i Commands – Part II

Context

[Tree] (config>service>dynsvc>ladb>user index)

Full Context

configure service dynamic-services local-auth-db user-name index

Description

This command creates an index entry containing authentication data for a dynamic service SAP. Up to 32 indexes can be created per user name entry, representing up to 32 dynamic service SAPs that can be instantiated with a single dynamic service data trigger. One of the dynamic service SAPs must be the data trigger SAP.

The no form of this command removes the index entry from the user name entry in the local authentication database configuration.

Parameters

index

Specifies the index entry identifier.

Values

1 to 32

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>router>p2mp-sr-tree>p2mp-policy>candidate-path>instances index)

Full Context

configure router p2mp-sr-tree p2mp-policy candidate-path path-instances index

Description

This command configures the candidate path instance for the P2MP SR tree as primary or secondary, and the instance identifier.

The no form of this command removes the candidate path instance.

Parameters

index-id

Specifies the instance as primary (1) or secondary (2).

Values

1, 2

instance-value

Specifies the instance identifier.

Values

1 to 4294967295

Platforms

All

Context

[Tree] (config>service>vprn>static-route-entry indirect)

Full Context

configure service vprn static-route-entry indirect

Description

This command specifies that the route is indirect and specifies the next hop IP address used to reach the destination.

The configured ip-address is not directly connected to a network configured on this node. The destination can be reached via multiple paths. The indirect address can only be resolved from dynamic routing protocol. Another static route cannot be used to resolve the indirect address.

The ip-address configured here can be either on the network side or the access side and is typically at least one hop away from this node.

Default

no indirect

Parameters

ip-address

The IP address of the IP interface.

Values

ipv4-address	a.b.c.d
ipv6-address	x:x:x:x:x:x:x:x-[interface]

Platforms

All

Context

[Tree] (config>router>static-route-entry indirect)

Full Context

configure router static-route-entry indirect

Description

This command specifies that the route is indirect and specifies the next hop IP address used to reach the destination.

The configured ip-address is not directly connected to a network configured on this node. The destination can be reached via multiple paths. The indirect address can only be resolved from dynamic routing protocol. Another static route cannot be used to resolve the indirect address.

The ip-address configured here can be either on the network side or the access side and is typically at least one hop away from this node.

Default

no indirect

Parameters

ip-address

Specifies the IP address of the IP interface.

Values

ipv4-address	a.b.c.d
ipv6-address	x:x:x:x:x:x:x:x-[interface]

Platforms

All

Context

[Tree] (config>li>x-interfaces ine-identifier)

Full Context

configure li x-interfaces ine-identifier

Description

This command configures the Intercepting Network Element (INE).

The no form of this command reverts to the default.

Parameters

identifier

Specifies the INE name, up to 32 characters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (info)

Full Context

info

Description

This command displays the running configuration for the configuration context where it is entered and all branches below that context level. It can be used in any branch under configure, but not with configure itself.

By default, the command only enters the configuration parameters that vary from the default values.

The detail keyword causes all configuration parameters to be displayed. The include-dynamic objective keyword includes configuration parameters from dynamic sources such as dynamic data services Python scripts. These dynamic configuration parameters are not saved in the configuration file.

The operational keyword is available in edit-cfg mode only, in which case the keyword is mandatory when using the info command.

Example:

A:ALA-48>config>router>if-attr# info
------------------------------------
            admin-group "green" value 15
            admin-group "red" value 25
            admin-group "yellow" value 20
A:ALA-48>config>router>mpls# info
------------------------------------
            interface "system"
            exit
            interface "to-104"
                admin-group "green"
                admin-group "red"
                admin-group "yellow"
                label-map 35
                    swap 36 nexthop 10.10.10.91
                    no shutdown
                exit
            exit
            path "secondary-path"
                hop 1 10.10.0.111  strict
                hop 2 10.10.0.222  strict
                hop 3 10.10.0.123  strict
                no shutdown
            exit
            path "to-NYC"
                hop 1 10.10.10.104  strict
                hop 2 10.10.0.210  strict
                no shutdown
            exit
            path "to-104"
                no shutdown
            exit
            lsp "to-104"
                to 10.10.10.104
                from 10.10.10.103
                rsvp-resv-style ff
                cspf
...
----------------------------------------------
A:ALA-48>config>router>mpls#
A:ALA-48>config>router>mpls# info detail
----------------------------------------------
            frr-object
            no resignal-timer
            interface "system"
                no admin-group
                no shutdown
            exit
            interface "to-104"
                admin-group "green"
                admin-group "red"
                admin-group "yellow"
                label-map 35
                    swap 36 nexthop 10.10.10.91
                    no shutdown
                exit
                no shutdown
            exit
            path "secondary-path"
                hop 1 10.10.0.111  strict
                hop 2 10.10.0.222  strict
                hop 3 10.10.0.123  strict
                no shutdown
            exit
            path "to-NYC"
                hop 1 10.10.10.104  strict
                hop 2 10.10.0.210  strict
                no shutdown
            exit
            path "to-104"
                no shutdown
            exit
            lsp "to-104"
                to 10.10.10.104
                from 10.10.10.103
                rsvp-resv-style ff
                adaptive
                cspf
                include "red"
                exclude "green"
                adspec
                fast-reroute one-to-one
                    no bandwidth
                    no hop-limit
                    node-protect
                exit
                hop-limit 10
                retry-limit 0
                retry-timer 30
                secondary "secondary-path"
                    no standby
                    no hop-limit
                    adaptive
                    no include
                    no exclude
                    record
                    record-label
                    bandwidth 50000
                    no shutdown
                exit
                primary "to-NYC"
                    hop-limit 50
                    adaptive
                    no include
                    no exclude
                    record
                    record-label
                    no bandwidth
                    no shutdown
                exit
                no shutdown
            exit
...
----------------------------------------------
A:ALA-48>config>router>mpls#

Parameters

detail

Displays all configuration parameters including parameters at their default values.

objective

Provides an output objective that controls the configuration parameters to be displayed.

Values

include-dynamic: includes configuration parameters from dynamic sources such as dynamic data services Python scripts.

Platforms

All

Context

[Tree] (config>port>ethernet>efm-oam>link-mon>local-sf-action info-notification)

Full Context

configure port ethernet efm-oam link-monitoring local-sf-action info-notification

Description

The context allows the operator to set different flags in the Information OAM PDU. The flags can be used to notify the peer that a local signal failure threshold has been exceeded within the configured window. This is useful when the local node supports the link monitoring function, but the remote peer does not support this capability. Information OAM PDUs are sent on the interval where the Event Notification OAM PDU is typically only sent on the initial sf-threshold crossing event. It is strongly suggested one of the Information OAM PDU Flag fields used to continually communicate current monitor state to the peer.

Interactions: The signal failure threshold will trigger these actions.

Platforms

All

Context

[Tree] (config>system>management-interface>cli>md-cli>environment info-output)

Full Context

configure system management-interface cli md-cli environment info-output

Description

Commands in this context configure the elements that are displayed in the MD-CLI session.

Platforms

All

Context

[Tree] (config>port>modify-buffer-allocation-rate ing-percentage-of-rate)

Full Context

configure port modify-buffer-allocation-rate ing-percentage-of-rate

Description

This command increases or decreases the active bandwidth associated with the ingress port that affects the amount of ingress buffer space managed by the port. Changing a port’s active bandwidth using the ing-percentage-of-rate command is an effective means of artificially lowering the buffers managed by one ingress port and giving them to other ingress ports on the same MDA.

The ing-percentage-of-rate command accepts a percentage value that increases or decreases the active bandwidth based on the defined percentage. A value of 50% causes the active bandwidth to be reduced by 50%. A value of 150% causes the active bandwidth to be increased by 50%. Values from 1 to 1000 percent are supported.

A value of 100 (the default value) is equivalent to executing the no ing-percentage-of-rate command and restores the ingress active rate to the normal value.

The no form of this command removes any artificial increase or decrease of the ingress active bandwidth used for ingress buffer space allocation to the port. The no ing-percentage-of-rate command sets the ingress rate percentage to 100%.

Parameters

ing-rate-percentage

The ing-rate-percentage parameter is required and specifies the percentage value used to modify the current ingress active bandwidth of the port. This does not actually change the bandwidth available on the port in any way. The defined ing-rate-percentage parameter is multiplied by the ingress active bandwidth of the port. A value of 150 results in an increase of 50% (1.5 x Rate).

Values

1 to 1000

Default

100 (no change to active rate)

Platforms

All

Context

[Tree] (config>port>hybrid-buffer-allocation ing-weight)

Full Context

configure port hybrid-buffer-allocation ing-weight

Description

This command configures the sharing of the ingress buffers allocated to a hybrid port among the access and network contexts. By default, it is split equally between network and access.

The no form of this command reverts to the default values for the ingress access and network weights.

Parameters

access-weight

Specifies the access weight as an integer.

Values

0 to 100

Default

50

network-weight

Specifies the network weight as an integer.

Values

0 to 100

Default

50

Platforms

All

Context

[Tree] (config>card>fp ingress)

Full Context

configure card fp ingress

Description

This command enables access to the ingress fp CLI context.

Platforms

All

Context

[Tree] (config>subscr-mgmt>ancp>ancp-policy ingress)

Full Context

configure subscriber-mgmt ancp ancp-policy ingress

Description

Commands in this context configure ingress ANCP policy parameters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>msap-policy>vpls-only ingress)

[Tree] (config>subscr-mgmt>msap-policy>ies-vprn ingress)

Full Context

configure subscriber-mgmt msap-policy vpls-only-sap-parameters ingress

configure subscriber-mgmt msap-policy ies-vprn-only-sap-parameters ingress

Description

Commands in this context configure ingress policies for Managed SAPs (MSAPs).

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>sla-profile ingress)

Full Context

configure subscriber-mgmt sla-profile ingress

Description

Commands in this context configure ingress parameters for the SLA profile.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>sub-if>grp-if ingress)

Full Context

configure service vprn subscriber-interface group-interface ingress

Description

Commands in this context configure ingress network filter parameters for the interface.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>sub-if>grp-if>sap ingress)

[Tree] (config>service>vprn>sub-if>grp-if>sap ingress)

Full Context

configure service ies subscriber-interface group-interface sap ingress

configure service vprn subscriber-interface group-interface sap ingress

Description

Commands in this context configure ingress SAP Quality of Service (QoS) policies and filter policies.

If no SAP ingress QoS policy is defined, the system default sap-ingress QoS policy is used for ingress processing. If no ingress filter is defined, no filtering is performed.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vpls>mesh-sdp ingress)

[Tree] (config>service>vpls>spoke-sdp ingress)

[Tree] (config>service>ies>if>sap ingress)

[Tree] (config>service>ies>red-if>spoke-sdp>egress ingress)

[Tree] (config>service>vpls>sap ingress)

[Tree] (config>service>ies>if>spoke-sdp ingress)

Full Context

configure service vpls mesh-sdp ingress

configure service vpls spoke-sdp ingress

configure service ies interface sap ingress

configure service ies red-if spoke-sdp egress ingress

configure service vpls sap ingress

configure service ies interface spoke-sdp ingress

Description

Commands in this context configure ingress Quality of Service (QoS) policies and filter policies.

If no QoS policy is defined, the system default sap-ingress QoS policy is used for ingress processing. If no ingress filter is defined, no filtering is performed.

Platforms

All

Context

[Tree] (config>port>access ingress)

[Tree] (config>card>mda>access ingress)

Full Context

configure port access ingress

configure card mda access ingress

Description

Commands in this context configure ingress buffer pool parameters which define the percentage of the pool buffers that are used for CBS calculations and specify the slope policy that is configured in the config>qos>slope-policy context.

On the MDA level, access ingress pools are only allocated on channelized MDAs.

Platforms

All

Context

[Tree] (config>port>ethernet>access ingress)

Full Context

configure port ethernet access ingress

Description

This command configures Ethernet access ingress port parameters.

Platforms

All

Context

[Tree] (config>service>ipipe>sap ingress)

[Tree] (config>service>epipe>sap ingress)

[Tree] (config>service>cpipe>sap ingress)

Full Context

configure service ipipe sap ingress

configure service epipe sap ingress

configure service cpipe sap ingress

Description

Commands in this context configure ingress SAP Quality of Service (QoS) policies.

If no sap-ingress QoS policy is defined, the system default sap-ingress QoS policy is used for ingress processing.

Platforms

All

• configure service ipipe sap ingress
• configure service epipe sap ingress

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

• configure service cpipe sap ingress

Context

[Tree] (config>service>cpipe>spoke-sdp ingress)

[Tree] (config>service>epipe>spoke-sdp ingress)

[Tree] (config>service>ipipe>spoke-sdp ingress)

Full Context

configure service cpipe spoke-sdp ingress

configure service epipe spoke-sdp ingress

configure service ipipe spoke-sdp ingress

Description

This command configures the ingress SDP context.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

• configure service cpipe spoke-sdp ingress

All

• configure service ipipe spoke-sdp ingress
• configure service epipe spoke-sdp ingress

Context

[Tree] (config>service>template>epipe-sap-template ingress)

Full Context

configure service template epipe-sap-template ingress

Description

Commands in this context configure ingress SAP Quality of Service (QoS) policies and filter policies.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vpls>vxlan>network ingress)

Full Context

configure service vpls vxlan network ingress

Description

Commands in this context configure network ingress parameters for the VPLS VXLAN service.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, 7950 XRS, VSR

Context

[Tree] (config>service>ies>aarp-interface>spoke-sdp ingress)

Full Context

configure service ies aarp-interface spoke-sdp ingress

Description

Commands in this context configure the ingress for a spoke SDP.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>if>vpls ingress)

Full Context

configure service ies interface vpls ingress

Description

The ingress node in this context under the vpls binding is used to define the routed IPv4 and IPv6 optional filter overrides.

Platforms

All

Context

[Tree] (config>service>ies>if ingress)

Full Context

configure service ies interface ingress

Description

This command enters context to configure ingress parameters for network interfaces.

Platforms

All

Context

[Tree] (config>service>vprn>network ingress)

Full Context

configure service vprn network ingress

Description

Commands in this context configure network ingress parameters for the VPRN service.

Platforms

All

Context

[Tree] (config>service>vprn>aarp-interface>spoke-sdp ingress)

Full Context

configure service vprn aarp-interface spoke-sdp ingress

Description

Commands in this context configure the ingress for a spoke SDP.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>if ingress)

Full Context

configure service vprn interface ingress

Description

This command enters context to configure ingress parameters for network interfaces.

Platforms

All

Context

[Tree] (config>service>vprn>if>sap ingress)

Full Context

configure service vprn interface sap ingress

Description

Commands in this context configure ingress SAP Quality of Service (QoS) policies and filter policies.

If no sap-ingress QoS policy is defined, the system default sap-ingress QoS policy is used for ingress processing. If no ingress filter is defined, no filtering is performed.

Platforms

All

Context

[Tree] (config>service>vprn>if>vpls ingress)

Full Context

configure service vprn interface vpls ingress

Description

The ingress node in this context under the vpls binding is used to define the routed IPv4 and IPv6 optional filter overrides.

Platforms

All

Context

[Tree] (config>service>vprn>aa-interface>sap ingress)

[Tree] (config>service>ies>aa-interface>sap ingress)

Full Context

configure service vprn aa-interface sap ingress

configure service ies aa-interface sap ingress

Description

Commands in this context configure ingress parameters.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>card>mda>network ingress)

Full Context

configure card mda network ingress

Description

Commands in this context configure MDA-level IOM Quality of Service (QoS).

Platforms

All

Context

[Tree] (config>service>ies>video-interface>video-sap ingress)

[Tree] (config>service>vprn>video-interface>video-sap ingress)

Full Context

configure service ies video-interface video-sap ingress

configure service vprn video-interface video-sap ingress

Description

Commands in this context configure in parameters for the service’s video SAP.

Platforms

7450 ESS, 7750 SR, 7750 SR-s

Context

[Tree] (config>mirror>mirror-dest>remote-src>spoke-sdp ingress)

[Tree] (config>mirror>mirror-dest>spoke-sdp ingress)

[Tree] (config>service>vprn>ipmirrorif>spoke-sdp ingress)

[Tree] (config>service>vprn>red-if>spoke-sdp ingress)

Full Context

configure mirror mirror-dest remote-source spoke-sdp ingress

configure mirror mirror-dest spoke-sdp ingress

configure service vprn ip-mirror-interface spoke-sdp ingress

configure service vprn redundant-interface spoke-sdp ingress

Description

Commands in this context configure spoke SDP ingress parameters.

Platforms

All

• configure mirror mirror-dest remote-source spoke-sdp ingress
• configure service vprn ip-mirror-interface spoke-sdp ingress

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

• configure mirror mirror-dest spoke-sdp ingress

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

• configure service vprn redundant-interface spoke-sdp ingress

Context

[Tree] (config>qos>network ingress)

Full Context

configure qos network ingress

Description

This command is used to enter the CLI node that creates or edits policy entries that specify the DiffServ code points-to-forwarding class mapping for all IP packets and define the MPLS EXP bits-to-forwarding class mapping for all labeled packets.

When premarked IP or MPLS packets ingress on a network port, they get a Per Hop Behavior (that is, the QoS treatment through the router, based on the mapping defined under the current node).

Platforms

All

Context

[Tree] (config>qos>queue-group-templates ingress)

Full Context

configure qos queue-group-templates ingress

Description

Commands in this context create ingress queue group templates. Ingress queue group templates can be applied to ingress ports to create an ingress queue group of the same name.

An ingress template must be created for a group-name prior to creating a queue group with the same name on an ingress port.

Platforms

All

Context

[Tree] (config>router>if ingress)

Full Context

configure router interface ingress

Description

This command enables access to the context to configure ingress network filter policies for the IP interface. If an ingress filter is not defined, no filtering is performed.

Platforms

All

Context

[Tree] (config>service>cust>multi-service-site ingress)

Full Context

configure service customer multi-service-site ingress

Description

Commands in this context configure the ingress node associate an existing scheduler policy name with the customer site. The ingress node is an entity to associate commands that complement the association.

Platforms

All

Context

[Tree] (config>service>pw-template ingress)

Full Context

configure service pw-template ingress

Description

Commands in this context configure spoke SDP binding ingress filter parameters.

Platforms

All

Context

[Tree] (config>service>sdp>binding>pw-port ingress)

Full Context

configure service sdp binding pw-port ingress

Description

This command configures ingress parameters for the PW port.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>subscr-mgmt>sub-prof ingress)

Full Context

configure subscriber-mgmt sub-profile ingress

Description

Commands in this context configure subscriber profile ingress setting parameters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (cfg>service>vprn>vxlan>inst>network ingress)

Full Context

configure service vprn vxlan instance network ingress

Description

Commands in this context configure VPRN VXLAN ingress setting parameters.

Platforms

7750 SR-1, 7750 SR-s

Context

[Tree] (config>card>fp ingress-buffer-allocation)

Full Context

configure card fp ingress-buffer-allocation

Description

This command allows the user to configure an ingress buffer allocation percentage per forwarding plane from 20.00% to 80.00%. Ingress buffer allocation applies to user-accessible buffers (total buffers less those reserved for system use).

The ingress buffer allocation percentage determines how much of the user-accessible buffers will be available for ingress purposes. The remaining buffers will be available for egress purposes.

This command is supported on all 50G FP2-based and 100G/200G FP3-based hardware. It is not supported on other FP2 or FP3-based hardware, nor on FP4-based hardware.

The no form of this command reverts the ingress buffer allocation to the default value.

Default

ingress-buffer-allocation 50.00

Parameters

percentage

Specifies the buffer allocation percentage.

Values

20.00 to 80.00

Platforms

7450 ESS, 7750 SR-7/12/12e, 7750 SR-a, 7750 SR-e, 7950 XRS

Context

[Tree] (config>sflow ingress-counter-map)

Full Context

configure sflow ingress-counter-map

Description

This command configures the ingress counter map for sFlow. The map must be configured so sFlow agent understands how to interpret data collected against SAP queues and policers. Multiple queues/policers can be mapped to the same traffic-type using separate line entries.

The no form of this command deletes a SAP policy queue/policer from the map.

Parameters

policer-id

Specifies the policer ID in a SAP ingress QoS policy. If the SAP policy does not have a policer with the specified ID, the map entry will be ignored for this SAP.

Values

1 to 32

queue-id

Specifies the queue ID in a SAP ingress QoS policy. If the SAP policy does not have a queue with the specified ID, the map entry will be ignored for this SAP.

Values

1 to 32

Platforms

7750 SR, 7750 SR-s, 7950 XRS

Context

[Tree] (config>subscr-mgmt>cat-map>category>exh-lvl ingress-ip-filter-entries)

Full Context

configure subscriber-mgmt category-map category exhausted-credit-service-level ingress-ip-filter-entries

Description

Commands in this context configure the ingress IP filter parameters.

The no form of this command reverts to the default.

Default

ingress-ip-filter-entries

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>cat-map>category>exh-lvl ingress-ipv6-filter-entries)

Full Context

configure subscriber-mgmt category-map category exhausted-credit-service-level ingress-ipv6-filter-entries

Description

Commands in this context configure the ingress IPv6 filter parameters.

The no form of this command reverts to the default.

Default

ingress-ipv6-filter-entries

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (debug>mirror-source ingress-label)

Full Context

debug mirror-source ingress-label

Description

This command enables ingress mirroring based on MPLS labels with the following limitations.

• The ingress label provisioned must be a MPLS transport label and can be at any label stack as long as it is known by the system. Transport label distributed by LDP, RSVP, and segment routing are supported. For BGP-specific label distribution mirroring, the following are supported.

  • BGP label-unicast (RFC 8277, Using BGP to Bind MPLS Labels to Address Prefixes)

  • VPN service labels distributed by BGP for Carrier Supporting Carrier (CSC) VPNs (RFC 4364, BGP/MPLS IP Virtual Private Networks (VPNs))

  • VPN service labels distributed by BGP in an ASBR (inter-as-option-B)

  • VPN service labels distributed by BGP in a route reflector with next-hop-self (RR + NHS)

• VPN service label mirroring is not supported in a provider edge (PE) router.

• The ingress label can only be mirrored to a single mirror destination. If the same label is defined with multiple mirror destinations, an error is generated and the original mirror destination remains unchanged.

The ingress label mirror source overrides all other mirror source definitions. The MPLS frame is mirrored to the mirror destination as it is received on the ingress network port. The router MPLS label space is global for the system. A specific label is mirrored to a mirror destination regardless of the ingress interface. In addition to mirroring known labels, debug also allows pre-provisioning label values which are yet to be known by the system. Be aware that debug mirroring requires provisioning of static label values while labels distributed by label distribution protocols are dynamic in nature. Therefore, when label values change due to network changes, labels provisioned in debug mirroring must be changed or deleted manually.

By default, no ingress MPLS frames are mirrored. The ingress-label command must be executed to start mirroring on a specific MPLS label.

Parameters

label

Specifies up to eight transport labels received on ingress to be mirrored. Each label can only be mirrored to a single mirror destination.

If the label does not exist on any ingress network ports, no packets are mirrored for that label. An error will not occur. Once the label exists on a network port, ingress mirroring begins for that label.

Values

0 to 1048575

The local MPLS stack may not support portions of this range.

Platforms

All

Context

[Tree] (config>qos>fp-resource-policy>queues ingress-percent-of-total)

Full Context

configure qos fp-resource-policy queues ingress-percent-of-total

Description

This command configures the percentage of the total number of queues on the FP on which the policy is applied that are allocated to ingress, with the remainder allocated to egress. The ingress and egress buffer pool sizes are not affected by the queue allocation.

The allocation is performed in sets of 8192 queues, with a minimum of 8192 queues at ingress and 8192 queues at egress. If the percentage configured results in the queue allocation not being a multiple of 8192, the number of queues at ingress is rounded down to the next 8192 boundary, and consequently the number of queues at egress is rounded up to the next 8192 boundary, both while respecting the minimum at ingress and egress.

If the FP resources policy being applied to any FP and the updated allocation is not achievable with the current ingress or egress queue consumption on any of the related FPs, then the command fails.

The configuration of ingress-percent-of-total command, including removing this parameter to return to its default configuration, causes the router to immediately reset the associated cards, XIOMs, and MDAs, except on the 7750 SR-1 where the configuration must be saved, and the router rebooted, immediately after committing the configuration transaction.

The no form of this command reverts the percentage of ingress queues, and consequently egress queues, to their default allocation.

Default

ingress-percent-of-total 50.00

Parameters

percent-of-total-queues

Specifies the percentage of total ingress queues as two fraction digits.

Values

4.00 to 97.00

Platforms

7450 ESS, 7750 SR, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>dsm ingress-policer)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>dsm ingress-policer)

Full Context

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range distributed-sub-mgmt ingress-policer

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range distributed-sub-mgmt ingress-policer

Description

This command specifies the ingress policer applied to all UEs corresponding to default vlan-range (such as group-interface) or the specified vlan-range. The policer can be created in the config>subscr-mgmt>isa-policer context. The ingress policer can be overridden per UE from RADIUS via access-accept or COA.

The no form of this command reverts to the default.

Parameters

policer-name

Specifies the identifier of the distributed-sub-mgmt policer for ingress traffic.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>port>ethernet ingress-rate)

Full Context

configure port ethernet ingress-rate

Description

This command configures the maximum amount of ingress bandwidth that this port can receive with the configured sub-rate using packet-based accounting.

The no form of this command returns the value to the default.

Default

no ingress-rate

Parameters

sub-rate

Specifies the ingress rate, in Mb/s.

Values

1 to 400000

Platforms

All

Context

[Tree] (config>service>vpls>bgp-evpn ingress-repl-inc-mcast-advertisement)

Full Context

configure service vpls bgp-evpn ingress-repl-inc-mcast-advertisement

Description

This command enables and disables the advertisement of the Inclusive Multicast Ethernet Tag route (IMET route) with tunnel-type Ingress-Replication in the PMSI Tunnel Attribute, or with the tunnel-type Composite Point-to-Multipoint and Ingress-Replication (P2MP+IR) in the root-and-leaf nodes. The following must be considered:

• When no ingress-repl-inc-mcast-advertisement is configured, no IMET routes will be sent for the service unless the provider-tunnel is configured with owner bgp-evpn-mpls and root-and-leaf, in which case, an IMET-P2MP route is sent.

• When ingress-repl-inc-mcast-advertisement and provider-tunnel are configured for bgp-evpn-mpls with root-and-leaf, the system will send an IMET-P2MP-IR route, that is, an IMET route with a composite P2MP+IR tunnel type.

• When no ingress-repl-inc-mcast-advertisement and assisted-replication replicator are configured, the system will send IMET-AR routes, but IMET-IR routes will not be sent.

Default

ingress-repl-inc-mcast-advertisement

Platforms

All

Context

[Tree] (config>service>vpls>bgp-evpn>mpls ingress-replication-bum-label)

Full Context

configure service vpls bgp-evpn mpls ingress-replication-bum-label

Description

This command allows the user to configure the system so that a separate label is sent for BUM (Broadcast, Unknown unicast and Multicast) traffic in a specified service. By default ( no ingress-replication-bum-label), the same label is used for unicast and flooded BUM packets when for-warding traffic to remote PEs.

When saving labels, this might cause transient traffic duplication for all-active multi-homing. By enabling ingress-replication-bum-label, the system will advertise two labels per EVPN VPLS instance, one for unicast and one for BUM traffic. The ingress PE will use the BUM label for flooded traffic to the advertising egress PE, so that the egress PE can determine if the unicast traffic has been flooded by the ingress PE. Depending on the scale required in the network, the user may choose between saving label space or avoiding transient packet duplication sent to an all-active multi-homed CE for certain macs.

Default

no ingress-replication-bum-label

Platforms

All

Context

[Tree] (config>router>mpls ingress-statistics)

Full Context

configure router mpls ingress-statistics

Description

Commands in this context enable ingress-statistics on an MPLS-TP LSP.

Platforms

All

Context

[Tree] (config>router>mpls>lsp ingress-statistics)

Full Context

configure router mpls lsp ingress-statistics

Description

Commands in this context enter the LSP names for the purpose of enabling ingress data path statistics at the terminating node of the LSP, for example, egress LER.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>router>mpls>fwd-policies>fwd-policy ingress-statistics)

Full Context

configure router mpls forwarding-policies forwarding-policy ingress-statistics

Description

This command configures ingress statistics in an MPLS forwarding policy.

The ingress statistics are associated with a binding label, that is the ILM of the forwarding policy, and provides aggregate packet and byte counters for packets matching the binding label.

The no form of this command removes the statistics from the MPLS forwarding policy.

Platforms

All

Context

[Tree] (config>router>ospf>segm-rtng ingress-statistics)

[Tree] (config>router>isis>segm-rtng ingress-statistics)

[Tree] (config>router>ospf3>segm-rtng ingress-statistics)

Full Context

configure router ospf segment-routing ingress-statistics

configure router isis segment-routing ingress-statistics

configure router ospf3 segment-routing ingress-statistics

Description

Commands in this context configure the ingress statistics for IGP SIDs.

Platforms

All

Context

[Tree] (config>router>segment-routing>sr-policies ingress-statistics)

Full Context

configure router segment-routing sr-policies ingress-statistics

Description

This command administratively enables the collection of ingress traffic statistics for all segment routing policies. The statistics provide counts for the number of incoming packets and bytes corresponding to each (color, endpoint) combination.

If there are any SR-MPLS interfaces on an FP2 or older line-cards, an attempt to enable this command will fail.

The no form of this command disables ingress stats collection for all segment routing policies.

Default

no ingress-statistics

Platforms

All

Context

[Tree] (config>router>policy-options>policy-statement>default-action ingress-statistics)

[Tree] (config>router>policy-options>policy-statement>entry>action ingress-statistics)

Full Context

configure router policy-options policy-statement default-action ingress-statistics

configure router policy-options policy-statement entry action ingress-statistics

Description

This command enables the allocation of statistical indexes to BGP-LU route entries that are programmed on ingress data paths. For effective operation, a prefix must be advertised with a label per prefix for ILM statistics.

The no form of this command disables the allocation of statistical indexes to BGP-LU route entries.

Default

no ingress-statistics

Platforms

All

Context

[Tree] (config>card>mda ingress-xpl)

Full Context

configure card mda ingress-xpl

Description

Commands in this context configure ingress MDA XPL interface error parameters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (debug>router>ldp>peer>packet init)

Full Context

debug router ldp peer packet init

Description

This command enables debugging for LDP Init packets.

The no form of the command disables the debugging output.

Parameters

detail

Displays detailed information.

Platforms

All

Context

[Tree] (config>app-assure>group>tcp-optimizer init-cwnd-size)

Full Context

configure application-assurance group tcp-optimizer init-cwnd-size

Description

This command configures the maximum segment size (MSS) of the initial congestion window used by the TCP optimizer (TCPO) during the Slow Start (SS) period.

Default

10

Parameters

init-cwnd-size

Specifies the MSS of the initial TCP congestion window.

Values

1 to 256

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>if>ipv6>vrrp init-delay)

Full Context

configure service ies interface ipv6 vrrp init-delay

Description

This command configures a VRRP initialization delay timer.

Default

no init-delay

Parameters

seconds

Specifies the initialization delay timer for VRRP, in seconds.

Values

1 to 65535

Platforms

All

Context

[Tree] (config>service>ies>if>vrrp init-delay)

Full Context

configure service ies interface vrrp init-delay

Description

This command configures a VRRP initialization delay timer.

Default

no init-delay

Parameters

seconds

Specifies the initialization delay timer for VRRP, in seconds.

Values

1 to 65535

Platforms

All

Context

[Tree] (config>service>vprn>if>ipv6>vrrp init-delay)

[Tree] (config>service>vprn>if>vrrp init-delay)

Full Context

configure service vprn interface ipv6 vrrp init-delay

configure service vprn interface vrrp init-delay

Description

This command configures a VRRP initialization delay timer.

Default

no init-delay

Parameters

seconds

Specifies the initialization delay timer for VRRP, in seconds.

Values

1 to 65535

Platforms

All

Context

[Tree] (config>router>if>ipv6>vrrp init-delay)

[Tree] (config>router>if>vrrp init-delay)

Full Context

configure router interface ipv6 vrrp init-delay

configure router interface vrrp init-delay

Description

This command configures a VRRP initialization delay timer.

Default

no init-delay

Parameters

seconds

Specifies the initialization delay timer for VRRP, in seconds.

Values

1 to 65535

Platforms

All

Context

[Tree] (config>card>fp init-extract-prio-mode)

Full Context

configure card fp init-extract-prio-mode

Description

This command determines the scheme used to select the initial drop priority of extracted control plane traffic. The initial drop priority of extracted packets can be either low or high priority. The drop priority of the extracted packets can be subsequently altered by mechanisms such as CPU protection. High-priority traffic receives preferential treatment in control plane congestion situations over low-priority traffic.

Default

init-extract-prio-mode uniform

Parameters

uniform

Initializes the drop priority of all extracted control traffic as high priority. Drop priority can then be altered (marked low priority) by distributed CPU protection (DCP) or centralized CPU protection rate-limiting functions in order to achieve protocol and interface isolation.

l3-classify

Initializes the drop priority of Layer 3 extracted control traffic (BGP and OSPF) based on the QoS classification of the packets. This is useful in networks where the DSCP and EXP markings can be trusted as the primary method to distinguish, protect, and isolate good terminating protocol traffic from unknown or potentially harmful protocol traffic instead of using the rate-based DCP and centralized CPU protection traffic marking/coloring mechanisms (for example, out-profile-rate and exceed-action low-priority).

For network interfaces, the QoS classification profile result selects the drop priority (in = high priority, out = low priority) for extracted control traffic, and the default QoS classification maps different DSCP and EXP values to different in/out profile states.

For access interfaces, the QoS classification priority result typically selects the drop priority for extracted control traffic. The default access QoS classification ( default-priority) maps all traffic to low. If the queues in the access QoS policy are configured as profile-mode queues (rather than the default priority-mode) extracted traffic will use the QoS classification profile value configured against the associated FC (rather than the priority result) to select the drop priority.

Layer 2 extracted control traffic (ARP or ETH-CFM) and protocols that cannot always be QoS-classified, such as IS-IS, are initialized as low drop priority in order to protect Layer 2 protocol traffic on uniform interfaces (which would typically be subject to centralized CPU protection). Alternately, DCP can be used (by configuring a non-zero rate with exceed-action of low-priority for the all-unspecified protocol) to mark some of this traffic as high priority.

Platforms

All

Context

[Tree] (config>app-assure>group>tcp-optimizer init-ss-threshold)

Full Context

configure application-assurance group tcp-optimizer init-ss-threshold

Description

This command configures the initial Slow Start (SS) threshold for a given TCP optimizer policy. Nokia recommends to set the threshold close to the access network Bandwidth Delay Product (BDP).

Default

1000000

Parameters

init-ss-threshold

Specifies the initial SS threshold value in kilobytes.

Values

auto, 0 to 1000000

The auto value instructs the system to use an intelligent mechanism to set the optimum value for the initial SS threshold to dynamically track the BDP of the access network.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>sub-if>grp-if>wpp initial-app-profile)

[Tree] (config>subscr-mgmt>loc-user-db>ipoe>host>wpp initial-app-profile)

[Tree] (config>service>vprn>sub-if>grp-if>wpp initial-app-profile)

Full Context

configure service ies subscriber-interface group-interface wpp initial-app-profile

configure subscriber-mgmt local-user-db ipoe host wpp initial-app-profile

configure service vprn subscriber-interface group-interface wpp initial-app-profile

Description

This command specifies the initial app-profile for the hosts created on the group-interface. This initial app-profile is replaced after hosts pass web portal authentication.

The no form of this command reverts to the default.

Default

no initial-app-profile

Parameters

app-profile-name

Specifies the initial application profile, up to 32 characters, to be used during the WPP authentication phase of the IPoE hosts.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>vrgw>brg>brg-profile initial-hold-time)

Full Context

configure subscriber-mgmt vrgw brg brg-profile initial-hold-time

Description

This hold time applies to BRG instances that are created without any hosts; for example, triggered due to proxy authentication. During this initial hold-time the BRG is not deleted and no connectivity-verification is started. When this timer expires, connectivity verification is started. If connectivity verification is disabled and no hosts are associated with the BRG upon expiry, the regular hold time is started and the BRG instance will be removed.

This command allows an operator to have fast BRG removal (no connectivity-verification and no hold-time) but still use BRG proxy authentication. Without an initial hold time the BRG would be removed immediately after creation.

This command does not apply to BRG instances that are created through host setup.

The no form of this command reverts to the default.

Default

initial-hold-time min 5

Parameters

seconds

Specifies the initial time, in seconds, to hold on to a BRG after the system considered it down.

Values

0 to 900

min

Specifies the initial time in minutes.

Values

1 to 15

sec

Specifies the initial time in seconds.

Values

1 to 59

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>dhcp initial-lease-time)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>dhcp initial-lease-time)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>dhcp initial-lease-time)

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>dhcp initial-lease-time)

Full Context

configure service vprn subscriber-interface group-interface wlan-gw dhcp initial-lease-time

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp initial-lease-time

configure service ies subscriber-interface group-interface wlan-gw dhcp initial-lease-time

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp initial-lease-time

Description

This command configures the lease time for a user which is migrant (unauthenticated).

Default

initial-lease-time min 10

Parameters

hours

Specifies the number of initial lease time hours.

Values

1 to 1

minutes

Specifies the number of initial lease time minutes.

Values

5 to 59

seconds

Specifies the number of initial lease time.

Values

1 to 59

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>dhcp6 initial-preferred-lifetime)

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>dhcp6 initial-preferred-lifetime)

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>slaac initial-preferred-lifetime)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>slaac initial-preferred-lifetime)

Full Context

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp6 initial-preferred-lifetime

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp6 initial-preferred-lifetime

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range slaac initial-preferred-lifetime

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range slaac initial-preferred-lifetime

Description

This command specifies the signaled preferred lifetime in DHCPv6 or SLAAC after full authentication (DSM and/or ESM).

The no form of this command reverts to the default.

Default

initial-preferred-lifetime min 5

Parameters

hours

Specifies the number of initial preferred lifetime hours.

Values

1 to 1

minutes

Specifies the number of initial preferred lifetime minutes.

Values

5 to 59

seconds

Specifies the number of initial preferred lifetime seconds.

Values

1 to 59

Combined values: min 5 – hrs 1

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (admin>certificate>cmpv2 initial-registration)

Full Context

admin certificate cmpv2 initial-registration

Description

This command request initial certificate from CA by using CMPv2 initial registration procedure.

The ca parameter specifies a CA-profile which includes CMP server information.

The key-to-certify is an imported key file to be certified by the CA.

The protection-key is an imported key file used to for message protection if protection-alg is signature.

The request is authenticated either of following methods:

• A password and a reference number that pre-distributed by CA via out-of-band means.

• The specified password and reference number are not necessarily in the cmp-keylist configured in the corresponding CA-Profile

• A signature signed by the protection-key or key-to-certify, optionally along with the corresponding certificate. If the protection-key is not specified, system will use the key-to-certify for message protection. The hash algorithm used for signature is depends on key type:

• DSA key: SHA1

• RSA key: MD5/SHA1/SHA224 | SHA256 | SHA384 | SHA512, by default is SHA1

Optionally, the system could also send a certificate or a chain of certificates in extraCerts field. Certificate is specified by the "cert” parameter, it must include the public key of the key used for message protection.

Sending a chain is enabled by specify the send-chain parameter.

subject-dn specifies the subject of the requesting certificate.

save-as specifies full path name of saving the result certificate.

In some cases, CA may not return certificate immediately, due to reason like request processing need manual intervention. In such cases, the admin certificate cmpv2 poll command could be used to poll the status of the request. If key-list is not configured in the corresponding ca-profile, then the system will use the existing password to authenticate the CMPv2 packets from server if it is in password protection.

If key-list is configured in the corresponding ca-profile and server does not send SenderKID, then the system will use lexicographical first key in the key-list to authenticate the CMPv2 packets from server in case it is in password protection.

Parameters

ca-profile-name

Specifies a ca-profile name which includes CMP server information up to 32 characters.

key-filename

Specifies the file name of the key to certify up to 95 characters.

password

Specifies an ASCII string up to 64 characters.

ref-number

Specifies the reference number for this CA initial authentication key up to 64 characters.

cert-file-name

specifies the certificate file up to 95 characters.

ca-profile-name

Specifies to send the chain.

key-file-name

Specifies the protection key associated with the action on the CA profile.

hash-algorithm

Specifies the hash algorithm for RSA key.

Values

md5,sha1,sha224,sha256,sha384,sha512

dn

Specifies the subject of the requesting certificate up to 256 characters.

Values

attr1 equals val1

attr2 equals val2 where: attrN equals {C | ST | O | OU | CN}

save-path-of-result-cert

Specifies the save full path name of saving the result certificate up to 200 characters.

domain-name domain-names

Specifies FQDNs for SubjectAltName of the requesting certificate, separated by commas, up to 512 characters.

ip-address | ipv6-address

Specifies an IPv4 or IPv6 address for SubjectAtName of the requesting certificate.

Platforms

All

Context

[Tree] (config>service>vprn>bgp>group>neighbor initial-send-delay-zero)

[Tree] (config>service>vprn>bgp initial-send-delay-zero)

[Tree] (config>service>vprn>bgp>group initial-send-delay-zero)

Full Context

configure service vprn bgp group neighbor initial-send-delay-zero

configure service vprn bgp initial-send-delay-zero

configure service vprn bgp group initial-send-delay-zero

Description

This command configures BGP to send UPDATE messages announcing reachability information to a peer or set of peers immediately after the sessions come up (become established) with these peers.

The default behavior, provided by the no form of this command, is to wait for min-route-advertisement time after each session is established before sending the first set of UPDATE messages.

Platforms

All

Context

[Tree] (config>router>bgp>group>neighbor initial-send-delay-zero)

[Tree] (config>router>bgp initial-send-delay-zero)

[Tree] (config>router>bgp>group initial-send-delay-zero)

Full Context

configure router bgp group neighbor initial-send-delay-zero

configure router bgp initial-send-delay-zero

configure router bgp group initial-send-delay-zero

Description

This command configures BGP to send UPDATE messages announcing reachability information to a peer or set of peers immediately after the sessions become established with these peers.

The no form of this command waits for min-route-advertisement time after each session is established before sending the first set of UPDATE messages.

Platforms

All

Context

[Tree] (config>service>ies>sub-if>grp-if>wpp initial-sla-profile)

[Tree] (config>subscr-mgmt>loc-user-db>ipoe>host>wpp initial-sla-profile)

[Tree] (config>service>vprn>sub-if>grp-if>wpp initial-sla-profile)

Full Context

configure service ies subscriber-interface group-interface wpp initial-sla-profile

configure subscriber-mgmt local-user-db ipoe host wpp initial-sla-profile

configure service vprn subscriber-interface group-interface wpp initial-sla-profile

Description

This command specifies the initial sla-profile for the hosts created on the group-interface. This initial sla-profile is replaced after hosts pass web portal authentication.

The no form of this command reverts to the default.

Parameters

sla-profile-name

Specifies the initial SLA profile, up to 32 characters, to be used during the WPP authentication phase of the IPOE host.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>router>wpp initial-sla-profile)

Full Context

configure router wpp initial-sla-profile

Description

This command specifies the initial sla-profile for the hosts created on the group-interface. This initial sla-profile is replaced after hosts pass the web portal authentication.

Default

no initial-sla-profile

Parameters

profile-name

Specifies the name of sla-profile.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>sub-if>grp-if>wpp initial-sub-profile)

[Tree] (config>subscr-mgmt>loc-user-db>ipoe>host>wpp initial-sub-profile)

[Tree] (config>service>vprn>sub-if>grp-if>wpp initial-sub-profile)

Full Context

configure service ies subscriber-interface group-interface wpp initial-sub-profile

configure subscriber-mgmt local-user-db ipoe host wpp initial-sub-profile

configure service vprn subscriber-interface group-interface wpp initial-sub-profile

Description

This command specifies the initial sub-profile for the hosts created on the group-interface. This initial sub-profile is replaced after hosts pass web portal authentication.

The no form of this command reverts to the default.

Default

no initial-sub-profile

Parameters

sub-profile-name

Specifies the initial subscriber profile, up to 32 characters, to be used during the WPP authentication phase of the IPoE host.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>dhcp6 initial-valid-lifetime)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>dhcp6 initial-valid-lifetime)

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>ranges>range>slaac initial-valid-lifetime)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>ranges>range>slaac initial-valid-lifetime)

Full Context

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp6 initial-valid-lifetime

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range dhcp6 initial-valid-lifetime

configure service vprn subscriber-interface group-interface wlan-gw vlan-tag-ranges range slaac initial-valid-lifetime

configure service ies subscriber-interface group-interface wlan-gw vlan-tag-ranges range slaac initial-valid-lifetime

Description

This command specifies the signaled preferred lifetime in DHCPv6 or SLAAC during a migrant phase.

The no form of this command reverts to the default.

Default

initial-valid-lifetime min 5

Parameters

hours

Specifies the number of initial preferred lifetime hours.

Values

1 to 1

minutes

Specifies the number of initial preferred lifetime minutes.

Values

5 to 59

seconds

Specifies the number of initial preferred lifetime seconds.

Values

1 to 59

Combined values: min 5 – hrs 1

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>bmp>station initiation-message)

Full Context

configure bmp station initiation-message

Description

This command configures a free-form initiation message for a type 0 TLV to be sent to the BMP monitoring station. The message is transmitted when a BMP monitoring station establishes a connection to the device. Information can be provided to the BMP station system administrator (for example, a contact phone number). The initiation message includes a type 1 TLV containing the SNMP sysDescr value specified in RFC 1213, Management Information Base for Network Management of TCP/IP-based internets: MIB-II, and a type 2 TLV containing the SNMP sysName value also from RFC 1213. The string in the initiation-message is UTF-8 encoded.

The no form of this command removes initiation message from the configuration and causes a free-form message to be included in the type 0 information TLV and the corresponding tlv-length is made 0.

Parameters

initiation-message

Specifies an initiation message up to 256 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Platforms

All

Context

[Tree] (config>qos>sap-ingress>mac-criteria>entry>match inner-tag)

Full Context

configure qos sap-ingress mac-criteria entry match inner-tag

Description

This command configures the matching of the second tag that is carried transparently through the service. The inner tag on ingress is the second tag on the frame if there are no service delimiting tags. The inner tag is the second tag before any service delimiting tags on egress but is dependent in the ingress configuration and may be set to 0 even in cases where additional tags are on the frame. This allows matching VLAN tags for explicit filtering or QoS setting when using default or null encapsulations.

The inner tag is not applicable in ingress on dot1Q SAPs. The inner tag may be populated on egress depending on the ingress SAP type.

On QinQ SAPs of null and default that do not strip tags, the inner-tag will contain the second tag (which is still the second tag carried transparently through the service.) On ingress SAPs that strip any tags, the inner tag will contain 0 even if there are more than two tags on the frame.

The optional vid_mask is defaulted to 4095 (exact match) but may be specified to allow pattern matching. The masking operation is ((value and vid-mask) = = (tag and vid-mask)). A value of 6 and a mask of 7 would match all VIDs with the lower 3 bits set to 6.

For QoS, the VID type cannot be specified on the default QoS policy.

The default vid-mask is set to 4095 for exact match.

Platforms

All

Context

[Tree] (config>filter>mac-filter>entry>match inner-tag)

Full Context

configure filter mac-filter entry match inner-tag

Description

This command configures the matching of the second tag that is carried transparently through the service. The inner-tag on ingress is the second tag on the frame if there are no service delimiting tags. Inner tag is the second tag before any service delimiting tags on egress but is dependent in the ingress configuration and may be set to 0 even in cases where additional tags are on the frame. This allows matching VLAN tags for explicit filtering or QoS setting when using default or null encapsulations.

The inner-tag is not applicable in ingress on dot1Q SAPs. The inner-tag may be populated on egress depending on the ingress SAP type.

On QinQ SAPs of null and default that do not strip tags inner-tag will contain the second tag (which is still the second tag carried transparently through the service.) On ingress SAPs that strip any tags, inner-tag will contain 0 even if there are more than 2 tags on the frame.

The optional vid-mask is defaulted to 4095 (exact match) but may be specified to allow pattern matching. The masking operation is ((value and vid-mask) = = (tag and vid-mask)). A value of 6 and a mask of 7 would match all VIDs with the lower 3 bits set to 6.

For QoS the VID type cannot be specified on the default QoS policy.

The default vid-mask is set to 4095 for exact match.

Default

no inner-tag

Platforms

All

Context

[Tree] (config>system>sync-if-timing>bits input)

Full Context

configure system sync-if-timing bits input

Description

This command provides a context to enable or disable the external BITS timing reference inputs to the central clock of the router. In redundant systems with BITS ports, there are two possible BITS-in interfaces, one for each CPM or CCM.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (cfg>sys>pwr-mgmt>peq input-power-mode)

Full Context

configure system power-management peq input-power-mode

Description

This command sets the input-power-mode of the APEQ for the designated APEQ slot.

Parameters

amperage

Sets the APEQ input power mode.

Values

60, 80

Default

60

Platforms

7750 SR-12e, 7950 XRS

Context

[Tree] (candidate insert)

Full Context

candidate insert

Description

This command inserts the contents of the temporary buffer (populated by a previous copy or delete command) into the candidate configuration. The contents are inserted by default after the current edit point. Optional parameters allow the insertion after some other point of the candidate. The contents of the temporary buffer are deleted when the operator exits candidate edit mode.

Insertions are context-aware. The temporary buffer always stores the CLI context (such as the current CLI branch) for each line deleted or copied. If the lines to be inserted are supported at the context of the insertion point then the lines are simply inserted into the configuration. If the lines to be inserted are not supported at the context of the insertion point, then the context at the insertion point is first closed using multiple exit statements, the context of the lines to be inserted is built (added) into the candidate at the insertion point, then the lines themselves are added, the context of the inserted lines is closed using exit statements and finally the context from the original insertion point is built again leaving the context at the same point as it was before the insertion.

Parameters

line

Indicates where to insert the line starting at the point indicated by the following options.

Values

line, offset, first, edit-point, last
	line	absolute line number
	offset	relative line number to current edit point. Prefixed with '+' or '-'
	first	keyword - first line
	edit-point	keyword - current edit point
	last	keyword - last line that is not 'exit'

Platforms

All

Context

[Tree] (config>service>vprn>nat>inside>nat64 insert-ipv6-fragment-header)

[Tree] (config>router>nat>inside>nat64 insert-ipv6-fragment-header)

Full Context

configure service vprn nat inside nat64 insert-ipv6-fragment-header

configure router nat inside nat64 insert-ipv6-fragment-header

Description

This command specifies whether the NAT64 node will insert IPv6 fragment header to IPv6 packets for which the DF bit is not set in the corresponding IPv4 packet, and is not already a fragment.

The no form of the command disables the insertion.

Default

disabled

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>isa-svc-chain>vas-filter>entry>action insert-nsh)

Full Context

configure subscriber-mgmt isa-service-chaining vas-filter entry action insert-nsh

Description

Commands in this context configure NSH parameters in the steered traffic.

The no form of this command removes insert NSA parameters from the configuration.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>isa-svc-chain>vas-filter>entry>action>insert-nsh>meta-data insert-subscriber-id)

Full Context

configure subscriber-mgmt isa-service-chaining vas-filter entry action insert-nsh meta-data insert-subscriber-id

Description

This command specifies that the metadata to be inserted in NSH (with MD-Type set to 1) must contain a subscriber identifier that is derived from the subscriber string that comes from the AAA server (in Alc-Subsc-Id-Str VSA). The subscriber string is truncated after the first 16 bytes, and therefore, the first 16 bytes should be unique. The insert-subscriber-id and insert-subscriber-id commands are mutually exclusive.

The no form of this command reverts to the default.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>nat inside)

[Tree] (config>router>nat inside)

Full Context

configure service vprn nat inside

configure router nat inside

Description

Commands in this context the inside NAT instance.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>aaa>isa-radius-plcy>acct-include-attributes inside-service-id)

Full Context

configure aaa isa-radius-policy acct-include-attributes inside-service-id

Description

This command enables the inclusion of the NAT inside service ID attributes.

The no form of the command excludes NAT inside service ID attributes.

Default

no inside-service-id

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>router>policy-options>policy-statement>default-action install-backup-path)

[Tree] (config>router>policy-options>policy-statement>entry>action install-backup-path)

Full Context

configure router policy-options policy-statement default-action install-backup-path

configure router policy-options policy-statement entry action install-backup-path

Description

When the best BGP route for an IPv4 or IPv6 prefix is matched by a policy entry or policy default action with this command, BGP attempts to find and install a preprogrammed backup path for the prefix in order to provide BGP fast reroute protection.

The install-backup-path command overrides and has no dependency on commands such as the BGP instance backup-path command or the VPRN-level enable-bgp-vpn-backup command, which enable BGP fast reroute for an entire address family. The install-backup-path command provides more precise control over which IP prefixes are supported with preprogrammed backup paths.

In VPRN, if the best path for an IP prefix is provided by a VPRN BGP route, the backup path can be provided by another VPRN BGP route or an imported VPN-IP route. If the best path for an IP prefix is provided by an imported VPN-IP route, the backup path can be provided by another VPN-IP route.

The install-backup-path command is supported only in BGP and VRF import policies and has no effect on other types. The install-backup-path command applies only to the following types of matched routes: IPv4, IPv6, label-IPv4, label-IPv6, VPN-IPv4, and VPN-IPv6.

The no form of this command disables the install-backup-path functionality.

Default

no install-backup-path

Platforms

All

Context

[Tree] (debug>dynsvc>scripts instance)

Full Context

debug dynamic-services scripts instance

Description

Commands in this context configure dynamic services script debugging for a specific instance.

Parameters

instance

Specifies the instance name.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (cfg>service>vprn>vxlan instance)

Full Context

configure service vprn vxlan instance

Description

Commands in this context configure the specific VXLAN instance.

The no form of this command removes the configuration.

Default

instance 1 vni 1

Parameters

vxlan-instance

Specifies the VXLAN instance number.

Values

1 to 1

vni-id

Specifies the VNI ID.

Values

1 to 16777215

create

Keyword used to create the entry.

Platforms

7750 SR-1, 7750 SR-s

Context

[Tree] (config>router>p2mp-sr-tree>replication-segment instance-id)

Full Context

configure router p2mp-sr-tree replication-segment instance-id

Description

This command configures the instance ID for the P2MP SR tree replication segment entry.

The ID is a unique identifier for the P2MP LSP on the root. The combination of root ID, tree ID, and instance ID uniquely identifies a P2MP LSP throughout the network.

The no form of this command removes the instance.

Default

no instance-id

Parameters

instance-id

Specifies the ID of the instance.

Values

1 to 4294967295

Platforms

All

Context

[Tree] (config>service>vprn>pim>if instant-prune-echo)

Full Context

configure service vprn pim interface instant-prune-echo

Description

This command enables PIM to send an instant prune echo when the router starts the prune pending timer for a group on the interface. All downstream routers will see the prune message immediately, and can send a join override if they are interested in receiving the group. Configuring instant-prune-echo is recommended on broadcast interfaces with more than one PIM neighbor to optimize multicast convergence.

The no form of this command disables instant Prune Echo on the PIM interface.

Default

no instant-prune-echo

Platforms

All

Context

[Tree] (config>router>pim>interface instant-prune-echo)

Full Context

configure router pim interface instant-prune-echo

Description

This command enables PIM to send an instant prune echo when the router starts the prune pending timer for a group on the interface. All downstream routers will see the prune message immediately, and can send a join override if they are interested in receiving the group. Configuring instant-prune-echo is recommended on broadcast interfaces with more than one PIM neighbor to optimize multicast convergence.

The no form of this command disables instant Prune Echo on the PIM interface.

Default

no instant-prune-echo

Platforms

All

Context

[Tree] (config>service>sdp>binding>pw-port>egress>shaper int-dest-id)

Full Context

configure service sdp binding pw-port egress shaper int-dest-id

Description

This command configures an intermediate destination identifier applicable to ESM PW SAPs.

The no form of the command removes the intermediate destination identifier from the configuration.

Default

no int-dest-id

Parameters

int-dest-id

Specifies the intermediate destination ID.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>epipe>pw-port>egress>shaper int-dest-id)

Full Context

configure service epipe pw-port egress shaper int-dest-id

Description

This command configures an intermediate destination identifier applicable to ESM PW SAPs.

Parameters

name

Specifies the default intermediate destination identifier, up to 32 characters in length, on the egress side for this PW-port entry.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>isa>nat-group inter-chassis-redundancy)

Full Context

configure isa nat-group inter-chassis-redundancy

Description

Commands in this context configure inter-chassis redundancy parameters.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>loc-user-db>ppp>host>ident-strings inter-dest-id)

[Tree] (config>subscr-mgmt>loc-user-db>ipoe>host>ident-strings inter-dest-id)

Full Context

configure subscriber-mgmt local-user-db ppp host identification-strings inter-dest-id

configure subscriber-mgmt local-user-db ipoe host identification-strings inter-dest-id

Description

This command specifies the intermediate destination identifier which is encoded in the identification strings.

The no form of this command returns to the default.

Parameters

intermediate-destination-id

Specifies the intermediate destination identifier, up to 32 characters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>ies>if>sap>static-host inter-dest-id)

[Tree] (config>service>vprn>if>sap>static-host inter-dest-id)

[Tree] (config>service>vprn>sub-if>grp-if>sap>static-host inter-dest-id)

[Tree] (config>service>ies>sub-if>grp-if>sap>static-host inter-dest-id)

[Tree] (config>service>vpls>sap>static-host inter-dest-id)

Full Context

configure service ies interface sap static-host inter-dest-id

configure service vprn interface sap static-host inter-dest-id

configure service vprn subscriber-interface group-interface sap static-host inter-dest-id

configure service ies subscriber-interface group-interface sap static-host inter-dest-id

configure service vpls sap static-host inter-dest-id

Description

This command specifies to which intermediate destination (for example a DSLAM) this host belongs.

The no form of this command reverts to the default.

Parameters

intermediate-destination-id

Specifies the intermediate destination identifier, up to 32 characters in length.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>sub-if>grp-if>wlan-gw>mobility inter-vlan)

[Tree] (config>service>ies>sub-if>grp-if>wlan-gw>mobility inter-vlan)

Full Context

configure service vprn subscriber-interface group-interface wlan-gw mobility inter-vlan

configure service ies subscriber-interface group-interface wlan-gw mobility inter-vlan

Description

This command enables mobility within different VLANs of the same range. When enabled, mobility between different VLANs in a single vlan-range is allowed for the configured mobility triggers.

The no form of this command disables mobility between VLANs.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>system>security>radius interactive-authentication)

[Tree] (config>service>vprn>aaa>rmt-srv>radius interactive-authentication)

Full Context

configure system security radius interactive-authentication

configure service vprn aaa remote-servers radius interactive-authentication

Description

This command enables RADIUS interactive authentication for the system. Enabling interactive-authentication forces RADIUS to fall into challenge/response mode.

Default

no interactive-authentication

Platforms

All

Context

[Tree] (config>system>security>tacplus interactive-authentication)

[Tree] (config>service>vprn>aaa>rmt-srv>tacplus interactive-authentication)

Full Context

configure system security tacplus interactive-authentication

configure service vprn aaa remote-servers tacplus interactive-authentication

Description

This configuration instructs the SR OS to send no username nor password in the TACACS+ start message, and to display the server_msg in the GETUSER and GETPASS response from the TACACS+ server. Interactive authentication can be used to support a One Time Password scheme (such as an S/Key). An example flow (such as with a telnet connection) is as follows:

• The SR OS sends an authentication start request to the TACACS+ server with no username nor password.

• TACACS+ server replies with TAC_PLUS_AUTHEN_STATUS_GETUSER and a server_msg.

• The SR OS displays the server_msg, and collects the username.

• The SR OS sends a continue message with the username.

• TACACS+ server replies with TAC_PLUS_AUTHEN_STATUS_GETPASS and a server_msg.

• The SR OS displays the server_msg (which may contain, for example, an S/Key for One Time Password operation), and collects the password.

• The SR OS sends a continue message with the password.

• TACACS+ server replies with PASS or FAIL.

When interactive-authentication is disabled, the SR OS will send the username and password in the tacplus start message. An example flow (such as with a telnet connection) is as follows:

• TAC_PLUS_AUTHEN_TYPE_ASCII.

  • the login username in the "user” field.

  • the password in the user_msg field (while this is non-standard, it does not cause interoperability problems).

• TACACS+ server ignores the password and replies with TAC_PLUS_AUTHEN_STATUS_GETPASS.

• The SR OS sends a continue packet with the password in the user_msg field.

• TACACS+ server replies with PASS or FAIL.

When interactive-authentication is enabled, tacplus must be the first method specified in the authentication-order configuration.

Default

no interactive-authentication

Platforms

All

Context

[Tree] (config>li>li-source>nat>classic-lsn-sub intercept-id)

[Tree] (config>li>li-source>nat>nat64-lsn-sub intercept-id)

[Tree] (config>li>li-source>nat>ethernet-header intercept-id)

[Tree] (config>li>li-source>nat>l2-aware-sub intercept-id)

[Tree] (config>li>li-source>nat>dslite-lsn-sub intercept-id)

Full Context

configure li li-source nat classic-lsn-sub intercept-id

configure li li-source nat nat64-lsn-sub intercept-id

configure li li-source nat ethernet-header intercept-id

configure li li-source nat l2-aware-sub intercept-id

configure li li-source nat dslite-lsn-sub intercept-id

Description

This command configures the intercept-id that is inserted into the packet header for all mirrored packets of the associated li-source entry. This intercept-id can be used (for example by a downstream LI gateway) to identify the particular LI session to which the packet belongs.

For nat mirroring (a nat li-source entry type), when the mirror service is not configured with any routable encap (for example, no ip-udp-shim or ip-gre configured under config>mirror>mirror-dest>encap), the presence of a configured intercept-id against an li-source (nat) entry will cause the insertion of the intercept-id after a configurable mac-da, mac-sa and etype (configured under li-source>nat>ethernet-header), at the front of each packet mirrored for that particular li-source entry. If there is no intercept-id configured (for a nat entry using a mirror service without routable encap), then a configurable mac-da and mac-sa are added to the front of the packets (but no intercept-id). In both cases a non-configurable etype is also added immediately before the mirrored customer packet. Note that routable encapsulation configured in the mirror-dest takes precedence over the ethernet-header configuration in the li-source nat entries. If routable encapsulation is configured, then the ethernet-header config is ignored and no mac header is added to the packet (the encap is determined by the mirror-dest in this case).

For all types of li-source entries (filter, nat, sap, subscriber), when the mirror service is configured with ip-udp-shim routable encap, an intercept-id field (as part of the routable encap) is always present in the mirrored packets. If there is no intercept ID configured for an li-source entry, then the default value will be inserted. When the mirror service is configured with ip-gre routable encap, no intercept-id is inserted and none should be specified against the li-source entries.

The no form of this command removes the value from the configuration.

Default

no intercept-id (an id of 0, or no id)

Parameters

id

Specifies the intercept ID value to insert into the header of the mirrored packets.

Values

1 to 4294967295 (32b) For nat li-source entries that are using a mirror service that is not configured with routable encap

Values

1 to 1,073,741,824 (30b) For all types of li-source entries that are using a mirror service with routable ip-udp-shim encap and no direction-bit.

Values

1 to 536,870,912 (29b) For all types of li-source entries that are using a mirror service with routable ip-udp-shim encap and with the direction-bit enabled.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>li>li-source>wlan-gw intercept-id)

Full Context

configure li li-source wlan-gw intercept-id

Description

This command configures the intercept-id inserted in the packet header for all mirrored packets of the associated li-source. When the mirror service is configured with the ip-udp-shim routable encapsulation, the intercept-id field (as part of the routable encap) is always present in the mirrored packets. The intercept ID can be used by the LIG to identify a particular LI session to which the packet belongs.

Parameters

intercept-id

Specifies the intercept ID inserted in the LI header.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>eth-ring>sub-ring interconnect)

Full Context

configure eth-ring sub-ring interconnect

Description

This command links the G.8032 sub-ring to a ring instance or to a VPLS instance. The ring instance must be a complete ring with two paths but may itself be a sub-ring or a major ring (declared by its configuration on another node).

When the interconnection is to another node, the sub-ring may have a virtual link or a non-virtual-link.

When the sub-ring is configured with a non-virtual link, the sub ring may be alternatively connected to a VPLS service.

This command is only valid on the interconnection node where a single sub-ring port connects to a major ring or terminates on a VPLS service.

The no form of this command removes the interconnect node.

Default

no interconnect

Parameters

ring-id

Specifies the identifier for the ring instance of the connection ring for this sub-ring on this node.

Values

0 to 128

vpls

Specifies that the sub-ring is connected to the VPLS instance that contains the sub-ring SAP.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>subscr-mgmt>loc-user-db>ipoe>host interface)

Full Context

configure subscriber-mgmt local-user-db ipoe host interface

Description

This command specifies the interface where IPoE sessions are terminated.

The no version of this command disables the parameter.

Parameters

ip-int-name

Specifies the name of the group interface.

service-id

Specifies the service ID or name where the group interface resides.

Values

service-id — 1 to 2147483647

service-name — up to 64 characters

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>loc-user-db>ppp>host interface)

Full Context

configure subscriber-mgmt local-user-db ppp host interface

Description

This command configures the interface where PPP sessions are terminated.

The no form of this command reverts to the default.

Parameters

ip-int-name

Specifies the name of the group interface, up to 32 characters, where the PPP sessions are established.

service-id

Specifies the service ID or name of the service where the PPP sessions are established.

Values

service-id: 1 to 2147483647

service-name: up to 64 characters

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>dhcp6 interface)

[Tree] (config>service>vprn>dhcp interface)

Full Context

configure service vprn dhcp6 interface

configure service vprn dhcp interface

Description

Commands in this context configure interface parameters.

Parameters

ip-int-name

Specifies the name of the IP interface, up to 32 characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn interface)

[Tree] (config>service>ies interface)

Full Context

configure service vprn interface

configure service ies interface

Description

This command creates a logical IP routing interface. Once created, attributes like an IP address and service access point (SAP) can be associated with the IP interface.

The interface command, under the context of services, is used to create and maintain IP routing interfaces within service IDs. The interface command can be executed in the context of a service ID. The IP interface created is associated with the service core network routing instance and default routing table. The typical use for IP interfaces created in this manner is for subscriber Internet access. An IP address cannot be assigned to an IES interface. Multiple SAPs can be assigned to a single group interface.

Interface names are case sensitive and must be unique within the group of defined IP interfaces defined for config>router>interface, config>service>ies>interface and config>service>vprn>interface (that is, the network core router instance). Interface names must not be in the dotted decimal notation of an IP address. For example, the name "1.1.1.1” is not allowed, but "int-1.1.1.1” is allowed. Show commands for router interfaces use either interface names or the IP addresses. Use unique IP address values and IP address names to maintain clarity. It could be unclear to the user if the same IP address and IP address name values are used. Although not recommended, duplicate interface names can exist in different router instances.

When a new name is entered, a new logical router interface is created. When an existing interface name is entered, the user enters the router interface context for editing and configuration.

By default, there are no default IP interface names defined within the system. All IP interfaces must be explicitly defined. Interfaces are created in an enabled state.

The no form of this command removes IP the interface and all the associated configuration. The interface must be administratively shut down before issuing the no interface command.

The IP interface must be shut down before the SAP on that interface may be removed. IES and VPRN services do not have the shutdown command in the SAP CLI context. The service SAPs rely on the interface status to enable and disable them.

Parameters

ip-int-name

Specifies the name of the IP interface. Interface names must be unique within the group of defined IP interfaces for config router interface and config service vprn interface commands. An interface name cannot be in the form of an IP address. Interface names can be from 1 to 32 alphanumeric characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

If ip-int-name already exists within the service ID, the context will be changed to maintain that IP interface. If ip-int-name already exists within another service ID or is an IP interface defined within the config router commands, an error will occur and context will not be changed to that IP interface. If ip-int-name does not exist, the interface is created and context is changed to that interface for further command processing.

tunnel

Specifies that the interface is configured as tunnel interface, which could be used to terminate IPsec or GRE runnels in the private service.

create

Creates the IPsec interface instance. The create keyword requirement can be enabled/disabled in the environment>create context.

Platforms

All

Context

[Tree] (config>router>igmp interface)

Full Context

configure router igmp interface

Description

Commands in this context configure an IGMP interface. The interface is a local identifier of the network interface on which reception of the specified multicast address is to be enabled or disabled.

The no form of the command deletes the IGMP interface. The shutdown command in the config>router>igmp>interface context can be used to disable an interface without removing the configuration for the interface.

Default

no interface

Parameters

ip-int-name

The IP interface name. Interface names must be unique within the group of defined IP interfaces for config router interface and config service ies interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

If the IP interface name does not exist or does not have an IP address configured an error message will be returned.

If the IP interface exists in a different area it will be moved to this area.

Platforms

All

Context

[Tree] (config>router>mld interface)

Full Context

configure router mld interface

Description

Commands in this context configure an Multicast Listener Discovery (MLD) interface. The interface is a local identifier of the network interface on which reception of the specified multicast address is to be enabled or disabled.

The no form of this command deletes the MLD interface. The shutdown command in the config>router>mld>interface context can be used to disable an interface without removing the configuration for the interface.

Default

no interface — No interfaces are defined.

Parameters

ip-int-name

Specifies the IP interface name. Interface names must be unique within the group of defined IP interfaces for config>router>interface and config>service>ies>interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

If the IP interface name does not exist or does not have an IP address configured an error message will be returned.

If the IP interface exists in a different area it will be moved to this area.

Platforms

All

Context

[Tree] (config>service>vprn>gtp>s11 interface)

[Tree] (config>router>gtp>s11 interface)

Full Context

configure service vprn gtp s11 interface

configure router gtp s11 interface

Description

This command activates GTP termination on the specified interface.

The no form of this command disables GTP termination on the specified interface, if there are no active sessions associated with the interface.

Parameters

interface-name

Specifies the name of the interface, up to 32 characters. The name must begin with a letter.

create

Creates an entry.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>redundancy>mc>peer>mc>l3-ring>in-band-control-path interface)

[Tree] (config>redundancy>mc>peer>mcr>ring>in-band-control-path interface)

Full Context

configure redundancy multi-chassis peer multi-chassis l3-ring in-band-control-path interface

configure redundancy multi-chassis peer mc-ring ring in-band-control-path interface

Description

This command specifies the name of the IP interface used for the inband control connection.

If an interface name is not configured, the ring cannot become operational.

The no form of this command reverts to the default.

Parameters

ip-int-name

Specifies an interface name up to 32 characters.

Platforms

All

Context

[Tree] (config>router>radius-proxy>server interface)

[Tree] (config>service>vprn>radius-proxy>server interface)

Full Context

configure router radius-proxy server interface

configure service vprn radius-proxy server interface

Description

This command configures the IP interface the RADIUS-proxy server will bind to. One RADIUS-proxy server could bind to multiple interfaces.

Parameters

ip-int-name

Specifies the name of an IP interface.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>pfcp-association interface)

Full Context

configure subscriber-mgmt pfcp-association interface

Description

This command configures the interface from which PFCP messages are sent and on which PFCP messages are received.

The no form of this command removes the interface.

Default

no interface

Parameters

router-instance

Specifies the router instance.

Values

router-name | vprn-svc-id

router-name: Base Default - Base

vprn-svc-id: 1 to 2147483647

interface-name

Specifies the interface name, up to 32 characters.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vpls interface)

Full Context

configure service vpls interface

Description

This command creates a logical IP routing interface for a VPLS service. Once created, attributes such as IP address and service access points (SAP) can be associated with the IP interface.

The interface command, under the context of services, is used to create and maintain IP routing interfaces within the VPLS service IDs. The IP interface created is associated with the VPLS management routing instance. This instance does not support routing.

Interface names are case-sensitive and must be unique within the group of defined IP interfaces defined for the network core router instance. Interface names in the dotted decimal notation of an IP address are not allowed. For example, the name "1.1.1.1” is not allowed, but "int-1.1.1.1” is allowed. Show commands for router interfaces use either interface names or the IP addresses. Use unique IP address values and IP address names to maintain clarity. Duplicate interface names can exist in different router instances.

Enter a new name to create a logical router interface. When an existing interface name is entered, the user enters the router interface context for editing and configuration.

By default, no default IP interface names are defined within the system. All VPLS IP interfaces must be explicitly defined in an enabled state.

The no form of this command removes the IP interface and the entire associated configuration. The interface must be administratively shut down before issuing the no interface command.

For VPLS services, the IP interface must be shut down before the SAP on that interface is removed.

For VPLS service, ping and traceroute are the only applications supported.

Parameters

ip-int-name

Specifies the name of the IP interface. Interface names must be unique within the group of defined IP.

An interface name:

• Should not be in the form of an IP address.

• Can be from 1 to 32 alphanumeric characters.

• If the string contains special characters (such as #,$,spaces), the entire string must be enclosed within double quotes.

If ip-int-name already exists within the service ID, the context changes to maintain that IP interface. If ip-int-name already exists within another service ID, an error occurs and the context does not change to that IP interface. If ip-int-name does not exist, the interface is created and the context is changed to that interface for further command processing.

Platforms

All

Context

[Tree] (debug>router>igmp interface)

Full Context

debug router igmp interface

Description

This command enables debugging for IGMP interfaces.

The no form of this command disables the IGMP interface debugging for the specifies interface name or IP address.

Parameters

ip-int-name

Debugs the information associated with the specified IP interface name.

ip-address

Debugs the information associated with the specified IP address.

Platforms

All

Context

[Tree] (config>service>vprn>igmp interface)

Full Context

configure service vprn igmp interface

Description

Commands in this context configure interface parameters.

Parameters

ip-int-name

Specifies the name of the IP interface, up to 32 characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

Platforms

All

Context

[Tree] (config>service>vprn>isis interface)

Full Context

configure service vprn isis interface

Description

This command creates the context to configure an IS-IS interface.

When an area is defined, the interfaces belong to that area. Interfaces cannot belong to separate areas.

When the interface is a POS channel, the OSI Network Layer Control Protocol (OSINLCP) is enabled when the interface is created and removed when the interface is deleted.

The no form of this command removes IS-IS from the interface.

The shutdown command in the config>router>isis>if context administratively disables IS-IS on the interface without affecting the IS-IS configuration.

Default

no interface — No IS-IS interfaces are defined.

Parameters

ip-int-name

Identify the IP interface name created in the config>router>if context. The IP interface name must already exist.

Platforms

All

Context

[Tree] (config>service>vprn>mld interface)

Full Context

configure service vprn mld interface

Description

Commands in this context configure an Multicast Listener Discovery (MLD) interface. The interface is a local identifier of the network interface on which reception of the specified multicast address is to be enabled or disabled.

The no form of this command deletes the MLD interface. The shutdown command in the config>router>mld>if context can be used to disable an interface without removing the configuration for the interface.

Default

no interface

Parameters

ip-int-name

Specifies the IP interface name. Interface names must be unique within the group of defined IP interfaces for config router interface and config service ies interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

If the IP interface name does not exist or does not have an IP address configured an error message will be returned.

If the IP interface exists in a different area it will be moved to this area.

Platforms

All

Context

[Tree] (config>service>vprn>ospf3>area interface)

[Tree] (config>service>vprn>ospf>area interface)

Full Context

configure service vprn ospf3 area interface

configure service vprn ospf area interface

Description

This command creates a context to configure an OSPF interface.

By default interfaces are not activated in any interior gateway protocol, such as OSPF, unless explicitly configured.

The no form of this command deletes the OSPF interface configuration for this interface. The shutdown command in the config>router>ospf>if context can be used to disable an interface without removing the configuration for the interface.

Default

no interface

Parameters

ip-int-name

Specifies the IP interface name. Interface names must be unique within the group of defined IP interfaces for config router interface and config service vprn interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

If the IP interface name does not exist or does not have an IP address configured an error message will be returned.

If the IP interface exists in a different area it will be moved to this area.

secondary

Keyword used to allow multiple secondary adjacencies, in addition to the primary adjacency, to be established over a single IP interface. This keyword can also be applied to the system interface and to loopback interfaces to allow them to participate in multiple areas, although no adjacencies are formed over these types of interfaces.

Platforms

All

Context

[Tree] (config>service>vprn>pim interface)

Full Context

configure service vprn pim interface

Description

This command enables PIM on an interface and enables the context to configure interface-specific parameters. By default interfaces are activated in PIM based on the apply-to command, and do not have to be configured on an individual basis unless the default values must be changed.

The no form of this command deletes the PIM interface configuration for this interface. If the apply-to command parameter is configured, then the no interface form must be saved in the configuration to avoid automatic (re)creation after the next apply-to is executed as part of a reboot.

The shutdown command can be used to disable an interface without removing the configuration for the interface.

Default

Interfaces are activated in PIM based on the apply-to command.

Parameters

ip-int-name

Specifies the interface name. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

Platforms

All

Context

[Tree] (config>service>vprn>router-advertisement interface)

Full Context

configure service vprn router-advertisement interface

Description

This command configures router advertisement properties on a specific interface. The interface must already exist in the config>router>if context.

Default

No interfaces are configured by default.

Parameters

ip-int-name

Specifies the interface name. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

Platforms

All

Context

[Tree] (config>router>ldp>interface-parameters interface)

Full Context

configure router ldp interface-parameters interface

Description

This command enables LDP on the specified IP interface.

The no form of the command deletes the LDP interface and all configuration information associated with the LDP interface.

The LDP interface must be disabled using the shutdown command before it can be deleted.

The user can configure different parameters for IPv4 and IPv6 LDP interfaces by entering ipv4 or ipv6 as the next command.

Parameters

ip-int-name

Specifies the name of an existing interface. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

dual-stack

This optional keyword allows the user to explicitly indicate if this interface should create the IPv4 context automatically or not. With the introduction of LDP IPv6, the creation of the interface does not automatically mean it is to be used for IPv4 like with legacy IPv4 only LDP interface. Thus the dual-stack keyword is an indication to the system that user will manually enable the IPv4, IPv6, or the dual-stack IPv4/IPv6 contexts manually.

The following are some of the key points for this keyword:

• If the keyword is provided, then IPv4 interface context will not be created automatically. If it is not provided, the IPv4 interface context will be created like in the legacy single stack LDP IPv4 interface behavior.

• This new keyword will always show in a configuration.

• When entering an already configured interface, there is no need to provide the keyword, but it will be ignored if provided.

• When deleting a configured interface, the keyword will not be accepted in the no version of the interface command.

Platforms

All

Context

[Tree] (debug>router>ldp interface)

Full Context

debug router ldp interface

Description

Use this command for debugging an LDP interface.

Parameters

interface-name

The name of an existing interface.

family

Specifies the family type.

Values

ipv4, ipv6

Platforms

All

Context

[Tree] (config>router>mpls>srlg-database>router-id interface)

Full Context

configure router mpls srlg-database router-id interface

Description

This command allows the operator to manually enter the SRLG membership information for any link in the network, including links on this node, into the user SRLG database.

An interface can be associated with up to five SRLG groups for each execution of this command. The operator can associate an interface with up to 64 SRLG groups by executing the command multiple times.

CSPF will not use entered SRLG membership if an interface is not validated as part of a router ID in the routing table.

The no form of this command deletes a specific interface entry in this user SRLG database. The group-name must already exist in the config>router>if-attribute>srlg-group context.

Parameters

ip-address

Specifies the IPv4 address in a.b.c.d

srlg-group group-name

Specifies the SRLG group name. Up to 1024 group names can be defined in the config>router>if-attribute context. The SRLG group names must be identical across all routers in a single domain.

Platforms

All

Context

[Tree] (config>router>mpls interface)

Full Context

configure router mpls interface

Description

This command specifies MPLS protocol support on an IP interface. No MPLS commands are executed on an IP interface where MPLS is not enabled. An MPLS interface must be explicitly enabled (no shutdown).

The no form of this command deletes all MPLS commands such as label-map which are defined under the interface. The MPLS interface must be shutdown first in order to delete the interface definition. If the interface is not shutdown, the no interface ip-int-name command does nothing except issue a warning message on the console indicating that the interface is administratively up.

Default

shutdown

Parameters

ip-int-name

Specifies the name of the network IP interface. An interface name cannot be in the form of an IP address. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Values

1 to 32 alphanumeric characters.

Platforms

All

Context

[Tree] (config>router>rsvp interface)

Full Context

configure router rsvp interface

Description

This command enables RSVP protocol support on an IP interface. No RSVP commands are executed on an IP interface where RSVP is not enabled.

The no form of this command deletes all RSVP commands such as hello-interval and subscription, which are defined for the interface. The RSVP interface must be shutdown it can be deleted. If the interface is not shut down, the no interface ip-int-name command does nothing except issue a warning message on the console indicating that the interface is administratively up.

Default

shutdown

Parameters

ip-int-name

Specifies the name of the network IP interface. An interface name cannot be in the form of an IP address. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Values

1 to 32

Platforms

All

Context

[Tree] (debug>router>pim interface)

Full Context

debug router pim interface

Description

This command enables debugging for PIM interface information.

The no form of this command disables PIM interface debugging.

Parameters

ip-int-name

Debugs the information associated with the specified IP interface name.

Values

IPv4 or IPv6 interface address

mt-int-name

Debugs the information associated with the specified VPRN ID and group address.

ip-address

Debugs the information associated with the specified IP address.

detail

Debugs detailed IP interface information.

Platforms

All

Context

[Tree] (config>router>pim interface)

Full Context

configure router pim interface

Description

This command creates a PIM interface.

Interface names are case-sensitive and must be unique within the group of defined IP interfaces defined for config>router>interface, config>service>ies>interface, and config>service>ies>subscriber-interface>group-interface. Interface names must not be in the dotted decimal notation of an IP address. For example, the name "1.1.1.1” is not allowed, but "int-1.1.1.1” is allowed. Show commands for router interfaces use either the interface names or the IP addresses. Ambiguity can exist if an IP address is used as an IP address and an interface name. Duplicate interface names can exist in different router instances, although this is not recommended because it may be confusing.

By default, no interfaces or names are defined within PIM.

The no form of this command removes the IP interface and all the associated configurations.

Parameters

ip-int-name

Specifies the name of the IP interface, up to 32 characters. Interface names must be unique within the group of defined IP interfaces for config router interface, config service ies interface, and config service ies subscriber-interface group-interface commands. An interface name cannot be in the form of an IP address. If the string contains special characters (#, $, spaces, and so on.), the entire string must be enclosed within double quotes.

If the ip-int-name already exists, the context is changed to maintain that IP interface. If ip-int-name does not exist, the interface is created and the context is changed to that interface for further command processing.

Platforms

All

Context

[Tree] (config>router interface)

Full Context

configure router interface

Description

This command creates a logical IP routing or unnumbered MPLS-TP interface. Once created, attributes like IP address, port, or system can be associated with the IP interface.

Interface names are case-sensitive and must be unique within the group of IP interfaces defined for config router interface and config service ies interface. Interface names must not be in the dotted decimal notation of an IP address.; for example, the name "1.1.1.1” is not allowed, but "int-1.1.1.1” is allowed. Show commands for router interfaces use either the interface names or the IP addresses. Ambiguity can exist if an IP address is used as an IP address and an interface name. Duplicate interface names can exist in different router instances, although this is not recommended because it is confusing. Nokia recommends that names are meaningful and unique to remove ambiguity when displaying the state associated with IP interfaces through show commands.

When a new name is entered, a new logical router interface is created. When an existing interface name is entered, the user enters the router interface context for editing and configuration.

Although not a keyword, the ip-int-name "system” is associated with the network entity (such as a specific router), not a specific interface. The system interface is also referred to as the loopback address.

An unnumbered MPLS-TP interface is a special type of interface that is only intended for MPLS-TP LSPs. IP routing protocols are blocked on interfaces of this type. If an interface is configured as unnumbered-mpls-tp, then it can only be associated with an Ethernet port or VLAN, using the port command, then either a unicast, multicast, or broadcast remote MAC address may be configured. Only static ARP is supported.

The control-tunnel parameter creates a loopback interface representing a GRE tunnel. One IP tunnel can be created in this interface.

Only the primary IPv4 interface address and only one IP tunnel per interface are allowed. Multiple tunnels can be configured using up to four controlTunnel loopback interfaces. A static route can take the new controlTunnel interface as a next hop.

The no form of this command removes the IP interface and all the associated configurations. The interface must be administratively shut down before issuing the no interface command.

Parameters

interface-name

Specifies the name of the IP interface. Interface names must be unique within the group of defined IP interfaces for config router interface and config service ies interface commands. An interface name cannot be in the form of an IP address. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Values

1 to 32 alphanumeric characters

If the ip-int-name already exists, the context is changed to maintain that IP interface. If ip-int-name already exists within another service ID or is an IP interface defined within the config router commands, an error will occur and the context will not be changed to that IP interface. If ip-int-name does not exist, the interface is created and the context is changed to that interface for further command processing.

unnumbered-mpls-tp

Specifies that an interface is an unnumbered MPLS-TP. An unnumbered MPLS-TP interface is a special type of interface that is only intended for MPLS-TP LSPs. IP routing protocols are blocked on interfaces of this type. If an interface is configured as unnumbered-mpls-tp, then it can only be associated with an Ethernet port or VLAN, using the port command. A unicast, multicast, or broadcast remote MAC address can be configured using the static-arp command. Only static ARP is supported.

pdn

Specifies that the interface is a PDN.

Platforms

All

Context

[Tree] (config>router>router-advert interface)

Full Context

configure router router-advertisement interface

Description

This command configures router advertisement properties on a specific interface. The interface must already exist in the config>router>if context.

Parameters

ip-int-name

Specifies the interface name. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Platforms

All

Context

[Tree] (config>router>pcp-server>server interface)

Full Context

configure router pcp-server server interface

Description

This command associates an interface.

The no form of this command reverts to the default value.

Parameters

interface-name

Specifies the interface name, up to 32 characters. The interface name must start with a letter.

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (debug>router>ip interface)

Full Context

debug router ip interface

Description

This command displays the router IP interface table sorted by interface index.

Parameters

ip-int-name

Only displays the interface information associated with the specified IP interface name.

Values

32 characters maximum

ip-address

Only displays the interface information associated with the specified IP address.

Values

The following values apply to the 7750 SR and 7950 XRS:

ipv4-address	a.b.c.d (host bits must be 0)
ipv6-address	x:x:x:x:x:x:x:x (eight 16-bit pieces)
	x:x:x:x:x:x:d.d.d.d
	x: [0 to FFFF]H
	d: [0 to 255]D

Values

The following values apply to the 7450 ESS:

ipv4-address: a.b.c.d (host bits must be 0)

Platforms

All

Context

[Tree] (config>router>isis interface)

Full Context

configure router isis interface

Description

This command creates the context to configure an IS-IS interface.

When an area is defined, the interfaces belong to that area. Interfaces cannot belong to separate areas.

When the interface is a POS channel, the OSINLCP is enabled when the interface is created and removed when the interface is deleted.

The no form of this command removes IS-IS from the interface.

The shutdown command in the config>router>isis>interface context administratively disables IS-IS on the interface without affecting the IS-IS configuration.

Parameters

ip-int-name

Identify the IP interface name created in the config>router>interface context. The IP interface name must already exist.

Platforms

All

Context

[Tree] (debug>router>isis interface)

Full Context

debug router isis interface

Description

This command enables debugging for IS-IS interface.

The no form of the command disables debugging.

Parameters

ip-address

When specified, only the interface with the specified interface address is debugged.

Values

ipv4-address:

• a.b.c.d (host bits must be 0)

ipv6-address:

• x:x:x:x:x:x:x:x (eight 16-bit pieces)

• x:x:x:x:x:x:d.d.d.d

• x: [0 to FFFF]H

• d: [0 to 255]D

ip-int-name

When specified, only the interface with the specified interface name is debugged.

Platforms

All

Context

[Tree] (config>router>ospf3>area interface)

[Tree] (config>router>ospf>area interface)

Full Context

configure router ospf3 area interface

configure router ospf area interface

Description

This command configures an OSPF interface.

Unless they are explicitly configured, interfaces are not activated, by default, in any interior gateway protocol, such as OSPF.

The no form of this command deletes the OSPF interface configuration for this interface. Use the shutdown command in the config>router>ospf>interface context to disable an interface without removing the configuration for the interface.

Default

no interface

Parameters

ip-int-name

Specifies the IP interface name. Interface names must be unique within the group of defined IP interfaces for the configure router interface and configure service ies interface commands. An interface name cannot be in the form of an IP address. Interface names can be any string, up to 32 characters, composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

If the IP interface name does not exist or does not have an IP address configured, an error message is returned.

If the IP interface exists in a different area it is moved to this area.

secondary

Keyword used to allow multiple secondary adjacencies, in addition to the primary adjacency, to be established over a single IP interface. This keyword can also be applied to the system interface and to loopback interfaces to allow them to participate in multiple areas, although no adjacencies are formed over these types of interfaces.

Platforms

All

Context

[Tree] (debug>router>ospf3 interface)

[Tree] (debug>router>ospf interface)

Full Context

debug router ospf3 interface

debug router ospf interface

Description

This command enables debugging for an OSPF and OSPF3 interface.

Parameters

ip-int-name

Specifies the IP interface name, in the debug>router>ospf context. An interface name cannot be in the form of an IP address. Interface names can be any string up to 32 composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

ip-address

Specifies the interface’s IP address, in the debug>router>ospf context.

interface-name

Specifies the interface name, in the debug>router>ospf3 context.

Platforms

All

Context

[Tree] (config>router>policy-options>policy-statement>entry>from interface)

Full Context

configure router policy-options policy-statement entry from interface

Description

This command specifies the router interface, specified either by name or address, as a filter criterion.

The no form of this command removes the criterion from the configuration.

Default

no interface

Parameters

ip-int-name

Specifies the name of the interface as a match criterion for this entry. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Platforms

All

Context

[Tree] (config>router>segment-routing>srv6>inst>loc>func>end-x interface)

Full Context

configure router segment-routing segment-routing-v6 base-routing-instance locator function end-x interface

Description

This command configures an interface for the End.X function.

The no form of this command removes the interface name from the configuration.

Default

no interface

Parameters

interface-name

Specifies an existing interface name, up to 32 characters

Platforms

7450 ESS, 7750 SR, 7750 SR-s, 7950 XRS, VSR

Context

[Tree] (config>router>segment-routing>srv6>inst>ms-loc>func>ua interface)

Full Context

configure router segment-routing segment-routing-v6 base-routing-instance micro-segment-locator function ua interface

Description

This command configures an interface for the uA function.

The no form of this command removes the interface name from the configuration.

Default

no interface

Parameters

interface-name

Specifies an existing interface name, up to 32 characters.

Platforms

7450 ESS, 7750 SR, 7750 SR-s, 7950 XRS, VSR

Context

[Tree] (config>router>bgp>group>dynamic-neighbor interface)

Full Context

configure router bgp group dynamic-neighbor interface

Description

Commands in this context configure an unnumbered base router network interface for dynamic neighbors.

If this interface connects to a network with other BGP routers, sessions with the other routers can be set up automatically without explicitly configuring them as BGP neighbors. The interface must be IPv6 enabled, but because the interface is considered unnumbered, it does not require an IPv4 address or a global-unicast IPv6 address. The sessions are set up using IPv6 link-local addresses.

The BGP unnumbered feature supports all address families that allow IPv6 link-local BGP next-hop addresses. This includes IPv4 with the use of RFC 8950 extensions.

When an interface is added to the list of dynamic-neighbor interfaces, an outgoing connection attempt is initiated toward any directly connected router on the interface that announces itself using an ICMPv6 router advertisement message. The session attempt is unsuccessful if the peer type is not EBGP, the reported AS number of the peer does not match one of the allowed values, or the maximum session limit of the interface would be exceeded.

The no form of this command removes the interface from the list of dynamic-neighbor interfaces.

Parameters

ip-int-name

Specifies the name of a base router IP interface, up to 32 characters.

Platforms

All

Context

[Tree] (config>service>vprn>bgp>group>dynamic-neighbor interface)

Full Context

configure service vprn bgp group dynamic-neighbor interface

Description

Commands in this context configure an unnumbered VPRN access IP interface for dynamic neighbors.

If this interface connects to a network with other BGP routers, sessions with the other routers can be set up automatically without explicitly configuring them as BGP neighbors. The interface must be IPv6 enabled, but because the interface is considered unnumbered, it does not require an IPv4 address or a global-unicast IPv6 address. The sessions are set up using IPv6 link-local addresses.

The BGP unnumbered feature supports all address families that allow IPv6 link-local BGP next-hop addresses. This includes IPv4 with the use of RFC 8950 extensions.

When an interface is added to the list of dynamic-neighbor interfaces, an outgoing connection attempt is initiated toward any directly connected router on the interface that announces itself using an ICMPv6 router advertisement message. The session attempt is unsuccessful if the peer type is not EBGP, the reported AS number of the peer does not match one of the allowed values, or the maximum session limit of the interface would be exceeded.

The no form of this command removes the interface from the list of dynamic-neighbor interfaces.

Parameters

ip-int-name

Specifies the name of a VPRN access IP interface, up to 32 characters.

Platforms

All

Context

[Tree] (config>fwd-path-ext>fpe>pw-port-ext interface-a)

Full Context

configure fwd-path-ext fpe pw-port-extension interface-a

Description

Commands in this context configure the parameters of network interface A of the PW port extension FPE.

Platforms

All

Context

[Tree] (config>fwd-path-ext>fpe>srv6 interface-a)

Full Context

configure fwd-path-ext fpe srv6 interface-a

Description

This command enables the context to configure the parameters of the network interface-a of the SRv6 FPE.

Platforms

7450 ESS, 7750 SR, 7750 SR-s, 7950 XRS, VSR

Context

[Tree] (config>fwd-path-ext>fpe>pw-port-ext interface-b)

Full Context

configure fwd-path-ext fpe pw-port-extension interface-b

Description

Commands in this context configure the parameters of network interface B of the PW port extension FPE.

Platforms

All

Context

[Tree] (config>fwd-path-ext>fpe>srv6 interface-b)

Full Context

configure fwd-path-ext fpe srv6 interface-b

Description

This command enables the context to configure the parameters of the network interface-b of the SRv6 FPE.

Platforms

7450 ESS, 7750 SR, 7750 SR-s, 7950 XRS, VSR

Context

[Tree] (config>filter>ip-filter>entry interface-disable-sample)

[Tree] (config>filter>ipv6-filter>entry interface-disable-sample)

Full Context

configure filter ip-filter entry interface-disable-sample

configure filter ipv6-filter entry interface-disable-sample

Description

This command disables cflowd sampling for packets matching this filter entry, for the IP interface set to cflowd interface mode. This allows the option to not sample specific types of traffic when interface sampling is enabled.

If the cflowd is either not enabled or set to cflowd acl mode, this command is ignored.

The no form of this command enables sampling.

Default

no interface-disable-sample

Platforms

All

Context

[Tree] (config>service>system>bgp-evpn>ip-prefix-routes interface-ful)

Full Context

configure service system bgp-evpn ip-prefix-routes interface-ful

Description

Commands in this context configure IP prefix routes for Interface-ful (IFF) configurations.

Platforms

All

Context

[Tree] (config>service>vprn>if>ipv6>dhcp6>option interface-id)

[Tree] (config>service>ies>if>ipv6>dhcp6>option interface-id)

Full Context

configure service vprn interface ipv6 dhcp6-relay option interface-id

configure service ies interface ipv6 dhcp6-relay option interface-id

Description

This command enables the sending of interface ID options in the DHCPv6 relay packet.

The no form of this command disables the sending of interface ID options in the DHCPv6 relay packet.

Parameters

ascii-tuple

Specifies that the ASCII-encoded concatenated tuple is used which consists of the access-node-identifier, service-id, and interface-name, separated by "| ”.

ifindex

Specifies that the interface index is used. The If Index of a router interface can be displayed using the show>router>interface>detail command.

sap-id

Specifies that the SAP identifier is used.

string

Specifies that a string is used.

string

Specifies a string of up to 80 characters long, composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed within double quotes.

Platforms

All

Context

[Tree] (config>service>vprn>sub-if>grp-if>ipv6>dhcp6>option interface-id)

Full Context

configure service vprn subscriber-interface group-interface ipv6 dhcp6 option interface-id

Description

This command enables the sending of interface ID options in the DHCPv6 relay packet.

The no form of this command disables the sending of interface ID options in the DHCPv6 relay packet.

Parameters

ascii-tuple

Specifies that the ASCII-encoded concatenated tuple is used which consists of the access-node-identifier, service-id, and interface-name, separated by "| ”.

ifindex

Specifies that the interface index is used (the If Index of a router interface can be displayed using the command show>router>if>detail).

sap-id

Specifies that the SAP identifier is used.

string

Specifies a string, up to 32 characters long, composed of printable, 7-bit ASCII characters. If the string contains special characters (#, ?, space), the entire string must be enclosed between double quotes.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vpls>sap>dhcp6>ldra>options interface-id)

Full Context

configure service vpls sap dhcp6 ldra options interface-id

Description

This command enables the sending of interface ID options in the DHCPv6 LDRA.

The no form of this command disables the sending of interface ID options in the DHCPv6 LDRA.

Parameters

ascii-tuple

Specifies the use of the ASCII-encoded concatenated tuple, which consists of the system name, service-id, and sap-id separated by "| ”.

vlan-ascii-tuple

Specifies the use of the ASCII-encoded concatenated tuple enhanced with VLAN ID and dot1p bits, consisting of the system name, service-id, sap-id, dot1p-inner-vlan, and inner-vplan-id, separated by "| ”.

Platforms

All

Context

[Tree] (config>router>dhcp6>server interface-id-mapping)

[Tree] (config>service>vprn>dhcp6>server interface-id-mapping)

Full Context

configure router dhcp6 local-dhcp-server interface-id-mapping

configure service vprn dhcp6 local-dhcp-server interface-id-mapping

Description

This command enables the behavior where unique /64 prefix is allocated per interface-id, and all clients having the same interface-id get an address allocated out of this /64 prefix for DHCP6. This is relevant for bridged clients behind the same local-loop (and same SAP), where sharing the same prefix allows communication between bridged clients behind the same local-loop to stay local. For SLAAC based assignment, downstream neighbor-discovery is automatically enabled to resolve the assigned address.

The no form of this command reverts to the default.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>system>bgp-evpn>ip-prefix-routes interface-less)

Full Context

configure service system bgp-evpn ip-prefix-routes interface-less

Description

Commands in this context configure IP prefix routes for Interface-less (IFL) configurations.

Platforms

7750 SR-1, 7750 SR-s

Context

[Tree] (config>cflowd>collector>exp-filter interface-list)

Full Context

configure cflowd collector export-filter interface-list

Description

Commands in this context allow the administrator to specify which interface’s flow data should be exported to the associated collector.

Cflowd Export Filter Precedence describes the cflowd export filter precedence.

Platforms

All

Context

[Tree] (config>router>ldp interface-parameters)

Full Context

configure router ldp interface-parameters

Description

Commands in this context configure LDP interfaces and parameters applied to LDP interfaces. The user can configure different default parameters for IPv4 and IPv6 LDP interfaces by entering ipv4 or ipv6 as the next command.

Platforms

All

Context

[Tree] (config>router>policy-options>policy-statement>entry>from interface-subnets)

Full Context

configure router policy-options policy-statement entry from interface-subnets

Description

This command configures the applied router instance and interfaces that are used as matching condition within each policy-statement entry. A maximum of 10 interface-name entries is supported, and all entries must belong to the same routing context (either base or service). The interface subnet policy-statement match criterion is applied to the following unicast use case contexts:

• export, when used with OSPFv2, OSPFv3, IS-IS, RIP, RIPng, and BGP

• route-table-import, when used with BGP

• vrf-export, when used with MP-BGP

The no form of this command removes all policies from the configuration.

Default

no interface-subnets

Parameters

service

Specifies the context in which the configured interface exists. By default, the base routing instance is assumed. However, the configured service context is used only when the service is configured.

service-id

Specifies the service ID of the service to match.

Values

service-id — 1 to 2147483647

svc-name — 64 characters maximum

interface-name

Specifies the interface name, up to 32 characters, to match when exporting the IP address of the associated interface to a routing protocol.

Platforms

All

Context

[Tree] (config>port>ethernet>eth-cfm>mep>ais-enable interface-support-enable)

Full Context

configure port ethernet eth-cfm mep ais-enable interface-support-enable

Description

This command enables and disables the generation of AIS PDUs based on the associated endpoint state.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>vpls>sap>eth-cfm>mep>ais interface-support-enable)

[Tree] (config>service>vpls>spoke-sdp>eth-cfm>mep>ais interface-support-enable)

[Tree] (config>service>epipe>spoke-sdp>eth-cfm>mep>ais interface-support-enable)

[Tree] (config>service>vpls>mesh-sdp>eth-cfm>mep>ais interface-support-enable)

[Tree] (config>service>epipe>sap>eth-cfm>mep>ais interface-support-enable)

Full Context

configure service vpls sap eth-cfm mep ais-enable interface-support-enable

configure service vpls spoke-sdp eth-cfm mep ais-enable interface-support-enable

configure service epipe spoke-sdp eth-cfm mep ais-enable interface-support-enable

configure service vpls mesh-sdp eth-cfm mep ais-enable interface-support-enable

configure service epipe sap eth-cfm mep ais-enable interface-support-enable

Description

This command enables the AIS function to consider the operational state of the entity on which it is configured. With this command, ETH-AIS on DOWN MEPs are triggered and cleared based on the operational status of the entity on which it is configured. If CCM is also enabled, then transmission of the AIS PDU is based on either the non-operational state of the entity or on any CCM defect condition. AIS generation ceases if both the operational state is UP and the CCM has no defect conditions. If the MEP is not CCM-enabled then the operational state of the entity is the only consideration, assuming this command is present for the MEP. By default, AIS is not generated or stopped based on the state of the entity on which the DOWN MEP is configured.

The no form of this command disables the AIS function to consider the operational state of the entity on which it is configured.

Default

no interface-support-enabled

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>ies>sap>eth-cfm>mep>ais-enable interface-support-enable)

[Tree] (config>service>ies>spoke-sdp>eth-cfm>mep>ais-enable interface-support-enable)

[Tree] (config>service>ies>sub-if>grp-if>sap>eth-cfm>mep>ais-enable interface-support-enable)

Full Context

configure service ies sap eth-cfm mep ais-enable interface-support-enable

configure service ies spoke-sdp eth-cfm mep ais-enable interface-support-enable

configure service ies subscriber-interface group-interface sap eth-cfm mep ais-enable interface-support-enable

Description

This command enables the AIS function to consider the operational state of the entity on which it is configured. With this command, ETH-AIS on DOWN MEPs will be triggered and cleared based on the operational status of the entity on which it is configured. If CCM is also enabled then transmission of the AIS PDU will be based on either the non-operational state of the entity or on any CCM defect condition. AIS generation will cease if BOTH operational state is UP and CCM has no defect conditions. If the MEP is not CCM enabled then the operational state of the entity is the only consideration assuming this command is present for the MEP.

Default

no interface-support-enable (AIS will not be generated or stopped based on the state of the entity on which the DOWN MEP is configured).

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s

Context

[Tree] (cfg>svc>vprn>if>spoke-sdp>eth-cfm>mep>ais interface-support-enable)

[Tree] (cfg>svc>vprn>if>sap>eth-cfm>mep>ais interface-support-enable)

Full Context

configure service vprn interface spoke-sdp eth-cfm mep ais-enable interface-support-enable

configure service vprn interface sap eth-cfm mep ais-enable interface-support-enable

Description

This command enables the AIS function to consider the operational state of the entity on which it is configured. With this command, ETH-AIS on DOWN MEPs is triggered and cleared based on the operational status of the entity on which it is configured. If CCM is also enabled, transmission of the AIS PDU is based on either the non-operational state of the entity or on ANY CCM defect condition. AIS generation ceases if BOTH operational state is UP and CCM has no defect conditions. If the MEP is not CCM enabled, the operational state of the entity is the only consideration assuming this command is present for the MEP.

The no form of this command means that AIS is not generated or stopped based on the state of the entity on which the DOWN MEP is configured.

Default

no interface-support-enable

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>subscr-mgmt>gtp>peer-profile interface-type)

Full Context

configure subscriber-mgmt gtp peer-profile interface-type

Description

This command specifies the interface applicable for communications to the peer. If the interface type does not match the given context in an uplink context, the peer setup will fail.

The no form of this command reverts to the default value.

Default

interface-type s2a

Parameters

gn

Signaling interface with the peer is Gn as specified in 3GPP TS 29.060.

s2a

Signaling interface with the peer is s2a as specified in 3GPP TS 29.274.

s2b

Signaling interface with the peer is s2b as specified in 3GPP TS 29.274.

s11

Signaling interface with the peer is s11 as specified in 3GPP TS 29.274.

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>isis>if interface-type)

Full Context

configure service vprn isis interface interface-type

Description

This command configures the IS-IS interface type as either broadcast or point-to-point.

Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the designated IS-IS overhead if the link is used as a point-to-point.

If the interface type is not known at the time the interface is added to IS-IS and subsequently the IP interface is bound (or moved) to a different interface type, then this command must be entered manually.

The no form of this command reverts to the default value.

Default

point-to-point — For IP interfaces on SONET channels.

broadcast — For IP interfaces on Ethernet or unknown type physical interfaces.

Parameters

broadcast

Configures the interface to maintain this link as a broadcast network.

point-to-point

Configures the interface to maintain this link as a point-to-point link.

Platforms

All

Context

[Tree] (config>service>vprn>ospf>area>if interface-type)

[Tree] (config>service>vprn>ospf3>area>if interface-type)

Full Context

configure service vprn ospf area interface interface-type

configure service vprn ospf3 area interface interface-type

Description

This command configures the interface type to:

• broadcast
• non-broadcast
• point-to-point
• point-to-multipoint on a link without broadcast or multicast support

Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead if the Ethernet link provided the link is used as a point-to-point.

For subscriber interfaces, configure the adjacent interface (CPE) with interface type point-to-point. For subscriber interfaces, when the interface is configured as P2MP-NBMA, the subscriber interface becomes an active OPSF interface, allowing it to both send and receive OSPF LSAs. For all other interface types, subscriber interfaces remain as passive OSPF interfaces by default.

The no form of this command reverts to the default value.

Default

point-to-point — If the physical interface is SONET.

broadcast — If the physical interface is Ethernet or unknown.

Parameters

broadcast

Specifies the interface as a broadcast network. To significantly improve adjacency forming and network convergence, configure the network as point-to-point if only two routers are connected, even if the network is a broadcast media such as Ethernet.

point-to-point

Specifies the interface as a point-to-point link. Set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead if the Ethernet link provided is used as a point-to-point.

non-broadcast

Specifies the interface as a non-broadcast network.

p2mp-nbma

Specifies the interface as a point-to-multipoint on a link without broadcast or multicast support. No designated router or backup designated router is elected on this type of interface and all OSPF neighbors connect through individual point-to-point links. Only VPRN and IES services interfaces support this interface type.

Platforms

All

Context

[Tree] (config>system>sync-if-timing>bits interface-type)

Full Context

configure system sync-if-timing bits interface-type

Description

This command configures the Building Integrated Timing Source (BITS) timing reference.

The no form of the command reverts to the default configuration.

Default

interface-type ds1 esf

Parameters

ds1 esf

Specifies Extended Super Frame (ESF). This is a framing type used on DS1 circuits that consists of 24 192-bit frames, The 193rd bit provides timing and other functions.

ds1 sf

Specifies Super Frame (SF), also called D4 framing. This is a common framing type used on DS1 circuits. SF consists of 12 192-bit frames. The 193rd bit provides error checking and other functions. ESF supersedes SF.

e1 pcm30crc

Specifies the pulse code modulation (PCM) type. PCM30CRC uses PCM to separate the signal into 30 user channels with CRC protection.

e1 pcm31crc

Specifies the pulse code modulation (PCM) type. PCM31CRC uses PCM to separate the signal into 31 user channels with CRC protection.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>router>isis>interface interface-type)

Full Context

configure router isis interface interface-type

Description

This command configures the IS-IS interface type as either broadcast or point-to-point.

Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the designated IS-IS overhead if the link is used as a point-to-point.

If the interface type is not known at the time the interface is added to IS-IS and subsequently the IP interface is bound (or moved) to a different interface type, then this command must be entered manually.

The no form of this command reverts to the default value.

Default

interface-type point-to-point — For IP interfaces on SONET channels.

interface-type broadcast — For IP interfaces on Ethernet or unknown type physical interfaces.

Parameters

broadcast

Configures the interface to maintain this link as a broadcast network.

point-to-point

Configures the interface to maintain this link as a point-to-point link.

Platforms

All

Context

[Tree] (config>router>ospf3>area>interface interface-type)

[Tree] (config>router>ospf>area>interface interface-type)

Full Context

configure router ospf3 area interface interface-type

configure router ospf area interface interface-type

Description

This command configures the interface type to:

• broadcast
• non-broadcast
• point-to-point
• point-to-multipoint on a link without broadcast or multicast support

Use this command to set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead of the Ethernet link provided the link is used as point-to-point.

For subscriber interfaces, configure the adjacent interface (CPE) with interface type point-to-point. For subscriber interfaces, when the interface is configured as P2MP-NBMA, the subscriber interface becomes an active OPSF interface, allowing it to both send and receive OSPF LSAs. For all other interface types, subscriber interfaces remain as passive OSPF interfaces by default.

The no form of this command returns the setting to the default value.

Default

interface-type point-to-point (if the physical interface is SONET)

interface-type broadcast (if the physical interface is Ethernet or unknown)

Parameters

broadcast

Specifies the interface as a broadcast network. To significantly improve adjacency forming and network convergence, configure a network as point-to-point if only two routers are connected, even if the network is a broadcast media such as Ethernet.

point-to-point

Specifies the interface as a point-to-point link. Set the interface type of an Ethernet link to point-to-point to avoid having to carry the broadcast adjacency maintenance overhead if the Ethernet link provided is used as a point-to-point.

non-broadcast

Specifies the interface as a non-broadcast network.

p2mp-nbma

Specifies the interface as a point-to-multipoint on a link without broadcast or multicast support. No designated router or backup designated router is elected on this type of interface and all OSPF neighbors connect through individual point-to-point links. Only VPRN and IES services interfaces support this interface type.

Platforms

All

Context

[Tree] (config>service>vpls>sap>dhcp6>ldra interface-type)

Full Context

configure service vpls sap dhcp6 ldra interface-type

Description

This command configures LDRA interface type as either client or network facing.

The no form of this command reverts to the default value.

Default

no interface-type

Parameters

client-facing

Configures the SAP as an untrusted client-facing interface. Only DHCPv6 client messages are accepted and encapsulated in a Relay-Forward message. It is mandatory to configure an interface ID for client-facing SAPs. Relay-Forward, Relay-Reply, and DHCPv6 server messages are silently dropped when received on a client-facing SAP

network-facing

Configures the SAP as a network-facing interface. Only Relay-Reply messages are accepted: the server message is extracted from the Relay-Reply message and forwarded in the VPLS. All other DHCPv6 message types are silently dropped when received on a network-facing SAP.

Platforms

All

Context

[Tree] (config>subscr-mgmt>diam-appl-plcy>gy>efh interim-credit)

Full Context

configure subscriber-mgmt diameter-application-policy gy extended-failure-handling interim-credit

Description

Commands in this context configure interim credit parameters for Extended Failure Handling (EFH).

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>wlan-gw>mobility-triggered-acct interim-update)

[Tree] (config>router>wlan-gw>mobility-triggered-acct interim-update)

Full Context

configure service vprn wlan-gw mobility-triggered-acct interim-update

configure router wlan-gw mobility-triggered-acct interim-update

Description

This command enables the inclusion of counters with a hold-down time option in mobility-triggered interim updates. When enabled, to disable the inclusion of counters, interim updates must be disabled and then re-enabled without the include-counters keyword. By default, the hold-down time is not imposed.

The no form of this command disables generation of flash interim accounting updates to RADIUS when change in location of the UE is detected.

Default

no interim-update

Parameters

include-counters

Specifies the inclusion of counters in mobility-triggered interim updates.

seconds

Specifies the time, in seconds, that must elapse after a mobility-triggered interim with counters sent for the next mobility-triggered interim with counters to be sent.

Values

60 to 864000

Platforms

7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>app-assure>rad-acct-plcy interim-update-interval)

Full Context

configure application-assurance radius-accounting-policy interim-update-interval

Description

This command configures the interim update interval.

The no form of this command reverts to the default.

Default

no interim-update-interval

Parameters

minutes

Specifies the interval at which subscriber accounting data will be updated. If set no value is specified then no interim updates will be sent.

Values

5 to 1080

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>l2tp>group>mlppp interleave)

[Tree] (config>router>l2tp>group>mlppp interleave)

Full Context

configure service vprn l2tp group mlppp interleave

configure router l2tp group mlppp interleave

Description

This command is applicable only to LNS. Interleaving is supported only on MLPPPoX bundles that contain a single member link. If more than one link is present in the MLPPPoX bundle, interleaving is automatically disabled and a TRAP/log (tmnxMlpppBundleIndicatorsChange) is generated.

The minimum supported rate of the link on which interleaving is performed is 1 kb/s.

If configured at this level, interleaving is enabled on all tunnels within the group, unless it is explicitly disable per tunnel.

The no form of this command reverts to the default.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s

Context

[Tree] (config>service>vprn>l2tp>group>tunnel>mlppp interleave)

[Tree] (config>router>l2tp>group>tunnel>mlppp interleave)

Full Context

configure service vprn l2tp group tunnel mlppp interleave

configure router l2tp group tunnel mlppp interleave

Description

This command configures the user of link fragmentation and interleaving and is applicable only to LNS. Interleaving is supported only on MLPPPoX bundles that contain a single member link. If more than one link is present in the MLPPPoX bundle, interleaving is automatically disabled and a TRAP/log (tmnxMlpppBundleIndicatorsChange) is generated.

The minimum supported rate of the link on which interleaving is performed is 1 kb/s.

Interleaving configured on this level overwrites the configuration option under the group hierarchy. If the no form of this command is configured for interleaving at this level, the interleaving configuration inherits the configuration option configured under the L2TP group.

The no form of this command reverts to the default.

Parameters

always

Always perform interleaving on single linked MLPPPoX sessions within this tunnel, regardless of the configuration option for interleaving under the group level.

never

Never perform interleaving on single linked MLPPPoX sessions within this tunnel, regardless of the configuration option for interleaving under the group level.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s

Context

[Tree] (config>ipsec>ike-policy>relay-unsol-attr internal-ip4-address)

Full Context

configure ipsec ike-policy relay-unsolicited-cfg-attribute internal-ip4-address

Description

This command will return IPv4 address from source (such as a RADIUS server) to IKEv2 remote-access tunnel client regardless if the client has requested it in the CFG_REQUEST payload.

Default

no internal-ip4-address

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>ipsec>ike-policy>relay-unsol-attr internal-ip4-dns)

Full Context

configure ipsec ike-policy relay-unsolicited-cfg-attribute internal-ip4-dns

Description

This command will return IPv4 DNS server address from source (such as a RADIUS server) to IKEv2 remote-access tunnel client regardless if the client has requested it in the CFG_REQUEST payload.

Default

no internal-ip4-dns

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>ipsec>ike-policy>relay-unsol-attr internal-ip4-netmask)

Full Context

configure ipsec ike-policy relay-unsolicited-cfg-attribute internal-ip4-netmask

Description

This command will return IPv4 netmask from source (such as a RADIUS server) to IKEv2 remote-access tunnel client regardless if the client has requested it in the CFG_REQUEST payload.

Default

no internal-ip4-netmask

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>ipsec>ike-policy>relay-unsol-attr internal-ip6-address)

Full Context

configure ipsec ike-policy relay-unsolicited-cfg-attribute internal-ip6-address

Description

This command will return IPv6 address from source (such as a RADIUS server) to IKEv2 remote-access tunnel client regardless if the client has requested it in the CFG_REQUEST payload.

Default

no internal-ip6-address

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>ipsec>ike-policy>relay-unsol-attr internal-ip6-dns)

Full Context

configure ipsec ike-policy relay-unsolicited-cfg-attribute internal-ip6-dns

Description

This command will return IPv6 DNS server address from source (RADIUS server) to IKEv2 remote-access tunnel client regardless if the client has requested it in the CFG_REQUEST payload.

Default

no internal-ip6-dns

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>service>vprn>dhcp6>server>lease-hold-time-for internal-lease-ipsec)

[Tree] (config>service>vprn>dhcp>server>lease-hold-time-for internal-lease-ipsec)

[Tree] (config>router>dhcp>server>lease-hold-time-for internal-lease-ipsec)

[Tree] (config>router>dhcp6>server>lease-hold-time-for internal-lease-ipsec)

Full Context

configure service vprn dhcp6 local-dhcp-server lease-hold-time-for internal-lease-ipsec

configure service vprn dhcp local-dhcp-server lease-hold-time-for internal-lease-ipsec

configure router dhcp local-dhcp-server lease-hold-time-for internal-lease-ipsec

configure router dhcp6 local-dhcp-server lease-hold-time-for internal-lease-ipsec

Description

This command enables the server to hold up the lease of local IPsec clients.

The no form of this command disables the ability of the server to hold up the lease of local IPsec clients.

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>card>virt-sched-adj internal-scheduler-weight-mode)

Full Context

configure card virtual-scheduler-adjustment internal-scheduler-weight-mode

Description

This command specifies the internal scheduler (tier 0) weight mode for all ingress queues on a LAG on the card on which it is applied.

Default

internal-scheduler-weight-mode default

Parameters

default

Specifies that ingress queues are weighted based on port speed or, if configured, the hash weight.

force-equal

Specifies that the ingress queues are always equally weighted.

offered-load

Specifies that the ingress queues are weighted based on observed offered load.

capped-offered-load

Specifies that the ingress queues are weighted based on observed offered load capped by PIR.

Platforms

All

Context

[Tree] (config>qos>adv-config-policy>child-control>bandwidth-distribution internal-scheduler-weight-mode)

Full Context

configure qos adv-config-policy child-control bandwidth-distribution internal-scheduler-weight-mode

Description

This command specifies the internal scheduler (tier 0) weight mode for the queues on a LAG on which the advanced configuration policy is applied.

Default

internal-scheduler-weight-mode default

Parameters

default

Specifies that queues are weighted based on the port speed or, if configured, the hash weight.

force-equal

Specifies that the queues are always equally weighted.

offered-load

Specifies that the queues are weighted based on the observed offered load.

capped-offered-load

Specifies that the queues are weighted based on the observed offered load capped by PIR.

Platforms

All

Context

[Tree] (config>service>vprn>mvpn intersite-shared)

Full Context

configure service vprn mvpn intersite-shared

Description

This command specifies whether to use inter-site shared C-trees or not. Optional parameters allow enabling additional inter-site shared functionality. Not specifying an optional parameter when executing the command disables that parameter.

Default

n/a

Parameters

persistent-type5-adv

When specified for inter-site shared trees enabled, this parameter ensures that Type 5 SA routes are generated for the multicast source even if no joins are present for that source. When the parameter is not specified, the Type 5 SA routes are withdrawn where the prune from the last receiver is received for the multicast source.

kat-type5-adv-withdraw

When specified for inter-site shared trees, this parameter allows operators to enable KeepAlive Timers (KAT) on source PEs for ng-MVPN inter-site shared deployments. On a multicast source failure, a KAT expiry on source PEs will trigger a withdrawal of Type-5 Source-Active (S-A) route and switch from (C-S,C-G) to (C-*,C-G). When receiver PEs process reflected Type-5 S-A route withdrawals, they will withdraw their Type-7 ng-MVPN routes to the failed multicast source. The following conditions apply:

• KAT must only be enabled on source PEs.

• Functionality is supported with mLDP and RSVP-TE in the P-instance.

• Local receiver per (C-S, C-G) must be configured on source PEs running KAT.

Platforms

All

Context

[Tree] (config>subscr-mgmt>diam-appl-plcy>gx>ccrt-replay interval)

[Tree] (config>subscr-mgmt>diam-appl-plcy>gy>ccrt-replay interval)

Full Context

configure subscriber-mgmt diameter-application-policy gx ccrt-replay interval

configure subscriber-mgmt diameter-application-policy gy ccrt-replay interval

Description

This command specifies the interval at which CCR-T messages for Diameter Gx or Gy sessions that belong to the Diameter application policy are replayed, until a valid CCA-t response is received or until the configured max-lifetime period expires.

The no form of this command resets the interval to the default setting.

Default

interval 3600

Parameters

seconds

Specifies the interval at which the CCR-T messages are replayed for a gx session. The messages are replayed until a valid CCA-t response is received or until a 24 hour period expires, whichever comes first.

Values

60 to 86400

Default

3600

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>diam-appl-plcy>gx>ccrt-replay interval)

[Tree] (config>subscr-mgmt>diam-appl-plcy>gy>ccrt-replay interval)

Full Context

configure subscriber-mgmt diameter-application-policy gx ccrt-replay interval

configure subscriber-mgmt diameter-application-policy gy ccrt-replay interval

Description

This command specifies the interval at which CCR-T messages for Diameter Gx or Gy sessions that belong to the Diameter application policy are replayed, until a valid CCA-t response is received or until the configured max-lifetime period expires.

The no form of this command resets the interval to the default setting.

Default

interval 3600

Parameters

seconds

Specifies the interval at which the CCR-T messages are replayed for a gx session. The messages are replayed until a valid CCA-t response is received or until a 24 hour period expires, whichever comes first.

Values

60 to 86400

Default

3600

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>redundancy>mc>peer>mcr>ring>cv interval)

[Tree] (config>redundancy>mc>peer>mc>l3-ring>cv interval)

Full Context

configure redundancy multi-chassis peer mc-ring ring ring-node connectivity-verify interval

configure redundancy multi-chassis peer multi-chassis l3-ring cv interval

Description

This command specifies the polling interval of the ring-node connectivity verification of this ring node.

The no form of this command reverts to the default.

Default

interval 5

Parameters

interval

Specifies the polling interval of the ring-node connectivity verification of this ring node.

Values

1 to 6000

Platforms

All

Context

[Tree] (config>subscr-mgmt>shcv-policy>periodic interval)

Full Context

configure subscriber-mgmt shcv-policy periodic interval

Description

This command specifies the time interval which all known sources should be verified. The actual rate is dependent on the number of known hosts and intervals.

The no form of this command reverts to the default.

Default

interval 30 minutes

Parameters

minutes

Specifies the interval, in minutes, between periodic connectivity checks.

Values

1 to 6000

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>aaa>radius-srv-plcy>servers>health-check>test-account interval)

Full Context

configure aaa radius-server-policy servers health-check test-account interval

Description

This command specifies the intervals at which the test account will send its access requests to probe the RADIUS servers.

Default

interval 3

Parameters

seconds

Specifies the probing interval.

Values

1 to 60

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>subscr-mgmt>pfcp-association>heartbeat interval)

Full Context

configure subscriber-mgmt pfcp-association heartbeat interval

Description

This command configures the interval between successive, successful heartbeats.

Default

interval 60

Parameters

seconds

Specifies the time frame, in seconds, between successive, successful heartbeats. This interval must be identical on both the BNG UPF and CPF. For information about the BNG CUPS CPF configuration, refer to the CMG BNG CUPS Control Plane Function Guide and the 7750 SR MG and CMG CLI Reference Guide.

Values

60 to 180

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>lag>eth-cfm>mep>ais-enable interval)

[Tree] (config>port>ethernet>eth-cfm>mep>ais-enable interval)

Full Context

configure lag eth-cfm mep ais-enable interval

configure port ethernet eth-cfm mep ais-enable interval

Description

This command specifies the transmission interval of AIS messages in seconds.

The no form of this command reverts to the default values.

Parameters

1 | 60

The transmission interval of AIS messages, in seconds.

Default

1

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>mac-notification interval)

Full Context

configure service mac-notification interval

Description

This command controls the frequency of subsequent MAC notification messages.

Parameters

deci-seconds

Specifies the frequency of subsequent MAC notification messages, in deciseconds

Values

1 to 100

Platforms

All

Context

[Tree] (config>service>epipe>sap>eth-cfm>mep>ais-enable interval)

[Tree] (config>service>epipe>spoke-sdp>eth-cfm>ais-enable interval)

Full Context

configure service epipe sap eth-cfm mep ais-enable interval

configure service epipe spoke-sdp eth-cfm ais-enable interval

Description

This command specifies the transmission interval of AIS messages in seconds.

Parameters

1 | 60

Specifies the transmission interval of AIS messages in seconds.

Default

1

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>vpls>mac-notification interval)

Full Context

configure service vpls mac-notification interval

Description

This command controls the frequency of subsequent MAC notification messages.

By default, this command inherits the chassis level configuration from config>service> mac-notification.

Parameters

deci-seconds

Specifies the frequency of subsequent MAC notification messages, in deciseconds.

Values

1 to 100

Platforms

All

Context

[Tree] (config>service>vpls>spoke-sdp>eth-cfm>mep>ais-enable interval)

[Tree] (config>service>vpls>mesh-sdp>eth-cfm>mep>ais-enable interval)

Full Context

configure service vpls spoke-sdp eth-cfm mep ais-enable interval

configure service vpls mesh-sdp eth-cfm mep ais-enable interval

Description

This command specifies the transmission interval of AIS messages in seconds.

Parameters

1 | 60

The transmission interval of AIS messages in seconds

Default

1

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>service>vprn>static-route-entry>next-hop>cpe-check interval)

[Tree] (config>service>vprn>static-route-entry>indirect>cpe-check interval)

Full Context

configure service vprn static-route-entry next-hop cpe-check interval

configure service vprn static-route-entry indirect cpe-check interval

Description

This optional parameter specifies the interval between ICMP pings to the target IP address.

Default

interval 1

Parameters

seconds

An integer interval value.

Values

1 to 255

Platforms

All

Context

[Tree] (config>router>mpls>lsp-self-ping interval)

Full Context

configure router mpls lsp-self-ping interval

Description

This command configures the interval at which LSP Self Ping packets are periodically sent on a candidate path of an RSVP LSP. This value is used for all LSPs that have LSP Self Ping enabled.

The no form of this command reverts to the default value.

Default

interval 1

Parameters

seconds

Specifies the value, in seconds, used as the fast retry timer for a secondary path.

Values

1 to 10

Platforms

7450 ESS, 7750 SR, 7750 SR-a, 7750 SR-e, 7750 SR-s, 7950 XRS

Context

[Tree] (config>app-assure>group>http-notif interval)

Full Context

configure application-assurance group http-notification interval

Description

This command configures the minimum interval in between notification messages. It can be set to one-time or a value in minutes from 1 to 1440.

The no form of this command removes the interval from the http-notification policy.

Default

interval one-time

Parameters

minimum-interval

Represents the minimum interval value in minutes in between two http notifications.

Values

1 to 1440

Platforms

7450 ESS, 7750 SR, 7750 SR-e, 7750 SR-s, VSR

Context

[Tree] (config>ipsec>tnl-temp>icmp6-gen>pkt-too-big interval)

[Tree] (config>router>if>ipsec-tunnel>icmp-gen>pkt-too-big interval)

[Tree] (config>service>ies>if>ipsec>ipsec-tunnel>icmp6-gen>pkt-too-big interval)

Full Context

configure ipsec tunnel-template icmp6-generation pkt-too-big interval

configure router interface ipsec-tunnel icmp-gen pkt-too-big interval

configure service ies interface ipsec ipsec-tunnel icmp6-generation pkt-too-big interval

Description

This command configures the maximum interval during which messages can be sent.

Parameters

seconds

Specifies the maximum interval during which messages can be sent, in seconds.

Values

1 to 60

Default

10

Platforms