Sei sulla pagina 1di 450

DATACOM SYSTEMS INC

Datacom Systems Inc

VS-2024-F

CLI User Manual

Revision Number: 2.2

DATACOM SYSTEMS INC

Copyright © 2012 Datacom Systems Inc . All Rights Reserved. No part of this document may be reproduced, stored in a retrieval system or transmitted, in any form, or by any means, electronic or otherwise, including photocopying, reprinting, or recording, for any purpose, without the express written permission of Datacom Systems Inc.

Printed in

TRADEMARKS Datacom Systems Inc LOGO are trademarks of Datacom Systems Inc . in

the U.S. and other countries. The use of any of these trademarks without Datacom Systems Inc. prior written consent is strictly prohibited. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Datacom Systems Inc. disclaims any proprietary interest in the trademarks and trade names other than its own.

DISCLAIMER The information in this book is provided “as is”, with no warranties whatsoever, including

any warranty of merchantability, fitness for any particular purpose or any warranty otherwise arising out of any proposal, specification or sample. This document is provided for informational purposes only and

should not be construed as a commitment on the part of Datacom Systems Inc. document is subject to change without notice.

REQUESTS For information or obtaining permission for use of material of this work, please submit a

written request to: Corporate Marketing and Legal, Datacom Systems Inc on www datacomsystems.com

DOCUMENT No.: Datacom Systems Inc v 2.2

Information in this

DATACOM SYSTEMS INC

Contents

CHAPTER 1:

1. INTRODUCTION

11

1.1

PURPOSE

11

1.2

SCOPE

11

1.3

DOCUMENT CONVENTIONS

11

1.4

KEY CONVENTIONS

12

1.4.1

Keyboard shortcuts

12

1.4.2

Others

12

CHAPTER 2: 2. COMMAND LINE INTERFACE

13

 

2.1

CLI COMMAND MODES

14

2.2

USER EXEC MODE

15

2.3

PRIVILEGED EXEC MODE

15

2.4

GLOBAL CONFIGURATION MODE

15

2.5

INTERFACE CONFIGURATION MODE

15

2.5.1

Physical Interface Mode

15

2.5.2

Port Channel Interface Mode

16

2.5.3

VLAN Interface Mode

16

2.5.4

Tunnel Interface Mode

16

2.5.5

Out of Band Interface Mode

16

2.6

CONFIG-VLAN MODE

16

2.7

LINE CONFIGURATION MODE

16

2.8

BOOT CONFIGURATION

16

2.9

REDUNDANCY CONFIGURATION

16

2.10

PROTOCOL SPECIFIC MODES

16

2.10.1

DiffSrv ClassMap Configuration mode

16

2.10.2

DiffSrv Policy-Map Configuration Mode

17

2.10.3

DiffSrv Policy-Map Class Configuration Mode

17

2.10.4

DHCP Pool Configuration Mode

17

2.10.5

ACL Standard Access List Configuration Mode

17

2.10.6

ACL Extended Access List Configuration Mode

17

2.10.7

ACL MAC Configuration Mode

18

CHAPTER 3:

3. DIFFSERV (DIFFERENTIATED SERVICES)

21

3.1 SET QOS

23

3.2 CLASS-MAP

24

3.3 POLICY-MAP

25

3.4 MATCH

26

3.5 CLASS

27

3.6 SET COS

28

3.7 SHUTDOWN QOS

29

3.8 COSQ SCHEDULING ALGORITHM

30

3.9 TRAFFIC CLASS

31

3.10 SHOW POLICY-MAP

32

3.11 SHOW CLASS-MAP

34

3.12 SHOW COSQ ALGORITHM

35

3.13 SHOW COSQ WEIGHTS-BW

36

CHAPTER 4:

4. ACL (ACCESS CONTROL LISTS)

37

4.1 IP ACCESS-LIST

39

4.2 MAC ACCESS-LIST EXTENDED

41

4.3 USER-DEFINED ACCESS-LIST

42

4.4 USERDEFINED-LIST

43

VS-2024-F

DATACOM SYSTEMS INC

4.5 PERMIT USR-DEFINED-PACKET-TYPE

45

4.6 DENY USR-DEFINED-PACKET-TYPE

48

4.7 PERMIT - STANDARD MODE

50

4.8 DENY - STANDARD MODE

52

4.9 PERMIT- IP/OSPF/PIM/PROTOCOL TYPE

53

4.10 PERMIT IPV6

56

4.11 DENY IPV6

58

4.12 DENY - IP/OSPF/PIM/PROTOCOL TYPE

59

4.13 PERMIT TCP

61

4.14 DENY TCP

64

4.15 PERMIT UDP

66

4.16 DENY UDP

69

4.17 PERMIT ICMP

71

4.18 DENY ICMP

75

4.19 IP ACCESS-GROUP

78

4.20 MAC ACCESS-GROUP

79

4.21 USER-DEFINED ACCESS-GROUP

80

4.22 PERMIT

81

4.23 DENY

85

4.24 SHOW ACCESS-LISTS

88

CHAPTER 5: 5. QOS (QUALITY OF SERVICE)

93

5.1 SHUTDOWN QOS

95

5.2 QOS

96

5.3 PRIORITY-MAP

97

5.4 CLASS-MAP

98

5.5 METER

99

5.6 POLICY-MAP

100

5.7 QUEUE-TYPE

101

5.8 SHAPE-TEMPLATE

102

5.9 SCHEDULER

103

5.10 QUEUE

105

5.11 QUEUE-MAP

107

5.12 SCHED-HIERARCHY

108

5.13 QOS INTERFACE

109

5.14 MAP

110

5.15 MATCH ACCESS-GROUP

112

5.16 SET CLASS

113

5.17 METER-TYPE

114

5.18 SET POLICY

116

5.19 SET METER

117

5.20 SET ALGO-TYPE

120

5.21 RANDOM-DETECT DP

121

5.22 SHOW QOS GLOBAL INFO

122

5.23 SHOW PRIORITY-MAP

123

5.24 SHOW CLASS-MAP

124

5.25 SHOW CLASS-TO-PRIORITY-MAP

125

5.26 SHOW METER

126

5.27 SHOW POLICY-MAP

127

5.28 SHOW QUEUE-TEMPLATE

128

5.29 SHOW SHAPE-TEMPLATE

129

5.30 SHOW SCHEDULER

130

5.31 SHOW QUEUE

131

5.32 SHOW QUEUE-MAP

132

5.33 SHOW SCHED-HIERARCHY

133

5.34 SHOW QOS DEF-USER-PRIORITY

134

5.35 SHOW QOS METER-STATS

136

DATACOM SYSTEMS INC

CONTENTS

 

5.36

SHOW QOS QUEUE-STATS

137

CHAPTER 6:

6. TACACS

138

 

6.1

TACACS-SERVER HOST

139

6.2

TACACS USE-SERVER ADDRESS

141

6.3

TACACS-SERVER RETRANSMIT

142

6.4

DEBUG TACACS

143

6.5

SHOW TACACS

144

CHAPTER 7:

7. LA

146

7.1

SET PORT-CHANNEL

148

7.2

CHANNEL-PROTOCOL

149

7.3

LACP SYSTEM-PRIORITY

150

7.4

LACP SYSTEM-IDENTIFIER

151

7.5

PORT-CHANNEL LOAD-BALANCE

152

7.6

LACP PORT-PRIORITY

154

7.7

LACP PORT-IDENTIFIER

155

7.8

CHANNEL-GROUP

156

7.9

LACP WAIT-TIME

157

7.10

LACP TIMEOUT

158

7.11

LACP RATE

159

7.12

LACP

160

7.13

DEFAULT PORT

161

7.14

PORT-CHANNEL MAX-PORTS

162

7.15

SHUTDOWN PORT-CHANNEL

163

7.16

DEBUG LACP

164

7.17

DEBUG ETHERCHANNEL

165

7.18

SHOW ETHERCHANNEL

166

7.19

SHOW ETHERCHANNEL - REDUNDANCY

172

7.20

SHOW INTERFACES

174

7.21

SHOW LACP

177

CHAPTER 8:

8. SYSLOG

180

 

8.1 LOGGING

182

8.2 LOGGING SYNCHRONOUS

184

8.3 MAILSERVER

186

8.4 SENDER MAIL-ID

187

8.5 RECEIVER MAIL-ID

188

8.6 CMDBUFFS

189

8.7 SERVICE TIMESTAMPS

190

8.8 CLEAR LOGS

191

8.9 SYSLOG MAIL

192

8.10 SYSLOG LOCAL STORAGE

193

8.11 SYSLOG FILENAME-ONE

194

8.12 SYSLOG FILENAME-TWO

195

8.13 SYSLOG FILENAME-THREE

196

8.14 SYSLOG RELAY - PORT

197

8.15 SYSLOG PROFILE

198

8.16 LOGGING-FILE

199

8.17 LOGGING SERVER

200

8.18 MAIL SERVER TABLE

201

8.19 SYSLOG RELAY

202

8.20 SYSLOG RELAY TRANSPORT TYPE

203

8.21 SHOW LOGGING

204

8.22 SHOW EMAIL ALERTS

205

8.23 SHOW SYSLOG ROLE

206

8.24 SHOW SYSLOG MAIL

208

VS-2024-F

DATACOM SYSTEMS INC

8.25 SHOW SYSLOG LOCAL STORAGE

209

8.26 SHOW LOGGING FILE

210

8.27 SHOW LOGGING SERVER

211

8.28 SHOW MAIL SERVER

212

8.29 SHOW SYSLOG RELAY - PORT

213

8.30 SHOW SYSLOG PROFILE

214

8.31 SHOW SYSLOG RELAY TRANSPORT TYPE

215

8.32 SHOW SYSLOG FILE-NAME

216

8.33 SHOW SYSLOG INFORMATION

217

CHAPTER 9: 9. VLAN

219

9.1 SET VLAN

223

9.2 VLAN

224

9.3 SET MAC-LEARNING

225

9.4 SET UNICAST-MAC-LEARNING

226

9.5 INTERFACE RANGE

227

9.6 BASE BRIDGE-MODE

228

9.7 MAC-VLAN

229

9.8 SUBNET-VLAN

230

9.9 PROTOCOL-VLAN

231

9.10 MAP PROTOCOL

232

9.11 SET GVRP

233

9.12 SET PORT GVRP

234

9.13 SET PORT GVRP - ENABLE | DISABLE

235

9.14 SET GMRP

236

9.15 SET PORT GMRP

237

9.16 VLAN LEARNING MODE

238

9.17 FID - VLAN RANGE

239

9.18 SET VLAN TRAFFIC-CLASSES

240

9.19 MAC-MAP

241

9.20 MAP SUBNET

242

9.21 SWITCHPORT FILTERING-UTILITY-CRITERIA

243

9.22 MAC-ADDRESS-TABLE STATIC UNICAST

244

9.23 MAC-ADDRESS-TABLE STATIC UNICAST – TRANSPARENT BRIDGING MODE

247

9.24 MAC-ADDRESS-TABLE STATIC MULTICAST

249

9.25 MAC ADDRESS-TABLE STATIC MCAST

251

9.26 MAC-ADDRESS-TABLE STATIC MULTICAST – TRANSPARENT BRIDGING MODE 252

9.27 MAC-ADDRESS-TABLE AGING-TIME

254

9.28 BRIDGE-MODE- METRO

255

9.29 L2PROTOCOL-TUNNEL COS

257

9.30 CLEAR L2PROTOCOL-TUNNEL COUNTERS

258

9.31 CLEAR VLAN STATISTICS

259

9.32 VLAN DEFAULT HYBRID TYPE

260

9.33 WILDCARD

261

9.34 SET UNICAST-MAC LEARNING

262

9.35 VLAN UNICAST-MAC LEARNING LIMIT

263

9.36 UNICAST-MAC LEARNING LIMIT

264

9.37 PORTS

265

9.38 VLAN ACTIVE

267

9.39 FORWARD-ALL

268

9.40 FORWARD-UNREGISTERED

271

9.41 SWITCHPORT PVID

272

9.42 SWITCHPORT ACCESS VLAN

273

9.43 SWITCHPORT ACCEPTABLE-FRAME-TYPE

274

9.44 SWITCHPORT INGRESS-FILTER

275

9.45 PORT MAC-VLAN

276

9.46 PORT SUBNET VLAN

277

DATACOM SYSTEMS INC

CONTENTS

 

9.47 PORT PROTOCOL-VLAN

278

9.48 SWITCHPORT MAP PROTOCOLS-GROUP

279

9.49 SWITCHPORT PRIORITY DEFAULT

280

9.50 SWITCHPORT MODE

281

9.51 SWITCHPORT MODE DOT1Q-TUNNEL

282

9.52 SET GARP TIMER

283

9.53 VLAN RESTRICTED

284

9.54 GROUP RESTRICTED

285

9.55 VLAN MAX-TRAFFIC-CLASS

286

9.56 VLAN MAP-PRIORITY

287

9.57 SHUTDOWN GARP

288

9.58 SHUTDOWN VLAN

289

9.59 DEBUG VLAN

290

9.60 DEBUG GARP

292

9.61 SHOW VLAN

295

9.62 SHOW VLAN DEVICE INFO

297

9.63 SHOW VLAN DEVICE CAPABILITIES

300

9.64 SHOW FID - DETAIL

301

9.65 SHOW FORWARD-ALL

303

9.66 SHOW FORWARD-UNREGISTERED

306

9.67 SHOW VLAN TRAFFIC-CLASSES

308

9.68 SHOW GARP TIMER

311

9.69 SHOW VLAN PORT CONFIG

313

9.70 SHOW VLAN PROTOCOLS-GROUP

317

9.71 SHOW PROTOCOL-VLAN

318

9.72 SHOW MAC-VLAN

319

9.73 SHOW SUBNET VLAN MAPPING

320

9.74 SHOW VLAN COUNTERS

322

9.75 SHOW VLAN STATISTICS

324

9.76 SHOW MAC-ADDRESS-TABLE

325

9.77 SHOW DOT1D MAC-ADDRESS-TABLE

327

9.78 SHOW DOT1D MAC-ADDRESS-TABLE STATIC UNICAST

328

9.79 SHOW DOT1D MAC-ADDRESS-TABLE STATIC MULTICAST

329

9.80 SHOW MAC-ADDRESS-TABLE COUNT

330

9.81 SHOW MAC-ADDRESS-TABLE STATIC UNICAST

332

9.82 SHOW MAC-ADDRESS-TABLE STATIC MULTICAST

334

9.83 SHOW MAC-ADDRESS-TABLE DYNAMIC UNICAST

336

9.84 SHOW MAC-ADDRESS-TABLE DYNAMIC MULTICAST

338

9.85 SHOW MAC-ADDRESS-TABLE AGING-TIME

340

9.86 SHOW WILDCARD

341

CHAPTER 10:

10. SNMPV3

343

10.1 ENABLE SNMPSUBAGENT

346

10.2 DISABLE SNMPSUBAGENT

347

10.3 SHOW SNMP AGENTX INFORMATION

348

10.4 SHOW SNMP AGENTX STATISTICS

349

10.5 ENABLE SNMPAGENT

350

10.6 DISABLE SNMPAGENT

351

10.7 SNMP COMMUNITY INDEX

352

10.8 SNMP GROUP

354

10.9 SNMP ACCESS

355

10.10 SNMP ENGINEID

357

10.11 SNMP PROXY NAME

358

10.12 SNMP MIBPROXY NAME

360

10.13 SNMP VIEW

362

10.14 SNMP TARGETADDR

364

10.15 SNMP TARGETPARAMS

366

VS-2024-F

DATACOM SYSTEMS INC

10.16 SNMP USER

368

10.17 SNMP NOTIFY

370

10.18 SNMP FILTERPROFILE

372

10.19 SNMP-SERVER ENABLE TRAPS SNMP AUTHENTICATION

373

10.20 SNMP-SERVER TRAP UDP-PORT

374

10.21 SNMP-SERVER TRAP PROXY-UDP-PORT

375

10.22 SNMP AGENT PORT

376

10.23 SNMP TCP ENABLE

377

10.24 SNMP TRAP TCP ENABLE

378

10.25 SNMP-SERVER TCP-PORT

379

10.26 SNMP-SERVER TRAP TCP-PORT

380

10.27 SNMP-SERVER ENABLE TRAPS

381

10.28 SHOW SNMP

382

10.29 SHOW SNMP COMMUNITY

383

10.30 SHOW SNMP GROUP

384

10.31 SHOW SNMP GROUP ACCESS

386

10.32 SHOW SNMP ENGINEID

387

10.33 SHOW SNMP PROXY

388

10.34 SHOW SNMP MIBPROXY

389

10.35 SHOW SNMP VIEWTREE

391

10.36 SHOW SNMP TARGETADDR

392

10.37 SHOW SNMP TARGETPARAM

393

10.38 SHOW SNMP USER

394

10.39 SHOW SNMP NOTIF

395

10.40 SHOW SNMP INFORM STATISTICS

397

10.41 SHOW SNMP-SERVER TRAPS

398

10.42 SHOW SNMP-SERVER PROXY-UDP-PORT

399

10.43 SHOW SNMP TCP

400

10.44 SHOW SNMP FILTER TABLE

401

CHAPTER 11: 11. SNTP

402

11.1 SNTP

404

11.2 SET SNTP CLIENT

405

11.3 SET SNTP CLIENT VERSION

406

11.4 SET SNTP CLIENT ADDRESSING MODE

407

11.5 SET SNTP CLIENT PORT

408

11.6 SET SNTP CLIENT CLOCK-FORMAT

409

11.7 SET SNTP TIME ZONE

410

11.8 SET SNTP CLIENT CLOCK-SUMMER-TIME

411

11.9 SET SNTP CLIENT AUTHENTICATION-KEY

412

11.10 SET SNTP UNICAST-SERVER AUTO-DISCOVERY

413

11.11 SET SNTP UNICAST-POLL-INTERVAL

414

11.12 SET SNTP UNICAST-MAX-POLL-TIMEOUT

415

11.13 SET SNTP UNICAST-MAX-POLL-RETRY

416

11.14 SET SNTP UNICAST-SERVER

417

11.15 SET SNTP BROADCAST-MODE SEND-REQUEST

418

11.16 SET SNTP BROADCAST-POLL-TIMEOUT

419

11.17 SET SNTP BROADCAST-DELAY-TIME

420

11.18 SET SNTP MULTICAST-MODE SEND-REQUEST

421

11.19 SET SNTP MULTICAST-POLL-TIMEOUT

422

11.20 SET SNTP MULTICAST-DELAY-TIME

423

11.21 SET SNTP MULTICAST-GROUP-ADDRESS

424

11.22 SET SNTP ANYCAST-POLL-INTERVAL

425

11.23 SET SNTP ANYCAST-POLL-TIMEOUT

426

11.24 SET SNTP ANYCAST-POLL-RETRY-COUNT

427

11.25 SET SNTP ANYCAST-SERVER

428

11.26 SHOW SNTP CLOCK

429

DATACOM SYSTEMS INC

CONTENTS

 

11.27 SHOW SNTP STATUS

430

11.28 SHOW SNTP UNICASTMODE STATUS

431

11.29 SHOW SNTP BROADCASTMODE STATUS

432

11.30 SHOW SNTP MULTICASTMODE STATUS

433

11.31 SHOW SNTP ANYCASTMODE STATUS

434

11.32 DEBUG SNTP

435

CHAPTER 12:

12. RMON

437

12.1 SET RMON

438

12.2 RMON COLLECTION HISTORY

439

12.3 RMON COLLECTION STATS

440

12.4 RMON EVENT

441

12.5 RMON ALARM

442

12.6 SHOW RMON

444

DATACOM SYSTEMS INC

Figures

Figure 2-1: Command Modes Access Path

.

19

1.Introduction

Chapter

1

1.1 Purpose

Datacom Systems Inc is a pre-integrated OEM ready software for managed Layer2/Layer 3 switches, which performs switching between Ethernet ports at wire speed. Datacom Systems Inc provides the basic bridging functionality and also offers advanced features such as link aggregation, GVRP/GMRP, IGMP Snooping and Network Access Control.

This document describes in detail the CLI commands that are specific to xCAT target. It is intended to be a reference manual for users and system administrators who will configure Datacom Systems Inc through the CLI interface.

1.2 Scope

The scope of this document is limited to Datacom Systems Inc release 5.0.0.0. This document details all the Marvell xCAT based CLI commands provided by the Datacom Systems Inc software.

1.3 Document Conventions

The syntax of the CLI command is given in Courier New 10 bold.

Elements in (< >) indicate the field required as input along with a CLI command, for example, < integer (100-1000)>.

Elements in square brackets ([]) indicate optional fields for a command.

Text in {} refers to ‘either-or group’ for the tokens given inside separated by a | symbol.

The CLI command usage is given in Courier New 10 regular.

Outputs and messages for CLI commands are given in Courier New 10 regular.

VS-2024-F

DATACOM SYSTEMS INC

The no form of the command resets a particular configuration to its default value or revokes the effect. This is explicitly explained in the description of the commands for which it is applicable.

Any action that can change the switch configuration, any conditionals and requirements for a command and any information associated with significant details and functionality of command is

listed using the symbol.

Datacom Systems Inc is available in three different packages, namely, Workgroup, Enterprise and Metro1. The parameters specific for a particular package are indicated along with the description of the parameter itself.

1.4 Key Conventions

1.4.1 Keyboard shortcuts

Up Arrow /

Displays the previously executed command

Down Arrow

Ctrl + C

Exits from the ISS prompt

Backspace

Removes a single character

/ Ctrl + H

TAB

Completes a command without typing the full word

Left Arrow /

Traverses the current line

Right Arrow

1.4.2 Others

- helps to list the available commands

- exits the output display if display is more than one page and returns to the ISS prompt

"show history"

?

'q'

- displays the command history list

1 Refer ISS Product Specification Document for a detailed description of the package.

2.Command Line Interface

Chapter

2

This section describes the configuration of Datacom Systems Inc using the Command Line Interface.

The Command Line Interface (CLI) can be used to configure the Intelligent Switch Solution from a console attached to the serial port of the switch or from a remote terminal using TELNET.

The Datacom Systems Inc CLI supports a simple login authentication mechanism. The authentication is based on a user name and password provided by the user during login. The user "root" is created by default with password "admin123".

When Datacom Systems Inc is started, the user name and password has to be given at the login prompt to access the CLI shell:

Datacom Systems Inc. Intelligent Switch Solution

ISS Login: guest

Password: ********

iss#

The "user-exec" mode is now available to the user. CLI Command Modes provide a detailed description of the various modes available for ISS.

When Datacom Systems Inc. ISS-Chassis is started, the user name and password has to be given at the login prompt to access the CLI shell:

IDatacom Systems Inc. Intelligent Switch Solution

ISS Login: chassisuser

Password: ********

iss-boot>

VS-2024-F

DATACOM SYSTEMS INC

The Boot Configuration mode is now available to the user.

The command prompt always displays the current mode.

CLI commands need not be fully typed. The abbreviated forms of CLI commands are also accepted by the Datacom Systems Inc CLI. For example, commands like " show ip global config" can be typed as "sh ip gl co".

CLI commands are case insensitive.

CLI commands will be successful only if the dependencies are satisfied for a particular command that is issued. Appropriate error messages will be displayed, if the dependencies are not satisfied

Note: The ethernet type of an interface is determined during System Startup. While configuring interface-specific parameters, its ethernet type needs to be specified correctly. A fast ethernet interface cannot be configured as a gigabit-ethernet interface and vice-versa.

2.1 CLI Command Modes

Command Mode

Access Method

Prompt

Exit method

User EXEC

This is the initial mode to start a session.

iss>

The logout method is used.

Privileged EXEC

The User EXEC mode command enable, is used to enter the Privileged EXEC mode.

iss#

To return from the Privileged EXEC mode to User EXEC mode the disable command is used.

Global Configuration

The Privileged EXEC mode command configure terminal, is used to enter the Global Configuration mode

iss(config)#

To exit to the Global Configuration mode the exit command is used and to exit to the Privileged EXEC mode the end command is used.

Interface Configuration

The Global Configuration mode command interface

<interface-

iss(config-

To exit to the Global Configuration mode the exit command is used and to exit to the Privileged EXEC mode the end command is used.

if)#

 

type><interface-

id> is used to enter the Interface configuration mode.

Config-VLAN

 

iss(config-

vlan)#

The global configuration mode command vlan vlan-id, is used to enter the Config-VLAN mode.

To exit to the Global Configuration mode the exit command is used and to exit to the Privileged EXEC mode the end

DATACOM SYSTEMS INC

CHAPTER 2: COMMAND LINE INTERFACE

DATACOM SYSTEMS INC CHAPTER 2: COMMAND LINE INTERFACE Command Mode Access Method Prompt Exit method  

Command Mode

Access Method

Prompt

Exit method

 

command is used.

Line Configuration

The global configuration mode command line, is used to enter the Line Configuration mode.

iss(config-

To exit to the Global Configuration mode the exit command is used and to exit to the Privileged EXEC mode the end command is used.

line)#

Redundancy

The global configuration mode command redundancy, is used to enter the Redundancy Configuration mode.

iss(config-

To exit to the Global Configuration mode the exit command is used.

Configuration

r)#

Boot Configuration

This is the initial mode to start an ISS-Chassis session.

iss-boot>

The reload command is used to restart the switch.

2.2 User EXEC Mode

After logging into the device, the user is automatically in the User EXEC mode. In general, the User EXEC commands are used to temporarily change terminal settings, perform basic tests and list system information.

2.3 Privileged EXEC Mode

Since many of the privileged commands set operating parameters, privileged access is password protected to prevent unauthorized use. The password is not displayed on the screen and is case sensitive. The Privileged EXEC mode prompt is the device name followed by the pound (#) sign.

2.4 Global Configuration Mode

Global Configuration commands apply to features that affect the system as a whole, to any specific interface.

2.5 Interface Configuration Mode

The following are the different modes present under the Interface Configuration mode.

2.5.1 Physical Interface Mode

The Physical Interface mode is used to perform interface specific operations. To return to the global configuration mode the exit command is used.

VS-2024-F

DATACOM SYSTEMS INC

2.5.2 Port Channel Interface Mode

The Port Channel Interface mode is used to perform port-channel specific operations.

To return to the global configuration mode the exit command is used.

2.5.3 VLAN Interface Mode

The VLAN Interface mode is used to perform L3-IPVLAN specific operations. To return to the global configuration mode the exit command is used.

2.5.4 Tunnel Interface Mode

The Tunnel Interface mode is used to perform Tunnel specific operations. To return to the global configuration mode the exit command is used.

2.5.5 Out of Band Interface Mode

The Out of Band Interface mode is used to perform OOB interface specific operations. To return to the global configuration mode the exit command is used.

2.6 Config-VLAN Mode

This mode is used to perform VLAN specific operations. To return to the global configuration mode the exit command is used.

2.7 Line Configuration Mode

Line configuration commands modify the operations of a terminal line.

2.8 Boot Configuration

This mode is used to generate the Slot information (module type). The reload command is used to restart the switch.

2.9 Redundancy Configuration

This mode is used to modify the redundancy parameters. To return to the global configuration mode the exit command is used.

2.10 Protocol Specific Modes

The following are the different Protocol specific modes.

2.10.1 DiffSrv ClassMap Configuration mode

The class-map global configuration command creates a class map to be used for matching the packets to the class whose index is specified and to enter the class-map configuration mode The Global

DATACOM SYSTEMS INC

CHAPTER 2: COMMAND LINE INTERFACE

configuration mode command class-map <short(1-65535)> is used to enter the DiffSrv ClassMap Configuration mode and. the prompt seen at this mode is iss(config-cmap)#.

To return to the global configuration mode the exit command is used.

2.10.2 DiffSrv Policy-Map Configuration Mode

In the Policy-Map Configuration mode the user can create or modify a policy map.

The Global configuration mode command policy-map <short(1-65535)> is used to enter the DiffSrv PolicyMap Configuration mode and the prompt seen at this mode is iss(config-pmap)#.

To return to the global configuration mode the exit command is used.

2.10.3 DiffSrv Policy-Map Class Configuration Mode

The Policy-Map Class Configuration command defines a traffic classification for the policy to act on. The class-map-num that is specified in the policy map ties the characteristics for that class and its match criteria as configured by using the class-map global configuration command to the class map. Once the class command is entered, the switch enters policy-map class configuration mode.

The DiffSrv Policy mode command policy-map <short(1-65535)> is used to enter the DiffSrv Policy-Map Class Configuration mode and. the prompt seen at this mode is iss(config-pmap-c)#.

To return to the global configuration mode the exit command is used.

2.10.4 DHCP Pool Configuration Mode

This mode is used to configure the network pool / host configurations of a subnet pool.

The Global configuration mode command ip dhcp pool <integer(1-2147483647)> creates a DHCP server address pool and places the user in DHCP pool configuration mode. The prompt seen at this mode is iss(dhcp-config)#.

To return to the global configuration mode the exit command is used.

2.10.5 ACL Standard Access List Configuration Mode

Standard access lists create filters based on IP address and network mask only (L3 filters only).

The Global configuration mode command ip access-list standard <(1-1000) creates IP ACLs and is used to enter the ACL Standard Access List Configuration mode. The prompt seen at this mode is iss(config-std-nacl)#.

To return to the global configuration mode the exit command is used.

2.10.6 ACL Extended Access List Configuration Mode

The Extended Access lists enables to specify filters based on the type of protocol, range of TCP/UDP ports as well as IP address and network mask (Layer 4 filters).

The Global configuration mode command ip access-list extended <(1001-65535)> is used to enter the ACL Extended Access List Configuration mode and the prompt seen at this mode is iss(config-ext-nacl)#.

To return to the global configuration mode the exit command is used.

VS-2024-F

DATACOM SYSTEMS INC

2.10.7 ACL MAC Configuration Mode

The MAC access-list global configuration command creates Layer 2 MAC ACLs, and returns the MAC- Access list configuration mode to the user.

The Global configuration mode command mac

access-list extended <(1-65535)> is used to

enter the ACL MAC Configuration mode and the prompt seen at this mode is iss(config-ext-

macl)#.

To return to the global configuration mode the exit command is used.

DATACOM SYSTEMS INC

CHAPTER 2: COMMAND LINE INTERFACE

User EXEC Mode

Prompt: iss> enable

Password

User EXEC Mode Prompt : iss> enable Password Privileged Mode Prompt : iss# Global Configuration Mode

Privileged Mode

Prompt: iss#

: iss> enable Password Privileged Mode Prompt : iss# Global Configuration Mode Prompt : iss(config)# Protocol

Global Configuration Mode

Prompt: iss(config)#

: iss# Global Configuration Mode Prompt : iss(config)# Protocol Specific Modes DHCP Pool Configuration Prompt :

Protocol Specific Modes

DHCP Pool Configuration

Prompt: iss(dhcp-config)#

DiffSrv ClassMap

Configuration

Prompt: iss(config-cmap)#

DiffSrv Policy-Map Class Configuration Mode

Prompt: iss(config-pmap-c)#

ACL Extended Access List Configuration

Prompt: iss(config-ext-nacl)#

DiffSrv Policy-Map Configuration Prompt: iss(config-pmap)#

ACL Standard Access List Configuration

Prompt: iss(config-std-nacl)#

ACL MAC Configuration Prompt: iss(config-ext-macl)#

General Configuration Modes

Line Configuration

Prompt:: iss (config-line)#

Interface Configuration Mode Prompt: iss (config-if)#

Config-VLAN

Prompt: iss(config-vlan)#

Redundancy Configuration

Prompt: iss(config-r)#

Figure 2-1: Command Modes Access Path

Chapter

3

3.DiffServ (Differentiated Services)

DiffServ (Differentiated Services) is an architecture for providing different types or levels of service for network traffic. One key characteristic of Diffserv is that flows are aggregated in the network, so that core routers only need to distinguish a comparably small number of aggregated flows, even if those flows contain thousands or millions of individual flows.

Differentiated services are intended to provide a framework and building blocks to enable deployment of scalable service discrimination in the Internet. The differentiated services approach aims to speed deployment by separating the architecture into two major components, one of which is fairly well- understood and the other of which is just beginning to be understood. In this, we are guided by the original design of the Internet where the decision was made to separate the forwarding and routing components. Packet forwarding is the relatively simple task that needs to be performed on a per-packet basis as quickly as possible. Forwarding uses the packet header to find an entry in a routing table that determines the packet's output interface. Routing sets the entries in that table and may need to reflect a range of transit and other policies as well as to keep track of route failures. Routing tables are maintained as a background process to the forwarding task.

The list of CLI commands for the configuration of DiffServ is as follows:

set qos

class-map

policy-map

match

class

set cos

shutdown qos

cosq scheduling algorithm

traffic class

VS-2024-F

DATACOM SYSTEMS INC

show policy-map

show class-map

show cosq algorithm

show cosq weights-bw

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.1 set qos

This command enables differentiated services on the device. The disable option is used to disable the QoS feature on the device.

set qos { enable | disable }

Syntax

enable

-

Enables differentiated services

Description

 

disable

-

Disables differentiated services

Mode

Global Configuration Mode

Package

Workgroup, Enterprise and Metro

Defaults

disable

Example

iss(config)# set qos enable

QoS must be globally enabled prior to the execution of the class-map and policy-map mode commands.

When set as 'enabled', DiffServ Module programs the hardware and starts Protocol Operation.

When set as 'disabled', it stops protocol operation by deleting the hardware configuration.

Related Commands

show policy-map - Displays the quality of service (QoS) policy maps

show class-map - Displays quality of service (QoS) class maps

VS-2024-F

DATACOM SYSTEMS INC

3.2 class-map

This command creates a class map that is meant to be used for matching the packets to the class whose index is specified. This command is also used to enter the class-map configuration mode. The no form of this command is used to delete an existing class map and to return to global configuration mode.

class-map <class-map-number(1-65535)>

no class-map <class-map-number(1-65535)>

Syntax

class-map-number

-

QoS class map number

Description

Mode

Global Configuration Mode

 

Package

Workgroup, Enterprise and Metro

Example

iss(config)# class-map 5

Differentiated services must have been enabled in the device.

The class-map command and its subcommands are used to define packet classification, marking, and aggregate policing as part of a globally named service policy applied on a per-interface basis.

The match command is available from the class-map configuration mode.

Related Command

show class-map - Displays quality of service (QoS) class maps

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.3 policy-map

This command is used to enter the policy-map configuration mode. In the policy-map configuration mode the user can create or modify a policy map. The no form of this command deletes an existing policy map and returns to the global configuration mode.

policy-map <policy-map-number(1-65535)>

no policy-map <policy-map-number(1-65535)>

Syntax

policy-map-number - QoS Policy map number

Description

Mode

Global Configuration Mode

Package

Workgroup, Enterprise and Metro

Example

iss(config)# policy-map 6

Differentiated services must have been enabled in the device.

The following two commands are available from the policy-map configuration mode:

- class

- exit - Exits from the policy map configuration mode and returns to the global configuration mode.

Related Command

show policy-map - Displays quality of service (QoS) policy maps

VS-2024-F

DATACOM SYSTEMS INC

3.4 match

This command specifies the fields in the incoming packets that are to be examined for the classification of the packets. The IP access group / MAC access group can be used as match criteria.

match access-group { mac-access-list | ip-access-list } <acl-index-num (1- 65535) >

Syntax

Description

mac-access-list

-

Access list created based on MAC addresses for non-IP traffic

ip-access-list

-

Access list created based on IP addresses. The IP-access list can either be defined as a standard IP-access list or an extended IP-access list.

acl-index-num

-

Specifies the ACL index range. The ACL index range for an IP standard ACL is 1 to 1000 and IP extended ACL is 1001 to 65535.

The ACL index range for a MAC extended ACL is 1 to

65535.

Mode

Package

Example

Class Map Configuration Mode

Workgroup, Enterprise and Metro

iss (config-cmap)# match access-group mac-access-list 5

Differentiated services must have been enabled in the device.

MAC access list and IP access list must have been configured.

Related Commands

class-map - Creates a class map to be used for matching the packets with the class whose name/index is specified

show class-map - Displays QoS Class maps

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.5 class

This command defines a traffic classification for the policy to act. The class-map-number that is specified in the policy map ties the characteristics for that class to the class map and its match criteria, as configured by using the class-map global configuration command. On execution of the class command, the switch enters the policy-map class configuration mode.

The no form of this command un-maps the class-map from the current policy-map configuration.

class <class-map-number(1-65535)>

no class <class-map-number(1-65535)>

Syntax

class-map-number

-

Class Map Number

Description

Mode

Policy-Map Configuration Mode

Package

Workgroup, Enterprise and Metro

Example

iss (config-pmap)# class 5

Differentiated services must have been enabled in the device.

The policy-map global configuration command must be executed prior to using the class command. After a policy map is specified, the user can either configure a policy for new classes or modify a policy for any existing classes in that policy map.

The following configuration commands are available from the policy map class configuration mode:

- set cos

Related Commands

policy-map - Enters the policy map configuration mode

show policy-map - Displays the QoS policy maps

VS-2024-F

DATACOM SYSTEMS INC

3.6 set cos

This command defines the in-profile action by setting a class of service (CoS), Differentiated Services Code Point (DSCP), or IP-precedence value in the packet.

The no form of the command deletes the configured values.

set {cos <new-cos(0-7)> | ip dscp <new-dscp(0-63)> | ip precedence <new-

precedence(0-7)>}

no set {cos <new-cos(0-7)> | ip { dscp <new-dscp(0-63)> | precedence <new-

precedence(0-7)>}}

Syntax

cos

-

New COS value assigned to the classified traffic

Description

 

ip

dscp

-

New DSCP value assigned to the classified traffic

ip precedence

-

New IP-precedence value assigned to the classified traffic

Mode

Policy-Map Class Configuration Mode

Package

Workgroup, Enterprise and Metro

Example

iss (config-pmap-c)# set cos 5

To attach policy maps that contain the following elements to an ingress interface

- set policy-map class configuration commands must be used. Moreover, the police policy-map class configuration command can be used to mark down (reduce) the DSCP value at the ingress interface.

- Access control list (ACL) classification.

- Per-port per-VLAN classification.

Related Commands

class- Defines a traffic classification for the policy set

policy-map - Used to enter the policy map configuration mode

class-map - Creates a class map

show policy-map - Displays the QoS policy map configuration

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.7 shutdown qos

This command shuts down the Quality-of-Service operation. The no form of the command starts and enables the Quality-of-Service operation.

shutdown qos

no shutdown qos

Mode

Global Configuration Mode

Package

Workgroup, Enterprise and Metro

Defaults

QoS is started and enabled by default

Example

iss(config)# shutdown qos

When shutdown, all the pools used by DiffServ module will be released to the system.

When started, the resources required by DiffServ module are allocated and the module starts running.

Related Commands

show policy-map - Displays the quality of service (QoS) policy maps

show class-map - Displays quality of service (QoS) class maps

VS-2024-F

DATACOM SYSTEMS INC

3.8 cosq scheduling algorithm

This command sets cosq scheduling algorithm.

cosq scheduling algorithm { strict | rr | wrr | wfq | strict-rr | strict-wrr | strict-wfq | deficit }

Syntax

strict

-

strict

Description

rr

-

round robin

wrr

-

weighted round robin

wfq

-

weighted fair queing

strict-rr

-

strict - round robin

strict-wrr

-

strict - weighted round robin

strict-wfq

-

strict - weighted fair queing

deficit

-

deficit

Mode

Interface Configuration mode

Package

Workgroup, Enterprise and Metro

Example

iss(config-if)# cosq scheduling algorithm strict

Related Commands

show cosq algorithm - Displays the CoSq algorithm used for the interface.

show cosq weights-bw - Displays the CoSq weights and the bandwidth for the interface.

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.9 traffic class

This command sets weight and bandwidth for traffic classes.

traffic-class <integer(0-7)> weight <integer(0-15)> [ minbandwidth <integer(1-

262143)>]

Syntax

Description

Mode

Package

Defaults

Example

traffic-class

-

Configures cosq numbers

weight

-

Configures cosq weights

minbandwidth

-

Configures minimum bandwidth

Interface Configuration mode

Workgroup, Enterprise and Metro

weight

iss(config-if)# traffic-class 1 weight 7 minbandwidth 1234

-

1

Related Commands

show cosq algorithm - Displays the CoSq algorithm used for the interface.

show cosq weights-bw - Ddisplays the CoSq weights and the bandwidth for the interface.

VS-2024-F

DATACOM SYSTEMS INC

3.10 show policy-map

This command displays the quality of service (QoS) policy maps, which defines the classification criteria for the incoming traffic. Policy maps can include policers that specify the bandwidth limitations and the action to take if the limits are exceeded.

show policy-map [<policy-map-num(1-65535)> [class <class-map-num(1-65535)>]]

Syntax

policy-map-num

-

Policy map number

Description

 

class

-

Class map number

Mode

Privileged/User EXEC Mode

Package

Workgroup, Enterprise and Metro

Example

iss# show policy-map 24

DiffServ Configurations:

------------------------

Quality of Service has been enabled

Policy Map 24 is not active

Class Map: 20

----------------

Protocol

In Profile Entry

----------------

In profile action

Out Profile Entry

-----------------

Metering on

burst bytes/token size

: 255

: policed-precedence 5

:

6

Refresh count

: 1000

Out profile action

: drop

No Match Entry

--------------

No match action

: policed-precedence 5

Related Commands

policy-map - Used to enter the policy map configuration mode

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

class - Defines a traffic classification for the policy to act

set cos - Defines the in-profile action by setting a CoS, DSCP or IP-precedence value in the packet

VS-2024-F

DATACOM SYSTEMS INC

3.11 show class-map

This command displays quality of service (QoS) class maps, which defines the match criteria to classify traffic.

show class-map [<class-map-num(1-65535)>]

Syntax

class-map-num

-

Displays the configured class map number

Description

Mode

Privileged/User EXEC Mode

 

Package

Workgroup, Enterprise and Metro

Example

iss# show class-map

DiffServ Configurations:

------------------------

Class map 20

--------------

Filter-ID

:

3

Filter-Type

: IP-Filter

Related Commands

class-map - Creates a class map that is meant to be used for matching the packets to the class whose index is specified

match - Specifies the fields in the incoming packets that are to be examined for the classification of the packets

DATACOM SYSTEMS INC

CHAPTER 3: DIFFSERV (DIFFERENTIATED SERVICES)

3.12 show cosq algorithm

This command displays the CoSq algorithm used for the interface.

show cosq algorithm [ interface <interface-type> <interface-id> ]

Syntax

interface-type

-

Interface Type

Description

 

interface-id

-

Interface ID

Mode

Global Configuration Mode

Package

Workgroup, Enterprise and Metro

Example

iss(config)# show cosq algorithm interface gigabitethernet

0/1

CoSq Algorithm

------------------------

Interface

Algorithm

-----------

---------------

Gi0/1

StrictPriority

--------------------------

VS-2024-F

DATACOM SYSTEMS INC

3.13 show cosq weights-bw

This command displays the CoSq weights and the bandwidth for the interface.

show cosq weights-bw [ interface <interface-type> <interface-id> ]

Syntax

interface-type

-

Interface Type

Description

 

interface-id -

Interface ID

Mode

Global Configuration Mode

Package

Workgroup, Enterprise and Metro

Example

iss(config)# show cosq weights-bw interface gigabitethernet

0/1

CoSq Weights and Bandwidths

----------------------------------------------

Interface CoSqId CoSqWeight

MinBw

MaxBw

Flag

--------- ------ ---------

------

----

-----

Gi0/1

0

1

0

0

2

Gi0/1

1

1

0

0

2

Gi0/1

2

1

0

0

2

Gi0/1

3

1

0

0

2

Gi0/1

4

1

0

0

2

Gi0/1

5

1

0

0

2

Gi0/1

6

1

0

0

2

Gi0/1

7

1