Virtual Private Network service on 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
This chapter provides information about the Virtual Private Routed Network (VPRN) service and implementation notes on the 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C.
VPRN service overview
RFC2547bis is an extension to the original RFC 2547, which details a method of distributing routing information and forwarding data to provide a Layer 3 Virtual Private Network (VPN) service to end customers.
Each Virtual Private Routed Network (VPRN) consists of a set of customer sites connected to one or more PE routers. Each associated PE router maintains a separate IP forwarding table for each VPRN. Additionally, the PE routers exchange the routing information configured or learned from all customer sites via MP-BGP peering. Each route exchanged via the MP-BGP protocol includes a Route Distinguisher (RD), which identifies the VPRN association.
The service provider uses BGP to exchange the routes of a VPN among the PE routers that are attached to that VPN. This is done in a way which ensures that routes from different VPNs remain distinct and separate, even if two VPNs have an overlapping address space. The PE routers distribute routes from other CE routers in that VPN to the CE routers in a VPN. Because the CE routers do not peer with each other there is no overlay visible to the VPN's routing algorithm.
When BGP distributes a VPN route, it also distributes an MPLS label for that route. The label distributed with a VPN route depends on the configured label-mode of the VPRN that is originating the route. On 7210 SAS routers, only one method of label allocation mode is supported: label per VRF. That is, when 7210 allocates a label for a VPN route, it allocates a single label for all the VPN routes belonging to a single VRF. This does not restrict the label distribution method on the remote PE. The label distribution method configured on the remote PE must consider the scale of the PEs participating in the VPRN service.
Before a customer data packet travels across the service provider's backbone, it is encapsulated with the MPLS label that corresponds, in the customer's VPN, to the route which best matches the packet's destination address. The MPLS packet is further encapsulated with either another MPLS label header, so that it gets tunneled across the backbone to the correct PE router. Each route exchanged by the MP-BGP protocol includes a route distinguisher (RD), which identifies the VPRN association. Therefore, the backbone core routers do not need to know the VPN routes. Virtual Private Routed Network shows a VPRN network diagram example.
Routing prerequisites
RFC2547bis requires the following features:
multi-protocol extensions
extended BGP community support
BGP capability negotiation
parameters defined in RFC 2918
Tunneling protocol options are as follows:
Label Distribution Protocol (LDP)
MPLS RSVP-TE tunnels
BGP support
BGP is used with BGP extensions to distribute VPRN routing information across the service provider's network. BGP was initially designed to distribute IPv4 routing information. Therefore, multi-protocol extensions and the use of a VPN-IPv4 address were created to extend BGP's ability to carry overlapping routing information. A VPN-IPv4 address is a 12-byte value consisting of the 8-byte route distinguisher (RD) and the 4-byte IPv4 IP address prefix. The RD must be unique within the scope of the VPRN. This allows the IP address prefixes within different VRFs to overlap.
The 7210 SAS-K 2F6C4T and 7210 SAS-K 2F6C4T provide 6PE support in the base routing instance with BGP 3017 labeled routes to interconnect IPv6 networks over an IP/MPLS infrastructure.
Route distinguisher
The following figure shows the route distinguisher (RD), an 8-byte value consisting of 2 major fields, the Type field and value field. The type field determines how the value field should be interpreted. The 7210 SAS implementation supports the three (3) type values as defined in the Internet draft.
The three Type values are:
Type 0: Value Field - Administrator subfield (2 bytes)
Assigned number subfield (4 bytes)
The administrator field must contain an ASN (using private ASNs is discouraged). The Assigned field contains a number assigned by the service provider.
Type 1: Value Field - Administrator subfield (4 bytes)
Assigned number subfield (2 bytes)
The administrator field must contain an IP address (using private IP address space is discouraged). The Assigned field contains a number assigned by the service provider.
Type 2: Value Field - Administrator subfield (4 bytes)
Assigned number subfield (2 bytes)
The administrator field must contain a 4-byte ASN (using private ASNs is discouraged). The Assigned field contains a number assigned by the service provider.
Route reflector
Per RFC2547bis the use of Route Reflectors is supported in the service provider core. Multiple sets of route reflectors can be used for different types of BGP routes, including VPN-IPv4, and so on. The 7210 SAS-K 2F6C4T or 7210 SAS-K 3SFP+ 8C can only be configured a route reflector client. It cannot be used as a route reflector ‟server” in the network.
CE to PE route exchange
Routing information between the Customer Edge (CE) and Provider Edge (PE) can be exchanged by the following methods:
static routes (IPv4 and IPv6)
E-BGP (IPv4 and IPv6)
OSPFv2 (IPv4)
Each protocol provides controls to limit the number of routes learned from each CE router.
Route redistribution
Routing information learned from the CE-to-PE routing protocols and configured static routes should be injected in the associated local VPN routing/forwarding (VRF). In the case of dynamic routing protocols, there may be protocol specific route policies that modify or reject specific routes before they are injected into the local VRF.
Route redistribution from the local VRF to CE-to-PE routing protocols is to be controlled via the route policies in each routing protocol instance, in the same manner that is used by the base router instance.
The advertisement or redistribution of routing information from the local VRF to or from the MPBGP instance is specified per VRF and is controlled by VRF route target associations or by VRF route policies.
VPN-IP routes imported into a VPRN, have the protocol type bgp-vpn to denote that it is an VPRN route. This can be used within the route policy match criteria.
CPE connectivity check
Static routes are used within many IES and VPRN services. Unlike dynamic routing protocols, there is no way to change the state of routes based on availability information for the associated CPE. CPE connectivity check adds flexibility so that unavailable destinations will be removed from the VPRN routing tables dynamically and minimize wasted bandwidth.
The following figure shows static route connection information. Multiple hops to IP target shows multiple hop information.
The availability of the far-end static route is monitored through periodic polling. The polling period is configured. If the poll fails a specified number of sequential polls, the static route is marked as inactive.
Either ICMP ping or unicast ARP mechanism can be used to test the connectivity. ICMP ping is preferred.
If the connectivity check fails and the static route is deactivated, the 7210 SAS router will continue to send polls and reactivate any routes that are restored.
Constrained route distribution
This section describes constrained route distribution or RT constraint (RTC).
This feature is supported only on the 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C.
Constrained VPN route distribution based on route targets
The RTC is a mechanism allows a router to advertise route target membership information to its BGP peers to indicate interest in receiving only VPN routes tagged with specific route target extended communities. After receiving this information, peers restrict the advertised VPN routes to only those requested, which minimizes the control plane load in terms of protocol traffic and possibly routing information base (RIB) memory.
MP-BGP carries the route target membership information, using an address family identifier (AFI) value of 1 and subsequent address family identifier (SAFI) value of 132. For two routers to exchange RT membership network layer reachability information (NLRI), they must advertise the corresponding AFI/SAFI to each other during capability negotiation. MP-BGP allows RT membership NLRI to be propagated, loop-free, within an AS and between ASs using well-known BGP route selection and advertisement rules.
Outbound route filtering (ORF) can also be used for RT-based route filtering, but ORF messages have a limited scope of distribution (to direct peers or neighbors), and, therefore, do not automatically create pruned inter-cluster and inter-AS route distribution trees.
Configuring the route target address family
RTC is supported only by the base router BGP instance. When the family command at the bgp, group or neighbor CLI context includes the route-target keyword, the RTC capability is negotiated with the associated set of eBGP and iBGP peers.
ORF is mutually exclusive with RTC on a specific BGP session. The CLI will not attempt to block this configuration, but if both capabilities are enabled on a session, the ORF capability is not included in the OPEN message sent to the peer.
Originating RT constraint routes
When the base router has one or more RTC peers (BGP peers with which the RTC capability has been successfully negotiated), one RTC route is created for each RT extended community imported into a locally-configured Layer-2 VPN or Layer-3 VPN service. These imported route targets are configured, for example, in the following contexts:
config>service>vpls>bgp
config>service>vprn
See the 7210 SAS-K 2F6C4T, K 3SFP+ 8C Routing Protocols Guide for more information about BGP address families that support RTC.
By default, these RTC routes are automatically advertised to all RTC peers, without the need for an export policy to explicitly accept them. Each RTC route has a prefix, prefix length, and path attributes. The prefix value is the concatenation of the origin AS (a 4-byte value representing the 2- or 4-octet AS of the originating router, as configured using the configure router autonomous-system command) and 0 or 16 to 64 bits of a route target extended community encoded in one of the following formats: 2-octet AS specific extended community, IPv4 address specific extended community, or 4-octet AS specific extended community.
A router may be configured to send the default RTC route to any RTC peer using the new default-route-target group or neighbor CLI command. The default RTC route is a special type of RTC route that has zero prefix length. Sending the default RTC route to a peer conveys a request to receive all VPN routes (regardless of route target extended community) from that peer. The default RTC route is typically advertised by a route reflector to its clients. The advertisement of the default RTC route to a peer does not suppress other, more specific, RTC routes from being sent to that peer.
Receiving and re-advertising RT constraint routes
All received RTC routes that are deemed valid are stored in the RIB-IN. An RTC route is considered invalid and treated as withdrawn if any of the following conditions apply:
The prefix length is 1 to 31.
The prefix length is 33 to 47.
The prefix length is 48 to 96 and the 16 most-significant bits are not 0x0002, 0x0102, or 0x0202.
If multiple RTC routes are received for the same prefix value, standard BGP best path selection procedures are used to determine the best of these routes.
The best RTC route per prefix is re-advertised to RTC peers based on the following rules:
The best path for a default RTC route (prefix length 0, origin AS only with prefix length 32, or origin AS plus 16 bits of an RT type with prefix length 48) is never propagated to another peer.
A PE with only iBGP RTC peers that is neither a route reflector nor an AS boundary router (ASBR) does not re-advertise the best RTC route to any RTC peer because of standard iBGP split horizon rules.
A route reflector that receives its best RTC route for a prefix from a client peer re-advertises that route (subject to export policies) to all of its client and non-client iBGP peers (including the originator), per standard RR operation. When the route is re-advertised to client peers, the RR sets the ORIGINATOR_ID to its own router ID and modifies the NEXT_HOP to be its local address for the sessions (for example, system IP).
A route reflector that receives its best RTC route for a prefix from a non-client peer re-advertises that route (subject to export policies) to all of its client peers, per standard RR operation. If the RR has a non-best path for the prefix from any of its clients, it advertises the best of the client-advertised paths to all non-client peers.
An ASBR that is neither a PE nor a route reflector that receives its best RTC route for a prefix from an iBGP peer re-advertises that route (subject to export policies) to its eBGP peers. It modifies the NEXT_HOP and AS_PATH of the re-advertised route per standard BGP rules. The aggregation of RTC routes is not supported.
An ASBR that is neither a PE nor a route reflector that receives its best RTC route for a prefix from an eBGP peer re-advertises that route (subject to export policies) to its eBGP and iBGP peers. When re-advertised routes are sent to eBGP peers, the ASBR modifies the NEXT_HOP and AS_PATH per standard BGP rules. The aggregation of RTC routes is not supported.
These advertisement rules do not handle hierarchical RR topologies properly. This is a limitation of the current RT constraint standard.
Using RT constraint routes
In general (ignoring iBGP-to-iBGP rules, add-path, best-external, and so on), the best VPN route for every prefix/NLRI in the RIB is sent to every peer supporting the VPN address family, but export policies may be used to prevent the advertisement of some prefix/NLRIs to specific peers. These export policies may be configured statically or created dynamically based on use of ORF or RTC with a peer. ORF and RTC are mutually exclusive on a session.
When RTC is configured on a session that also supports VPN address families using route targets (vpn-ipv4, vpn-ipv6, and so on), the advertisement of the VPN routes is affected as follows:
When the session comes up, the advertisement of the VPN routes is delayed briefly to allow RTC routes to be received from the peer.
After the initial delay, the received RTC routes are analyzed and acted upon. If S1 is the set of routes previously advertised to the peer and S2 is the set of routes that should be advertised based on the most recent received RTC routes, the following applies:
The set of routes in S1 but not in S2 should be withdrawn immediately (subject to the minimum route advertisement interval (MRAI)).
The set of routes in S2 but not in S1 should be advertised immediately (subject to MRAI).
If a default RTC route is received from a peer P1, the VPN routes that are advertised to P1 are the set that:
are eligible for advertisement to P1 per BGP route advertisement rules
have not been rejected by manually configured export policies
have not been advertised to the peer
Note:This applies whether P1 advertised the best route for the default RTC prefix.
In this context, a default RTC route is any of the following:
a route with NLRI length = zero
a route with NLRI value = origin AS and NLRI length = 32
a route with NLRI value = {origin AS+0x0002 | origin AS+0x0102 | origin AS+0x0202} and NLRI length = 48
If an RTC route for prefix A (origin-AS = A1, RT = A2/n, n > 48) is received from an iBGP peer I1 in autonomous system A1, the VPN routes that are advertised to I1 is the set that:
are eligible for advertisement to I1 per BGP route advertisement rules
have not been rejected by manually configured export policies
carry at least one route target extended community with value A2 in the n most significant bits
have not been advertised to the peer
Note:This applies whether I1 advertised the best route for A.
If the best RTC route for a prefix A (origin-AS = A1, RT = A2/n, n > 48) is received from an IBGP peer I1 in autonomous system B, the VPN routes that are advertised to I1 is the set that:
are eligible for advertisement to I1 per BGP route advertisement rules
have not been rejected by manually configured export policies
carry at least one route target extended community with value A2 in the n most significant bits
have not been advertised to the peer
Note:This applies only if I1 advertised the best route for A.
If the best RTC route for a prefix A (origin-AS = A1, RT = A2/n, n > 48) is received from an eBGP peer E1, the VPN routes that are advertised to E1 is the set that:
are eligible for advertisement to E1 per BGP route advertisement rules
have not been rejected by manually configured export policies
carry at least one route target extended community with value A2 in the n most significant bits
have not been advertised to the peer
Note:This applies only if E1 advertised the best route for A.
VPRN features
This section describes various VPRN features and any special capabilities or considerations as they relate to VPRN services.
IP interfaces
VPRN customer IP interfaces can be configured with most of the same options found on the core IP interfaces.
The advanced configuration options supported are:
ICMP and ICMP6 options
VRRP - for VPRN services with more than one IPv4 interface
SAPs
The following sections describe SAP functionality on VPRN services.
IPv6 support for VPRN IP interfaces (6VPE) in network mode
VPRN IPv6 (6VPE) access interfaces can be configured to provide IPv6 VPN connectivity to customers.
IPv4 and IPv6 route table lookup entries are shared. Before adding routes for IPv6 destinations, route entries in the routed lookup table need to be allocated for IPv6 addresses. This is done using the CLI command config> system> resource-profile> router> maxipv6- routes. This command allocates route entries for /64 IPv6 prefix route lookups. The system does not allocate any IPv6 route entries by default; the user needs to allocate resources before using IPv6. For the command to take effect the node must be rebooted after making the change.
A separate route table (or a block in the route table) is used for IPv6 /128-bit prefix route lookup. A limited amount of IPv6 /128 prefixes route lookup entries is supported. The software enables lookups in this table by default (that is, no user configuration is required to enable Ipv6 /128-bit route lookup). A limited amount of IPv6 /128 prefixes route lookup entries is supported.
The number of IP subnets can be configured using the command configure> system>resource-profile>router>max-ip-subnets. Default are assigned to this parameter. Users can increase the number of subnets if they plan to more IPv6 addresses per IPv6 interface.
Encapsulations
The following SAP encapsulations are supported on the 7210 SAS VPRN service:
Ethernet null
Ethernet dot1q
QinQ
LAG
QoS policies for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
When applied to a VPRN SAP, service ingress and service egress QoS policies create the unicast and multicast queues defined in the policy (as multicast is not supported in VPRN service). Note that both Layer 2 (dot1p only) or Layer-3 criteria can be used in the QoS policies for traffic classification in an VPRN.
Filter policies
Ingress and egress IPv4 and IPv6 filter policies can be applied to VPRN SAPs.
CPU QoS for VPRN interfaces
Traffic bound to the CPU that is received on VPRN access interfaces is policed/rate-limited and is added to the CPU queues. The software allocates a policer per IP application, or a set of IP applications, for rate-limiting CPU bound IP traffic from all VPRN SAPs. The policer CIR/PIR values are set to appropriate values based on feature scaling. CIR/PIR values are not user configurable. The policers are shared by the IP application/set of IP applications traffic received on all access SAPs across all services. Queues for CPU bound IP traffic from all VPRN SAPs are software allocated. The queues are either shared by a set of IP applications or allocated to a single IP application across all services and routing instances. The queues are shaped to an appropriate rate based on feature scaling. The shaper rate is not user configurable. The queues and shaper rate are shared by traffic of the IP application/set of IP applications received on all access SAPs. The queue instances and policers used for traffic received on network port IP interfaces are different for traffic received from access port IP interfaces. Also, the network CPU queues are given higher priority than the access CPU queues. This provides better security and mitigates the risk of access traffic affecting the network side.
The instance of queues and policers used for traffic received on network port IP interfaces is different from the ones used for traffic received from access port IP interfaces. Additionally, the network CPU queues are prioritized over access CPU queues to provide better security and mitigate the risk of access traffic affecting the network side.
On the 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C, the IP DSCP value for self-generated traffic is user-configurable.
On the 7210 SAS-D and 7210 SAS-K 2F1C2T, IP DSCP marking of self-generated traffic is not user-configurable and is assigned by the software.
CE to PE routing protocols
The 7210 SAS VPRN supports the following PE to CE routing protocols:
eBGP (IPv4 and IPv6)
Static (IPv4 and IPv6)
OSPFv2 (IPv4)
PE to PE tunneling mechanisms
The 7210 SAS supports multiple mechanisms to provide transport tunnels for the forwarding of traffic between PE routers within the 2547bis network. The 7210 SAS VPRN implementation supports the use of:
RSVP-TE protocol to create tunnel LSP's between PE routers
LDP protocol to create tunnel LSP's between PE routers
These transport tunnel mechanisms provide the flexibility of using dynamically created LSPs where the service tunnels are automatically bound (the ‟auto-bind” feature) and the ability to provide certain VPN services with their own transport tunnels by explicitly binding SDPs if desired. When the auto-bind is used, all services traverse the same LSPs and do not allow alternate tunneling mechanisms or the ability to craft sets of LSP's with bandwidth reservations for specific customers as is available with explicit SDPs for the service.
Per VRF route limiting
The 7210 SAS allows setting the maximum number of routes that can be accepted in the VRF for a VPRN service. There are options to specify a percentage threshold at which to generate an event that the VRF table is near full and an option to disable additional route learning when full or only generate an event.
Spoke-SDP termination
Spoke-SDP termination into a Layer 3 service is not supported on 7210 SAS platforms. On the 7210 SAS-K 2F6C4T, spoke-SDP termination is supported on a routed VPLS that is associated with a VPRN service. All commands supported in the config>service>vpls>spoke-sdp context are supported on a routed VPLS. See VPLS spoke-SDP commands for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C for information about the spoke-sdp command.
Using OSPF in IP-VPNs
OSPFv2 as PE-CE routing protocol is supported for IPv4 VPNs. OSPFv3 is not supported as a PE-CE routing protocol.
Using OSPF as a CE to PE routing protocol allows OSPF that is currently running as the IGP routing protocol to migrate to an IP-VPN backbone without changing the IGP routing protocol, introducing BGP as the CE-PE or relying on static routes for the distribution of routes into the service providers IP-VPN. The following features are supported:
Advertisement/redistribution of BGP-VPN routes as summary (type 3) LSAs flooded to CE neighbors of the VPRN OSPF instance. This occurs if the OSPF route type (in the OSPF route type BGP extended community attribute carried with the VPN route) is not external (or NSSA) and the locally configured domain-id matches the domain-id carried in the OSPF domain ID BGP extended community attribute carried with the VPN route.
OSPF sham links. A sham link is a logical PE-to-PE unnumbered point-to-point interface that essentially rides over the PE-to-PE transport tunnel. A sham link can be associated with any area and can therefore appear as an intra-area link to CE routers attached to different PEs in the VPN.
Service label mode of a VPRN
The 7210 SAS allocates one unique (platform-wide) service label per VRF. All VPN-IP routes exported by the PE from a particular VPRN service with that configuration have the same service label. When the PE receives a terminating MPLS packet, the service label value determines the VRF to which the packet belongs. A lookup of the IP packet DA in the forwarding table of the selected VRF determines the next-hop interface.
Inter-AS VPRNs
Inter-AS IP-VPN services have been driven by the popularity of IP services and service provider expansion beyond the borders of a single Autonomous System (AS) or the requirement for IP VPN services to cross the AS boundaries of multiple providers. Three options for supporting inter-AS IP-VPNs are described in RFC 4364, BGP/MPLS IP Virtual Private Networks (VPNs).
The 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C platforms support only option-A and option-C. They do not support option-B. It is described as follows only for the sake of completeness.
The first option, referred to as Option-A (Inter-AS option-A: VRF-to-VRF model), is considered inherent in any implementation. This method uses a back-to-back connection between separate VPRN instances in each AS. Therefore, each VPRN instance views the inter-AS connection as an external interface to a remote VPRN customer site. The back-to-back VRF connections between the ASBR nodes require individual sub-interfaces, one per VRF.
The second option, referred to as Option-B (Inter-AS option-B), relies heavily on the AS Boundary Routers (ASBRs) as the interface between the autonomous systems. This approach enhances the scalability of the eBGP VRF-to-VRF solution by eliminating the need for per-VPRN configuration on the ASBRs. However, it requires that the ASBRs provide a control plan and forwarding plane connection between the autonomous systems. The ASBRs are connected to the PE nodes in its local autonomous system using iBGP either directly or through route reflectors. This means the ASBRs receive all the VPRN information and will forward these VPRN updates, VPN-IPv4, to all its EBGP peers, ASBRs, using itself as the next-hop. It also changes the label associated with the route. This means the ASBRs must maintain an associate mapping of labels received and labels issued for those routes. The peer ASBRs will in turn forward those updates to all local IBGP peers,
This form of inter-AS VPRNs does not require instances of the VPRN to be created on the ASBR, as in option-A, therefore there is less management overhead. This is also the most common form of Inter-AS VPRNs used between different service providers as all routes advertised between autonomous systems can be controlled by route policies on the ASBRs.
The third option, referred to as Option-C (Option C example), allows for a higher scale of VPRNs across AS boundaries but also expands the trust model between ASNs. Therefore, this model is typically used within a single company that may have multiple ASNs for various reasons.
This model differs from Option-B, in that in Option-B all direct knowledge of the remote AS is contained and limited to the ASBR. Therefore, in option-B the ASBR performs all necessary mapping functions and the PE routers do not need perform any additional functions then in a non-Inter-AS VPRN.
With Option-C, knowledge from the remote AS is distributed throughout the local AS. This distribution allows for higher scalability but also requires all PEs and ASBRs involved in the Inter-AS VPRNs to participate in the exchange of inter-AS routing information. In Option-C, the ASBRs distribute reachability information for remote PE's system IP addresses only. This is done between the ASBRs by exchanging MP-eBGP labeled routes, using RFC 3107, Carrying Label Information in BGP-4.
The 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C do not play the role of option-C ASBR.
Distribution of VPRN routing information is handled by either direct MP-BGP peering between PEs in the different ASNs or more likely by one or more route reflectors in ASN.
VRRP support for VPRN IP interfaces in network mode
Virtual Router Redundancy Protocol (VRRP) for IPv4 is defined in IETF RFC 3768, Virtual Router Redundancy Protocol. VRRP describes a method of implementing a redundant IP interface shared between two or more routers on a common LAN segment, allowing a group of routers to function as one virtual router. When this IP interface is specified as a default gateway on hosts directly attached to this LAN, the routers sharing the IP interface prevent a single point of failure by limiting access to this gateway address. For more information about the use of VRRP, see the 7210 SAS-D, Dxp, K 2F1C2T, K 2F6C4T, K 3SFP+ 8C Router Configuration Guide.
VRRP is supported for VRRP IPv4 interfaces. It is not supported for IPv6 interfaces in network or access-uplink mode.
Only one VRRP instance for each IP interface is supported on the 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C.
Configuring a VPRN service with CLI
This section provides information to configure Virtual Private Routed Network (VPRN) services using the command line interface.
Basic configuration
The following fields require specific input (there are no defaults) to configure a basic VPRN service:
customer ID (see Configuring customer accounts)
specify interface parameters
The following is a sample configuration output of a VPRN service.
*A:K-SASK12>config>service>vprn$ info detail
----------------------------------------------
shutdown
no description
dhcp
exit
dhcp6
exit
no router-id
no maximum-routes
snmp
no access
exit
log
exit
no mc-maximum-routes
no autonomous-system
no route-distinguisher
auto-bind-tunnel
resolution-filter
no ldp
no rsvp
exit
resolution disabled
exit
no enable-bgp-vpn-backup
no vrf-target
no static-route-hold-down
no ptp
mvpn
provider-tunnel
exit
no vrf-target
exit
radius-proxy
exit
radius-server
exit
no allow-export-bgp-vpn
twamp-light
exit
network
ingress
no filter
no qos
exit
exit
no vsd-domain
----------------------------------------------
*A:K-SASK12>config>service>vprn$
Common configuration tasks
This section provides a brief overview of the tasks that must be performed to configure a VPRN service and provides the CLI commands:
Associate a VPRN service with a customer ID.
Define an autonomous system (optional).
Define a route distinguisher (mandatory).
Define VRF route-target associations or VRF import/export policies.
Create an interface.
Define SAP parameters on the interface:
Select nodes and ports.
Optional - select QoS policies other than the default (configured in config>qos context)
Optional - select filter policies (configured in config>filter context)
Optional - select accounting policy (configured in config>log context)
Define BGP parameters (optional):
BGP must be enabled in the config>router>bgp context.
Enable the service.
Configuring VPRN components
Creating a VPRN service
Use the following syntax to create a VRPN service. A route distinguisher must be defined for VPRN to be operationally active.
config>service# vprn service-id [customer customer-id]
route-distinguisher [ip-address:number1 | asn:number2]
description description-string
no shutdown
The following is a sample VPRN service configuration output.
*A:ALA-1>config>service# info
----------------------------------------------
...
vprn 1 customer 1 create
route-distinguisher 10001:0
no shutdown
exit
...
----------------------------------------------
*A:ALA-1>config>service>vprn#
Configuring global VPRN parameters
See VPRN services command reference for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C for CLI syntax to configure VPRN parameters.
The following is a sample VPRN service with configured parameters.
*A:ALA-1>config>service# info
----------------------------------------------
...
vprn 1 customer 1 create
exit
no enable-bgp-vpn-backup
no vrf-target
no static-route-hold-down
no ptp
mvpn
provider-tunnel
exit
no vrf-target
exit
exit
...
----------------------------------------------
*A:ALA-1>config>service#
Configuring router interfaces
See the 7210 SAS OS Router Configuration Guide for command descriptions and syntax information to configure router interfaces.
The following is a sample router interface configuration output.
*A:K-SASK12>config>router# info
----------------------------------------------
#--------------------------------------------------
echo "IP Configuration"
#--------------------------------------------------
interface "system"
no shutdown
exit
#--------------------------------------------------
#
Configuring VPRN protocols - BGP
The ASN and router ID configured in the VPRN context only applies to that particular service.
The minimal parameters that should be configured for a VPRN BGP instance are:
Specify an autonomous system number for the router. See Configuring global VPRN parameters.
Specify a router ID.
Note that if a new or different router ID value is entered in the BGP context, then the new values takes precedence and overwrites the VPRN-level router ID.
See Configuring global VPRN parameters:
Specify a VPRN BGP peer group.
Specify a VPRN BGP neighbor with which to peer.
Specify a VPRN BGP peer-AS that is associated with the preceding peer.
VPRN BGP is administratively enabled upon creation. Minimally, to enable VPRN BGP in a VPRN instance, you must associate an autonomous system number and router ID for the VPRN service, create a peer group, neighbor, and associate a peer ASN. There are no default VPRN BGP groups or neighbors. Each VPRN BGP group and neighbor must be explicitly configured.
All parameters configured for VPRN BGP are applied to the group and are inherited by each peer, but a group parameter can be overridden on a specific basis. VPRN BGP command hierarchy consists of three levels:
the global level
the group level
the neighbor level
config>service>vprn>bgp# (global level)
group (group level)
neighbor (neighbor level)
Note that the local-address must be explicitly configured if two systems have multiple BGP peer sessions between them for the session to be established.
For more information about the BGP protocol, see the 7210 SAS OS Router configuration Guide.
Configuring VPRN BGP group and neighbor parameters
A group is a collection of related VPRN BGP peers. The group name should be a descriptive name for the group. Follow your group, name, and ID naming conventions for consistency and to help when troubleshooting faults.
All parameters configured for a peer group are applied to the group and are inherited by each peer (neighbor), but a group parameter can be overridden on a specific neighbor-level basis.
After a group name is created and options are configured, neighbors can be added within the same autonomous system to create IBGP connections or neighbors in different autonomous systems to create EBGP peers. All parameters configured for the peer group level are applied to each neighbor, but a group parameter can be overridden on a specific neighbor basis.
Use the CLI syntax to configure VPRN BGP parameters (BGP Configuration Commands on page 691).
The following is a sample VPRN BGP configuration output.
*A:K-SASK12>config>service>vprn>bgp$ info detail
----------------------------------------------
no description
no authentication-key
no connect-retry
no keepalive
no hold-time
no damping
no local-preference
no loop-detect
no min-route-advertisement
no aggregator-id-zero
no preference
no remove-private
no multihop
no med-out
no cluster
no disable-4byte-asn
no import
no export
no local-as
no path-mtu-discovery
no router-id
no disable-fast-external-failover
no disable-communities
no advertise-inactive
no enable-peer-tracking
no auth-keychain
no rapid-withdrawal
no split-horizon
no backup-path
best-path-selection
no always-compare-med
no deterministic-med
no as-path-ignore
no ignore-nh-metric
no ignore-router-id
exit
next-hop-resolution
no policy
exit
no peer-tracking-policy
error-handling
no update-fault-tolerance
exit
no damp-peer-oscillations
rib-management
ipv4
no leak-import
exit exit
exit
no shutdown
----------------------------------------------
*A:K-SASK12>config>service>vprn>bgp$
Configuring a VPRN interface
Interface names associate an IP address to the interface, and then associate the IP interface with a physical port. The logical interface can associate attributes like an IP address, port, Link Aggregation Group (LAG) or the system.
There are no default interfaces.
Note that you can configure a VPRN interface as a loop-back interface by issuing the loop-back command instead of the sap sap-id command. The loop-back flag cannot be set on an interface where a SAP is already defined and a SAP cannot be defined on a loop-back interface.
The following is a sample VPRN interface configuration output.
*A:K-SASK12>config>service>vprn>if$ info detail
----------------------------------------------
no description
no enable-ingress-stats
no enable-mac-accounting
no tcp-mss
cpu-protection 254
no address
no mac
arp-timeout 14400
arp-retry-timer 50
no arp-limit
no allow-directed-broadcasts
icmp
mask-reply
redirects 100 10
unreachables 100 10
ttl-expired 100 10
exit
dhcp
shutdown
no description
no option
no server
no trusted
no relay-proxy
no gi-address
no relay-plain-bootp
exit
no authentication-policy
no ip-mtu
no delayed-enable
no bfd
no local-dhcp-server
no proxy-arp-policy
no local-proxy-arp
no remote-proxy-arp
no ptp-hw-assist
no qos-route-lookup
load-balancing
no teid-load-balancing
no egr-ip-load-balancing
no spi-load-balancing
exit
no vas-if-type
no shutdown
----------------------------------------------
*A:K-SASK12>config>service>vprn>if$
Configuring a VPRN interface SAP
A SAP is a combination of a port and encapsulation parameters which identifies the service access point on the interface and within the 7210 SAS. Each SAP must be unique within a router. A SAP cannot be defined if the interface loop-back command is enabled.
When configuring VPRN interface SAP parameters, a default QoS policy is applied to each ingress and egress SAP. Additional QoS policies and scheduler policies must be configured in the config>qos context. Filter policies are configured in the config>filter context and must be explicitly applied to a SAP. There are no default filter policies.
The following is a sample VPRN interface SAP configuration output.
exit
vprn 1435 customer 1 create
shutdown
interface "test" create
exit
bgp
no shutdown
exit
ospf
no shutdown
exit
exit
----------------------------------------------
*A:K-SASK12>config>service#
Configuring VRRP
Configuring VRRP parameters on a VPRN interface is optional. VRRP can be configured in either owner or non-owner mode. The owner is the VRRP router whose virtual router IP address is the same as the real interface IP address. This is the router that responds to packets addressed to one of the IP addresses for ICMP pings, TCP connections, and related addresses. All other virtual router instances participating in this message domain should have the same VRID configured and cannot be configured as an owner.
The following is a sample VRRP interface VRRP owner configuration output.
A:K-SASK12>config>service>vprn>if$ info
#----------------------------------------------
...
interface ‟vrrpowner”
address 10.10.10.23/24
vrrp 1 owner
backup 10.10.10.23
authentication-key "vh48lOV7Hs2H6lrMHg2aMJJnZStHwwyO" hash2
exit
exit
...
#----------------------------------------------
config>service>vrrp#
Configuring IPv6 parameters for VPRN BGP
Use the following syntax to configure IPv6 parameters for VPRN BGP.
config>service# vprn service-id [customer customer-id]
bgp
family ipv6
group name
family ipv6
neighbor ipv6-address
family ipv6
A:SAS>config>service# vprn 20
A:SAS>config>service>vprn$ bgp
A:SAS>config>service>vprn>bgp$ family ipv6
A:SAS>config>service>vprn>bgp>family$ group BGP1
A:SAS>config>service>vprn>bgp>family>group$ family ipv6
A:SAS>config>service>vprn>bgp>family>group>family$ neighbor 2001:db8:a0b:12f0::1
A:SAS>config>service>vprn>bgp>family>group>family> neighbor$ family ipv6
A:SAS>config>service>vprn>bgp>family>group>family> neighbor$ exit
A:SAS>config>service>vprn>bgp>family>group>family$ exit
A:SAS>config>service>vprn>bgp>family>group$ exit
A:SAS>config>service>vprn>bgp>family$ exit
A:SAS>config>service>vprn>bgp$ exit
Configuring VPRN IPv6 neighbor discovery parameters
Use the following syntax to configure IPv6 neighbor discovery parameters for a VPRN service.
config>service# vprn service-id [customer customer-id]
ipv6
reachable-time seconds
stale-time seconds
A:SAS>config>service# vprn 20
A:SAS>config>service>vprn$ ipv6
A:SAS>config>service>vprn>ipv6# reachable-time 30
A:SAS>config>service>vprn>ipv6# stale-time 14400
A:SAS>config>service>vprn>ipv6# exit
A:SAS>config>service>vprn# exit
Configuring OSPF for VPRN
Use the following syntax to configure OSPF in the VPRN context.
config>service>vprn>ospf#
See OSPF configuration commands for the CLI syntax to configure VPRN OSPF parameters.
The following is a sample VPRN OSPF configuration output.
*A:K-SASK12>config>service# info
----------------------------------------------
vprn 2 customer 1 create
interface "ospf_interface" create
exit
ospf
area 0.0.0.0
interface ‟ospf_interface”
no shutdown
exit
exit
exit
----------------------------------------------
*A:K-SASK12>service#
----------------------------------------------
Service management tasks
This section describes the service management tasks.
Modifying VPRN service parameters
Use the syntax to modify VPRN parameters (VPRN services command reference for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C).
The following is a sample VPRN service creation output.
vprn 2 customer 1 create
shutdown
no description
dhcp
exit
dhcp6
exit
no router-id
no maximum-routes
no maximum-ipv6-routes
snmp
no access
exit
log
exit
no mc-maximum-routes
no autonomous-system
no route-distinguisher
auto-bind-tunnel
resolution-filter
no ldp
no rsvp
exit
resolution disabled
exit
no enable-bgp-vpn-backup
no vrf-target
interface "test" create
no description
no enable-ingress-stats
no enable-mac-accounting
no tcp-mss
cpu-protection 254
no address
no mac
arp-timeout 14400
arp-retry-timer 50
no arp-limit
no allow-directed-broadcasts
icmp
mask-reply
redirects 100 10
unreachables 100 10
ttl-expired 100 10
exit
dhcp
shutdown
no description
no option
no server
no trusted
no relay-proxy
no gi-address
no relay-plain-bootp
exit
Deleting a VPRN service
An VPRN service cannot be deleted until SAPs and interfaces are shut down and deleted. If protocols or a spoke-SDP are defined, they must be shut down and removed from the configuration as well.
Use the following syntax to delete a VPRN service.
config>service#
[no] vprn service-id [customer customer-id]
shutdown
[no] interface ip-int-name
shutdown
[no] sap sap-id]
[no] bgp
shutdown
[no] spoke-sdp sdp-id
[no] shutdown
Disabling a VPRN service
Use the following syntax to shut down a VPRN service without deleting any service parameters.
config>service#
vprn service-id [customer customer-id]
shutdown
config>service# vprn 1
config>service>vprn# shutdown
config>service>vprn# exit
vprn 2 customer 1 create
shutdown
no description
dhcp
exit
dhcp6
exit
no router-id
no maximum-routes
no maximum-ipv6-routes
snmp
no access
exit
log
exit
no mc-maximum-routes
no autonomous-system
no route-distinguisher
auto-bind-tunnel
resolution-filter
no ldp
no rsvp
exit
resolution disabled
exit
no enable-bgp-vpn-backup
no vrf-target
interface "test" create
no description
no enable-ingress-stats
no enable-mac-accounting
no tcp-mss
cpu-protection 254
no address
no mac
arp-timeout 14400
arp-retry-timer 50
no arp-limit
no allow-directed-broadcasts
icmp
mask-reply
redirects 100 10
unreachables 100 10
ttl-expired 100 10
exit
dhcp
shutdown
no description
no option
no server
no trusted
no relay-proxy
no gi-address
no relay-plain-bootp
exit
#
Re-enabling a VPRN service
Use the following syntax to re-enable a VPRN service that was shut down.
config>service#
vprn service-id [customer customer-id]
no shutdown
VPRN services command reference for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Command hierarchies
VPRN service configuration commands
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- aggregate ip-prefix /ip-prefix-length [summary-only] [as-set] [aggregator as-number: ip-address]
- no aggregate ip-prefix/ ip-prefix-length
- auto-bind-tunnel
- resolution {any | filter | disabled}
- resolution-filter
- [no] ldp
- [no] rsvp
- [no] sr-isis
- [no] sr-ospf
- description description-string
- no description
- ecmp max-ecmp-routes
- no ecmp
- [no] ignore-nh-metric
- maximum-ipv6-routes number [log-only] [threshold percent]
- no maximum-ipv6-routes
- maximum-routes number [log-only] [threshold percent]
- no maximum-routes
- route-distinguisher [ip-address:number1 | asn:number2]
- no route-distinguisher
- router-id ip-address
- no router-id
- [no] shutdown
- snmp
- community community community-name [hash | hash2] [access-permissions] [version SNMP-version]
- no community community-name
- source-address
- application app [ip-int-name | ip-address]
- no application app
- [no] spoke-sdp sdp-id
- [no] description description string
- [no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] {next-hop ip-int-name | ip-address | {cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]}] {prefix-list prefix-list-name [all | none]}]
- [no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] indirect ip-address [cpe-check cpe-ip-address [interval seconds][drop-count count] [log]] {prefix-list prefix-list-name [all | none]}]
- [no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] black-hole {prefix-list prefix-list-name [all | none]}]
- [no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference][metric metric] [tag tag] [enable | disable] next-hop ip-int-name | ip-address [bfd-enable | {cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]}|{prefix-list prefix-list-name [all|none]}]][description description]
- vrf-export policy-name [policy-name...(up to 5 max)]
- no vrf-export
- vrf-import policy-name [policy-name...(up to 5 max)]
- no vrf-import
- vrf-target {ext-community | export ext-community | import ext-community}
- no vrf-target
- [no] shutdown
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- sgt-qos
- application dscp-app-name dscp {dscp-value | dscp-name}
- application dot1p-app-name dot1p dot1p-priority
- no application {dscp-app-name | dot1p-app-name}
- dscp dscp-name fc fc-name
- no dscp dscp-name
See the 7210 SAS-K 2F1C2T, K 2F6C4T, K 3SFP+ 8C Quality of Service Guide, section ‟Self-generated Traffic commands for 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C” for descriptions of the config>service>vprn>sgt-qos commands.
DHCP server commands
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- dhcp
- local-dhcp-server server-name [create]
- no local-dhcp-server server-name
- description description-string
- no description
- [no] force-renews
- pool pool-name [create]
- no pool pool-name
- description description-string
- no description
- max-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
- no max-lease-time
- min-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
- no min-lease-time
- minimum-free minimum-free [percent] [event-when-depleted]
- no minimum-free
- [no] nak-non-matching-subnet
- offer-time [min minutes] [sec seconds]
- no offer-time
- options
- custom-option option-number address [ip-address...(up to 4 max)]
- custom-option option-number hex hex-string
- custom-option option-number string ascii-string
- no custom-option option-number
- dns-server [ip-address...(up to 4 max)]
- domain-name domain-name
- no domain-name
- lease-rebind-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-rebind-time
- lease-renew-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-renew-time
- lease-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-time
- subnet {ip-address/mask|ip-address netmask} [create]
- no subnet {ip-address/mask|ip-address netmask}
- [no] address-range start-ip-address end-ip-address
- [no] exclude-addresses start-ip-address [end-ip-address]
- maximum-declined maximum-declined
- no maximum-declined
- minimum-free minimum-free
- no minimum-free
- options
- custom-option option-number address [ip-address...(up to 4 max)]
- custom-option option-number hex hex-string
- custom-option option-number string ascii-string
- no custom-option option-number
- default-router ip-address [ip-address...(up to 4 max)]
- no default-router
- subnet-mask ip-address
- no subnet-mask
- [no] use-gi-address
- user-db local-user-db-name
- no user-db
IPoE commands
config
- subscriber-mgmt
- local-user-db local-user-db-name [create]
- no local-user-db local-user-db-name
- description description-string
- no description
- ipoe
- host host-name [create]
- no host host-name
- address gi-address [scope scope]
- address ip-address
- address pool pool-name [secondary-pool sec-pool-name] [delimiter delimiter]
- address use-pool-from-client [delimiter delimiter]
- no address
- gi-address ip-address
- no gi-address
- host-identification
- circuit-id string ascii-string
- circuit-id hex hex-string
- no circuit-id
- encap-tag-range start-tag start-tag end-tag end-tag
- no encap-tag-range
- mac ieee-address
- no mac
- option60 hex-string
- no option60
- remote-id hex hex-string
- remote-id string ascii-string
- no remote-id
- sap-id sap-id
- no sap-id
- service-id service-id
- no service-id
- string string
- no string
- system-id system-id
- no system-id
- shutdown
- no shutdown
- options
- custom-option option-number address [ip-address...(up to 4 max)]
- custom-option option-number hex hex-string
- custom-option option-number string ascii-string
- no custom-option option-number
- default-router ip-address [ip-address (up to 4 max)]
- no default-router
- dns-server ip-address [ip-address...(up to 4 max)]
- no dns-server
- domain-name domain-name
- no domain-name
- lease-rebind-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-rebind-time
- lease-renew-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-renew-time
- lease-time [days days] [hrs hours] [min minutes] [sec seconds]
- no lease-time
- subnet-mask ip-address
- no subnet-mask
- mask type ipoe-match-type {[prefix-string prefix-string | prefix-length prefix-length] [suffix-string suffix-string | suffix-length suffix-length]}
- no mask type ipoe-match-type
- match-list ipoe-match-type-1 [ipoe-match-type-2 (up to 4 max)]
- no match-list
- shutdown
- no shutdown
Interface commands
config
- service
- vprn service-id [customer customer-id] [create]
- no vprn service-id
- [no] interface ip-int-name
- address ip-address[/mask] [netmask] [broadcast {all-ones | host-ones}]
- no address
- [no] allow-directed-broadcasts
- arp-timeout [seconds]
- no arp-timeout
- delayed-enable seconds
- no delayed-enable
- description description-string
- no description [description-string]
- dhcp
- description description-string
- no description
- gi-address ip-address [src-ip-addr]
- no gi-address
- [no] option
- action {replace | drop | keep}
- no action
- circuit-id [ascii-tuple | ifindex | sap-id | vlan-ascii-tuple]
- no circuit-id
- remote-id [mac | string string]
- [no] vendor-specific-option
- [no] client-mac-address
- [no] pool-name
- [no] sap-id
- [no] service-id
- string text
- no string
- [no] system-id
- server server1 [server2...(up to 8 max)]
- no server
- [no] shutdown
- [no] trusted
- icmp
- [no] mask-reply
- redirects number seconds
- no redirects [number seconds]
- ttl-expired number seconds
- no ttl-expired [number seconds]
- unreachables number seconds
- no unreachables [number seconds]
- [no] local-proxy-arp
- [no] loopback
- [no] remote-proxy-arp policy-name [policy-name ... (up to 5 max)]
- [no] remote-proxy-arp
- [no] shutdown
- static-arp ip-address ieee-address
- no static-arp ip-address [ieee-address]
- static-arp ieee-address unnumbered
- no static-arp [ieee-address] unnumbered
- unnumbered ip-int-name | ip-address
- no unnumbered
- [no] vrrp virtual-router-id
IPv6 interface commands (supported only on 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C)
config
- service
- vprn service-id [customer customer-id] [create]
- [no] interface ip-int-name [create]
- [no] urpf-check
- ipv6
- [no] urpf-check
- no ipv6
- address ipv6-address/prefix-length [eui-64] [preferred]
- no address ipv6-address/prefix-length
- icmp
- packet-too-big number seconds
- no packet-too-big
- param-problem number seconds
- no param-problem
- redirects number seconds
- no redirects
- time-exceeded number seconds
- no time-exceeded
- unreachables number seconds
- no unreachables
- link-local-address ipv6-address [preferred]
- local-proxy-nd
- no local-proxy-nd
- neighbor ipv6-address mac-address
- no neighbor ipv6-address
- proxy-nd-policy policy-name [policy-name...(up to 5 max)]
- no proxy-nd-policy
- [no] urpf-check
- urpf-check
- [no] ignore-default
- ipv6
- [no] ignore-default
IPv6 router advertisement commands (supported only on 7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C)
config
- router [router-name]
- router-advertisement
- no router-advertisement
- interface ip-int-name
- no interface ip-int-name
- current-hop-limit number
- no current-hop-limit
- managed-configuration
- no managed-configuration
- max-advertisement-interval seconds
- no max-advertisement-interval
- max-advertisement-interval seconds
- no min-advertisement-interval
- mtu
- no mtu
- other-stateful-configuration
- no other-stateful-configuration
- prefix ipv6-prefix/prefix-length
- no prefix
- autonomous
- no autonomous
- on-link
- no on-link
- preferred-lifetime [seconds | infinite]
- no preferred-lifetime
- valid-lifetime [seconds | infinite]
- no valid-lifetime
- reachable-time milli-seconds
- no reachable-time
- retransmit-time milli-seconds
- no retransmit-time
- router-lifetime seconds
- no router-lifetime
- shutdown
Interface VRRP commands (for network mode only)
config
- service
- vprn service-id [customer customer-id] [create]
- no vprn service-id
- interface ip-int-name [create]
- no interface ip-int-name
- vrrp virtual-router-id [owner]
- no vrrp virtual-router-id
- authentication-key authentication-key | hash-key [hash | hash2]
- no authentication-key
- [no] backup ip-address
- [no] bfd-enable service-id interface interface-name dst-ip ip-address
- [no] bfd-enable interface interface-name dst-ip ip-address
- init-delay seconds
- no init-delay
- [no] master-int-inherit
- message-interval {[seconds] [milliseconds milliseconds]}
- no message-interval
- [no] ping-reply
- policy vrrp-policy-id
- no policy
- [no] preempt
- priority priority
- no priority
- [no] shutdown
- [no] ssh-reply
- [no] standby-forwarding
- [no] telnet-reply
- [no] traceroute-reply
Routed VPLS commands for VPRN service
config
- service
- vprn
- interface ip-interface-name [create]
- no interface ip-interface-name
- vpls service-name
- no vpls
- ingress
- v4-routed-override-filter ip-filter-id
- no v4-routed-override-filter
Interface SAP commands
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- [no] interface ip-int-name [create] [tunnel]
- [no] sap sap-id
- accounting-policy acct-policy-id
- no accounting-policy [acct-policy-id]
- [no] collect-stats
- description description-string
- no description [description-string]
- egress
- agg-shaper-rate agg-rate
- no agg-shaper-rate
- filter ip ip-filter-id
- no filter [ip ip-filter-id]
- qos policy-id
- no qos [policy-id]
- ingress
- meter-override
- no meter-override
- meter meter-id [create]
- no meter meter-id
- adaptation-rule [pir adaptation-rule] [cir adaptation-rule]
- cbs size [kbits | bytes | kbytes]
- no cbs
- mbs size [kbits | bytes | kbytes]
- no mbs
- no mode
- no mode
- rate cir cir-rate [pir pir-rate]
- ingress
- agg-shaper-rate agg-rate
- no agg-shaper-rate
- aggregate-meter-rate rate-in-kbps [burst burst-in-kbits]
- no aggregate-meter-rate
- filter ip ip-filter-id
- no filter [ip ip-filter-id]
- qos policy-id [shared-queuing | multipoint-shared]
- no qos [policy-id]
- [no] shutdown
BGP configuration commands
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- [no] bgp
- [no] advertise-inactive
- [no] aggregator-id-zero
- always-compare-med {zero | infinity}
- no always-compare-med
- [no] as-path-ignore
- auth-keychain name
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- bfd-enable
- no bfd-enable
- best-path-selection
- always-compare-med {zero | infinity}
- always-compare-med strict-as {zero | infinity}
- no always-compare-med
- as-path-ignore [ipv4] [ipv6]
- no as-path-ignore
- as-path-ignore
- no ignore-nh-metric
- ignore-nh-metric
- no ignore-router-id
- ignore-nh-metric
- [no] connect-retry seconds
- [no] damping
- description description-string
- no description
- [no] disable-4byte-asn
- disable-communities [standard] [extended]
- no disable-communities
- [no] disable-fast-external-failover
- [no] enable-peer-tracking
- export policy-name [policy-name...(up to 5 max)]
- no export
- family [ipv4] [ipv6]
- no family
- hold-time seconds [strict]
- no hold-time
- import policy-name [policy-name...(up to 5 max)]
- no import
- keepalive seconds
- no keepalive
- local-as as-number [private]
- no local-as
- local-preference local-preference
- no local-preference
- loop-detect {drop-peer | discard-route | ignore-loop| off}
- no loop-detect
- med-out {number | igp-cost}
- no med-out
- min-as-origination seconds
- no min-as-origination
- min-route-advertisement seconds
- no min-route-advertisement
- multihop ttl-value
- no multihop
- preference preference
- no preference
- [no] rapid-withdrawal
- [no] remove-private
- router-id ip-address
- no router-id
- [no] shutdown
- [no] group name [dynamic-peer]
- [no] advertise-inactive
- [no] aggregator-id-zero
- [no] as-override
- auth-keychain name
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- [no] bfd-enable
- connect-retry seconds
- no connect-retry
- [no] damping
- description description-string
- no description
- [no] disable-4byte-asn
- disable-communities [standard] [extended]
- no disable-communities
- [no] disable-fast-external-failover
- [no] enable-peer-tracking
- export policy-name [policy-name...(up to 5 max)]
- no export
- family [ipv4] [ipv6]
- no family
- hold-time seconds [strict]
- no hold-time
- import policy-name [policy-name...(up to 5 max)]
- no import
- keepalive seconds
- no keepalive
- local-address ip-address
- no local-address
- local-as as-number [private]
- no local-as
- local-preference local-preference
- no local-preference
- loop-detect {drop-peer | discard-route | ignore-loop | off}
- no loop-detect
- med-out {number | igp-cost}
- no med-out
- min-as-origination seconds
- no min-as-origination
- min-route-advertisement seconds
- no min-route-advertisement
- multihop ttl-value
- no multihop
- [no] passive
- peer-as as-number
- no peer-as
- preference preference
- no preference
- prefix-limit prefix-limit family limit [log-only] [threshold percentage]
- no prefix-limit
- [no] remove-private
- [no] shutdown
- type {internal | external}
- no type
- [no] neighbor ip-address
- [no] advertise-inactive
- [no] aggregator-id-zero
- [no] as-override
- auth-keychain name
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- [no] bfd-enable
- connect-retry seconds
- no connect-retry
- [no] damping
- description description-string
- no description
- [no] disable-4byte-asn
- disable-communities [standard] [extended]
- no disable-communities
- [no] disable-fast-external-failover
- [no] enable-peer-tracking
- export policy-name [policy-name...(up to 5 max)]
- no export
- family [ipv4]
- no family
- hold-time seconds [strict]
- no hold-time
- import policy-name [policy-name...(up to 5 max)]
- no import
- keepalive seconds
- no keepalive
- local-address ip-address
- no local-address
- local-as as-number [private]
- no local-as
- local-preference local-preference
- no local-preference
- loop-detect {drop-peer | discard-route | ignore-loop | off}
- no loop-detect
- med-out {number | igp-cost}
- no med-out
- min-as-origination seconds
- no min-as-origination
- min-route-advertisement seconds
- no min-route-advertisement
- multihop ttl-value
- no multihop
- [no] passive
- peer-as as-number
- no peer-as
- preference preference
- no preference
- prefix-limit limit [log-only] [threshold percent]
- no prefix-limit
- [no] remove-private
- [no] shutdown
- type {internal | external}
- no type
OSPF configuration commands
config
- service
- vprn service-id [customer customer-id]
- no vprn service-id
- [no] ospf
- [no] area area-id
- area-range ip-prefix/mask [advertise | not-advertise]
- no area-range ip-prefix/mask
- [no] blackhole-aggregate
- [no] interface ip-int-name [secondary]
- [no] advertise-subnet
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- authentication-type {password | message-digest}
- no authentication-type
- bfd-enable [remain-down-on-failure]
- no bfd-enable
- dead-interval seconds
- no dead-interval
- hello-interval seconds
- no hello-interval
- interface-type {broadcast | point-to-point}
- no interface-type
- message-digest-key key-id md5 [key | hash-key] [hash | hash2]
- no message-digest-key key-id
- metric metric
- no metric
- mtu bytes
- no mtu
- [no] passive
- priority number
- no priority
- retransmit-interval seconds
- no retransmit-interval
- [no] shutdown
- transit-delay seconds
- no transit-delay
- [no] nssa
- area-range ip-prefix/mask [advertise | not-advertise]
- no area-range ip-prefix/mask
- originate-default-route [type-7]
- no originate-default-route
- [no] redistribute-external
- [no] summaries
- [no] sham-link ip-int-name ip-address
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- authentication-type {password | message-digest}
- no authentication-type
- dead-interval seconds
- no dead-interval
- hello-interval seconds
- no hello-interval
- message-digest-key key-id md5 [key | hash-key] [hash | hash2]
- no message-digest-key key-id
- metric metric
- no metric
- retransmit-interval seconds
- no retransmit-interval
- [no] shutdown
- transit-delay seconds
- no transit-delay
- [no] stub
- default-metric metric
- no default-metric
- [no] summaries
- [no] virtual-link router-id transit-area area-id
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- authentication-type {password | message-digest}
- no authentication-type
- dead-interval seconds
- no dead-interval
- hello-interval seconds
- no hello-interval
- message-digest-key key-id md5 [key | hash-key] [hash | hash2]
- no message-digest-key key-id
- retransmit-interval seconds
- no retransmit-interval
- [no] shutdown
- transit-delay seconds
- no transit-delay
- [no] compatible-rfc1583 router-id transit-area area-id
- authentication-key [authentication-key | hash-key] [hash | hash2]
- no authentication-key
- authentication-type {password | message-digest}
- no authentication-type
- dead-interval seconds
- no dead-interval
- hello-interval seconds
- no hello-interval
- message-digest-key key-id md5 [key | hash-key] [hash | hash2]
- no message-digest-key key-id
- retransmit-interval seconds
- no retransmit-interval
- [no] shutdown
- transit-delay seconds
- no transit-delay
- [no] compatible-rfc1583
- export policy-name [ policy-name...(up to 5 max)]
- no export
- external-db-overflow limit seconds
- no external-db-overflow
- external-preference preference
- no external-preference
- [no] graceful-restart
- [no] helper-disable
- [no] ignore-dn-bit
- overload [timeout seconds]
- no overload
- [no] overload-include-stub
- overload-on-boot [timeout seconds]
- no overload-on-boot
- preference preference
- no preference
- reference-bandwidth bandwidth-in-kbps
- no reference-bandwidth
- router-id ip-address
- no router-id
- [no] shutdown
- [no] super-backbone
- [no] suppress-dn-bit
- timers
- [no] lsa-arrival lsa-arrival-time
- [no] lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
- [no] spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
- vpn-domain id {0005 | 0105 | 0205 | 8005}
- no vpn-domain
- vpn-tag vpn-tag
- no vpn-tag
- export policy-name [ policy-name ... (up to 5 max)]
- no export
- external-db-overflow limit seconds
- no external-db-overflow
- external-preference preference
- no external-preference
- [no] graceful-restart
- [no] helper-disable
- import policy-name [policy-name ... (up to 15 max)]
- no import policy-name
- overload [timeout seconds]
- no overload
- [no] overload-include-stub
- overload-on-boot [timeout seconds]
- no overload-on-boot
- preference preference
- no preference
- reference-bandwidth bandwidth-in-kbps
- reference-bandwidth [tbps Tera-bps] [gbps Giga-bps] [mbps Mega-bps] [kbps Kilo-bps]
- no reference-bandwidth
- router-id ip-address
- no router-id
- [no] shutdown
- timers
- [no] lsa-arrival lsa-arrival-time
- [no] lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
- [no] spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
Show commands
show
- service
- egress-label start-label [end-label]
- ingress-label start-label [[end-label]
- id service-id
- all
- sap [sap-id [detail]]
- sdp [sdp-id | far-end ip-address] [detail]
- sap-using [sap sap-id]
- sap-using interface [ip-address | ip-int-name]
- sap-using [ingress | egress] filter filter-id
- sap-using [ingress | egress] qos-policy qos-policy-id
- sdp-using [sdp-id | far-end ip-address] [detail | keep-alive-history]
- sdp-using [sdp-id[:vc-id]
- service-using [vprn] [sdp sdp-id] [customer customer-id]
show
- router [vprn-service-id]
- aggregate [family] [active]
- arp [ip-int-name | ip-address[/mask] | mac ieee-mac-address | sumary] [local | dynamic | static | managed]
- bgp
- damping [ip-prefix[/prefix-length]] [decayed|history|suppressed] [detail] [ipv4]
- damping [ip-prefix[/prefix-length]] [decayed|history|suppressed] [detail] vpn-ipv4
- group [name] [detail]
- neighbor [ip-address [detail]]
- neighbor [as-number [detail]]
- neighbor ip-address [family] filter1 [brief]
- neighbor ip-address [family] filter2
- neighbor as-number [family] filter2
- neighbor ip-address orf filter3
- neighbor ip-address graceful-restart
- paths
- routes [family family] [prefix [detail | longer]]
- routes [family family] [prefix [hunt | brief]]
- routes [family family] [community comm-id]
- routes [family family] [aspath-regex reg-ex1]
- routes [family] [ipv6-prefix[/prefix-length] [detail | longer]|[hunt [brief]]]
- summary [all]
- interface [{[ip-address | ip-int-name] [detail]} | summary
- route-table [ip-address[/mask] [longer | best]] | [protocol protocol] | [summary]
- static-arp [ip-address | ip-int-name | mac ieee-mac-address]
- static-route [ip-prefix /mask] | [preference preference] | [next-hop ip-address] [detail]
- tunnel-table [ip-address[/mask] [protocol protocol | sdp sdp-id]
- tunnel-table [summary]
show
- router
- sgt-qos
- application
- dscp-map
See the 7210 SAS-K 2F1C2T, K 2F6C4T, K 3SFP+ 8C Quality of Service Guide section ‟Network QoS Policy Command Reference, Show Commands” for descriptions of the show>router>sgt-qos commands.
Clear commands
clear
- router
- bgp
- damping [{prefix/mask [neighbor ip-address]} | {group name}]
- flap-statistics [[ip-prefix/mask] [neighbor ip-address]] | [group group-name] | [regex reg-exp] | [policy policy-name]
- neighbor {ip-address | as as-number | external | all} [soft | soft-inbound | statistics]
- protocol
- interface [ip-int-name | ip-address] [icmp]
clear
- service
- id service-id
- spoke-sdp sdp-id:vc-id ingress-vc-label
- statistics
- sap sap-id {all | counters | stp}
- sdp sdp-id keep-alive
- id service-id
- counters
- spoke-sdp sdp-id:vc-id {all | counters | stp}
- spoke-sdp
Debug commands
debug
- service
- id service-id
- [no] event-type {config-change | svc-oper-status-change | sap-oper-status-change | sdpbind-oper-status-change}
- [no] sap sap-id
- event-type {config-change | oper-status-change}
- [no] sdp sdp-id:vc-id
- event-type {config-change | oper-status-change}
- stp
- [no] all-events
- [no] bpdu
- [no] core-connectivity
- [no] exception
- [no] fsm-state-changes
- [no] fsm-timers
- [no] port-role
- [no] port-state
- [no] sap sap-id
- [no] sdp sdp-id:vc-id
Command descriptions
VPRN service configuration commands
Generic commands
shutdown
Syntax
[no] shutdown
Context
config>service>vprn
config>service>vprn>if
config>service>vprn>if>sap
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
config>service>vprn>router-advert
config>service>vprn>spoke-sdp
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command administratively disables an entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
Services are created in the administratively down (shutdown) state. When a no shutdown command is entered, the service becomes administratively up and then tries to enter the operationally up state. Default administrative states for services and service entities is described as follows in Special Cases.
The no form of this command places the entity into an administratively enabled state.
If the ASN was previously changed, the BGP ASN inherits the new value.
Special Cases
- Service Admin State
Bindings to an SDP within the service will be put into the out-of-service state when the service is shut down. While the service is shut down, all customer packets are dropped and counted as discards for billing and debugging purposes.
A service is regarded as operational providing that one IP Interface SAP and one SDP is operational.
- VPRN BGP
This command disables the BGP instance on the specific IP interface. Routes learned from a neighbor that is shut down are immediately removed from the BGP database and RTM. If BGP is globally shut down, all group and neighbor interfaces are shut down operationally. If a BGP group is shut down, all member neighbor interfaces are shut down operationally. If a BGP neighbor is shut down, just that neighbor interface is operationally shutdown.
description
Syntax
description description-string
no description
Context
config>service>vprn>bgp
config>service>vprn
config>service>vprn>if
config>service>vprn>if>sap
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates a text description stored in the configuration file for a configuration context.
The description command associates a text string with a configuration context to help identify the content in the configuration file.
The no form of this command removes the string from the configuration.
Parameters
- description-string
The description character string. Allowed values are any string up to 80 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
ecmp
Syntax
ecmp max-ecmp-routes
no ecmp
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables ECMP only for VPN-IPv4 routes learned through MP-BGP (not PE-CE VPN routes) and configures the number of routes for path sharing; for example, the value 2 means two equal-cost routes are used for cost sharing.
ECMP can be used only for routes learned with the same preference and the same protocol. When more ECMP routes are available at the best preference than configured using the max-ecmp-routes value, the following route selection criteria apply for VPN-IPv4 routes.
All routes are flagged as BEST, and the following criteria determine which routes are submitted to the VRF and marked as USED according to the ECMP value configured in the VRF.
Routes with the lowest BGP peer router-ID are preferred.
Routes with the shortest cluster list are preferred.
Routes with the lowest BGP next-hop IP address are preferred.
The no form of this command disables ECMP path sharing. If ECMP is disabled, and multiple routes are available at the best preference and equal cost, the VPN-IPv4 route selection is based on the following criteria.
Routes with the lowest BGP peer router-ID are preferred.
Routes with the shortest cluster list are preferred.
Routes with the lowest BGP next-hop IP address are preferred.
Default
no ecmp
Parameters
- max-ecmp-routes
Specifies the maximum number of equal cost routes allowed onthis routing table instance, expressed as a decimal integer. Setting the max-ecmp-routes value to 1 has the same result as entering no ecmp.
Global commands
vprn
Syntax
vprn service-id [customer customer-id] [create]
no vprn service-id
Context
config>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates or edits a Virtual Private Routed Network (VPRN) service instance.
If the service-id does not exist, a context for the service is created. If the service-id exists, the context for editing the service is entered.
VPRN services allow the creation of customer-facing IP interfaces in the same routing instance used for service network core routing connectivity. VPRN services require that the IP addressing scheme used by the subscriber must be unique between it and other addressing schemes used by the provider and potentially the entire Internet.
IP interfaces defined within the context of an VPRN service ID must have a SAP created as the access point to the subscriber network.
When a service is created, the customer keyword and customer-id must be specified to associate the service with a customer. The customer-id must already exist having been created using the customer command in the service context. When a service is created with a customer association, it is not possible to edit the customer association. The service must be deleted and recreated with a new customer association.
When a service is created, the use of the customer customer-id is optional to navigate into the service configuration context. Attempting to edit a service with the incorrect customer-id results in an error.
Multiple VPRN services are created to separate customer-owned IP interfaces. More than one VPRN service can be created for a single customer ID. More than one IP interface can be created within a single VPRN service ID. All IP interfaces created within an VPRN service ID belongs to the same customer.
By default, no VPRN services instances exist until they are explicitly created.
The no form of this command deletes the VPRN service instance with the specified service-id. The service cannot be deleted until all the IP interfaces and all routing protocol configurations defined within the service ID have been shut down and deleted.
Parameters
- service-id
Specifies the service number identifying the service in the service domain. This ID must be unique to this service and may not be used for any other service of any type. The service-id must be the same number used for every 7210 SAS on which this service is defined.
vprn customer
- customer customer-id
Specifies an existing customer identification number to be associated with the service. This parameter is required on service creation and optional for service editing or deleting.
aggregate
Syntax
aggregate ip-prefix/ip-prefix-length [summary-only] [as-set] [aggregator as-number:ip-address]
aggregate ip-prefix/ip-prefix-length
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an aggregate route.
This command automatically installs an aggregate in the routing table when there are one or more component routes. A component route is any route used for forwarding that is a more specific match to the aggregate.
The use of aggregate routes can reduce the number of routes that need to be advertised to neighbor routers, leading to smaller routing table sizes.
Overlapping aggregate routes may be configured; in this case a route becomes a component of only the one aggregate route with the longest prefix match; for example, if one aggregate is configured as 10.0.0.0/16 and another as 10.0.0.0/24, route 10.0.128/17 would be aggregated into 10.0.0.0/16, and route 10.0.0.128/25 would be aggregated into 10.0.0.0/24. If multiple entries are made with the same prefix and the same mask the previous entry is overwritten.
A standard 4-byte BGP community may be associated with an aggregate route to facilitate route policy matching.
The no form of this command removes the aggregate.
Default
no aggregate
Parameters
- ip-prefix
Specifies the destination address of the aggregate route in dotted-decimal notation.
- summary-only
Keyword that suppresses the advertisement of more specific component routes for the aggregate.
To remove the summary-only option, enter the same aggregate command without the summary-only keyword.
- as-set
Optional keyword that is only applicable to BGP and creates an aggregate where the path advertised for this route will be an AS_SET consisting of all elements contained in all paths that are being summarized. Use this option carefully, because it can increase the amount of route churn because of best path changes.
- aggregator as-number:ip-address
Optional keyword that specifies the BGP aggregator path attribute to the aggregate route. When configuring the aggregator, a two-octet ASN used to form the aggregate route must be entered, followed by the IP address of the BGP system that created the aggregate route.
allow-ip-int-bind
Syntax
[no] allow-ip-int-bind
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables IP interface binding.
The no form of this command disables IP interface binding.
Default
no allow-ip-int-bind
auto-bind-tunnel
Syntax
auto-bind-tunnel
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure automatic binding of a VPRN service using tunnels to MP-BGP peers.
The auto-bind-tunnel context configures the binding of VPRN routes to tunnels. The user must configure the resolution option to enable auto-bind resolution to tunnels in the TTM. If the resolution option is explicitly set to disabled, auto-binding to tunnels is removed.
If the resolution command is set to any, any supported tunnel type in the VPRN context is selected following the TTM preference. If one or more explicit tunnel types are specified using the resolution-filter option, only these tunnel types will be selected again following the TTM preference.
The user must set the resolution command to filter to activate the list of tunnel types configured under resolution-filter.
When an explicit SDP to a BGP next hop is configured in a VPRN service (in the configure>service>vprn>spoke-sdp context), it overrides the auto-bind-tunnel selection for that BGP next hop only. There is no support for reverting automatically to the auto-bind-tunnel selection if the explicit SDP goes down. The user must delete the explicit spoke-SDP in the VPRN service context to resume using the auto-bind-tunnel selection for the BGP next hop.
resolution
Syntax
resolution {any | filter | disabled}
Context
config>service>vprn>auto-bind-tunnel
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the resolution mode in the automatic binding of a VPRN service to tunnels to MP-BGP peers.
Parameters
- any
Keyword that enables the binding to any supported tunnel type in the VPRN context following the TTM preference.
- filter
Keyword that enables the binding to the subset of tunnel types configured under resolution-filter.
- disabled
Keyword that disables the automatic binding of a VPRN service to tunnels to MP-BGP peers.
resolution-filter
Syntax
resolution-filter
Context
config>service>vprn>auto-bind-tunnel
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure the subset of tunnel types that can be used in the resolution of VPRN prefixes within the automatic binding of VPRN services to tunnels to MP-BGP peers.
The following tunnel types are supported in a VPRN context: RSVP, LDP, and segment routing (SR). The BGP tunnel type is not explicitly configured and is therefore implicit. It is always preferred over any other tunnel type enabled in the auto-bind-tunnel context.
ldp
Syntax
[no] ldp
Context
config>service>vprn>auto-bind-tunnel>res-filter
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the use of LDP tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN services to tunnels to MP-BGP peers.
When the ldp command is specified, BGP searches for an LDP LSP with a FEC prefix corresponding to the address of the BGP next-hop.
The no form of this command disables the use of LDP tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN services to tunnels to MP-BGP peers.
Default
no ldp
rsvp
Syntax
[no] rsvp
Context
config>service>vprn>auto-bind-tunnel>res-filter
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the use of RSVP tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN services to tunnels to MP-BGP peers.
When rsvp is specified, BGP searches for the best metric RSVP LSP to the address of the BGP next hop. This address can correspond to the system interface or to another loopback used by the BGP instance on the remote node. The LSP metric is provided by MPLS in the tunnel table. In the case of multiple RSVP LSPs with the same lowest metric, BGP selects the LSP with the lowest tunnel-id.
The no form of this command disables the use of RSVP tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN service to tunnels to MP-BGP peers.
Default
no rsvp
sr-isis
Syntax
[no] sr-isis
Context
config>service>vprn>auto-bind-tunnel>res-filter
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the use of SR-ISIS tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN service to tunnels to MP-BGP peers.
When sr-isis is specified, an SR tunnel to the BGP next hop is selected in the TTM from the lowest numbered IS-IS instance.
The no form of this command disables the use of SR-ISIS tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN service to tunnels to MP-BGP peers.
Default
no sr-isis
sr-ospf
Syntax
[no] sr-ospf
Context
config>service>vprn>auto-bind-tunnel>res-filter
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the use of SR-OSPF tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN service to tunnels to MP-BGP peers.
When sr-ospf is specified, an SR tunnel to the BGP next hop is selected in the TTM from the lowest numbered OSPF instance.
The no form of this command disables the use of SR-OSPF tunnel types for the resolution of VPRN prefixes within the automatic binding of VPRN service to tunnels to MP-BGP peers.
Default
no sr-ospf
autonomous-system
Syntax
autonomous-system as-number
no autonomous-system
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command defines the autonomous system (AS) to be used by this VPN routing/forwarding (VRF). This command defines the autonomous system to be used by this VPN routing.
The no form of this command removes the defined AS from this VPRN context.
Default
no autonomous-system
Parameters
- as-number
Specifies the AS number for the VPRN service.
maximum-ipv6-routes
Syntax
maximum-ipv6-routes number [log-only] [threshold percent]
no maximum-ipv6-routes
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum number of remote IPv6 routes that are allowed to be learned within a VPN VRF context. Local, host, static, and aggregate routes are not counted.
The VPRN service ID must be in a shutdown state to modify the maximum-ipv6-routes command parameters.
If the log-only keyword is not specified and the maximum-ipv6-routes value is set below the existing number of routes in a VRF, the offending RIP peer (if applicable) is brought down, but the VPRN instance remains up. BGP peering remains up but the exceeding BGP routes are not added to the VRF.
The maximum route threshold can dynamically change to increase the number of supported routes, even when the maximum has already been reached. Protocols resubmit the routes that were initially rejected.
This command only applies to PE-CE protocols (on the 7210 SAS, BGP and OSPF are supported for PE-CE dynamic routing protocols). There are two limits to consider: one is the value configured as part of the maximum-ipv6-routes command and the second is the maximum IP FIB limit supported on the node. When a route is received, the following comparison is completed:
- The protocol session remains up but the routes exceeding the configured
value are not added to the VRF if all of the following conditions are
true:
- if the number of routes in the FIB plus the received route is greater than the value configured for maximum-ipv6-routes
- if the number of routes is less than the maximum IP FIB limit
- if log-only is not configured
- The protocol session remains up and the routes that exceed the limit of
values configured for maximum-ipv6-routes are added
to the VRF if all of the following conditions are true:
- if the number of routes in the FIB plus the received route is greater than the value configured for maximum-ipv6-routes
- if the number of routes is less than the maximum IP FIB limit
- if log-only is configured
A log is generated to indicate that the limit has been exceeded.
- If the number of routes in the FIB plus the received route is greater than the maximum IP FIB limit (the limit for the prefix-length of the received route), regardless of whether log-only is configured, the protocol session is brought down.
The no form of this command disables any limit on the number of routes within a VRF context. Issue the no form of this command only when the VPRN instance is shutdown.
Default
0 or disabled
Parameters
- number
-
Specifies the maximum number of routes allowed to be learned in a VRF context.
- log-only
-
Keyword to specify that if the maximum limit is reached, only log the event. This keyword does not disable learning new routes.
- threshold percent
-
Specifies the percentage at which a warning log message and SNMP trap should be set. There are two warnings; the first is a mid-level warning at the threshold value set, and the second is a high-level warning at level between the maximum number of routes and the mid-level rate ( [mid+max] / 2 ).
maximum-routes
Syntax
maximum-routes number [log-only] [threshold percent]
no maximum-routes
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum number of remote routes that are allowed to be learned within a VPN VRF context. Local, host, static, and aggregate routes are not counted.
The VPRN service ID must be in a shutdown state to modify the maximum-routes command parameters.
If the log-only keyword is not specified and the maximum-routes value is set below the existing number of routes in a VRF, the offending RIP peer (if applicable) is brought down, but the VPRN instance remains up. BGP peering remains up but the exceeding BGP routes are not added to the VRF.
The maximum route threshold can dynamically change to increase the number of supported routes, even when the maximum has already been reached. Protocols resubmit the routes that were initially rejected.
This command only applies to PE-CE protocols (on the 7210 SAS, BGP and OSPF are supported for PE-CE dynamic routing protocols). There are two limits to consider: one is the value configured as part of the maximum-routes command and the second is the maximum IP FIB limit supported on the node. When a route is received, the following comparison is completed:
- The protocol session remains up but the routes exceeding the configured
value are not added to the VRF if all of the following conditions are
true:
- if the number of routes in the FIB plus the received route is greater than the value configured for maximum-routes
- if the number of routes is less than the maximum IP FIB limit
- if log-only is not configured
- The protocol session remains up and the routes that exceed the limit of
values configured for maximum-routes are added to the
VRF if all of the following conditions are true:
- if the number of routes in the FIB plus the received route is greater than the value configured for maximum-routes
- if the number of routes is less than the maximum IP FIB limit
- if log-only is configured
A log is generated to indicate that the limit has been exceeded.
- If the number of routes in the FIB plus the received route is greater than the maximum IP FIB limit (the limit for the prefix-length of the received route), regardless of whether log-only is configured, the protocol session is brought down.
The no form of this command disables any limit on the number of routes within a VRF context. Issue the no form of this command only when the VPRN instance is shutdown.
Default
0 or disabled
Parameters
- number
Specifies the maximum number of routes allowed to be learned in a VRF context.
- log-only
Keyword to specify that if the maximum limit is reached, only log the event. This keyword does not disable learning new routes.
- threshold percent
Specifies the percentage at which a warning log message and SNMP trap should be set. There are two warnings; the first is a mid-level warning at the threshold value set, and the second is a high-level warning at level between the maximum number of routes and the mid-level rate ( [mid+max] / 2 ).
route-distinguisher
Syntax
route-distinguisher [ip-address:number | asn:number]
no route-distinguisher
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the identifier attached to routes the VPN belongs to. Each routing instance must have a unique (within the carrier domain) route distinguisher associated with it. A route distinguisher must be defined for a VPRN to be operationally active.
Default
no route-distinguisher
Parameters
The route distinguisher is a 6-byte value that can be specified in one of the following formats:
- ip-address:number
Specifies the IP address in dotted-decimal notation. The assigned number must not be greater than 65535.
- asn:number
Specifies the AS number as a 2-byte value less than or equal to 65535. The assigned number can be any 32-bit unsigned integer value.
router-id
Syntax
router-id ip-address
no router-id
Context
config>service>vprn
config>service>vprn>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the router ID for a specific VPRN context.
If neither the router ID nor system interface are defined, the router ID from the base router context is inherited.
The no form of this command removes the router ID definition from the specific VPRN context.
Default
no router-id
Parameters
- ip-address
Specifies the IP address, in dotted-decimal notation.
service-name
Syntax
service-name service-name
no service-name
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an optional service name that adds a name identifier to a specific service to then use that service name in configuration references as well as display and use service names in show commands throughout the system. This helps the service provider or administrator to identify and manage services within the 7210 SAS platforms.
All services are required to assign a service ID to initially create a service. However, either the service ID or the service name can be used to identify and reference a specific service when it is initially created.
Parameters
- service-name
Specifies a unique service name to identify the service, up to 64 characters. Service names may not begin with an integer (0 to 9).
snmp
Syntax
snmp
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure SNMP parameters for this VPRN.
community
Syntax
community community-name [hash | hash2] [access-permissions] [version SNMP-version]
no community [community-name]
Context
config>service>vprn>snmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the SNMP community names to be used with the associated VPRN instance. These VPRN community names associate SNMP v1/v2c requests with a particular VPRN context and to return a reply that contains VPRN-specific data or limit SNMP access to data in a specific VPRN instance.
VPRN SNMP communities configured with an access permission of ‟r” are automatically associated with the default access group "snmp-vprn-ro” and the ‟vprn-view” view (read only). VPRN SNMP communities configured with an access permission of ‟rw” are automatically associated with the default access group "snmp-vprn” and the ‟vprn-view” view (read/write).
The community in an SNMP v1/v2 request determines the SNMP context (the VPRN number for accessing SNMP tables) and not the VPRN of the incoming interface on which the request is received. When an SNMP request arrives on VPRN 5 interface ‟ringo” with a destination IP address equal to the ‟ringo” interface, but the community in the SNMP request is the community configured against VPRN 101, the SNMP request will be processed using the VPRN 101 context (the response will contain information about VPRN 101). Nokia recommends to avoid using a simple series of vprn snmp-community values that are similar to each other (for example, avoid my-vprncomm-1, my-vprn-comm-2, and so on).
By default, the SNMP community must be explicitly specified.
The no form of this command removes the SNMP community name from the specific VPRN context.
Parameters
- community-name
Specifies the SNMP v1/v2c community name. This is a secret/confidential key used to access SNMP and specify a context (base vs vprn1 vs vprn2).
- hash
Keyword that specifies the key is entered in an encrypted form. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
- hash2
Keyword that specifies the key is entered in a more complex encrypted form that involves more variables than the key value alone, meaning that the hash2 encrypted variable cannot be copied and pasted. If the hash or hash2 parameter is not used, the key is assumed to be in an unencrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash or hash2 parameter specified.
- version SNMP-version
Specifies the SNMP version.
- access-permissions
Specifies the access rights to MIB objects.
source-address
Syntax
source-address
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context specify the source address and application that should be used in all unsolicited packets.
application
Syntax
application app [ip-int-name|ip-address]
no application app
Context
config>service>vprn>source-address
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the source address and application.
Parameters
- app
Specifies the application name.
- ip-int-name | ip-address
Specifies the name of the IP interface or IP address. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
static-route
Syntax
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] {next-hop ip-int-name | ip-address | ipsec-tunnel ipsec-tunnel-name} [bfd-enable | {cpe-check cpe-ip-address [interval seconds] [drop-count count] [log]}]
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] indirect ip-address [cpe-check cpe-ip-address [interval seconds][drop-count count] [log]]
[no] static-route {ip-prefix/prefix-length | ip-prefix netmask} [preference preference] [metric metric] [tag tag] [enable | disable] black-hole
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates static route entries within the associated router instance. When configuring a static route, either next-hop, indirect, or black-hole must be configured.
If a CPE connectivity check target address is already being used as the target address in a different static route, cpe-check parameters must match. If they do not, the new configuration command is rejected.
If a static-route command is issued with no cpe-check target, but the destination prefix/netmask and next hop matches a static route that did have an associated cpe-check, the cpe-check test will be removed from the associated static route.
The no form of this command deletes the static route entry. If a static route needs to be removed when multiple static routes exist to the same destination, as many parameters as are required to uniquely identify the static route must be entered.
Parameters
- ip-prefix
Specifies the destination address of the aggregate route in dotted-decimal notation.
- netmask
Specifies the subnet mask in dotted-decimal notation.
- ip-int-name
Specifies the name of the IP interface. Interface names must be unique within the group of defined IP interfaces for config router interface and config service ies interface commands. An interface name cannot be in the form of an IP address. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed with double quotes.
- ip-address
Specifies the IP address of the IP interface. The ip-addr portion of the address command specifies the IP host address that will be used by the IP interface within the subnet. This address must be unique within the subnet and specified in dotted-decimal notation.
- enable
Keyword that specifies static routes can be administratively enabled or disabled. Use the enable parameter to reenable a disabled static route. To enable a static route, it must be uniquely identified by the IP address, mask, and any other parameter that is required to identify the exact static route.
The administrative state is maintained in the configuration file.
- disable
Keyword that specifies static routes can be administratively enabled or disabled. Use the disable parameter to disable a static route while maintaining the static route in the configuration. To enable a static route, it must be uniquely identified by the IP address, mask, and any other parameter that is required to identify the exact static route.
The administrative state is maintained in the configuration file.
- interval seconds
Specifies the interval between ICMP pings to the target IP address.
- drop-count count
Specifies the number of consecutive ping-replies that must be missed to declare the CPE down and to deactivate the associated static route.
- log
Optional keyword that enables the ability to log transitions between active and in-active based on the CPE connectivity check. Events should be sent to the system log, syslog, and SNMP traps.
- next-hop [ip-address | ip-int-name]
Specifies the directly connected next-hop IP address used to reach the destination. If the next hop is over an unnumbered interface, the ip-int-name of the unnumbered interface (on this node) can be configured.
The next-hop keyword and the indirect or black-hole keywords are mutually exclusive. If an identical command is entered (with the exception of either the indirect or black-hole parameters), this static route is replaced with the newly entered command, and unless specified, the respective defaults for preference and metric will be applied.
The ip-address configured here can be either on the network side or the access side on this node. This address must be associated with a network directly connected to a network configured on this node.
- indirect ip-address
Specifies that the route is indirect and specifies the next-hop IP address used to reach the destination.
The configured ip-address is not directly connected to a network configured on this node. The destination can be reachable via multiple paths. The static route remains valid as long as the address configured as the indirect address remains a valid entry in the routing table. Indirect static routes cannot use an ip-prefix/mask to another indirect static route.
The indirect keyword and the next-hop or black-hole keywords are mutually exclusive. If an identical command is entered (with the exception of either the next-hop or black-hole parameters), this static route is replaced with the newly entered command and unless specified the respective defaults for preference and metric are applied.
The ip-address configured can be either on the network or the access side and is at least one hop away from this node.
- black-hole
Keyword that specifies a blackhole route, meaning that if the destination address on a packet matches this static route it is silently discarded.
The black-hole keyword is mutually exclusive with the next-hop or indirect keywords. If an identical command is entered, with exception of the next-hop or indirect parameters, the static route is replaced with the new command, and unless specified, the respective defaults for preference and metric are applied.
- preference preference
Specifies the preference of this static route (as opposed to the routes from different sources such as BGP or OSPF), expressed as a decimal integer. When modifying the preference value of an existing static route, unless specified, the metric does not change.
If multiple routes are learned with an identical preference using the same protocol, the lowest cost route is used. If multiple routes are learned with an identical preference using the same protocol and the costs (metrics) are equal, the decision of which route to use is determined by the configuration of the ECMP command.
- metric metric
Specifies the cost metric for the static route, expressed as a decimal integer. This value is used when importing this static route into other protocols such as OSPF. This value is also used to determine the static route to install in the forwarding table. When modifying the metrices of an existing static route, unless specified, the preference does not change.
If there are multiple static routes with the same preference but unequal metrices, the lower cost (metric) route is installed. If there are multiple static routes with equal preference and metrics, ECMP rules apply. If there are multiple routes with unequal preferences, the lower preference route is installed.
- tag
Keyword that adds a 32-bit integer tag to the static route. The tag is used in route policies to control distribution of the route into other protocols.
- bfd-enable
Keyword that associates the state of the static route to a BFD session between the local system and the configured next hop. This keyword cannot be configured if the next hop has indirect or a blackhole keywords specified.
- cpe-check target-ip-address
Specifies the IP address of the target CPE device. ICMP pings are sent to this target IP address. This parameter must be configured to enable the CPE connectivity feature for the associated static route. The target-ip-address cannot be in the same subnet as the static route subnet itself to avoid possible circular references. This option is mutually exclusive with BFD support on a specific static route.
vrf-export
Syntax
vrf-export policy [policy...]
no vrf-export
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the export policies to control routes exported from the local VPN VRF to other VRFs on the same or remote PE routers (via MP-BGP).
By default, no routes are exported from the VRF.
The no form of this command removes all route policy names from the export list.
Parameters
- policy
Specifies the route policy statement name.
vrf-import
Syntax
vrf-import policy [policy...]
no vrf-import
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the import policies to control routes imported to the local VPN VRF from other VRFs on the same or remote PE routers (via MP-BGP). BGP-VPN routes imported with a VRF-import policy use the BGP preference value of 170 when imported from remote PE routers, or retain the protocol preference value of the exported route when imported from other VRFs on the same router, unless the preference is changed by the policy.
By default, no routes are accepted into the VRF.
The no form of this command removes all route policy names from the import list.
Parameters
- policy
Specifies the route policy statement name.
Router DHCP configuration commands
dhcp
Syntax
dhcp
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure DHCP parameters.
local-dhcp-server
Syntax
local-dhcp-server server-name [create]
no local-dhcp-server server-name
Context
config>service>vprn>dhcp
config>service>vprn>if
config>service>vprn>nw-if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command instantiates a local DHCP server. A local DHCP server can serve multiple interfaces but is limited to the routing context in was which it was created.
The DHCP server is supported only for craft access for local management of the node. It must not be used as a general purpose DHCP server.
Parameters
- server-name
Specifies the name of local DHCP server.
- create
Keyword used to create the server name. The create keyword requirement can be enabled and disabled in the environment>create context.
force-renews
Syntax
[no] force-renews
Context
config>service>vprn>dhcp>server
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the sending of ‟forcerenew” messages.
The no form of this command disables the sending of ‟forcerenew” messages.
Default
no force-renews
pool
Syntax
pool pool-name [create]
no pool pool-name
Context
config>service>vprn>dhcp>local-dhcp-server
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a DHCP address pool on the router.
Parameters
- pool name
Specifies the name of this IP address pool. Allowed values are any string up to 32 characters composed of printable, 7-bit ASCII characters.
- create
Keyword used to create the entity. The create keyword requirement can be enabled or disabled in the environment>create context.
max-lease-time
Syntax
max-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
no max-lease-time
Context
config>service>vprn>dhcp>local-dhcp-server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum amount of time that a client can lease the IP address.
The no form of this command reverts to the default value.
Default
max-lease-time days 10
Parameters
- days
Specifies the number of days in the lease time.
- hours
Specifies the number of hours in the lease time.
- minutes
Specifies the number of minutes in the lease time.
- seconds
Specifies the number of seconds in the lease time.
min-lease-time
Syntax
min-lease-time [days days] [hrs hours] [min minutes] [sec seconds]
no min-lease-time
Context
config>service>vprn>dhcp>local-dhcp-server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum amount of time that a client can lease the IP address.
The no form of this command reverts to the default value.
Default
min-lease-time min 10
Parameters
- days
Specifies the number of days in the lease time.
- hours
Specifies the number of hours in the lease time.
- minutes
Specifies the number of minutes in the lease time.
- seconds
Specifies the number of seconds in the lease time.
minimum-free
Syntax
minimum-free minimum-free [percent] [event-when-depleted]
no minimum-free
Context
config>router>dhcp>server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the desired minimum number of free addresses in this pool.
The no form of this command reverts to the default value.
Default
1
Parameters
- minimum-free
Specifies the minimum number of free addresses.
- percent
Keyword to specify that the value is a percentage.
- event-when-depleted
Keyword that enables a system-generated event when all available addresses in the pool or subnet of the local DHCP server are depleted.
nak-non-matching-subnet
Syntax
[no] nak-non-matching-subnet
Context
config>router>dhcp>server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the local DHCPv4 server handling of an Option 50 request. Option 50 indicates a client request for a previously allocated message, as described in section 3.2 of RFC 2131, Dynamic Host Configuration Protocol.
When this command is enabled, the address allocation algorithm uses a pool to search for the address specified in Option 10. If the address is not found in the pool, the system returns a DHCP NAK message. If the message is found, the system drops the DHCP packet.
Default
no nak-non-matching-subnet
offer-time
Syntax
offer-time [min minutes] [sec seconds]
no offer-time
Context
config>service>vprn>dhcp>server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the offer time.
The no form of this command reverts to the default value.
Default
1 minute
Parameters
- minutes
Specifies the offer time in minutes.
- seconds
Specifies the offer time in seconds.
options
Syntax
options
Context
config>service>vprn>dhcp>server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure pool options. The options defined in this context can be overruled if the same option is defined in the local user database.
custom-option
Syntax
custom-option option-number address [ip-address...(up to 4 max)]
custom-option option-number hex hex-string
custom-option option-number string ascii-string
no custom-option option-number
Context
config>service>vprn>dhcp>server>pool>options
config>service>vprn>dhcp>server>pool>subnet>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures specific DHCP options. The option defined in this context can be overruled if the same option is defined in the local user database.
The no form of the removes the option from the configuration.
Parameters
- option-number
Specifies the option number that the DHCP server uses to send the identification strings to the DHCP client.
- address ip-address
Specifies the IP address of this host.
- hex hex-string
Specifies the hex value of this option.
- string ascii-string
Specifies the value of this option up to 127 characters.
dns-server
Syntax
dns-server ip-address [ip-address...(up to 4 max)]
Context
config>service>vprn>dhcp>server>pool>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address of the DNS server.
Parameters
- ip-address
Specifies the IP address of the DNS server. This address must be unique within the subnet and specified in dotted-decimal notation.
domain-name
Syntax
domain-name domain-name
no domain-name
Context
config>service>vprn>dhcp>server>pool>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the default domain for a DHCP client that the router uses to complete unqualified hostnames (without a dotted-decimal domain name).
The no form of this command removes the name from the configuration.
Parameters
- domain-name
Specifies the domain name for the client up to 127 characters.
lease-rebind-time
Syntax
lease-rebind-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-rebind-time
Context
config>service>vprn>dhcp>server>pool>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time the client transitions to a rebinding state.
The no form of this command removes the time from the configuration.
Parameters
- days
Specifies the number of days in the lease rebind time.
- hours
Specifies the number of hours in the lease rebind time.
- minutes
Specifies the number of minutes in the lease rebind time.
- seconds
Specifies the number of seconds in the lease rebind time.
lease-renew-time
Syntax
lease-renew-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-renew-time
Context
config>service>vprn>dhcp>server>pool>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time the client transitions to a renew state.
The no form of this command removes the time from the configuration.
Parameters
- days
Specifies the number of days in the lease renew time.
- hours
Specifies the number of hours in the lease renew time.
- minutes
Specifies the number of minutes in the lease renew time.
- seconds
Specifies the number of seconds in the lease renew time.
lease-time
Syntax
lease-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-time
Context
config>service>vprn>dhcp>server>pool>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the amount of time that the DHCP server grants to the DHCP client to use a particular IP address.
The no form of this command removes the lease time parameters from the configuration.
Parameters
- days
Specifies the number of days in the lease time.
- hours
Specifies the number of hours in the lease time.
- minutes
Specifies the number of minutes in the lease time.
- seconds
Specifies the number of seconds in the lease time.
subnet
Syntax
subnet {ip-address/mask | ip-address netmask} [create]
no subnet {ip-address/mask | ip-address netmask}
Context
config>service>vprn>dhcp>server>pool
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a subnet of IP addresses to be served from the pool. The subnet cannot include any addresses that were assigned to subscribers without those addresses specifically excluded. When the subnet is created, no IP addresses are made available until a range is defined.
Parameters
- ip-address
Specifies the base IP address of the subnet. This address must be unique within the subnet and specified in dotted-decimal notation.
- mask
Specifies the subnet mask in dotted-decimal notation.
- netmask
Specifies a string of 0s and 1s that mask or screen out the network part of an IP address so that only the host computer part of the address remains.
- create
Keyword used to create the entity. The create keyword requirement can be enabled or disabled in the environment>create context.
address-range
Syntax
[no] address-range start-ip-address end-ip-address
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a range of IP addresses to be served from the pool. All IP addresses between the start and end IP addresses are included (other than specific excluded addresses).
Parameters
- start-ip-address
Specifies the start address of this range to include. This address must be unique within the subnet and specified in dotted-decimal notation.
- end-ip-address
Specifies the end address of this range to include. This address must be unique within the subnet and specified in dotted-decimal notation.
exclude-addresses
Syntax
[no] exclude-addresses start-ip-address [end-ip-address]
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies a range of IP addresses that are excluded from the pool of IP addresses in this subnet.
Parameters
- start-ip-address
Specifies the start address of this range to exclude. This address must be unique within the subnet and specified in dotted-decimal notation.
- end-ip-address
Specifies the end address of this range to exclude. This address must be unique within the subnet and specified in dotted-decimal notation.
maximum-declined
Syntax
maximum-declined maximum-declined
no maximum-declined
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum number of declined addresses allowed.
Default
64
Parameters
- maximum-declined
Specifies the maximum number of declined addresses allowed.
minimum-free
Syntax
minimum-free minimum-free
no minimum-free
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum number of free addresses in this subnet. If the actual number of free addresses in this subnet falls below this configured minimum, a notification is generated.
Default
1
Parameters
- minimum-free
Specifies the minimum number of free addresses in this subnet.
default-router
Syntax
default-router ip-address [ip-address...(up to 4 max)]
no default-router
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address of the default router for a DHCP client. Up to four IP addresses can be specified.
The no form of this command removes the addresses from the configuration.
Parameters
- ip-address
Specifies the IP address of the default router. This address must be unique within the subnet and specified in dotted-decimal notation.
subnet-mask
Syntax
subnet-mask ip-address
no subnet-mask
Context
config>service>vprn>dhcp>server>pool>subnet
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the subnet-mask option to the client. The mask can either be defined (for supernetting) or taken from the pool address.
The no form of this command removes the address from the configuration.
Parameters
- ip-address
Specifies the IP address of the subnet mask. This address must be unique within the subnet and specified in dotted-decimal notation.
use-gi-address
Syntax
[no] use-gi-address
Context
config>service>vprn>dhcp>server
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the use of gateway IP address (GIADDR) matching. If the gi-address flag is enabled, a pool can be used even if a subnet is not found. If the local-user-db-name is not used, the gi-address flag is used and addresses are handed out by GI only. If a user must be blocked from getting an address, the server maps to a local user database and configures the user with no address.
A pool can include multiple subnets. Because the GIADDR is shared by multiple subnets in a subscriber-interface, the pool may provide IP addresses from any of the subnets included when the GIADDR is matched to any of its subnets. This allows a pool to be created that represents a subnet.
Default
no use-gi-address
user-db
Syntax
user-db local-user-db-name
no user-db
Context
config>service>vprn>dhcp>server
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a local user database for authentication.
Default
no user-db
Parameters
- local-user-db-name
Specifies the name of a local user database.
vrf-target
Syntax
vrf-target {ext-community | export ext-community | import ext-community}
no vrf-target
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the route target to be added to the advertised routes or compared against the received routes from other VRFs on the same or remote PE routers. Specified vrf-import or vrf-export policies override the vrf-target policy.
The no form of this command removes the vrf-target.
Default
no vrf-target
Parameters
- ext-community
Specifies an extended BGP community in the type:x:y format. The value x can be an integer or IP address. The type can be the target or origin. x and y are 16-bit integers.
- import ext-community
Specifies communities allowed to be accepted from remote PE neighbors.
- export ext-community
Specifies communities allowed to be sent to remote PE neighbors.
IPOE commands
subscriber-mgmt
Syntax
subscriber-mgmt
Context
config
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure subscriber management entities. A subscriber is uniquely identified by a subscriber identification string. Each subscriber can have one DHCP session active at any time. Each session is referred to as a subscriber host and is identified by its IP address and MAC address.
On 7210 SAS-K 2F6C4T, the 7x50 subscriber management CLI is inherited to allow users to configure a DHCP address for specific hosts when using DHCP server for local craft access. 7210 SAS platforms do not support subscriber management. In all the commands under this section, in the context of 7210 SAS usage, DHCP subscriber refers to an IP host requesting an IP address.
local-user-db
Syntax
local-user-db local-user-db-name [create]
Context
config>subscr-mgmt
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a local user database.
Default
no local-user-db
Parameters
- local-user-db-name
Specifies the name of a local user database.
- create
Keyword to create the local user database.
ipoe
Syntax
ipoe
Context
config>subscr-mgmt>loc-user-db
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures IPoE host parameters.
mask
Syntax
mask type dhcp-match-type {[prefix-string prefix-string | prefix-length prefix-length] [suffix-string suffix-string | suffix-length suffix-length]}
no mask type dhcp-match-type
Context
config>subscr-mgmt>loc-user-db>ipoe
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the mask.
Parameters
- dhcp-match-type
Specifies up to four matching types to identify a host.
- prefix-string prefix-string
Specifies a substring that is removed from the start of the incoming circuit ID before it is matched against the value configured in the DHCP or PPPOE circuit ID. This string can contain only printable ASCII characters. The ‟*” character is a wildcard that matches any substring. If a ‟\” character is masked, use the escape key so it becomes ‟\\”.
- prefix-length prefix-length
Specifies the number of characters to remove from the start of the incoming circuit ID before it is matched against the value configured in the DHCP circuit ID.
- suffix-string suffix-string
Specifies a substring that is removed from the end of the incoming circuit ID before it is matched against the value configured in DHCP circuit ID. This string can only contain printable ASCII characters. The ‟*” character is a wildcard that matches any substring. If a ‟\” character is masked, use the escape key so it becomes ‟\\”.
- suffix-length suffix-length
Specifies the number of characters to remove from the end of the incoming circuit ID before it is matched against the value configured in the DHCP circuit ID.
host
Syntax
host host-name [create]
no host host-name
Context
config>subscr-mgmt>loc-user-db>ipoe
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command defines a DHCP subscriber.
Parameters
- host-name
Specifies the host name.
- create
Keyword used to create the host name. The create keyword requirement can be enabled or disabled in the environment>create context.
address
Syntax
address gi-address [scope scope]
address ip-address[/prefix-length]
address pool pool-name [secondary-pool sec-pool-name] [delimiter delimiter]
address use-pool-from-client [delimiter delimiter]
no address
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address definition for the host.
When the user database is from a local DHCP server, this command defines the IP address the server ‟offers” to the DHCP-client.
When the user database is used for PPPoE authentication, the gi-address parameter cannot be used. A fixed IP address then causes PPPoE to use this IP address. If no IP address is specified, the PPPoE looks for an IP address by other means (in this case, DHCP). If a pool name is specified, this pool is sent in the DHCP request so that it can be used by the DHCP server to determine which address to give to the host.
The no form of this command causes no IP address to be assigned to this host. In a user database referred to from a local DHCP server, creating a host without address information causes the matching client to never receive an IP address.
The no form of this command reverts to the default.
Default
no address
Parameters
- gi-address
When specified, the gi-address of the DHCP message is taken to look for a subnet in the local DHCP server. The first available free address of the subnet is taken and ‟offered” to the host. When local-user-db is used for PPPoE authentication, this has the same result as no address.
- ip-address
Specifies the fixed IP address to use for this host.
- pool-name/sec-pool-name
Specifies the primary (and secondary) pool (in the local DHCP server) to use to search for an available address. The first available IP address from any subnet in the pool is used. When the local user database is used for PPPoE authentication, the specified pool name is sent to the DHCP server in a vendor-specific suboption under Option 82
- use-pool-from-client
Specifies to use the pool-name in the Option 82 vendor-specific suboption.
- delimiter delimiter
Specifies a single ASCII character as the delimiter to separate primary and secondary pool names in Option 82 VSO.
gi-address
Syntax
gi-address ip-address
no gi-address
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the selection of GI addresses based on the host entry in local use database.
The gi-address must be a valid address (associated with an interface) within the routing context that received the DHCP message on the access side.
Default
no gi-address
Parameters
- ip-address
Specifies the IPv4 GI address.
auth-domain-name
Syntax
auth-domain-name domain-name
no auth-domain-name
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the domain name that is appended to a user name in RADIUS-authentication-request messages for the specific host.
Parameters
- domain-name
Specifies the domain name to be appended to a user name in RADIUS-authentication-request message for the specific host.
host-identification
Syntax
host-identification
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure host identification parameters.
server
Syntax
server ip-address
no server
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address of the DHCP server to which to relay.
The no form of this command removes the DHCP server IP address from the configuration.
The configured DHCP server IP address must reference one of the addresses configured under the DHCP CLI context of an IES or VPRN subscriber.
Default
no server
Parameters
- ip-address
Specifies the IP address of the DHCP server.
circuit-id
Syntax
circuit-id string ascii-string
circuit-id hex hex-string
no circuit-id
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the circuit ID to match.
Parameters
- ascii-string
Specifies the circuit ID from the Option 82.
- hex-string
Specifies the circuit ID in hexadecimal format from the Option 82.
encap-tag-range
Syntax
encap-tag-range start-tag start-tag end-tag end-tag
no encap-tag-range
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a range of encapsulation tags as the host identifications. The encapsulation tag is dot1q or qinq on an Ethernet port.
For dot1q, the start and end tag is single number, ranging from 0 ti 4094; for QinQ, the start and end tag format is x.y, x or y could be ‟*”, which indicates to ignore the inner or outer tag.
This command can be used only when encap-tag-range is configured as one of the match-list parameters.
The no form of this command removes the values from the configuration.
Parameters
- start-tag start-tag
Specifies the value of the start label in the range of SAPs allowed on this host.
- end-tag end-tag
Specifies the value of the end label in the range of SAPs allowed on this host.
mac
Syntax
mac ieee-address
no mac
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the MAC address to match.
Parameters
- ieee-address
Specifies the 48-bit MAC address in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee, and ff are hexadecimal numbers.
option60
Syntax
option60 hex-string
no option60
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the Vendor-Identifying Vendor Option to match. Option 60 is encoded as Type-Length-Value (TLV). The hex-string portion of Option 60 in the received DHCP request is used for matching. Only the first 32 bytes can be defined using this command. If Option 60 included in the message is longer, those bytes are ignored.
The no form of this command reverts to the default.
Default
no option60
Parameters
- hex-string
Specifies the hex value of this option.
remote-id
Syntax
remote-id hex-string
remote-id ascii-string
no remote-id
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the remote ID of the host.
The no form of this command reverts to the default value.
Default
no remote-id
Parameters
- remote-id
Specifies the remote ID.
sap-id
Syntax
sap-id sap-id
no sap-id
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the SAP ID from the Nokia vendor-specific suboption in Option 82 to match.
Parameters
- sap-id
Specifies a SAP ID, up to 255 characters.
service-id
Syntax
service-id service-id
no service-id
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies an existing service ID from the Nokia vendor-specific suboption in Option 82 to match.
Parameters
- service-id
Specifies an existing service ID.
string
Syntax
string string
no string
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the string from the Nokia vendor-specific suboption in Option 82 to match.
Parameters
- string
Specifies the string, up to 255 characters.
system-id
Syntax
system-id system-id
no system-id
Context
config>subscr-mgmt>loc-user-db>ipoe>host>host-ident
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the system ID from the Nokia vendor-specific suboption in Option 82 to match.
Parameters
- system-id
Specifies the system ID, up to 255 characters.
options
Syntax
options
Context
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure pool options. The options defined at the host level are overruled if the same option is defined at the local user database level.
custom-option
Syntax
custom-option option-number address [ip-address...(up to 4 max)]
custom-option option-number hex hex-string
custom-option option-number string ascii-string
no custom-option option-number
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures specific DHCP options. The options defined at the host level are overruled if the same option is defined at the local user database level.
The no form of this command removes the option from the configuration.
Parameters
- option-number
Specifies the option number that the DHCP server uses to send the identification strings to the DHCP client.
- address ip-address
Specifies the IP address of this host.
- hex hex-string
Specifies the hex value of this option.
- string ascii-string
Specifies the value of this option, up to 127 characters.
default-router
Syntax
default-router ip-address [ip-address...(up to 4 max)]
no default-router
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address of the default router for a DHCP client. Up to four IP addresses can be specified.
The no form of this command removes the addresses from the configuration.
Parameters
- ip-address
Specifies the IP address of the default router. This address must be unique within the subnet and specified in dotted-decimal notation.
dns-server
Syntax
dns-server address [ip-address...(up to 4 max)]
no dns-server
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP address of the DNS server.
Parameters
- ipv6-address
Specifies the IPv4 address of the DNS server. This address must be unique within the subnet and specified in dotted-decimal notation.
domain-name
Syntax
domain-name domain-name
no domain-name
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the default domain for a DHCP client that the router uses to complete unqualified host names (without a dotted-decimal domain name).
The no form of this command removes the name from the configuration.
Parameters
- domain-name
Specifies the domain name for the client, up to 127 characters.
lease-rebind-time
Syntax
lease-rebind-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-rebind-time
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time the client transitions to a rebinding state.
The no form of this command removes the time from the configuration.
Parameters
- days
Specifies the number of days in the lease rebind time.
- hours
Specifies the number of hours in the lease rebind time.
- minutes
Specifies the number of minutes in the lease rebind time.
- seconds
Specifies the number of seconds in the lease rebind time.
lease-renew-time
Syntax
lease-renew-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-renew-time
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time the client transitions to a renew state.
The no form of this command removes the time from the configuration.
Parameters
- days
Specifies the number of days in the lease renew time.
- hours
Specifies the number of hours in the lease renew time.
- minutes
Specifies the number of minutes in the lease renew time.
- seconds
Specifies the number of seconds in the lease renew time.
lease-time
Syntax
lease-time [days days] [hrs hours] [min minutes] [sec seconds]
no lease-time
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the amount of time that the DHCP server grants to the DHCP client to use a particular IP address.
The no form of this command removes the lease time parameters from the configuration.
Parameters
- days
Specifies the number of days in the lease time.
- hours
Specifies the number of hours in the lease time.
- minutes
Specifies the number of minutes in the lease time.
- seconds
Specifies the number of seconds in the lease time.
subnet-mask
Syntax
subnet-mask ip-address
no subnet-mask
Context
config>subscr-mgmt>loc-user-db>ipoe>host>options
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the subnet-mask option to the client. The mask can either be defined (for supernetting) or taken from the pool address.
The no form of this command removes the address from the configuration.
Parameters
- ip-address
Specifies the IP address of the subnet mask. This address must be unique within the subnet and specified in dotted-decimal notation.
mask
Syntax
mask type dhcp-match-type {[prefix-string prefix-string | prefix-length prefix-length] [suffix-string suffix-string | suffix-length suffix-length]}
no mask type dhcp-match-type
Context
config>subscr-mgmt>loc-user-db>ipoe
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the mask.
Parameters
- dhcp-match-type
Specifies the data type that represents the type of matching done to identify a DHCP host.
- prefix-string prefix-string
Specifies a substring that is stripped of the start of the incoming circuit ID before it is matched against the value configured in the DHCP circuit ID. This string can only contain printable ASCII characters. The ‟*” character is a wildcard that matches any substring. If a "\" character is masked, use the escape key so it becomes "\\".
- prefix-length prefix-length
Specifies the number of characters to remove from the start of the incoming circuit ID before it is matched against the value configured in the circuit ID.
- suffix-string suffix-string
Specifies a substring that is stripped of the end of the incoming circuit ID before it is matched against the value configured in circuit ID.
This string can contain only printable ASCII characters. The ‟*” character is a wildcard that matches any substring. If a "\" character is masked, use the escape key so it becomes "\\".
- suffix-length suffix-length
Specifies the number of characters to remove from the end of the incoming circuit ID before it is matched against the value configured in the circuit ID.
match-list
Syntax
match-list match-type-1 [match-type-2...(up to 4 max)]
no match-list
Context
config>subscr-mgmt>loc-user-db>ipoe
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the type of matching done to identify a host.
Default
no match-list
Parameters
- match-type-x
Specifies up to four matching types to identify a host.
shutdown
Syntax
[no] shutdown
Context
config>subscr-mgmt>loc-user-db
config>subscr-mgmt>loc-user-db>ipoe>host
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command administratively disables an entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
The no form of this command places the entity into an administratively enabled state.
SDP commands
spoke-sdp
Syntax
[no] spoke-sdp sdp-id
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command binds a service to an existing Service Distribution Point (SDP). The SDP defines the transport tunnel to which this VPRN service is bound.
The SDP has an operational state that determines the operational state of the SDP within the service; for example, if the SDP is administratively or operationally down, the SDP for the service is down.
The SDP must exist in the config>service>sdp context before it can be associated with a VPRN service. If the sdp sdp-id is not already configured, an error message is generated. If the sdp-id exists, a binding between the specific sdp-id and service is created.
SDPs must be explicitly associated and bound to a service to allow far-end routers to participate in the service. Alternatively, auto-bind can be used. With auto-bind, no VPRN spoke-SDP configuration is required. When both auto-bind and spoke-sdp are configured, spoke-sdp takes precedence. The spoke-sdp configuration must be undone for auto-bind to take effect.
The no form of this command removes the SDP binding from the service; the SDP configuration is not affected. When the SDP binding is removed, no packets are forwarded to the far-end router.
Special Cases
- VPRN
Several SDPs can be bound to a VPRN service. Each SDP must be destined to a different 7210 SAS router. If two sdp-id bindings terminate on the same 72107210 SAS, an error occurs and the second SDP binding is rejected.
Parameters
- sdp-id
Specifies the SDP identifier. Allowed values are integers for existing SDPs.
- vc-id
Specifies the virtual circuit identifier.
Interface commands
interface
Syntax
interface ip-int-name
no interface ip-int-name
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates a logical IP routing interface for a Virtual Private Routed Network (VPRN). When created, attributes like an IP address and SAP can be associated with the IP interface.
The interface command, under the context of services, is used to create and maintain IP routing interfaces within VPRN service IDs. The interface command can be executed in the context of an VPRN service ID. The IP interface created is associated with the service core network routing instance and default routing table. The typical use for IP interfaces created in this manner is for subscriber Internet access.
Interface names are case-sensitive and must be unique within the group of IP interfaces defined for config router interface and config service vprn interface. Interface names must not be in the dotted-decimal notation of an IP address; for example, the name 1.1.1.1 is not allowed, but int-1.1.1.1 is allowed. Show commands for router interfaces use either interface names or IP addresses. Use unique IP address values and IP address names to maintain clarity. It could be unclear to the user if the same IP address and IP address name values are used. Although not recommended, duplicate interface names can exist in different router instances.
The available IP address space for local subnets and routes is controlled with the config router service-prefix command. The service-prefix command administers the allowed subnets that can be defined on service IP interfaces. It also controls the prefixes that may be learned or statically defined with the service IP interface as the egress interface. This allows segmenting the IP address space into config router and config service domains.
When a new name is entered, a new logical router interface is created. When an existing interface name is entered, the user enters the router interface context for editing and configuration.
By default, there are no default IP interface names defined within the system. All VPRN IP interfaces must be explicitly defined. Interfaces are created in an enabled state.
The no form of this command removes IP the interface and all the associated configuration. The interface must be administratively shut down before issuing the no interface command.
For VPRN services, the IP interface must be shut down before the SAP on that interface may be removed. VPRN services do not have the shutdown command in the SAP CLI context. VPRN service SAPs rely on the interface status to enable and disable them.
Parameters
- ip-int-name
Specifies the name of the IP interface. Interface names must be unique within the group of defined IP interfaces for config router interface and config service vprn interface commands. An interface name cannot be in the form of an IP address. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
If ip-int-name already exists within the service ID, the context will be changed to maintain that IP interface. If ip-int-name already exists within another service ID or is an IP interface defined within the config router commands, an error will occur and context will not be changed to that IP interface. If ip-int-name does not exist, the interface is created and context is changed to that interface for further command processing.
address
Syntax
address ip-address/mask | ip-address netmask} [broadcast [all-ones | host-ones]
no address
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns an IP address, IP subnet, and broadcast address format to a VPRN IP router interface. Only one IP address can be associated with an IP interface.
An IP address must be assigned to each VPRN IP interface. An IP address and a mask are used together to create a local IP prefix. The defined IP prefix must be unique within the context of the routing instance. It cannot overlap with other existing IP prefixes defined as local subnets on other IP interfaces in the same routing context within the 7210 SAS.
The local subnet that the address command defines must be part of the services address space within the routing context using the config router service-prefix command. The default is to disallow the complete address space to services. When a portion of the address space is allocated as a service prefix, that portion can be made unavailable for IP interfaces defined in the config>router>interface context for network core connectivity with the exclude option in the config router service-prefix command.
The IP address for the interface can be entered in either the Classless Inter-Domain Routing (CIDR) or traditional dotted-decimal notation. The show commands display CIDR notation and are stored in configuration files.
By default, no IP address or subnet association exists on an IP interface until it is explicitly created.
Use the no form of this command to remove the IP address assignment from the IP interface. When the no address command is entered, the interface becomes operationally down.
Address |
Admin state |
Oper state |
---|---|---|
No address |
up |
down |
No address |
down |
down |
1.1.1.1 |
up |
up |
1.1.1.1 |
down |
down |
The operational state is a read-only variable. The address and admin states are the only controlling variables and can be set independently. If an address is assigned to an interface that is in an administratively up state, it becomes operationally up and the protocol interfaces and the MPLS LSPs associated with that IP interface are reinitialized.
Parameters
- ip-address
Specifies the IP address of the IP interface. The ip-address portion of the address command specifies the IP host address that will be used by the IP interface within the subnet. This address must be unique within the subnet and specified in dotted-decimal notation. Allowed values are IP addresses.
- /
The forward slash is a parameter delimiter and separates the ip-address portion of the IP address from the mask that defines the scope of the local subnet. No spaces are allowed between the ip-address, the ‟/” and the mask-length parameter. If a forward slash is not immediately following the ip-address, a dotted-decimal mask must follow the prefix.
- mask
Specifies the subnet mask length when the IP prefix is specified in CIDR notation. When the IP prefix is specified in CIDR notation, a forward slash (/) separates the ip-address from the mask parameter. The mask length parameter indicates the number of bits used for the network portion of the IP address; the remainder of the IP address is used to determine the host portion of the IP address.
- netmask
Specifies the subnet mask in dotted-decimal notation. When the IP prefix is not specified in CIDR notation, a space separates the ip-address from a traditional dotted-decimal mask. The mask parameter indicates the complete mask that is used in a logical ‟AND” function to derive the local subnet of the IP address. Allowed values are dotted-decimal addresses. A mask of 255.255.255.255 is reserved for system IP addresses.
- broadcast
Keyword that overrides the default broadcast address used by the IP interface when sourcing IP broadcasts on the IP interface. If no broadcast format is specified for the IP address, the default value is host-ones which indicates a subnet broadcast address. Use this parameter to change the broadcast address to all-ones or revert back to a broadcast address of host-ones.
The broadcast format on an IP interface can be specified when the IP address is assigned or changed.
This parameter does not affect the type of broadcasts that can be received by the IP interface. A host sending either the local broadcast (all-ones) or the valid subnet broadcast address (host-ones) will be received by the IP interface.
- all-ones
Keyword to specify that the broadcast address used by the IP interface for this IP address will be 255.255.255.255, also known as the local broadcast.
- host-ones
Keyword to specify that the broadcast address used by the IP interface for this IP address will be the subnet broadcast address. This is an IP address that corresponds to the local subnet described by the ip-address and the mask-length or mask with all the host bits set to binary one. This is the default broadcast address used by an IP interface.
The broadcast parameter within the address command does not have a negation feature, which is usually used to revert a parameter to the default value. To change the broadcast type to host-ones after being changed to all-ones, the address command must be executed with the broadcast parameter defined.
allow-directed-broadcasts
Syntax
[no] allow-directed-broadcasts
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the forwarding of directed broadcasts out of the IP interface.
A directed broadcast is a packet received on a local router interface destined for the subnet broadcast address on another IP interface. The allow-directed-broadcasts command on an IP interface enables or disables the transmission of packets destined for the subnet broadcast address of the egress IP interface.
When enabled, a frame destined for the local subnet on this IP interface will be sent as a subnet broadcast out this interface. Care should be exercised when allowing directed broadcasts because it is a well-known mechanism used for denial-of-service attacks.
When disabled, directed broadcast packets discarded at this egress IP interface will be counted in the normal discard counters for the egress SAP.
By default, directed broadcasts are not allowed and will be discarded at this egress IP interface.
The no form of this command disables the forwarding of directed broadcasts out of the IP interface.
Default
no allow-directed-broadcasts
ip-mtu
Syntax
ip-mtu octets
no ip-mtu
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP maximum transmit unit (packet) for this interface.
The no form of this command reverts to the default value.
Default
no ip-mtu
Parameters
- octets
Specifies the MTU for this interface.
loopback
Syntax
[no] loopback
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the associated interface as a loopback interface that has no associated physical interface. As a result, the associated interface cannot be bound to a SAP.
When using mtrace/mstat in a Layer 3 VPN context, the configuration for the VPRN should have a loopback address configured that has the same address as the core instance system address (BGP next hop).
local-proxy-arp
Syntax
[no] local-proxy-arp
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables local proxy ARP. When local proxy ARP is enabled on an IP interface, the system responds to all ARP requests for IP addresses belonging to the subnet with its own MAC address, and therefore becomes the forwarding point for all traffic between hosts in that subnet. When the local-proxy-arp command is enabled, ICMP redirects on the ports associated with the service are automatically blocked.
Default
no local-proxy-arp
mac
Syntax
[no] mac ieee-mac-address
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns a specific MAC address to a VPRN IP interface. The default is the physical MAC address associated with the Ethernet interface on which the SAP is configured.
The no form of this command reverts the MAC address of the IP interface to the default value.
Parameters
- ieee-mac-address
Specifies the 48-bit MAC address for the static ARP in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers.
Allowed values are any non-broadcast, non-multicast MAC, and non-IEEE reserved MAC addresses.
proxy-arp
Syntax
[no] proxy-arp
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables proxy ARP on the interface.
Default
no proxy-arp
proxy-arp-policy
Syntax
[no] proxy-arp-policy policy-name [policy-name...(up to 5 max)]
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables a proxy ARP policy for the interface.
The no form of this command disables the proxy ARP capability.
Default
no proxy-arp
Parameters
- policy-name
Specifies the export route policy name. Allowed values are any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
remote-proxy-arp
Syntax
[no] remote-proxy-arp
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables remote proxy ARP on the interface.
Remote proxy ARP is similar to proxy ARP. It allows the router to answer an ARP request on an interface for a subnet that is not provisioned on that interface. This allows the router to forward to the other subnet on behalf of the requester. To distinguish remote proxy ARP from local proxy ARP, local proxy ARP performs a similar function but only when the requested IP is on the receiving interface.
static-arp
Syntax
static-arp ip-address ieee-address
static-arp ieee-address unnumbered
no static-arp ip-address [ieee-address]
no static-arp [ieee-address] unnumbered
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C.
Description
This command configures a static address resolution protocol (ARP) entry associating an IP address or an unnumbered address with a MAC address for the core router instance. This static ARP appears in the core routing ARP table. A static ARP can be configured only if it exists on the network attached to the IP interface.
If an entry for a particular IP address or unnumbered address already exists and a new MAC address is configured for the IP address, the existing MAC address will be replaced with the new MAC address.
The no form of this command removes a static ARP entry.
Parameters
- ip-address
Specifies the IP address for the static ARP in IP address dotted-decimal notation.
- ieee-address
Specifies the 48-bit MAC address for the static ARP in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers. Allowed values are any non-broadcast, non-multicast MAC and non-IEEE reserved MAC addresses.
- unnumbered
Specifies the static ARP MAC for an unnumbered interface. Unnumbered interfaces support dynamic ARP. If this parameter is configured, it overrides any dynamic ARP.
unnumbered
Syntax
unnumbered ip-int-name | ip-address
no unnumbered
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C.
Description
This command sets an IP interface as an unnumbered interface and specifies the IP address to be used for the interface.
To conserve IP addresses, unnumbered interfaces can be configured. The address used when generating packets on this interface is the ip-address parameter configured.
An error message is generated when an unnumbered interface is configured and an IP address already exists on this interface
The no form of this command removes the IP address from the interface, effectively removing the unnumbered property. The interface must be shut down before the no unnumbered command is issued to delete the IP address from the interface or an error message is generated.
Default
no unnumbered
Parameters
- ip-int-name | ip-address
Specifies the IP interface name or IP address with which to associate the unnumbered IP interface in dotted-decimal notation. The configured IP address must exist on this node. Nokia recommends using the system IP address, because it is not associated with a particular interface and is therefore always reachable. The system IP address is the default if ip-int-name or ip-address is not configured.
VPRN IPv6 interface commands
ipv6
Syntax
ipv6
no ipv6
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables IPv6 for a VPRN interface.
The no form of this command disables IPv6.
Default
no ipv6
address
Syntax
ipv6 ipv6-address/prefix-length [eui-64] [preferred]
no ipv6 ipv6-address/prefix-length
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns an address to the IPv6 interface.
The no form of this command deletes the specified IPv6 address.
Parameters
- ipv6-address/prefix-length
Specifies the interface IP address.
- eui-64
Keyword to specify that a complete IPv6 address from the supplied prefix and 64-bit interface identifier is formed. The 64-bit interface identifier is derived from the MAC address on Ethernet interfaces.
- preferred
Keyword to specify that the IPv6 address is the preferred IPv6 address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred address maybe used as the source (or destination) address of packets sent from (or to) the interface.
icmp
Syntax
icmp
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures ICMPv6 parameters for the interface.
packet-too-big
Syntax
packet-too-big number seconds
no packet-too-big
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether, and how often, ICMPv6 ‟packet-too-big” messages should be sent. When enabled, ICMPv6 ‟packet-too-big” messages are generated by this interface.
The no form of this command disables the sending of ICMPv6 ‟packet-too-big” messages.
Default
no packet too big
Parameters
- number
Specifies the number of ICMPv6 ‟packet-too-big” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟packet-too-big” messages sent.
param-problem
Syntax
param-problem number seconds
no param-problem
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether, and how often, ICMPv6 ‟parameter-problem” messages should be sent. When enabled, ICMPv6 ‟parameter-problem” messages are generated by this interface.
The no form of this command disables the sending of ICMPv6 ‟parameter-problem” messages.
Default
no param-problem
Parameters
- number
Specifies the number of ICMPv6 ‟parameter-problem” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟parameter-problem” messages sent.
redirects
Syntax
redirects number seconds
no redirects
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures ICMPv6 ‟redirect” messages. When enabled, ICMPv6 redirects are generated when routes are not optimal on this router, and another router on the same subnetwork has a better route to alert that node that a better route is available should be sent.
The no form of this command disables the sending of ICMPv6 redirect messages.
Default
no redirects
Parameters
- number
Specifies the number of ICMPv6 ‟redirect” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟redirect” messages sent.
time-exceeded
Syntax
time-exceeded number seconds
no time-exceeded
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate for ICMPv6 ‟time-exceeded” messages.
The no form of this command disables the sending of ICMPv6 ‟time-exceeded” messages.
Default
no time-exceeded
Parameters
- number
Specifies the number of ICMPv6 ‟time-exceeded” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟time-exceeded” messages sent.
unreachables
Syntax
unreachables number seconds
no unreachables
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables and configures the rate for ICMPv6 host and network destination ‟unreachables” messages issued on the router interface.
The no form of this command disables the generation of ICMPv6 destination ‟unreachables” messages on the router interface.
Default
no unreachables
Parameters
- number
Specifies the number of ICMPv6 ‟unreachables” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟unreachables” messages sent.
link-local-address
Syntax
ipv6 ipv6-address [preferred]
no ipv6 ipv6-address/prefix-length
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns the IPv6 link local address to the interface.
Parameters
- ipv6-address
Specifies the IPv6 link local address.
- preferred
Keyword to specify that the IPv6 link local address is the preferred IPv6 link local address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred addresses maybe used as the source (or destination) address of packets sent from (or to) the interface.
local-proxy-nd
Syntax
local-proxy-nd number seconds
no local-proxy-nd
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables local proxy neighbor discovery on the interface.
The no form of this command disables local proxy neighbor discovery.
Default
no local-proxy-nd
neighbor
Syntax
neighbor ipv6-address mac-address
no neighbor ipv6-address
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures IPv6-to-MAC address mapping on the interface.
The no form of this command deletes IPv6-to-MAC address mapping for the specified IPv6 address.
Parameters
- ipv6-address
Specifies the IPv6 address.
- mac-address
Specifies the 48-bit MAC address for the IPv6-to-MAC address mapping in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers. Allowed values are any unicast MAC addresses and non-IEEE reserved MAC addresses
proxy-nd-policy
Syntax
proxy-nd-policy policy-name [policy-name...(up to 5 max)]
no proxy-nd-policy
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command applies a proxy neighbor discovery policy for the interface.
The no form of this command disables the proxy neighbor discovery policy application.
Default
no proxy-nd-policy
Parameters
- policy-name
Specifies an existing neighbor discovery policy name. Allowed values are any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (such as #, $, spaces), the entire string must be enclosed within double quotes. The specified policy names must already be defined.
urpf-check
Syntax
urpf-check
Context
config>service>vprn>interface>ipv6
config>service>vprn>interface
Platforms
7210 SAS-K 3SFP+ 8Cs
Description
This command enables unicast RPF (uRPF) check on this interface.
The no form of this command disables unicast RPF (uRPF) check on this interface.
ignore-default
Syntax
[no] ignore-default
Context
config>service>vprn>urpf-check
config>router>urpf-check>ipv6
config>service>vprn>urpf-check>ipv6
Platforms
7210 SAS-K 3SFP+ 8C
Description
This command configures the uRPF check feature (if enabled) to ignore default routes for purposes of determining the validity of incoming packets.
The no form of this command considers the default route to be eligible when performing a uRPF check.
Default
no ignore-default
arp-timeout
Syntax
arp-timeout seconds
no arp-timeout
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum time in seconds an ARP entry learned on the IP interface will be stored in the ARP table. ARP entries are automatically refreshed when an ARP request or gratuitous ARP is seen from an IP host; otherwise, the ARP entry is aged from the ARP table. If arp-timeout is set to a value of zero seconds, ARP aging is disabled.
The no form of this command reverts to the default value.
Default
14400 seconds
Parameters
- seconds
Specifies the minimum number of seconds a learned ARP entry will be stored in the ARP table, expressed as a decimal integer. A value of zero specifies that the timer is inoperative and learned ARP entries will not be aged.
delayed-enable
Syntax
delayed-enable seconds [init-only]
no delayed-enable
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command delays making an interface operational by the specified number of seconds.
In environments with many subscribers, it can take time to synchronize the subscriber state between peers when the subscriber-interface is enabled (for example, after a reboot). To ensure that the state has time to be synchronized, the delayed-enable timer can be specified. The optional init-only parameter can be added to use this timer only after a reboot.
Default
no delayed-enable
Parameters
- seconds
Specifies the number of seconds to delay before the interface is operational.
- init-only
Keyword that delays the initialization of the subscriber-interface to give the rest of the system time to complete necessary tasks, such as allowing routing protocols to converge or allowing MCS to sync the subscriber information. The delay occurs only immediately after a reboot.
vpls
Syntax
vpls service-name
Context
config>service
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command, within the IP interface context, binds the IP interface to the specified service name.
The system does not attempt to resolve the service name provided until the IP interface is placed into the administratively up state (no shutdown). When the IP interface is administratively up, the system scans the available VPLS services that have the allow-ip-int-binding flag set for a VPLS service associated with the name. If the service name is bound to the service name when the IP interface is already in the administratively up state, the system immediately attempts to resolve the specific name.
If a VPLS service is found associated with the name and the allow-ip-int-binding flag is set, the IP interface will be attached to the VPLS service, which allows routing to and from the service virtual ports when the IP interface is operational.
A VPLS service associated with the specified name that does not have the allow-ip-int-binding flag set or a non-VPLS service associated with the name will be ignored and will not be attached to the IP interface.
If the service name is applied to a VPLS service after the service name is bound to an IP interface and the VPLS service allow-ip-int-binding flag is set at the time the name is applied, the VPLS service is automatically resolved to the IP interface if the interface is administratively up or when the interface is placed in the administratively up state.
If the service name is applied to a VPLS service without the allow-ip-int-binding flag set, the system does not attempt to resolve the applied service name to an existing IP interface bound to the name. To rectify this condition, the flag must first be set and then the IP interface must enter or reenter the administratively up state.
While the specified service name may be assigned to only one service context in the system, it is possible to bind the same service name to more than one IP interface. If two or more IP interfaces are bound to the same service name, the first IP interface to enter the administratively up state (if currently administratively down) or to reenter the administratively up state (if currently administratively up) when a VPLS service is configured with the name and has the allow-ip-int-binding flag set will be attached to the VPLS service. Only one IP interface is allowed to attach to a VPLS service context. No error is generated for the remaining non-attached IP interfaces using the service name.
When an IP interface is attached to a VPLS service, the name associated with the service cannot be removed or changed until the IP interface name binding is removed. Also, the allow-ip-int-binding flag cannot be removed until the attached IP interface is unbound from the service name. Unbinding the service name from the IP interface causes the IP interface to detach from the VPLS service context. The IP interface may then be bound to another service name or a SAP or SDP binding may be created for the interface using the SAP or spoke-SDP commands on the interface.
Parameters
- service-name
Specifies the service name that the system will attempt to resolve to an allow-ip-int-binding enabled VPLS service associated with the name. This parameter is required when using the IP interface VPLS command. The specified name is expressed as an ASCII string comprised of up to 32 characters. It does not need to already be associated with a service, and the system does not check to ensure that multiple IP interfaces are not bound to the same name.
ingress
Syntax
ingress
Context
config>service>vprn>if>vpls
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command within the VPLS binding context defines the routed IP filter ID optional filter overrides.
v4-routed-override-filter
Syntax
v4-routed-override-filter ip-filter-id
no v4-routed-override-filter
Context
config>service>ies>if>vprn>ingress
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies an IP filter ID that is applied to all ingress packets entering the VPLS service. The filter overrides the existing ingress IP filter applied to SAPs or SDP bindings for packets associated with the routing IP interface. The override filter is optional and, if not defined or removed, the IP routed packets use the existing ingress IP filter on the VPLS virtual port.
The no form of this command removes the IP routed override filter from the ingress IP interface. When removed, the IP ingress routed packets within a VPLS service attached to the IP interface use the IP ingress filter applied to the packet virtual port, when defined.
Parameters
- ip-filter-id
Specifies the ID for the IP filter policy. Allowed values are integers that correspond to a previously created IP filter policy in the configure>filter>ip-filter context.
IPv6 router advertisement commands
router-advertisement
Syntax
[no] router-advertisement
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures router advertisement properties. By default, it is disabled for all IPv6 enabled interfaces.
The no form of this command disables all IPv6 interface. However, the no interface interface-name command disables a specific interface.
Default
disabled
interface
Syntax
[no] interface ip-int-name
Context
config>service>vprn>router-advertisement
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures router advertisement properties on a specific interface. The interface must already exist in the config>router>interface context.
Parameters
- ip-int-name
Specifies the interface name. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
current-hop-limit
Syntax
current-hop-limit number
no current-hop-limit
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the current hop limit in the router advertisement messages. It informs the nodes on the subnet about the hop-limit when originating IPv6 packets.
Default
64
Parameters
- number
Specifies the hop limit. A value of zero means there is an unspecified number of hops.
managed-configuration
Syntax
[no] managed-configuration
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the managed address configuration flag. This flag indicates that DHCPv6 is available for address configuration, in addition to any address autoconfigured using stateless address autoconfiguration.
Default
no managed-configuration
max-advertisement-interval
Syntax
[no] max-advertisement-interval seconds
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum interval between sending router advertisement messages.
Default
600
Parameters
- seconds
Specifies the maximum interval in seconds between sending router advertisement messages.
min-advertisement-interval
Syntax
[no] min-advertisement-interval seconds
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum interval between sending ICMPv6 neighbor discovery router advertisement messages.
Default
200
Parameters
- seconds
Specifies the minimum interval in seconds between sending ICMPv6 neighbor discovery router advertisement messages.
mtu
Syntax
[no] mtu mtu-bytes
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the MTU for the nodes to use when sending packets on the link.
Default
no mtu
Parameters
- mtu-bytes
Specifies the MTU for the nodes to use when sending packets on the link.
other-stateful-configuration
Syntax
[no] other-stateful-configuration
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the "Other configuration" flag. This flag indicates that DHCPv6lite is available for autoconfiguration of other (non-address) information, such as DNS-related information or information about other servers in the network.
Default
no other-stateful-configuration
prefix
Syntax
[no] prefix [ipv6-prefix/prefix-length]
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an IPv6 prefix in the router advertisement messages. To support multiple IPv6 prefixes, use multiple prefix statements. No prefix is advertised until explicitly configured using prefix statements.
Parameters
- ip-prefix/prefix-length
Specifies the IP prefix.
autonomous
Syntax
[no] autonomous
Context
config>service>vprn>router-advert>if>prefix
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether the prefix can be used for stateless address autoconfiguration.
Default
autonomous
on-link
Syntax
[no] on-link
Context
config>service>vprn>router-advert>if>prefix
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether the prefix can be used for on-link determination.
Default
on-link
preferred-lifetime
Syntax
[no] preferred-lifetime {seconds | infinite}
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time that this prefix will continue to be preferred. The address generated from a deprecated prefix should not be used as a source address in new communications, but packets received on such an interface are processed as expected.
Default
604800
Parameters
- seconds
Specifies the length of time, in seconds, that this prefix will be preferred.
- infinite
Specifies that the prefix is always preferred. The highest value represents infinity.
valid-lifetime
Syntax
valid-lifetime {seconds | infinite}
Context
config>service>vprn>router-advert>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the time that the prefix is valid for the purpose of on-link determination. A value of all one bits (0xffffffff) represents infinity. The address generated from an invalidated prefix should not appear as the destination or source address of a packet.
Default
2592000
Parameters
- seconds
Specifies the remaining time, in seconds, that this prefix will be valid.
- infinite
Specifies that the prefix will always be valid. The highest value represents infinity.
reachable-time
Syntax
reachable-time milli-seconds
no reachable-time
Context
config>service>vprn>router-advert
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures how long this router should be considered reachable by other nodes on the link after receiving a reachability confirmation.
Default
no reachable-time
Parameters
- milli-seconds
Specifies the length of time the router should be considered reachable.
retransmit-time
Syntax
retransmit-timer milli-seconds
no retransmit-timer
Context
config>service>vprn>router-advert
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the retransmission frequency of neighbor solicitation messages.
Default
no retransmit-time
Parameters
- milli-seconds
Specifies how often the retransmission should occur.
router-lifetime
Syntax
router-lifetime seconds
no router-lifetime
Context
config>service>vprn>router-advert
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the router lifetime.
Default
1800
Parameters
- seconds
Specifies the length of time, in seconds (relative to the time the packet is sent), that the prefix is valid for route determination. 0 means that the router is not a default router on this link.
DHCP server commands
dhcp
Syntax
dhcp
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure DHCP parameters.
action
Syntax
action {replace | drop | keep}
no action
Context
config>service>vprn>if>dhcp>option
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the processing required when the router receives a DHCP request that already has a Relay Agent Information Option (Option 82) field in the packet.
The no form of this command reverts to the default value.
In accordance with RFC 3046, DHCP Relay Agent Information Option, section 2.1.1, Reforwarded DHCP Requests, the default is to keep the existing information intact. The exception to this is if the GIADDR of the received packet is the same as the ingress address on the router. In this case, the packet is dropped and an error is logged.
Parameters
- replace
Keyword that specifies that, in the upstream direction (from the user), the existing Option 82 field is replaced with the Option 82 field from the router. In the downstream direction (toward the user) the Option 82 field is stripped (in accordance with RFC 3046).
- drop
Keyword that specifies the packet is dropped, and an error is logged.
- keep
Keyword that specifies the existing information is kept in the packet and the router does not add any more information. In the downstream direction the Option 82 field is not stripped and is sent on toward the client.
The behavior is slightly different in case of Vendor Specific Options (VSOs). When the keep parameter is specified, the router inserts its own VSO into the Option 82 field. This occurs only when the incoming message already has an Option 82 field.
If no Option 82 field is present, the router does not create the Option 82 field. In this case, no VSO is added to the message.
circuit-id
Syntax
circuit-id [ascii-tuple | ifindex | sap-id | vlan-ascii-tuple]
no circuit-id
Context
config>service>vprn>if>dhcp>option
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
When enabled, the router sends the interface index (If Index) in the circuit-id suboption of the DHCP packet. Display the If Index of a router interface using the show router interface detail command. This option specifies data that must be unique to the router that is relaying the circuit.
If disabled, the circuit-id suboption of the DHCP packet is left empty.
The no form of this command reverts to the default value.
Default
circuit-id
Parameters
- ascii-tuple
Keyword to specify that the ASCII-encoded concatenated tuple will be used, which consists of the access-node-identifier, service-id, and interface-name, separated by ‟|”.
- ifindex
Keyword to specify that the interface index is used. Display the If Index of a router interface using the show router interface detail command.
- sap-id
Keyword to specify that the SAP ID is used.
- vlan-ascii-tuple
Keyword to specify that the format included VLAN ID and dot1p bits in addition to what is already included in the ascii-tuple. The format is supported on dot1q and qinq ports only. Therefore, when the Option 82 bits are stripped, dot1p bits are copied to the Ethernet header of an outgoing packet.
gi-address
Syntax
gi-address ip-address [src-ip-addr]
no gi-address
Context
config>service>vprn>if>dhcp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the gateway IP address (GIADDR) for the DHCP relay. A subscriber interface can include multiple group interfaces with multiple SAPs. The GIADDR is needed when the router functions as a DHCP relay to distinguish between the different subscriber interfaces and potentially between the group interfaces defined.
Default
no gi-address
Parameters
- ip-address
Specifies the host IP address to be used for DHCP relay packets.
- src-ip-address
Specifies the source IP address to be used for DHCP relay packets.
option
Syntax
[no] option
Context
config>service>vprn>if>dhcp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables DHCP Option 82 (Relay Agent Information Option) parameter processing and enters the context for configuring Option 82 suboptions.
The no form of this command reverts to the default value.
Default
no option
remote-id
Syntax
remote-id [mac | string string]
no remote-id
Context
config>service>vprn>sub-if>grp-if>dhcp>option
config>service>vprn>nw-if>dhcp>option
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
When enabled, the router sends the MAC address of the remote end (typically the DHCP client) in the remote-id suboption of the DHCP packet. This command identifies the host at the other end of the circuit. If disabled, the remote-id suboption of the DHCP packet will be left empty.
The no form of this command reverts to the default value.
Default
remote-id
Parameters
- mac
Keyword that specifies the MAC address of the remote end is encoded in the suboption.
- string string
Specifies the remote ID.
vendor-specific-option
Syntax
[no] vendor-specific-option
Context
config>service>vprn>if>dhcp>option
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the Nokia vendor-specific suboption of the DHCP relay packet.
client-mac-address
Syntax
[no] client-mac-address
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the sending of the MAC address in the vendor-specific suboption of the DHCP relay packet.
The no form of this command disables the sending of the MAC address in the vendor-specific suboption of the DHCP relay packet.
pool-name
Syntax
[no] pool-name
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sends the pool name in the vendor-specific suboption of the DHCP relay packet.
The no form of this command disables the sending.
sap-id
Syntax
[no] sap-id
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the sending of the SAP ID in the vendor-specific suboption of the DHCP relay packet.
The no form of this command disables the sending of the SAP ID in the vendor-specific suboption of the DHCP relay packet.
service-id
Syntax
[no] service-id
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the sending of the service ID in the vendor-specific suboption of the DHCP relay packet.
The no form of this command disables the sending of the service ID in the vendor-specific suboption of the DHCP relay packet.
string
Syntax
[no] string text
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the vendor-specific suboption string of the DHCP relay packet.
The no form of this command reverts to the default value.
Parameters
- text
Specifies a string of any combination of ASCII characters, up to 32 characters. If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
system-id
Syntax
[no] system-id
Context
config>service>vprn>if>dhcp>option>vendor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether the system ID is encoded in the vendor-specific suboption of Option 82.
server
Syntax
server server1 [server2...(up to 8 max)]
Context
config>service>vprn>if>dhcp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies a list of servers where requests will be forwarded. The list of servers can be entered as IP addresses or fully qualified domain names. There must be at least one server specified for DHCP relay to work. If there are multiple servers, the request is forwarded to all the servers in the list. There can be a maximum of 8 DHCP servers configured.
The flood command is applicable only in the VPLS case. There is a scenario with VPLS where the VPLS node only needs to add Option 82 information to the DHCP request to provider per-subscriber information, but it does not do full DHCP relay. In this case, the server is set to "flood". This means the DHCP request is still a broadcast and is sent through the VPLS domain. A node running at L3 further upstream can then perform the full L3 DHCP relay function.
Default
no server
Parameters
- server
Specifies the DHCP server IP address.
trusted
Syntax
[no] trusted
Context
config>service>vprn>if>dhcp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command, if enabled on an IP interface, specifies that the relay agent (the SR-Series) will modify the request GIADDR to be equal to the ingress interface and forward the request. According to RFC 3046, DHCP Relay Agent Information Option, a DHCP request where the GIADDR is 0.0.0.0 and that contains an Option 82 field in the packet, should be discarded, unless it arrives on a "trusted" circuit.
This behavior applies only when the action in the Relay Agent Information Option is "keep". In the case where the Option 82 field is being replaced by the relay agent (action = "replace"), the original Option 82 information is lost, therefore there is no reason to enable the trusted command.
The no form of this command reverts to the default value.
Default
not enabled
Interface ICMP commands
icmp
Syntax
icmp
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures Internet Control Message Protocol (ICMP) parameters on a VPRN service.
mask-reply
Syntax
[no] mask-reply
Context
config>service>vprn>if>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables responses to ICMP mask requests on the router interface.
If a local node sends an ICMP mask request to the router interface, the mask-reply command configures the router interface to reply to the request.
By default, the router instance replies to mask requests.
The no form of this command disables replies to ICMP mask requests on the router interface.
Default
mask-reply
redirects
Syntax
redirects [number seconds]
no redirects
Context
config>service>vprn>if>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate for ICMP redirect messages issued on the router interface.
When routes are not optimal on this router and another router on the same subnetwork has a better route, the router can issue an ICMP redirect to alert the sending node that a better route is available.
The redirects command enables the generation of ICMP redirects on the router interface. The rate at which ICMP redirects are issued can be controlled with the optional number and seconds parameters by indicating the maximum number of redirect messages that can be issued on the interface for a specific time interval.
By default, generation of ICMP redirect messages is enabled at a maximum rate of 100 per 10 second time interval.
The no form of this command disables the generation of ICMP redirects on the router interface.
Default
redirects 100 10
Parameters
- number
Specifies the maximum number of ICMP redirect messages to send. This parameter must be specified with the seconds parameter.
- seconds
Specifies the time frame in seconds used to limit the seconds of ICMP redirect messages that can be issued.
ttl-expired
Syntax
ttl-expired number seconds
no ttl-expired
Context
config>service>vprn>if>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate ICMP TTL expired messages are issued by the IP interface.
By default, generation of ICMP TTL expired messages is enabled at a maximum rate of 100 per 10 second time interval.
The no form of this command disables limiting the rate of TTL expired messages on the router interface.
Default
ttl-expired 100 10
Parameters
- number
Specifies the maximum number of ICMP TTL expired messages to send, expressed as a decimal integer. This parameter must be specified with the seconds parameter.
- seconds
Specifies the time frame in seconds used to limit the number of ICMP TTL expired messages that can be issued, expressed as a decimal integer.
unreachables
Syntax
unreachables [number seconds]
no unreachables
Context
config>service>vprn>if>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate for ICMP host and network destination unreachable messages issued on the router interface.
This command enables the generation of ICMP destination unreachables on the router interface. The rate at which ICMP unreachables are issued can be controlled with the optional number and seconds parameters by indicating the maximum number of destination unreachable messages that can be issued on the interface for a specific time interval.
By default, generation of ICMP destination unreachable messages is enabled at a maximum rate of 100 per 10 second time interval.
The no form of this command disables the generation of ICMP destination unreachable messages on the router interface.
Default
unreachables 100 10
Parameters
- number
Specifies the maximum number of ICMP unreachable messages to send. This parameter must be specified with the seconds parameter.
- seconds
Specifies the time frame in seconds used to limit the number of ICMP unreachable messages that can be issued.
Interface SAP commands
sap
Syntax
sap sap-id [create]
no sap sap-id
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates a Service Access Point (SAP) within a service. A SAP is a combination of port and encapsulation parameters that identify the service access point on the interface and within the 7210 SAS. Each SAP must be unique.
All SAPs must be explicitly created. If no SAPs are created within a service or on an IP interface, a SAP does not exist on that object.
Enter an existing SAP without the create keyword to edit SAP parameters. The SAP is owned by the service in which it was created.
A SAP can be associated with only a single service. A SAP can be defined only on a port that has been configured as an access port using the config port port-id ethernet mode access command.
If a port is shut down, all SAPs on that port become operationally down. When a service is shut down, SAPs for the service are not displayed as operationally down, although all traffic traversing the service is discarded. The operational state of a SAP is relative to the operational state of the port on which the SAP is defined.
The no form of this command deletes the SAP with the specified port. When a SAP is deleted, all configuration parameters for the SAP are also deleted.
Special Cases
- VPRN
A VPRN SAP must be defined on an Ethernet interface.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
- port-id
Specifies the physical port ID in the slot/mda/port format.
If the card in the slot has Media Dependent Adapters (MDAs) installed, the port-id must be in the slot_number/MDA_number/port_number format. For example 2/3 specifies port 3 on MDA 2 in slot.
The port-id must reference a valid port type. The port must be configured as an access port.
- create
Keyword used to create a SAP instance.
tod-suite
Syntax
tod-suite tod-suite-name
no tod-suite
Context
config>service>vprn>if>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command applies a time-based policy (filter or QoS policy) to the SAP. The suite name must already exist in the config>cron context.
Default
no tod-suite
Parameters
- tod-suite-name
Specifies a collection of policies (ACLs, QoS) including time-ranges that define the full or partial behavior of a SAP or a subscriber. The suite can be applied to more than one SAP.
accounting-policy
Syntax
accounting-policy acct-policy-id
no accounting-policy
Context
config>service>vprn>if>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates the accounting policy that can be applied to an interface SAP or interface SAP spoke-SDP.
An accounting policy must be defined before it can be associated with a SAP. If the policy-id does not exist, an error message is generated.
A maximum of one accounting policy can be associated with a SAP at one time. Accounting policies are configured in the config>log context.
The no form of this command removes the accounting policy association from the SAP, and the accounting policy reverts to the default.
Parameters
- acct-policy-id
Specifies the accounting policy-id as configured in the config>log>accounting-policy context.
collect-stats
Syntax
[no] collect-stats
Context
config>service>vprn>if>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables accounting and statistical data collection for either an interface SAP or interface SAP spoke-SDP, or network port. When applying accounting policies, by default the data is collected in the appropriate records and written to the designated billing file.
When the no collect-stats command is issued, the statistics are still accumulated by the IOM cards. However, the CPU will not obtain the results and write them to the billing file. If a subsequent collect-stats command is issued, the counters written to the billing file include all the traffic while the no collect-stats command was in effect.
Default
no collect-stats
Interface SAP filter and QoS policy commands
egress
Syntax
egress
Context
config>service>vprn>if>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure egress SAP Quality of Service (QoS) policies and filter policies.
If no SAP egress QoS policy is defined, the system default SAP egress QoS policy is used for egress processing. If no egress filter is defined, no filtering is performed.
ingress
Syntax
ingress
Context
config>service>vprn>if>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure ingress SAP QoS policies and filter policies.
If no SAP ingress QoS policy is defined, the system default SAP ingress QoS policy is used for ingress processing. If no ingress filter is defined, no filtering is performed.
agg-shaper-rate
Syntax
agg-shaper-rate agg-rate
no agg-shaper-rate
Context
config>service>vprn>sap>ingress
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the aggregate rate for the SAP shaper. The aggregate SAP shaper is available to limit only the unicast traffic and BUM traffic across all the FCs of the SAP configured to use ingress queues. Users can specify the CIR rate and the PIR rate. Users must not oversubscribe the total bandwidth available for use by ingress queues.
The no form of this command disables the SAP aggregate rate shaper. That is, the SAP can use up the maximum bandwidth available.
Default
no agg-shaper-rate
Parameters
- agg-rate
Specifies the rate in kilobits per second.
agg-shaper-rate
Syntax
agg-shaper-rate agg-rate
no agg-shaper-rate
Context
config>service>vprn>sap>egress
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the aggregate rate for the SAP shaper. The aggregate SAP shaper is available to limit only the unicast traffic and BUM traffic across all the FCs of the SAP configured to use ingress queues. Users can specify the CIR rate and the PIR rate. Users must not oversubscribe the total bandwidth available for use by ingress queues.
The no form of this command disables the SAP aggregate rate shaper. That is, the SAP can use up the maximum bandwidth available.
Default
no agg-shaper-rate
Parameters
- agg-rate
Specifies the rate in kilobits per second.
filter
Syntax
filter ip ip-filter-id
filter [mac mac-filter-id]
no filter [ip ip-filter-id]
no filter [mac mac-filter-id]
no filter
Context
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command associates an IP filter policy with an ingress or egress SAP or IP interface. Filter policies control the forwarding and dropping of packets based on IP matching criteria.
This command associates a filter policy with a specified ip-filter-id with an ingress or egress SAP. The ip-filter-id must already be defined before the filter command is executed. If the filter policy does not exist, the operation fails and an error message is returned.
In general, filters applied to SAPs (ingress or egress) apply to all packets on the SAP. One exception is that non-IP packets are not applied to IP match criteria, so the default action in the filter policy applies to these packets.
The no form of this command removes configured filter ID associations with the SAP or IP interface. The filter ID is not removed from the system unless the scope of the created filter is set to local.
Parameters
- ip ip-filter-id
Specifies the IP filter policy. The filter ID must already exist within the created IP filters.
- mac mac-filter-id
Specifies the MAC filter policy. The specified filter ID must already exist within the created MAC filters. The filter policy must already exist within the created MAC filters.
qos
Syntax
qos policy-id
no qos
Context
config>service>vprn>if>sap>egress
config>service>vprn>if>sap>ingress
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Associates a Quality of Service (QoS) policy with an ingress or egress SAP or IP interface. QoS ingress and egress policies are important for the enforcement of SLA agreements. The policy ID must be defined before associating the policy with a SAP or IP interface. If the policy-id does not exist, an error is returned.
This command associates both ingress and egress QoS policies. The qos command only allows ingress policies to be associated on SAP or IP interface ingress and egress policies on SAP or IP interface egress. Attempts to associate a QoS policy of the wrong type returns an error. Only one ingress and one egress QoS policy can be associated with a SAP or IP interface at one time. Attempts to associate a second QoS policy of a specific type returns an error.
When an ingress QoS policy is defined on an ingress IP interface that is bound to a VPRN, the policy becomes associated with every SAP on the VPRN and augments the QoS policy that is defined on each SAP. Packets that are bridged are processed using the policy defined on the VPRN SAP; packets that are routed are processed using the policy defined in the IES IP interface-binding context.
When an egress QoS policy is associated with an IP interface that has been bound to a VPRN, the policy becomes associated with every SAP on the VPRN and augments the egress QoS policy that is defined on each SAP. Packets that are bridged are processed using the policy defined on the VPRN SAP; packets that are routed are processed using the policy defined in the IP interface-binding context.
By default, no specific QoS policy is associated with the SAP or IP interface for ingress or egress, so the default QoS policy is used.
The no form of this command removes the QoS policy association from the SAP or IP interface, and the QoS policy reverts to the default.
Parameters
- policy-id
Specifies the ingress or egress policy ID to associate with the SAP or IP interface on ingress or egress. The policy ID must already exist.
Interface VRRP commands
vrrp
Syntax
vrrp virtual-router-id [owner]
no vrrp virtual-router-id
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command creates or edits a Virtual Router ID (VRID) on the service IP interface. A VRID is internally represented in conjunction with the IP interface name. This allows the VRID to be used on multiple IP interfaces while representing different virtual router instances.
The VRID can be defined as owner or non-owner.
The no form of this command removes the specified VRID from the IP interface. This terminates VRRP participation for the virtual router and deletes all references to the VRID. The VRID does not need to be shut down to remove the virtual router instance.
Parameters
- virtual-router-id
Specifies a new virtual router ID or one that can be modified on the IP interface.
- owner
Specifies the virtual router instance as an owner.
authentication-key
Syntax
authentication-key authentication-key | hash-key [hash | hash2]
no authentication-key
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
The command assigns a simple text password authentication key to generate master VRRP advertisement messages and validate received VRRP advertisement messages.
The authentication-key command is one of the few commands not affected by the presence of the owner keyword. If simple text password authentication is not required, this command is not required. If the command is re-executed with a different password key defined, the new key will be used immediately.
If a no authentication-key command is executed, the password authentication key reverts to the default value. The authentication-key command may be executed at any time.
To change the current in-use password key on multiple virtual router instances:
identify the current master
shut down the virtual router instance on all backups
execute the authentication-key command on the master to change the password key
execute the authentication-key command and no shutdown command on each backup
The no form of this command reverts the default null string to the value of the key.
Parameters
- authentication-key
Specifies the simple text password used when VRRP Authentication Type 1 is enabled on the virtual router instance. Type 1 uses a string of eight octets that is inserted into all transmitted VRRP advertisement messages and compared against all received VRRP advertisement messages. The authentication data fields are used to transmit the key.
This parameter is expressed as a string consisting of up to eight alphanumeric characters. Spaces must be contained in quotation marks ( ‟ ” ). The quotation marks are not considered part of the string.
The string is case-sensitive and is left-justified in the VRRP advertisement message authentication data fields. The first field contains the first four characters with the first octet (starting with IETF RFC bit position 0) containing the first character. The second field holds the fifth through eighth characters. Any unspecified portion of the authentication data field is padded with the value 0 in the corresponding octet.
- hash-key
Specifies the hash key. The key can be any combination of ASCII characters up to 22 characters (encrypted) for a hash key or up to 121 characters for a hash2 key. If spaces are used in the string, the entire string must be enclosed in quotation marks (‟ ”).
This option is useful when a user must configure the parameter, but for security purposes, the actual unencrypted key value is not provided.
- hash
Specifies that the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
- hash2
Specifies that the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less-encrypted hash form is assumed.
backup
Syntax
[no] backup ip-address
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a virtual router IP address for the backup interface.
Default
no backup
Parameters
- ip-address
Specifies the destination IPv4 address for the backup interface.
bfd-enable
Syntax
bfd-enable service-id interface interface-name dst-ip ip-address
no bfd-enable service-id if if-name dst-ip ip-address
bfd-enable interface interface-name dst-ip ip-address
no bfd-enable interface interface-name dst-ip ip-address
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the use of bidirectional forwarding (BFD) to control the state of the associated protocol interface. By enabling BFD on a specific protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for the BFD are set using the bfd-enable command under the IP interface specified in this command.
The no form of this command removes BFD from the associated BGP protocol peering.
Default
no bfd-enable
Parameters
- service-id
Specifies the service ID of the interface running BFD.
- interface-name
Specifies the name of the interface running BFD, up to 32 characters.
- ip-address
Specifies the destination address to be used for the BFD session.
init-delay
Syntax
init-delay seconds
no init-delay
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a VRRP initialization delay timer.
Default
no init-delay
Parameters
- seconds
Specifies the initialization delay timer for VRRP, in seconds.
master-int-inherit
Syntax
[no] master-int-inherit
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command allows the virtual router instance to inherit the master VRRP router advertisement interval timer, which is used by backup routers to calculate the master down timer.
This command is available only in the non-owner nodal context and allows the current virtual router instance master to dictate the master down timer for all backup virtual routers. The master-int-inherit command has no effect when the virtual router instance is operating as master.
If the master-int-inherit command is not enabled, the locally configured message-interval must match the master VRRP advertisement message advertisement interval field value or the message is discarded.
The no form of this command reverts to the default operating condition, which requires the locally configured message-interval to match the received VRRP advertisement message advertisement interval field value.
Default
no master-int-inherit
message-interval
Syntax
message-interval {[seconds] [milliseconds milliseconds]}
no message-interval
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the advertisement timer and indirectly sets the master down timer on the virtual router instance. The message-interval values must be the same for all virtual routers with the same VRID. Any VRRP advertisement message received with an Advertisement Interval field different from the virtual router instance configured message-interval value is silently discarded.
The message-interval command is available for both non-owner and owner virtual router nodal contexts. If the message-interval command is not executed, the default message interval of 1 second is used.
The no form of this command reverts to the default message interval value of 1 second.
Parameters
- seconds
Specifies the time interval, in seconds, between sending advertisement messages.
- milliseconds
Specifies the time interval, in milliseconds, between sending advertisement messages.
ping-reply
Syntax
[no] ping-reply
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the non-owner master to reply to ICMP echo requests directed at the IP address of the virtual router instance. The ping request can be received on any routed interface.
Ping must not have been disabled at the management security level (either on the parent IP interface or based on the ping source host address). When ping-reply is not enabled, ICMP echo requests to non-owner master virtual IP addresses are silently discarded.
Non-owner backup virtual routers never respond to ICMP echo requests regardless of the ping-reply configuration.
The ping-reply command is available only for non-owner virtual routers.
The no form of this command reverts to the default operation of discarding all ICMP echo request messages destined for the non-owner virtual router instance IP address.
Default
no ping-reply
policy
Syntax
policy vrrp-policy-id
no policy
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command associates a VRRP priority control policy with the virtual router instance (non-owner context only).
This command creates the context to configure a VRRP priority control policy that controls the VRRP in-use priority based on priority control events. It is a parent node for the various VRRP priority control policy commands that define the policy parameters and priority event conditions.
This command defines the initial or base value used by non-owner virtual routers. This value can be modified by assigning a VRRP priority control policy to the virtual router instance. The VRRP priority control policy can override or diminish the base priority setting to establish the actual in-use priority of the virtual router instance.
The policy policy-id command must be created first, before it can be associated with a virtual router instance.
Because VRRP priority control policies define conditions and events that must be maintained, they can be resource intensive. The number of policies is limited to 1000.
The policy-id does not have to be comprised consecutive integers.
The no form of this command deletes the specific policy-id from the system.
The policy-id must be removed first from all virtual router instances before the no policy command can be issued. If the policy-id is associated with a virtual router instance, the command fails.
Parameters
- vrrp-policy-id
Specifies a VRRP priority control policy.
preempt
Syntax
[no] preempt
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command overrides an existing non-owner master with a virtual router backup that has a higher priority. Enabling preempt mode is recommended for correct operation of the base-priority definitions on the virtual router instance. If the virtual router cannot preempt an existing non-owner master, the effect of the dynamic changing of the in-use priority is greatly diminished.
The preempt command is available for only non-owner VRRP virtual routers. The owner cannot be preempted because the priority of non-owners can never be higher than the owner. The owner always preempts other virtual routers when it is available.
Non-owner virtual router instances only preempt when preempt is set, and the current master has an in-use message priority value less than the backup virtual router instance in-use priority.
A master non-owner virtual router allows itself to be preempted only when the incoming VRRP advertisement message priority field value is one of the following:
greater than its in-use priority value
equal to its in-use priority value, and the source IP address (primary IP address) is greater than its primary IP address
The no form of this command prevents a non-owner virtual router instance from preempting another, less desirable, virtual router.
Default
preempt
priority
Syntax
priority priority
no priority
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a specific priority value for the virtual router instance. In conjunction with the optional policy command, the base priority is used to derive the in-use priority of the virtual router instance.
The priority command is available only for non-owner VRRP virtual routers. The priority of owner virtual router instance is permanently set to 255 and cannot be changed. For non-owner virtual router instances, if the priority command is not executed, the base priority is set to 100.
The no form of this command resets the base priority to 100.
Parameters
- priority
Specifies the base priority used by the virtual router instance. If a VRRP priority control policy is not defined, the base priority will be the in-use priority for the virtual router instance.
ssh-reply
Syntax
[no] ssh-reply
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the non-owner master to reply to SSH requests directed at the IP address of the virtual router instance. The SSH request can be received on any routed interface. SSH must not have been disabled at the management security level (either on the parent IP interface or based on the SSH source host address). Correct login and CLI command authentication are enforced.
When ssh-reply is not enabled, SSH packets to non-owner master virtual IP addresses are silently discarded. Non-owner backup virtual routers never respond to SSH regardless of the ssh-reply configuration.
The ssh-reply command is available only for non-owner VRRP virtual routers.
The no form of this command reverts to the default operation of discarding all SSH packets destined for the non-owner virtual router instance IP address.
Default
no ssh-reply
standby-forwarding
Syntax
[no] standby-forwarding
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the forwarding of packets by a standby router to the virtual router MAC address.
The no form of this command specifies that a standby router will not forward traffic sent to the virtual router MAC address but will forward traffic sent to the real MAC address of the standby router.
Default
no standby-forwarding
telnet-reply
Syntax
[no] telnet-reply
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the non-owner master to reply to TCP port 23 Telnet requests directed at the IP address of the virtual router instance. The Telnet request can be received on any routed interface. Telnet must not have been disabled at the management security level (either on the parent IP interface or based on the Telnet source host address). Correct login and CLI command authentication are enforced.
When telnet-reply is not enabled, TCP port 23 Telnet packets to non-owner master virtual IP addresses are silently discarded.
Non-owner backup virtual routers never respond to Telnet requests regardless of the telnet-reply configuration.
The telnet-reply command is available only in non-owner VRRP virtual routers.
The no form of this command reverts to the default operation of discarding all Telnet packets destined for the non-owner virtual router instance IP address.
Default
no telnet-reply
traceroute-reply
Syntax
[no] traceroute-reply
Context
config>service>vprn>if>vrrp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables a non-owner master to reply to traceroute requests directed to the virtual router instance IP address.
This command is valid only if the VRRP virtual router instance associated with this entry is a non-owner.
A non-owner backup virtual router never responds to traceroute requests regardless of the traceroute-reply configuration.
Default
no traceroute-reply
VPRN interface IPv6 commands
ipv6
Syntax
ipv6
no ipv6
Context
config>service>vprn>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables IPv6 for a VPRN interface.
The no form of this command disables IPv6.
Default
no ipv6
address
Syntax
ipv6 ipv6-address/prefix-length [eui-64] [preferred]
no ipv6 ipv6-address/prefix-length
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns an address to the IPv6 interface.
The no form of this command deletes the specified IPv6 address.
Parameters
- ipv6-address/prefix-length
Specifies the interface IP address.
- eui-64
Keyword to specify that a complete IPv6 address from the supplied prefix and 64-bit interface identifier is formed. The 64-bit interface identifier is derived from the MAC address on Ethernet interfaces.
- preferred
Keyword to specify that the IPv6 address is the preferred IPv6 address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred address maybe used as the source (or destination) address of packets sent from (or to) the interface.
icmp
Syntax
icmp
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures ICMPv6 parameters for the interface.
packet-too-big
Syntax
packet-too-big number seconds
no packet-too-big
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether, and how often, ICMPv6 ‟packet-too-big” messages should be sent. When enabled, ICMPv6 ‟packet-too-big” messages are generated by this interface.
The no form of this command disables the sending of ICMPv6 ‟packet-too-big” messages.
Default
no packet too big
Parameters
- number
Specifies the number of ICMPv6 ‟packet-too-big” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟packet-too-big” messages sent.
param-problem
Syntax
param-problem number seconds
no param-problem
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether, and how often, ICMPv6 ‟parameter-problem” messages should be sent. When enabled, ICMPv6 ‟parameter-problem” messages are generated by this interface.
The no form of this command disables the sending of ICMPv6 ‟parameter-problem” messages.
Default
no param-problem
Parameters
- number
Specifies the number of ICMPv6 ‟parameter-problem” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟parameter-problem” messages sent.
redirects
Syntax
redirects number seconds
no redirects
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures ICMPv6 ‟redirect” messages. When enabled, ICMPv6 redirects are generated when routes are not optimal on this router and another router on the same subnetwork has a better route. The messages alert the node that a better route is available.
The no form of this command disables the sending of ICMPv6 redirect messages.
Default
no redirects
Parameters
- number
Specifies the number of ICMPv6 ‟redirect” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟redirect” messages sent.
time-exceeded
Syntax
time-exceeded number seconds
no time-exceeded
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate for ICMPv6 ‟time-exceeded” messages.
The no form of this command disables the sending of ICMPv6 ‟time-exceeded” messages.
Default
no time-exceeded
Parameters
- number
Specifies the number of ICMPv6 ‟time-exceeded” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟time-exceeded” messages sent.
unreachables
Syntax
unreachables number seconds
no unreachables
Context
config>service>vprn>if>ipv6>icmp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the rate for ICMPv6 host and network destination ‟unreachables” messages issued on the router interface.
The no form of this command disables the generation of ICMPv6 destination ‟unreachables” messages on the router interface.
Default
no unreachables
Parameters
- number
Specifies the number of ICMPv6 ‟unreachables” messages to send in the time frame specified by the seconds parameter.
- seconds
Specifies the time frame, in seconds, that is used to limit the number of ICMPv6 ‟unreachables” messages sent.
link-local-address
Syntax
ipv6 ipv6-address [preferred]
no ipv6 ipv6-address/prefix-length
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command assigns the IPv6 link local address to the interface.
Parameters
- ipv6-address
Specifies the IPv6 link local address.
- preferred
Keyword to specify that the IPv6 link local address is the preferred IPv6 link local address for this interface. A preferred address is an address assigned to an interface whose use by upper layer protocols is unrestricted. A preferred addresses maybe used as the source (or destination) address of packets sent from (or to) the interface.
local-proxy-nd
Syntax
local-proxy-nd number seconds
no local-proxy-nd
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables local proxy neighbor discovery on the interface.
The no form of this command disables local proxy neighbor discovery.
Default
no local-proxy-nd
neighbor
Syntax
neighbor ipv6-address mac-address
no neighbor ipv6-address
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures IPv6-to-MAC address mapping on the interface.
The no form of this command deletes IPv6-to-MAC address mapping for the specified IPv6 address.
Parameters
- ipv6-address
Specifies the IPv6 address.
- mac-address
Specifies the 48-bit MAC address for the IPv6-to-MAC address mapping in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff, where aa, bb, cc, dd, ee and ff are hexadecimal numbers. Allowed values are any unicast MAC addresses and non-IEEE reserved MAC addresses.
proxy-nd-policy
Syntax
proxy-nd-policy policy-name [policy-name...(up to 5 max)]
no proxy-nd-policy
Context
config>service>vprn>if>ipv6
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command applies a proxy neighbor discovery policy for the interface.
The no form of this command disables the proxy neighbor discovery policy application.
Default
no proxy-nd-policy
Parameters
- policy-name
Specifies an existing neighbor discovery policy name. Allowed values are any string up to 32 characters comprised of printable, 7-bit ASCII characters. If the string contains special characters (such as #, $, spaces), the entire string must be enclosed within double quotes. The specified policy names must already be defined.
BGP commands
bgp
Syntax
[no] bgp
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the BGP protocol with the VPRN service.
The no form of this command disables the BGP protocol from the specific VPRN service.
Default
no bgp
advertise-inactive
Syntax
[no] advertise-inactive
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables or disables the advertising of inactive BGP routers to other BGP peers.
By default, BGP only advertises BGP routes to other BGP peers if a specific BGP route is chosen by the route table manager as the most preferred route within the system and is active in the forwarding plane. This command allows system administrators to advertise a BGP route even though it is not the most preferred route within the system for a specific destination.
Default
no advertise-inactive
aggregator-id-zero
Syntax
[no] aggregator-id-zero
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command sets the router ID in the BGP aggregator path attribute to zero when BGP aggregates routes. This prevents different routers within an AS from creating aggregate routes that contain different AS paths.
When BGP is aggregating routes, it adds the aggregator path attribute to the BGP update messages. By default, BGP adds the AS number and router ID to the aggregator path attribute.
When this command is enabled, BGP adds the router ID to the aggregator path attribute. This command is used at the group level to revert to the value defined under the global level; this command is used at the neighbor level to revert to the value defined under the group level.
The no form of this command used at the global level reverts to default in which BGP adds the AS number and router ID to the aggregator path attribute.
The no form of this command used at the group level reverts to the value defined at the group level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no aggregator-id-zero
best-path-selection
Syntax
best-path-selection
Context
config>service>vprn>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables path selection configuration.
always-compare-med
Syntax
always-compare-med {zero | infinity}
no always-compare-med
Context
config>service>vprn>bgp>best-path-selection
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures how the Multi-Exit Discriminator (MED) path attribute is used in the BGP route selection process. The MED attribute is always used in the route selection process regardless of the peer AS that advertised the route. This command determines what MED value is inserted in the RIB-IN. If this command is not configured, only the MEDs of routes that have the same peer ASs are compared.
The no form of this command removes the parameter from the configuration.
Default
no always-compare-med
Parameters
- zero
Specifies that for routes learned without a MED attribute, a zero (0) value is used in the MED comparison. The routes with the lowest metric are the most preferred.
- infinity
Specifies for routes learned without a MED attribute that a value of infinity (4294967295) is used in the MED comparison. This, in effect, makes these routes the least desirable.
as-path-ignore
Syntax
[no] as-path-ignore
Context
config>service>vprn>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures whether the AS path is used to determine the best BGP route.
If this command is configures, the AS paths of incoming routes are not used in the route selection process.
The no form of this command removes the parameter from the configuration.
Default
no as-path-ignore
ignore-nh-metric
Syntax
ignore-nh-metric
no ignore-nh-metric
Context
config>service>vprn
config>service>vprn>bgp>best-path-selection
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures BGP to disregard the resolved distance to the BGP next hop in its decision process for selecting the best route to a destination.
When configured in the config>router>bgp>bestpath-selection context, this command applies to the comparison of two BGP routes with the same NLRI learned from base router BGP peers. When configured in the config>service>vprn context, this command applies to the comparison of two BGP-VPN routes for the same IP prefix imported into the VPRN from the base router BGP instance. When configured in the config>service>vprn>bgp>best-path-selection context, this command applies to the comparison of two BGP routes for the same IP prefix learned from VPRN BGP peers.
The no form of this command reverts to the default behavior, whereby BGP factors distance to the next hop into its decision process.
Default
no ignore-nh-metric
ignore-router-id
Syntax
ignore-router-id
no ignore-router-id
Context
config>service>vprn>bgp>best-path-selection
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
When this command is present and the current best path to a destination was learned from eBGP peer X with BGP identifier x and a new path is received from eBGP peer Y with BGP identifier y, the best path remains unchanged if the new path is equivalent to the current best path up to the BGP identifier comparison, even if y is less than x.
The no form of this command reverts to the default behavior of selecting the route with the lowest BGP identifier (y) as best.
Default
no ignore-router-id
as-override
Syntax
[no] as-override
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command replaces all instances of the peer AS number with the local AS number in a BGP route AS_PATH.
This command breaks the BGP loop detection mechanism and should be used carefully.
By default, the override command is not enabled.
authentication-key
Syntax
authentication-key [authentication-key | hash-key] [hash | hash2]
no authentication-key
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8CC
Description
This command configures the BGP authentication key.
Authentication is performed between neighboring routers before setting up the BGP session by verifying the password. Authentication is performed using the MD-5 message-based digest. The authentication key can be any combination of letters or numbers from 1 to 16.
By default, authentication is disabled and the authentication password is empty
The no form of this command removes the authentication password from the configuration and effectively disables authentication.
Parameters
- authentication-key
Specifies the authentication key. This key can be any combination of ASCII characters up to 255 characters (unencrypted). If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
- hash-key
Specifies the hash key. This key can be any combination of ASCII characters up to 342 characters (encrypted). If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
This is useful when a user must configure the parameter, but, for security purposes, the actual unencrypted key value is not provided.
- hash
Keyword to specify the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
- hash2
Keyword to specify the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.
auth-keychain
Syntax
auth-keychain name
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the BGP authentication key for all peers.
The keychain allows the rollover of authentication keys during the lifetime of a session.
Default
no auth-keychain
Parameters
- name
Specifies the name of an existing keychain, up to 32 characters, to use for the specified TCP session or sessions.
bfd-enable
Syntax
[no] bfd-enable
Context
config>router>bgp
config>router>bgp>group
config>router>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the use of bidirectional forwarding (BFD) to control the state of the associated protocol interface. By enabling BFD on a specific protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for the BFD are set using the bfd-enable command under the IP interface.
The no form of this command removes BFD from the associated BGP protocol peering.
Default
no bfd-enable
connect-retry
Syntax
connect-retry seconds
no connect-retry
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the BGP connect retry timer.
When this timer expires, BGP tries to reconnect to the configured peer. this command can be set at three levels: global level (applies to all peers), peer-group level (applies to all peers in group), or neighbor level (only applies to specified peer). The most specific value is used.
The no form of this command used at the global level reverts to the default value.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
120 seconds
Parameters
- seconds
Specifies the BGP connect retry timer value in seconds, expressed as a decimal integer.
damping
Syntax
[no] damping
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables BGP route damping for learned routes that are defined within the route policy. Use damping to reduce the number of update messages sent between BGP peers and reduce the load on peers without affecting the route convergence time for stable routes. Damping parameters are set using the route policy definition.
The no form of this command used at the global level disables route damping.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
When damping is enabled and the route policy does not specify a damping profile, the default damping profile is used. This profile is always present and consists of the following parameters:
Half-life: |
15 minutes |
Max-suppress: |
60 minutes |
Suppress-threshold: |
3000 |
Reuse-threshold: |
750 |
Default
no damping
disable-4byte-asn
Syntax
[no] disable-4byte-asn
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command disables the use of 4-byte AS numbers. This command can be configured at all 3 level of the hierarchy, so it can be specified down to the per-peer basis.
If this command is enabled, 4-byte AS number support should not be negotiated with the associated remote peers.
The no form of this command reverts to the default behavior, which is to enable the use of 4-byte AS number.
disable-capability-negotiation
Syntax
[no] disable-capability-negotiation
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command disables the exchange of capabilities. When this command is enabled and after the peering is flapped, any new capabilities are not negotiated and will strictly support IPv4 routing exchanges with that peer.
The no form of this removes this command from the configuration and reverts to the normal behavior.
Default
no disable-capability-negotiation
disable-communities
Syntax
disable-communities [standard] [extended]
no disable-communities
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures BGP to disable sending communities.
Parameters
- standard
Keyword to specify standard communities that existed before VPRNs or 2547.
- extended
Keyword to specify BGP communities used were expanded after the concept of 2547 was introduced, to include handling the VRF target.
disable-fast-external-failover
Syntax
[no] disable-fast-external-failover
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures BGP fast external failover.
enable-peer-tracking
Syntax
[no] enable-peer-tracking
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables BGP peer tracking.
Default
no enable-peer-tracking
export
Syntax
export policy [policy...]
no export
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the export policies to be used to control routes advertised to BGP neighbors.
When multiple policy names are specified, the policies are evaluated in the order they are specified. A maximum of five (5) policy names can be configured. The first policy that matches is applied.
IF a non-existent route policy is applied to a VPRN instance, a CLI warning message is generated. This message is only generated at an interactive CLI session and the route policy association is made. No warning message is generated when a non-existent route policy is applied to a VPRN instance in a configuration file or when SNMP is used.
By default, BGP advertises routes from other BGP routes but does not advertise any routes from other protocols unless directed by an export policy.
The no form of this command removes all route policy names from the export list.
Default
no export
Parameters
- policy
Specifies a route policy statement name.
family
Syntax
family [ipv4] [ipv6]
no family
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the IP family capability.
The no form of this command reverts to the default.
Default
no family
Parameters
- ipv4
Keyword that provisions IPv4 support.
- ipv6
Keyword that provisions IPv6 support.
group
Syntax
group name [dynamic-peer]
no group
Context
config>service>vprn>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8CC
Description
This command configures a BGP peer group.
The no form of this command deletes the specified peer group and all configurations associated with the peer group. The group must be shut down before it can be deleted.
Parameters
- name
Specifies the peer group name. Allowed values is a string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, etc.), the entire string must be enclosed within double quotes.
- dynamic-peer
Keyword that designates the specific BGP group will be used by BGP peers created dynamically based on subscriber-hosts pointing to corresponding BGP peering policy. There can be only one BGP group with this flag set in any specific VPRN. No BGP neighbors can be manually configured in a BGP group with this flag set.
neighbor
Syntax
[no] neighbor ip-address
Context
config>service>vprn>bgp>group
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a BGP peer/neighbor instance within the context of the BGP group.
This command can be issued repeatedly to create multiple peers and their associated configuration.
The no form of this command removes the specified neighbor and the entire configuration associated with the neighbor. The neighbor must be administratively shutdown before attempting to delete it. If the neighbor is not shut down, the command does not result in any action except a warning message on the console indicating that neighbor is still administratively up.
Parameters
- ip-address
Specifies the IP address of the BGP peer router in dotted decimal notation.
family
Syntax
family [ipv4]
no family
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8CC
Description
This command configures the address family or families to be supported over BGP peerings in the base router. This command is additive, so issuing the family command adds the specified address family to the list.
The no form of this command removes the specified address family from the associated BGP peerings. If an address family is not specified, the supported address family reverts to the default.
Default
ipv4
Parameters
- ipv4
Keyword that provisions support for IPv4 routing information.
hold-time
Syntax
hold-time seconds [strict]
no hold-time
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8CC
Description
This command configures the BGP hold time.
The BGP hold time specifies the maximum time BGP waits between successive messages (either keepalive or update) from its peer, before closing the connection. This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in group), or neighbor level (only applies to specified peer). The most specific value is used.
Even though the router OS implementation allows setting the keepalive time separately, the configured keepalive timer is overridden by the hold-time value under the following circumstances.
If the specified hold-time is less than the configured keepalive time, the operational keepalive time is set to a third of the hold-time; the configured keepalive time is not changed.
If the hold-time is set to zero, the operational value of the keepalive time is set to zero; the configured keepalive time is not changed. This means that the connection with the peer is up permanently and no keepalive packets are sent to the peer.
The no form of this command used at the global level reverts to the default value.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
90 seconds
Parameters
- seconds
Specifies the hold time, in seconds, expressed as a decimal integer. A value of 0 indicates the connection to the peer is up permanently.
- strict
Keyword to specify that the advertised BGP hold-time from the far-end BGP peer must be greater than or equal to the specified value.
import
Syntax
import policy [policy...]
no import
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the import policies to be used to control routes advertised to BGP neighbors. Route policies are configured in the config>router>policy-options context. When multiple policy names are specified, the policies are evaluated in the order they are specified. A maximum of five (5) policy names can be specified. The first policy that matches is applied.
By default, BGP accepts all routes from configured BGP neighbors. Import policies can be used to limit or modify the routes accepted and their corresponding parameters and metrics.
The no form of this command removes all route policy names from the import list.
Default
no import
Parameters
- policy
Specifies a route policy statement name.
keepalive
Syntax
keepalive seconds
no keepalive
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the BGP keepalive timer. A keepalive message is sent every time this timer expires. The seconds parameter can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
The keepalive value is generally one-third of the hold-time interval. Even though the OS implementation allows the keepalive value and the hold-time interval to be independently set, the configured keepalive value is overridden by the hold-time value under the following circumstances.
If the specified keepalive value is greater than the configured hold-time, the specified value is ignored, and the keepalive is set to one-third of the current hold-time value.
If the specified hold-time interval is less than the configured keepalive value, the keepalive value is reset to one third of the specified hold-time interval.
If the hold-time interval is set to zero, the configured keepalive value is ignored. This means that the connection with the peer is up permanently and no keepalive packets are sent to the peer.
The no form of this command used at the global level reverts to the default value.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
30 seconds
Parameters
- seconds
Specifies the keepalive timer in seconds, expressed as a decimal integer.
local-address
Syntax
local-address ip-address
no local-address
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the local IP address used by the group or neighbor when communicating with BGP peers.
Outgoing connections use the local-address as the source of the TCP connection when initiating connections with a peer.
When a local address is not specified, the 7210 SAS uses the system IP address when communicating with iBGP peers, and uses the interface address for directly connected eBGP peers. This command is used at the neighbor level to revert to the value defined under the group level.
By default, the router ID is used when communicating with iBGP peers, and the interface address is used for directly connected eBGP peers
The no form of this command removes the configured local-address for BGP.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no local-address
Parameters
- ip-address
Specifies the local address expressed in dotted decimal notation. Allowed values are a valid routable IP address on the router, either an interface or system IP address.
local-as
Syntax
local-as as-number [private]
no local-as
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a BGP virtual autonomous system (AS) number.
In addition to the ASN configured for BGP in the config>router>autonomous-system context, a virtual (local) ASN is configured.The virtual ASN is added to the as-path message before the router ASN makes the virtual AS the second AS in the as-path.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). Therefore, by specifying this at each neighbor level, it is possible to have a separate as-number for each eBGP session.
When a command is entered multiple times for the same AS, the last command entered is used in the configuration. The private attribute can be added or removed dynamically by reissuing the command.
Changing the local AS at the global level in an active BGP instance causes the BGP instance to restart with the new local ASN. Changing the local AS at the global level in an active BGP instance causes BGP to reestablish the peer relationships with all peers in the group with the new local ASN. Changing the local AS at the neighbor level in an active BGP instance causes BGP to reestablish the peer relationship with the new local ASN.
This is an optional command and can be used in the following circumstance:
Provider router P is moved from AS1 to AS2. The customer router that is connected to P, however, is configured to belong to AS1. To avoid reconfiguring the customer router, the local-as value on router P can be set to AS1. Therefore, router P adds AS1 to the as-path message for routes it advertises to the customer router.
The no form of this command used at the global level removes any configured virtual ASN.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no local-as
Parameters
- as-number
Specifies the virtual autonomous system number, expressed as a decimal integer.
- private
Keyword to specify that the local-as is hidden in paths learned from the peering.
local-preference
Syntax
local-preference local-preference
no local-preference
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables setting the BGP local-preference attribute in incoming routes if not specified, and configures the default value for the attribute. This value is used if the BGP route arrives from a BGP peer without the local-preference integer set.
The specified value can be overridden by any value set via a route policy. This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
By default, this command does not override the local-preference value set in arriving routes and analyze routes without local preference with value of 100
The no form of this command at the global level specifies that incoming routes with local-preference set are not overridden and routes arriving without local-preference set are interpreted as if the route had a local-preference value of 100.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no local-preference
Parameters
- local-preference
Specifies the local preference value to be used as the override value, expressed as a decimal integer.
loop-detect
Syntax
loop-detect {drop-peer | discard-route | ignore-loop | off}
no loop-detect
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures how the BGP peer session handles loop detection in the AS path.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
Dynamic configuration changes of loop-detect are not recognized.
The no form of this command used at the global level reverts to default, which is loop-detect ignore-loop.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
loop-detect ignore-loop
Parameters
- drop-peer
Keyword that sends a notification to the remote peer and drops the session.
- discard-route
Keyword that discards routes received with loops in the AS path.
- ignore-loop
Keyword that ignores routes with loops in the AS path but maintains peering.
- off
Keyword that disables loop detection.
med-out
Syntax
med-out {number | igp-cost}
no med-out
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command advertises the MED and assigns the value used for the path attribute for the MED advertised to BGP peers, if the MED is not already set.
The specified value can be overridden by any value set via a route policy.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
The no form of this command used at the global level reverts to default where the MED is not advertised.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no med-out
Parameters
- number
Specifies the MED path attribute value, expressed as a decimal integer.
- igp-cost
Keyword that specifies the MED is set to the IGP cost of the specific IP prefix.
min-as-origination
Syntax
min-as-origination seconds
no min-as-origination
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum interval, in seconds, at which a path attribute, originated by the local router, can be advertised to a peer.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
The no form of this command used at the global level reverts to default.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
15 seconds
Parameters
- seconds
Specifies the minimum path attribute advertising interval, in seconds, expressed as a decimal integer.
min-route-advertisement
Syntax
min-route-advertisement seconds
no min-route-advertisement
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum interval at which a prefix can be advertised to a peer.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
The no form of this command reverts to the default value.
Default
30 seconds
Parameters
- seconds
Specifies the minimum route advertising interval, in seconds, expressed as a decimal integer.
multihop
Syntax
multihop ttl-value
no multihop
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time to live (TTL) value entered in the IP header of packets sent to an eBGP peer multiple hops away.
This parameter is meaningful only when configuring eBGP peers. It is ignored if set for an iBGP peer.
The no form of this command is used to convey to the BGP instance that the eBGP peers are directly connected.
The no form of this command reverts to default values.
Default
1 — eBGP peers are directly connected
64 — iBGP
Parameters
- ttl-value
Specifies the TTL value, expressed as a decimal integer.
passive
Syntax
[no] passive
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables passive mode for the BGP group or neighbor.
When in passive mode, BGP does not attempt to actively connect to the configured BGP peers but responds only when it receives a connect open request from the peer.
By default, BGP actively tries to connect to all the configured peers.
The no form of this command used at the group level disables passive mode where BGP actively attempts to connect to its peers.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no passive
peer-as
Syntax
peer-as as-number
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the AS number for the remote peer. The peer ASN must be configured for each configured peer.
For eBGP peers, the peer ASN configured must be different from the AS number configured for this router under the global level, because the peer will be in a different autonomous system than this router.
For iBGP peers, the peer ASN must be the same as the AS number of this router configured under the global level.
By default, no AS numbers are defined.
This is a required command for each configured peer. This may be configured under the group level for all neighbors in a particular group.
Parameters
- as-number
Specifies the AS number, expressed as a decimal integer.
preference
Syntax
[no] preference preference
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the route preference for routes learned from the configured peers.
This command can be set at three levels: global level (applies to all peers), group level (applies to all peers in peer-group), or neighbor level (only applies to specified peer). The most specific value is used.
The lower the preference, the higher the chance of the route being the active route. The OS assigns BGP routes highest default preference compared to routes that are direct, static, or learned via MPLS or OSPF.
The no form of this command used at the global level reverts to default value.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
170
Parameters
- preference
Specifies the route preference, expressed as a decimal integer.
prefix-limit
Syntax
prefix-limit family limit [log-only] [threshold percentage]
no prefix-limit
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the maximum number of routes BGP can learn from a peer.
When the number of routes reaches a specific percentage (default is 90% of this limit), an SNMP trap is generated. When the limit is exceeded, the BGP peering is dropped and disabled.
- BGP peering is brought down if all of the following conditions are true:
- if the number of routes in the FIB plus the received route is greater than the value configured for prefix-limit
- if the number of routes is less than the maximum IP FIB limit
- if log-only is not configured
- BGP peering is remains up if all of the following conditions are
true:
- if the number of routes in the FIB plus the received route is greater than the value configured for prefix-limit
- if the number of routes is less than the maximum IP FIB limit
- if log-only is configured
A log is generated to report the addition of the route if the prefix-limit value is exceeded. Excess routes are added to the IP FIB.
- If the number of routes in the FIB plus the received route is greater than the maximum IP FIB limit, regardless of whether log-only is configured, the BGP peering session is brought down.
The no form of this command removes the prefix-limit command.
Default
no prefix-limit
Parameters
- limit
Specifies the number of routes, expressed as a decimal integer, that can be learned from a peer.
- log-only
Keyword that enables the warning message to be sent at the specified threshold percentage, and also when the limit is exceeded. BGP peering is not dropped.
- percent
Specifies the threshold value (as a percentage) that triggers a warning message.
- family
-
Specifies the address family applied for the prefix limit.
rapid-withdrawal
Syntax
[no] rapid-withdrawal
Context
config>service>vprn>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command disables the delay (Minimum Route Advertisement) on sending BGP withdrawals. Normal route withdrawals may be delayed up to the minimum route advertisement to allow for efficient packing of BGP updates.
The no form of this command removes this command from the configuration and reverts withdrawal processing to the normal behavior.
Default
no rapid-withdrawal
remove-private
Syntax
[no] remove-private
Context
config>service>vprn>bgp
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command allows private ASNs to be removed from the AS path before advertising them to BGP peers.
When this command is set at the global level, it applies to all peers regardless of group or neighbor configuration. When this command is set at the group level, it applies to all peers in the group regardless of the neighbor configuration.
The OS software recognizes the set of ASNs that are defined by IANA as private. These are ASNs in the range 64512 through 65535, inclusive.
By default, private ASNs will be included in the AS path attribute.
The no form of this command used at the global level reverts to default value.
The no form of this command used at the group level reverts to the value defined at the global level.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no remove-private
type
Syntax
[no] type {internal | external}
Context
config>service>vprn>bgp>group
config>service>vprn>bgp>group>neighbor
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the BGP peer type as internal or external.
The internal type indicates the peer is an iBGP peer, the external type indicates that the peer is an eBGP peer.
By default, the OS derives the type of neighbor based on the local AS specified. If the local AS specified is the same as the AS of the router, the peer is considered internal. If the local AS is different, the peer is considered external.
The no form of this command used at the group level reverts to the default value.
The no form of this command used at the neighbor level reverts to the value defined at the group level.
Default
no type
Parameters
- internal
Keyword that configures the peer as internal.
- external
Keyword that configures the peer as external.
OSPF commands
ospf
Syntax
[no] ospf
Context
config>service>vprn
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an OSPF protocol instance.
When an OSPF instance is created, the protocol is enabled. To start or suspend execution of the OSPF protocol without affecting the configuration, use the no shutdown command.
The no form of this command deletes the OSPF protocol instance, removing all associated configuration parameters.
Default
no ospf
area
Syntax
[no] area area-id
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an OSPF area. An area is a collection of network segments within an AS that have been administratively grouped. The area ID can be specified in dotted-decimal notation or as a 32-bit decimal integer.
The no form of this command deletes the specified area from the configuration. Deleting the area also removes the OSPF configuration of all the interfaces, virtual links, sham-links, and address-ranges that are currently assigned to this area.
Default
no area
Parameters
- area-id
Specifies the OSPF area ID, expressed in dotted-decimal notation or as a 32-bit decimal integer.
area-range
Syntax
area-range [ip-prefix/mask] [ipv6-prefix/prefix-length] [advertise | not-advertise]
no area-range ipv6-prefix/prefix-length
Context
config>service>vprn>ospf>area
config>service>vprn>ospf>area>nssa
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures ranges of addresses on an Area Border Router (ABR) for the purpose of route summarization or suppression. When a range is created, the range is configured to be advertised or not advertised into other areas. Multiple range commands may be used to summarize or hide different ranges. In the case of overlapping ranges, the most specific range command applies.
ABRs send summary link advertisements to describe routes to other areas. To minimize the number of advertisements that are flooded, you can summarize a range of IP addresses and send reachability information about these addresses in an LSA.
The no form of this command deletes the range (non) advertisement.
Default
no area-range
Special Cases
- NSSA Context
In the NSSA context, the option specifies that the range applies to external routes (via type-7 LSAs) learned within the NSSA when the routes are advertised to other areas as type-5 LSAs.
- Area Context
If this command is not entered under the NSSA context, the range applies to summary LSAs even if the area is an NSSA.
Parameters
- ip-prefix/mask
Specifies the IP prefix for the range in dotted-decimal notation and the subnet mask for the range, expressed as a decimal integer.
ip-prefix:
0 to 32
mask:
0 to 32)
- ipv6-prefix/prefix-length
Specifies the IPv6 prefix for the range in hexadecimal notation and the prefix length for the range.
ipv6-prefix:
x:x:x:x:x:x:x:x (eight 16-bit pieces)
- x:x:x:x:x:x:d.d.d.d
- x: [0 to FFFF]H
- d: [0 to 255]D
prefix-length:
0 to 128
- advertise | not-advertise
Keyword that specify whether to advertise the summarized range of addresses into other areas. The advertise keyword indicates the range is advertised, and the not-advertise keyword indicates the range is not advertised.
blackhole-aggregate
Syntax
[no] blackhole-aggregate
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command installs a low priority blackhole route for the entire aggregate. Existing routes that make up the aggregate will have a higher priority, and only the components of the range for which no route exists are blackholed.
It is possible that when performing area aggregation, addresses may be included in the range for which no actual route exists. This can cause routing loops. To avoid this problem, configure the blackhole-aggregate command.
The no form of this command removes this option.
Default
blackhole-aggregate
interface
Syntax
[no] interface ip-int-name [secondary]
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an OSPF interface.
By default, interfaces are not activated in any interior gateway protocol, such as OSPF, unless explicitly configured.
The no form of this command deletes the OSPF interface configuration for this interface. The shutdown command in the config>router>ospf>interface context can be used to disable an interface without removing the configuration for the interface.
Default
no interface
Parameters
- ip-int-name
Specifies the IP interface name. Interface names must be unique within the group of defined IP interfaces for config router interface and config service vprn interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
If the IP interface name does not exist or does not have an IP address configured, an error message is returned.
If the IP interface exists in a different area, it is moved to this area.
- secondary
Keyword that allows multiple secondary adjacencies to be established over a single IP interface.
sham-link
Syntax
sham-link ip-int-name ip-address
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command is similar to a virtual link with the exception that a metric must be included to distinguish the cost between the MPLS-VPRN link and the backdoor.
Parameters
- ip-int-name
Specifies the local interface name used for the sham-link. This is a mandatory parameter and interface names must be unique within the group of defined IP interfaces for config router interface, config service ies interface, and config service vprn interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters, the entire string must be enclosed within double quotes. If the IP interface name does not exist or does not have an IP address configured, an error message is returned.
- ip-address
Specifies the IP address of the SHAM-link neighbor in IP address dotted-decimal notation. This parameter is the remote peer of the sham link IP address used to set up the SHAM link. This is a mandatory parameter and must be a valid IP address.
advertise-subnet
Syntax
[no] advertise-subnet
Context
config>service>vprn>ospf>area>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables advertising point-to-point interfaces as subnet routes (network number and mask). When disabled, point-to-point interfaces are advertised as host routes.
By default, point-to-point interfaces are advertised as subnet routes.
The no form of this command disables advertising point-to-point interfaces as subnet routes meaning they are advertised as host routes.
Default
advertise-subnet
authentication-key
Syntax
authentication-key [authentication-key | hash-key] [hash | hash2]
no authentication-key
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf>area>sham-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the password used by the OSPF interface, virtual link, or sham link to send and receive OSPF protocol packets on the interface when simple password authentication is configured.
All neighboring routers must use the same type of authentication and password for correct protocol communication. If the authentication-type is configured as the password, this key must be configured.
By default, no authentication key is configured.
The no form of this command removes the authentication key.
Default
no authentication-key
Parameters
- authentication-key
Specifies the authentication key. The key can be any combination of ASCII characters up to 8 characters (unencrypted). If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
- hash-key
Specifies the hash key. The key can be any combination of ASCII characters up to 22 characters (encrypted). If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
This is useful when a user must configure the parameter, but, for security purposes, the actual unencrypted key value is not provided.
- hash
Keyword to specify the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
- hash2
Keyword to specify the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.
authentication-type
Syntax
authentication-type {password | message-digest}
no authentication-type
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>virtual-link
config>service>vprn>ospf>area>sham-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables authentication and specifies the type of authentication to be used on the OSPF interface, virtual link, or sham link.
Both simple password and message-digest authentication are supported.
By default, authentication is not enabled on an interface.
The no form of this command disables authentication on the interface.
Default
no authentication
Parameters
- password
Keyword that enables simple password (plain text) authentication. If authentication is enabled and no authentication type is specified in the command, simple password authentication is enabled.
- message-digest
Keyword that enables message digest MD5 authentication in accordance with RFC1321. If this option is configured, at least one message-digest-key must be configured.
bfd-enable
Syntax
[no] bfd-enable [remain-down-on-failure]
Context
config>service>vprn>ospf>area>interface
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the use of BFD to control the state of the associated protocol interface. By enabling BFD on a specific protocol interface, the state of the protocol interface is tied to the state of the BFD session between the local node and the remote node. The parameters used for the BFD are set using the bfd-enable command under the IP interface.
BFD is not supported for IPv6 interfaces.
The no form of this command removes BFD from the associated IGP protocol adjacency.
Default
no bfd-enable
Parameters
- remain-down-on-failure
Keyword that forces adjacency down on BFD failure.
dead-interval
Syntax
dead-interval seconds
no dead-interval
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the time that OSPF waits before declaring a neighbor router down. If no hello packets are received from a neighbor for the duration of the dead interval, the router is assumed to be down. The minimum interval must be two times the hello interval.
The no form of this command reverts to the default value.
Default
40
Special Cases
- OSPF interface
If the dead-interval applies to an interface, all nodes on the subnet must have the same dead interval.
- Sham link
If the dead-interval applies to a sham link, the interval on both endpoints of the sham link must have the same dead interval.
- Virtual link
If the dead-interval applies to a virtual link, the interval on both endpoints of the virtual link must have the same dead interval.
Parameters
- seconds
Specifies the dead interval in seconds.
hello-interval
Syntax
hello-interval seconds
no hello-interval
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the interval between OSPF hellos issued on the interface, virtual link, or sham link.
This command, in combination with the dead-interval command, is used to establish and maintain the adjacency. Use this command to edit the frequency that hello packets are sent.
Reducing the interval, in combination with an appropriate reduction in the associated dead-interval, allows for faster detection of link or router failures at the cost of higher processing costs.
The no form of this command reverts to the default value.
Default
hello-interval 10
Special Cases
- OSPF interface
If the hello-interval applies to an interface, all nodes on the subnet must have the same hello interval.
- Sham link
If the hello-interval applies to a sham link, the interval on both endpoints of the sham link must have the same hello interval.
- Virtual link
If the hello-interval applies to a virtual link, the interval on both endpoints of the virtual link must have the same hello interval.
Parameters
- seconds
Specifies the hello interval in seconds, expressed as a decimal integer.
interface-type
Syntax
interface-type {broadcast | point-to-point}
no interface-type
Context
config>service>vprn>ospf>area>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the interface type as either broadcast or point-to-point.
Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead if the Ethernet link provided the link is used as a point-to-point.
If the interface type is not known at the time the interface is added to OSPF and subsequently the IP interface is bound (or moved) to a different interface type, this command must be entered manually.
The no form of this command reverts to the default value.
Default
point-to-point — If the physical interface is SONET.
broadcast — If the physical interface is Ethernet or unknown.
Special Cases
- Virtual link
A virtual link is always regarded as a point-to-point interface and not configurable.
Parameters
- broadcast
Keyword that configures the interface to maintain this link as a broadcast network. To significantly improve adjacency forming and network convergence, a network should be configured as point-to-point if only two routers are connected, even if the network is a broadcast medium, such as Ethernet.
- point-to-point
Keyword that configures the interface to maintain this link as a point-to-point link.
message-digest-key
Syntax
message-digest-key key-id md5 [key | hash-key] [hash]
no message-digest-key key-id
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures a message digest key when MD5 authentication is enabled on the interface, virtual link, or sham link. Multiple message digest keys can be configured.
The no form of this command removes the message digest key identified by the key-id.
Parameters
- key-id
Specifies the key-id, expressed as a decimal integer.
- md5 key
Specifies the MD5 key. The key can be any alphanumeric string up to 16 characters.
- md5 hash-key
Specifies the MD5 hash key. The key can be any combination of ASCII characters up to 32 characters (encrypted). If spaces are used in the string, enclose the entire string in quotation marks (‟ ”).
This is useful when a user must configure the parameter, but, for security purposes, the actual unencrypted key value is not provided.
- hash
Keyword to specify the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
metric
Syntax
metric metric
no metric
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an explicit route cost metric for the OSPF interface that overrides the metrics calculated based on the speed of the underlying link.
By default, the metric is based on reference-bandwidth setting and the link speed.
The no form of this command deletes the manually configured interface metric, so the interface uses the computed metric based on the reference-bandwidth command setting and the speed of the underlying link.
Default
no metric
Parameters
- metric
Specifies the metric to be applied to the interface, expressed as a decimal integer.
mtu
Syntax
mtu bytes
no mtu
Context
config>service>vprn>ospf>area>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the OSPF interface MTU value used when negotiating an OSPF packet size used on this interface. If this command is not configured, OSPF derives the MTU value from the MTU configured (default or explicitly) in the config>port>ethernet context.
If this command is configured, the smaller value between the value in this command here and the MTU configured (default or explicitly) in one of the previously mentioned contexts is used.
By default, the value derived from the MTU configured in the config>port context is used.
To determine the actual packet size, add 14 bytes for an Ethernet packet and 18 bytes for a tagged Ethernet packet to the size of the OSPF (IP) packet MTU configured in this command.
Use the no form of this command reverts to the default value.
Default
no mtu
Parameters
- bytes
Specifies the MTU to be used by OSPF for this logical interface in bytes.
passive
Syntax
[no] passive
Context
config>service>vprn>ospf>area>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command adds the passive property to the OSPF interface where passive interfaces are advertised as OSPF interfaces but do not run the OSPF protocol.
By default, only interface addresses that are configured for OSPF are advertised as OSPF interfaces. The passive command allows an interface to be advertised as an OSPF interface without running the OSPF protocol.
While in passive mode, the interface will ignore ingress OSPF protocol packets and not transmit any OSPF protocol packets.
By default, service interfaces defined in the config>router>service-prefix context are passive; all other interfaces are not passive.
The no form of this command removes the passive property from the OSPF interface.
priority
Syntax
priority number
no priority
Context
config>service>vprn>ospf>area>if
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the priority of the OSPF interface that is used in an election of the designated router on the subnet.
This command is used only if the interface is of the broadcast type. The router with the highest priority interface becomes the designated router. A router with a priority value of 0 is not eligible to be a designated router or backup designated router.
The no form of this command reverts the interface priority to the default value.
Default
priority 1
Parameters
- number
Specifies the interface priority expressed as a decimal integer.
retransmit-interval
Syntax
retransmit-interval seconds
no retransmit-interval
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the length of time that OSPF waits before retransmitting an unacknowledged link state advertisement (LSA) to an OSPF neighbor.
The value should be longer than the expected round trip delay between any two routers on the attached network. When the retransmit-interval expires and no acknowledgment has been received, the LSA is retransmitted.
The no form of this command reverts to the default interval.
Default
retransmit-interval 5
Parameters
- seconds
Specifies the retransmit interval, in seconds, expressed as a decimal integer.
transit-delay
Syntax
transit-delay seconds
no transit-delay
Context
config>service>vprn>ospf>area>if
config>service>vprn>ospf>area>sham-link
config>service>vprn>ospf>area>virtual-link
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the estimated time to transmit an LSA on the interface or sham-link.
The no form of this command reverts to the default value.
Default
transit-delay 1
Parameters
- seconds
Specifies the transit delay, in seconds, expressed as a decimal integer.
nssa
Syntax
[no] nssa
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an OSPF Not So Stubby Area (NSSA) and adds or removes the NSSA designation from the area.
NSSAs are similar to stub areas in that no external routes are imported into the area from other OSPF areas. The major difference between a stub area and an NSSA is an NSSA has the capability to flood external routes that it learns throughout its area and via an ABR to the entire OSPF domain.
Existing virtual links of a non-stub area or NSSA are removed when the designation is changed to NSSA or stub.
An area can be designated as stub or NSSA but never both at the same time.
By default, an area is not configured as an NSSA.
The no form of this command removes the NSSA designation and configuration context from the area.
Default
no nssa
originate-default-route
Syntax
originate-default-route [type-7]
no originate-default-route
Context
config>service>vprn>ospf>area>nssa
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the type-7 parameter, which injects a type 7 LSA default route instead of a type 3 LSA into the NSSA configured with no summaries.
To return to a type 3 LSA, enter the originate-default-route command without the type-7 parameter.
When configuring an NSSA with no summaries, the ABR will inject a type 3 LSA default route into the NSSA.
The no form of this command disables origination of a default route.
Default
no originate-default-route
Parameters
- type-7
Specifies that a type 7 LSA is used for the default route.
redistribute-external
Syntax
[no] redistribute-external
Context
config>service>vprn>ospf>area>nssa
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the redistribution of external routes into the NSSA or an NSSA ABR that is exporting the routes into non-NSSA areas.
NSSAs are similar to stub areas in that no external routes are imported into the area from other OSPF areas. The major difference between a stub area and an NSSA is that the NSSA has the capability to flood external routes that it learns (providing it is an ASBR) throughout its area and via an ABR to the entire OSPF domain.
The no form of this command disables the default behavior to automatically redistribute external routes into the NSSA area from the NSSA ABR.
Default
redistribute-external
summaries
Syntax
[no] summaries
Context
config>service>vprn>ospf>area>nssa
config>service>vprn>ospf>area>stub
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables sending summary (type 3) advertisements into a stub area or NSSA on an ABR. This command is particularly useful to reduce the size of the routing and Link State Database (LSDB) tables within the stub area or NSSA. By default, summary route advertisements are sent into the stub area or NSSA.
The no form of this command disables sending summary route advertisements and, for stub areas, only the default route is advertised by the ABR.
Default
summaries
stub
Syntax
[no] stub
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures an OSPF or stub area and adds or removes the stub designation from the area. External routing information is not flooded into stub areas. All routers in the stub area must be configured with the stub command. An OSPF area cannot be both an NSSA and a stub area. Existing virtual links of a non-stub area or non-NSSA will be removed when its designation is changed to NSSA or stub.
By default, an area is not a stub area.
The no form of this command removes the stub designation and configuration context from the area.
Default
no stub
default-metric
Syntax
default-metric metric
no default-metric
Context
config>service>vprn>ospf>area>stub
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the metric used by the ABR for the default route into a stub area. The default metric should only be configured on an ABR of a stub area. An ABR generates a default route if the area is a stub area.
The no form of this command reverts to the default value.
Default
default-metric 1
Parameters
- metric
Specifies the metric expressed as a decimal integer for the default route cost to be advertised into the stub area.
virtual-link
Syntax
[no] virtual-link router-id transit-area area-id
Context
config>service>vprn>ospf>area
Platforms
7210 SAS-K 2F6C4T and and 7210 SAS-K 3SFP+ 8C
Description
This command configures a virtual link to connect ABRs to the backbone using a virtual link. The backbone area (area 0.0.0.0) must be contiguous and all other areas must be connected to the backbone area. If it is not practical to connect an area to the backbone (see area 0.0.0.2 in OSPF areas), the ABRs (routers 1 and 2 in OSPF areas) must be connected via a virtual link. The two ABRs will form a point-to-point like adjacency across the transit area (area 0.0.0.1 in OSPF areas). A virtual link can be configured only while in the area 0.0.0.0 context.
The router-id specified in this command must be associated with the virtual neighbor. The transit area cannot be a stub area or an NSSA.
The no form of this command deletes the virtual link.
Parameters
- router-id
Specifies the router ID of the virtual neighbor in IP address dotted-decimal notation.
- transit-area area-id
Specifies the transit area that links the backbone area with the area that has no physical connection with the backbone.
OSPF areas shows an OSPF backbone area configuration. The OSPF backbone area, area 0.0.0.0, must be contiguous and all other areas must be connected to the backbone area. The backbone distributes routing information between areas. If it is not practical to connect an area to the backbone (see area 0.0.0.5) the ABRs (such as routers Y and Z) must be connected via a virtual link. The two ABRs form a point-to-point-like adjacency across the transit area (see area 0.0.0.4).
compatible-rfc1583
Syntax
[no] compatible-rfc1583
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures OSPF summary and external route calculations, in compliance with RFC1583 and earlier RFCs.
RFC1583 and earlier RFCs use a different method to calculate summary and external route costs. To avoid routing loops, all routers in an OSPF domain should perform the same calculation method.
Although it would be favorable to require all routers to run a more current compliance level, this command allows the router to use obsolete methods of calculation.
The no form of this command enables the post-RFC1583 method of summary and external route calculation.
Default
compatible-rfc1583
export
Syntax
export policy-name [policy-name…up to 5 max]
no export
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command associates export route policies to determine which routes are exported from the route table to OSPF. Export polices are in effect only if OSPF is configured as an ASBR.
If no export policy is specified, non-OSPF routes are not exported from the routing table manager to OSPF.
If multiple policy names are specified, the policies are evaluated in the order they are specified. The first policy that matches is applied. If multiple export commands are issued, the last command entered will override the previous command. A maximum of five policy names can be specified.
The no form of this command removes all policies from the configuration.
Default
no export
Parameters
- policy-name
Specifies the export route policy name. Allowed values are any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (such #, $, spaces), the entire string must be enclosed within double quotes.
The specified names must already be defined.
external-db-overflow
Syntax
external-db-overflow limit interval
no external-db-overflow
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures limits on the number of non-default AS-external-LSA entries that can be stored in the link-state database (LSDB) and specifies a wait timer before processing these after the limit is exceeded.
The limit value specifies the maximum number of non-default AS-external-LSA entries that can be stored in the LSDB. Placing a limit on the non-default AS-external-LSAs in the LSDB protects the router from receiving an excessive number of external routes that consume excessive memory or CPU resources. If the number of routes reach or exceed the limit, the table is in an overflow state. When in an overflow state, the router will not originate any new AS-external-LSAs. In fact, it withdraws all the self-originated non-default external LSAs.
The interval specifies the amount of time to wait after an overflow state before regenerating and processing non-default AS-external-LSAs. The waiting period acts like a dampening period preventing the router from continuously running Shortest Path First (SPF) calculations caused by the excessive number of non-default AS-external LSAs.
The external-db-overflow must be set identically on all routers attached to a regular OSPF area. OSPF stub areas and NSSAs are excluded.
The no form of this command disables limiting the number of non-default AS-external-LSA entries.
Default
no external-db-overflow
Parameters
- limit
Specifies the maximum number of non-default AS-external-LSA entries that can be stored in the LSDB before going into an overflow state expressed as a decimal integer.
- interval
Specifies the number of seconds, expressed as a decimal integer, after entering an overflow state before attempting to process non-default AS-external-LSAs.
external-preference
Syntax
external-preference preference
no external-preference
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the preference for OSPF external routes.
A route can be learned by the router from different protocols, in which case, the costs are not comparable. When this occurs, the preference is used to decide which route will be used.
Different protocols should not be configured with the same preference. If this occurs, the tiebreaker is based on the default preferences, as shown in the following table.
Route type |
Preference |
Configurable |
---|---|---|
Direct attached |
0 |
No |
Static routes |
5 |
Yes |
OSPF internal |
10 |
Yes 1 |
IS-IS level 1 internal |
15 |
Yes |
IS-IS level 2 internal |
18 |
Yes |
RIP |
100 |
Yes |
OSPF external |
150 |
Yes |
IS-IS level 1 external |
160 |
Yes |
IS-IS level 2 external |
165 |
Yes |
BGP |
170 |
Yes |
If multiple routes are learned with an identical preference using the same protocol and the costs (metrics) are equal, the decision of which route to use is determined by the configuration of the ecmp command in the config>router context.
The no form of this command reverts to the default value.
Default
external-preference 150
Parameters
- preference
Specifies the preference for external routes expressed as a decimal integer.
graceful-restart
Syntax
[no] graceful-restart
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures graceful restart for OSPF in the VPRN context. When the control plane of a GR-capable router fails, the VPRN OSPF peers (GR helpers) temporarily preserve neighbor information, so packets continue to be forwarded through the failed GR router using the last known routes. The helper state remains until the peer completes its restart or exits if the GR timer value is exceeded.
The no form of this command disables graceful restart and removes all graceful restart configurations in the OSPF instance.
Default
no graceful-restart
helper-disable
Syntax
[no] helper-disable
Context
config>service>vprn>ospf>graceful-restart
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command disables the helper support for graceful restart.
When graceful-restart is enabled, the router can be a helper (meaning that the router is helping a neighbor to restart) or be a restarting router or both. The 7210 SAS supports only helper mode. This facilitates the graceful restart of neighbors but does not act as a restarting router (meaning that the 7210 SAS will not help the neighbors to restart).
The no helper-disable command enables helper support and is the default when graceful-restart is enabled.
Default
helper-disable
ignore-dn-bit
Syntax
[no] ignore-dn-bit
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether to ignore the DN bit for OSPF LSA packets for this instance of OSPF on the router. When enabled, the DN bit for OSPF LSA packets will be ignored. When disabled, the DN bit will not be ignored for OSPF LSA packets.
overload
Syntax
overload [timeout seconds]
no overload
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command changes the overload state of the local router so that it appears to be overloaded. When overload is enabled, the router can participate in OSPF routing but is not used for transit traffic. Traffic destined to directly attached interfaces continues to reach the router.
Put the IGP in an overload state by entering a timeout value. The IGP will enter the overload state until the timeout timer expires or a no overload command is executed.
If the overload command is encountered during the execution of an overload-on-boot command this command takes precedence. This could occur as a result of a saved configuration file where both parameters are saved. When the file is saved by the system the overload-on-boot command is saved after the overload command.
The no form of this command reverts to the default value. When the no overload command is executed, the overload state is terminated regardless of the reason the protocol entered overload state.
Default
no overload
Parameters
- timeout seconds
Specifies the number of seconds to reset overloading.
overload-include-stub
Syntax
[no] overload-include-stub
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures whether the OSPF stub networks should be advertised with a maximum metric value when the system goes into overload state for any reason. When enabled, the system uses the maximum metric value. When this command is enabled and the router is in overload, all stub interfaces, including loopback and system interfaces, are advertised at the maximum metric.
Default
no overload-include-stub
overload-on-boot
Syntax
overload-on-boot [timeout seconds]
no overload
Context
config>service>vprn>ospf
Platforms
77210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
When the router is in an overload state, the router is used only if there is no other router to reach the destination. This command configures the IGP upon bootup in the overload state until one of the following events occur:
timeout timer expires
manual override of the current overload state is entered with the no overload command
The no overload command does not affect the overload-on-boot command.
The no form of this command removes the overload-on-boot command from the configuration.
Default
no overload-on-boot
Parameters
- timeout seconds
Specifies the number of seconds to reset overloading.
preference
Syntax
preference preference
no preference
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the preference for internal routes for an OSPF instance.
Different protocols should not be configured with the same preference. If this occurs, the tiebreaker is based on the default preference table, as listed in Route preference defaults by route type. If multiple routes are learned with an identical preference using the same protocol, the lowest cost route is used.
The no form of this command reverts to the default value.
Default
preference 10
Parameters
- preference
Specifies the preference for internal routes expressed as a decimal integer. Route preference defaults by route type lists the defaults for different route types.
reference-bandwidth
Syntax
reference-bandwidth reference-bandwidth
no reference-bandwidth
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the reference bandwidth in kilobits per second (Kbps) that provides the reference for the default costing of interfaces based on their underlying link speed.
The default interface cost is calculated as follows:
cost = reference-bandwidth/bandwidth
The default reference-bandwidth is 100,000,000 Kbps or 100 Gbps, so the default auto-cost metrics for various link speeds are as follows:
10 Mbs link default cost of 10000
100 Mbs link default cost of 1000
1 Gbps link default cost of 100
10 Gbps link default cost of 10
The reference-bandwidth command assigns a default cost to the interface based on the interface speed. To override this default cost on a particular interface, use the metric command in the config>router>ospf>area>interface ip-int-name context.
The no form of this command reverts the reference-bandwidth to the default value.
Default
reference-bandwidth 100000000
Parameters
- reference-bandwidth
Specifies the reference bandwidth in kilobits per second expressed as a decimal integer.
router-id
Syntax
router-id ip-address
no router-id
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the router ID for the OSPF instance.
Configuring the router ID in the base instance of OSPF overrides the router ID configured in the config>router context.
The default value for the base instance is inherited from the configuration in the config>router context. If the router ID in the config>router context is not configured, the following applies:
the system uses the system interface address (which is also the loopback address)
if a system interface address is not configured, use the last 32 bits of the chassis MAC address
When configuring a new router ID, the instance is not automatically restarted with the new router ID. The next time the instance is initialized, the new router ID is used.
To force the new router ID to be used, issue the shutdown and no shutdown commands for the instance, or reboot the entire router.
The no form of this command reverts to the default value.
Default
0.0.0.0 (base OSPF)
Parameters
- ip-address
Specifies a 32-bit unsigned integer uniquely identifying the router in the AS.
super-backbone
Syntax
[no] super-backbone
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether CE-PE functionality is required. The OSPF super backbone indicates the type of the LSA generated as a result of routes redistributed into OSPF. When enabled, the redistributed routes are injected as summary, external, or NSSA LSAs. When disabled, the redistributed routes are injected as either external or NSSA LSAs only.
Default
no super-backbone
suppress-dn-bit
Syntax
[no] suppress-dn-bit
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies whether to suppress the setting of the DN bit for OSPF LSA packets generated by this instance of OSPF on the router. When enabled, the DN bit for OSPF LSA packets generated by this instance of the OSPF router will not be set. When disabled, this instance of the OSPF router will follow the normal procedure to determine whether to set the DN bit.
Default
no suppress-dn-bit
timers
Syntax
timers
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context configure OSPF timers. Timers control the delay between receipt of an LSA requiring an SPF calculation and the minimum time between successive SPF calculations.
Changing the timers affects CPU utilization and network reconvergence times. Lower values reduce convergence time but increase CPU utilization. Higher values reduce CPU utilization but increase reconvergence time.
lsa-arrival
Syntax
lsa-arrival lsa-arrival-time
no lsa-arrival
Context
config>service>vprn>ospf>timers
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the minimum delay that must pass between receipt of the same LSAs arriving from neighbors. Nokia recommends that the neighbor configured (lsa-generate) lsa-second-wait interval is equal to or greater than the lsa-arrival timer configured in this command.
The no form of this command reverts to the default value.
Default
no lsa-arrival
Parameters
- lsa-arrival-time
Specifies the timer in milliseconds. Values entered that do not match this requirement are rejected.
lsa-generate
Syntax
lsa-generate max-lsa-wait [lsa-initial-wait [lsa-second-wait]]
no lsa-generate-interval
Context
config>service>vprn>ospf>timers
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the throttling of OSPF LSA-generation. Timers that determine when to generate the first, second, and subsequent LSAs can be controlled with this command. Subsequent LSAs are generated at increasing intervals of the lsa-second-wait timer until a maximum value is reached. Configuring the lsa-arrival interval to equal or less than the lsa-second-wait interval configured in the lsa-generate command is recommended.
The no form of this command reverts to the default value.
Default
no lsa-generate
Parameters
- max-lsa-wait
Specifies the maximum interval, in milliseconds, between two consecutive occurrences of an LSA being generated.
The timer must be entered as 1 or in millisecond increments. Values entered that do not match this requirement are rejected.
spf-wait
Syntax
spf-wait max-spf-wait [spf-initial-wait [spf-second-wait]]
no spf-wait
Context
config>service>vprn>ospf>timers
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command defines the maximum interval between two consecutive SPF calculations. Timers that determine when to initiate the first, second, and subsequent SPF calculations after a topology change occurs can be controlled with this command. Subsequent SPF runs (if required) will occur at exponentially increasing intervals of the spf-second-wait interval. For example, if the spf-second-wait interval is 1000, the next SPF will run after 2000 milliseconds, and the next SPF will run after 4000 milliseconds, and so on, until it reaches the spf-wait value. The SPF interval will stay at the spf-wait value until there are no more SPF runs scheduled in that interval. After a full interval without any SPF runs, the SPF interval will drop back to spf-initial-wait.
The timer must be entered in increments of 100 milliseconds. Values entered that do not match this requirement are rejected.
The no form of this command reverts to the default value.
Default
no spf-wait
Parameters
- max-spf-wait
Specifies the maximum interval in milliseconds between two consecutive SPF calculations.
- spf-initial-wait
Specifies the initial SPF calculation delay in milliseconds after a topology change.
- spf-second-wait
Specifies the hold time in milliseconds between the first and second SPF calculation.
vpn-domain
Syntax
vpn-domain [type {0005 | 0105 | 0205 | 8005}] id id
no vpn-domain
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command configures the type of the extended community attribute exchanged using BGP to carry the OSPF VPN domain ID. An attempt to modify the value of this object results in an inconsistent value error when it is not a VPRN instance. The parameters are mandatory and can be entered in any order.
Default
no vpn-domain
Parameters
- id
Specifies the OSPF VPN domain in the ‟xxxx.xxxx.xxxx” format. This is exchanged using BGP in the extended community attribute associated with a prefix.
- type
Specifies the type of the extended community attribute exchanged using BGP to carry the OSPF VPN domain ID.
vpn-tag
Syntax
vpn-tag vpn-tag
no vpn-tag
Context
config>service>vprn>ospf
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command specifies the route tag for an OSPF VPN on a PE router. This field is set in the tag field of the OSPF external LSAs generated by the PE. This is mainly used to prevent routing loops. This applies to VPRN instances of OSPF only. An attempt to modify the value of this object results in an inconsistent value error when it is not a VPRN instance.
Default
vpn-tag 0
VPRN show commands
egress-label
Syntax
egress-label start-label [end-label]
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays services using the range of egress labels.
If only the mandatory start-label parameter is specified, only services using the specified label are displayed.
If both start-label and end-label parameters are specified, the services using the range of labels X where start-label <= X <= end-label are displayed.
Use the show router ldp bindings command to display dynamic labels.
Parameters
- start-label
Specifies the starting egress label value for which to display services using the label range. If only egress-label1 is specified, services only using egress-label1 are displayed.
- end-label
Specifies the ending egress label value for which to display services using the label range.
Output
The following output is an example of egress label information, and Output fields: egress label describes the output fields.
Sample output*A:ALA-12# show service egress-label 0 10000
==============================================================================
Martini Service Labels
==============================================================================
Svc Id Sdp Id Type I.Lbl E.Lbl
------------------------------------------------------------------------------
1 10:1 Mesh 0 0
1 20:1 Mesh 0 0
1 30:1 Mesh 0 0
1 100:1 Mesh 0 0
...
1 107:1 Mesh 0 0
1 108:1 Mesh 0 0
1 300:1 Mesh 0 0
1 301:1 Mesh 0 0
1 302:1 Mesh 0 0
1 400:1 Mesh 0 0
1 500:2 Spok 131070 2001
1 501:1 Mesh 131069 2000
100 300:100 Spok 0 0
200 301:200 Spok 0 0
300 302:300 Spok 0 0
400 400:400 Spok 0 0
------------------------------------------------------------------------------
Number of Bindings Found : 23
==============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Svc Id |
The ID that identifies a service. |
Sdp Id |
The ID that identifies an SDP. |
Type |
Indicates whether the SDP binding is a spoke or a mesh. |
I. Lbl |
The VC label used by the far-end device to send packets to this device in this service by the SDP. |
E. Lbl |
The VC label used by this device to send packets to the far-end device in this service by the SDP. |
Number of bindings found |
The total number of SDP bindings that exist within the specified egress label range. |
ingress-label
Syntax
ingress-label start-label [end-label]
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays services using the range of ingress labels.
If only the mandatory start-label parameter is specified, only services using the specified label are displayed.
If both start-label and end-label parameters are specified, the services using the range of labels X where start-label <= X <= end-label are displayed.
Use the show router vprn-service-id ldp bindings command to display dynamic labels.
Parameters
- start-label
Specifies the starting ingress label value for which to display services using the label range. If only start-label is specified, services only using start-label are displayed.
- end-label
Specifies the ending ingress label value for which to display services using the label range.
Output
The following output is an example of ingress label information, and Output fields: ingress label describes the output fields.
Sample output*A:ALA-12# show service ingress-label 0
==============================================================================
Martini Service Labels
==============================================================================
Svc Id Sdp Id Type I.Lbl E.Lbl
------------------------------------------------------------------------------
1 10:1 Mesh 0 0
1 20:1 Mesh 0 0
1 30:1 Mesh 0 0
1 50:1 Mesh 0 0
1 100:1 Mesh 0 0
1 101:1 Mesh 0 0
1 102:1 Mesh 0 0
1 103:1 Mesh 0 0
1 104:1 Mesh 0 0
1 105:1 Mesh 0 0
1 106:1 Mesh 0 0
1 107:1 Mesh 0 0
1 108:1 Mesh 0 0
1 300:1 Mesh 0 0
1 301:1 Mesh 0 0
1 302:1 Mesh 0 0
1 400:1 Mesh 0 0
100 300:100 Spok 0 0
200 301:200 Spok 0 0
300 302:300 Spok 0 0
400 400:400 Spok 0 0
------------------------------------------------------------------------------
Number of Bindings Found : 21
------------------------------------------------------------------------------
*A:ALA-12#
Label |
Description |
---|---|
Svc ID |
The service identifier. |
SDP Id |
The SDP identifier. |
Type |
Indicates whether the SDP is a spoke or a mesh. |
I.Lbl |
The ingress label used by the far-end device to send packets to this device in this service by the SDP. |
E.Lbl |
The egress label used by this device to send packets to the far-end device in this service by the SDP. |
Number of Bindings Found |
The number of SDP bindings within the specified label range. |
sap-using
Syntax
sap-using [sap sap-id]
sap-using interface [ip-address | ip-int-name]
sap-using [ingress | egress] filter filter-id
sap-using [ingress | egress] qos-policy qos-policy-id
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays SAP information.
If no optional parameters are specified, the command displays a summary of all defined SAPs.
The optional parameters restrict output to only SAPs matching the specified properties.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
- interface
Specifies matching SAPs with the specified IP interface.
- ip-address
Specifies the IP address of the interface for which to display matching SAPs.
- ip-int-name
Specifies the IP interface name for which to display matching SAPs.
- ingress
Keyword that specifies matching an ingress policy.
- egress
Keyword that specifies matching an egress policy.
- qos-policy qos-policy-id
Specifies the ingress or egress QoS Policy ID for which to display matching SAPs.
- filter filter-id
Specifies the ingress or egress filter policy ID for which to display matching SAPs.
Output
The following output is an example of SAP information, and Output fields: SAP-using describes the output fields.
Sample output*A:ALA-12# show service sap-using sap 1/1
==============================================================================
Service Access Points
==============================================================================
PortId SvcId SapMTU I.QoS I.Mac/IP E.QoS E.Mac/IP A.Pol Adm Opr
------------------------------------------------------------------------------
1/1/7:0 1 1518 10 8 10 none none Up Up
1/1/11:0 100 1514 1 none 1 none none Down Down
1/1/7:300 300 1518 10 none 10 none 1000 Up Up
------------------------------------------------------------------------------
Number of SAPs : 3
------------------------------------------------------------------------------
*A:ALA-12#
Label |
Description |
---|---|
Port ID |
The ID of the access port where the SAP is defined. |
Svc ID |
The service identifier. |
SapMTU |
The SAP MTU value. |
I.QoS |
The SAP ingress QoS policy number specified on the ingress SAP. |
I.MAC/IP |
The MAC or IP filter policy ID applied to the ingress SAP. |
E.QoS |
The SAP egress QoS policy number specified on the egress SAP. |
E.Mac/IP |
The MAC or IP filter policy ID applied to the egress SAP |
A.Pol |
The accounting policy ID assigned to the SAP. |
Adm |
The desired state of the SAP. |
Opr |
The actual state of the SAP. |
sdp
Syntax
sdp [sdp-id | far-end ip-address] [detail | keep-alive-history]
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays SDP information.
If no optional parameters are specified, a summary SDP output for all SDPs is displayed.
Parameters
- sdp-id
Specifies the SDP ID for which to display information.
- far-end ip-address
Displays only SDPs matching with the specified far-end IP address.
- detail
Displays detailed SDP information.
- keep-alive-history
Displays the last fifty SDP keepalive events for the SDP.
Output
The following output is an example of SDP information, and Output fields: SDP describes the output fields.
Sample output*A:ALA-12# show service sdp
==============================================================================
Services: Service Destination Points
==============================================================================
SdpId Adm MTU Opr MTU IP address Adm Opr Deliver Signal
------------------------------------------------------------------------------
10 4462 4462 10.20.1.3 Up Dn NotReady MPLS TLDP
40 4462 1534 10.20.1.20 Up Up MPLS TLDP
------------------------------------------------------------------------------
Number of SDPs : 5
==============================================================================
*A:ALA-12#
*A:ALA-12# show service sdp 8
==============================================================================
Service Destination Point (Sdp Id : 8)
==============================================================================
SdpId Adm MTU Opr MTU IP address Adm Opr Deliver Signal
------------------------------------------------------------------------------
8 4462 4462 10.10.10.104 Up Dn NotReady MPLS TLDP
==============================================================================
Service Destination Point (Sdp Id : 8) Details
-------------------------------------------------------------------------------
Sdp Id 8 -(10.10.10.104)
-------------------------------------------------------------------------------
Description : MPLS-10.10.10.104
SDP Id : 8
Admin Path MTU : 0 Oper Path MTU : 0
Far End : 10.10.10.104 Delivery : MPLS
Admin State : Up Oper State : Down
Flags : SignalingSessDown TransportTunnDown
Signaling : TLDP VLAN VC Etype : 0x8100
Last Status Change : 02/01/2007 09:11:39 Adv. MTU Over. : No
Last Mgmt Change : 02/01/2007 09:11:46
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Hello Timeout : 5 Unmatched Replies : 0
Max Drop Count : 3 Hold Down Time : 10
Tx Hello Msgs : 0 Rx Hello Msgs : 0
Associated LSP LIST :
Lsp Name : to-104
Admin State : Up Oper State : Down
Time Since Last Tran*: 01d07h36m
===============================================================================
* indicates that the corresponding row element may have been truncated.
*A:ALA-12#
*A:dut-a>show>service# sdp
============================================================================
Services: Service Destination Points
============================================================================
SdpId AdmMTU OprMTU IP address Adm Opr Del LSP Sig
----------------------------------------------------------------------------
17406 0 9166 10.2.2.2 Up Up MPLS L/B TLDP
17407 0 9166 10.3.3.3 Up Up MPLS L/B TLDP
----------------------------------------------------------------------------
Number of SDPs : 2
----------------------------------------------------------------------------
Legend: R = RSVP, L = LDP, B = BGP, M = MPLS-TP, n/a = Not Applicable
I = SR-ISIS, O = SR-OSPF
============================================================================
*A:dut-a>show>service#
Label |
Description |
---|---|
SDP Id |
The SDP identifier. |
Adm MTU |
Specifies the largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Opr MTU |
Specifies the actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
IP address |
Specifies the IP address of the remote end of the MPLS tunnel defined by this SDP. |
Adm Admin State |
Specifies the state of the SDP. |
Opr Oper State |
Specifies the operating state of the SDP. |
Flags |
Specifies all the conditions that affect the operating status of this SDP. |
Signal Signaling |
Specifies the signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on the SDP. |
Last Status Change |
Specifies the time of the most recent operating status change to this SDP |
Last Mgmt Change |
Specifies the time of the most recent management-initiated change to this SDP. |
Number of SDPs |
Specifies the total number of SDPs displayed according to the criteria specified. |
Hello Time |
Specifies how often the SDP echo request messages are transmitted on this SDP. |
Deliver Delivered |
Specifies the type of delivery used by the SDP: MPLS. |
Number of SDPs |
Specifies the total number of SDPs displayed according to the criteria specified. |
Hello Time |
Specifies how often the SDP echo request messages are transmitted on this SDP. |
Hello Msg Len |
Specifies the length of the SDP echo request messages transmitted on this SDP. |
Hello Timeout |
Specifies the number of seconds to wait for an SDP echo response message before declaring a timeout. |
Unmatched Replies |
Specifies the number of SDP unmatched message replies. |
Max Drop Count |
Specifies the maximum number of consecutive SDP echo request messages that can be unacknowledged before the keepalive protocol reports a fault. |
Hold Down Time |
Specifies the maximum number of consecutive SDP echo request messages that can be unacknowledged before the keepalive protocol reports a fault. |
TX Hello Msgs |
Specifies the number of SDP echo request messages transmitted since the keepalive was administratively enabled or the counter was cleared. |
Rx Hello Msgs |
Specifies the number of SDP echo request messages received since the keepalive was administratively enabled or the counter was cleared. |
Associated LSP List |
When the SDP type is MPLS, a list of LSPs used to reach the far-end router displays. All the LSPs in the list must terminate at the IP address specified in the far end field. |
sdp-using
Syntax
sdp-using [sdp-id[:vc-id] | far-end ip-address]
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays services using SDP or far-end address options.
Parameters
- sdp-id
Displays only services bound to the specified SDP ID.
- vc-id
Specifies the virtual circuit identifier.
- far-end ip-address
Displays only services matching with the specified far-end IP address.
Output
The following output is an example of SDP information, and Output fields: SDP-using describes the output fields.
Sample output*A:ALA-1# show service sdp-using 300
===============================================================================
Service Destination Point (Sdp Id : 300)
===============================================================================
SvcId SdpId Type Far End Opr State I.Label E.Label
-------------------------------------------------------------------------------
1 300:1 Mesh 10.0.0.13 Up 131071 131071
2 300:2 Spok 10.0.0.13 Up 131070 131070
100 300:100 Mesh 10.0.0.13 Up 131069 131069
101 300:101 Mesh 10.0.0.13 Up 131068 131068
102 300:102 Mesh 10.0.0.13 Up 131067 131067
-------------------------------------------------------------------------------
Number of SDPs : 5
-------------------------------------------------------------------------------
*A:ALA-1#
A:ALA-48# show service sdp-using
===============================================================================
SDP Using
===============================================================================
SvcId SdpId Type Far End Opr State I.Label E.Label
-------------------------------------------------------------------------------
3 2:3 Spok 10.20.1.2 Up n/a n/a
103 3:103 Spok 10.20.1.3 Up 131067 131068
103 4:103 Spok 10.20.1.2 Up 131065 131069
105 3:105 Spok 10.20.1.3 Up 131066 131067
-------------------------------------------------------------------------------
Number of SDPs : 4
-------------------------------------------------------------------------------
A:ALA-48
*A:dut-a>show>service# sdp-using
===============================================================================
SDP Using
===============================================================================
SvcId SdpId Type Far End Opr I.Label E.Label
State
-------------------------------------------------------------------------------
5 17406:4294967294 BgpAd 2.2.2.2 Up 131067 131066
5 17407:4294967295 BgpAd 3.3.3.3 Up 131066 131066
-------------------------------------------------------------------------------
Number of SDPs : 2
-------------------------------------------------------------------------------
===============================================================================
*A:dut-a>show>service#
Label |
Description |
---|---|
Svc ID |
The service identifier. |
Sdp ID |
The SDP identifier. |
Type |
Type of SDP: spoke or mesh. |
Far End |
The far end address of the SDP. |
Oper State |
The operational state of the service. |
Ingress Label |
The label used by the far-end device to send packets to this device in this service by this SDP. |
Egress Label |
The label used by this device to send packets to the far-end device in this service by this SDP. |
service-using
Syntax
service-using [epipe] [ies] [vpls] [vprn][sdp sdp-id] [customer customer-id]
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the services matching certain usage properties.
If no optional parameters are specified, all services defined on the system are displayed.
Parameters
- epipe
Displays matching Epipe services.
- ies
Displays matching IES instances.
- vpls
Displays matching VPLS instances.
- vprn
Displays matching VPRN services.
- sdp sdp-id
Displays only services bound to the specified SDP ID.
- customer customer-id
Displays services only associated with the specified customer ID.
Output
The following output is an example of service information, and Output fields: service-using describes the output fields.
Sample output*A:ALA-12# show service service-using customer 10
==============================================================================
Services
==============================================================================
ServiceId Type Adm Opr CustomerId Last Mgmt Change
------------------------------------------------------------------------------
1 VPLS Up Up 10 09/05/2006 13:24:15
100 IES Up Up 10 09/05/2006 13:24:15
300 Epipe Up Up 10 09/05/2006 13:24:15
900 VPRN Up Up 2 11/04/2006 04:55:12
------------------------------------------------------------------------------
Matching Services : 4
==============================================================================
*A:ALA-12#
*A:ALA-12# show service service-using epipe
===============================================================================
Services [epipe]
===============================================================================
ServiceId Type Adm Opr CustomerId Last Mgmt Change
-------------------------------------------------------------------------------
6 Epipe Up Up 6 06/22/2006 23:05:58
7 Epipe Up Up 6 06/22/2006 23:05:58
8 Epipe Up Up 3 06/22/2006 23:05:58
103 Epipe Up Up 6 06/22/2006 23:05:58
-------------------------------------------------------------------------------
Matching Services : 4
===============================================================================
*A:ALA-12#
A:de14# show service service-using
===============================================================================
Services
===============================================================================
ServiceId Type Adm Opr CustomerId Last Mgmt Change
-------------------------------------------------------------------------------
1 uVPLS Up Up 1 10/26/2006 15:44:57
2 Epipe Up Down 1 10/26/2006 15:44:57
10 mVPLS Down Down 1 10/26/2006 15:44:57
11 mVPLS Down Down 1 10/26/2006 15:44:57
100 mVPLS Up Up 1 10/26/2006 15:44:57
101 mVPLS Up Up 1 10/26/2006 15:44:57
102 mVPLS Up Up 1 10/26/2006 15:44:57
999 uVPLS Down Down 1 10/26/2006 16:14:33
-------------------------------------------------------------------------------
Matching Services : 8
-------------------------------------------------------------------------------
A:de14#
Label |
Description |
---|---|
Service Id |
The service identifier. |
Type |
Specifies the service type configured for the service ID. |
Adm |
The desired state of the service. |
Opr |
The operating state of the service. |
CustomerID |
The ID of the customer who owns this service. |
Last Mgmt Change |
The date and time of the most recent management-initiated change to this service. |
id
Syntax
id service-id {all | arp | base | bgp-ad | fdb | labels | mfib | sap | sdp | split-horizon-group | stp}
Context
show>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays information for a particular service ID.
Parameters
- service-id
Specifies the unique service identification number that identifies the service in the service domain.
- all
Displays detailed information about the service.
- arp
Displays ARP entries for the service.
- base
Displays basic service information.
- bgp-ad
Displays BGP AD related information for the service.
- fdb
Displays FDB entries.
- interface
Displays service interfaces.
- labels
Displays labels being used by this service.
- sap
Displays SAPs associated to the service.
- sdp
Displays SDPs associated with the service.
- split-horizon-group
Displays split horizon group information.
- stp
Displays STP information.
all
Syntax
all
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays detailed information for all aspects of the service.
Output
The following output is an example of detailed service information, and Output fields: service ID all describes the output fields.
Sample output*A:duth# show service id 502 all
===============================================================================
Service Detailed Information
===============================================================================
Service Id : 502 Vpn Id : 0
Service Type : VPRN
Name : (Not Specified)
Description : (Not Specified)
Customer Id : 1 Creation Origin : manual
Last Status Change: 12/23/2014 04:57:18
Last Mgmt Change : 12/23/2014 04:57:18
Admin State : Up Oper State : Up
Route Dist. : 502:502 VPRN Type : regular
AS Number : 100 Router Id : 8.8.8.8
ECMP : Enabled ECMP Max Routes : 1
Auto Bind Tunnel
Resolution : filter
Filter Protocol : rsvp
Max IPv6 Routes : No Limit
Ignore NH Metric : Disabled
Vrf Target : target:502:502
Vrf Import : None
Vrf Export : None
MVPN Vrf Target : None
MVPN Vrf Import : None
MVPN Vrf Export : None
Label mode : vrf
BGP VPN Backup : Disabled
SAP Count : 0 SDP Bind Count : 5
Allow IP Intf Bind: Disabled
VSD Domain : <none>
-------------------------------------------------------------------------------
ETH-CFM service specifics
-------------------------------------------------------------------------------
Tunnel Faults : ignore
-------------------------------------------------------------------------------
VPRN service Network Specifics
-------------------------------------------------------------------------------
Ing Net QoS Policy : none
Ingress FP QGrp : (none) Ing FP QGrp Inst : (none)
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Service Destination Points(SDPs)
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Sdp Id 502:502 -(9.9.9.9)
-------------------------------------------------------------------------------
Description : (Not Specified)
SDP Id : 502:502 Type : Spoke
Spoke Descr : (Not Specified)
VC Type : n/a VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9186
Delivery : MPLS
Far End : 9.9.9.9
Tunnel Far End : n/a LSP Types : RSVP
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : n/a Egress Label : n/a
Ingr Mac Fltr-Id : n/a Egr Mac Fltr-Id : n/a
Ingr IP Fltr-Id : n/a Egr IP Fltr-Id : n/a
Ingr IPv6 Fltr-Id : n/a Egr IPv6 Fltr-Id : n/a
BGP IPv4 FlowSpec : Disabled
BGP IPv6 FlowSpec : Disabled
Admin ControlWord : Not Preferred Oper ControlWord : False
BFD Template : None
BFD-Enabled : no BFD-Encap : ipv4
Last Status Change : 12/23/2014 18:12:34 Signaling : n/a
Last Mgmt Change : 12/21/2014 19:39:56
Class Fwding State : Down
Flags : None
Local Pw Bits : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Application Profile: None
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : n/a I. Fwd. Octs. : n/a
E. Fwd. Pkts. : n/a E. Fwd. Octets : n/a
Extra-Tag-Drop-Pkts: n/a Extra-Tag-Drop-Oc*: n/a
-------------------------------------------------------------------------------
ETH-CFM SDP-Bind specifics
-------------------------------------------------------------------------------
Squelch Levels : None
-------------------------------------------------------------------------------
RSVP/Static LSPs
-------------------------------------------------------------------------------
Associated LSP List :
Lsp Name : i2
Admin State : Up Oper State : Up
Time Since Last Tr*: 04d06h44m
-------------------------------------------------------------------------------
Sdp Id 602:502 -(2.2.2.2)
-------------------------------------------------------------------------------
Description : (Not Specified)
SDP Id : 602:502 Type : Spoke
Spoke Descr : (Not Specified)
VC Type : n/a VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9186
Delivery : MPLS
Far End : 2.2.2.2
Tunnel Far End : n/a LSP Types : RSVP
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : n/a Egress Label : n/a
Ingr Mac Fltr-Id : n/a Egr Mac Fltr-Id : n/a
Ingr IP Fltr-Id : n/a Egr IP Fltr-Id : n/a
Ingr IPv6 Fltr-Id : n/a Egr IPv6 Fltr-Id : n/a
BGP IPv4 FlowSpec : Disabled
BGP IPv6 FlowSpec : Disabled
Admin ControlWord : Not Preferred Oper ControlWord : False
BFD Template : None
BFD-Enabled : no BFD-Encap : ipv4
Last Status Change : 12/23/2014 18:12:24 Signaling : n/a
Last Mgmt Change : 12/21/2014 19:39:56
Class Fwding State : Down
Flags : None
Local Pw Bits : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Application Profile: None
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : n/a I. Fwd. Octs. : n/a
E. Fwd. Pkts. : n/a E. Fwd. Octets : n/a
Extra-Tag-Drop-Pkts: n/a Extra-Tag-Drop-Oc*: n/a
-------------------------------------------------------------------------------
ETH-CFM SDP-Bind specifics
-------------------------------------------------------------------------------
Squelch Levels : None
-------------------------------------------------------------------------------
RSVP/Static LSPs
-------------------------------------------------------------------------------
Associated LSP List :
Lsp Name : b2
Admin State : Up Oper State : Up
Time Since Last Tr*: 04d06h44m
-------------------------------------------------------------------------------
Sdp Id 702:502 -(7.7.7.7)
-------------------------------------------------------------------------------
Description : (Not Specified)
SDP Id : 702:502 Type : Spoke
Spoke Descr : (Not Specified)
VC Type : n/a VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9186
Delivery : MPLS
Far End : 7.7.7.7
Tunnel Far End : n/a LSP Types : RSVP
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : n/a Egress Label : n/a
Ingr Mac Fltr-Id : n/a Egr Mac Fltr-Id : n/a
Ingr IP Fltr-Id : n/a Egr IP Fltr-Id : n/a
Ingr IPv6 Fltr-Id : n/a Egr IPv6 Fltr-Id : n/a
BGP IPv4 FlowSpec : Disabled
BGP IPv6 FlowSpec : Disabled
Admin ControlWord : Not Preferred Oper ControlWord : False
BFD Template : None
BFD-Enabled : no BFD-Encap : ipv4
Last Status Change : 12/23/2014 18:12:27 Signaling : n/a
Last Mgmt Change : 12/21/2014 19:39:56
Class Fwding State : Down
Flags : None
Local Pw Bits : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Application Profile: None
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : n/a I. Fwd. Octs. : n/a
E. Fwd. Pkts. : n/a E. Fwd. Octets : n/a
Extra-Tag-Drop-Pkts: n/a Extra-Tag-Drop-Oc*: n/a
-------------------------------------------------------------------------------
ETH-CFM SDP-Bind specifics
-------------------------------------------------------------------------------
Squelch Levels : None
-------------------------------------------------------------------------------
RSVP/Static LSPs
-------------------------------------------------------------------------------
Associated LSP List :
Lsp Name : g2
Admin State : Up Oper State : Up
Time Since Last Tr*: 04d06h44m
-------------------------------------------------------------------------------
Sdp Id 802:502 -(99.99.99.99)
-------------------------------------------------------------------------------
Description : (Not Specified)
SDP Id : 802:502 Type : Spoke
Spoke Descr : (Not Specified)
VC Type : n/a VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9182
Delivery : MPLS
Far End : 99.99.99.99
Tunnel Far End : n/a LSP Types : BGP
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : n/a Egress Label : n/a
Ingr Mac Fltr-Id : n/a Egr Mac Fltr-Id : n/a
Ingr IP Fltr-Id : n/a Egr IP Fltr-Id : n/a
Ingr IPv6 Fltr-Id : n/a Egr IPv6 Fltr-Id : n/a
BGP IPv4 FlowSpec : Disabled
BGP IPv6 FlowSpec : Disabled
Admin ControlWord : Not Preferred Oper ControlWord : False
BFD Template : None
BFD-Enabled : no BFD-Encap : ipv4
Last Status Change : 12/23/2014 18:12:41 Signaling : n/a
Last Mgmt Change : 12/21/2014 19:39:56
Class Fwding State : Down
Flags : None
Local Pw Bits : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Application Profile: None
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : n/a I. Fwd. Octs. : n/a
E. Fwd. Pkts. : n/a E. Fwd. Octets : n/a
Extra-Tag-Drop-Pkts: n/a Extra-Tag-Drop-Oc*: n/a
-------------------------------------------------------------------------------
ETH-CFM SDP-Bind specifics
-------------------------------------------------------------------------------
Squelch Levels : None
-------------------------------------------------------------------------------
BGP Tunnel Information :
-------------------------------------------------------------------------------
BGP LSP Id : 262147
-------------------------------------------------------------------------------
RSVP/Static LSPs
-------------------------------------------------------------------------------
Associated LSP List :
No LSPs Associated
-------------------------------------------------------------------------------
Sdp Id 902:502 -(22.22.22.22)
-------------------------------------------------------------------------------
Description : (Not Specified)
SDP Id : 902:502 Type : Spoke
Spoke Descr : (Not Specified)
VC Type : n/a VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9182
Delivery : MPLS
Far End : 22.22.22.22
Tunnel Far End : n/a LSP Types : BGP
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : n/a Egress Label : n/a
Ingr Mac Fltr-Id : n/a Egr Mac Fltr-Id : n/a
Ingr IP Fltr-Id : n/a Egr IP Fltr-Id : n/a
Ingr IPv6 Fltr-Id : n/a Egr IPv6 Fltr-Id : n/a
BGP IPv4 FlowSpec : Disabled
BGP IPv6 FlowSpec : Disabled
Admin ControlWord : Not Preferred Oper ControlWord : False
BFD Template : None
BFD-Enabled : no BFD-Encap : ipv4
Last Status Change : 12/23/2014 19:25:37 Signaling : n/a
Last Mgmt Change : 12/21/2014 19:39:56
Class Fwding State : Down
Flags : None
Local Pw Bits : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Application Profile: None
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : n/a I. Fwd. Octs. : n/a
E. Fwd. Pkts. : n/a E. Fwd. Octets : n/a
Extra-Tag-Drop-Pkts: n/a Extra-Tag-Drop-Oc*: n/a
-------------------------------------------------------------------------------
ETH-CFM SDP-Bind specifics
-------------------------------------------------------------------------------
Squelch Levels : None
-------------------------------------------------------------------------------
BGP Tunnel Information :
-------------------------------------------------------------------------------
BGP LSP Id : 262387
-------------------------------------------------------------------------------
RSVP/Static LSPs
-------------------------------------------------------------------------------
Associated LSP List :
No LSPs Associated
-------------------------------------------------------------------------------
Number of SDPs : 5
-------------------------------------------------------------------------------
* indicates that the corresponding row element may have been truncated.
-------------------------------------------------------------------------------
Service Access Points
-------------------------------------------------------------------------------
No Sap Associations
-------------------------------------------------------------------------------
Service Interfaces
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Interface
-------------------------------------------------------------------------------
If Name : toixia1
Admin State : Up Oper (v4/v6) : Up/Down
Protocols : None
IP Addr/mask : 108.2.1.1/24 Address Type : Primary
IGP Inhibit : Disabled Broadcast Address : Host-ones
HoldUp-Time : 0 Track Srrp Inst : 0
Description : N/A
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
Description : (Not Specified)
If Index : 2 Virt. If Index : 2
Last Oper Chg : 12/23/2014 20:36:08 Global If Index : 48
Mon Oper Grp : None
Srrp En Rtng : Disabled Hold time : N/A
Port Id : rvpls
TOS Marking : Trusted If Type : VPRN
SNTP B.Cast : False
MAC Address : 00:00:0b:00:01:00 Mac Accounting : Disabled
Ingress stats : Disabled IPv6 DAD : Enabled
ARP Timeout : 14400s IPv6 Nbr ReachTime: 30s
ARP Retry Timer : 5000ms IPv6 stale time : 14400s
ARP Limit : Disabled IPv6 Nbr Limit : Disabled
ARP Threshold : Disabled IPv6 Nbr Threshold: Disabled
ARP Limit Log Only: Disabled IPv6 Nbr Log Only : Disabled
IP MTU : (default)
IP Oper MTU : 1500
LdpSyncTimer : None
LSR Load Balance : system
EGR Load Balance : both
Vas If Type : none
TEID Load Balance : Disabled
SPI Load Balance : Disabled
uRPF Chk : disabled
uRPF Ipv6 Chk : disabled
PTP HW Assist : Disabled
Mpls Rx Pkts : 0 Mpls Rx Bytes : 0
Mpls Tx Pkts : 0 Mpls Tx Bytes : 0
DHCP6 Relay Details
Description : (Not Specified)
Admin State : Down Lease Populate : 0
Oper State : Down Nbr Resolution : Disabled
If-Id Option : None Remote Id : Disabled
Src Addr : Not configured
Python plcy : (Not Specified)
DHCP6 Server Details
Admin State : Down Max. Lease States : 8000
ICMP Details
Redirects : Number - 100 Time (seconds) - 10
Unreachables : Number - 100 Time (seconds) - 10
TTL Expired : Number - 100 Time (seconds) - 10
Routed VPLS Details
VPLS Name : rvpls-502
Binding Status : Up
Reason : (Not Specified)
Egr Reclass Plcy : 0
Ing Filter : none
Ingr IPv6 Flt : none
EVPN Tunnel : false
-------------------------------------------------------------------------------
Admin Groups
-------------------------------------------------------------------------------
No Matching Entries
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Srlg Groups
-------------------------------------------------------------------------------
No Matching Entries
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Interface
-------------------------------------------------------------------------------
If Name : toB-Ixia
Admin State : Up Oper (v4/v6) : Up/Down
Protocols : OSPFv2
IP Addr/mask : 200.41.2.8/24 Address Type : Primary
IGP Inhibit : Disabled Broadcast Address : Host-ones
HoldUp-Time : 0 Track Srrp Inst : 0
Description : N/A
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
Description : (Not Specified)
If Index : 3 Virt. If Index : 3
Last Oper Chg : 12/23/2014 20:00:55 Global If Index : 49
Mon Oper Grp : None
Srrp En Rtng : Disabled Hold time : N/A
Port Id : rvpls
TOS Marking : Trusted If Type : VPRN
SNTP B.Cast : False
MAC Address : c4:08:4a:6f:99:65 Mac Accounting : Disabled
Ingress stats : Disabled IPv6 DAD : Enabled
ARP Timeout : 14400s IPv6 Nbr ReachTime: 30s
ARP Retry Timer : 5000ms IPv6 stale time : 14400s
ARP Limit : Disabled IPv6 Nbr Limit : Disabled
ARP Threshold : Disabled IPv6 Nbr Threshold: Disabled
ARP Limit Log Only: Disabled IPv6 Nbr Log Only : Disabled
IP MTU : (default)
IP Oper MTU : 1500
LdpSyncTimer : None
LSR Load Balance : system
EGR Load Balance : both
Vas If Type : none
TEID Load Balance : Disabled
SPI Load Balance : Disabled
uRPF Chk : disabled
uRPF Ipv6 Chk : disabled
PTP HW Assist : Disabled
Mpls Rx Pkts : 0 Mpls Rx Bytes : 0
Mpls Tx Pkts : 0 Mpls Tx Bytes : 0
DHCP6 Relay Details
Description : (Not Specified)
Admin State : Down Lease Populate : 0
Oper State : Down Nbr Resolution : Disabled
If-Id Option : None Remote Id : Disabled
Src Addr : Not configured
Python plcy : (Not Specified)
DHCP6 Server Details
Admin State : Down Max. Lease States : 8000
ICMP Details
Redirects : Number - 100 Time (seconds) - 10
Unreachables : Number - 100 Time (seconds) - 10
TTL Expired : Number - 100 Time (seconds) - 10
Routed VPLS Details
VPLS Name : rvpls-622
Binding Status : Up
Reason : (Not Specified)
Egr Reclass Plcy : 0
Ing Filter : none
Ingr IPv6 Flt : none
EVPN Tunnel : false
-------------------------------------------------------------------------------
Admin Groups
-------------------------------------------------------------------------------
No Matching Entries
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Srlg Groups
-------------------------------------------------------------------------------
No Matching Entries
-------------------------------------------------------------------------------
===============================================================================
*A:duth#
Label |
Description |
---|---|
Service Detailed Information |
|
Service Id |
The service identifier. |
VPN Id |
The number that identifies the VPN. |
Customer Id |
The customer identifier. |
Last Status Change |
The date and time of the most recent change in the administrative or operating status of the service. |
Last Mgmt Change |
The date and time of the most recent management-initiated change to this customer. |
Admin State |
The current administrative state. |
Oper State |
The current operational state. |
Route Dist. |
Displays the route distribution number. |
AS Number |
Displays the autonomous system number. |
Router Id |
Displays the router ID for this service. |
Auto Bind |
Specifies the automatic binding type for the SDP assigned to this service. |
Vrf Target |
Specifies the VRF target applied to this service. |
Vrf Import |
Specifies the VRF import policy applied to this service. |
Vrf Export |
Specifies the VRF export policy applied to this service. |
Description |
Generic information about the service. |
SAP Count |
The number of SAPs specified for this service. |
SDP Bind Count |
The number of SDPs bound to this service. |
Split Horizon Group |
Name of the split horizon group for this service. |
Description |
Description of the split horizon group. |
Last Changed |
The date and time of the most recent management-initiated change to this split horizon group. |
Service Destination Points (SDPs) |
|
SDP Id |
The SDP identifier. |
Type |
Indicates whether this Service SDP binding is a spoke or a mesh. |
Admin Path MTU |
The desired largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Oper Path MTU |
The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Delivery |
Specifies the type of delivery used by the SDP (always MPLS) |
Admin State |
The administrative state of this SDP. |
Oper State |
The operational state of this SDP. |
Ingress Label |
The label used by the far-end device to send packets to this device in this service by this SDP. |
Egress Label |
The label used by this device to send packets to the far-end device in this service by this SDP. |
Ingress Filter |
The ID of the ingress filter policy. |
Egress Filter |
The ID of the egress filter policy. |
Far End |
Specifies the IP address of the remote end of the MPLS tunnel defined by this SDP. |
Last Changed |
The date and time of the most recent change to this customer. |
Signaling |
Specifies the signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on this SDP. |
Admin State |
Specifies the operating status of the keepalive protocol. |
Oper State |
The current status of the keepalive protocol. |
Hello Time |
Specifies how often the SDP echo request messages are transmitted on this SDP. |
Hello Msg Len |
Specifies the length of the SDP echo request messages transmitted on this SDP. |
Max Drop Count |
Specifies the maximum number of consecutive SDP echo request messages that can be unacknowledged before the keepalive protocol reports a fault. |
Hold Down Time |
Specifies the amount of time to wait before the keepalive operating status is eligible to enter the alive state. |
SDP Delivery Mechanism |
When the SDP type is MPLS, a list of LSPs used to reach the far-end router displays. All the LSPs in the list must terminate at the IP address specified in the far end field. |
Number of SDPs |
The total number SDPs applied to this service ID. |
Service Access Points |
|
Service Id |
The service identifier. |
Port Id |
The ID of the access port where this SAP is defined. |
Description |
Generic information about the SAP. |
Admin State |
The desired state of the SAP. |
Oper State |
The operating state of the SAP. |
Last Changed |
The date and time of the last change. |
Admin MTU |
The desired largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Oper MTU |
The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Ingress qos-policy |
The SAP ingress QoS policy ID. |
Acct. Pol |
Indicates the accounting policy applied to the SAP. |
Collect Stats |
Specifies whether accounting statistics are collected on the SAP. |
Spoke-SDPs |
|
Managed by Service |
Specifies the service-id of the management VPLS managing this spoke-SDP. |
Managed by Spoke |
Specifies the sap-id inside the management VPLS managing this spoke-SDP. |
Prune state |
Specifies the STP state inherited from the management VPLS. |
Peer Pw Bits |
Indicates the bits set by the LDP peer when there is a fault on its side of the pseudowire. LAC failures occur on the SAP that has been configured on the pipe service, PSN bits are set by SDP-binding failures on the pipe service. The pwNotForwarding bit is set when none of the preceding failures apply, such as an MTU mismatch failure. This value is applicable only if the peer is using the pseudowire status signaling method to indicate faults. pwNotForwarding — Pseudowire not forwarding lacIngressFault Local — Attachment circuit RX fault lacEgresssFault Local — Attachment circuit TX fault psnIngressFault Local — PSN-facing PW RX fault psnEgressFault Local — PSN-facing PW TX fault pwFwdingStandby — Pseudowire in standby mode |
Max IPv4 Routes |
Maximum IPv4 routes configured for use with the service. |
Last Changed |
The date and time of the most recent management-initiated change. |
Dot1Q Ethertype |
The dot1q Ethertype in use by the SAP. |
Ingr IP Fltr-Id |
The policy ID of the IP filter applied at ingress. |
Ingr Mac Fltr-Id |
The policy ID of the MAC filter applied at ingress. |
Egr IP Fltr-Id |
The policy ID of the IP filter applied at egress. |
Egr Mac Fltr-Id |
The policy ID of the MAC filter applied at egress. |
tod-suite |
The TOD suite applied for use by this SAP. |
rate |
Specifies the SAP aggregate rate configured for the aggregate policer/meter used by this SAP. |
burst |
Specifies the burst to be used with SAP aggregate policer/meter used by this SAP. |
Classifiers Allocated |
Number of SAP ingress QoS resources allocated for use by this SAP. |
Classifiers Used |
Number of SAP ingress QoS resources in use by this SAP. |
Meters Allocated |
Number of SAP ingress meter resources allocated for use by this SAP. This is set to half the number of classifiers allocated to this SAP. |
Meters Used |
Number of SAP ingress meters in use. |
Ingress Stats |
The number of received packets/octets for this SAP. |
Egress Stats |
The number of packets/octets forwarded out of this SAP. |
Ingress Drop Stats |
Number of packets/octets dropped by the system. |
Extra-Tag Drop Stats |
Number of packets received with the count of VLAN tags exceeding the count of VLAN tags implied by the SAP encapsulation. |
Ingress Meter 1 |
The index of the ingress QoS meter of this SAP. |
For. InProf |
Number of in-profile packets/octets received on this SAP. |
For. OutProf |
Number of out-of-profile packets/octets received on this SAP. |
If Name |
IP interface name assigned by user. |
Protocols |
Protocols enabled for use on this interface. |
Oper (v4/v6) |
Operational status of this interface for IPv4 and IPv6. |
IP Addr/mask |
IPv4 address and mask assigned to this interface. |
Address Type |
Indicates whether the address is a primary or secondary address. |
Broadcast Address |
Type of broadcast address used. It can be host-ones or all-ones. |
If Index |
The interface Index assigned by the system. It is used with SNMP IfTable. |
Virt. If Index |
The interface index assigned by the system. It is used with SNMP. |
Last Oper Chg |
Timestamp associated with the last operational change. |
Global If Index |
This is the system wide Interface index allotted by the system. |
If Type |
Network — The IP interface is a network/core IP interface. Service — The IP interface is a service IP interface. |
SNTP B.Cast |
Specifies whether SNTP broadcast client mode is enabled or disabled. |
Arp Timeout |
Specifies the timeout for an ARP entry learned on the interface. |
IP Oper MTU |
The actual largest service frame size (in octets) that can be transmitted through the port to the far-end router, without requiring the packet to be fragmented. |
LdpSyncTimer |
Specifies the value used for IGP-LDP synchronization. |
Redirects |
Specifies the rate for ICMP redirect messages. |
Unreachables |
Specifies the rate for ICMP unreachable messages. |
TTL Expired |
Specifies the rate for ICMP TTL messages. |
MAC Address |
Specifies the 48-bit IEEE 802.3 MAC address. |
authentication
Syntax
authentication
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
Commands in this context display subscriber authentication information.
statistics
Syntax
statistics [policy name] [sap sap-id]
Context
show>service>id>authentication
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays session authentication statistics for this service.
Parameters
- policy name
Specifies the subscriber authentication policy statistics to display.
- sap sap-id
Specifies the SAP ID statistics to display. See Common CLI command descriptions for command syntax.
Output
The following output is an example of session authentication statistics information.
Sample output*A:ALA-1# show service id 11 authentication statistics
===============================================================
Authentication statistics
===============================================================
Interface / SAP Authentication Authentication
Successful Failed
---------------------------------------------------------------
abc-11-90.1.0.254 1582 3
---------------------------------------------------------------
Number of entries: 1
===============================================================
*A:ALA-1#
arp
Syntax
arp [ip-address] | [mac ieee-address] | [sap sap-id] | [interface ip-int-name] [sdp sdp-id:vc-id] [summary]
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the ARP table for the IES instance.
Parameters
- mac ieee-address
Displays only ARP entries in the ARP table with the specified 48-bit MAC address. The MAC address can be expressed in the form aa:bb:cc:dd:ee:ff or aa-bb-cc-dd-ee-ff where aa, bb, cc, dd, ee and ff are hexadecimal numbers.
- sap sap-id
Displays SAP information for the specified SAP ID. See Common CLI command descriptions for command syntax.
- port id
Specifies matching service ARP entries associated with the specified IP interface.
- ip-address
Specifies the IP address of the interface for which to display matching ARP entries.
- ip-int-name
Specifies the IP interface name for which to display matching ARPs.
Output
The following output is an example of service ARP information, and Output fields: ARP describes the output fields.
Sample output*A:ALA-12# show service id 2 arp
==============================================================================
ARP Table
==============================================================================
IP Address MAC Address Type Age Interface Port
------------------------------------------------------------------------------
10.11.1.1 00:03:fa:00:08:22 Other 00:00:00 ies-100-190.11.1 1/1/11:0
==============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Service ID |
The service ID number. |
MAC |
The specified MAC address |
Source-Identifier |
The location the MAC is defined. |
Type |
Static — FDB entries created by management Learned — Dynamic entries created by the learning process OAM — Entries created by the OAM process |
Age |
The time elapsed since the service was enabled. |
Interface |
The interface applied to the service. |
Port |
The port where the SAP is applied. |
base
Syntax
base
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays basic information about the service ID, including service type, description, SAPs, and SDPs.
Output
The following output is an example of basic service information, and Output fields: base describes the output fields.
Sample output*A:ALA-12# show service id 1 base
===============================================================================
Service Basic Information
===============================================================================
Service Id : 1 Vpn Id : 0
Service Type : VPRN
Customer Id : 1
Last Status Change: 02/01/2007 09:11:39
Last Mgmt Change : 02/01/2007 09:11:46
Admin State : Up Oper State : Down
Route Dist. : 10001:1
AS Number : 10000 Router Id : 10.10.10.103
ECMP : Enabled ECMP Max Routes : 8
Max Routes : No Limit Auto Bind : LDP
Vrf Target : target:10001:1
Vrf Import : vrfImpPolCust1
Vrf Export : vrfExpPolCust1
SAP Count : 1 SDP Bind Count : 18
------------------------------------------------------------------------------
Service Access & Destination Points
------------------------------------------------------------------------------
Identifier Type AdmMTU OprMTU Adm Opr
------------------------------------------------------------------------------
sap:1/1/7:0 q-tag 1518 1518 Up Up
sdp:10:1 M(10.20.1.3) TLDP 4462 4462 Up TLDP Down
sdp:20:1 M(10.20.1.4) TLDP 4462 4462 Up TLDP Down
sdp:30:1 M(10.20.1.5) TLDP 4462 4462 Up TLDP Down
sdp:40:1 M(10.20.1.20) TLDP 1534 4462 Up Up
sdp:200:1 M(10.20.1.30) TLDP 1514 4462 Up Up
sdp:300:1 M(10.20.1.31) TLDP 4462 4462 Up TLDP Down
sdp:500:1 M(10.20.1.50) TLDP 4462 4462 Up TLDP Down
==============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Service Id |
The service identifier. |
Vpn Id |
Specifies the VPN ID assigned to the service. |
Service Type |
Specifies the type of service. |
Description |
Generic information about the service. |
Customer Id |
The customer identifier. |
Last Mgmt Change |
The date and time of the most recent management-initiated change to this customer. |
Adm |
The desired state of the service. |
Oper |
The operating state of the service. |
Mtu |
The largest frame size (in octets) that the service can handle. |
Def. Mesh VC Id |
This object is only valid in services that accept mesh SDP bindings. It is used to validate the VC ID portion of each mesh SDP binding defined in the service. |
SAP Count |
The number of SAPs defined on the service. |
SDP Bind Count |
The number of SDPs bound to the service. |
Identifier |
Specifies the service access (SAP) and destination (SDP) points. |
Type |
Specifies the signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on the SDP. |
AdmMTU |
Specifies the desired largest service frame size (in octets) that can be transmitted through this SDP to the far-end ESR, without requiring the packet to be fragmented. |
OprMTU |
Specifies the actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end ESR, without requiring the packet to be fragmented. |
Opr |
The operating state of the SDP. |
statistics
Syntax
statistics [sap sap-id]
statistics [sdp sdp-id:vc-id]
statistics [interface interface-name]
Context
show>service>id>dhcp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays DHCP statistics information.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
- sdp-id
Specifies the SDP identifier.
- vc-id
Specifies the virtual circuit ID on the SDP ID for which to display information.
- interface interface-name
Displays information for the specified IP interface.
Output
The following is an example of DHCP statistics information, and Output fields: DHCP statistics describes the output fields.
Sample outputA:sim1# show service id 11 dhcp statistics
================================================================
DHCP Global Statistics, service 11
================================================================
Rx Packets : 32
Tx Packets : 12
Rx Malformed Packets : 0
Rx Untrusted Packets : 0
Client Packets Discarded : 0
Client Packets Relayed : 11
Client Packets Snooped : 21
Server Packets Discarded : 0
Server Packets Relayed : 0
Server Packets Snooped : 0
================================================================
A:sim1#
Label |
Description |
---|---|
Received Packets |
The number of packets received from the DHCP clients. |
Transmitted Packets |
The number of packets transmitted to the DHCP clients. |
Received Malformed Packets |
The number of corrupted or invalid packets received from the DHCP clients. |
Received Untrusted Packets |
The number of untrusted packets received from the DHCP clients. In this case, a frame is dropped due to the client sending a DHCP packet with Option 82 filled in before ‟trust” is set under the DHCP interface command. |
Client Packets Discarded |
The number of packets received from the DHCP clients that were discarded. |
Client Packets Relayed |
The number of packets received from the DHCP clients that were forwarded. |
Client Packets Snooped |
The number of packets received from the DHCP clients that were snooped. |
Server Packets Discarded |
The number of packets received from the DHCP server that were discarded. |
Server Packets Relayed |
The number of packets received from the DHCP server that were forwarded. |
Server Packets Snooped |
The number of packets received from the DHCP server that were snooped. |
interface
Syntax
interface [ip-address | ip-int-name] [detail]
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays information for the IP interfaces associated with the service.
If no optional parameters are specified, a summary of all IP interfaces associated to the service are displayed.
Parameters
- ip-address
Specifies the IP address of the interface for which to display information.
- ip-int-name
Specifies the IP interface name for which to display information.
- detail
Displays detailed IP interface information.
Output
The following output is an example of IP interface information, and Output fields: interface describes the output fields.
Sample output*A:ALA12# show service id 321 interface
===============================================================================
Interface Table
===============================================================================
Interface-Name Type IP-Address Adm Opr Type
-------------------------------------------------------------------------------
test Pri 10.11.1.1/24 Up Up IES
-------------------------------------------------------------------------------
Interfaces : 1
===============================================================================
*A:ALA-12#
A:ALA-49# show service id 88 interface detail
===============================================================================
Interface Table
===============================================================================
Interface
-------------------------------------------------------------------------------
If Name : Sector A
Admin State : Up Oper State : Down
Protocols : None
IP Addr/mask : Not Assigned
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
Description :
If Index : 26 Virt. If Index : 26
SAP Id : 71/1/1.2.2
TOS Marking : Untrusted If Type : IES
SNTP B.Cast : False IES ID : 88
MAC Address : Not configured. Arp Timeout : 14400
IP MTU : 1500 ICMP Mask Reply : True
Arp Populate : Disabled
Cflowd : None
Proxy ARP Details
Proxy ARP : Enabled Local Proxy ARP : Disabled
Policies : ProxyARP
DHCP Details
Admin State : Up Lease Populate : 0
Action : Keep Trusted : Disabled
ICMP Details
Redirects : Number - 100 Time (seconds) - 10
Unreachables : Number - 100 Time (seconds) - 10
TTL Expired : Number - 100 Time (seconds) - 10
-------------------------------------------------------------------------------
Interface
-------------------------------------------------------------------------------
If Name : test
Admin State : Up Oper State : Down
Protocols : None
IP Addr/mask : Not Assigned
-------------------------------------------------------------------------------
Details
-------------------------------------------------------------------------------
Description :
If Index : 27 Virt. If Index : 27
SAP Id : 101/1/2:0
TOS Marking : Untrusted If Type : IES
SNTP B.Cast : False IES ID : 88
MAC Address : Not configured. Arp Timeout : 14400
Arp Populate : Disabled
Proxy ARP Details
Proxy ARP : Disabled Local Proxy ARP : Disabled
ICMP Details
Redirects : Number - 100 Time (seconds) - 10
Unreachables : Number - 100 Time (seconds) - 10
TTL Expired : Number - 100 Time (seconds) - 10
-------------------------------------------------------------------------------
Interfaces : 2
===============================================================================
A:ALA-49#
Label |
Description |
---|---|
Interface-Name |
The name used to refer to the interface. |
Type |
Specifies the interface type. |
IP-Address |
Specifies the IP address/IP subnet/broadcast address of the interface. |
Adm |
The desired state of the interface. |
Opr |
The operating state of the interface. |
Interface |
|
If Name |
The name used to refer to the interface. |
Admin State |
The desired state of the interface. |
Oper State |
The operating state of the interface. |
IP Addr/mask |
Specifies the IP address/IP subnet/broadcast address of the interface. |
Details |
|
If Index |
The index corresponding to this interface. The primary index is 1. For example, all interfaces are defined in the Base virtual router context. |
If Type |
Specifies the interface type. |
Port Id |
Specifies the SAP port ID. |
SNTP B.Cast |
Specifies whether SNTP broadcast client mode is enabled or disabled. |
Arp Timeout |
Specifies the timeout for an ARP entry learned on the interface. |
MAC Address |
Specifies the 48-bit IEEE 802.3 MAC address. |
ICMP Mask Reply |
Specifies whether ICMP mask reply is enabled or disabled. |
ICMP Details |
|
Redirects |
Specifies the rate for ICMP redirect messages. |
Unreachables |
Specifies the rate for ICMP unreachable messages. |
TTL Expired |
Specifies the rate for ICMP TTL messages. |
sap
Syntax
sap sap-id [detail]]
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays information for the SAPs associated with the service.
If no optional parameters are specified, a summary of all associated SAPs is displayed.
Parameters
- sap-id
Specifies the ID that displays SAPs for the service. See Common CLI command descriptions for command syntax.
- detail
Displays detailed information for the SAP.
Output
The following output is an example of SAP information, and Output fields: SAP describes the output fields.
Sample output*A:ALA-12# show service id 321 sap 1/1/4:0
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id : 321
SAP : 1/1/4:0 Encap : q-tag
Dot1Q Ethertype : 0x8100 QinQ Ethertype : 0x8100
Admin State : Up Oper State : Down
Flags : PortOperDown
SapIngressQoSMismatch
Last Status Change : 02/03/2007 12:58:37
Last Mgmt Change : 02/03/2007 12:59:10
Admin MTU : 1518 Oper MTU : 1518
Ingress qos-policy : 100 Egress qos-policy : 1
Ingress Filter-Id : n/a Egress Filter-Id : n/a
Multi Svc Site : None
Acct. Pol : None Collect Stats : Disabled
===============================================================================
*A:ALA-12#
*A:ALA-12# show service id 321 sap 1/1/4:0 detail
===============================================================================
Service Access Points(SAP)
===============================================================================
Service Id : 321
SAP : 1/1/4:0 Encap : q-tag
Dot1Q Ethertype : 0x8100 QinQ Ethertype : 0x8100
Admin State : Up Oper State : Down
Flags : PortOperDown
SapIngressQoSMismatch
Last Status Change : 02/03/2007 12:58:37
Last Mgmt Change : 02/03/2007 12:59:10
Admin MTU : 1518 Oper MTU : 1518
Ingress qos-policy : 100 Egress qos-policy : 1
Ingress Filter-Id : n/a Egress Filter-Id : n/a
Multi Svc Site : None
Acct. Pol : None Collect Stats : Disabled
-------------------------------------------------------------------------------
Sap Statistics
-------------------------------------------------------------------------------
Packets Octets
Forwarding Engine Stats
Dropped : 0 0
Off. HiPrio : 0 0
Off. LowPrio : 0 0
Off. Uncolor : 0 0
Queueing Stats(Ingress QoS Policy 100)
Dro. HiPrio : 0 0
Dro. LowPrio : 0 0
For. InProf : 0 0
For. OutProf : 0 0
Queueing Stats(Egress QoS Policy 1)
Dro. InProf : 0 0
Dro. OutProf : 0 0
For. InProf : 0 0
For. OutProf : 0 0
-------------------------------------------------------------------------------
Sap per Queue stats
-------------------------------------------------------------------------------
Packets Octets
Ingress Queue 1 (Unicast) (Priority)
Off. HiPrio : 0 0
Off. LoPrio : 0 0
Dro. HiPrio : 0 0
Dro. LoPrio : 0 0
For. InProf : 0 0
For. OutProf : 0 0
Ingress Queue 10 (Unicast) (Priority)
Off. HiPrio : 0 0
Off. LoPrio : 0 0
Dro. HiPrio : 0 0
Dro. LoPrio : 0 0
For. InProf : 0 0
For. OutProf : 0 0
,,,
=============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Service Id |
The service identifier. |
SAP |
The SAP and qtag. |
Encap |
The encapsulation type of the SAP. |
Ethertype |
Specifies an Ethernet type II Ethertype value. |
Admin State |
The administrative state of the SAP. |
Oper State |
The operating state of the SAP. |
Flags |
Specifies the conditions that affect the operating status of this SAP. Display output includes: ServiceAdminDown, SapAdminDown, InterfaceAdminDown, PortOperDown, PortMTUTooSmall, L2OperDown, SapIngressQoSMismatch, SapEgressQoSMismatch,RelearnLimitExceeded, RxProtSrcMac, ParentIfAdminDown, TodResourceUnavail, TodMssResourceUnavail, SapParamMismatch, ServiceMTUTooSmall, SapIngressNamedPoolMismatch, SapEgressNamedPoolMismatch, NoSapEpipeRingNode. |
Last Status Change |
Specifies the time of the most recent operating status change to this SAP |
Last Mgmt Change |
Specifies the time of the most recent management-initiated change to this SAP. |
Admin MTU |
The desired largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented. |
Oper MTU |
The actual largest service frame size (in octets) that can be transmitted through the SAP to the far-end router, without requiring the packet to be fragmented. |
Ingress qos-policy |
The ingress QoS policy ID assigned to the SAP. |
Egress qos-policy |
The egress QoS policy ID assigned to the SAP. |
Ingress Filter-Id |
The ingress filter policy ID assigned to the SAP. |
Egress Filter-Id |
The egress filter policy ID assigned to the SAP. |
Acct. Pol |
The accounting policy ID assigned to the SAP. |
Collect Stats |
Specifies whether collect stats is enabled. |
Dropped |
The number of packets and octets dropped because of SAP state, ingress MAC or IP filter, same segment discard, bad checksum, and so on. |
Off. HiPrio |
The number of high priority packets and octets, as determined by the SAP ingress QoS policy, offered by the Pchip to the Qchip. |
Off. LowPrio |
The number of low priority packets and octets, as determined by the SAP ingress QoS policy, offered by the Pchip to the Qchip. |
Off. Uncolor |
The number of uncolored packets and octets, as determined by the SAP ingress QoS policy, offered by the Pchip to the Qchip. |
Dro. HiPrio |
The number of high priority packets and octets, as determined by the SAP ingress QoS policy, dropped by the Qchip due to: MBS exceeded, buffer pool limit exceeded, and so on. |
Dro. LowPrio |
The number of low priority packets and octets, as determined by the SAP ingress QoS policy, dropped by the Qchip due to: MBS exceeded, buffer pool limit exceeded, and so on. |
For. InProf |
The number of in-profile packets and octets (rate below CIR) forwarded by the ingress Qchip. |
For. OutProf |
The number of out-of-profile packets and octets discarded by the egress Qchip due to MBS exceeded, buffer pool limit exceeded, and so on. |
Dro. InProf |
The number of in-profile packets and octets discarded by the egress Qchip due to MBS exceeded, buffer pool limit exceeded, and so on. |
Dro. OutProf |
The number of out-of-profile packets and octets discarded by the egress Qchip due to MBS exceeded, buffer pool limit exceeded, and so on. |
For. InProf |
The number of in-profile packets and octets (rate below CIR) forwarded by the egress Qchip. |
For. OutProf |
The number of out-of-profile packets and octets (rate above CIR) forwarded by the egress Qchip. |
Ingress TD Profile |
The profile ID applied to the ingress SAP. |
Egress TD Profile |
The profile ID applied to the egress SAP. |
Alarm Cell Handling |
The indication that OAM cells are being processed. |
AAL-5 Encap |
The AAL-5 encapsulation type. |
sdp
Syntax
sdp [sdp-id | far-end ip-addr] [detail]
Context
show>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays information for the SDPs associated with the service. If no optional parameters are specified, a summary of all associated SDPs is displayed.
Parameters
- sdp-id
Displays only information for the specified SDP ID.
- far-end ip-addr
Displays only SDPs matching the specified far-end IP address.
- detail
Displays detailed SDP information.
Output
The following output is an example of SDP information, and Output fields: SDP describes the output fields.
Sample outputA:Dut-A# show service id 1 sdp detail
===============================================================================
Services: Service Destination Points Details
===============================================================================
Sdp Id 1:1 -(10.20.1.2)
-------------------------------------------------------------------------------
Description : Default sdp description
SDP Id : 1:1 Type : Spoke
VC Type : Ether VC Tag : n/a
Admin Path MTU : 0 Oper Path MTU : 9186
Far End : 10.20.1.2 Delivery : MPLS
Admin State : Up Oper State : Up
Acct. Pol : None Collect Stats : Disabled
Ingress Label : 2048 Egress Label : 2048
Ing mac Fltr : n/a Egr mac Fltr : n/a
Ing ip Fltr : n/a Egr ip Fltr : n/a
Ing ipv6 Fltr : n/a Egr ipv6 Fltr : n/a
Admin ControlWord : Not Preferred Oper ControlWord : False
Last Status Change : 05/31/2007 00:45:43 Signaling : None
Last Mgmt Change : 05/31/2007 00:45:43
Class Fwding State : Up
Flags : None
Peer Pw Bits : None
Peer Fault Ip : None
Peer Vccv CV Bits : None
Peer Vccv CC Bits : None
Max Nbr of MAC Addr: No Limit Total MAC Addr : 0
Learned MAC Addr : 0 Static MAC Addr : 0
MAC Learning : Enabled Discard Unkwn Srce: Disabled
MAC Aging : Enabled
L2PT Termination : Disabled BPDU Translation : Disabled
MAC Pinning : Disabled
KeepAlive Information :
Admin State : Disabled Oper State : Disabled
Hello Time : 10 Hello Msg Len : 0
Max Drop Count : 3 Hold Down Time : 10
Statistics :
I. Fwd. Pkts. : 0 I. Dro. Pkts. : 0
I. Fwd. Octs. : 0 I. Dro. Octs. : 0
E. Fwd. Pkts. : 0 E. Fwd. Octets : 0
MCAC Policy Name :
MCAC Max Unconst BW: no limit MCAC Max Mand BW : no limit
MCAC In use Mand BW: 0 MCAC Avail Mand BW: unlimited
MCAC In use Opnl BW: 0 MCAC Avail Opnl BW: unlimited
Associated LSP LIST :
Lsp Name : A_B_1
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m35s
Lsp Name : A_B_2
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m35s
Lsp Name : A_B_3
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_4
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_5
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_6
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_7
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_8
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m35s
Lsp Name : A_B_9
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
Lsp Name : A_B_10
Admin State : Up Oper State : Up
Time Since Last Tr*: 00h26m34s
-------------------------------------------------------------------------------
Class-based forwarding :
-------------------------------------------------------------------------------
Class forwarding : enabled
Default LSP : A_B_10 Multicast LSP : A_B_9
===============================================================================
FC Mapping Table
===============================================================================
FC Name LSP Name
-------------------------------------------------------------------------------
af A_B_3
be A_B_1
ef A_B_6
h1 A_B_7
h2 A_B_5
l1 A_B_4
l2 A_B_2
nc A_B_8
===============================================================================
Stp Service Destination Point specifics
-------------------------------------------------------------------------------
Mac Move : Blockable
Stp Admin State : Up Stp Oper State : Down
Core Connectivity : Down
Port Role : N/A Port State : Forwarding
Port Number : 2049 Port Priority : 128
Port Path Cost : 10 Auto Edge : Enabled
Admin Edge : Disabled Oper Edge : N/A
Link Type : Pt-pt BPDU Encap : Dot1d
Root Guard : Disabled Active Protocol : N/A
Last BPDU from : N/A
Designated Bridge : N/A Designated Port Id: 0
Fwd Transitions : 0 Bad BPDUs rcvd : 0
Cfg BPDUs rcvd : 0 Cfg BPDUs tx : 0
TCN BPDUs rcvd : 0 TCN BPDUs tx : 0
RST BPDUs rcvd : 0 RST BPDUs tx : 0
-------------------------------------------------------------------------------
Number of SDPs : 1
-------------------------------------------------------------------------------
* indicates that the corresponding row element may have been truncated.
-------------------------------------------------------------------------------
A:Dut-A#
Label |
Description |
---|---|
Sdp Id |
The SDP identifier. |
Type |
Indicates whether the SDP is a spoke or a mesh. |
Split Horizon Group |
Name of the split horizon group that the SDP belongs to. |
VC Type |
Displays the VC type: ether or vlan. |
VC Tag |
Displays the explicit dot1Q value used when encapsulating to the SDP far end. |
I. Lbl |
The VC label used by the far-end device to send packets to this device in this service by the SDP. |
Admin Path MTU |
The operating path MTU of the SDP is equal to the admin path MTU (when one is set) or the dynamically computed tunnel MTU, when no admin path MTU is set (the default case.) |
Oper Path MTU |
The actual largest service frame size (in octets) that can be transmitted through this SDP to the far-end router, without requiring the packet to be fragmented. |
Far End |
Specifies the IP address of the remote end of the MPLS tunnel defined by this SDP. |
Delivery |
Specifies the type of delivery used by the SDP: MPLS. |
Admin State |
The administrative state of this SDP. |
Oper State |
The operational state of this SDP. |
Ingress Label |
The label used by the far-end device to send packets to this device in this service by this SDP. |
Egress Label |
The label used by this device to send packets to the far-end device in this service by the SDP. |
Last Changed |
The date and time of the most recent change to the SDP. |
Signaling |
Specifies the signaling protocol used to obtain the ingress and egress labels used in frames transmitted and received on this SDP. |
Admin State |
The administrative state of the keepalive process. |
Oper State |
The operational state of the keepalive process. |
Hello Time |
Specifies how often the SDP echo request messages are transmitted on this SDP. |
Max Drop Count |
Specifies the maximum number of consecutive SDP echo request messages that can be unacknowledged before the keepalive protocol reports a fault. |
Hello Msg Len |
Specifies the length of the SDP echo request messages transmitted on this SDP. |
Hold Down Time |
Specifies the amount of time to wait before the keepalive operating status is eligible to enter the alive state. |
I. Fwd. Pkts. |
Specifies the number of forwarded ingress packets. |
I. Dro. Pkts. |
Specifies the number of dropped ingress packets. |
E. Fwd. Pkts. |
Specifies the number of forwarded egress packets. |
Associated LSP List |
When the SDP type is MPLS, a list of LSPs used to reach the far-end router displays. All the LSPs in the list must terminate at the IP address specified in the far end field. |
aggregate
Syntax
aggregate [active]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays aggregated routes.
Parameters
- active
Keyword that filters out inactive aggregates.
Output
The following output is an example of aggregate route information, and Output fields: aggregate describes the output fields.
Sample output*A:ALA-12# show router 3 aggregate
==============================================================================
Aggregates (Service: 3)
==============================================================================
Prefix Summary AS Set Aggr AS Aggr IP-Address State
------------------------------------------------------------------------------
------------------------------------------------------------------------------
No. of Aggregates: 0
-----------------------------------------------------------
*A:ALA-12#
Label |
Description |
---|---|
Prefix |
Displays the destination address of the aggregate route, in dotted decimal notation. |
Summary |
Specifies whether the aggregate or more specific components are advertised. |
AS Set |
Displays an aggregate where the path advertised for the route consists of all elements contained in all paths that are being summarized. |
Aggr AS |
Displays the aggregator path attribute to the aggregate route. |
Aggr IP-Address |
The IP address of the aggregated route. |
State |
The operational state of the aggregated route. |
No. of Aggregates |
The total number of aggregated routes. |
arp
Syntax
arp [ip-address | ip-int-name | mac ieee-mac-addr]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the router ARP table sorted by IP address.
If no command line options are specified, all ARP entries are displayed.
Parameters
- ip-addr
Only displays ARP entries associated with the specified IP address.
- ip-int-name
Only displays ARP entries associated with the specified IP interface name.
- mac ieee-mac-addr
Only displays ARP entries associated with the specified MAC address.
Output
The following output is an example of router ARP table information, and Output fields: router ARP describes the output fields.
Sample output*A:ALA-12# show router 3 arp
===============================================================================
ARP Table (Service: 3)
===============================================================================
IP Address MAC Address Expiry Type Interface
-------------------------------------------------------------------------------
10.10.10.103 04:67:ff:00:00:01 00h00m00s Oth system
10.10.4.3 00:00:00:00:00:00 00h00m00s Oth ALA-1-2
10.10.5.3 00:00:00:00:00:00 00h00m00s Oth ALA-1-3
10.10.7.3 00:00:00:00:00:00 00h00m00s Oth ALA-1-5
10.10.0.16 00:00:00:00:00:00 00h00m00s Oth bozo
10.10.3.3 00:00:00:00:00:00 00h00m00s Oth gizmo
10.10.2.3 00:00:00:00:00:00 00h00m00s Oth hobo
10.10.1.17 00:00:00:00:00:00 00h00m00s Oth int-cflowd
10.0.0.92 00:00:00:00:00:00 04h00m00s Dyn to-104
10.0.0.103 04:67:01:01:00:01 00h00m00s Oth[I] to-104
10.0.0.104 04:68:01:01:00:01 03h59m49s Dyn[I] to-104
10.10.36.2 00:00:00:00:00:00 00h00m00s Oth tuesday
192.168.2.98 00:03:47:c8:b4:86 00h14m37s Dyn[I] management
192.168.2.103 00:03:47:dc:98:1d 00h00m00s Oth[I] management
-------------------------------------------------------------------------------
No. of ARP Entries: 14
===============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 arp 10.10.0.3
===============================================================================
ARP Table
===============================================================================
IP Address MAC Address Expiry Type Interface
-------------------------------------------------------------------------------
10.10.0.3 04:5d:ff:00:00:00 00:00:00 Oth system
===============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 arp to-ser1
===============================================================================
ARP Table
===============================================================================
IP Address MAC Address Expiry Type Interface
-------------------------------------------------------------------------------
10.10.13.1 04:5b:01:01:00:02 03:53:09 Dyn to-ser1
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
IP Address |
The IP address of the ARP entry. |
MAC Address |
The MAC address of the ARP entry. |
Expiry |
The age of the ARP entry. |
Type |
Dyn — The ARP entry is a dynamic ARP entry. Inv — The ARP entry is an inactive static ARP entry (invalid). Oth — The ARP entry is a local or system ARP entry. Sta — The ARP entry is an active static ARP entry. |
Interface |
The IP interface name associated with the ARP entry. |
No. of ARP Entries |
The number of ARP entries displayed in the list. |
damping
Syntax
damping [ip-prefix/mask | ip-address] [detail]
damping [damp-type] [detail]
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays BGP routes that have been dampened because of route flapping. This command can be entered with or without a route parameter.
When the keyword detail is included, more detailed information displays.
When only the command is entered (without any parameters included except detail), all dampened routes are listed.
When a parameter is specified, the matching route or routes are listed.
When a decayed, history, or suppressed keyword is specified, only those types of dampened routes are listed.
Parameters
- ip-prefix/mask
Displays damping information for the specified IP prefix and mask length.
- ip-address
Displays damping entries for the best match route for the specified IP address.
- damp-type
Displays damping type for the specified IP address.
- decayed
Displays damping entries that are decayed but are not suppressed.
- history
Displays damping entries that are withdrawn but have history.
- suppressed
Displays damping entries suppressed because of route damping.
- detail
Displays detailed information.
Output
The following output is an example of BGP damping, and Output fields: BGP damping describes the output fields.
Sample output*A:ALA-12# show router 3 bgp damping
==============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
==============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, - best
==============================================================================
BGP Damped Routes
==============================================================================
Flag Network From Reuse AS-Path
------------------------------------------------------------------------------
ud*i 10.149.7.0/24 10.0.28.1 00h00m00s 60203 65001 19855 3356
1239 22406
si 10.155.6.0/23 10.0.28.1 00h43m41s 60203 65001 19855 3356
2914 7459
si 10.155.8.0/22 10.0.28.1 00h38m31s 60203 65001 19855 3356
2914 7459
si 10.155.12.0/22 10.0.28.1 00h35m41s 60203 65001 19855 3356
2914 7459
si 10.155.22.0/23 10.0.28.1 00h35m41s 60203 65001 19855 3356
2914 7459
si 10.155.24.0/22 10.0.28.1 00h35m41s 60203 65001 19855 3356
2914 7459
si 10.155.28.0/22 10.0.28.1 00h34m31s 60203 65001 19855 3356
2914 7459
si 10.155.40.0/21 10.0.28.1 00h28m24s 60203 65001 19855 3356
7911 7459
si 10.155.48.0/20 10.0.28.1 00h28m24s 60203 65001 19855 3356
7911 7459
ud*i 10.8.140.0/24 10.0.28.1 00h00m00s 60203 65001 19855 3356
4637 17447
ud*i 10.8.141.0/24 10.0.28.1 00h00m00s 60203 65001 19855 3356
4637 17447
ud*i 10.9.0.0/18 10.0.28.1 00h00m00s 60203 65001 19855 3356
3561 9658 6163
. . .
ud*i 10.213.184.0/23 10.0.28.1 00h00m00s 60203 65001 19855 3356
6774 6774 9154
------------------------------------------------------------------------------
*A:ALA-12#
*A:ALA-12# show router 3 bgp damping detail
==============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
==============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * -
valid
Origin codes : i - IGP, e - EGP, ? - incomplete, - best
==============================================================================
BGP Damped Routes
==============================================================================
------------------------------------------------------------------------------
Network : 10.149.7.0/24
------------------------------------------------------------------------------
Network : 10.149.7.0/24 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h00m00s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h22m09s Last update : 02d00h58m
FOM Present : 738 FOM Last upd. : 2039
Number of Flaps : 2 Flags : ud*i
Path : 60203 65001 19855 3356 1239 22406
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.142.48.0/20
------------------------------------------------------------------------------
Network : 10.142.48.0/20 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h00m00s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h00m38s Last update : 02d01h20m
FOM Present : 2011 FOM Last upd. : 2023
Number of Flaps : 2 Flags : ud*i
Path : 60203 65001 19855 3356 3561 5551 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.200.128.0/19
------------------------------------------------------------------------------
Network : 10.200.128.0/19 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h00m00s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h00m38s Last update : 02d01h20m
FOM Present : 2011 FOM Last upd. : 2023
Number of Flaps : 2 Flags : ud*i
Path : 60203 65001 19855 1299 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.203.192.0/18
-------------------------------------------------------------------------------
Network : 10.203.192.0/18 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h00m00s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h00m07s Last update : 02d01h20m
FOM Present : 1018 FOM Last upd. : 1024
Number of Flaps : 1 Flags : ud*i
Path : 60203 65001 19855 1299 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
*A:ALA-12#
*A:ALA-12# show router 3 bgp damping 15.203.192.0/18 detail
==============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
==============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, - best
==============================================================================
BGP Damped Routes 10.203.192.0/18
==============================================================================
Network : 10.203.192.0/18
------------------------------------------------------------------------------
Network : 10.203.192.0/18 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h00m00s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h00m42s Last update : 02d01h20m
FOM Present : 2003 FOM Last upd. : 2025
Number of Flaps : 2 Flags : ud*i
Path : 60203 65001 19855 3356 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Paths : 1
==============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 bgp damping suppressed detail
==============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
==============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, - best
==============================================================================
BGP Damped Routes (Suppressed)
==============================================================================
Network : 10.142.48.0/20
------------------------------------------------------------------------------
Network : 10.142.48.0/20 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h29m22s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h01m28s Last update : 02d01h20m
FOM Present : 2936 FOM Last upd. : 3001
Number of Flaps : 3 Flags : si
Path : 60203 65001 19855 3356 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.200.128.0/19
------------------------------------------------------------------------------
Network : 10.200.128.0/19 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h29m22s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h01m28s Last update : 02d01h20m
FOM Present : 2936 FOM Last upd. : 3001
Number of Flaps : 3 Flags : si
Path : 60203 65001 19855 3356 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.203.240.0/20
------------------------------------------------------------------------------
Network : 10.203.240.0/20 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h29m22s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h01m28s Last update : 02d01h20m
FOM Present : 2936 FOM Last upd. : 3001
Number of Flaps : 3 Flags : si
Path : 60203 65001 19855 3356 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
Network : 10.206.0.0/17
------------------------------------------------------------------------------
Network : 10.206.0.0/17 Peer : 10.0.28.1
NextHop : 10.0.28.1 Reuse time : 00h29m22s
Peer AS : 60203 Peer Router-Id : 32.32.27.203
Local Pref : none
Age : 00h01m28s Last update : 02d01h20m
FOM Present : 2936 FOM Last upd. : 3001
Number of Flaps : 3 Flags : si
Path : 60203 65001 19855 3356 702 1889
Applied Policy : default-damping-profile
------------------------------------------------------------------------------
*A:ALA-12#
Label |
Description |
---|---|
BGP Router ID |
The local BGP router ID. |
AS |
The configured autonomous system number. |
Local AS |
The configured or inherited local AS for the specified peer group. If not configured, it is the same value as the AS. |
Network |
Route IP prefix and mask length for the route. |
Flags |
Legend: Status codes: u- used, s-suppressed, h-history, d-decayed, *-valid. If a * is not present, the status is invalid. Origin codes: i-IGP, e-EGP, ?-incomplete, >-best |
Network |
The IP prefix and mask length for the route. |
From |
The originator ID path attribute value. |
Reuse time |
The time when a suppressed route can be used again. |
AS Path |
The BGP AS path for the route. |
Peer |
The router ID of the advertising router. |
NextHop |
BGP next hop for the route. |
Peer AS |
The AS number of the advertising router. |
Peer Router-Id |
The router ID of the advertising router. |
Local Pref |
BGP local preference path attribute for the route. |
Age |
The time elapsed since the service was enabled. |
Last update |
The time when BGP was updated last in second/minute/hour (SS:MM:HH) format. |
FOM Present |
The current Figure of Merit (FOM) value. |
Number of Flaps |
The number of flaps in the neighbor connection. |
Reuse time |
The time when the route can be reused. |
Path |
The BGP AS path for the route. |
Applied Policy |
The applied route policy name. |
group
Syntax
group [name] [detail]
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays group information for a BGP peer group. This command can be entered with or without parameters.
When this command is entered without a group name, information about all peer groups displays.
When the command is issued with a specific group name, information only pertaining to that specific peer group displays.
The ‟State” field displays the BGP group operational state. Other valid states are the following:
Up
BGP global process is configured and running.
Down
BGP global process is administratively shutdown and not running.
Disabled
BGP global process is operationally disabled. The process must be restarted by the operator.
Parameters
- name
Displays information for the BGP group specified.
- detail
Displays detailed information.
Output
The following output is an example of BGP group information, and Output fields: BGP group describes the output fields.
Sample output*A:ALA-12# show router 3 bgp group
===============================================================================
BGP Groups
===============================================================================
Group : To_AS_40000
-------------------------------------------------------------------------------
Description : Not Available
Group Type : No Type State : Up
Peer AS : 40000 Local AS : 65206
Local Address : n/a Loop Detect : Ignore
Export Policy : direct2bgp
Hold Time : 90 Keep Alive : 30
Cluster Id : None Client Reflect : Enabled
NLRI : Unicast Preference : 170
List of Peers
- 10.0.0.1 : To_Jukebox
- 10.0.0.12 : Not Available
- 10.0.0.13 : Not Available
- 10.0.0.14 : To_ALA-1
- 10.0.0.15 : To_H-215
Total Peers : 5 Established : 2
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Group |
BGP group name |
Group Type |
No Type — Peer type not configured External — Peer type configured as external BGP peers Internal — Peer type configured as internal BGP peers Disabled — The BGP peer group has been operationally disabled Down — The BGP peer group is operationally inactive Up — The BGP peer group is operationally active |
Peer AS |
The configured or inherited peer AS for the specified peer group |
Local AS |
The configured or inherited local AS for the specified peer group |
Local Address |
The configured or inherited local address for originating peering for the specified peer group |
Loop Detect |
The configured or inherited loop detect setting for the specified peer group |
Connect Retry |
The configured or inherited connect retry timer value |
|
|
|
|
|
|
Local Pref |
The configured or inherited local preference value |
MED Out |
The configured or inherited MED value assigned to advertised routes without a MED attribute |
Min Route Advt. |
The minimum amount of time that must pass between route updates for the same IP prefix |
Min AS Originate |
The minimum amount of time that must pass between updates for a route originated by the local router |
Multihop |
The maximum number of router hops a BGP connection can traverse |
Multipath |
The configured or inherited multipath value, determining the maximum number of ECMP routes BGP can advertise to the RTM |
Prefix Limit |
No Limit — No route limit assigned to the BGP peer group 1 to 4294967285 — The maximum number of routes BGP can learn from a peer |
Passive |
Disabled — BGP attempts to establish BGP connections with neighbors in the specified peer group Enabled — BGP does not actively attempt to establish BGP connections with neighbors in the specified peer group |
Next Hop Self |
Disabled — BGP is not configured to send only its own IP address as the BGP next hop in route updates to neighbors in the peer group Enabled — BGP sends only its own IP address as the BGP next hop in route updates to neighbors in the specified peer group |
Aggregator ID 0 |
Disabled — BGP is not configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates sent to the neighbor in the peer group Enabled — BGP is configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates sent to the neighbor in the peer group |
Remove Private |
Disabled — BGP does not remove all private ASNs from the AS path attribute in updates sent to the neighbor in the peer group Enabled — BGP removes all private ASNs from the AS path attribute in updates sent to the neighbor in the peer group |
Damping |
Disabled — The peer group is configured not to dampen route flaps Enabled — The peer group is configured to dampen route flaps |
Export Policy |
The configured export policies for the peer group |
Import Policy |
The configured import policies for the peer group |
Hold Time |
The configured hold time setting |
Keep Alive |
The configured keepalive setting |
Cluster Id |
None — No cluster ID has been configured |
Client Reflect |
Disabled — The BGP route reflector will not reflect routes to this neighbor Enabled — The BGP route reflector is configured to reflect routes to this neighbor |
NLRI |
The type of NLRI information that the specified peer group can accept Unicast — IPv4 unicast routing information can be carried |
Preference |
The configured route preference value for the peer group |
List of Peers |
A list of BGP peers configured under the peer group |
Total Peers |
The total number of peers configured under the peer group |
Established |
The total number of peers that are in an established state |
neighbor
Syntax
neighbor [ip-address [detail]]
neighbor [as-address [detail]]
neighbor ip-address [family] [filter1 [brief]
neighbor ip-number [family] filter2
neighbor as-number [family] filter2
neighbor ip-address orf [filter3]
neighbor ip-address graceful-restart
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays BGP neighbor information. It can be configured with or without any parameters.
If it is configured without parameters, information about all BGP peers is displayed.
If it is issued with a specific IP address or ASN, information about only that specific peer or peers with the same AS is displayed.
If either received-routes or advertised-routes is specified, the routes received from or sent to the specified peer are displayed (see Sample output — received routes).
This information is not available for SNMP.
If either history or suppressed is specified, the routes learned from peers that either have a history or are suppressed (respectively) are displayed.
The State field displays the BGP peer protocol state. In addition to the standard protocol states, this field can also display the Disabled operational state, which indicates that the peer is operationally disabled and must be restarted by the operator.
Parameters
- ip-address
Displays information for the specified IP address.
- as-number
Displays information for the specified ASN.
- family
Specifies the type of routing information to be distributed by this peer group.
- filter1
Displays information for the specified IP address
- filter2
Displays information for the specified ASN.
- brief
Displays information in a brief format. This parameter is only supported with received-routes and advertised-routes.
- orf
Displays outbound route filtering for the BGP instance. ORF (Outbound Route Filtering) is used to inform a neighbor of targets (using target-list) that it is willing to receive. This mechanism helps lessen the update exchanges between neighbors and saves CPU cycles to process routes that could have been received from the neighbor only to be dropped/ignored.
- filter3
Displays path information for the specified IP address.
- graceful-restart
Displays neighbors configured for graceful restart.
Output
The following outputs are examples of BGP neighbor information, and the associated tables describe the output fields.
Sample output — received routes, Output fields: neighbor received routes
Sample output — add-path, Output fields: show neighbor add-path
*A:ALA-12# show router 3 bgp neighbor
===============================================================================
BGP Neighbor
===============================================================================
-------------------------------------------------------------------------------
Peer : 10.0.0.15 Group : To_AS_40000
-------------------------------------------------------------------------------
Peer AS : 65205
Peer Address : 10.0.0.15 Peer Port : 0
Local AS : 65206
Local Address : 10.0.0.16 Local Port : 0
Peer Type : External
State : Active Last State : Connect
Last Event : openFail
Last Error : Hold Timer Expire
Hold Time : 90 Keep Alive : 30
Active Hold Time : 0 Active Keep Alive: 0
Cluster Id : None
Preference : 170 Num of Flaps : 0
Recd. Prefixes : 0 Active Prefixes : 0
Recd. Paths : 0 Suppressed Paths : 0
Input Queue : 0 Output Queue : 0
i/p Messages : 0 o/p Messages : 0
i/p Octets : 0 o/p Octets : 0
i/p Updates : 0 o/p Updates : 0
Export Policy : direct2bgp
===============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 bgp neighbor detail
===============================================================================
BGP Neighbor (detail)
===============================================================================
-------------------------------------------------------------------------------
Peer : 10.0.0.15 Group : To_AS_40000
-------------------------------------------------------------------------------
Peer AS : 65205
Peer Address : 10.0.0.15 Peer Port : 0
Local AS : 65206
Local Address : 10.0.0.16 Local Port : 0
Peer Type : External
State : Active Last State : Connect
Last Event : openFail
Last Error : Hold Timer Expire
Connect Retry : 20 Local Pref. : 100
Min Route Advt. : 30 Min AS Orig. : 15
Multipath : 1 Multihop : 5
Damping : Disabled Loop Detect : Ignore
MED Out : No MED Out Authentication : None
Next Hop Self : Disabled AggregatorID Zero: Disabled
Remove Private : Disabled Passive : Disabled
Prefix Limit : No Limit
Hold Time : 90 Keep Alive : 30
Active Hold Time : 0 Active Keep Alive: 0
Cluster Id : None Client Reflect : Enabled
Preference : 170 Num of Flaps : 0
Recd. Prefixes : 0 Active Prefixes : 0
Recd. Paths : 0 Suppressed Paths : 0
Input Queue : 0 Output Queue : 0
i/p Messages : 0 o/p Messages : 0
i/p Octets : 0 o/p Octets : 0
i/p Updates : 0 o/p Updates : 0
Export Policy : direct2bgp
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Peer |
The IP address of the configured BGP peer |
Group |
The BGP peer group to which this peer is assigned |
Peer AS |
The configured or inherited peer AS for the peer group |
Peer Address |
The configured address for the BGP peer |
Peer Port |
The TCP port number used on the far-end system |
Local AS |
The configured or inherited local AS for the peer group |
Local Address |
The configured or inherited local address for originating peering for the peer group |
Local Port |
The TCP port number used on the local system |
Peer Type |
External — Peer type configured as external BGP peers Internal — Peer type configured as internal BGP peers |
State |
Idle — The BGP peer is not accepting connections Active — BGP is listening for and accepting TCP connections from this peer Connect — BGP is attempting to establish a TCP connection from this peer Open Sent — BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer Open Confirm — BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION Established — BGP has successfully established a peering and is exchanging routing information |
Last State |
Idle — The BGP peer is not accepting connections Active — BGP is listening for and accepting TCP connections from this peer Connect — BGP is attempting to establish a TCP connection from this peer Open Sent — BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer Open Confirm — BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION Established — BGP has successfully established a peering and is exchanging routing information |
Last Event |
start — BGP has initialized the BGP neighbor stop — BGP has disabled the BGP neighbor open — BGP transport connection opened close — BGP transport connection closed openFail — BGP transport connection failed to open error — BGP transport connection error connectRetry — Connect retry timer expired holdTime — Hold time timer expired keepAlive — Keepalive timer expired recvOpen — Receive an OPEN message revKeepalive — Receive an KEEPALIVE message recvUpdate — Receive an UPDATE message recvNotify — Receive an NOTIFICATION message None — No events have occurred |
Last Error |
Displays the last BGP error and sub-code to occur on the BGP neighbor |
Connect Retry |
The configured or inherited connect retry timer value |
Local Pref. |
The configured or inherited local preference value |
Min Route Advt. |
The minimum amount of time that must pass between route updates for the same IP prefix |
Min AS Originate |
The minimum amount of time that must pass between updates for a route originated by the local router |
Multihop |
The maximum number of router hops a BGP connection can traverse |
Multipath |
The configured or inherited multipath value, determining the maximum number of ECMP routes BGP can advertise to the RTM |
Damping |
Disabled — BGP neighbor is configured not to dampen route flaps Enabled — BGP neighbor is configured to dampen route flaps |
Loop Detect |
Ignore — The BGP neighbor is configured to ignore routes with an AS loop Drop — The BGP neighbor is configured to drop the BGP peering if an AS loop is detected Off — AS loop detection is disabled for the neighbor |
MED Out |
The configured or inherited MED value assigned to advertised routes without a MED attribute |
Authentication |
None — No authentication is configured MD5 — MD5 authentication is configured |
Next Hop Self |
Disabled — BGP is not configured to send only its own IP address as the BGP nexthop in route updates to the specified neighbor Enabled — BGP sends only its own IP address as the BGP next hop in route updates to the neighbor |
AggregatorID Zero |
Disabled — The BGP neighbor is not configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates Enabled — The BGP neighbor is configured to set the aggregator ID to 0.0.0.0 in all originated route aggregates |
Remove Private |
Disabled — BGP does not remove all private ASNs from the AS path attribute, in updates sent to the specified neighbor Enabled — BGP removes all private ASNs from the AS path attribute, in updates sent to the specified neighbor |
Passive |
Disabled — BGP actively attempts to establish a BGP connection with the specified neighbor Enabled — BGP does not actively attempt to establish a BGP connection with the specified neighbor |
Prefix Limit |
No Limit — No route limit assigned to the BGP peer group 1 to 4294967295 — The maximum number of routes BGP can learn from a peer |
Hold Time |
The configured hold time setting |
Keep Alive |
The configured keepalive setting |
Active Hold Time |
The negotiated hold time, if the BGP neighbor is in an established state |
Active Keep Alive |
The negotiated keepalive time, if the BGP neighbor is in an established state |
Cluster Id |
The configured route reflector cluster ID None — No cluster ID has been configured |
Client Reflect |
Disabled — The BGP route reflector is configured not to reflect routes to this neighbor Enabled — The BGP route reflector is configured to reflect routes to this neighbor |
Preference |
The configured route preference value for the peer group |
Num of Flaps |
The number of flaps in the neighbor connection |
Recd. Prefixes |
The number of routes received from the BGP neighbor |
Active Prefixes |
The number of routes received from the BGP neighbor and active in the forwarding table |
Recd. Paths |
The number of unique sets of path attributes received from the BGP neighbor |
Suppressed Paths |
The number of unique sets of path attributes received from the BGP neighbor and suppressed due to route damping |
Input Queue |
The number of BGP messages to be processed |
Output Queue |
The number of BGP messages to be transmitted |
i/p Messages |
Total number of packets received from the BGP neighbor |
*A:ALA-12# show router 3 bgp neighbor 10.0.0.16 received-routes
==============================================================================
BGP Router ID : 10.0.0.16 AS : 65206 Local AS : 65206
===============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP Neighbor
===============================================================================
Flag Network Nexthop LocalPref MED As-Path
-------------------------------------------------------------------------------
? 10.0.0.16/32 10.0.0.16 100 none No As-Path
? 10.0.6.0/24 10.0.0.16 100 none No As-Path
? 10.0.8.0/24 10.0.0.16 100 none No As-Path
? 10.0.12.0/24 10.0.0.16 100 none No As-Path
? 10.0.13.0/24 10.0.0.16 100 none No As-Path
? 10.0.204.0/24 10.0.0.16 100 none No As-Path
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
BGP Router ID |
Displays the local BGP router ID |
AS |
The configured AS number |
Local AS |
The configured local AS setting. If not configured, it is the same value as the AS |
Flag |
u — used s — suppressed h — history d — decayed * — valid i — igp ? — incomplete > — best |
Network |
Route IP prefix and mask length for the route |
Nexthop |
BGP next hop for the route |
LocalPref |
BGP local preference path attribute for the route |
MED |
BGP Multi-Exit Discriminator (MED) path attribute for the route |
As-Path |
The BGP AS path for the route |
*A:7210SAS# show router bgp neighbor 2.2.2.2
===============================================================================
BGP Neighbor
===============================================================================
-------------------------------------------------------------------------------
Peer : 10.2.2.2
Group : toPE
-------------------------------------------------------------------------------
Peer AS : 100 Peer Port : 50854
Peer Address : 10.2.2.2
Local AS : 100 Local Port : 179
Local Address : 10.1.1.1
Peer Type : Internal
State : Established Last State : Established
Last Event : recvKeepAlive
Last Error : Cease (Connection Collision Resolution)
Local Family : IPv4 VPN-IPv4 IPv6 VPN-IPv6
Remote Family : IPv4 VPN-IPv4 IPv6 VPN-IPv6
Hold Time : 90 Keep Alive : 30
Min Hold Time : 0
Active Hold Time : 90 Active Keep Alive : 30
Cluster Id : None
Preference : 170 Num of Update Flaps : 0
Recd. Paths : 0
IPv4 Recd. Prefixes : 0 IPv4 Active Prefixes : 0
IPv4 Suppressed Pfxs : 0 VPN-IPv4 Suppr. Pfxs : 0
VPN-IPv4 Recd. Pfxs : 0 VPN-IPv4 Active Pfxs : 0
Mc IPv4 Recd. Pfxs. : 0 Mc IPv4 Active Pfxs. : 0
Mc IPv4 Suppr. Pfxs : 0 IPv6 Suppressed Pfxs : 0
IPv6 Recd. Prefixes : 0 IPv6 Active Prefixes : 0
VPN-IPv6 Recd. Pfxs : 0 VPN-IPv6 Active Pfxs : 0
VPN-IPv6 Suppr. Pfxs : 0 L2-VPN Suppr. Pfxs : 0
L2-VPN Recd. Pfxs : 0 L2-VPN Active Pfxs : 0
MVPN-IPv4 Suppr. Pfxs: 0 MVPN-IPv4 Recd. Pfxs : 0
MVPN-IPv4 Active Pfxs: 0 MDT-SAFI Suppr. Pfxs : 0
MDT-SAFI Recd. Pfxs : 0 MDT-SAFI Active Pfxs : 0
FLOW-IPV4-SAFI Suppr*: 0 FLOW-IPV4-SAFI Recd.*: 0
FLOW-IPV4-SAFI Activ*: 0 Rte-Tgt Suppr. Pfxs : 0
Rte-Tgt Recd. Pfxs : 0 Rte-Tgt Active Pfxs : 0
Backup IPv4 Pfxs : 0 Backup IPv6 Pfxs : 0
Mc Vpn Ipv4 Recd. Pf*: 0 Mc Vpn Ipv4 Active P*: 0
Backup Vpn IPv4 Pfxs : 0 Backup Vpn IPv6 Pfxs : 0
Input Queue : 0 Output Queue : 0
i/p Messages : 9042 o/p Messages : 65
i/p Octets : 111 o/p Octets : 278
i/p Updates : 0 o/p Updates : 0
TTL Security : Disabled Min TTL Value : n/a
Graceful Restart : Disabled Stale Routes Time : n/a
Advertise Inactive : Disabled Peer Tracking : Disabled
Advertise Label : ipv4 ipv6
Auth key chain : n/a
Disable Cap Nego : Disabled Bfd Enabled : Enabled
Flowspec Validate : Disabled Default Route Tgt : Disabled
L2 VPN Cisco Interop : Disabled
Local Capability : RtRefresh MPBGP 4byte ASN
Remote Capability : RtRefresh MPBGP 4byte ASN
Local AddPath Capabi*: Send - VPN-IPv4 (1) VPN-IPv6 (4)
: Receive - VPN-IPv6
Remote AddPath Capab*: Send - VPN-IPv6
: Receive - VPN-IPv4 VPN-IPv6
Import Policy : None Specified / Inherited
Export Policy : P1
-------------------------------------------------------------------------------
Neighbors : 1
===============================================================================
* indicates that the corresponding row element may have been truncated.
*A:7210SAS#
Label |
Description |
---|---|
Peer |
The IP address of the configured BGP peer |
Group |
The BGP peer group to which this peer is assigned |
Peer AS |
The configured or inherited peer AS for the peer group |
Peer Address |
The configured address for the BGP peer |
Peer Port |
The TCP port number used on the far-end system |
Local AS |
The configured or inherited local AS for the peer group |
Local Address |
The configured or inherited local address for originating peering for the peer group |
Local Port |
The TCP port number used on the local system |
Peer Type |
External — peer type configured as external BGP peers Internal — peer type configured as internal BGP peers |
State |
Idle — The BGP peer is not accepting connections (Shutdown) is also displayed if the peer is administratively disabled Active — BGP is listening for and accepting TCP connections from this peer Connect — BGP is attempting to establish a TCP connection with this peer Open Sent — BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer Open Confirm — BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION Established — BGP has successfully established a peering session and is exchanging routing information |
Last State |
Idle — The BGP peer is not accepting connections Active — BGP is listening for and accepting TCP connections from this peer Connect — BGP is attempting to establish a TCP connections with this peer Open Sent — BGP has sent an OPEN message to the peer and is waiting for an OPEN message from the peer Open Confirm — BGP has received a valid OPEN message from the peer and is awaiting a KEEPALIVE or NOTIFICATION |
Last Event |
start — BGP has initialized the BGP neighbor stop — BGP has disabled the BGP neighbor open — BGP transport connection is opened close — BGP transport connection is closed openFail — BGP transport connection failed to open error — BGP transport connection error connectRetry — the connect retry timer expired holdTime — the hold time timer expired keepAlive — the keepalive timer expired recvOpen — BGP has received an OPEN message revKeepalive — BGP has received a KEEPALIVE message recvUpdate — BGP has received an UPDATE message recvNotify —BGP has received a NOTIFICATION message None — no events have occurred |
Last Error |
The last BGP error and subcode to occur on the BGP neighbor |
Local Family |
The configured local family value |
Remote Family |
The configured remote family value |
Hold Time |
The configured hold-time setting |
Keep Alive |
The configured keepalive setting |
Min Hold Time |
The configured minimum hold-time setting |
Active Hold Time |
The negotiated hold time, if the BGP neighbor is in an established state |
Active Keep Alive |
The negotiated keepalive time, if the BGP neighbor is in an established state |
Cluster Id |
The configured route reflector cluster ID None — no cluster ID has been configured |
Preference |
The configured route preference value for the peer group |
Num of Flaps |
The number of route flaps in the neighbor connection |
Recd. Prefixes |
The number of routes received from the BGP neighbor |
Recd. Paths |
The number of unique sets of path attributes received from the BGP neighbor |
IPv4 Recd. Prefixes |
The number of unique sets of IPv4 path attributes received from the BGP neighbor |
IPv4 Active Prefixes |
The number of IPv4 routes received from the BGP neighbor and active in the forwarding table |
IPv4 Suppressed Pfxs |
The number of unique sets of IPv4 path attributes received from the BGP neighbor and suppressed due to route damping |
VPN-IPv4 Suppr. Pfxs |
The number of unique sets of VPN-IPv4 path attributes received from the BGP neighbor and suppressed due to route damping |
VPN-IPv4 Recd. Pfxs |
The number of unique sets of VPN-IPv4 path attributes received from the BGP neighbor |
VPN-IPv4 Active Pfxs |
The number of VPN-IPv4 routes received from the BGP neighbor and active in the forwarding table |
IPv6 Recd. Prefixes |
The number of unique sets of IPv6 path attributes received from the BGP neighbor |
IPv6 Active Prefixes |
The number of IPv6 routes received from the BGP neighbor and active in the forwarding table |
VPN-IPv6 Recd. Pfxs |
The number of unique sets of VPN-IPv6 path attributes received from the BGP neighbor |
VPN-IPv6 Active Pfxs |
The number of VPN-IPv6 routes received from the BGP neighbor and active in the forwarding table |
VPN-IPv6 Suppr. Pfxs |
The number of unique sets of VPN-IPv6 path attributes received from the BGP neighbor and suppressed due to route damping |
Backup IPv4 Pfxs |
The number of BGP Fast Reroute backup path IPv4 prefixes |
Backup IPv6 Pfxs |
The number of BGP Fast Reroute backup path IPv6 prefixes |
Backup Vpn IPv4 Pfxs |
The number of BGP Fast Reroute backup path VPN IPv4 prefixes |
Backup Vpn IPv6 Pfxs |
The number of BGP Fast Reroute backup path VPN IPv6 prefixes |
Input Queue |
The number of BGP messages to be processed |
Output Queue |
The number of BGP messages to be transmitted |
i/p Messages |
The total number of packets received from the BGP neighbor |
o/p Messages |
The total number of packets sent to the BGP neighbor |
i/p Octets |
The total number of octets received from the BGP neighbor |
o/p Octets |
The total number of octets sent to the BGP neighbor |
i/p Updates |
The total number of updates received from the BGP neighbor |
o/p Updates |
The total number of updates sent to the BGP neighbor |
TTL Security |
Enabled — TTL security is enabled Disabled — TTL security is disabled |
Min TTL Value |
The minimum TTL value configured for the peer |
Graceful Restart |
The state of graceful restart |
Stale Routes Time |
The length of time that stale routes are kept in the route table |
Advertise Inactive |
The state of advertising inactive BGP routes to other BGP peers (enabled or disabled) |
Peer Tracking |
The state of tracking a neighbor IP address in the routing table for a BGP session |
Advertise Label |
Indicates the enabled address family for supporting RFC 3107 BGP label capability |
Auth key chain |
The value for the authentication key chain |
Bfd Enabled |
Enabled — BFD is enabled Disabled — BFD is disabled |
Local Capability |
The capability of the local BGP speaker; for example, route refresh, MP-BGP, ORF |
Remote Capability |
The capability of the remote BGP peer; for example, route refresh, MP-BGP, ORF |
Local AddPath Capabi* |
The state of the local BGP add-paths capabilities The add-paths capability allows the router to send and receive multiple paths per prefix to or from a peer |
Remote AddPath Capab* |
The state of the remote BGP add-paths capabilities |
Import Policy |
The configured import policies for the peer group |
Export Policy |
The configured export policies for the peer group |
paths
Syntax
paths
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays a summary of BGP path attributes.
Output
The following output is an example of BGP path information, and Output fields: BGP paths describes the output fields.
Sample output*A:ALA-12# show router 3 bgp paths
==============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
==============================================================================
BGP Paths
------------------------------------------------------------------------------
Path: 60203 65001 19855 3356 15412
------------------------------------------------------------------------------
Origin : IGP Next Hop : 10.0.28.1
MED : 60203 Local Preference : none
Refs : 4 ASes : 5
Segments : 1
Flags : EBGP-learned
Aggregator : 15412 62.216.140.1
------------------------------------------------------------------------------
Path: 60203 65001 19855 3356 1 1236 1236 1236 1236
------------------------------------------------------------------------------
Origin : IGP Next Hop : 10.0.28.1
MED : 60203 Local Preference : none
Refs : 2 ASes : 9
Segments : 1
Flags : EBGP-learned
------------------------------------------------------------------------------
*A:ALA-12#
Label |
Description |
---|---|
BGP Router ID |
The local BGP router ID. |
AS |
The configured autonomous system number. |
Local AS |
The configured local AS setting. If not configured, the value is the same as the AS. |
Path |
The AS path attribute. |
Origin |
EGP — The NLRI is learned by an EGP protocol. |
IGP — The NLRI is interior to the originating AS. |
|
INCOMPLETE — NLRI was learned another way. |
|
next-hop |
The advertised BGP next hop. |
MED |
The Multi-Exit Discriminator value. |
Local Preference |
The local preference value. |
Refs |
The number of routes using a specified set of path attributes. |
ASes |
The number of AS numbers in the AS path attribute. |
Segments |
The number of segments in the AS path attribute. |
Flags |
eBGP-learned — Path attributes learned by an eBGP peering. |
iBGP-Learned — Path attributes learned by an iBGP peering. |
|
Aggregator |
The route aggregator ID. |
routes
Syntax
routes [family family] [prefix [detail | longer]]
routes [family family] [prefix [hunt | brief]]
routes [family family] [community comm-id]
routes [family family] [aspath-regex reg-ex1]
routes [family family] [ipv6-prefix[/prefix-length] [detail | longer] | [hunt [brief]]]
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays BGP route information.
When this command is issued without any parameters, the entire BGP routing table displays.
When this command is issued with an IP prefix/mask or IP address, the best match for the parameter displays.
Parameters
- family family
Specifies the type of routing information to be distributed by the BGP instance.
- prefix
Specifies the type of routing information to display.
- filter
Specifies route criteria.
- aspath-regex ‟reg-exp”
Displays all routes with an AS path matching the specified regular expression reg-exp.
- community comm.-id
Displays all routes with the specified BGP community.
Output
The following output is an example of BGP route information, and Output fields: BGP routes describes the output fields.
Sample output*A:ALA-12>config>router>bgp# show router 3 bgp routes family ipv4
==============================================================================
BGP Router ID : 10.10.10.103 AS : 200 Local AS : 200
==============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, > - best
==============================================================================
BGP Routes
==============================================================================
Flag Network Nexthop LocalPref MED
VPN Label As-Path
------------------------------------------------------------------------------
No Matching Entries Found
==============================================================================
*A:ALA-12>config>router>bgp#
A:SR-12# show router bgp routes 10.0.0.0/31 hunt
===============================================================================
BGP Router ID : 10.20.1.1 AS : 100Local AS : 100
===============================================================================
Legend -
Status codes : u - used, s - suppressed, h - history, d - decayed, * - valid
Origin codes : i - IGP, e - EGP, ? - incomplete, > - best
===============================================================================
BGP Routes
===============================================================================
RIB In Entries
-------------------------------------------------------------------------------
Network : 10.0.0.0/31
Nexthop : 10.20.1.2
Route Dist. : 10.20.1.2:1VPN Label: 131070
From : 10.20.1.2
Res. Nexthop : 10.10.1.2
Local Pref. : 100Interface Name: to-sr7
Aggregator AS : noneAggregator: none
Atomic Aggr. : Not AtomicMED: none
Community : target:10.20.1.2:1
Cluster : No Cluster Members
Originator Id : NonePeer Router Id: 10.20.1.2
Flags : Used Valid Best IGP
AS-Path : No As-Path
VPRN Imported : 1 2 10 12
-------------------------------------------------------------------------------
RIB Out Entries
-------------------------------------------------------------------------------
Routes : 1
===============================================================================
A:SR-12#
Label |
Description |
---|---|
BGP Router ID |
The local BGP router ID. |
AS |
The configured autonomous system number. |
Local AS |
The configured local AS setting, if not configured it is the same as the system AS. |
Network |
The IP prefix and mask length. |
next-hop |
The BGP next hop. |
From |
The advertising IP address BGP neighbor. |
Res. next-hop |
The resolved next hop. |
Local Pref. |
The local preference value. |
Flag |
u — used |
s — suppressed |
|
h — history |
|
d — decayed |
|
* — valid |
|
i — igp |
|
e — egp |
|
? — incomplete |
|
> — best |
|
Aggregator AS |
The aggregator AS value. none — No aggregator AS attributes are present. |
Aggregator |
The aggregator attribute value. none — no aggregator attributes are present. |
Atomic Aggr. |
Atomic — The atomic aggregator flag is set. |
Not Atomic — The atomic aggregator flag is not set. |
|
MED |
The MED metric value. none — No MED metric is present. |
Community |
The BGP community attribute list. |
Cluster |
The route reflector cluster list. |
Originator Id |
The originator ID path attribute value. |
none — The originator ID attribute is not present. |
|
Peer Router Id |
The router ID of the advertising router. |
AS-Path |
The BGP AS path attribute. |
VPRN Imported |
Displays the VPRNs where a particular BGP-VPN received route has been imported and installed. |
summary
Syntax
summary [all]
Context
show>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays a summary of BGP neighbor information.
If confederations are not configured, that portion of the output will not display.
This command displays group information for a BGP peer group. This command can be entered with or without parameters.
When this command is entered without a group name, information about all peer groups displays.
When the command is issued with a specific group name, information only pertaining to that specific peer group displays.
The ‟State” field displays the BGP group operational state. Other valid states are the following:
Up
BGP global process is configured and running.
Down
BGP global process is administratively shutdown and not running.
Disabled
BGP global process is operationally disabled. The process must be restarted by the operator.
For example, if a BGP peer is operationally disabled, the state in the summary table shows the state ‟Disabled”.
Parameters
- all
Displays BGP peers in all instances.
Output
The following output is an example of summary BGP neighbor information, and Output fields: BGP summary describes the output fields.
Sample output*A:ALA-12# show router 3 bgp summary
===============================================================================
BGP Router ID : 10.0.0.14 AS : 65206 Local AS : 65206
===============================================================================
BGP Admin State : Up BGP Oper State : Up
Confederation AS : 40000
Member Confederations : 65205 65206 65207 65208
Number of Peer Groups : 2 Number of Peers : 7
Total BGP Active Routes : 86689 Total BGP Routes : 116999
Total BGP Paths : 35860 Total Path Memory : 2749476
Total Supressed Routes : 0 Total History Routes : 0
Total Decayed Routes : 0
===============================================================================
BGP Summary
===============================================================================
Neighbor AS PktRcvd PktSent InQ OutQ Up/Down State|Recv/Actv/Sent
-------------------------------------------------------------------------------
10.0.0.1 65206 5 21849 0 0 00h01m29s 32/0/86683
10.0.0.12 65206 0 0 0 0 00h01m29s Active
10.0.0.13 65206 5 10545 0 50 00h01m29s 6/0/86683
10.0.0.15 65205 0 0 0 0 00h01m29s Active
10.0.0.16 65206 5 9636 0 50 00h01m29s 6/0/86683
10.0.27.1 2 0 0 0 0 00h01m29s Active
10.0.28.1 60203 22512 15 0 0 00h01m29s 116955/86689/9
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
BGP Router ID |
The local BGP router ID. |
AS |
The configured AS number. |
Local AS |
The configured local AS setting, if not configured it is the same as the system AS. |
BGP Admin State |
Down — BGP is administratively disabled. |
Up — BGP is administratively enabled. |
|
BGP Oper State |
Down — BGP is operationally disabled. |
Up — BGP is operationally enabled. |
|
Confederation AS |
The configured confederation AS. |
Member Confederations |
The configured members of the BGP confederation. |
Number of Peer Groups |
The total number of configured BGP peer groups. |
Number of Peers |
The total number of configured BGP peers. |
Total BGP Active Routes |
The total number of BGP routes used in the forwarding table. |
Total BGP Routes |
The total number of BGP routes learned from BGP peers. |
Total BGP Paths |
The total number of unique sets of BGP path attributes learned from BGP peers. |
Total Path Memory |
Total amount of memory used to store the path attributes. |
Total Suppressed Routes |
Total number of suppressed routes because of route damping. |
Total History Routes |
Total number of routes with history because of route damping. |
Total Decayed Routes |
Total number of decayed routes because of route damping. |
Neighbor |
BGP neighbor address. |
AS (Neighbor) |
BGP neighbor AS number. |
PktRcvd |
Total number of packets received from the BGP neighbor. |
PktSent |
Total number of packets sent to the BGP neighbor. |
InQ |
The number of BGP messages to be processed. |
OutQ |
The number of BGP messages to be transmitted. |
Up/Down |
The amount of time that the BGP neighbor has either been established or not established, depending on its current state. |
State|Recv/Actv/Sent |
The current state of the BGP neighbor (if not established) or the number of received routes, active routes, and sent routes (if established). |
interface
Syntax
interface [{[ip-address | ip-int-name][detail]} | summary]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the router IP interface table, sorted by interface index.
Parameters
- ip-address
Only displays the interface information associated with the specified IP address.
- ip-int-name
Only displays the interface information associated with the specified IP interface name.
- detail
Displays detailed IP interface information.
- summary
Displays summary IP interface information for the router.
Output
The following outputs are example of interface information, and the associated tables describe the output fields.
Sample output — detailed*A:ALA-12# show router 3 interface detail
==============================================================================
Interface Table
==============================================================================
Interface
------------------------------------------------------------------------------
If Name : to-ser1
Admin State : Up Oper State : Up
IP Addr/mask : 10.10.13.3/24 Address Type : Primary
IGP Inhibit : Disabled Broadcast Address: Host-ones
IP Addr/mask : 10.200.0.1/16 Address Type : Secondary
IGP Inhibit : Enabled Broadcast Address: Host-ones
------------------------------------------------------------------------------
Details
------------------------------------------------------------------------------
If Index : 2
Port Id : 1/1/2 If Type : Network
Egress Filter: none Ingress Filter : 100
QoS Policy : 1 SNTP Broadcast : False
MAC Address : 04:5d:01:01:00:02 Arp Timeout : 14400
ICMP Details
Redirects : Disabled
Unreachables : Number - 100 Time (seconds) - 10
TTL Expired : Number - 100 Time (seconds) - 10
==============================================================================
*A:ALA-12#
Label |
Description |
---|---|
If Name |
The IP interface name. |
Admin State |
Down — The IP interface is administratively disabled. |
Up — The IP interface is administratively enabled. |
|
Oper State |
Down — The IP interface is operationally disabled. |
Up — The IP interface is operationally disabled. |
|
IP Addr/mask |
The IP address and subnet mask length of the IP interface. Not Assigned — Indicates no IP address has been assigned to the IP interface. |
Address Type |
Primary — The IP address for the IP interface is the Primary address on the IP interface. |
Secondary — The IP address for the IP interface is a Secondary address on the IP interface. |
|
IGP Inhibit |
Disabled — The secondary IP address on the interface is recognized as a local interface by the IGP. |
Enabled — The secondary IP address on the interface is not recognized as a local interface by the IGP. |
|
Broadcast Address |
All-ones — The broadcast format on the IP interface is all ones. |
Host-ones — The broadcast format on the IP interface is host ones. |
|
If Index |
The interface index of the IP router interface. |
If Type |
Network — The IP interface is a network/core IP interface. |
Service — The IP interface is a service IP interface. |
|
Port Id |
The port ID of the IP interface. |
Egress Filter |
The egress IP filter policy ID associated with the IP interface. none — Indicates no egress filter policy is associated with the interface. |
Ingress Filter |
The ingress IP filter policy ID associated with the IP interface. none — Indicates no ingress filter policy is associated with the interface. |
QoS Policy |
The QoS policy ID associated with the IP interface. |
SNTP Broadcast |
False — Receipt of SNTP broadcasts on the IP interface is disabled. |
True — Receipt of SNTP broadcasts on the IP interface is enabled. |
|
MAC Address |
The MAC address of the IP interface. |
Arp Timeout |
The ARP timeout for the interface, in seconds, which is the time an ARP entry is maintained in the ARP cache without being refreshed. |
ICMP Mask Reply |
False — The IP interface does not reply to a received ICMP mask request. |
True — The IP interface replies to a received ICMP mask request. |
|
Redirects |
Specifies the maximum number of ICMP redirect messages the IP interface will issue in a specific period of time (Time (seconds)). Disabled — Indicates the IP interface does not generate ICMP redirect messages. |
Unreachables |
Specifies the maximum number of ICMP destination unreachable messages the IP interface will issue in a specific period of time. Disabled — Indicates the IP interface does not generate ICMP destination unreachable messages. |
TTL Expired |
The maximum number (Number) of ICMP TTL expired messages the IP interface will issue in a specific period of time (Time (seconds)). Disabled — Indicates the IP interface does not generate ICMP TTL expired messages. |
*A:ALA-12# show router 3 interface summary
===============================================================================
Router Summary (Interfaces)
===============================================================================
Instance Router Name Interfaces Admin-Up Oper-Up
-------------------------------------------------------------------------------
1 Base 7 7 5
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Instance |
The router instance number. |
Router Name |
The name of the router instance. |
Interfaces |
The number of IP interfaces in the router instance. |
route-table
Syntax
route-table [ip-prefix [/mask] [longer] | [protocol protocol] | [summary]]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the active routes in the routing table.
If no command line arguments are specified, all routes are displayed, sorted by prefix.
Parameters
- ip-prefix[/mask]
Displays routes only matching the specified ip-prefix and optional mask.
- longer
Displays routes matching the ip-prefix/mask and routes with longer masks.
- protocol protocol
Displays routes learned from the specified protocol.
- summary
Displays route table summary information.
Output
The following output is an example of routing table information, and Output fields: route table describes the output fields.
Sample output*A:ALA-12# show router 3 route-table
==============================================================================
Route Table
==============================================================================
Dest Address Next Hop Type Protocol Age Metric Pref
------------------------------------------------------------------------------
10.10.0.1/32 10.10.13.1 Remote OSPF 65844 1001 10
10.10.0.2/32 10.10.13.1 Remote OSPF 65844 2001 10
10.10.0.3/32 0.0.0.0 Local Local 1329261 0 0
10.10.0.4/32 10.10.34.4 Remote OSPF 3523 1001 10
10.10.0.5/32 10.10.35.5 Remote OSPF 1084022 1001 10
10.10.12.0/24 10.10.13.1 Remote OSPF 65844 2000 10
10.10.13.0/24 0.0.0.0 Local Local 65859 0 0
10.10.15.0/24 10.10.13.1 Remote OSPF 58836 2000 10
10.10.24.0/24 10.10.34.4 Remote OSPF 3523 2000 10
10.10.25.0/24 10.10.35.5 Remote OSPF 399059 2000 10
10.10.34.0/24 0.0.0.0 Local Local 3543 0 0
10.10.35.0/24 0.0.0.0 Local Local 1329259 0 0
10.10.45.0/24 10.10.34.4 Remote OSPF 3523 2000 10
10.200.0.0/16 0.0.0.0 Local Local 4513 0 0
192.168.0.0/20 0.0.0.0 Local Local 1329264 0 0
192.168.254.0/24 0.0.0.0 Remote Static 11 1 5
------------------------------------------------------------------------------
*A:ALA-12#
*A:ALA-12# show router 3 route-table 10.10.0.4
===============================================================================
Route Table
==============================================================================
Dest Address Next Hop Type Protocol Age Metric Pref
------------------------------------------------------------------------------
10.10.0.4/32 10.10.34.4 Remote OSPF 3523 1001 10
------------------------------------------------------------------------------
*A:ALA-12#
*A:ALA-12# show router 3 route-table 10.10.0.4/32 longer
==============================================================================
Route Table
==============================================================================
Dest Address Next Hop Type Protocol Age Metric Pref
------------------------------------------------------------------------------
10.10.0.4/32 10.10.34.4 Remote OSPF 3523 1001 10
------------------------------------------------------------------------------
No. of Routes: 1
==============================================================================
+ : indicates that the route matches on a longer prefix
*A:ALA-12#
*A:ALA-12# show router 3 route-table protocol ospf
==============================================================================
Route Table
==============================================================================
Dest Address Next Hop Type Protocol Age Metric Pref
------------------------------------------------------------------------------
10.10.0.1/32 10.10.13.1 Remote OSPF 65844 1001 10
10.10.0.2/32 10.10.13.1 Remote OSPF 65844 2001 10
10.10.0.4/32 10.10.34.4 Remote OSPF 3523 1001 10
10.10.0.5/32 10.10.35.5 Remote OSPF 1084022 1001 10
10.10.12.0/24 10.10.13.1 Remote OSPF 65844 2000 10
10.10.15.0/24 10.10.13.1 Remote OSPF 58836 2000 10
10.10.24.0/24 10.10.34.4 Remote OSPF 3523 2000 10
10.10.25.0/24 10.10.35.5 Remote OSPF 399059 2000 10
10.10.45.0/24 10.10.34.4 Remote OSPF 3523 2000 10
-------------------------------------------------------------------------------
*A:ALA-12#
*A:ALA-12# show router 3 route-table summary
===============================================================================
Route Table Summary
===============================================================================
Active Available
-------------------------------------------------------------------------------
Static 1 1
Direct 6 6
BGP 0 0
OSPF 9 9
ISIS 0 0
RIP 0 0
Aggregate 0 0
-------------------------------------------------------------------------------
Total 15 15
===============================================================================
*A:ALA-12#
Label |
Description |
---|---|
Dest Address |
The route destination address and mask. |
next-hop |
The next-hop IP address for the route destination. |
Type |
Local — The route is a local route. Remote — The route is a remote route. |
Protocol |
The protocol through which the route was learned. |
Age |
The route age in seconds for the route. |
Metric |
The route metric value for the route. |
Pref |
The route preference value for the route. |
No. of Routes: |
The number of routes displayed in the list. |
static-arp
Syntax
static-arp [ip-address | ip-int-name | mac ieee-mac-addr]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the router static ARP table sorted by IP address.
If no options are present, all ARP entries are displayed.
Parameters
- ip-address
Only displays static ARP entries associated with the specified IP address.
- ip-int-name
Only displays static ARP entries associated with the specified IP interface name.
- mac ieee-mac-addr
Only displays static ARP entries associated with the specified MAC address.
Output
The following output is an example of static ARP table information, and Output fields: static ARP describes the output fields.
Sample output*A:ALA-12# show router 3 static-arp
==============================================================================
ARP Table
==============================================================================
IP Address MAC Address Age Type Interface
------------------------------------------------------------------------------
10.200.0.253 00:00:5a:40:00:01 00:00:00 Sta to-ser1
10.200.1.1 00:00:5a:01:00:33 00:00:00 Inv to-ser1a
------------------------------------------------------------------------------
No. of ARP Entries: 2
==============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 static-arp 10.200.1.1
==============================================================================
ARP Table
==============================================================================
IP Address MAC Address Age Type Interface
------------------------------------------------------------------------------
10.200.1.1 00:00:5a:01:00:33 00:00:00 Inv to-
ser1 a
===============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 static-arp to-ser1
==============================================================================
ARP Table
==============================================================================
IP Address MAC Address Age Type Interface
------------------------------------------------------------------------------
10.200.0.253 00:00:5a:40:00:01 00:00:00 Sta to-
ser1 ===============================================================================
S*A:ALA-12#
*A:ALA-12# show router 3 static-arp mac 00:00:5a:40:00:01
==============================================================================
ARP Table
==============================================================================
IP Address MAC Address Age Type Interface
-------------------------------------------------------------------------------
10.200.0.253 00:00:5a:40:00:01 00:00:00 Sta to-
ser1 ==============================================================================
*A:ALA-12#
Label |
Description |
---|---|
IP Address |
The IP address of the static ARP entry. |
MAC Address |
The MAC address of the static ARP entry. |
Age |
The age of the ARP entry. Static ARPs always have 00:00:00 for the age. |
Type |
Inv — The ARP entry is an inactive static ARP entry (invalid). Sta — The ARP entry is an active static ARP entry. |
Interface |
The IP interface name associated with the ARP entry. |
No. of ARP Entries |
The number of ARP entries displayed in the list. |
static-route
Syntax
static-route [ip-prefix /mask] | [preference preference] | [next-hop ip-addr] [detail]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays the static entries in the routing table.
If no options are present, all static routes are displayed sorted by prefix.
Parameters
- ip-prefix /mask
Displays static routes only matching the specified ip-prefix and mask.
- preference preference
Only displays static routes with the specified route preference.
- next-hop ip-addr
Only displays static routes with the specified next hop IP address.
- detail
Displays detailed information about the static route.
Output
The following output is an example of static route information, and Output fields: static route describes the output fields.
Sample output*A:ALA-12# show router 3 static-route
==============================================================================
Route Table
==============================================================================
IP Addr/mask Pref Metric Type Nexthop Interface Active
------------------------------------------------------------------------------
192.168.250.0/24 5 1 ID 10.200.10.1 to-ser1 Y
192.168.252.0/24 5 1 NH 10.10.0.254 n/a N
192.168.253.0/24 5 1 NH to-ser1 n/a N
192.168.253.0/24 5 1 NH 10.10.0.254 n/a N
192.168.254.0/24 4 1 BH black-hole n/a Y
==============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 static-route 192.168.250.0/24
==============================================================================
Route Table
==============================================================================
IP Addr/mask Pref Metric Type Nexthop Interface Active
------------------------------------------------------------------------------
192.168.250.0/24 5 1 ID 10.200.10.1 to-ser1 Y
==============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 static-route preference 4
=============================================================================
Route Table
==============================================================================
IP Addr/mask Pref Metric Type Nexthop Interface Active
------------------------------------------------------------------------------
192.168.254.0/24 4 1 BH black-hole n/a Y
==============================================================================
*A:ALA-12#
*A:ALA-12# show router 3 static-route next-hop 10.10.0.254
==============================================================================
Route Table
==============================================================================
IP Addr/mask Pref Metric Type Nexthop Interface Active
------------------------------------------------------------------------------
192.168.253.0/24 5 1 NH 10.10.0.254 n/a N
=============================================================================
*A:ALA-12#
*A:Dut-B# show router static-route
===============================================================================
Static Route Table (Router: Base) Family: IPv4
===============================================================================
Prefix Tag Met Pref Type Act
Next Hop Interface
-------------------------------------------------------------------------------
10.2.3.4/32 0 1 5 NH Y
10.11.25.6
ip-10.11.25.5_base_to_cpe_static
10.11.15.0/24 0 1 5 NH Y
10.11.25.6
ip-10.11.25.5_base_to_cpe_static
-------------------------------------------------------------------------------
No. of Static Routes: 2
===============================================================================
*A:Dut-B# show router static-route detail
==============================================================================
Static Route Table (Router: Base) Family: IPv4
==============================================================================
Network : 10.2.3.4/32
Nexthop : 10.11.25.6
Type : Nexthop Nexthop Type : IP
Interface : ip-10.11.25.5_base_to_cpe_stat* Active : Y
Metric : 1 Preference : 5
Admin State : Up Tag : 0
BFD : disabled
CPE-check : enabled State : n/a
Target : 10.11.18.6
Interval : 1 Drop Count : 3
Log : N
CPE Host Up Time : 0d 00:00:02
CPE Echo Req Tx : 3 CPE Echo Reply Rx : 3
CPE Up Trans : 1 CPE Down Trans : 0
CPE TTL : 2
------------------------------------------------------------------------------
Network : 10.11.15.0/24
Nexthop : 10.11.25.6
Type : Nexthop Nexthop Type : IP
Interface : ip-10.11.25.5_base_to_cpe_stat* Active : Y
Metric : 1 Preference : 5
Admin State : Up Tag : 0
BFD : disabled
CPE-check : disabled
------------------------------------------------------------------------------
No. of Static Routes: 2
==============================================================================
Label |
Description |
---|---|
IP Addr/mask |
The static route destination address and mask. |
Pref |
The route preference value for the static route. |
Metric |
The route metric value for the static route. |
Type |
BH — The static route is a blackhole route. The next-hop for this type of route is black hole. |
ID — The static route is an indirect route, where the next-hop for this type of route is the non-directly connected next-hop. |
|
NH — The route is a static route with a directly connected next-hop. The next-hop for this type of route is either the next-hop IP address or an egress IP interface name. |
|
next-hop |
The next-hop for the static route destination. |
Interface |
The egress IP interface name for the static route. n/a — indicates there is no current egress interface because the static route is inactive or a blackhole route. |
Active |
N — The static route is inactive; for example, the static route is disabled or the next-hop IP interface is down. |
Y — The static route is active. |
|
No. of Routes: |
The number of routes displayed in the list. |
tunnel-table
Syntax
tunnel-table [ip-address[/mask] [protocol protocol | sdp sdp-id]
tunnel-table [summary]
Context
show>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays tunnel table information.
When the auto-bind command is used when configuring a VPRN service, it means the MP-BGP NH resolution is referring to core routing instance for IP reachability. For a VPRN service, this object specifies the lookup to be used by the routing instance when no SDP to the destination exists.
Parameters
- ip-address[/mask]
Displays the specified tunnel table destination IP address and mask.
- protocol protocol
Displays LDP protocol information.
- sdp sdp-id
Displays information pertaining to the specified SDP.
- summary
Displays summary tunnel table information.
Output
The following output is an example of tunnel table information, and Output fields: tunnel table describes the output fields.
Sample output*A:ALA-12>config>service# show router 3 tunnel-table summary
=============================================================================
Tunnel Table Summary (Router: Base)
=============================================================================
Active Available
------------------------------------------------------------------------------
LDP 1 1
SDP 1 1
==============================================================================
*A:ALA-12>config>service#
Label |
Description |
---|---|
Active |
Displays the number of active LDPs and SDPs. |
Available |
Displays the number of available LDPs and SDPs. |
VPRN clear commands
interface
Syntax
interface [ip-int-name | ip-addr] [icmp]
Context
clear>router
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears IP interface statistics.
If no IP interface is specified either by IP interface name or IP address, the command performs the clear operation on all IP interfaces.
Parameters
- ip-int-name | ip-addr
Specifies the IP interface name or IP interface address.
- icmp
Specifies to reset the ICMP statistics for the IP interfaces used for ICMP rate limit.
damping
Syntax
damping [[ip-prefix/mask] [neighbor ip-address]] | [group name]
Context
clear>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears or resets the route damping information for received routes.
Parameters
- ip-prefix/mask
Clears damping information for entries that match the IP prefix and mask length.
- neighbor ip-address
Clears damping information for entries received from the BGP neighbor.
- group name
Clears damping information for entries received from any BGP neighbors in the peer group.
flap-statistics
Syntax
flap-statistics [[ip-prefix/mask] [neighbor ip-addr]] | [group group-name] | [regex reg-exp] | [policy policy-name]
Context
clear>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears route flap statistics.
Parameters
- ip-prefix/mask
Clears route flap statistics for entries that match the specified IP prefix and mask length.
- neighbor ip-addr
Clears route flap statistics for entries received from the specified BGP neighbor.
- group group-name
Clears route flap statistics for entries received from any BGP neighbors in the specified peer group.
- regex reg-exp
Clears route flap statistics for all entries which have the regular expression and the AS path that matches the regular expression.
- policy policy-name
Clears route flap statistics for entries that match the specified route policy.
neighbor
Syntax
neighbor {ip-addr | as as-number | external | all} [soft | soft-inbound | statistics]
Context
clear>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command resets the specified BGP peer or peers. This can cause existing BGP connections to be shut down and restarted.
Parameters
- ip-addr
Resets the BGP neighbor with the specified IP address.
- as as-number
Resets all BGP neighbors with the specified peer AS.
- external
Resets all eBGP neighbors.
- all
Resets all BGP neighbors.
- soft
Specifies that BGP neighbors reevaluate all routes in the local-RIB against the configured export policies.
- soft-inbound
Specifies that BGP neighbors reevaluate all routes in the RIB-In against the configured import policies.
- statistics
Specifies the BGP neighbor statistics.
protocol
Syntax
protocol
Context
clear>router>bgp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command resets the entire BGP protocol. If the ASN was previously changed, the BGP ASN does not inherit the new value.
id
Syntax
id service-id
Context
clear>service
clear>service>statistics
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears commands for a specific service.
Parameters
- service-id
Specifies the ID that uniquely identifies a service.
sap
Syntax
sap sap-id {all | counters | stp}
Context
clear>service>statistics
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears SAP statistics for a SAP.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
spoke-sdp
Syntax
spoke-sdp sdp-id:vc-id ingress-vc-label
Context
clear>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears and resets the spoke-SDP bindings for the service.
Parameters
- sdp-id
Specifies the spoke-SDP ID to be reset.
- vc-id
Specifies the virtual circuit ID on the SDP ID to be reset.
sdp
Syntax
sdp sdp-id keep-alive
Context
clear>service>statistics
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears keepalive statistics associated with the SDP ID.
Parameters
- sdp-id
Specifies the SDP ID for which to clear keepalive statistics.
counters
Syntax
counters
Context
clear>service>statistics>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears all traffic queue counters associated with the service ID.
spoke-sdp
Syntax
spoke-sdp sdp-id[:vc-id] {all | counters | stp}
Context
clear>service>statistics>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears statistics for the spoke-SDP bound to the service.
Parameters
- sdp-id
Specifies the spoke-SDP ID for which to clear statistics.
- vc-id
Specifeis the virtual circuit ID on the SDP ID to be reset.
- all
Clears all queue statistics and STP statistics associated with the SDP.
- counters
Clears all queue statistics associated with the SDP.
- stp
Clears all STP statistics associated with the SDP.
stp
Syntax
stp
Context
clear>service>statistics>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command clears all spanning tree statistics for the service ID.
VPRN debug commands
id
Syntax
[no] id service-id
Context
debug>service
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command debugs commands for a specific service.
The no form of this command disables debugging.
Parameters
- service-id
Specifies the ID that uniquely identifies a service.
sap
Syntax
[no] sap sap-id
Context
debug>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command displays Subscriber Host Connectivity Verification (SHCV) events for a particular SAP.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
sap
Syntax
[no] sap sap-id
Context
debug>service>id
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for a specific SAP.
The no form of this command disables debugging.
Parameters
- sap-id
Specifies the physical port identifier portion of the SAP definition. See Common CLI command descriptions for command syntax.
sdp
Syntax
[no] sdp sdp-id:vc-id
Context
debug>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for a specific SDP.
The no form of this command disables debugging.
event-type
Syntax
[no] event-type {config-change | svc-oper-status-change | sap-oper-status-change | sdpbind-oper-status-change}
Context
debug>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables debugging for a particular event type.
The no form of this command disables debugging.
event-type
Syntax
[no] event-type {config-change | oper-status-change}
Context
debug>service>id>sap
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables debugging for a particular event type.
The no form of this command disables debugging.
stp
Syntax
[no] stp
Context
debug>service>id
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables the context for debugging STP.
The no form of this command disables debugging.
all-events
Syntax
all-events
Context
debug>service>id>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for all events.
The no form of this command disables debugging.
bpdu
Syntax
[no] bpdu
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for received and transmitted BPDUs.
The no form of this command disables debugging.
core-connectivity
Syntax
[no] core-connectivity
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for core connectivity.
The no form of this command disables debugging.
exception
Syntax
[no] exception
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for exceptions.
The no form of this command disables debugging.
fsm-state-changes
Syntax
[no] fsm-state-changes
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for FSM state changes.
The no form of this command disables debugging.
fsm-timers
Syntax
[no] fsm-timers
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for FSM timer changes.
The no form of this command disables debugging.
port-role
Syntax
[no] port-role
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for changes in port roles.
The no form of this command disables debugging.
port-state
Syntax
[no] port-state
Context
debug>service>stp
Platforms
7210 SAS-K 2F6C4T and 7210 SAS-K 3SFP+ 8C
Description
This command enables STP debugging for port states.
The no form of this command disables debugging.