings include access passwords and the Web-based management user names and passwords.
Telnet and console passwords When you access a Passport 8000 Series switch for management, you are prompted for a login name and a password. The login and password defaults for console and Telnet sessions are shown in Table 2. Table 2 Default logins and passwords Access level
Default login
Default password
Read-only
ro
ro
Layer 1 read/write
l1
l1
Layer 2 read/write
l2
l2
Layer 3 read/write (Passport 8600 only)
I3
I3
Read/write
rw
rw
Read/write/all
rwa
rwa
You can change logins and passwords only if you log in with read/write/all privileges (that is, the rwa access level). When the CLI prompts for login and password, the access level is set corresponding to the login and password pair entered. The login command allows you to log in again with a different login access by entering the user name and password. The prompt remains at the same level as before you logged in again. The logout command allows you to log out and reenter at the top level prompt. If you connect to the switch through Telnet, the logout command terminates the Telnet session.
313194-A Rev 00
Chapter 1 CLI basics
37
CLI commands to change the console/Telnet password The following commands change the console/Telnet login name and the password for each different login access level: config config config config config config
cli cli cli cli cli cli
password password password password password password
ro <username> [<password>] rw <username> [<password>] l1 <username> [<password>] l2 <username> [<password>] l3 <username> [<password>] rwa <username> [<password>]
To display information about the access levels for login and password, type: show cli password
For each access level, the current login and password are displayed (Figure 4). Figure 4 show cli password command output Passport_8100:5# show cli password ACCESS LOGIN PASSWORD rwa rwa rwa rw rw rw l2 l2 l2 l1 l1 l1 ro ro ro
Switch file system The onboard flash memory in a Passport 8000 Series switch holds executable images and the switch configuration file; these files determine how the switch boots and operates. The switch can also download files from an ATA-compatible PCMCIA flash memory card installed in the PCMCIA slot of the switch management module. The switch configuration files are in ASCII format so that each line in the file is a valid system command.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
38
Chapter 1 CLI basics
File management commands In the Boot Monitor and the Run-Time CLIs, the file management commands are the same. When is listed in the command options, enter a file name in one of the following formats: [a.b.c.d:] /pcmcia/ /flash/
where: a.b.c.d: specifies the IP address of a remote TFTP server. pcmcia or flash specifies the device on the switch where the file is located.
filename specifies the name of the file, from 1 to 32 characters long.
313194-A Rev 00
Chapter 1 CLI basics
39
File management commands include: attribute
Modifies the MS-DOS file attributes. • file is the file name. • attributes is {+ | - |A|S|H|R} (string length 1 to 1024).
cd
Changes the current file system directory path. dir is a directory path name up to 1024 characters.
cp <srcfile> <destfile>
Copies a file from one device to another; can be used with a wildcard pattern. (See also the copy Command, page 42.) • srcfile specifies the source device and file name (1 to 1024 characters). • destfile specifies the destination device and file name (1 to 99 characters).
directory [] [-l]
Lists the files in MS-DOS format (Figure 5 on page 41). • dir is the destination device and file name, up to 1024 characters. • -l provides details. Note: Because of the way the file management system in the switch allocates space for files, the file size displayed by this command may not exactly match the space used in memory. In some situations where the displayed file sizes indicate additional free space, you may not be allowed to create additional files.
dos-chkdsk [repair]
Runs a check of the file system for inconsistencies. • dir is the directory path name, for example / flash. • repair repairs the errors found.
dos-format
Formats the directory on the flash or PCMCIA card with an MS-DOS file system. dir is the directory name.
edit
Edits a file’s contents. (See “edit command” on page 43 for more information.)
format-flash
Formats the switch flash with an MS-DOS file system.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
40
Chapter 1 CLI basics grep <string>
Allows you to display all lines in a file that have one or more matching strings within the file. • string is the character string to be matched, from 1 to 1024 characters. • file is a file name, in the form /pcmcia/ or /flash/
ls [] [-r]
Lists the files in UNIX format. • dir is the destination device and file name. • -r recurses into directories.
mkdir
Creates a directory. • dir s the directory name.
more [type]
Displays the contents of a file (Figure 6). • file is the device and file name. • type is the file type, either ASCII or Binary.
mv
Moves or renames a file; can be used with a wildcard pattern. • old is the old file name. • new is the new file name. Note: You cannot use the mv command to move a file between two devices, for example, between the flash memory and a PCMCIA card. Use the cp command (page 39) or the copy command (page 42) instead.
remove
Deletes a file from a boot device. file is the destination device and file name.
rename
Moves or renames the file or directory; can be used with a wildcard pattern. • old is the old device and file name. • new is the new device and file name.
rm
Removes a file or directory and can be used with a wildcard pattern. file is the file name.
source [stop] [debug] [syntax]
Merges a configuration file into the running configuration without having to reboot the switch. • file is the device and file name of the new configuration file. • stop stops the script when it finds an error in the file. • debug provides a debug script output. • syntax verifies the script’s syntax.
313194-A Rev 00
Chapter 1 CLI basics
41
Warning: When you use a wildcard to remove multiple files, specify the directory; otherwise, all files in the current directory will be removed. For example, to remove all .cfg files, type remove ./*.cfg. Figure 5 shows output from the directory command. Figure 5 directory command output Passport_8100:5# directory size date time -----------------641 SEP-05-2000 16:05:14 4796 SEP-05-2000 16:05:20 631232 JAN-03-1998 08:01:56 236832 JAN-03-1998 08:01:58 666966 SEP-05-2000 16:04:12 2773586 SEP-05-2000 16:04:42 243620 SEP-05-2000 16:19:42 2752602 FEB-19-1998 07:48:08 244452 SEP-05-2000 16:20:32 total: 15793152 used: 7605248 free:
name -------/flash/boot.cfg /flash/config.cfg /flash/a80b1000.img /flash/a81e2000.dld /flash/p80b10025.gz /flash/p80a3100_b29.img /flash/p81e3100_b25.dld /flash/p86a_b25.gz /flash/a81eREL3100.dld 8187904 bytes
Figure 6 shows an example of the more command.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
42
Chapter 1 CLI basics Figure 6 more command output Passport_8100:5# more boot.cfg # # TUE SEP 05 16:05:15 2000 UTC # box type : 8k boot configuration file # flags 8100-mode true flags ftpd true flags telnetd true tz dst-end 00000000 tz dst-start 05000000 choice primary image-file "/flash/p80a3100_b29.img" choice secondary image-file "/flash/ac86a300.img" net mgmt bootp false net mgmt route net 0.0.0.0 10.140.22.1 net mgmt tftp 192.0.0.2 net mgmt ip 10.140.22.13/255.255.255.0 cpu-slot 5 net cpu2cpu bootp false net cpu2cpu fullduplex false net pccard autonegotiate false net pccard bootp false net pccard enable false net pccard ip 0.0.0.1/23.1.1.0 cpu-slot 6 host tftp-timeout 1431585536 host user ""
copy command The copy command copies a file from one device to another. The syntax for the copy command is: copy <srcfile> <destfile>
where: srcfile is the source device and file name. destfile is the destination device and file name.
313194-A Rev 00
Chapter 1 CLI basics
43
You can extend the copy command to copy files from sources other than the flash or PCMCIA card by using a keyword before the srcfile or destfile variable. The command lines below show the correct placement for the keyword. copy [keyword]: /flash/file /flash:newfile
or copy /flash/file [keyword]:/flash/newfile
You can use any of the following types of keyword: • • •
An IP address as a keyword specifies a TFTP server as the source of the copied file. peer copies the configuration file from one CPU to another CPU. (For a description of the peer command, see page 75.) tftp uses the TFTP server to copy files from the TFTP server.
For example, to copy a file from UNIX host 10.140.2.124 to flash memory, you would use the following command: copy 10.140.2.124:/home/jsmith/file.cfg /flash/file.cfg
edit command The edit command allows you to use a simple editor (similar to the vi editor in UNIX) to change the contents of files. The syntax for the edit command is: edit
After you type the command, the file contents are displayed. Following the file output, each line of text is repeated to allow you to edit that line (Figure 7).
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
44
Chapter 1 CLI basics Figure 7 edit command partial output Passport_8100:5# edit config.cfg "config.cfg" 226 lines, 4796 characters 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 1> #
# # # # # # # # # # # # # # #
TUE SEP 05 16:05:20 2000 UTC box type : Passport-8010 software version : REL3.1.0.0_B025 monitor version : 1.0.0.2/4
Asic Info : SlotNum|Name Slot Slot Slot Slot Slot
1 2 3 4 5
8108GB 8132TX 8116FX 8148TX 8190SM
|CardType|MdaType |Parts Description 30325108 30211120 30311110 30210130 200e0100
00000000 00000000 00000000 00000000 00000000 CPU: CPLD=14
If the line does not require editing, press [Enter] to move to the next line. To discontinue any of the edit commands, press [ESC]. To exit edit mode, use one of the following commands: • •
:q to exit without making any changes. ZZ or :w to quit and save the file.
Warning: Do not edit the boot.cfg file manually, because the switch reads this file during the boot process. Errors generated while editing the file could render the switch inoperable. For a complete list of edit commands, refer to Appendix A, “Edit commands,” on page 141.
313194-A Rev 00
45
Chapter 2 Boot Monitor command line interface The Boot Monitor CLI commands enable you to configure boot options and manage files. The Boot Monitor CLI commands enable you to perform the following tasks: • • • • • • •
Configure and display boot options, including the configuration file Manage the flash file system Configure and change IP parameters for system devices Manage and change the configuration files Change boot flags Reset or reboot the system using the default configuration settings Reset or reboot the system from a different boot source
This chapter describes the Boot Monitor CLI and covers the following topics: • • •
“Accessing the Boot Monitor CLI,” next “Boot Monitor command hierarchy” on page 47 “Using the CLI to configure L2 Redundancy” on page 48
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
46
Chapter 2 Boot Monitor command line interface
Accessing the Boot Monitor CLI To access the Boot Monitor CLI: Do one of the following: •
Interrupt the boot sequence by pressing [Enter] at the following prompt: Press Enter to stop autoboot.
You must interrupt the boot sequence within 4 seconds of the time it starts. •
From the Run-Time CLI, enter the following commands; then reboot: config bootconfig flags autoboot false save bootconfig
Note: You must be directly connected to the switch to initiate a Boot Monitor session. If you are using the Run-Time CLI from a Telnet connection, you cannot access the Boot Monitor CLI, because when you reboot the switch, it breaks the Telnet connection. If the Boot Monitor CLI is already active in the switch, you can telnet to the Boot Monitor CLI. Boot Monitor CLI commands are available in the Run-Time CLI as config bootconfig commands. For more information, see “bootconfig commands” on page 90). When you enter the Boot Monitor CLI, the following prompt is displayed: monitor#
Note: To change the Boot Monitor settings while in the Run-Time CLI, type config bootconfig before the command. For example, the flags tftpd command in the Boot Monitor CLI is config bootconfig flags tftpd in the Run-Time CLI. For more information, see “config bootconfig flags commands” on page 92.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
47
Boot Monitor command hierarchy You can display a list of the Boot Monitor commands by entering help commands at the monitor prompt. For more information about the help command, refer to “help command” on page 33. Figure 8 illustrates a partial Boot Monitor CLI command tree. Figure 8 Partial Boot Monitor CLI command tree attribute boot choice cli
config-file image-file info
copy delay directory dos-chkdsk dos-format edit exit flags help host logout ls more multicast net quit reset remove rlogin save show sio source telnet tz
ftp-debug info password tftp-debug tftp-hash tftp-remit tftp-timeout user bootp enable fullduplex info ip restart route net speed tftp
Passport-8100-mode autoboot daylight-saving-time debugmode debug-config egressmirror factorydefaults ftpd info logging machine-check reboot rlogind telnetd tftpd trace-logging verify-config wdt
choice cli config flags host if inetstats info master net route sio tz
baud 8databits enable info mode mtu my-ip peer-ip pppfile restart slip-compression slip-rx-compression
dst-end dst-name dst-offset dst-start info offset-from-utc name 9549EA
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
48
Chapter 2 Boot Monitor command line interface
Using the CLI to configure L2 Redundancy The ha-cpu option has been added to the bootconfig flags command to enable or disable the L2 Redundancy feature. After enabling or disabling the feature the bootconfig is saved onto both master and standby CPU and the standby CPU is reset automatically. However, the user needs to manually reset the master CPU. This feature can only be set using the CLI, it can not be set with Device Manager. Note: Once the L2 Redundancy feature is enabled the user will lose all Layer3 configuration and the switch will operate in Layer2 mode only. The flags commands allow you to enable or disable the flags for configuration settings. The flags commands allow you to set system flags to true or false. When you change the configuration parameters using the flags commands, you must save the changes to the configuration file and reboot the switch before the changes take effect. For example, to save the changes, you might use the following commands: save bootconfig (run time) or save (monitor)
The flags commands include the following options: flags
followed by: info
Displays information about the current flag settings.
8100-mode <true|false>
Enables the [Product Name (long)] to act as a switch only. In a switch with Passport 8100 modules, this flag defaults to true. For Passport 8600 modules, the default is false.
autoboot <true|false>
Controls whether the switch automatically runs the run-time image after being reset or stops at the monitor prompt. Setting autoboot to false is useful for some debugging tasks. The default is true.
daylight-saving- Enables or disables daylight saving time for the switch. The time <true|false> default is false.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
49
flags
followed by: debugmode <true|false>
Controls whether the switch stops in debug mode following a fatal error. Debug mode provides information equivalent to the trace commands. • true means the switch is not rebooted following a fatal error. • false means the switch is automatically rebooted following a fatal error. The default is false.
debug-config <true|false>
Enables or disables run-time debugging of the configuration file. The default is false.
egress-mirror <true|false>
Enables the ability to mirror egress traffic. The default is true.
factorydefaults <true|false>
Specifies whether or not the switch boots with the factory defaults. The default is true.
ftpd <true|false> Enables or disables FTP server on the switch. The default is false. To enable FTP, make sure the flags tftpd command is set to false. See also the host password command on page 58.
ha-cpu <true|false>
Enables or disables L2 Redundancy on the switch. The default is false. To enable L2 Redundancy, make sure the flags ha-cpu command is set to true. When this option is enabled the savetostandby option is automatically enabled.
logging <true|false>
Enables or disables system logging to a PCMCIA file. The default is true.
reboot <true|false>
Enables or disables automatic reboot on a fatal error. The default is true. This command is equivalent to the debugmode command.
rlogind <true|false>
Enables or disables the rlogin/rsh server. The default is false.
savetostandby
Allows you to save a configuration to a standby CPU if one is available. • The default is false. • This flag is enabled by default when the ha-cpu flag is enabled. • You must manually disable the flag on both CPUs.
<true|false>
telnetd <true|false>
Enables or disables the Telnet server. The default is false.
tftpd <true|false>
Enables or disables TFTP. The default is false.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
50
Chapter 2 Boot Monitor command line interface flags
followed by: trace-logging <true|false>
Enables or disables the creation of trace logs. The default is false.
verify-config <true|false>
Enables syntax checking of the configuration file and does not execute the file if an error is found. The factory default configuration file is loaded if a syntax error is found. The default is true.
wdt <true|false>
Enables or disables the hardware watchdog timer, which monitors a hardware circuit. The watchdog timer reboots the switch based on software errors. The default for this command is true.
Figure 9 shows output from the show bootconfig flags command. Figure 9 show bootconfig flags command output Passport-8010:5# show bootconfig flags flags 8100-mode false flags autoboot true flags daylight-saving-time false flags debugmode false flags debug-config false flags egress-mirror true flags factorydefaults false flags ftpd true flags ha-cpu false flags logging true flags reboot true flags rlogind false flags savetostandby false flags telnetd true flags tftpd true flags trace-logging false flags verify-config true flags wdt true
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
51
Configuring L2 Redundancy To set L2 Redundancy in monitor mode: 1
Using the flags command, set the ha-cpu option to true on the master and standby CPUs.
2
Save the new configuration on both CPUs.
3
Re-boot both CPUs.
Boot Monitor commands All the following commands, except choice, have equivalent commands in the Run-Time CLI. File management and remote host commands as well as the history and help commands are described in Chapter 1, “CLI basics.”
boot command The boot command allows you to modify and display boot parameters and to reset or reboot the system. Note: Entering the boot command with no arguments causes the switch to boot using the current boot choices defined by the choice command (next). The syntax for the boot command is: boot [] [config ]
where: •
•
file is the software image device and file name in the format [a.b.c.d:] | /pcmcia/ | /flash/. The file name, including the directory structure, can be up to 1024 characters. config is the software configuration device and file name in the format [a.b.c.d:] | /pcmcia/ | /flash/. The file name, including the directory structure, can be up to 1024 characters.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
52
Chapter 2 Boot Monitor command line interface
To boot the switch using the BootStrap Protocol (BootP), use the following command: boot 0.0.0.0
choice commands The choice commands allow you to display or change the order in which the boot sources (flash and PCMCIA card) are accessed. The default order is to access the PCMCIA card first, and then the onboard flash. The required parameter boot-choice is the order in which the specified boot devices are accessed when you reboot the switch. The options for boot-choice are primary, secondary, or tertiary. The choice commands include the following options: choice
followed by: info
Displays the current boot choices and associated files (Figure 10).
config-file
Identifies the boot configuration file. filename is the device and file name, up to 256 characters including the path.
image-file
Identifies the image file. filename is the device and file name, up to 256 characters including the path.
For example, to specify the configuration file in flash memory as the primary boot source, you would use the following command: choice primary config-file /flash/config.cfg
For more information about file name formats, refer to “File management commands” on page 38. Figure 10 shows the output from the choice primary info command.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
53
Figure 10 choice primary info command output monitor# choice primary info choice primary config-file "/flash/config.cfg" choice primary image-file "11.22.33.44:/rel3.1/current/main/ acc.gz"
In this example, the switch is set to use the onboard flash as the primary source for the configuration file and a TFTP server as the primary source for the image file.
cli commands The Boot Monitor cli commands are similar to the Run-Time cli commands described in “config cli commands” on page 103. The Boot Monitor cli commands include the following options: cli
followed by info
Displays information about the current settings of CLI display options.
more <true|false>
Enables scrolling of display output. The default is true.
prompt
Sets the root-level prompt. value is a string (1 to 1024 characters).
rlogin-sessions
Changes the number of allowed inbound rlogin/rsh sessions. The default is 1. value is the number of sessions (0 to 8).
screenlines Sets the number of lines displayed on the terminal screen. The default is 23. value is the number of lines (8 to 64).
telnet-sessions
Changes the number of allowed inbound Telnet sessions. The default is 1. value is the number of sessions (0 to 8).
timeout <seconds>
Sets the amount of time elapsed before timeout, when the switch logs out. The default is 0. seconds is the timeout period in seconds (30 to 65536).
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
54
Chapter 2 Boot Monitor command line interface
Figure 11 shows the output from the cli info command; this example lists the defaults for the cli info command. Figure 11 cli info command output monitor# cli info cli more true cli prompt "monitor" cli rlogin-sessions 1 cli screenlines 23 cli telnet-sessions 1 cli timeout 0
date command The date command allows you to view the current date settings for the switch (Figure 12). To set the date, use the setdate command on page 63. Figure 12 date command output monitor# date local time: TUE NOV 02 09:32:26 1999 PST hardware time: TUE NOV 02 17:32:26 1999 UTC
delay command The delay command enables you to set the number of seconds a standby CPU should wait (delay) before trying to become the master CPU (refer to the master command on page 59). This command applies only during a cold start and does not apply to a failover start. The default is 2 seconds delay. The syntax is: delay <seconds>
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
55
flags commands The flags commands allow you to enable or disable the flags for configuration settings. The flags commands allow you to set system flags to true or false. When you change the configuration parameters using the flags commands, you must save the changes to the configuration file and reboot the switch before the changes take effect. For example, to save the changes, you might use the following command: save file /flash/config.cfg
The flags commands include the following options: flags
followed by: info
Displays information about the current flag settings.
8100-mode <true|false>
Enables the Passport 8000 Series switch to act as a switch only. In a switch with Passport 8100 modules, this flag defaults to true. For Passport 8600 modules, the default is false.
autoboot <true|false>
Controls whether the switch automatically runs the run-time image after being reset or stops at the monitor prompt. Setting autoboot to false is useful for some debugging tasks. The default is true.
daylight-saving- Enables or disables daylight saving time for the switch. The time <true|false> default is false. debugmode <true|false>
Controls whether the switch stops in debug mode following a fatal error. Debug mode provides information equivalent to the trace commands. • true means the switch is not rebooted following a fatal error. • false means the switch is automatically rebooted following a fatal error. The default is false.
debug-config <true|false>
Enables or disables run-time debugging of the configuration file. The default is false.
egress-mirror <true|false>
Enables the ability to mirror egress traffic. The default is true.
factorydefaults <true|false>
Specifies whether or not the switch boots with the factory defaults. The default is true.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
56
Chapter 2 Boot Monitor command line interface flags
followed by: ftpd <true|false> Enables or disables FTP server on the switch. The default is false. To enable FTP, make sure the flags tftpd command is set to false. See also the host password command on page 58.
logging <true|false>
Enables or disables system logging to a PCMCIA file. The default is true.
reboot <true|false>
Enables or disables automatic reboot on a fatal error. The default is true. This command is equivalent to the debugmode command.
rlogind <true|false>
Enables or disables the rlogin/rsh server. The default is false.
telnetd <true|false>
Enables or disables the Telnet server. The default is false.
tftpd <true|false>
Enables or disables TFTP. The default is false.
trace-logging <true|false>
Enables or disables the creation of trace logs. The default is false.
verify-config <true|false>
Enables syntax checking of the configuration file and does not execute the file if an error is found. The factory default configuration file is loaded if a syntax error is found. The default is true.
wdt <true|false>
Enables or disables the hardware watchdog timer, which monitors a hardware circuit. The watchdog timer reboots the switch based on software errors. The default for this command is true.
Figure 13 shows output from the flags info command.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
57
Figure 13 flags info command output monitor# flags info flags Passport-8100-mode false flags autoboot true flags daylight-saving-time false flags debugmode false flags debug-config false flags egress-mirror true flags factorydefaults true flags ftpd false flags ha-cpu false flags logging true flags reboot true flags rlogind false flags savetostandby false flags telnetd false flags tftpd false flags trace-logging false flags verify-config true flags wdt true
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
58
Chapter 2 Boot Monitor command line interface
host commands The host commands allow you to define conditions for remote host login. The host commands include the following options: host
followed by: info
Displays the current remote host login settings (Figure 14).
ftp-debug <true|false>
Enables or disables debug mode on FTP. If you enable debug mode, debug messages are displayed on the management console screen. The default is false.
password
Sets the password to enable FTP transfers. value is the password, up to 16 characters long. When this password is set, only FTP is used for remote host login. Note: This password must match the password set for the FTP server, or the FTP operation fails.
tftp-debug <true|false>
Enables or disables debug mode on TFTP/TFTPD. If you enable debug mode, debug messages are displayed on the management console screen. The default is false.
tftp-hash <true|false>
Enables or disables the TFTP hash bucket display. The default is false.
tftp-rexmit <seconds>
Sets the TFTP retransmission timeout. The default value is 2 seconds. seconds is the number of seconds (1 to 2147483647).
tftp-timeout <seconds>
Sets the TFTP timeout. The default value is 10 seconds. seconds is the number of seconds (1 to 2147483647).
user
Sets the remote user login. value is the user login name, up to 16 characters long.
Figure 14 shows output for the host info command.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
59
Figure 14 host info command output monitor# host info host password "" host tftp-hash false host tftp-rexmit 2 host tftp-timeout 10 host user "target"
master command The master command allows you to indicate which CPU should become master when the switch is turned on. The master CPU performs a loopback test to test the switch fabric. The default master is set for slot 5. The syntax is: master
where cpu-slot can be 5 or 6. To display the current setting for the master CPU, use the show master command.
net commands The net commands configure the CPU network port devices. The three network ports are the management port (mgmt), the CPU port (cpu2cpu), and the PCMCIA card (pccard), if it is acting as a network port. The required parameter cpu-net-port can be mgmt, cpu2cpu, or pccard. Note: Use the net mgmt ip command to assign an IP address to the switch.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
60
Chapter 2 Boot Monitor command line interface
The net commands include the following options: net
followed by: info
Displays information about the current configuration of the specified port (Figure 15).
autonegotiate <true|false>
Enables or disables autonegotiation for the port. The default is false.
bootp <true|false>
Enables or disables the Bootstrap Protocol (BootP) for the port. The default is true.
enable <true|false> Enables or disables the specified port. The default is true. fullduplex <true|false>
Enables or disables full-duplex mode on the specified port. The default is true.
ip [cpu-slot-id ]
Assigns an IP address/mask for the management port, CPU, or PCMCIA card. cpu-slot-id allows you to specify the CPU module in either slot 5 pr slot 6. If you do not specify a slot, the IP address is assigned to the port in the currently active CPU.
restart
Restarts the port.
route Sets a route for the port. • net|add|del adds a route (add or net) or deletes a route (del). • netaddr is the IP address of the network to be reached. •
gateway is the gateway IP address.
speed <10|100>
Sets the connection speed for ports to 10 Mb/s or 100 Mb/s. The default is 10.
tftp
Specifies a TFTP server for the port. ipaddr is the IP address of the TFTP server.
Figure 15 shows output for the net mgmt info command, that is, the settings for the management port.
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
61
Figure 15 net mgmt info command output monitor# net mgmt info net mgmt autonegotiate true net mgmt bootp true net mgmt enable true net mgmt fullduplex false net mgmt ip 10.10.160.135/255.255.255.0 net mgmt route net 0.0.0.0 0.0.0.0 net mgmt speed 10 net mgmt tftp 10.10.160.151 current status: link: true speed: 10 duplex: half
ping command The Boot Monitor ping command allows you to test the connection between the Passport 8000 Series switch and another network device. The syntax for the Boot Monitor ping command is: ping [<size>] [] [-s] [-I ] [-t ] [-d]
where: • • • • • • •
ipaddr is the IP address of the other network device. size is the size of ping data sent in bytes (16 to 4076). count is the number of times to ping (1 to 9999). -s sets the continuous ping at the interval rate defined by the [-I] parameter. -I is the interval between transmissions in seconds (1 to 60). -t is the no-answer timeout value in seconds (1 to 120). -d sets ping debug mode.
To specify a count for the ping operation, you must also specify a size. For example: ping 10.5.5.5 1600 5
Figure 16 shows output from the ping command.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
62
Chapter 2 Boot Monitor command line interface Figure 16 ping command output monitor# ping 10.10.81.18 10.10.81.18 is alive
Quit commands The quit, logout, and exit commands end your Boot Monitor CLI session and return you to the Run-Time CLI.
reset command The reset command reboots the switch and does not require parameters. A confirmation message is displayed before the switch is reset.
save command The save command saves the boot configuration to a file. This command also allows you to save a log or trace file. The syntax for the save command is: save <savetype> [file ] [verbose] [standby ] [backup ]
where: •
savetype specifies what to save. Possible values for this parameter are config, bootconfig, log, and trace.
•
file is a file name in one of the following formats: — — —
• •
313194-A Rev 00
[a.b.c.d]: /pcmcia/ /flash/
verbose saves default and current configuration. If you omit this parameter, only parameters you have changed are saved. standby saves the specified file name to the standby CPU.
Chapter 2 Boot Monitor command line interface
•
63
backup saves the specified file name and identifies the file as a
backup file. For example, to save a configuration file as a backup file, you might use the following command: save config file ralph.cfg backup 2
Note: To save a file to the standby CPU, you must enable TFTP on the standby CPU. To enable TFTP, enter flags tftpd true in the Boot Monitor CLI or config bootconfig flags tftpd true in the Run-Time CLI.
setdate command The setdate command allows you to set the calendar time in the form of month, day, year, hour, minute, and second. You must be logged in as rwa to use this command. The syntax of the setdate command is: setdate <MMddyyyyhhmmss>
For example: setdate 09182000103000
show commands The show commands display the current Boot Monitor configuration. The show commands are: show
followed by: info
Displays the current settings for the boot monitor.
choice
Displays the current boot configuration choices.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
64
Chapter 2 Boot Monitor command line interface show
followed by: cli
Displays the current cli configuration.
config [verbose]
Displays the current boot configuration. verbose includes all possible information. If you omit verbose, only the values that have been changed from their default settings are displayed.
flags
Displays the current flag settings.
host
Displays the current host configuration.
master
Displays the current CPU slot set as master and the settings for the delay and multicast commands (Figure 17).
net
Displays the current configuration of the CPU network ports.
sio
Displays the current configuration of the CPU serial ports.
tz
Displays the current configuration of the switch time zone.
Figure 17 show master command output monitor# show master delay 2 master 5 multicast 0
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
65
sio commands The sio commands allow you to configure the CPU serial port devices. The required parameter cpu-sio-port can be console, modem, or pccard. The sio commands include the following options: sio
followed by: info
Displays information about the specified port (Figure 18).
baud
Sets the baud rate for the port. The default is 9600.
8databits <true|false>
Specifies either 8 (true) or 7 (false) data bits per byte for software to interpret. The default is false.
enable <true|false>
Enables or disables the port. The default is true.
mode
Sets the communication mode for the serial port. The default is ascii. If you are configuring the Modem port, you can set the port to use the same SLIP or PPP communication mode as the modem. For instructions to connect a modem to the Modem port, refer to Appendix C, “Connecting a modem,” on page 147.
mtu
Sets the size of the maximum transmission unit for a point-to-point link (0 to 2048). The default is 0.
my-ip
Sets the near-end IP address on the point-to-point link. The default is 0.0.0.0.
peer-ip
Sets the peer IP address on the point-to-point link. The default is 0.0.0.0.
pppfile
Identifies which file to use for PPP initialization parameters.
restart
Shuts down and reinitializes the port.
slip-compression <true|false>
Enables or disables TCP/IP header compression. The default is false.
slip-rx-compression <true|false>
Enables or disables TCP/IP header compression on the receive packet. The default is false.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
66
Chapter 2 Boot Monitor command line interface
In PPP mode, you can configure additional parameters. Those configuration options are listed in Appendix D, “PPP configuration file options,” on page 151. Warning: Nortel Networks does not recommend setting the Console port mode to SLIP or PPP, because the log, trace, and error messages may be displayed on this port and will interfere with the SLIP or PPP operation. Figure 18 shows output from the sio console info command. Figure 18 sio console info command output monitor# sio console info sio console baud 9600 sio console 8databits false sio console enable true sio console mode ascii sio console mtu 0 sio console my-ip 0.0.0.0 sio console peer-ip 0.0.0.0 sio console pppfile "" sio console slip-compression false sio console slip-rx-compression false current status: active: true mode: ascii baud: 9600 options: 7 bit data 1 stop no parity cts dsr ri
313194-A Rev 00
Chapter 2 Boot Monitor command line interface
67
tz commands The time zone (tz) commands set the switch’s relation to time zones. The tz commands include the following options: tz
followed by: info
Displays time zone information (Figure 19).
dst-end <Mm.n.d/hhmm| MMddhhmm>
Sets the ending date of daylight saving time. You can specify the time in one of two ways: • Specify an hour on the nth occurrence of a weekday in a month. For example, M10.5.0/0200 means the 5th occurrence of Sunday in the 10th month (October) at 2:00 a.m. • Specify a month, day, hour, and minute. For example, 10310200 means October 31 at 2:00 a.m.
dst-name Sets an abbreviated name for the local daylight saving time zone.
dstname is the name (for example, “pdt” is Pacific Daylight Time).
dst-offset <minutes>
Sets the daylight saving adjustment in minutes. The default is 60.
dst-start <Mm.n.d/hhmm| MMddhhmm>
Sets the starting date of daylight saving time. The format is the same as for setting the ending date.
offset-from-utc <minutes>
Sets the time zone offset, in minutes to subtract from Universal Coordinated Time (UTC), where positive numbers mean west of Greenwich and negative numbers mean east of Greenwich.
name
Sets an abbreviated name for the local time zone name. tz is the name (for example “pst” is Pacific Standard Time).
Figure 19 shows output from the tz info command.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
68
Chapter 2 Boot Monitor command line interface Figure 19 tz info command output monitor# tz info tz dst-end M10.5.0/0200 tz dst-name "PDT" tz dst-offset 60 tz dst-start M4.1.0/0200 tz offset-from-utc 480 tz name "PST" TIMEZONE=PST:PDT:480:M4.1.0/0200:M10.5.0/0200:60
313194-A Rev 00
69
Chapter 3 Run-Time command line interface In the Passport 8000 Series switch, the Run-Time CLI commands enable you to display and modify the switch configuration while the switch is operating. This chapter includes information about the Run-Time CLI in the switch, including the following sections: • • • • •
“General usage,” next “Run-time command hierarchy” on page 71 “General commands” on page 72 “test and show test commands” on page 79 “trace and show trace commands” on page 82
This guide describes the commands used for basic management of the switch. For a complete list of run-time CLI commands in alphabetical order, see Appendix F, “CLI command list,” on page 161. For a complete list of other supporting documentation, see “Related publications” on page 21.
General usage When the Passport 8000 Series switch is up and running, the Run-Time CLI commands enable you to perform most of the configuration and management functions necessary to manage the switch. These functions include: • • • •
Reset or reboot the Passport 8000 Series switch. Add, delete, and display address resolution protocol (ARP) table entries. Ping another network device. Display and set configuration parameters for the entire switch and for individual ports.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
70
Chapter 3 Run-Time command line interface
• • • •
313194-A Rev 00
Configure and display spanning tree group (STG) parameters and enable or disable Spanning Tree Protocol on an STG. Configure and display MultiLink Trunking (MLT) parameters. Test the switching fabric and perform internal and external loopback tests on individual ports. Create and manage port-based VLANs or policy-based VLANs.
Chapter 3 Run-Time command line interface
71
Run-time command hierarchy Figure 20 shows the main command groups in the Run-Time CLI hierarchy.Partial run-time CLI tree. Figure 20 Command groups in the Run-Time CLI hierarchy banner monitor motd password
bootconfig cli diag ethernet ip ipx log mlt qos radius rmon setdate stg sys vlan web-server
boot clear config date grep help history monitor
rip sap set static-route access-policy link-flap-detect set syslog
ping
create delete fdb ip ipx
mlt ports
quit reset rlogin save show
artable fabric loopback stop
telnet test trace traceroute
clear level off screen info
bootconfig cli diag ip ipx log mlt ports qos radius rmon stg sys tech test trace vlan-info web-server
arp dhcp-relay dvmrp igmp ospf proxy rip traffic-filter vrrp
ip stg unknown-mac-discard arp dhcp-relay dvmrp forwarding l3-igmp mroute ospf policy rip static-route route route discovery traffic-filter udpfwd
error info stats egressmap ingressmap queue
addrlist netlist ospf accept ospf announce rip accept rip announce
create filter global-set set traffic-profile interface portfwdlist protocol
arp dhcp-relay dvmrp forwarding igmp mroute ospf policy rip traffic-filter udpfwd vrrp
arp-response dhcp-relay dvmrp igmp ospf proxy rip vrrp
8778EB
The remainder of this chapter covers the general CLI commands. Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
72
Chapter 3 Run-Time command line interface
General commands The following general commands are available in the Run-Time CLI: • • •
boot—reboots the system (next). clear—clears statistics or flushes entries from a table (page 73). help—lists the commands in the CLI or displays syntax information for a
specific command (page 74). • • • • • •
login/exit/quit/logout—ends the CLI session or allows you to change the access level (page 75). peer—enables you to telnet or rlogin to the peer CPU (page 75). ping—tests the network connectivity between the switch and another networking device (page 75). reset—resets the [Product Name (long)] (page 77). save—saves the running configuration (page 77). traceroute—allows you to trace the route to a remote host (page 77).
boot command The boot command reboots the Passport 8000 Series switch. The command options let you specify the boot source (flash, PCMCIA card, or TFTP server) and file name. If you do not specify a device and file, the Run-Time CLI uses the software and configuration files on the primary boot device that is defined by the Boot Monitor choice command. The syntax for the boot command is: boot [] [config ] [-y]
where: •
•
313194-A Rev 00
file is the software image device and file name in the format [a.b.c.d:] | /pcmcia/ | /flash/. The file name, including the directory structure, can be up to 1024 characters. config is the software configuration device and file name in the format [a.b.c.d:] | /pcmcia/ | /flash/. The file name, including the directory structure, can be up to 1024 characters.
Chapter 3 Run-Time command line interface
•
73
-y suppresses the confirmation message before the switch reboots. If you omit this parameter, you are asked to confirm the action before the switch reboots.
clear commands The clear commands clear statistics from counters, flush entries from a table, or end a Telnet session. These commands use the parameters port (the port number) and vid (the VLAN ID). The clear commands include the following options: clear
followed by: ip arp ports <port>
Clears ARP port entries from the ARP table.
ip arp vlan
Clears ARP VLAN entries from the ARP table.
ip route ports <port>
Clears route entries associated with the specified port.
ip route vlan
Clears route entries associated with the specified VLAN.
ports stats [<ports>]
Clears port statistics from the switch counters.
telnet <session id>
Ends the specified Telnet session. session id is a number between 0 and 7.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
74
Chapter 3 Run-Time command line interface
help command The help command (Figure 21) displays an explanation of the available types of online Help. Figure 21 help command output Passport-8610# help Eight forms of help are available in the system. 1. Typing "help" describes help features 2. Typing "help commands" provides a list of commands you can enter from the current prompt. 3. Typing "help ttychars" provides a list of special terminal editing characters. 4. Typing "syntax" displays a path list of commands and parameters available from the current prompt or forward. 5. Typing "help " or " help" describes a specific command or provides a list of sub-commands you can enter from with-in . 6. Typing "?" displays the sub and current context commands available from the current prompt. 7. Typing " ?" displays the sub and current context commands available from the current prompt if the command is a intermediate node in the command tree structure, otherwise, displays parameter help for the command. 8. Typing "" displays a list of commands that will match the characters entered.
To see a list of all commands available at the current login access level, type help commands at the prompt.
313194-A Rev 00
Chapter 3 Run-Time command line interface
75
login, exit, logout, and quit commands The exit, quit, and logout commands are used to close the CLI session or to change the access level. The login command logs you in to the system.
peer command The peer command enables you to use Telnet or rlogin to access the standby CPU. You can use this command to make changes to the standby CPU without reconnecting to the console port on that module. The command syntax is: peer
where operation is either Telnet or rlogin. Note: You must set an rlogin access policy on the standby CPU before you can use the peer command to access it from the master CPU using rlogin. To set an access policy on the standby CPU, connect a terminal to the Console port on the standby CPU. For more information about the access policy commands, refer to “Access policy commands” on page 111.
ping and pingipx commands The Run-Time CLI ping command tests the network connection to another network device. The command sends an Internet Control Message Protocol (ICMP) packet from the switch to the target device. If the device receives the packet, it sends a ping reply. When the switch receives the reply, it displays a message indicating that the specified IP address is alive. If no reply is received, a message indicates that the address is not responding.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
76
Chapter 3 Run-Time command line interface
The syntax for the ping command is: ping [datasize ] [count ] [-s] [-I ] [-t ] [-d]
where: • • • • • • •
ipaddr is the IP address of the other network device. datasize is the size of the ping data (16 to 4076 bytes). count is the number of times to ping (1 to 9999). The default is 1. -s is a continuous ping at the interval rate defined by [-I ]. -I is the interval between transmissions in seconds (1 to 60). -t is the no-answer timeout value in seconds (1 to 120). -d sets ping debug mode. In debug mode, the ping reply includes additional information about the device being pinged.
Figure 22 shows an example of the ping command output. Figure 22 ping command output Passport-8610# ping 10.177.221.126 10.177.221.126 is alive
The pingipx command tests an IPX network connection. The command syntax is: pingipx [] [-s] [-q] [-t ]
where: • • • • •
313194-A Rev 00
ipxhost is the IP address of the network node you are pinging. count is the number of times to ping the host (1 to 9999). -s is a continuous ping. -q is quiet output (same as nonverbose mode). -t is the no-answer timeout value in seconds (1 to 120).
Chapter 3 Run-Time command line interface
77
reset command The reset command allows you to reset the switch. When you reset the switch, the most recently saved configuration file is used to reload the system parameters.
save command The save command saves the running configuration to a file. The syntax for the save command is: save <savetype> [file ] [verbose] [standby ] [backup ]
where: •
savetype specifies the type of file to save; options are config, bootconfig, log, and trace.
• •
file is the file name.
• •
verbose saves default and current configuration. If you omit the [verbose]
parameter, only the current configuration is saved. standby saves the specified file name to the standby CPU. backup saves the specified file name and identifies the file as a backup file.
traceroute command The traceroute command allows you to trace the route to a remote host. This command is a valuable tool for troubleshooting because it shows all the routes that are used or indicates that the remote network is not reachable. The command syntax is: traceroute [] [-m ] [-p ] [-q ] [-w ] [-v]
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
78
Chapter 3 Run-Time command line interface
where: • • • • • • •
ipaddr is the IP address of the remote host. datasize is the size of the probe packet (1 to 1464). -m is maximum time-to-live (TTL) value (1 to 255). -p is the base UDP port number (0 to 4294967295). -q is the number of probes per TTL (1 to 255). -w is the wait time per probe (1 to 255). -v is the verbose mode (showing all).
Figure 23 shows output from the traceroute command. Figure 23 traceroute command output Passport-8610# traceroute 10.10.81.18 traceroute to 10.10.81.18, 30 hops max, 40 byte packets 1 10.10.221.1 12 ms 1 ms 1 ms 2 10.10.175.1 0 ms 0 ms 0 ms 3 10.10.180.1 2 ms 1 ms 2 ms 4 10.10.184.2 1 ms 1 ms 3 ms 5 10.10.103.2 3 ms 2 ms 2 ms 6 10.10.13.8 7 ms 4 ms 6 ms 7 10.10.81.18 19 ms 17 ms 17 ms
313194-A Rev 00
Chapter 3 Run-Time command line interface
79
test and show test commands The test and show test commands allow you to test a Passport 8600 Switch while the switch is operating and show the test results. The tests do not interfere with normal bridging and routing activities in the switch, but they do occupy the CPU. Note: The test commands are not available for the Passport 8100 Switch. The test commands include the following options: test
followed by: artable
Runs the Address Resolution (AR) table test.
fabric
Tests the switch’s entire switch fabric.
hardware [<ports>]
Runs a hardware test on the specified ports or on all ports on smart I/O cards.
led
Turns on the LED on an OC3 MDA in a Passport 8683POS Module.
loopback <ports> []
Places the specified ports into internal or external loopback mode. ports is the port list.
stop artable
Stops the current AR table test.
stop fabric
Stops the current switch fabric test.
stop loopback <ports>
Stops the current loopback test.
Note: To be able to test a port in loopback mode, you must first put the port into the testing state using the command config ethernet <ports> state test. After the test is complete, put the port back into normal mode using the command config ethernet <ports> state enable.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
80
Chapter 3 Run-Time command line interface
show test commands The show test commands provide information about tests that were run on the switch. The show test commands are: • • •
show test artable (Passport 8600 switches only) show test fabric (Passport 8600 switches only) show test loopback [<ports>]
show test artable command The show test artable command displays information about the AR table test results for a Passport 8600 Switch. Figure 24 shows sample output from the show test artable command. Figure 24 show test artable command output Passport-8610# show test artable Currently no test is running. Last test results: IfIndex: 0 Result: none PassCount: 0 FailCount: 0
show test fabric command The show test fabric command displays the syntax and the result of the latest switch fabric test for a Passport 8600 switch. Figure 25 shows sample output from the show test fabric command.
313194-A Rev 00
Chapter 3 Run-Time command line interface
81
Figure 25 show test fabric command output Passport-8610# show test fabric Currently no test is running. Last test results: IfIndex: 0 Result: none PassCount: 0 FailCount: 0
show test loopback command The show test loopback command displays the results of the latest loopback test for the switch or for the specified port or ports. The command syntax is: show test loopback [<ports>]
Figure 26 shows sample output for port 9/1. Figure 26 show test loopback command output Passport-8610# show test loopback 9/1 Currently no test is running. Last test results: Port: IfIndex: Result: PassCount: FailCount:
9/1 576 none 0 0
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
82
Chapter 3 Run-Time command line interface
trace and show trace commands The trace and show trace commands allow you to observe the status of the switch at a given time. Caution: Using the trace command slows the performance of the switch. The trace commands include the following options: trace
followed by: info [tail]
Shows the trace message file. The tail option allows you to view the log in reverse order, with the most recent information first.
clear
Clears the trace file.
filter
Filters trace messages.
grep
Performs a comparison of trace messages.
level <modid> []
Sets the trace level on a software module for the specified module ID. Use Help to see a list of ID numbers. The level is one of the following values: • 0 = Disabled • 1 = Very terse • 2 = Terse • 3 = Verbose • 4 = Very verbose
off
Disables tracing on a module.
screen [<setting>]
Enables or disables displaying the trace file. setting is on or off.
show trace commands The show trace commands display trace information for the switch.
313194-A Rev 00
Chapter 3 Run-Time command line interface
83
show trace file command The show trace file command displays the trace message file when tracing is on. It is similar to the trace info command. The command syntax is: show trace file [tail]
The tail option allows you to view the log file in reverse order, with the most recent information first. Figure 27 shows sample output for the show trace file command. Figure 27 show trace file command output Passport-8610# show trace file [000 00:30:15:116] tShell: sc_output: 20 [000 00:31:12:266] tShell: sc_output: 20
show trace level command The show trace level command displays the current software module ID numbers and the corresponding trace levels. The command syntax is: show trace level <modid>
where: modid is the identifier for the software module you are tracing. level is a number that specifies the amount of detail in the trace message file (1 to 4, from least detail to most) or disables trace activity (0).
Figure 28 shows sample output for the show trace level command.
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
84
Chapter 3 Run-Time command line interface Figure 28 show trace level command (partial output) Passport-8610# show trace level usage: trace level <modid> Module IDs: 0 - Common 1 - SNMP Agent 2 - RMON 3 - Port Manager 4 - Chassis Manager 5 - STG Manager 6 - Phase2 OSPF 7 - Hardware I/F 8 - (N/A) 9 - CP Port 10 - (N/A) 11 - VLAN Manager 12 - CLI 13 - Main 14 - Phase2 IP+RIP 15 - RCC IP 16 - HTTP Server 19 - Watch Dog Timer 20 - Topology Discovery
313194-A Rev 00
Trace Levels: 0 0 - Disabled 0 1 - Very terse 0 2 - Terse 0 3 - Verbose 0 4 - Very verbose 0 0 0 0 0 0 0 0 0 0 0 0 0 0
85
Chapter 4 General switch management This chapter describes the Run-Time CLI commands used for general switch management. Most management tasks use the config commands, and the config branch is a main branch in the CLI tree. The chapter includes information about the following commands: • • • • • • • • • • • •
show config command (next) show tech command (page 88) show sys info command (page 89) bootconfig commands (page 90)
Commands for configuring the Run-Time CLI (page 103) Commands for configuring the Boot Monitor CLI (page 109) System commands (page 110) Syslog commands (page 127) Log commands (page 131) RMON commands (page 134) config setdate command (page 138) Web-server commands (page 138)
show config command The show config command displays the current switch configuration. This command uses the syntax: show config [verbose] [module ]
Managing the Passport 8000 Series Switch Using the Command Line Interface Release 3.2
86
Chapter 4 General switch management
where: verbose specifies a complete list of all configuration information about the
switch. module specifies the command group for which you are requesting configuration settings. The value option can be cli, sys, web, rmon, vlan, port, qos, traffic-filter, mlt, stg, ip, ipx, diag, or dvmrp.
If you make a change to the switch, it is displayed under that configuration heading. A complete display is too long to include here; Figure 29 shows representative information. Figure 29 show config command (partial output) Passport_8100:5# show config # # WED SEP 13 10:41:47 2000 UTC # box type : Passport-8010 # software version : REL3.1.0.0 # monitor version : 1.0.0.2/5 # # Asic Info : # SlotNum|Name |CardType|MdaType |Parts Description # # Slot 1 8108GB 30325108 00000000 # Slot 2 8132TX 30211120 00000000 # Slot 3 8116FX 30311110 00000000 # Slot 4 8148TX 30210130 00000000 # Slot 5 8190SM 200e0100 00000000 CPU: CPLD=14 # . # . # . # # CLI CONFIGURATION # cli prompt "Passport_8100" # # SYSTEM CONFIGURATION # sys set snmp trap-recv 10.10.25.47 v1 public sys set snmp trap-recv 10.10.25.48 v1 public
313194-A Rev 00
Chapter 4 General switch management
87
When you add verbose to the show config command, the output contains current switch configuration including software (versions), performance, VLANs (such as numbers, port members), ports (such as type, status), routes, OSPF (such as area, interface, neighbors), memory, interface, and log and trace files. With this command (Figure 30), you can see current configuration and default values. Without verbose, not all of the default values are displayed. Figure 30 show config verbose command (partial output) Passport_8100:5# show config verbose # # WED SEP 13 10:47:43 2000 UTC # box type : Passport-8010 # software version : REL3.1.0.0 # monitor version : 1.0.0.2/5 # # Asic Info : # SlotNum|Name |CardType|MdaType |Parts Description # # Slot 1 8108GB 30325108 00000000 # Slot 2 8132TX 30211120 00000000 # Slot 3 8116FX 30311110 00000000 # . . . # Slot 10 -00000001 00000000 config # # CLI CONFIGURATION # cli monitor duration 300 cli monitor interval 5 cli more true cli password ro "ro" "ro" cli password l1 "l1" "l1" . . . cli password rwa "rwa" "rwa" cli prompt "Passport_8100" cli rlogin-sessions 8 cli screenlines 23 cli telnet-sessions 8 cli timeout 900 cli defaultlogin true cli defaultpassword true cli banner defaultbanner true cli motd displaymotd false
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
88
Chapter 4 General switch management
show tech command The show tech command displays technical information about system status and outputs several pages of information about the hardware, software, and operation of the switch. The information available from the show tech command includes general information about the system (such as location), hardware (chassis, power supplies, fans, and modules), system errors, boot configuration, software versions, memory, port information (locking status, configurations, names, interface status), VLANs and STGs (numbers, port members), OSPF (area, interface, neighbors), and log and trace files. This command displays more information than the similar show sys info command, next. Figure 31 shows representative output from the show tech command. Figure 31 show tech command (partial output) Passport_8100:5# show tech Sys Info: --------------General Info : SysName
: Passport_8100
. . . System Software Info : Default Runtime Config File : /flash/config.cfg Default Boot Config File : /flash/boot.cfg Config File : Last Runtime Config Save : 0 Last Runtime Config Save to Slave : 0 Last Boot Config Save : 0 Last Boot Config Save on Slave : 0 Boot Config Table Slot# : 5 LastBootConfigSource : /flash/boot.cfg LastRuntimeImageSource : /flash/p80a3100.img LastRuntimeConfigSource : /flash/config.cfg
313194-A Rev 00
Chapter 4 General switch management
89
show sys info command The show sys info command displays system status and technical information about the switch hardware components. (Compare this command with the show tech command on page 88.) The command displays several pages of information, including general information about the system (such as location), chassis (type, serial number, and base MAC address), temperature, power supplies, fans, cards, system errors, port locks, topology status, and message control information. The command syntax is: show sys info [card] [asic] [mda]
where: card displays information about all the installed modules. asic displays information about the ASICS installed on each module. mda displays information about installed MDAs.
Figure 32 shows partial output from the show sys info command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
90
Chapter 4 General switch management Figure 32 show sys info command (partial output) Passport_8100:5# show sys info General Info : SysName : Passport_8100 SysUpTime : 7 day(s), 18:28:38 SysContact : [email protected] SysLocation : 4401 Great America Parkway, Santa Clara, CA 95052 Chassis Info : Chassis : Serial# : HwRev : NumSlots : NumPorts : GlobalFilter: VlanBySrcMac: Ecn-Compatib: BaseMacAddr : Temperature : MgmtMacAddr :
8010 SSNM0000TE A 10 160 enable disable enable 00:80:2d:12:30:00 34 C 00:80:2d:12:33:f4
Power Supply Info : seepromGetInfo: crc failed on device 21, calc: a1bf dev: a2bf
bootconfig commands When you are in the Run-Time CLI, you can use the config bootconfig commands to make changes to the Boot Monitor, for example, to change the switch setup. Note: As in the Boot Monitor, you must save any changes you make to the switch setup by typing save. In the Run-Time CLI, you must type save bootconfig to save the changes to the Boot Monitor configuration file. Before the saved changes to boot flag settings take effect, you must reboot the switch.
313194-A Rev 00
Chapter 4 General switch management
91
config bootconfig choice commands The config bootconfig choice commands allow you to display or change the order in which the boot sources (flash and PCMCIA card) are accessed. The required parameter bootconfig is the order in which the specified boot device is accessed when you reboot the switch. The options for bootconfig are primary, secondary, and tertiary. The config bootconfig choice commands include the following options: config bootconfig choice
followed by: info
Displays the current boot choices and associated files.
config-file
Identifies the boot configuration file. filename is the device and file name.
image-file
Identifies the image file. filename is the device and file name.
config bootconfig delay command The config bootconfig delay command enables you to set the number of seconds a standby CPU should wait (delay) before trying to become the master CPU (see the config bootconfig master command on page 95). This command applies only during a cold start and does not apply to a failover start. The default is 2 seconds delay. The command syntax is: config bootconfig delay <seconds>
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
92
Chapter 4 General switch management
config bootconfig flags commands The config bootconfig flags commands allow you to set system flags to true or false. Changes to certain flags (factorydefaults, ftpd, tftpd, wdt) take effect only after changes are saved to the boot configuration file and the switch is reset. The config bootconfig flags commands include the following options: config bootconfig flags
followed by: info
Displays current flag settings (Figure 33).
Passport-8100-mode <true|false>
Enables the Passport 8000 Series switch to act as a layer 2 switch only. When using Passport 8100 modules, this flag defaults to true. For Passport 8600 modules, the default is false.
autoboot <true|false> Controls whether the switch automatically runs the run-time image after being reset or stops at the monitor prompt. Setting autoboot to false is useful for some debugging tasks. The default is true.
daylight-saving-time <true|false>
Enables or disables Daylight Saving Time on the switch. The default is false.
debugmode <true|false>
Controls whether the switch stops in debug mode following a fatal error. Debug mode provides information equivalent to the trace commands. • true means the switch stops in debug mode following a fatal error. A list of options is displayed that allows you to select a software module to debug. • false means the switch is automatically rebooted following a fatal error. The default is false.
debug-config <true|false>
Enables or disables run-time debugging of the configuration file. The default is false.
egress-mirror <true|false>
Enables or disables the ability to mirror egress traffic. The default is true.
factorydefaults <true|false>
Sets the switch configuration to factory default settings. The default is true.
ftpd <true|false>
Enables or disables FTP server on the switch. The default is false. To enable FTP, make sure the config bootconfig flags tftpd command is set to false. See also the config bootconfig host password command on page 94.
logging <true|false>
Enables or disables system logging to a file on the PCMCIA card. The default is true.
reboot <true|false>
Enables or disables the option to reboot on fatal error. The default is true.
313194-A Rev 00
Chapter 4 General switch management
93
config bootconfig flags
followed by: rlogind <true|false>
Enables or disables the rlogin/rsh server. The default is false.
telnetd <true|false>
Enables or disables the Telnet server. The default is false.
tftpd <true|false>
Enables or disables the TFTP server.
trace-logging <true|false>
Enables or disables system tracing to a file on the PCMCIA card. The default is false.
verify-config <true|false>
Enables syntax checking of the configuration file and prevents execution of the file if an error is found. The factory default configuration file will be loaded instead. The default is true.
wdt <true|false>
Enables or disables the hardware watchdog timer, which monitors a hardware circuit. The watchdog timer reboots the switch based on software errors. The default for this command is true.
Figure 33 shows output from the config bootconfig flags info command. Figure 33 config bootconfig flags info command output Passport-8610# config bootconfig flags info flags 8100-mode false flags autoboot true flags daylight-saving-time false flags debugmode false flags debug-config false flags egress-mirror true flags factorydefaults false flags ftpd false flags ha-cpu false flags machine-check false flags logging false flags reboot true flags rlogind false flags savetostandby false flags telnetd true flags tftpd false flags trace-logging false flags verify-config true flags wdt true
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
94
Chapter 4 General switch management
config bootconfig host commands The config bootconfig host commands allow you to define conditions for remote host login. The config bootconfig host commands include the following options: config bootconfig host followed by: info
Displays current settings for remote host login (Figure 34).
ftp-debug <true|false>
Enables or disables debug mode on FTP/FTPd. The default is false.
password
Sets the password, where value is the password, from 0 to 16 characters. This command enables FTP transfers.
tftp-debug <true|false>
Enables or disables debug mode on TFTP. The default is false.
tftp-hash <true|false>
Enables or disables the TFTP hash bucket display. The default is false.
tftp-rexmit <seconds>
Sets the TFTP retransmission timeout. seconds is 1 to 2147483647. The default is 2 for 8100 Series switches and 5 for 8600 Series switches.
tftp-timeout <seconds>
Sets TFTP timeout. seconds is 1 to 2147483647. The default is 10 for 8100 Series switches and 30 for 8600 Series switches.
user
Sets the remote user login. value is the user login name, from 0 to 16 characters. The default is target.
Figure 34 shows sample output from the config bootconfig host info command.
313194-A Rev 00
Chapter 4 General switch management
95
Figure 34 config bootconfig host info command output Passport-8610# config bootconfig host info host password "" host tftp-hash false host tftp-rexmit 2 host tftp-timeout 10 host user "target"
config bootconfig master command The config bootconfig master command allows you to indicate which CPU should become master when the switch is turned on. The master CPU performs a loopback test to test the switch fabric. The default master is set for slot 5. The syntax is: config bootconfig master
where cpu-slot specifies the module position, either slot 5 or slot 6.
config bootconfig net commands The config bootconfig net commands configure the CPU network port devices. The three network ports are the management port, the CPU port, and the PCMCIA card, if it is acting as a network port. The required parameter cpu-net-port can be mgmt, cpu2cpu, or pccard. Note: Use the net mgmt ip command to assign an IP address to the switch.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
96
Chapter 4 General switch management
The config bootconfig net commands include the following options: config bootconfig net
followed by: info
Displays information about the current configuration of the specified port (Figure 35).
autonegotiate <true|false>
Enables or disables autonegotiation for the specified port. The default is: • For cpu-2-cpu: false • For mgmt: true • For pccard: true
bootp <true|false>
Enables or disables the Bootstrap Protocol (BootP) for the specified port. The default is true for all specified port types.
enable <true|false>
Enables or disables the specified network port. The default is: • For cpu-2-cpu: true • For mgmt: false • For pccard: true
fullduplex <true|false>
Enables or disables full-duplex mode for the specified port. The default is: • For cpu-2-cpu: true • For mgmt: false • For pccard: false
ip
Enables or disables the IP address/mask for the specified port. The default is 0.0.0.0.
restart
Restarts the specified port.
route net [add|del]
Enables or disables a route for the specified port. • add|del adds or deletes the specified route. • netaddr is the IP address of the destination network. • gateway is the IP address of the gateway.
speed <10|100>
Sets the connection speed for the port to 10 Mb/s or 100 Mb/s. The default is: • For cpu-2-cpu: 100 • For mgmt: 10 • For pccard: 10
tftp
Enables or disables TFTP for the specified port. The default is 0.0.0.0.
313194-A Rev 00
Chapter 4 General switch management
97
Figure 35 shows output from the config bootconfig net cpu info command. Figure 35 config bootconfig net cpu info command output Passport_8100:5# config bootconfig net cpu info net cpu2cpu autonegotiate false net cpu2cpu bootp false net cpu2cpu enable true net cpu2cpu fullduplex false net cpu2cpu speed 100 net cpu2cpu tftp 0.0.0.0 net cpu2cpu ip 10.0.0.5/255.0.0.0 cpu-slot 5 net cpu2cpu ip 0.0.0.0/0.0.0.0 cpu-slot 6 current status: link: true speed: 100 duplex: half
config bootconfig show commands The config bootconfig show commands allow you to display the current configuration of the Boot Monitor and the Boot Monitor CLI. The config bootconfig show commands include the following options: config bootconfig show
followed by: info
Displays the current boot monitor settings (Figure 36).
choice
Displays the boot configuration choices.
cli
Displays the CLI configuration.
config [verbose]
Displays the current boot configuration. verbose displays all possible information.
flags
Displays the flags settings.
host
Displays the host configuration.
master
Displays the current CPU slot set as master.
net
Displays the current configuration of the CPU network ports.
sio
Displays the current configuration of CPU serial ports.
tz
Displays the switch’s time zone setting.
wlan
Displays wireless LAN information.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
98
Chapter 4 General switch management Figure 36 config bootconfig show info command output Passport_8100:5# config bootconfig show info CPU Slot 5: PPC 740 Map B Version: 1.0.0.2/5 Memory Size: 0x04000000
config bootconfig sio commands The config bootconfig sio commands allow you to configure the CPU serial port devices. The required parameter cpu-sio-port can be console, modem, or pccard. The config bootconfig sio commands include the following options: config bootconfig sio
followed by: info
Displays configuration information about the specified port (Figure 37).
baud
Sets the baud rate for the port. The default is 9600.
8databits <true|false>
Specifies either 8 (true) or 7 (false) data bits per byte for software to interpret. The default is false.
enable <true|false>
Enables or disables the port. The default is true.
mode
Sets the communication mode for the serial port. The default is ascii. To configure the Console port, set the mode to ascii. If you are configuring the Modem port, you can set the port to use the same SLIP or PPP communication mode as the modem. For instructions to connect a modem to the Modem port, refer to Appendix C, “Connecting a modem,” on page 147.
mtu
Sets the size of the maximum transmission unit for a point-to-point link (0 to 2048). The default is 0.
my-ip
Sets the near-end IP address on a point-to-point link. The default is 0.0.0.0.
peer-ip
Sets the peer IP address on a point-to-point link. The default is 0.0.0.0.
pppfile
Identifies which file to use for PPP initialization parameters.
313194-A Rev 00
Chapter 4 General switch management
99
config bootconfig sio
followed by: restart
Shuts down and reinitializes the port.
slip-compression <true|false>
Enables or disables TCP/IP header compression. The default is false.
slip-rx-compression <true|false>
Enables or disables TCP/IP header compression on the receive packet. The default is false.
Caution: Nortel Networks does not recommend setting the console port mode to slip or ppp, because the log, trace, and error messages may be displayed on this port and will interfere with the SLIP or PPP operation. Figure 37 shows output from the config bootconfig sio console info command. Figure 37 config bootconfig sio console info command output Passport-8610# config bootconfig sio console info sio console baud 9600 sio console 8databits false sio console enable true sio console mode ascii sio console mtu 0 sio console my-ip 0.0.0.0 sio console peer-ip 0.0.0.0 sio console pppfile "" sio console slip-compression false sio console slip-rx-compression false current status: active: true mode: ascii baud: 9600 options: 7 bit data 1 stop no parity cts dsr ri
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
100
Chapter 4 General switch management
config bootconfig tz commands The config bootconfig tz commands allow you to set the relation of the switch time zones. The config bootconfig tz commands include the following options: config bootconfig tz
followed by: info
Displays information about the current time zone settings for the switch.
dst-end <Mm.n.d/hhmm | MMddhhmm>
Sets the ending date of daylight saving time. You can specify the time in one of two ways: • Specify an hour on the nth occurrence of a weekday in a month. For example, M10.5.0/0200 means the 5th occurrence of Sunday in the 10th month (October) at 2:00 a.m. • Specify a month, day, hour, and minute. For example, 10310200 means October 31 at 2:00 a.m.
dst-name Sets an abbreviated name for the daylight saving local time zone, up to 7 characters. dstname is the name (for example, “pdt” is Pacific Daylight Time)
dst-offset <minutes>
Sets the daylight saving adjustment in minutes.
dst-start <Mm.n.d/hhmm| MMddhhmm>
Sets the starting date of daylight saving time. The format is the same as for setting the ending date.
offset-from-utc <minutes>
Sets the time zone offset, in minutes to subtract from UTC, where positive numbers mean west of Greenwich and negative numbers mean east of Greenwich.
name
Sets an abbreviated name for the local time zone, up to 7 characters. tz is the name (for example, “pst” is Pacific Standard Time).
313194-A Rev 00
Chapter 4 General switch management
101
show bootconfig commands The show bootconfig commands allow you to view the current configuration of the Boot Monitor while you are in the Run-Time CLI. The show bootconfig commands and options are: show bootconfig
followed by: choice
Displays the boot choice information (Figure 38).
cli
Displays the Boot Monitor CLI information.
config [verbose]
Displays the Boot Monitor configuration settings.
verbose includes all possible information. If you omit verbose, only the nondefault settings are displayed.
flags
Displays the flag settings for the switch.
host
Displays the remote host login information.
info
Displays information about the switch boot image (Figure 39).
master
Displays the delay setting and the chassis slot where the Master CPU resides.
net
Displays information about the network ports.
sio
Displays information about the serial ports.
tz
Displays information about the switch time zone settings.
wlan
Displays wireless LAN information.
Figure 38 shows output from the show bootconfig choice command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
102
Chapter 4 General switch management Figure 38 show bootconfig choice command output Passport_8100:5# show bootconfig choice choice primary config-file "/flash/config.cfg" choice primary image-file "/flash/p80a3100_b29.img" choice secondary config-file "/flash/config.cfg" choice secondary image-file "/flash/ac86a300.img" choice tertiary config-file "/flash/config.cfg" choice tertiary image-file "0.0.0.0:"
Warning: Do not edit the boot.cfg file manually, because the switch reads this file during the boot process. Errors generated while editing the file could render the switch inoperable. Figure 39 shows output from the show bootconfig info command. Figure 39 show bootconfig info command Passport_8100:5# show bootconfig info CPU Slot 5: PPC 740 Map B Version: 2.0.0.0/10 Memory Size: 0x04000000
313194-A Rev 00
Chapter 4 General switch management
103
Commands for configuring the Run-Time CLI The Run-Time CLI includes commands that allow you to view or change aspects of the Run-Time CLI configuration. These commands include: • • •
config cli commands (next) show cli commands (page 106) config cli password commands (page 108)
config cli commands The config cli commands are general management commands for the command line interface. The config cli commands include the following options: config cli
followed by: info
Displays the current CLI parameter settings (Figure 40).
banner add <string>
Adds lines of text to the CLI login banner. string is an ASCII string from 1 to 1024 characters.
banner defaultbanner <true|false>
Enables or disables using the default CLI login banner.
banner delete
Deletes an existing customized login banner.
banner info
Displays the text that was added to the login banner using the banner add command.
defaultlogin <true|false>
Enables or disables using the default login string. false disables the default login banner and displays the new banner.
defaultpassword <true|false>
Enables or disables using the default password string.
loginprompt <string>
Changes the CLI login prompt. string is an ASCII string from 1 to 1024 characters.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
104
Chapter 4 General switch management
config cli
followed by: monitor duration
Changes the monitoring time duration (refresh rate) for the monitor commands (see Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using the Command Line Interface Release 3.2). integer is the time duration in seconds (1 to 1800). The default is 300.
monitor info
Displays the current setting for the monitor duration and interval used by the monitor commands.
monitor interval
Changes the monitoring time interval between screen updates set by the monitor commands. integer is the time duration in seconds (1 to 600). The default is 5.
more <true|false>
Sets scrolling for the output display. The default is true. • true sets output display scrolling to one page at a time. • false sets the output display to continuous scrolling.
motd add <string>
Creates a “message of the day” that can be displayed with the login banner. string is an ASCII string from 1 to 1024 characters.
motd displaymotd <true|false>
Displays (true) or does not display (false) the message of the day.
motd delete
Deletes the message of the day.
motd info
Displays information about the message of the day.
passwordprompt <string>
Changes the CLI password prompt. string is an ASCII string from 1 to 1024 characters.
prompt <prompt>
Sets the root level prompt and sysName to a defined string. prompt is a string from 1 to 32 characters.
313194-A Rev 00
Chapter 4 General switch management
105
config cli
followed by: rlogin-sessions <nsessions>
Sets the allowable number of inbound remote CLI login sessions; the default is 8. nsessions is the number of sessions (0 to 8).
screenlines
Sets the number of lines in the output display; the default is 23. nlines is the number of lines (8 to 64).
telnet-sessions <nsessions>
Sets the allowable number of inbound Telnet sessions; the default is 8. nsessions is the number of sessions (0 to 8).
timeout <seconds>
Sets the idle timeout period before automatic logout for CLI sessions; the default is 0. seconds is the timeout period in seconds (0 to 65536).
Note: In any display area that you can alter by specifying a character string, you must enclose the string in quotation marks if it contains more than one word. For example, if you change the cli prompt to a multiword prompt, enclose the phrase in quotes. If you do not do so, only the first word will become the prompt. That is, config cli prompt Passport 8600 displays Passport as the prompt, whereas config cli prompt “Passport 8600” displays Passport 8600 as the prompt. Figure 40 shows output from the config cli info command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
106
Chapter 4 General switch management Figure 40 config cli info command output Passport-8106:6# config cli info Sub-Context: clear config dump monitor show trace Current Context: defaultlogin defaultpassword loginprompt more passwordprompt prompt rlogin-sessions screen-lines telnet-sessions timeout
: : : : : : : : : :
true true Login: true Password: Passport-8106 8 23 8 900
show cli commands The show cli commands allow you to display information about the switch CLI configuration.
show cli info command The show cli info command displays the CLI configuration. Figure 41 shows sample output from the show cli info command.
313194-A Rev 00
Chapter 4 General switch management
107
Figure 41 show cli info command output Passport_8100:5# show cli info cli configuration more : screen-lines : telnet-sessions : rlogin-sessions : timeout : monitor duration: monitor interval:
true 23 8 8 900 seconds 300 seconds 5 seconds
use default login prompt default login prompt custom login prompt use default password prompt default password prompt custom password prompt
: : : : : :
true Login: Login: true Password: Password:
show cli who command The show cli who command displays a list of users who are logged in to the switch. Figure 42 shows output from the show cli who command. Figure 42 show cli who command output Passport_8100:5# show cli who SESSION USER ACCESS Telnet0 rwa rwa Console none Modem none
IP ADDRESS 10.177.25.205
show cli password command The show cli password command displays the CLI access, login, and password combinations. The output is the same as for the config cli info command (Figure 40 on page 106).
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
108
Chapter 4 General switch management
config cli password commands The config cli password commands allow you to view or change the login or password for the different access levels of the switch. The optional parameter password is the password associated with the user name or login name. You must have read-write-all privileges in order to view or change passwords. The config cli password commands include the following options: config cli password
followed by: info
Displays current login and password settings (Figure 43). The output from this command is the same as the output from show cli password.
ro <username> [<password>]
Sets the Read-Only login and/or password.
l1 <username> [<password>]
Sets the layer 1 login and/or password.
l2 <username> [<password>]
Sets the layer 2 login and/or password.
l3 <username> [<password>]
Sets the layer 3 login and/or password.
rw <username> [<password>]
Sets the Read/Write login and/or password.
rwa <username> [<password>]
Sets the Read/Write/All login and/or password.
Figure 43 shows output from the config cli password command.
313194-A Rev 00
Chapter 4 General switch management
109
Figure 43 config cli password info command output Passport-8610# config cli password info ACCESS LOGIN rwa rwa rw rw l3 l3 l2 l2 l1 l1l1 ro ro
PASSWORD rwa rw l3 l2 ro
Commands for configuring the Boot Monitor CLI The Run-Time CLI includes a set of commands that allow you to set parameters for the Boot Monitor CLI while you are in the Run-Time CLI. For the changes made to the Boot Monitor CLI to take effect, you must use the save bootconfig command to save the changed configuration, and then reboot the switch.
config bootconfig cli commands The config bootconfig cli commands are general management commands to change the Boot Monitor CLI while you are in the Run-Time CLI. The config bootconfig cli commands include the following options: config bootconfig cli
followed by: info
Displays the current settings for the Boot Monitor CLI (Figure 44).
more <true|false>
Sets scrolling for the output display. The default is true. • true sets output display scrolling to one page at a time. • false sets the output display to continuous scrolling.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
110
Chapter 4 General switch management
config bootconfig cli
followed by: prompt
Changes the Boot Monitor prompt to the defined string. value is a string from 1 to 32 characters.
rlogin-sessions
Sets the allowable number of inbound remote Boot Monitor CLI login sessions; the default is 8. nsessions is the number of sessions (0 to 8).
screenlines
Sets the number of lines in the output display; the default is 23. nlines is the number of lines (8 to 64).
telnet-sessions
Sets the allowable number of inbound Telnet sessions; the default is 1. nsessions is the number of sessions (o to 8).
timeout <seconds>
Sets the idle timeout period before automatic logout for CLI sessions; the default is 900 seconds. seconds is the timeout period in seconds (0 to 65536).
Figure 44 shows output from the config bootconfig cli info command. Figure 44 config bootconfig cli info command output Passport-8610# config bootconfig cli info cli more true cli prompt "monitor" cli rlogin-sessions 1 cli screenlines 23 cli telnet-sessions 1 cli timeout 900
System commands The system commands manage the switch system and allow you to view system settings. The system commands include: • • 313194-A Rev 00
Access policy commands (next) config sys set action commands (page 117)
Chapter 4 General switch management
• • • • • • •
111
config sys set snmp commands (page 118) config sys set mgmt-virtual-ip command (page 120)
Other config sys set commands (page 120) show sys commands (page 122) config sys link-flap-detect commands (page 125) show sys link-flap-detect general-info command (page 126) dump ar command (page 127)
Access policy commands Access policy commands allow you to control management access by setting policies for services to prevent or allow access to the switch. If management access to the switch is permitted through Telnet, SNMP, HTTP, rsh, or rlogin, you can specify which hosts or networks can access the switch through these services. You can define network stations that are explicitly allowed to access the switch or network stations that are explicitly forbidden to access the switch. For each service you can also specify the level of access, such as read-only or read/write/ all. Note: Access policies define who can access the switch management functions remotely. To enable access services (how the switch management functions are accessed), use the flags or config bootconfig flags command.
config sys access-policy commands The config sys access-policy commands allow you to display information about access policies on the switch or to enable access policies.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
112
Chapter 4 General switch management
The config sys access-policy commands include the following options: config sys access-policy
followed by: info
Displays the global access policy settings.
enable <true|false>
Globally enables or disables the IP access policy feature on the switch. false means no policies on the switch are applied. The default is false.
config sys access-policy policy commands The config sys access-policy policy commands allow you to create or modify specific access policies. The required parameter pid is the policy ID from 1 to 65535. This policy ID is assigned when you create the policy. The config sys access-policy policy commands include the following options: config sys access-policy policy
followed by: info
Displays characteristics of the specified access policy (Figure 45).
accesslevel
Sets an access level for a policy. level is the access level (ro, rw, or rwa) or read-only, read-write, or read-write-all.
create
Creates a new access policy with the specified policy ID.
delete
Deletes the access policy with the specified policy ID.
disable
Disables the specified access policy.
enable
Enables the specified access policy.
host
Sets the access policy trusted host address. Applicable only for remote login and remote shell execution. ipaddr is the IP address {a.b.c.d} of the host used to authenticate the user. The login must be the specified user at the specified host for access.
mode <mode>
Sets the specified access policy to allow or deny access. mode is allow or deny.
313194-A Rev 00
Chapter 4 General switch management
113
config sys access-policy policy
followed by: name
Sets a name for the specified access policy. name is a string from 0 to 15 characters (for example Group 1).
network
Sets the access policy network address and subnet mask {a.b.c.d/x|a.b.c.d/x.x.x.x|default}. This command defines those stations that are affected by the access policy. If you specify an IP address and subnet mask, that location is either allowed or denied access, depending on the setting of the mode command. default means that everyone on the network is either allowed or denied access, as defined by the mode command.
precedence <precedence>
Sets the access policy precedence. The precedence determines which policy to use if multiple policies apply. precedence is a range from 1 to 128, with the lowest number having the highest precedence.
Enables or disables the specified access policy for HTTP service http <enable|disable> service. Enables or disables the specified access policy for rlogin service rlogin <enable|disable> service. Enables or disables the specified access policy for SNMP service snmp <enable|disable> service. Enables or disables the specified access policy for Telnet service telnet <enable|disable> service.
username <string>
Sets the trusted host user name from the trusted host for the specified policy. Applies only to rlogin access. string is the host user name (0 to 30 characters).
Figure 45 shows output from the config sys access-policy policy info command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
114
Chapter 4 General switch management Figure 45 config sys access-policy policy info command output Passport_8100:5# config sys access-policy policy 1 info Sub-Context: clear config dump monitor show trace Current Context: create delete name policy enable mode precedence network host username accesslevel
313194-A Rev 00
: : : : : : : : : :
N/A default true allow 128 0.0.0.0/0.0.0.0 0.0.0.0 none readWrite
Chapter 4 General switch management
115
Setting an access policy Figure 46 illustrates the command sequence for preventing a host from using specific services on a Passport 8000 Series switch. The host 10.135.200.35 will not have access to this switch using HTTP, SNMP, or rlogin. When denying services to a host, you must specify which service to enable for that policy PID. Figure 46 Commands to deny access Passport-8610# config sys access-policy Passport-8610/config/sys/access-policy# enable true Passport-8610/config/sys/access-policy# policy 2 create Passport-8610/config/sys/access-policy# policy 2 name policy2 Passport-8610/config/sys/access-policy# policy 2 Passport-8610/config/sys/access-policy/policy/2# enable true Passport-8610/config/sys/access-policy/policy/2# host 10.135.200.35 Passport-8610/config/sys/access-policy/policy/2# mode deny Passport-8610/config/sys/access-policy/policy/2# service rlogin enable Passport-8610/config/sys/access-policy/policy/2# service http enable Passport-8610/config/sys/access-policy/policy/2# service snmp enable
By default, policy 1 is the default access policy. This policy allows any IP address to access the switch using HTTP, SNMP, or Telnet. Because the precedence level for policy 1 is the lowest possible level, this policy is normally superseded by new policies that are created.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
116
Chapter 4 General switch management
show sys access-policy info command The show sys access-policy info command displays information about a specified access policy or all access policies on the switch. The command syntax is: show sys access-policy info [<polname>]
Figure 47 shows information about the default access policy, and Figure 48 shows information about the policy created in Figure 46. Figure 47 show sys access-policy info policy2 command output—default policy Passport-8610# show sys access-policy info policy2 AccessPolicyEnable: on Id: Name: PolicyEnable: Mode: Service: Precedence: NetAddr: NetMask: TrustedHostAddr: TrustedHostUserName: AccessLevel: Usage:
313194-A Rev 00
1 default true allow http|snmp|telnet 128 0.0.0.0/0.0.0.0 0.0.0.0 10.135.200.35 none readWrite 3
Chapter 4 General switch management
117
Figure 48 show sys access-policy info policy2 command output Passport-8610# show sys access-policy info policy2 AccessPolicyEnable: on Id: Name: PolicyEnable: Mode: Service: Precedence: NetAddr: NetMask: TrustedHostAddr: TrustedHostUserName: AccessLevel: Usage:
2 policy2 true deny http|snmp|rlogin 10 0.0.0.0 0.0.0.0 10.135.200.35 none readWrite 3
config sys set action commands The config sys set action commands reset system functions. The config sys set action commands include the following options: config sys set action
followed by: info
Displays the current settings for system actions (Figure 49).
cpuswitchover
Resets the switch to change over to the backup CPU.
resetconsole
Reinitializes the hardware UART drivers. Use this command only if the console or modem connection is hung.
resetcounters
Resets all the statistics counters in the switch to zero.
resetmodem
Resets the modem port.
Figure 49 shows output from the config sys set action info command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
118
Chapter 4 General switch management Figure 49 config sys set action info command output Passport_8100:5# config sys set action info Sub-Context: clear config dump monitor show trace Current Context: cpuswitchover resetconsole resetcounters resetmodem
: : : :
(N/A) (N/A) (N/A) (N/A)
Note: N/A displayed in a command output indicates that the information is Not Available or Not Applicable.
config sys set snmp commands The config sys set snmp commands allow you to configure the SNMP settings for your switch. The config sys set snmp commands include the following options: config sys set snmp
followed by: info
Displays the current SNMP settings (Figure 50).
community
Sets the SNMP community string for the selected community: • ro is read-only. • rw is read/write. • l1 is layer 1 read/write. • l2 is layer 2 read/write. • l3 is layer 3 (and layer 2) read/write. • rwa is read/write/all. • commstr is the input community string.
313194-A Rev 00
Chapter 4 General switch management
119
config sys set snmp
followed by: del-trap-recv
Deletes the SNMP trap receiver. ipaddr is the IP address of the trap receiver.
trap-recv
Sets an SNMP trap receiver. • ipaddr is the IP address of the trap receiver. • v1|v2c is the SNMP version; select version 1 or version 2c. • commstr is the input community string from 1 to 1024 characters.
Figure 50 shows output from the config sys set snmp info command. Figure 50 config sys set snmp info command output Passport_8100:5# config sys set snmp info Sub-Context: clear config dump monitor show trace Current Context: community : ro rw l1 l2 l3 rwa
-
public private private private private secret
del-trap-recv : N/A trap-recv : 10.177.25.90 - v1 public 10.177.25.215 - v1 public 10.177.81.115 - v1 public
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
120
Chapter 4 General switch management
config sys set mgmt-virtual-ip command The config sys set mgmt-virtual-ip command allows you to create a virtual management port in addition to the physical management ports on the switch management modules. When you assign an IP address to the virtual management port, that IP address provides access to both switch management modules. The master management module replies to all management requests sent to the virtual IP address, as well as to requests sent to its management port IP address. If the master management module fails and the standby management module takes over, the virtual management port IP address continues to provide management access to the switch. This feature is not supported in a switch with mixed Passport 8190SM modules and Passport 8690SF modules. The command syntax is: config sys set mgmt-virtual-ip
After you set an IP address for the virtual management port, you must save the configuration file to the standby management module. To save the file: Enter: save config file standby where name is the name of the
configuration file. To check the configuration file on the standby management module, use the more command on page 40 through a direct or Telnet connection to the standby management module. To assign IP addresses to the physical management ports, use the config bootconfig net mgmt ip command on page 95.
Other config sys set commands Other config sys set commands set individual system-level switch parameters.
313194-A Rev 00
Chapter 4 General switch management
121
The config sys set commands include the following options: config sys set
followed by: info
Displays current system settings (Figure 51).
contact Sets the contact information for the switch. contact is an ASCII string from 1 to 1024 characters (for example a phone extension or email address).
ecn-compatibility Enables or disables explicit congestion notification, as <enable|disable> defined in Experimental RFC 2780. This feature is not currently supported on the Passport 8000 Series switch.
global-filter <enable|disable>
Enables or disables global filtering on the switch. When this command is enabled, you must disable source MAC VLANs (config sys set vlan-bysrcmac disable). The system will not allow you to enable global filtering and source MAC-based VLANs at the same time. This command is available only on Passport 8600 switches.
location
Sets the location information for the switch. location is an ASCII string from 1 to 1024 characters (for example, Finance).
msg-control <enable|disable>
Enables or disables the system message control. Enable this command to suppress duplicate error messages.
name <prompt>
Sets the box or root level prompt name for the switch. prompt is an ASCII string from 1 to 1024 characters (for example, LabSC7 or Closet4).
portlock Turns port locking on or off. To specify the ports to be locked, use the config ethernet <ports> lock command (refer to Configuring Switching and Routing Operations for the Passport 8000 Series Switch Using the Command Line Interface Release 3.2).
sendtrap <true|false>
Sets whether or not to send authentication failure traps.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
122
Chapter 4 General switch management
config sys set
followed by: topology Turns the topology feature on or off. The topology feature generates topology packets used by Optivity* network management software. When this feature is off, the topology table is not generated (page 125). The default is on.
vlan-bysrcmac <enable|disable>
Enables or disables the ability to configure source MAC VLANs on the switch. The default is disable. If you enable this command, you must disable the global filter command (config sys set global-filter disable). The system will not allow you to enable global filtering and source MAC-based VLANs at the same time. This command is available only on Passport 8600 switches.
Figure 51 shows output from the config sys set info command. Figure 51 config sys set info command output Passport_8100:5# config sys set info Sub-Context: clear config dump monitor show trace Current Context: mgmt-virtual-ip : 0.0.0.0/0.0.0.0 contact : [email protected] location : 4401 Great America Parkway, Santa Clara, CA 95052 name : Passport_8100 msg-control : disable portlock : off sendAuthenticationTrap : false topology : on globalFilter : enable vlanBySrcMac : disable ecn-compatibility : enable system MTU : 1950
show sys commands Several show sys commands allow you to display current system status and configuration for specific parameters.
313194-A Rev 00
Chapter 4 General switch management
123
show sys community command The show sys community command displays the community strings set for the switch. (You can also use the config sys set snmp info command.) Figure 52 shows output from the show sys community command. Figure 52 show sys community command output Passport_8100:5# show sys community Community String ro public r1 private l2 private l3 private rw private rwa secret
show sys msg-control command The show sys msg-control command allows you to see if the system message control function is enabled or disabled. (You can also use the config sys set info command.)
show sys perf command The show sys perf command displays system performance information, such as CPU utilization, switch fabric utilization, NVRAM size, and NVRAM used. The information is updated once per second, so it is no more than one second from real time. Figure 53 shows output from the show sys perf command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
124
Chapter 4 General switch management Figure 53 show sys perf command output Passport_8100:5# show sys perf CpuUtil: 0% SwitchFabricUtil: 0% OtherSwitchFabricUtil: 0% BufferUtil: 0% DramSize: 64 M DramUsed: 46 % DramFree: 34978 K
show sys sw command The show sys sw command displays the version of software running on the switch, the last update of that software, and the Boot Config Table. The Boot Config Table lists the current system settings and flags. Figure 54 shows partial output from the show sys sw command. Figure 54 show sys sw command partial output Passport_8100:5# show sys sw System Software Info : Default Runtime Config File : /flash/config.cfg Default Boot Config File : /flash/boot.cfg Config File : Last Runtime Config Save : 0 Last Runtime Config Save to Slave : 0 Last Boot Config Save : 0 Last Boot Config Save on Slave : 0 Boot Config Table Slot# : 5 LastBootConfigSource : /flash/boot.cfg LastRuntimeImageSource : /flash/p80a3100_b29.img LastRuntimeConfigSource : /flash/config.cfg PrimaryImageSource : /flash/p80a3100_b29.img PrimaryConfigSource : /flash/config.cfg SecondaryImageSource : /flash/ac86a300.img SecondaryConfigSource : /flash/config.cfg TertiaryImageSource : 0.0.0.0 . . .
313194-A Rev 00
Chapter 4 General switch management
125
show sys topology command The show sys topology command displays the topology table (Figure 55). This table shows the information that is being sent to Optivity network management software for creating network displays. Figure 55 show sys topology command output Passport_8100:5# show sys topology ============================================================================== Topology Table ============================================================================== PORT IP_ADDR SEG MAC_ADDR CHASSIS BKPL LOCAL CURSTATE SLOT ID TYPE TYPE SEG -----------------------------------------------------------------------------0 /0 10.140.22.13 0 00:80:2d:12:30:00 65 enetFastGigEnet true heart beat
config sys link-flap-detect commands Link flap detection allows you to control link state changes on a physical port. You can set thresholds for the number and frequency of changes allowed and take action if the thresholds are exceeded. If the link state change thresholds are exceeded, a log entry is generated. The possible configuration actions are to send a trap and to bring down the port. This feature allows you to detect when the link is going up and down rapidly (that is, flapping) on a port. This action can be detrimental to network stability because it could trigger spanning tree and routing table recalculation.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
126
Chapter 4 General switch management
The config sys link-flap-detect commands include the following options: config sys link-flap-detect followed by:
info
Shows the link-flap-detect settings (Figure 56).
auto-port-down <enable|disable>
Enables or disables automatic disabling of the port if the link-flap threshold is exceeded; the default is enable.
frequency
Sets the number of changes that are allowed during the time specified by the interval command. The default is 10. frequency is from 1 to 9999.
interval Sets the link-flap-detect interval in seconds. The default is 60.
interval is from 2 to 600. send-trap <enable|disable>
Enables or disables sending traps. The default is enable.
Figure 56 shows output from the config sys link-flap-detect info command. Figure 56 config sys link-flap-detect info command output Passport-8610# config sys link-flap-detect info Auto Port Down : enable Send Trap : enable Interval : 60 Frequency : 30
show sys link-flap-detect general-info command The show sys link-flap-detect general-info command displays the same information as the config sys link-flap-detect info command (Figure 56).
313194-A Rev 00
Chapter 4 General switch management
127
dump ar command The dump ar command allows you to display the hardware registers of the RaptARU attached to OctaPID. The syntax for the dump ar command is: dump ar
where: opid is the octaPID assignment, from 1 to 64. See Appendix E, “Tap and
OctaPID Assignment,” on page 155, for more information. vlan|ip_subnet|mac_vlan|mac|arp|ip|ipx|ipmc|ip_filter| protocol|all specifies a record type in the AR table.
verbosity specifies the verbosity level, from 0 to 3. Higher numbers specify more verbosity.
Syslog commands The Syslog commands control a facility in UNIX machines that logs messages and assigns each message a severity level based on importance.
config sys syslog commands The config sys syslog commands configure the syslog facility. Most of the commands require the host ID id parameter for the UNIX host. The IDs range from 1 to 10.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
128
Chapter 4 General switch management
The config sys syslog commands include the following options: config sys syslog
followed by: info
Displays the current syslog settings (Figure 57).
host address
Configures a host location for the syslog host. address is the IP address of the UNIX system syslog host.
host create
Creates a syslog host.
host delete
Deletes a syslog host.
host facility
Specifies the UNIX facility used in messages to the syslog host. facility is the UNIX system syslog host facility (LOCAL0 to LOCAL7).
host <enable|disable>
Enables or disables the syslog host.
host info
Displays system log information for the specified host. This command results in the same output as the show sys syslog host info command.
host mapinfo
Specifies the syslog severity level to use for Passport Information messages. level is {emergency|alert|
critical|error|warning| notice|info|debug}. host mapwarning
Specifies the syslog severity to use for Passport Warning messages. level is {emergency|alert|
critical|error|warning| notice|info|debug}. host maperror
Specifies the syslog severity to use for Passport Error messages. level is {emergency|alert|
critical|error|warning| notice|info|debug}. host mapfatal
Specifies the syslog severity to use for Passport Fatal messages. level is {emergency|alert|
critical|error|warning| notice|info|debug}.
313194-A Rev 00
Chapter 4 General switch management
129
config sys syslog
followed by: host severity []
Specifies the severity levels for which syslog messages should be sent for the specified modules. severity is the severity for which syslog messages are sent.
host udp-port <port>
Specifies the UDP port number on which to send syslog messages to the syslog host. udp-port <port> is the UNIX system syslog host port number (514 to 530).
max-hosts <maxhost> Specifies the maximum number of syslog hosts supported. maxhost is the maximum number of enabled hosts allowed (1 to 10).
state <enable|disable>
Enables or disables sending syslog messages on the switch.
Figure 57 shows output for the config sys syslog info command. Figure 57 config sys syslog info command output Passport_8100:5# config sys syslog info Sub-Context: clear config dump monitor show trace Current Context: max-host : 5 state : enable
show sys syslog commands Two show sys syslog commands allow you to display information about the syslog features enabled on the switch: • •
show sys syslog general-info show sys syslog host info
The show sys syslog general-info command (Figure 58) displays general information about the system log.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
130
Chapter 4 General switch management Figure 58 show sys syslog general-info command output Passport-8610# show sys syslog general-info Enable : true Max Hosts : 5 OperState : empty host table Total number of configured hosts : 0 Total number of enabled hosts : 0 Configured host : Enabled host :
The show sys syslog host info command allows you to view system log information for the specified host. The command uses the syntax: show sys syslog host info
Figure 59 shows output for the show sys syslog host info command. Figure 59 show sys syslog host info command output Passport-8610# config sys syslog host 1 info Sub-Context: clear config dump monitor show trace Current Context: address create delete facility host mapinfo mapwarning maperror mapfatal severity udp-port
313194-A Rev 00
: : : : : : : : : : :
0.0.0.0 1 N/A local7 disable info warning error emergency info|warning|error|fatal 514
Chapter 4 General switch management
131
Log commands The log commands allow you to configure and display the log files for the switch. When the config bootconfig flags logging true command is saved in the configuration file, the log entries are written to the /pcmcia/syslog.txt file. If the logging flag is not set to true, the entries are stored in memory.
config log commands The config log commands allow you to show, write, or clear the log file created automatically by the system. The config log commands include the following options: config log
followed by: info
Displays the current log settings (Figure 60).
clear
Clears the log file.
level []
Shows and sets the logging level. level is one of these values: • 0 = Information; all messages are recorded. • 1 = Warning; only warning and more serious messages are recorded. • 2 = Error; only error and more serious messages are recorded. • 3 = Manufacturing; this parameter is not available for customer use. • 4 = Fatal; only fatal messages are recorded.
screen [<setting>]
Sets the log display on the screen to on or off. setting is off or on.
write <str>
Writes the log file with the designated string. str is the string or command that you append to the log file. If the string contains spaces, you must enclose the string in quotation marks.
Figure 60 shows output from the config log info command.
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
132
Chapter 4 General switch management Figure 60 config log info command output Passport-8610# config log info Sub-Context: clear config dump monitor show test trace Current Context: clear level screen write
: : : :
N/A 0 on N/A
show log commands The show log commands display log information for the switch.
show log file command The show log file command displays the log file created automatically by the system. The command syntax is: show log file [tail]
where tail displays the log file in reverse order, with the most recent information first. Figure 61 shows a sample log file display, where the tail option was entered to display the most recent information first. If the Passport 8000 Series switch has a real-time clock, the log file shows real time.
313194-A Rev 00
Chapter 4 General switch management
133
Figure 61 show log file tail command partial output Passport-8610# show [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:20:59] [09/05/00 16:20:59] [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:21:00] [09/05/00 16:20:59] REL3.1.0.0_B029 [09/05/00 16:20:59]
log file tail Card inserted: Slot=9 Type=8608SX Card inserted: Slot=7 Type=8648TX Card inserted: Slot=6 Type=8190SM Card inserted: Slot=5 Type=8190SM System Software Release REL3.1.0.0_B029 System boot Card inserted: Slot=9 Type=8608SX Card inserted: Slot=7 Type=8648TX Card inserted: Slot=6 Type=8190SM Card inserted: Slot=5 Type=8190SM Passport System Software Release System boot
show log level command The show log level command displays the level of information being entered in the log. The level ranges from information (INFO), where all messages are entered, to FATAL, where only fatal errors are recorded. The manufacturing (MFG) level is for manufacturing purposes only and not available for customer use. Figure 62 shows output from the show log level command. Figure 62 show log level command output Passport-8610# show log level Log Levels are: 0 = INFO 1 = WARNING 2 = ERROR 3 = MFG 4 = FATAL The Log Level is INFO
Managing the Passport 8000 Series Swtich Using the Command Line Interface Release 3.2
134
Chapter 4 General switch management
RMON commands The Remote Network Monitoring (RMON) MIB is an interface between the RMON agent on the Passport 8000 Series switch and an RMON management application, such as Device Manager. The RMON commands allow you to configure RMON functions and display the current settings.
config rmon commands The config rmon commands allow you to configure the RMON functions on the switch. The config rmon commands include the following options: config rmon
followed by: info
Indicates whether RMON is enabled or disabled on the switch.
alarm create type intv [variable ] [r_th ] [r_ev ] [f_th ] [f_ev ] [owner ]
Creates an alarm interface. • id is the interface index number (1 to 65535). • type is the sample type, absolute or delta. • intv is the sample interval (1 to 3600). • variable is the variable name or OID, case sensitive (string length 1 to 256). • r_th is the rising threshold (0 to 65535). • r_ev is the rising event number (0 to 65535). • f_th is the falling threshold (0 to 65535). • f_ev is the falling event number (0 to 65535). • owner is the name of the owner (string length 1 to 48).
alarm delete
Deletes the specified RMON alarm.
alarm info
Displays information about the RMON alarms.
disable
Disables RMON on the switch.
enable
Enables RMON on the switch.
313194-A Rev 00
Chapter 4 General switch management
135
config rmon
followed by: ether-stats create <ports> [owner ]
Creates an ether-stats control interface. • id is the index number of the ether stats control interface (0 to 65535). • ports is the single port interface {slot/port[-slot/ port][,...]}. • owner is name of the owner (string length 1 to 48).
ether-stats delete
Deletes an ether-stats control interface. id is the index number of the ether stats control interface (0 to 65535).
ether-stats info
Displays the current ether-stats settings.
ether-stats owner
Changes the owner name for the ether-stats control interface. • id is the index number of the ether stats control interface (0 to 65535). • name is name of the owner (string length 1 to 48).
event create trap_src trap_dest