Mellanox MLNX-OS® User Manual for IBM 90Y3474
Contents
1. switch config Related Commands Note Mellanox Technologies 209 Mellanox Technologies Confidential Rev 3 20 4 7 4 7 1 Mellanox Technologies 210 Event Notifications MLNX OS features a variety of supported events Events are printed in the system log file and optionally can be sent to the system administrator via email SNMP trap or directly prompted to the terminal Supported Events The following table presents the supported events and maps them to their relevant MIB OID Table 18 Supported Event Notifications and MIB Mapping has changed to DOWN SNMPv1 Event Name Event Description MIB OID Comments asic chip down ASIC chip down Mellanox EFM MIB Not supported asicChipDown cpu util high CPU utilization has risen Mellanox EFM MIB too high cpuUtilHigh disk space low File system free space has Mellanox EFM MIB fallen too low diskSpaceLow health module status Health module status Mellanox EFM MIB changed systemHealthStatus insufficient fans Insufficient amount of fans Mellanox EFM MIB in system insufficientFans insufficient fans recover Insufficient amount of fans Mellanox EFM MIB in system recovered insufficientFansRecover insufficient power Insufficient power supply Mellanox EFM MIB insufficientPower interface down An interface s link state RFC1213 linkdown Supported for Ethernet InfiniBa2. Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 4 0000 Role admin Example switch config show ip bgp community 100 1 BGP table version is 8 local router ID is 3 5 7 4 Status codes s suppressed d damped h history valid gt best i internal r RIB failure S Stale m multipath b backup path x best external Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrft Weight Path gt 3 4 3 11 32 0 0 0 0 0 0 32768 i BS B54 Ee SBLS2 0 0 0 0 0 0 32768 i BS 33D lt 99 32 0 0 0 0 0 0 32768 i switch config show ip bgp community 100 1 exact BGP table version is 8 local router ID is 3 5 7 4 Status codes s suppressed d damped h history valid gt best i internal r RIB failure S Stale m multipath b backup path x best external Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path gt 3 4 3 11 32 0 0 0 0 0 0 32768 i RS B45 ERI OLB2 Ora Ue bra 0 0 32768 i Related Commands N A Note Mellanox Technologies 679 Mellanox Technologies Confidential Rev 3 20 show ip bgp neighbors show ip bgp neighbors Displays summaries information about all BGP neighbors Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip bgp neighbors lt ip gt received switch e07c04 standalon
3. Syntax Description vlan lt vlan id gt The VLAN ID Range is 1 4094 loopback lt number gt Loopback interface number ethernet lt port gt Ethernet interface hash len Specifies the hash mask length used in BSR messages Range 0 32 priority BSR priority rating Larger numbers denote higher pri ority Range 0 255 interval Period between the transmission of BSMs seconds Range 10 536870906 Default The interface is not BSR candidate by default priority 64 interval 60 hash len 30 Configuration Mode Config Config Interface Ethernet configured as a router port Config Interface Loopback Config Interface Port Channel configured as a router port Config Interface VLAN History 3 3 5006 Role admin Example switch config ip pim bsr candidate vlan 10 priority 100 Mellanox Technologies 732 Mellanox Technologies Confidential Rev 3 20 Related Commands ip pim sparse mode Note IP PIM sparse mode must be enabled on the interface e A BSR is a PIM router within the PIM domain through which dynamic RP selection is implemented The BSR selects RPs from a list of candidate RPs and exchanges bootstrap messages BSM with all routers in the domain The BSR is elected from one of the C BSRs through an exchange of BSMs A subset of PIM routers within the domain are con figured as candidate Bootstrap routers C BSRs Through the exchange of Bootstrap mes sages BSMs the C BSRs ele
4. f 5 Setup Ports Information i Ports Phy Profile Monitor Session Protocol Type Port channels 1 2 Port Info Port number 1 Mac address 00 02 c9 72 0d ac Port type ETH MTU 1500 bytes Port description Flow control receive off send off Admin state Enabled Actual speed 10 Gbps Operational state Down Switchport mode access PFC admin mode Off PFC operational mode Off Last clearing of counters Never 60 seconds ingress rate 0 bits sec 0 bytes sec 0 packets sec 60 seconds egress rate 0 bits sec 0 bytes sec 0 packets sec Clear Port 1 Counters TX packets 0 TX unicast packets 0 Port Counters RX packets 0 RX unicast packets 0 3 2 1 Setup Menu The Setup menu makes available the following submenus listed in order of appearance from top to bottom Table 10 Setup Submenus Mellanox Technologies 33 Submenu Title Description Interfaces Obtains the status of configures or disables interfaces to the InfiniBand fabric Thus you can set or clear the IP address and netmask of an interface enable DHCP to dynamically assign the IP address and netmask and set interface attri butes such as MTU speed duplex etc HA Creates joins or modifies an InfiniBand subnet Routing Configures removes or displays the default gateway and the static and dynamic routes Hostname Configures or modifies the hostname Configures or deletes sta
5. History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor graceful restart helper Related Commands Note e When graceful restart helper mode is enabled the switch retains routes from neighbors capable of graceful restart while those neighbors are restarting BGP e Individual neighbor configuration takes precedence over the global configuration Mellanox Technologies 655 Mellanox Technologies Confidential Rev 3 20 neighbor import localpref neighbor lt ip address gt lt peer group name gt import localpref lt value gt no neighbor lt ip address gt lt peer group name gt import localpref Configures the local preference value assigned to routes received from the specified peer or peer group The no form of the command resets the local preference to its default value Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name value Preference value Range 0 2147483647 Default 100 Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 import localpref 100 Related Commands Note Mellanox Technologies 656 Mellanox Technologies Confidential Rev 3 20 neighbor local as neighbor lt ip address gt lt peer group name gt local as lt as id gt no prepend replace as no ne
6. History 3 2 3000 Role admin Example switch config aaa authentication attempts class override admin no lockout Related Commands N A Note Mellanox Technologies 245 Mellanox Technologies Confidential Rev 3 20 aaa authentication attempts reset aaa authentication attempts reset all user lt username gt no clear history no unlock Clears the authentication history for and or unlocks specified users Syntax Description all Applies function to all users user Applies function to specified user no clear history Leaves the history of login failures but unlocks the account no unlock Leaves the account locked but clears the history of login failures Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config aaa authentication attempts reset user admin all Related Commands N A Note Mellanox Technologies 246 Mellanox Technologies Confidential Rev 3 20 clear aaa authentication attempts clear aaa authentication attempts all user lt username gt no clear history no unlock Clears the authentication history for and or unlocks specified users Syntax Description all Applies function to all users user Applies function to specified user no clear history Clears the history of login failures no unlock Unlocks the account Default N A Configuration Mode Config
7. Ox5 Critical System initialization failure Standard POST Mellanox Technologies 176 Mellanox Technologies Confidential Rev 3 20 Table 17 POST Return Codes Return Code Severity Meaning POST Section 0x10 Critical Failure connecting to the main man Standard POST agement process 0x15 Critical VPD initialization failure Standard POST 0x20 Critical CPLD initialization failure Standard POST 0x25 Critical Default IP configuration failure Standard POST 0x30 Critical Temperature sensors failure Extended POST 0x35 Critical Voltage sensors failure Extended POST 0x40 Critical RAM memory failure Full POST 0x45 Critical NAND memory failure Full POST 0x80 Non critical Incorrect firmware version Standard POST Oxff Non critical POST ended successfully Standard POST Mellanox Technologies 177 Mellanox Technologies Confidential Rev 3 20 4 5 4 Commands logging local override logging local override class lt class gt priority lt log level gt no logging local override class lt class gt priority lt log level gt Enables class specific overrides to the local log level The no form of the command disables all class specific overrides to the local log level without deleting them from the configuration but disables them so that the log ging level for all classes is determined solely by the global setting Syntax Description override Enables class
8. General sent received vl v2 reports 0 0 v2 queries 3 1 v2 leaves 0 0 v3 queries 0 0 v3 reports 0 0 VLAN19 Interface status protocol up admin up link up IP address 19 19 19 49 IP Subnet 19 19 19 0 24 Active Querier 19 19 19 49 Membership count 3 Route queue depth 0 IGMP Version 2 IGMP query interval 125 secs configured value 125 secs IGMP max response time 10 secs configured value 10 secs IGMP startup query interval 125 secs configured value 125 secs IGMP startup query count 2 IGMP group timeout 260 secs configured value 260 secs IGMP querier timeout 260 secs configured value 260 secs IGMP last member mrt 1 secs configured value 1 IGMP robustness variable 2 IGMP interface immediate leave Disabled IGMP interface statistics General sent received vl v2 reports 0 5 v2 queries 14 0 v2 leaves 0 1 v3 queries 0 0 v3 reports 0 0 Related Commands N A Note Mellanox Technologies 769 Mellanox Technologies Confidential Rev 3 20 6 6 VRRP The Virtual Router Redundancy Protocol VRRP is a computer networking protocol that pro vides for automatic assignment of available IP routers to participating hosts This increases the availability and reliability of routing paths via automatic default gateway selections on an IP sub network The protocol achieves this by creating virtual routers which are an abstract representation of multiple routers
9. Mellanox Mellanox MLNX OS SX6506 Management Console Host switch 113dc8 User admin Logout Standalone Wi Virtual IP Active node Chassis master E3 Subnet Manager is not running T fr ams HELI i E s P amp setup System Security Ports F Status EH B sm Q Fete ETH System Serial Number Interfaces HA MRa 7 Routing Installed Licenses DNS License Hostname Key LK 2 SaaS ae EU Hosts Feature EFM_SX ARP Valid yes Neighbors Max num ufm ports supported 200 Virtual Switch Mgmt Active yes web Ea Add New License s Email Alerts XML gateway Please enter one or more licenses each on a separate line Logs Configurations Date and Time NTP Licensing Add Licenses 2009 2012 Mellanox Technologies Inc Step 4 Save the configuration to complete the license installation LZ If you do not save the installation session you will lose the installed licenses at the A next system boot 2 4 3 Retrieving a Lost License Key In case of a lost MLNX OS license key contact your authorized Mellanox reseller and provide the switch s chassis serial number gt To obtain the switch s chassis serial number Step 1 Login to the switch Step 2 Retrieve the switch s chassis serial number using the command show inventory switch config show inventory Module Type Part number Serial Number CHASSIS X1035 MSX6036F
10. Related Commands Note Mellanox Technologies 783 Mellanox Technologies Confidential Rev 3 20 show vrrp statistics show vrrp Statistics interface lt type lt number gt vr lt id gt Displays VRRP counters Syntax Description interface lt type gt lt num Filters the output to a specific interface type and num ber gt ber vr lt id gt Filters the output to a specific virtual router Range 1 255 Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show vrrp statistics Ethernet1 5 Group 1 IPV4 Invalid packets Too short Transitions to Master on on Total received Bad TTL Failed authentication Unknown authentication Conflicting authentication Conflicting Advertise time Conflicting Addresses Received with zero priority Sent with zero priority WWododcde dc OGO H a O a switch config Related Commands Note Mellanox Technologies 784 Mellanox Technologies Confidential Rev 3 20 6 7 MAGP Multi active gateway protocol MAGP is aimed to solve the default gateway problem when a host is connected to a set of switch routers SRs via MLAG The network functionality in that case requires that each SR is an active default gateway router to the host thus reducing hops between the SRs and directly forwarding IP traffic to the L3 cloud regardless which SR traffic comes th
11. Related Commands show snmp Note e If neither the ro or the rw parameters are specified the read only community is set as the default community e If the read only community is specified only queries can be performed e If the read write community is specified both queries and sets can be performed Mellanox Technologies 342 Mellanox Technologies Confidential Rev 3 20 snmp server contact snmp server contact lt contact name gt no snmp server contact Sets a value for the sysContact variable in MIB II The no form of the command resets the parameter to its default value Syntax Description contact name Contact name Default aa Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp server contact my name switch config show snmp SNMP enabled yes SNMP port 161 System contact my name System location Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp Note Mellanox Technologies 343 Mellanox Technologies Confidential Rev 3 20 snmp server enable snmp server enable communities mult communities notify no snmp server enable communities mult communities notify Enables SNMP related function
12. History 3 2 3000 Role admin Example switch config aaa authentication attempts reset user admin no clear history Related Commands N A Note Mellanox Technologies 247 Mellanox Technologies Confidential Rev 3 20 aaa authorization aaa authorization map default user lt username gt order lt policy gt no aaa authorization map default user order Sets the mapping permissions of a user in case a remote authentication is done The no form of the command resets the attributes to default Syntax Description username Specifies what local account the authenticated user will be logged on as when a user is authenticated via RADIUS or TACACS 4 and does not have a local account If the username is local this mapping is ignored policy Sets the user mapping behavior when authenticating users via RADIUS or TACACS to one of three choices The order determines how the remote user mapping behaves If the authenticated username is valid locally no mapping is performed The setting has the following three possible behaviors e remote first If a local user mapping attribute is returned and it is a valid local username it maps the authenticated user to the local user specified in the attribute Otherwise it uses the user specified by the default user command e remote only Maps a remote authenticated user if the authentication server sends a local user mapping attri bute If the attribute do
13. Mellanox Technologies 486 Mellanox Technologies Confidential Rev 3 20 lldp receive transmit lldp receive transmit no lldp receive transmit Enables LLDP to be received or transmitted on this port The no form of the command disables the LLDP to be received or transmitted on this port Syntax Description N A Default Enabled for receive and Trasmit Configuration Mode Config Interface Ethernet History 3 2 0300 Role admin Example switch config interface ethernet 1 1 lldp receive switch config interface ethernet 1 1 lldp transmit switch config interface ethernet 1 1 Related Commands show lldp interface Note The LLDP is disabled by default globally Mellanox Technologies 487 Mellanox Technologies Confidential Rev 3 20 Iidp tlv select lldp tlv select dcbx dcbx cee port description sys name sys description sys capababilities management address none all Sets the LLDP basic TLVs to be transmitted on this port Syntax Description dcbx Enables LLDP DCBX TLVs dcbx cee Enables LLDP DCBX CEE TLVs port description LLDP port description TLV sys name LLDP system name TLV sys description LLDP system description TLV sys capabilities LLDP system capabilities TLV management address LLDP management address TLV all all above TLVs none None of the above TLVs Default all Configuration Mode Config Interfa
14. Related Commands show aaa show ldap Note e The system will select the LDAP host to try according to its order e New servers are by default added at the end of the list of servers Mellanox Technologies 264 Mellanox Technologies Confidential Rev 3 20 Idap login attribute ldap login attribute lt string gt uid sAMAccountName no Idap login attribute Sets the attribute name which contains the login name of the user The no form of the command resets this attribute to its default Syntax Description string Custom attribute name uid LDAP login name is taken from the user login user name sAMAccountName SAM Account name active directory login name Default sAMAccountName Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap login attribute uid switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute uid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version 3 Referrals yes Server port 389 Search Timeout ars Bind Timeout oD SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers 1 10 10 10 10 2 10 70 1012 switch config Related Commands show aaa show ldap Note Mellanox T
15. 2 ec eee eee 563 OAS Commands 2 ry sede eade eh Mee anion shea Sash ale esis LES Bie bea e E 565 6 2 OSPE co 2s erara e Seek taal Se ba oa hee ee eo ee es 592 6 251 Router ID itive sy eee bean oles ev ete ofl ek Grane A AT ee Ghee wea 592 6 2 2 ECMP x Aoshi ls at Gale ied a ita at as ati de kta oats ha a oti we 592 6 2 3 Configuring OSPF cc5 bscci c tenten Gott doi hed eee es 593 6 2 4 Verifye OSPE sehrni hb hath ee Pages ela eas pe eee ole es 594 6 2 5 Commands seca cat eae ecg th Wate yb eden OE EEEN 597 632 BGP ied ani Sub dee da dens Gen coed Obes aes dea aa yey es wed 631 6 3 0 State Machine 4 5 0 ssseksn8 vasa E E E E E haan isa eee 631 0 32 Confipiring BGP isis ss6nac behave pk bute as E ue ERR de E ee Slee bb Blas 631 6 3 3 Verfyine BGP rena e acne deb ods ous Ae lag Dead EA Bolan EOR E Bis lacte Baka 633 6 3 4 Commands enee ees Ss ees Sis BR ee Rees oe lee Piece 634 6 3 5 IP AS Path Access List 0 nee eck ee eee eee b ee E eee beer eb as 686 6 3 6 IP Commumity List 3 56oecch4 cnet Gee tae peda aaa ees 688 6 4 Policy Rules odaca 08 Daas ee Dee ee SS RA 691 6 4 Route Map ests tant ea pata ease E A EN a ieee abet dade et 691 64 2 IP Prefix Liste ccs en pet Nees eR Sa RAR DE Rae ARLORA Bee nee 721 6 5 Multicast IGMP and PIM 0 0 ccc cece eee nes 724 62531 Basic PIM SM reiege tach ink halt a weal wed a balked 724 0 3 2 Bidirectional PIM seiss e a ene habs a oA
16. A link aggregation group LAG is used for extending the bandwidth from a single link to multi ple links and provide redundancy in case of link failure Extending the implementation of the LAG to more than a single device provides yet another level of redundancy that extends from the link level to the node level This extrapolation of the LAG from single to multiple switches is referred to as multi chassis link aggregation MLAG MLAG is supported on Ethernet blades internal as well as external ports A peered device host or switch connecting to switches running an MLAG runs a standard LAG and is unaware of the fact that the LAG connects to two separate switches oe Mellanox Technologies 389 Mellanox Technologies Confidential Rev 3 20 The MLAG switches share an inter peer link IPL between them for carrying control messages in a steady state or data packages in failure scenarios Thus the bandwidth of the IPL should be defined accordingly The IPL itself can be a LAG and be constructed of either 1OGbE or 40GbE links In such a case PFC must be configured on this IPL Figure 13 Basic MLAG Topology on page 392 illustrates The IPL serves the following purposes e MLAG protocol control keepalive messages MAC sync MLAG port sync etc e MLAG port failure serves redundancy in case of a fallen link on one of the MLAG switches e Layer 3 failure serves redundancy in case of a failed connection
17. Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 bgp fast external fallover Related Commands maximum paths Note Although this feature improves BGP conversion time it may cause instability in your BGP table due to a flapping interface Mellanox Technologies 640 Mellanox Technologies Confidential Rev 3 20 bgp listen limit bgp listen limit lt maximum gt no bgp listen limit Limits the number of dynamic BGP peers allowed on the switch The no form of the command resets to the default value Syntax Description maximum The maximum number of dynamic BGP peers to be allowed on the switch Range 1 128 Default 100 Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 bgp listen limit 101 Related Commands Note Mellanox Technologies 641 Mellanox Technologies Confidential Rev 3 20 bgp listen range bgp listen range lt ip prefix gt lt length gt peer group lt peer group name gt remote as lt as number gt no bgp listen range lt ip prefix gt lt length gt Identifies a range of IP addresses from which the switch will accept incoming dynamic BGP peering requests After applying the no form of the command the switch will no longer accept dynamic peering requests on the range Syntax Description ip prefix IP address length
18. Note Mellanox Technologies 305 Mellanox Technologies Confidential Rev 3 20 stats sample lt sample id gt enable stats sample lt sample id gt enable no states sample lt sample id gt enable Enables the sample The no form of the command disables the sample Syntax Description sample id Possible sample IDs are e congested e cpu_util CPU utilization milliseconds of time spent e disk_device_io Storage device I O statistics e disk_io Operating system aggregate disk I O KB sec e eth e fan Fan speed e fs_mnt bytes Filesystem usage bytes e fs_mnt_inodes Filesystem usage inodes e ib e interface Network interface statistics e intf util Network interface utilization bytes e memory System memory utilization bytes e paging Paging activity page faults e power Power supply usage e power consumption e temperature Modules temperature Default Enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config stats sample temperature enable switch config Related Commands show stats sample Note Mellanox Technologies 306 Mellanox Technologies Confidential Rev 3 20 stats sample lt sample id gt interval stats sample lt sample ID gt interval lt number of seconds gt Sets the amount of time between samples for the specified group of sample data Syntax Description sample ID Possible sample IDs are e co
19. Related Commands N A Note Mellanox Technologies 717 Mellanox Technologies Confidential Rev 3 20 set tag set tag lt value gt no set tag Configures a route s entry tag parameter The no form of the command removes a route map s entry tag setting Syntax Description value Range 1 2147483647 Default N A Configuration Mode Config Route Map History 3 3 5200 3 4 0000 Updated parameter range Role admin Example switch config route map mymap permit 10 set tag 10 Related Commands N A Note Mellanox Technologies 718 Mellanox Technologies Confidential Rev 3 20 set weight set weight lt number gt no set weight Configures modifications to redistributed routes The no form of the command removes this configuration from the route map clause Syntax Description number Value of the weight to set Range 1 65535 Default N A Configuration Mode Config Route Map History 3 3 5006 First version 3 4 0000 Updated parameter range Role admin Example switch config route map mymap permit 10 set weight 7 Related Commands route map lt map name gt deny permit sequence number Note Mellanox Technologies 719 Mellanox Technologies Confidential Rev 3 20 show route map show route map lt name gt Displays route map configuration Syntax Description N A Default N A Configuration Mode Any Comman
20. Rev 1 90 November 2013 Added Appendix A MEX6200 System on page 1162 Rev 1 80 October 2013 e Added e Section 5 6 6 MSTP on page 430 e Section 5 7 OpenFlow on page 452 e Section 5 8 3 IGMP Snooping Querier on page 463 e the command ip igmp snooping querier e the command igmp snooping querier query interval e the command show ip igmp snooping querier e Section 5 9 2 DCBX on page 480 e the command Ildp tlv select dcbx e the command dcb application priority e the command show dcb application priority Updated e the command show lldp interface e the command show lldp interfaces ethernet lt inf gt remote Rev 1 7 0 October 2013 Merged MLNX OS Command Reference Guide Rev 1 6 9 and MLNX OS User Manual Rev 1 6 9 Mellanox Technologies 10 Mellanox Technologies Confidential Rev 3 20 About this Manual This manual provides general information concerning the scope and organization of this User s Manual Intended Audience This manual is intended for network administrators who are responsible for configuring and managing Mellanox Technologies SwitchX based Switch Platforms Related Documentation The following table lists the documents referenced in this User s Manual Table 2 Reference Documents Document Name Description InfiniBand Architecture Specification Vol 1 The I
21. Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show temperature Module Component Reg CurTemp Status Celsius MGMT BOARD_MONITOR aie 25300 OK MGMT CPU_BOARD_MONITOR Th 26 00 OK MGMT CPU_BOARD_MONTITOR T2 41 00 OK MGMT QSFP_TEMP1 Tl 23 00 OK MGMT QSFP_TEMP2 Tel 22 50 OK MGMT QSFP_TEMP3 TL 23 00 OK MGMT SX TL 37 00 OK switch config Related Commands N A Note Mellanox Technologies 331 Mellanox Technologies Confidential Rev 3 20 show voltage show voltage Displays power supplies voltage level Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 3 3 5006 Updated Example Role admin Example switch config show voltage lodule Power Meter Reg Expected Actual Status High Low Voltage Voltage Range Range GMI BOARD_MONITOR USB 5V sensor 5 00 Dako 0 Teog 4 45 GMI BOARD_MONITOR Asic I O sensor 22T eel 0 P LSS GMI BOARD_MONITOR 1 8V sensor 1 80 sl 0 2 03 1 5 GMT BOARD_MONITOR SYS 3 3V sensor 3 30 3 28 0 3 68 2 92 GMI BOARD_MONITOR CPU 0 9V sensor 0 90 0 93 0 1 04 0 76 GMI BOARD_MONITOR 1 2V sensor 1 20 1 19 0 137 1 03 GMI CPU_BOARD_MONITOR 12V sensor 12 00 11 67 OK 13 25 10 75 GMI CPU_BOARD_MONITOR 12V sensor 2 50 2 46 0 2 80 2 20 GMI CPU_BOARD_MONITOR 2 5V sensor 3 30 3 26 0 3 68 2 92 GMI CPU_BOARD_MONITOR SYS 3 3V sensor 3
22. Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp snooping mrouter Vlan Ports 1 Eth1 1 static switch config Related Commands Note Mellanox Technologies 476 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping interfaces show ip igmp snooping interfaces Displays IGMP snooping interface information Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp snooping interfaces interface leave mode 1 1 Normal t72 Normal 1 3 Normal 1 4 Fast switch config Related Commands Note Mellanox Technologies 477 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping statistics show ip igmp snooping statistics Displays IGMP snooping statistical counters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp snooping statistics Snooping Statistics for VLAN 1 General queries received 0 Group specific queries received 0 V1 V2 reports received 0 V1 V2 reports transmitted 0 Leave messages received 0 Group specific queries transmitted 0 Leave messages transmitted 0 Unsuccessful joins received count Per Vlan 0
23. Configuration Mode Config History 3 1 0000 Role admin Example switch config stats alarm cpu_util_indiv enable switch config Related Commands show stats alarm Note Mellanox Technologies 297 Mellanox Technologies Confidential Rev 3 20 stats alarm lt alarm id gt event repeat stats alarm lt alarm ID gt event repeat single while not cleared no stats alarm lt alarm ID gt event repeat Configures repetition of events from this alarm Syntax Description alarm ID Alarms supported by the system for example e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees single Does not repeat events only sends one event whenever the alarm changes state while not cleared Repeats error events until the alarm clears Default single Configuration Mode Config History 3 1 0000 Role monitor admin Example switch config stats alarm cpu_util_indiv event repeat single switch config Related Commands show stats alarm Note Mellanox Tec
24. aaa authentication attempts class override aaa authentication attempts class override admin no lockout unknown no track hash username no aaa authentication attempts class override admin unknown no track hash username Overrides the global settings for tracking and lockouts for a type of account The no form of the command removes this override and lets the admin be handled according to the global settings Syntax Description admin Overrides the global settings for tracking and lockouts for the admin account This applies only to the single account with the username admin It does not apply to any other users with administrative privileges no lockout Prevents the admin user from being locked out though the authentication failure history is still tracked if tracking is enabled overall unknown Overrides the global settings for tracking and lockouts for unknown accounts The unknown class here con tains the following categories e Real remote usernames which simply failed authentica tion e Mis typed remote usernames e Passwords accidentally entered as usernames Bogus usernames made up as part of an attack on the sys tem hash username Applies a hash function to the username and stores the hashed result in lieu of the original no track Does not track authentication for such users which of course also implies no lockout Default N A Configuration Mode Config
25. event Specifies which events will be sent as traps port Sets the default port to which traps are sent send test Sends a test trap Default Community public All informs and traps are enabled Port 162 Configuration Mode Config History 3 1 0000 First version 3 2 1050 Changed traps to notify Role admin Example switch config snmp server community public switch config show snmp SNMP enabled yes SNMP port 1000 System contact my name System location lab Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp show snmp events Note e This setting is only meaningful if traps are enabled though the list of hosts may still be edited if traps are disabled e Refer to Mellanox MIB file for the list of supported traps Mellanox Technologies 349 Mellanox Technologies Confidential Rev 3 20 snmp server port snmp server port lt port gt no snmp server port Sets the UDP listening port for the SNMP agent The no form of the command resets the parameter to its default value Syntax Description port UDP port Default 161 Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp server port 1000 switch config show snmp SNMP enab
26. 18 YES 27 YES 28 19 28 20 YES 19 29 YES 21 30 YES 31 22 31 23 YES 22 32 YES To see the exact splitting options available per system refer to each specific system s hardware user manual Cabling chapter located on the Mellanox website 5 1 1 1 Changing the Module Type to a Split Mode gt To split an interface Step 1 Shut down all the ports related to the interface Run Mellanox Technologies 357 Mellanox Technologies Confidential Rev 3 20 e incase of split 2 shut down the current interface only e incase of split 4 shut down the current interface and the other interface according to the table above switch config interface ethernet 1 19 switch config interface ethernet 1 19 shutdown switch config interface ethernet 1 19 exit switch config interface ethernet 1 20 switch config interface ethernet 1 20 shutdown Step 2 Split the ports as desired Run switch config interface ethernet 1 20 module type qsfp split 4 switch config interface ethernet 1 20 Step 3 The following warning will be displayed the following interfaces will be unmapped 1 20 1 19 Choose Yes when prompted Type yes to confirm split The lt ports gt field in the warning refers to the affected ports from splitting port lt inf gt in the applied command co Please beware that splitting a port into
27. Mellanox Technologies 155 Mellanox Technologies Confidential Rev 3 20 show files debug dump show files debug dump lt filename gt Displays a list of debug dump files Syntax Description filename Displays a summary of the contents of a particular debug dump file Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show files debug dump sysdump switch 112104 20114052 091707 tgz System information Hostname switch 112104 Version SX_PPC 3 1 0000 2011 05 25 13 59 00 ppc Date 2012 01 26 09 17 07 Uptime Od 18h 47m 48s Output of uname a Linux switch 112104 2 6 27 MELLANOXuni m405ex SX_PPC 3 1 0000 1 2012 01 25 13 59 00 ppc ppc ppc GNU Linux switch config Related Commands file debug dump Note Mellanox Technologies 156 Mellanox Technologies Confidential Rev 3 20 show files stats show files stats lt filename gt Displays a list of statistics report files Syntax Description filename Display the contents of a particular statistics report file Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show files stats memory 201140524 111745 csv switch config Related Commands file stats Note Mellanox Technologies 157 Mellanox Technologies Confidential Rev 3 20 show files system show files system detai
28. Mellanox Technologies 757 Mellanox Technologies Confidential Rev 3 20 ip igmp last member query response time ip igmp last member query response time lt interval gt no ip igmp last member query response time Configures the IGMP last member query response time in seconds The no form of the command resets this parameter to its default Syntax Description interval IGMP last member query response time Range 1 25 seconds Default 1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp last member query response time 10 Related Commands N A Note Mellanox Technologies 758 Mellanox Technologies Confidential Rev 3 20 ip igmp startup query count ip igmp startup query count lt count gt no ip startup query count Configures the number of query messages an interface sends during startup The no form of the command resets this parameter to its default Syntax Description count Range 1 65535 Default 2 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp startup query count 10 Related Comm
29. Related Commands aaa accounting aaa authentication aaa authorization show aaa show usernames username Note Mellanox Technologies 250 Mellanox Technologies Confidential Rev 3 20 show aaa authentication attempts show aaa authentication attempts configured status user lt username gt Shows the current authentication authorization and accounting settings Syntax Description authentication attempts Displays configuration and history of authentication failures configured Displays configuration of authentication failure track ing status user Displays status of authentication failure tracking and lockouts for specific user Default N A Configuration Mode Any Command Mode History 3 2 1000 Role admin Example switch config show aaa authentication attempts Configuration for authentication failure tracking and locking Track authentication failures yes Lock accounts based on authentication failures yes Override treatment of admin user none Override treatment of unknown usernames hash usernames Configuration for lockouts based on authentication failures Lock account after consecutive auth failures 5 Allow retry on locked accounts unlock time after 15 second s Temp lock after each auth failure lock time none Username Known Locked Failures Last fail time Last fail from 0Q72B43EHBKT8CB5AF5PGRX3U3B3TUL4CYJP93N no no t 2012 08 20 14 29 19 ttyso Ha
30. Syntax Description number of minutes The length of user inactivity in minutes 0 will disable the inactivity timer same as a no web auto logout command Default 60 minutes Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config web auto logout 60 switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HITE port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout 1 hr Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands show web Note The no form of the command does not automatically log users out due to inactivity Mellanox Technologies 65 Mellanox Technologies Confidential Rev 3 20 web client cert verify web client cert verify no web client cert verify Enables verification of server certificates during HTTPS file transfers The no form of the command disables verification of server certificates during HTTPS file transfers Syntax Description N A Default N A Configuration Mode Config History 3 2 3000 Role admi
31. email domain email domain lt hostname or IP address gt no email domain Sets the domain name from which the emails will appear to come from provided that the return address is not already fully qualified This is used in conjunction with the system hostname to form the full name of the host from which the email appears to come The no form of the command clears email domain override Syntax Description hostname or IP address IP address Default No email domain Configuration Mode Config History 3 1 0000 Role admin Example switch config email domain mellanox switch config show email Mail hub 10 0 8 11 Mail hub port 125 Domain mellanox Return address do not reply Include hostname in return address yes switch config Related Commands show emails Note Mellanox Technologies 218 Mellanox Technologies Confidential Rev 3 20 email mailhub email mailhub lt hostname or IP address gt no email mailhub Sets the mail relay to be used to send notification emails The no form of the command clears the mail relay to be used to send notification emails Syntax Description hostname or IP address Hostname or IP address Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config email mailhub 10 0 8 11 switch config show email Mail hub 10 0 8 11 Mail hub port 25 Domain not specified Return
32. show ip pim rp candidate show ip pim rp candidate Displays information about RP candidate status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show ip pim rp candidate Next Candidate RP Advertisement in 00 11 22 00 60 00 RP 10 10 10 10 group prefixes priority 224 0 0 0 4 190 225 0 0 0 4 191 switch config Related Commands Note Mellanox Technologies 749 Mellanox Technologies Confidential Rev 3 20 show ip pim interface show ip pim interface vlan lt vlan id gt ethernet lt port gt df brief Displays information about the enabled interfaces for PIM Syntax Description vlan lt vlan id gt Filters the output for specific interface ethernet lt port gt Ethernet interface df Displays information about elected designated forward ers brief Displays a summary of information for all interfaces Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example arc switch55 standalone master config show ip pim interface vlan 2919 Interface Vlan2919 address is 70 28 23 80 PIM enabled PIM version 2 mode sparse PIM DR 70 28 23 80 this system PIM DR Priority 1 PIM configured DR priority PIM neighbor count 1 PIM neighbor holdtime 105 secs PIM Hello Interval 30 seconds next hello sent in 00 00 28 PIM
33. Importing Firmware and Changing the Default Firmware on page 138 updated Step 1 e Command show running config on page 175 e Command show log on page 194 e Section 4 10 Cryptographic X 509 IPSec on page 274 e Section 5 2 1 Configuring Static Link Aggregation Group LAG on page 374 removed unnecessary step e Command Ildp tlv select on page 488 e Command show Ildp interface on page 491 Added e Section 3 1 7 Command Output Filtering on page 31 Rev 2 30 January 2014 e Updated e command crypto certificate generation on page 279 e command crypto certificate name on page 280 Rev 2 20 January 2014 e N A Rev 2 10 January 2014 Added e Section 4 12 2 1 Width Reduction Power Saving on page 313 Updated e Section 2 2 Starting the Command Line CLI on page 17 e Section 2 3 Starting the Web User Interface on page 18 e Section 4 3 2 Upgrading MLNX OS Software on page 130 with EULA note e Section 5 7 OpenFlow on page 452 e command openflow description on page 455 e command show openflow on page 460 e command deny permit IPv4 ACL rule on page 517 e command load interval on page 366 with Config Interface Port Channel e command switchport hybrid trunk allowed vlan on page 419 with Config Interface Port Channel command spanning tree port priority on page 435 with Config Interface Por
34. MAC The any option causes the rule to not check the destination MAC Default No rule is added by default to access control list Default sequence number is in multiple of 10 Configuration Mode Config IPv4 ACL History 3 1 1400 First version 3 3 4302 Updated syntax description of mask lt ip gt parameter Role admin Example switch config ipv4 access list my list seq number 51 deny ip 1 1 1 1 mask 123 12 13 53 45 45 45 0 mask 123 132 21 123 switch config ipv4 access list my list Related Commands __ ipv4 mac access list ipv4 mac port access group Note Mellanox Technologies 517 Mellanox Technologies Confidential Rev 3 20 deny permit IPv4 TCP UDP ACL rule seq number lt sequence number gt permit deny tcp udp lt source ip gt mask lt ip gt any lt dest ip gt mask lt ip gt any eq source lt port number gt eq destination lt port number gt action lt action id gt no lt sequence number gt Creates a rule for IPv4 UDP TCP ACL The no form of the command deletes a rule from the ACL Syntax Description sequence number Optional parameter to set a specific sequence number for the rule The range is 1 500 deny permit Determines the type of the rule deny or permit action tcp udp UDP or TCP rule transport type any lt source ip gt mask Sets source IP and optionally sets a mask for that IP lt ip gt address The
35. Mellanox Technologies 355 Mellanox Technologies Confidential 5 Ethernet Switching 5 1 Interface Interface Ethernet have the following physical set of configurable parameters e Admin state enabling or disabling the interface e Flow control admin state per direction send or receive e MTU Maximum Transmission Unit 1518 9216 bytes e Speed 1 10 40 S56GbE depends on the interface type and system e Description user defined string e Module type the type of the module plugged in the interface 5 1 1 Break Out Cables The break out cable is a unique Mellanox capability where a single physical 40Gbps port is divided into 2x10Gbps or 4x10Gbps ports It maximizes the flexibility of the end user to use the Mellanox switch with a combination of 10Gbps and 40Gbps interfaces according to the specific requirements of its network Certain ports cannot be split at all and there are ports which can be split into 2 ports only Splitting a port changes the notation of that port from x y to x y z with x y indicating the previous notation of the port prior to the split and z indicating the number of the resulting 10G port 1 2 or 1 2 3 4 Each sub physical port is then handled as an individual port For example splitting port 20 into 4 will give the following new ports 1 20 1 1 20 2 1 20 3 1 20 4 Figure 10 Break Out Cable A split 4 operation results in blocking a 40G port in addition to the one bein
36. Mellanox Technologies Confidential Rev 3 20 show interfaces port channel show interfaces port channel compatibility parameters load balance sum mary Displays port channel parameters Syntax Description compatibility parameters Displays the parameters that must be the same among the member ports of the port channel interface load balance Displays the type of load balancing in use for port channels summary Displays a summary of the port channel interfaces Default N A Configuration Mode Any Command Mode History 3 3 4000 Role admin Example switch config show interfaces port channel compatibility parameters Port mode Speed MTU Flow Control Access VLAN Allowed VLAN list Flowcontrol amp PFC Channel group mode FF F F F F CoS parameters Static configuration on the port should be removed ACL port binding Static mrouter Static mac address switch config show interfaces port channel load balance source destination mac switch config show interfaces port channel summary Flags D Down P Up in port channel members I Individual H Hot standby LACP only s Suspended r Module removed U Up port channel Group Port Type Member Ports Channel switch config Related Commands Note Mellanox Technologies 388 Mellanox Technologies Confidential Rev 3 20 5 3 MLAG Figure 12 Basic MLAG Setup
37. Note Mellanox Technologies 352 Mellanox Technologies Confidential Rev 3 20 show snmp auto refresh show snmp auto refresh Displays SNMPD refresh mechanism status Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show snmp auto refresh Auto refresh enabled yes Refresh interval sec 60 entPhysicalTable ifTable ifXTable switch config Related Commands snmp server auto refresh Note Mellanox Technologies 353 Mellanox Technologies Confidential Rev 3 20 4 13 2 2 XML API xml gw enable xml gw enable no xml gw enable Enables the XML gateway The no form of the command disables the XML gateway Syntax Description N A Default XML Gateway is enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config xml gw enable switch config show xml gw XML Gateway enabled yes switch config Related Commands show xml gw Note Mellanox Technologies 354 Mellanox Technologies Confidential Rev 3 20 show xml gw show xml gw Displays the XML gateway setting Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show xml gw XML Gateway enabled yes switch config Related Commands xml gw enable Note
38. Rev 3 20 clear ip dhcp relay counters ip dhcp relay counters no ip dhcp relay counters Clears all DHCP relay counters on the interface Syntax Description N A Default The label is taken from the IP interface name e g vlan1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 4150 Role admin Example switch config interface vlan 10 clear ip dhcp relay counters switch config interface vlan 10 Related Commands N A Note Mellanox Technologies 799 Mellanox Technologies Confidential Rev 3 20 6 8 1 2 Show show ip dhcp relay show ip dhcp relay Displays DHCP relay configuration and status Syntax Description N A Default The label is taken from the IP interface name e g vlan1 Configuration Mode Any Command Mode History 3 3 4150 Role admin Example switch config show ip dhcp relay DHCP servers 172 22 22 11 172 33 33 33 or N A DHCP clients requests are processed on all interfaces DHCP server responses are processed on all interfaces DHCP relay agent information option is enabled disabled DHCP relay agent always on is enabled disabled Interface Label Vlan10 my label switch config Related Commands N A Note Mellanox Technologies 800 Mellanox Technologies Confidential
39. count Displays ARP table Syntax Description interface type Filters the table according to a specific interface i e interface vlan mgmt0 ip address Filters the table to the specific ip address count Shows ARP statistics Default N A Configuration Mode Any Command Mode History 3 3 3000 Role admin Example switch 626a54 standalone master config show ip arp Total number of entries 3 Address Type Hardware Address Interface eer Dynamic ETH 00 00 5E 00 01 01 mgmt 0 10 209 1 120 Dynamic ETH O0s022C9 62 E82C2 mgmt 0 1020972 stad Dynamic ETH 00 02 C9 62 E7 42 mgmt 0 Related Commands Note switch config ARP Table size 3 switch config show inband 0 ip arp count out of band 3 Mellanox Technologies Confidential Mellanox Technologies 586 Rev 3 20 6 1 5 6 IP Diagnostic Tools ping ping LRUbdfnqrvVaA c count i interval w deadline p pattern s packetsize t ttl I interface or address M mtu discovery hint S sndbuf T timestamp option Q tos hop destination Sends ICMP echo requests to a specified host Syntax Description Linux Ping options Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ping 172 30 2 2 PING 172 30 2 2 172 30 2 2 56 84 bytes of data 64 bytes from 172 30 2 2 icmp_seq l ttl 64 time 0 703 ms 64 bytes from 172 30 2
40. debug ethernet spanning tree all switch config Mellanox Technologies 205 Mellanox Technologies Confidential Rev 3 20 Related Commands Note Mellanox Technologies 206 Mellanox Technologies Confidential Rev 3 20 debug ethernet vlan debug ethernet vlan all fwd priority filters no debug ethernet vlan all fwd priority filters Configures the trace level for VLAN The no form of the command disables the configured VLAN debug traces Syntax Description all Enables all traces fwd Forward priority Priority filters Lower layer traces Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet vlan all switch config Related Commands Note Mellanox Technologies 207 Mellanox Technologies Confidential Rev 3 20 show debug ethernet show debug ethernet dcbx ip arp dhcp relay igmp snooping interface ospf lacp Ildp port qos spanning tree vlan Displays debug level configuration on a specific switch Syntax Description dcbx Displays the trace level for spanning tree ip Displays debug trace level for ethernet routing module e arp e dhcp relay e igmp snooping e interface e ospf lacp Displays the trace level for LACP lldp Displays the trace level for LLDP port Displays the trace level for port qos Di
41. lldp Iidp no Ildp Enables LLDP globally The no form of the command disables the LLDP Syntax Description N A Default Disabled Configuration Mode Config History 3 2 0300 Role admin Example switch config lldp switch config Related Commands Note show lldp local Mellanox Technologies 482 Mellanox Technologies Confidential Rev 3 20 Iidp reinit lldp reinit lt seconds gt no lldp reinit Sets the delay in seconds from enabling the LLDP on the port until re initialization will be attempted The no form of the command sets the parameter to default Syntax Description seconds 1 10 Default 2 Configuration Mode Config History 3 2 0300 Role admin Example switch config lldp reinit 10 switch config Related Commands show lldp timers Note Mellanox Technologies 483 Mellanox Technologies Confidential Rev 3 20 Iidp timer lldp timer lt seconds gt no Ildp timer Sets the LLDP interval at which LLDP frames are transmitted IldpMessageTxInter val The no form of the command sets the parameter to default Syntax Description seconds 5 32768 Default 30 Configuration Mode Config History 3 2 0300 Role admin Example switch config lldp timer 10 switch config Related Commands show lldp timers Note Mellanox Technologies 484 Mellanox Technologies Confidential Rev 3 20 lidp tx dela
42. m max_ttl N squeries p port t tos 1 flow_label w waittime q nqueries s src_addr z sendwait host packetlen Traces the route packets take to a destination Mellanox Technologies 119 Mellanox Technologies Confidential Rev 3 20 Syntax Description 4 Uses IPv4 6 Uses IPv6 d Enables socket level debugging F Sets DF do not fragment bit on I Uses ICMP ECHO for tracerouting T Uses TCP SYN for tracerouting U Uses UDP datagram default for tracerouting n Does not resolve IP addresses to their domain names r Bypasses the normal routing and send directly to a host on an attached network A Performs AS path lookups in routing registries and print results directly after the corresponding addresses V Prints version info and exit f Starts from the first_ttl hop instead from 1 g Routes packets throw the specified gateway maximum 8 for IPv4 and 127 for IPv6 i Specifies a network interface to operate with m Sets the max number of hops max TTL to be reached Default is 30 N Sets the number of probes to be tried simultaneously default is 16 p Uses destination port It is an initial value for the UDP destination port incremented by each probe default is 33434 for the ICMP seq number incremented as well default from 1 and the constant destination port for TCP tries default is 80 t Sets the TOS
43. openflow mode hybrid no openflow mode Enables OpenFlow on the port The no form of the command returns the port to its default state Syntax Description N A Default no openflow mode Configuration Mode Config Interface Ethernet History 3 3 4200 Role admin Example switch config interface etherent 1 1 openflow mode hybrid switch config interface etherent 1 1 Related Commands Note Mellanox Technologies 456 Mellanox Technologies Confidential Rev 3 20 controller ip controller ip lt ip address gt tcp port lt port number gt no controller ip lt ip address gt tcp port Sets the OpenFlow controller s IP amp TCP port The no form of the command sets the parameter to its default Syntax Description ip address The IPv4 address of the OpenFlow controller tcp port lt port number gt Sets the TCP port number of the OpenFlow controller Default 0 0 0 0 TCP port 6633 Configuration Mode Config OpenFlow History 3 3 4200 Role admin Example switch config openflow controller ip 10 10 10 10 tcp port 6633 switch config openflow Related Commands Note Mellanox Technologies 457 Mellanox Technologies Confidential Rev 3 20 datapath id datapath id lt value gt no datapath id Sets a specific identifier for the switch with which the controller is communicating The no form of the command resets the parameter to
44. proxy The possible values are basic HTTP basic authentication e none No authentication basic Configures HTTP basic authentication settings for proxy The password is accepted and stored in plaintext password A password used for HTTP basic authentication with the web proxy username A username used for HTTP basic authentication with the web proxy Default Web proxy is disabled Configuration Mode Config History 3 1 0000 Role admin Mellanox Technologies 75 Mellanox Technologies Confidential Rev 3 20 web proxy auth authtype basic web proxy auth basic username web user Example switch config switch config web proxy auth basic password web password show web switch config ae 4b FE Ste switch config Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout HRE Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled yes Proxy address 10 10 10 11 Proxy port 40 Authentication type basic Basic auth username web user Basic auth password web password Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Rela
45. For correct operation each PIM router requires a capability to map a multicast group that it needs to serve to a Rendezvous point for that group This mapping can be done manually or the map ping can be distributed dynamically in the network BSR protocol serves for this purpose This protocol introduces new role in the multicast network Bootstrap router That router is responsible to flood multicast group to RP mapping through the multicast routing domain Boot strap router is elected dynamically among bootstrap router candidates C BSR and once elected will collect from Rendezvous point candidate C RP mapping information and distribute it in the domain Bootstrap activity contains 4 steps First each C BSR configured in the network originates floods into the network bootstrap messages that express the router desire to become BSR and also its Mellanox Technologies 725 Mellanox Technologies Confidential Rev 3 20 BSR priority Any C BSR that receives that information and has lower priority will suspend itself so eventually only one router will send BSR messages and become BSR When BSR is elected all RP candidates start to advertise to BSR a list of groups that this RP can serve On the next step after BSR learns the group mapping proposals it forms a final group to RP mapping in the domain and starts to distribute it among PIM routers in the multicast routing domain When PIM router receives BSR message with the group to RP m
46. Mellanox Technologies Confidential Rev 3 20 match as number match as number lt number gt no match as number Filters according to one of the AS numbers in the AS path of the route The no form of the command removes this configuration from the route map clause Syntax Description number Autonomous system number to check Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match as number 40 switch config route map mymap permit 10 Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route is denied Mellanox Technologies 696 Mellanox Technologies Confidential Rev 3 20 match as path match as path lt as path list name gt no match as path Creates a route map clause entry that matches the route s AS path using an as path access list The no form of the command removes the match statement from the configuration mode route map clause Syntax Description number Autonomous system number to check Default N A Con
47. Parameter Description lt domain gt A domain name e g mellanox com lt hostname gt A hostname e g switch 1 lt ifname gt An interface name e g mgmt0 mgmt1 lo loopback etc lt index gt A number to be associated with aliased secondary IP addresses lt IP address gt An IPv4 address e g 192 168 0 1 lt log level gt A syslog logging severity level Possible values from least to most severe are 9 66 2 66 99 66 29 66 99 66 99 66 debug info notice warning error crit alert emerg lt GUID gt Globally Unique Identifier A number that uniquely identifies a device or compo nent lt MAC address gt A MAC address The segments may be 8 bits or 16 bits at a time and may be delimited by or So you could say 11 22 33 44 55 66 1122 3344 5566 11 22 33 44 55 66 or 1122 3344 5560 lt netmask gt A netmask e g 255 255 255 0 or mask length prefixed with a slash e g 24 These two express the same information in different formats lt network prefix gt An IPv4 network prefix specifying a network Used in conjunction with a net mask to determine which bits are significant e g 192 168 0 0 lt regular expression gt An extended regular expression as defined by the grep in the man page The value you provide here is p
48. RX bytes 962067812 TX bytes 40658219 RX packets 3738865 TX packets 142345 RX mcast packets 0 TX discards 0 RX discards 0 TX errors 0 RX errors 0 TX overruns 0 RX overruns 0 TX carrier 0 RX frame 0 TX collisions 0 TX queue len 1000 switch config interface mgmt0 Related Commands N A Note Mellanox Technologies 95 Mellanox Technologies Confidential Rev 3 20 ipv6 address ipv6 address lt IPv6 address netmask gt autoconfig default privacy no ipv6 lt IPv6 address netmask gt autoconfig default privacy Configures IPv6 address and netmask to this interface static or autoconfig options are possible The no form of the command removes the given IPv6 address and netmask or dis ables the autoconfig options Syntax Description IPv6 address netmask Configures a static IPv6 address and netmask Format example 2001 db8 1234 5678 64 autoconfig Enables IPv6 stateless address auto configuration SLAAC for this interface An address will be auto matically added to the interface based on an IPv6 prefix learned from router advertisements combined with an interface identifier autoconfig default Enables default learning routes The default route will be discovered automatically if the autoconfig is enabled autoconfig privacy Uses privacy extensions for SLAAC to construct the autoconfig address if the autoconfig is enabled Default No IP address availa
49. Related Commands Note This command overrides the next hop for all routes received from this neighbor or peer group Mellanox Technologies 659 Mellanox Technologies Confidential Rev 3 20 neighbor next hop self neighbor lt ip address gt lt peer group name gt next hop self no neighbor lt ip address gt lt peer group name gt next hop self Configures the IP address of the router as the next hop address in routes advertises to the specific neighbor The no form of the command resets this parameter to its default Syntax Description ip address IP address of the neighbor peer group name Peer group name Default no next hop self Configuration Mode Config Router BGP History 3 3 5006 Role admin Example switch config router bgp 100 neighbor 10 10 10 10 next hop self Related Commands neighbor lt ip address gt remote as lt as number gt Note e This function is used in networks where BGP neighbors do not directly access all other neighbors on the same subnet e In the default state the next hop is generated based on the IP address and the present next hop in the route information Mellanox Technologies 660 Mellanox Technologies Confidential Rev 3 20 neighbor password neighbor lt ip address gt lt peer group name gt password lt encryption gt lt string gt no neighbor lt ip address gt lt peer group name gt password Enables authenticat
50. Related Commands N A Note Mellanox Technologies 126 Mellanox Technologies Confidential Rev 3 20 ntpdate ntpdate lt IP address gt Sets the system clock using the specified SNTP server Syntax Description IP address IP Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ntpdate 192 168 10 10 26 Feb 17 25 40 ntpdate 15206 adjust time server 192 168 10 10 offset 0 000092 sec switch config Related Commands N A Note This is a one time operation and does not cause the clock to be kept in sync on an ongoing basis It will generate an error if SNTP is enabled since the socket it requires will already be in use Mellanox Technologies 127 Mellanox Technologies Confidential Rev 3 20 show clock show clock Displays the current system time date and time zone Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show clock Time 04 21 44 Date 2012 02 26 Time zone America North United_States Other New_York switch config Related Commands N A Note Mellanox Technologies 128 Mellanox Technologies Confidential Rev 3 20 show ntp show ntp Displays the current NTP settings Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin E
51. Related Commands N A Note Mellanox Technologies 621 Mellanox Technologies Confidential Rev 3 20 6 2 5 4 Show show ip ospf show ip ospf Displays general OSPF configuration and status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch config show ip ospf Routing Process 201 with ID 192 0 2 1 VRF default Admin Status is Enabled Stateful High Availability enabled Graceful restart is configured Related Commands N A Note Mellanox Technologies 622 Mellanox Technologies Confidential Rev 3 20 show ip ospf border routers show ip ospf border routers Displays routing table entries to an Area Border Routers Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch show ip ospf border routers OSPF Process ID pl vrf default Internal Routing Table Codes i Intra area route I Inter area route i 40 40 40 40 10 ABR Area 0 0 0 0 SPF 71 via 192 0 2 1 Ethernet2 1 i 60 60 60 60 20 ABR Area 0 0 0 0 SPF 71 via 192 0 2 1 Ethernet2 1 i 40 40 40 40 10 ABR Area 0 0 0 1 SPF 71 via 192 0 2 1 Ethernet2 2 i 60 60 60 60 20 ABR Area 0 0 0 1 SPF 71 via 192 0 2 1 Ethernet2 2 Related Commands N A Note Mellanox Technologies 623 Mellanox Technologies Confidential Rev
52. Rev 3 20 show interfaces mlag port channel show interfaces mlag port channel lt if number gt Displays the MLAG LAG configuration and status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show interfaces mlag port channel 1 Mpol Admin state Enabled Operational state Down Description N A Mac address 00 00 00 00 00 00 MTU 1500 bytes Maximum packet size 1522 bytes Flow control receive off send off Actual speed 0 Gbps Width reduction mode Not supported Switchport mode access Last clearing of show interface counters Never 60 seconds ingress rate 0 bits sec 0 bytes sec 0 packets sec 60 seconds egress rate 0 bits sec 0 bytes sec 0 packets sec Rx packets unicast packets multicast packets broadcast packets bytes error packets OO SO OO amp discard packets H xX packets unicast packets multicast packets broadcast packets bytes discard packets OO Oo OS switch config Related Commands Note Mellanox Technologies 408 Mellanox Technologies Confidential Rev 3 20 show interfaces mlag port channel summary show interfaces mlag port channel summary Displays MLAG summary table Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4500 First version 3 4 0000 Added notes and updated exa
53. Rev 3 20 show ip dhcp relay counters show ip dhcp relay counters Displays the DHCP relay counters Syntax Description N A Default The label is taken from the IP interface name e g vlan1 Configuration Mode Any Command Mode History 3 3 4150 Role admin Example switch config show ip dhcp relay counters Interface Received Forwarded Dropped All Req 376 376 0 All Resp 277 277 0 Interface Received Forwarded Dropped Last cleared vlan1000 1000 1000 0 lt Date gt vlan1020 2000 2000 0 lt Date gt lt Date gt lt DD MM YY Hour Minutes Seconds gt something like 20 07 13 22 34 36 switch config Related Commands N A Note Mellanox Technologies 801 Mellanox Technologies Confidential
54. Role admin Example switch config show spanning tree root Instance Priority MAC addr Root Cost Hello Time Max Age FWD Dly Root Port MSTO 32768 00 02 c9 71l ed 40 500 2 20 15 Eth1 20 MST1 32768 00 02 c9 71 f 0 c0 0 2 20 15 MST2 0 00 02 c9 71 f 0 c0 0 2 20 15 MST3 32768 00 02 c9 71 0 c0 0 2 20 io switch config Related Commands Note Mellanox Technologies 451 Mellanox Technologies Confidential Rev 3 20 5 7 OpenFlow MLNX OS supports OpenFlow 1 0 OpenFlow is a network protocol that facilitates direct com munication between network systems via Ethernet Software Defined Networks SDN allows a centralist management of network equipment OpenFlow allows the SDN controller to manage SDN equipment The OpenFlow protocol allows communication between the OpenFlow control ler and OpenFlow agent OpenFlow is useful to manage switches and allow applications running on the OpenFlow con troller to have access to the switch s datapath and provide functionality such as flow steering security enhancement traffic monitoring and more The OpenFlow controller communicates with the OpenFlow switch over secured channel using OpenFlow protocol An OpenFlow switch contains a flow table which contains flows inserted by the OpenFlow con troller And the OpenFlow switch performs packet lookup and forwarding according to those rules Mellanox OpenFlow switch implementation is based on the hybrid model allowin
55. The no form of the command disables the configured port debug traces Syntax Description N A Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet port all switch config Related Commands Note Mellanox Technologies 203 Mellanox Technologies Confidential Rev 3 20 debug ethernet qos debug ethernet qos all all resource control panel fail all filters init shut management memory packet no debug ethernet qos all all resource control panel fail all filters init shut management memory packet Configures the trace level for QoS The no form of the command disables the configured QoS debug traces Syntax Description all Enables all traces all resource OS resource traces control panel Control plane traces fail all All failure traces filters Lower layer traces init shut Init and shutdown traces management Management messages memory Memory related messages packet BPDU related messages Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet port all switch config Related Commands Note Mellanox Technologies 204 Mellanox Technologies Confidential Rev 3 20 debug ethernet spanning tree debug ethernet spanning tree all error event filters init shut
56. e Irq packet Link State Request Packet debug messages e Isa packet Link State Acknowledge Packet debug mes sages e su packet Link State Update Packet debug messages e nsm Neighbor State Machine debug messages Default Configuration Mode History Role Example Mellanox Technologies 199 N A Config 3 3 4150 admin switch config debug ethernet ip arp all switch config Mellanox Technologies Confidential Rev 3 20 Related Commands Note Mellanox Technologies 200 Mellanox Technologies Confidential Rev 3 20 debug ethernet lacp debug ethernet lacp all all resource data path fail all init shut management memory packet no debug ethernet lacp all all resources data path fail all init shut management memory packet Configures the trace level for LACP The no form of the command disables the configured LACP debug traces Syntax Description all Enables all traces all resource BPDU related messages data path Init and shutdown traces fail all Management messages init shut Memory related messages management memory IP packet dump trace memory All failure traces packet OS resource trace Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet lacp all switch config Related Commands Note Mellanox Techn
57. s entry local pref setting Syntax Description value Route local pref 1 2147483648 Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set local preference 10 Related Commands N A Note Mellanox Technologies 715 Mellanox Technologies Confidential Rev 3 20 set metric set metric lt value gt no set metric Configures a route s entry metric parameter The no form of the command removes a route map s entry metric setting Syntax Description value Route metric 1 2147483647 Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set metric 10 Related Commands N A Note Mellanox Technologies 716 Mellanox Technologies Confidential Rev 3 20 set origin set origin egp igp incomplete no set origin Configures a route s entry origin parameter The no form of the command removes a route map s entry origin setting Syntax Description egp Set a route s entry origin parameter to external igp Set a route s entry origin parameter to internal incomplete Set a route s entry origin parameter to incomplete Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set origin egp
58. sent from to that neighbor Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example Related Commands N A Note Mellanox Technologies 682 Mellanox Technologies Confidential Rev 3 20 show ip bgp paths show ip bgp paths Displays summary of all AS paths Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip bgp paths Refcount Metric Path 1 0 4 50 100 1 0 2 50 100 1 0 4 40 1 0 12 50 100 iL 0 2 1 0 2 20 switch config Related Commands N A Note Mellanox Technologies 683 Mellanox Technologies Confidential Rev 3 20 show ip bgp peer group show ip bgp peer group lt peer group name gt Displays information about peer groups Syntax Description peer group name Displays information about a specific peer group Default N A Configuration Mode Any Command Mode History 3 4 0000 Role admin Example switch config show ip bgp peer group BGP Peer group grpA Hold time 1 Keep alive 60 Allow as in 0 Weight 32768 Max prefix 12000 Export local preferences 100 Import local preferences 100 Soft reconfiguration set Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRcd Soe ae 0 5 0 0 0 0 0 0 00 00 42 CONNECT 100 100 100 100 0 100 0 0 0 0 0 Never IDLE BGP Peer gr
59. switc config interface ethernet 1 36 exit switc j config Step 9 Define the MRouter port on the VLAN Run switch config vlan 200 switch config vlan 200 ip igmp mrouter interface ethernet 1 36 switch config vlan 200 Mellanox Technologies 462 Mellanox Technologies Confidential Rev 3 20 5 8 3 IGMP Snooping Querier IGMP Snooping Querier compliments the IGMP snooping functionality IGMP Snooping Que rier is used to support IGMP snooping in a VLAN where PIM and IGMP are not configured because the multicast traffic does not need to be routed When IGMP Snooping Querier is enabled IGMP queries are sent out periodically by the switch through all ports in the VLAN and to which hosts wishing to receive IP multicast traffic respond with IGMP report messages IGMP Snooping Querier must be used in conjunction with IGMP snooping as IGMP snooping listens to these IGMP reports to establish appropriate forwarding gt To configure IGMP Snooping Querier Step 1 Enable the IGMP snooping on the switch Run switch config ip igmp snooping Step 2 Enable the IGMP snooping querier on a specific VLAN Run switc switc h config vlan 10 h config vlan 10 ip igmp snooping querier Step 3 Set the query interval time Run switch config vlan 10 igmp snooping querier query interval 25 Step 4 Optional Verify the IGMP snooping querier configuration Run switch config vlan 10 show ip igmp sn
60. AAD COmMMANAS 55 5 saes gto soe go eue obo ane Saptheup bed SEA Breen bath A A Steet 296 4 12 2 Power Management 0 0 eee eee ee eee ee 313 4 12 3 System RebOOl i gece ke che Fea he SNR eh Se Mee Ka ek tae E 314 4124 Commands cc es2 tik eek ee ae E bales Mee maa ea 316 4 13 Network Management Interfaces 0 0 cece cee ee eee 340 4B XML APD eri pe aiaa ata S A be a sie as cia bball bac RIE 340 Mellanox Technologies 4 Mellanox Technologies Confidential Rev 3 20 4 13 2 Commands ie scie hie hand eb kee eed teed Sheena E es 341 Chapter 5 Ethernet Switching i425 22 c diasn detec bcc cawnsa tae vos fanaa see 356 Sol Interfaces a nae ia a eli E ag ke een aoa gaye hie 356 3AL Break Out Cables wincc nike cee enn Se ee os 356 5 1 2 Transceiver Information 0 0 ccc eee ee eee 359 3 13 Comimandsys 6c h td bth chee GA ted ob eat Rb heed tees ted Geen eds 360 5 2 Link Aggregation Group LAG 0 0 eee eee eee 374 5 2 1 Configuring Static Link Aggregation Group LAG 374 5 2 2 Configuring Link Aggregation Control Protocol LACP 374 52 3 Commands na Ga tlee etek aegis vinden REAT 376 9 3 MILA Gch dete BA ed oles tna BA ada BAe BIN Aone ahi urna al alesis 389 5 3 1 MLAG Keepalive and Failover 0 0 c eee cee ee eee eee 391 5 3 2 Unicast and Multicast Sync 0 ee eee 391 5 3 3 MLAG Port Syne ees 455 chs yeh eels Ab teh tea oe e
61. Default No rule is added by default to access control list Default sequence number is in multiple of 10 Configuration Mode Config MAC ACL History 3 1 1400 3 3 4500 Added vlan mask parameter Role admin Example switch config mac access list my list seq number 10 deny Oa 0a 0a 0a 0a 0a mask ff ff ff ff ff ff any vlan 6 cos 2 protocol 80 switch config mac access list my list Related Commands _ ipv4 mac access list ipv4 mac port access group Note Mellanox Technologies 516 Mellanox Technologies Confidential Rev 3 20 deny permit IPv4 ACL rule seq number lt sequence number gt permit deny ip lt source ip gt mask lt ip gt any lt dest ip gt mask lt ip gt any action lt action id gt no lt sequence number gt Creates a rule for IPv4 ACL The no form of the command deletes a rule from the IPv4 ACL Syntax Description sequence number Optional parameter to set a specific sequence number for the rule The range is 1 500 deny permit Determines the type of the rule deny or permit action Valid mask values fall in the range 0 255 any lt source ip gt mask Sets source IP and optionally sets a mask for that IP lt ip gt address The any option causes the rule to not check the source IP Valid mask values fall in the range 0 255 any lt destination ip gt Sets destination IP and optionally sets a mask for that mask lt ip gt
62. Destination Mask Gateway Interface Source default 0 0 0 0 172 30 0 1 mgmt 0 DHCP 10 10 10 10 29020 w2I9 299 0 0 0 0 mgmt 0 static 20 10 10 10 25 5 255 2595 255 172 30 0 1 mgmt 0 static 20 20 20 0 255 255 255 0 0 0 0 0 mgmt 0 static 172 30 0 0 259 25 5 6 03 0 0 0 0 0 mgmt 0 interface switch config show ipv6 route Destination prefix Gateway Interface Source 270 oe mgmt 0 static 2 1 128 y lo local 2222 2222 2222 64 oa mgmt 1 interface switch config Related Commands show ip default gateway Note Mellanox Technologies 108 Mellanox Technologies Confidential Rev 3 20 show ip ipv6 default gateway show ip ipv6 default gateway static Displays the default gateway Syntax Description static Displays the static configuration of the default gateway Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config ip default gateway 10 10 10 10 switch config show ip default gateway Active default gateways 172 30 0 1 interface mgmt0 switch config show ip default gateway static Configured default gateway 10 10 10 10 Related Commands show ip default gateway Note The configured IPv4 default gateway will not be used if DHCP is enabled Mellanox Technologies 109 Mellanox Technologies Confidential Rev 3 20 4 1 6 4 Network to Media Resolution ARP amp NDP IPv4 network use Addres
63. Enable LLDP per interface Run switc h switch h config interface ethernet 1 1 lldp receive switch config interface ethernet 1 1 lldp transmit Step 5 Show LLDP local information Run switch config show lldp local LLDP is Enabled Local global configuration Chassis sub type macAddress 4 Clnersisass Lea O03 LL22 s455 System Name switch 111111 System Description my system description Supported capabilities B Supported capabilities enabled B Step 6 Show LLDP remote information Run switch config show lldp interfaces ethernet 1 1 remote Ethernet 1 1 Remote Index 1 Remote chassis id 00 11 22 33 44 55 chassis id subtype mac Remote port id ethenret 1 2 port id subtype local Remote port description ethernet 1 2 Remote system name remote system Remote system description remote system description Remote system capabilities supported B B 5 9 2 DCBX Data Center Bridging DCB is an enabler for running the Ethernet network with lossless connec tivity using priority based flow control and enhanced transmission selection DCBx exchange Mellanox Technologies 480 Mellanox Technologies Confidential Rev 3 20 compliments the DCB implementation by offering a dynamic protocol that communicates DCB attributes between peering endpoint Mellanox Technologies 481 Mellanox Technologies Confidential Rev 3 20 5 9 3 Commands
64. Eth1 23 Eth1 24 Eth1 25 Eth1 26 Ethl 27 Ethl 28 Eth1 29 Ethl 30 Eth1 31 Eth1 32 Eth1 33 Eth1 34 Eth1 357 Eth1 36 Po34 Po4096 10 my vlan name Related Commands show vlan switchport mode switchport trunk hybrid allowed vlan Note Name can not be added to a range of VLANs Mellanox Technologies 415 Mellanox Technologies Confidential Rev 3 20 show vlan show vlan id lt vlan id gt Displays the VLAN table Syntax Description vlan id 1 4094 Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config vlan 10 show vlan VLAN Name Ports T Eth1 2 Eth1 3 Eth1 4 1 Eth1 4 2 10 my vlan name Related Commands show vlan switchport mode switchport trunk hybrid allowed vlan vlan Note Mellanox Technologies 416 Mellanox Technologies Confidential Rev 3 20 switchport mode switchport mode access trunk hybrid access dcb no switchport mode Sets the switch port mode The no form of the command sets the switch port mode to access Syntax Description access Un tagged port 802 1q tagged traffic will be filtered egress traffic is un tagged trunk 802 1q tagged port un tagged traffic will be filtered hybrid Both 802 1q tagged and un tagged traffic is allowed on the port access dcb Un tagged port egress traffic is priority tagged Default access Configuration Mod
65. Example switch config interface mgmt0 mtu 1500 switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address L72430 62 2 Netmask 255 255 0 0 Secondary address 9 9 9 9 32 alias mgmt0 2 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment RX bytes 2970074221 TX bytes 468579522 RX packets 44983023 TX packets 1390539 RX mcast packets 0 TX discards 0 RX discards RX errors TX errors TX overruns RX overruns ooo 9 TX collisions TX queue len RX frame 0 0 TX carrier 0 0 1 000 switch config interface mgmt0 Related Commands show interfaces lt ifname gt Note Mellanox Technologies 87 Mellanox Technologies Confidential Rev 3 20 duplex duplex lt duplex gt no duplex Sets the interface duplex The no form of the command resets the duplex setting for this interface to its default value Syntax Description duplex Sets the duplex mode of the interface The following are the possible values e half half duplex e full full duplex e auto auto duplex sensing half or full Default auto Configuration Mode Config Inter
66. IPv4 type of service or TC IPv6 traffic class value for outgoing packets l Uses specified flow_label for IPv6 packets W Sets the number of seconds to wait for response to a probe default is 5 0 Non integer float point values allowed too q Sets the number of probes per each hop Default is 3 S Uses source src_addr for outgoing packets Z Sets minimal time interval between probes default is 0 If the value is more than 10 then it specifies a num ber in milliseconds else it is a number of seconds float point values allowed too Mellanox Technologies 120 Mellanox Technologies Confidential Rev 3 20 Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config traceroute 192 168 10 70 traceroute to 192 168 10 70 192 168 10 70 30 hops max 40 byte pack ets 1 172 30 0 1 172 30 0 1 3 632 ms 2 849 ms 3 544 ms 10 222 128 46 10 222 128 46 3 176 ms 3 289 ms 3 656 ms 10 158 128 30 10 158 128 30 15 331 ms 15 819 ms 16 388 ms 10 158 128 65 10 158 128 65 20 468 ms 7 893 ms 12 27 ms 10 7 34 115 10 7 34 115 16 405 ms 11 985 ms 12 264 ms 192 168 10 70 192 168 10 70 16 377 ms 16 091 ms 20 475 ms switch config nu fF WN Related Commands Note Mellanox Technologies 121 Mellanox Technologies Confidential Rev 3 20 tcpdump tcpdump aAdDeflLnNOpqRStuUvxX c count C file_size E algo secret F
67. In case of congestion the flow samples can be truncated to a predefined size before it is being assigned to the CPU The truncation can be set to any value between 64 to 256 bytes with the default being 128 bytes Furthermore the sampling rate may also be adjust as required 5 13 2 Statistical Samples The sFlow agent samples interface counters time based Polling interval is configurable to any value between 5 3600 seconds with the default being 20 seconds The following statistics are gathered by the CPU Table 23 List of Statistical Counters Counter Description Total packets The number of packets that pass through sFlow enabled ports Number of flow samples The number of packets that are captured by the sampling mecha nism Number of statistic samples The number of statistical samples Mellanox Technologies 539 Mellanox Technologies Confidential Rev 3 20 Table 23 List of Statistical Counters Counter Description Number of discarded samples The number of samples that were discarded Number of datagrams The number of datagrams that were sent to the collector 5 13 3 sFlow Datagrams The sFlow datagrams contain flow samples and statistical samples The sFlow mechanism uses IP protocol therefore if the packet length is more than the interface MTU it becomes fragmented by the IP stack The MTU may also be set manually to anything in the range of 200 9216 bytes The default i
68. Mellanox Technologies 498 Mellanox Technologies Confidential Rev 3 20 Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable PFC globally on the switch Run switch config dcb priority flow control enable dcb priority flow control enable This action might cause traffic loss while shutting down a port with priority flow con trol mode on Type yes to confirm enable pfc globally yes switch config Step 4 Choose the desirable priority you want to enable using the command dcb priority flow control priority lt pri 0 7 gt enable switch config dcb priority flow control priority 5 enable gt To enable PFC per interface Step 1 Log in as admin Step 2 Change to config mode Run switch gt enable switch configure terminal Step 3 Enable PFC globally on the switch Run switch config dcb priority flow control enable Step 4 Choose the desirable priority you want to enable using the command dcb priority flow control priority lt pri 0 7 gt enable switch config dcb priority flow control 5 enable Step 5 Change to Interface mode Run switch config switch config interface ethernet 1 1 switch config interface ethernet 1 1 Step 6 Enable PFC for the specific interface switch config interface ethernet 1 1 dcb priority flow control mode on 5 10 2 Enhanced Transmission Selection ETS Enhanced Transmission Selectio
69. Mellanox Technologies Confidential Rev 3 20 logging fields logging fields seconds enable fractional digits lt f digit gt whole digits lt w digit gt no logging fields seconds enable fractional digits lt f digit gt whole digits lt w digit gt Specifies whether to include an additional field in each log message that shows the number of seconds since the Epoch or not The no form of the command disallows including an additional field in each log mes sage that shows the number of seconds since the Epoch Syntax Description enable Specifies whether to include an additional field in each log message that shows the number of seconds since the Epoch or not f digit The fractional digits parameter controls the number of digits to the right of the decimal point Truncation is done from the right Possible values are 1 2 3 or 6 w digit The whole digits parameter controls the number of dig its to the left of the decimal point Truncation is done from the left Except for the year all of these digits are redundant with syslog s own date and time Possible values 1 6 or all Default disabled Configuration Mode Config History 3 1 0000 Role admin Example switch config logging fields seconds enable switch config logging fields seconds whole digits 1 switch config show logging Local logging level info Override for class mgmt front warning Default remote logging lev
70. Note Mellanox Technologies 60 Mellanox Technologies Confidential Rev 3 20 show ssh client show ssh client Displays the client configuration of the SSH server Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show ssh client SSH client Strict Hostkey Checking ask SSH Global Known Hosts Entry 1 72 30 2 2 Finger Print le b7 8b ec ab 35 98 be 6b d6 12 02 18 72 12 d6 No SSH user identities configured No SSH authorized keys configured switch config Related Commands N A Note Mellanox Technologies 61 Mellanox Technologies Confidential Rev 3 20 show ssh server show ssh server Displays SSH server configuration Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config show ssh server SSH server configuration SSH server enabled yes Server security strict mode no Minimum protocol version 2 TCP forwarding enabled yes X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints and Key Lengths RSA v1 host key 5f 4e 5f 4a 81 bb 6a b4 06 52 77 eb d3 ad 78 92 2048 RSA v2 host key 15 e2 a8 45 1c 58 1b 00 cc 29 ec 00 38 83 49 00 2048 DSA v2 host key df cO ac a6 3e a5 52 a5 d1l f6 22 37 ef f1 08 f9 102
71. Progress tracking enabled Prefix modes enabled and use in show configuration Settings for both this session and future ones Show hidden config yes Confirm losing changes yes Confirm reboot shutdown no Confirm factory reset yes Prompt on empty password yes switch config Related Commands show cli Note Mellanox Technologies 41 Mellanox Technologies Confidential cli session Rev 3 20 cli session auto logout lt minutes gt paging enable prefix modes enable show config progress enable terminal length lt size gt resize type lt terminal type gt width x display full lt display gt no cli session auto logout paging enable prefix modes enable show config progress enable terminal type x display Configures default CLI options for all future sessions The no form of the command deletes or disables the CLI sessions Syntax Description minutes Configures keyboard inactivity timeout for automatic logout Range is 0 35791 minutes Setting the value to O or using the no form of the command disables the auto logout paging enable Enables text viewing one screen at a time prefix modes enable show config Configures the prefix modes feature of CLI e prefix modes enable enables prefix modes for current and all future sessions e prefix modes show config uses prefix modes in show configuration output for current and all futur
72. Role admin Example switch config show ip community list mycommunity Related Commands N A Note A BGP community access list filters route maps that are configured as BGP commu nities The command uses regular expressions to name the communities specified by the list Mellanox Technologies 690 Mellanox Technologies Confidential Rev 3 20 6 4 Policy Rules 6 4 1 Route Map Route maps define conditions for redistributing routes between routing protocols A route map clause is identified by a name filter type permit or deny and a sequence number Clauses with the same name are components of a single route map the sequence number determines the order in which the clauses are compared to a route Mellanox Technologies 691 Mellanox Technologies Confidential Rev 3 20 6 4 1 1 Commands route map route map lt map name gt deny permit sequence number no route map lt map tag gt deny permit lt sequence number gt Creates a route map that can be used for importing exporting routes and applying local policies Syntax Description name Name of the route map deny permit Configures the rule to be used sequence number Sequence number for a route map specific record Default N A Configuration Mode Config History 3 3 5006 3 3 5200 Updated notes Role admin Example switch config route map mymap permit 1200 switch config route map mymap permit 1200 Relate
73. Step 4 Change back to config mode Run switc config vlan 6 exit switc j config Step 5 Enter the interface context Run config interface ethernet 1 36 fig interface ethernet 1 36 switc switc Step 6 From within the interface context configure the interface mode to Access Run config interface ethernet 1 36 switchport mode hybrid config interface ethernet 1 36 switc switc Step 7 From within the interface context configure the Access VLAN membership Run switc switc config interface ethernet 1 36 switchport hybrid vlan 6 config interface ethernet 1 36 Step 8 Change to config mode again Run switc switc config interface ethernet 1 36 exit config 5 4 3 Configuring Trunk Mode VLAN Membership gt To configure Trunk mode VLAN membership Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a VLAN Run switc switc config vlan 10 n h config vlan 10 Step 4 Change back to config mode Run config vlan 10 exit config switc switc Mellanox Technologies 412 Mellanox Technologies Confidential n n Rev 3 20 Step 5 Enter the interface context Run switch standalone master config interface ethernet 1 35 switch standalone master config interface ethernet 1 35 Step 6 From within the interfac
74. config Related Commands Note Mellanox Technologies 191 Mellanox Technologies Confidential Rev 3 20 logging debug files logging debug files delete current oldest rotation criteria force max num update lt number gt current Configures settings for debug log files Syntax Description delete current oldest Deletes certain debug log files e current Deletes the current active debug log file e oldest Deletes some of the oldest debug log files rotation criteria Configures automatic rotation of debug logging files frequency daily e criteria Sets how the system decides when to rotate weekly monthly size debug files lt size gt size pct e frequency Rotate log files on a fixed time based schedule lt percentage gt force i e size Rotate log files when they pass a size threshold max num in megabytes e size pct Rotate logs when they surpass a specified percentage of disk e forces Forces an immediate rotation of the log files e max num Specifies the maximum number of old log files to keep update lt number gt Uploads a local debug log file to a remote host current e current Uploads log file messages to a remote host e number Uploads compressed log file debug lt num ber gt gz to a remote host Range is 1 10 Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch con
75. e If enabled only log messages matching or exceeding the minimum severity specified with the logging local command will be logged regardless of what is sent from the remote host Mellanox Technologies 182 Mellanox Technologies Confidential Rev 3 20 logging format logging format standard welf fw name lt hostname gt no logging format standard welf fw name lt hostname gt Sets the format of the logging messages The no form of the command resets the format to its default Syntax Description standard Standard format welf WebTrends Enhanced Log file WELF format hostname Specifies the firewall hostname that should be associ ated with each message logged in WELF format If no firewall name is set the hostname is used by default Default standard Configuration Mode Config History 3 1 0000 Role admin Example switch config logging format standard switch config show logging Local logging level info Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts yes Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field disabled Levels at which messages are logged CLI commands notice Audit messages notice switch config Related Commands show logging Note Mellanox Technologies 183
76. loopback lt number gt ethernet lt slot port gt group list lt ip address gt lt prefix gt bidir priority lt priority gt interval lt interval gt Configures the switch as a candidate rendezvous point C RP The no form of the command removes the ip pim rp candidate from running config command for the specified multicast group Syntax Description ethernet lt slot port gt Ethernet interface port channel lt number gt LAG interface vlan lt vlan id gt VLAN ID Range 1 4094 loopback lt number gt Loopback interface number ip address The group IP address prefix Network prefix for example 24 or 255 255 255 0 priority RP priority rating Range 0 255 where smaller num bers mean higher priority interval RP advertisements message transmission interval Range 0 16383 Default The RP priority is 192 The BSR message interval is 60 seconds Configuration Mode Config Config Interface Ethernet configured as a router port Config Interface Loopback Config Interface Port Channel configured as a router port Config Interface VLAN History 3 3 5006 Role admin Example switch config ip pim rp candidate vlan 19 group list 225 6 5 0 25 priority 20 interval 30 bidir Mellanox Technologies 735 Mellanox Technologies Confidential Rev 3 20 Related Commands N A Note e The BSR selects a multicast group s dynamic RP set from the list of C RPs in the PIM dom
77. lt map name gt deny permit sequence number Note e A clause typically contains a match route map and a set route map statement The eval uation of routes whose settings are the same as match statement parameters normally end and the clause s set statement are applied to the route Routes that match a clause contain ing a continue statement are evaluated against the clause specified by the continue state ment e When a route matches multiple route map clauses the filter action deny or permit is determined by the last clause that the route matches The set statements in all clauses matching the route are applied to the route after the route map evaluation is complete Mul tiple set statements are applied in the same order by which the route was evaluated against the clauses containing them e Continue cannot be set to go back to a previous clause lt sequence number gt of the continue must always be higher than the current clause s sequence number Mellanox Technologies 693 Mellanox Technologies Confidential Rev 3 20 abort abort Discards pending changes and returns to global configuration mode Syntax Description N A Default N A Configuration Mode Config Route Map History 3 3 5006 First version 3 3 5200 Updated example Role admin Example switch config route map mymap permit 10 match as number 40 switch config route map mymap permit 10 set weight 7 switch config
78. lt nop nop timestamp 5842763 858672398 gt 09 37 38 678860 IP 192 168 10 7 ssh gt 192 168 10 1 54155 P 1494800 1495104 304 ack 625 win 90 lt nop nop timestamp 5842763 858672398 gt 9141 packets captured 9142 packets received by filter 0 packets dropped by kernel switch config Related Commands N A Note e When using i option use the interface name interface number for example tcpdump i vlan10 e For all flag options of this command refer to the linux man page of tcp dump Mellanox Technologies 590 Mellanox Technologies Confidential Rev 3 20 6 1 5 7 QoS qos map dscp to pcp preserve pcp qos map dscp to pcp preserve pcp no qos map dscp to pcep preserve pcp Configures the router to copy PCP bits when transferring data from one subnet to another The no form of the command disables this ability Syntax Description N A Default Disabled Configuration Mode Config History 3 3 4000 Role admin Example switch config qos map dscp to pcp preserve pcp switch config Related Commands Note e This commands applies the configuration for all router interfaces e As part of its function the router performs DSCP to PCP bits mapping fixed mapping By activating the command the router preserves the PCP bits from one subnet to another sub net PCP bits are copied Mellanox Technologies 591 Mellanox Technologies Confidential Rev 3 20
79. lt vlan id gt Mellanox Technologies 563 Mellanox Technologies Confidential Rev 3 20 Step 2 Apply an IP address and a network mask to the interface using the ip address command Mellanox Technologies 564 Mellanox Technologies Confidential Rev 3 20 6 1 5 Commands 6 1 5 1 General ip routing ip routing no ip routing Enables L3 capabilities IP router interfaces static routing and routing protocols The no form of the command disables L3 capabilities however does not delete the L3 configuration Syntax Description N A Default IP routing is disabled Configuration Mode Config History 3 2 0230 Role admin Example switch config ip routing switch config Related Commands interface vlan show ip routing Note e This command requires L3 license i e LIC 1036 L3 e Disabling the command does not remove the feature configuration Mellanox Technologies 565 Mellanox Technologies Confidential Rev 3 20 show ip routing show ip routing Displays IP routing admin state Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0230 Role admin Example switch config show ip routing IP routing enabled switch config Related Commands ip routing Note Mellanox Technologies 566 Mellanox Technologies Confidential Rev 3 20 6 1 5 2 Interface VLAN interface vlan in
80. lt vlan range gt Creates a VLAN or range of VLANs and enters a VLAN context The no form of the command deletes the VLAN or VLAN range Syntax Description vlan id 1 4094 vlan range Any range of VLANs Default VLAN 1 is enabled by default Configuration Mode Config History 3 1 1400 Role admin Example switch config vlan 10 switch config vlan 10 show vlan VLAN Name Ports 1 default Ethl 2 Ethli 3 Ethl 4 1 Ethl 4 2 osu 10 switch config vlan 10 Related Commands show vlan switchport mode switchport trunk hybrid allowed vlan Note Interfaces are not added automatically to VLAN unless configured with trunk or hybrid mode with all option turned on Mellanox Technologies 414 Mellanox Technologies Confidential Rev 3 20 name name lt vlan name gt no name Adds VLAN name The no form of the command deletes the VLAN name Syntax Description vlan name 40 character long string Default No name available Configuration Mode Config VLAN History 3 1 1400 Role admin Example switch config vlan 10 switch config vlan 10 name my vlan name switch config vlan 10 show vlan VLAN Name Ports 1 default Eth1 2 Eth1 3 Eth1 4 1 Eth1 4 2 Eth1 5 Eth1 6 Eth1 7 Eth1 8 Eth1 9 Eth1 10 Ethi ill Ethi 12 Eth1 13 Ethi l4 Eth1 ESy Eth1 16 Eth1 17 Eth1 18 Eth1 19 Eth1 20 Eth1 21 Eth1 22
81. specifying passwords in encrypted form prompt Configures SNMP v3 security parameters specifying passwords securely in follow up prompts rather than on the command line Default No SNMP v3 users defined Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp server user admin v3 enable switch config show snmp user User name admin Enabled overall yes Authentication type sha Privacy type aes 128 Authentication password NOT SET user disabled Privacy password NOT SET user disabled SET access Enabled yes Capability level admin switch config Related Commands show snmp user Note Mellanox Technologies 351 Mellanox Technologies Confidential Rev 3 20 show snmp show snmp auto refresh engineID events host user Displays SNMP server configuration and status Syntax Description auto refresh SNMP refreshed mechanism status engineID SNMP Engine ID events SNMP events host List of notification sinks user SNMP users Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show snmp user User name Hendrix Enabled overall yes Authentication type sha Privacy type des Authentication password set Privacy password set Require privacy yes SET access Enabled yes Capability level admin switch config Related Commands show snmp
82. while the setting is active it is not retroactive to previ ous logins So if max fail is disabled or changed this does not immediately cause any users to be changed from locked to unlocked or vice versa unlock time Enables the auto unlock of an account after a specified number of seconds if a user account is locked due to authentication failures counting from the last valid login attempt Unlike the max fail setting this does take effect immediately for all accounts If both unlock time and lock time are set the unlock time must be greater than the lock time Careful with disabling the unlock time particularly if you have max fail set to something and have not over ridden the behavior for the admin i e they are subject to lockouts also If the admin account gets locked out and there are no other administrators who can aid the user may be forced to boot single user and use the pam_tallybyname command line utility to unlock your account manually Even if one is careful not to incur this many authentication failures it makes the system more subject to DOS attacks Mellanox Technologies 243 Mellanox Technologies Confidential Rev 3 20 Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config aaa authentication attempts lockout enable Related Commands N A Note Mellanox Technologies 244 Mellanox Technologies Confidential Rev 3 20
83. 0 static 20 20 20 0 ZOD 6 200 2599 30 0 0 0 0 mgmt 0 static 1 72 530 0 0 25522999060 0 0 0 0 mgmt 0 interface Related Commands show ip route Note Mellanox Technologies 106 Mellanox Technologies Confidential Rev 3 20 ipv6 default gateway ipv6 default gateway lt ip address gt lt ifname gt no ipv6 default gateway Sets a static default gateway The no form of the command deletes the default gateway Syntax Description ip address The default gateway IP address IPv4 or IPv6 ifname The interface name e g mgmt0 mgmt1 Default N A Configuration Mode Config History 3 1 0000 First version 3 2 0500 removed IPv4 configuration option Role admin Example switch config ip default gateway 1 switch config show ip default gateway static Configured default gateways Saal switch config Related Commands show ip route Note e The configured default gateway will not be used if DHCP is enabled e In order to configure ipv4 default gateway use ip route command Mellanox Technologies 107 Mellanox Technologies Confidential Rev 3 20 show ip ipv6 route show ip ipv6 route static Displays the routing table in the system Syntax Description static Filters the table with the static route entries Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show ip route
84. 1 Related Commands Note The MAGP virtual IP address must be different from the interface IP address Mellanox Technologies 790 Mellanox Technologies Confidential Rev 3 20 ip virtual router mac address ip virtual router mac address lt mac address gt no ip virtual router mac address Sets MAGP virtual MAC address The no form of the command resets the MAC address to its default Syntax Description mac address MAC address Format AA BB CC DD EE FF Default 00 00 5E 00 01 lt magp instance gt Configuration Mode Config Interface VLAN MAGP History 3 3 4500 Role admin Example switch config interface vlan 10 magp 1 ip virtual router mac address AA BB CC DD EE FF switch config interface vlan 10 magp 1 Related Commands Note Mellanox Technologies 791 Mellanox Technologies Confidential Rev 3 20 show magp show magp lt instance gt interface vlan lt id gt Displays the configuration of a specific MAGP instance Syntax Description instance MAGP instance number Range 1 255 Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show magp 3 Magp instance id 3 Interface vlan 10 Magp state Active Magp virtual ip 192 168 1 1 Magp virtual MAC 00 11 22 22 44 55 switch config Related Commands Note Mellanox Technologies 792 Mellanox Technologies C
85. 1 0000 Role monitor admin Example switch config stats chd memory_day compute time interval 120 switch config show stats chd memory_day CHD memory_day Average physical memory usage bytes Source dataset sample memory Computation basis time Interval 120 second s Range 1800 second s switch config Mellanox Technologies 303 Mellanox Technologies Confidential Rev 3 20 Related Commands show stats chd Note Mellanox Technologies 304 Mellanox Technologies Confidential Rev 3 20 stats sample lt sample id gt clear stats sample lt sample ID gt clear Clears sample history Syntax Description sample ID Possible sample IDs are e congested e cpu util CPU utilization milliseconds of time spent e disk_device_io Storage device I O statistics e disk_io Operating system aggregate disk I O KB sec e eth e fan Fan speed e fs_mnt bytes Filesystem usage bytes e fs_mnt_inodes Filesystem usage inodes e ib e interface Network interface statistics e intf util Network interface utilization bytes memory System memory utilization bytes e paging Paging activity page faults e power Power supply usage e power consumption e temperature Modules temperature Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config stats sample temperature clear switch config Related Commands show stats sample
86. 1 4 Port State Down Channel Group 1 Pseudo port channel Pol LACP port priority 128 LACP Rate Slow LACP Activity Passive LACP Timeout Short Aggregation State Aggregation Defaulted LACP Port Admin Oper Port Port Port State Priority Key Key Number State 1 4 Down 128 1 1 0x4 0x0 switch config Related Commands Note Mellanox Technologies 383 Mellanox Technologies Confidential Rev 3 20 show lacp interfaces neighbor show lacp interfaces neighbor Displays the LACP interface neighbor status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 First version 3 4 0000 Updated output Role admin Mellanox Technologies 384 Mellanox Technologies Confidential Rev 3 20 Example switch config show lacp interfaces neighbor Flags A Device is in Active mode P Device is in Passive mode Channel group 1 neighbors Port 1 4 Partner System ID 00 00 00 00 00 00 Flags A LACP Partner Port Priority S0 LACP Partner Oper Key ig LACP Partner Port State 0x0 Port State Flags Decode Activity Active Aggregation State Aggregation Sync Collecting Distributing MLAG channel group 25 neighbors Port 1 49 Partner System ID O00 2er fate4d lt c0 Flags A LACP Partner Port Priority 73255 LACP Partner Oper Key 733 LACP Partner Port State Oxbe Port State Flags Decode Activity
87. 16 at 2012 02 28 08 47 32 Avg Utilization Last Hour 8 switch config Related Commands N A Note Mellanox Technologies 312 Mellanox Technologies Confidential Rev 3 20 show stats sample show stats sample lt sample ID gt Displays sampling interval for all samples or the specified one Syntax Description sample ID Possible sample IDs are e congested e cpu_util CPU utilization milliseconds of time spent e disk_device_io Storage device I O statistics e disk_io Operating system aggregate disk I O KB sec e eth e fan Fan speed e fs_mnt_bytes Filesystem usage bytes e fs_mnt_inodes Filesystem usage inodes e ib e interface Network interface statistics e intf util Network interface utilization bytes e memory System memory utilization bytes e paging Paging activity page faults e power Power supply usage e power consumption e temperature Modules temperature Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show stats sample fan Sample fan Fan speed Enabled yes Sampling interval 1 minute 11 seconds switch config Related Commands N A Note 4 12 2 Power Management 4 12 2 1 Width Reduction Power Saving Link width reduction LWR is a Mellanox proprietary power saving feature to be utilized to economize the power usage of the fabric LWR may be used to manually or automatically
88. 1BFR MT1121X02692 MGMT X1035 MSX6036F 1BFR MT1121X02692 FAN SXX0XX_FAN MSX60 FF MT1121X02722 Poul SXX0XX_PS N A N A CPU CPU SA000103 MT1120X01027 switch config Mellanox Technologies 23 Mellanox Technologies Confidential Rev 3 20 Step 3 Send your Mellanox reseller the following information to obtain the license key e The chassis serial number e The type of license you need to retrieve Refer to Licenses on page 20 Step 4 Once you receive the license key you can install the license as described in the sections above Mellanox Technologies 24 Mellanox Technologies Confidential Rev 3 20 2 4 4 Commands show licenses show licenses Displays a list of all installed licenses For each license the following is displayed e aunique ID which is a small integer e the text of the license key as it was added e whether or not it is valid and active e which feature s it is activating e alist of all licensable features specifying whether or not it is currently activated by a license Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role monitor admin Example switch config show licenses License 1 lt license key gt Feature SX_CONFIG Valid yes Active yes switch config Related Commands license Note Mellanox Technologies 25 Mellanox Technologies Confidential Rev 3 20 3 User Interfaces 3 1 Command L
89. 30 3 24 0 3 68 2 92 GMI CPU_BOARD_MONITOR SYS 3 3V sensor 1 80 sae AS 0 2 03 154 GMI CPU_BOARD_MONITOR 1 8V sensor 1 20 1 24 0 1 37 1 03 switch config Related Commands N A Note Mellanox Technologies 332 Mellanox Technologies Confidential show health report show health report Rev 3 20 Displays health report Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 First version 3 3 0000 Output update Role admin Example switch config show health report Re notification counter sec 3600 Report max counter 50 No Health issues file switch config Related Commands N A Note Mellanox Technologies 333 Mellanox Technologies Confidential Rev 3 20 show resources show resources Displays system resources Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show resources Total Used Free Physical 2027 MB 761 MB 1266 MB Swap 0 MB 0 MB 0 MB Number of CPUs ds CPU load averages 0 11 0 23 0 23 CPU 1 Utilization 5 Peak Utilization Last Hour 19 at 2012 02 15 13 26 19 Avg Utilization Last Hour 7 switch config Related Commands N A Note Mellanox Technologies 334 Mellanox Technologies Confidential Rev 3 20 show system profile show system profile Displays sy
90. 32 3 2 1 Setup Mente c ccs cts waa sik SA He es AA ba ie taka es 33 3 2 2 System Menu ssf 6d i sd a bed he dese tog e Dob greed aban Db a E a 34 3 2 3 Security Men s eii hs 58g che SARA he ke aN ie ee Seas oe eS 35 324 Ports Menu ais secs ie kev hawt ed we a a buchos Me ens Neb Gf 35 3 2 9 Status Mente ssvne steals ikalS wins cds weet Akl seks ed 36 3 2 6 ETH Maint siio toa cdo bed bdo iit headed peed bat a 36 3 2 7 IP Route tapes bene sky oe htt OSE eth s POSS Mbh Sle sahe p e 37 3 3 Secure Shell SSH cen sat esos Bye Be he eh ER IN ORIN aR ies 37 3 3 1 Adding a Host and Providing an SSH Key 0 00 00 0 0000000 37 3 3 2 Retrieving Return Codes when Executing Remote Commands 38 34 Commands vue iciiee aw Aeatigi we VA eae Bh merge ree Bate pew Meee 39 ZAT CEU SOSSION sized aan aa a HR A EEE HERR Mea RSS EOS 39 ZA 2r Bannet onas isc eit Ske we GS os See Sees ey ewe eee GIS 45 BAS SSHG 6 shld accident coals abate ee E aes ale bd kiss hg 3 Senda tt ET 50 34 4 Remote Osim nirera ea Cane Vatah ee Sines Ue cet A eaten es 63 SAS Webinterface enoe iee ten hese Re wb LEDS bts baba eG ae ae 65 Chapter 4 System Management cc ccc cece cw cece cece ees eeecsecsees 79 4 1 Management Interface 0 0 eee eens 79 4 1 1 Configuring Management Interfaces with Static IP Addresses 79 Mellanox Technologies 3 Mellanox Technologies Confidential Rev 3 20 4 1 2 Con
91. 37 4 paths Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRcd 3 4 3 7 4 7 3 9 70 0 0 0 00 00 48 ESTABLISHED 3 57 285 0 5 0 0 0 0 0 0 00 01 54 CONNECT 100 100 100 100 0 100 0 0 0 0 0 Never IDLE switch e07c04 standalone master config Related Commands N A Note Mellanox Technologies 685 Mellanox Technologies Confidential Rev 3 20 6 3 5 IP AS Path Access List 6 3 5 1 Commands ip as path access list ip as path access list lt list name gt permit deny lt reg exp gt any egp igp incomplete no ip as path access list lt list name gt Creates an access list to filter BGP route updates The no ip as path access list command deletes the named access list Syntax Description list name The name for the access list permit Permits access for a matching condition deny Denies access for a matching condition reg exp Regular expression that is used to specify a pattern to match against an input string any Any route type egp External BGP routes igp Internal BGP routes incomplete Routes marked as Incomplete Default N A Configuration Mode Config History 3 4 0000 Role admin Example switch config ip as path access list mylist permit switch config Related Commands N A Note If access list_name does not exist this command creates it If it already exists this command appends statements to the list
92. Active Successful joins received count Per Vlan 0 Active Groups count 0 Packets dropped 0 switch config Related Commands Note Mellanox Technologies 478 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping querier show ip igmp snooping querier vlan lt num gt Displays running IGMP snooping querier configuration on the VLANs Syntax Description vlan lt num gt Displays the IGMP snooping querier configuration run ning on the specified VLAN Default N A Configuration Mode Any Command Mode History 3 3 4200 Role admin Example switch config show ip igmp snooping querier vlan 10 Vlan 1 IGMP Querier Present query interval 20 address 1 1 1 2 version 2 switch config Related Commands Note Mellanox Technologies 479 Mellanox Technologies Confidential Rev 3 20 5 9 Link Layer Discovery Protocol LLDP The Link Layer Discovery Protocol LLDP is a vendor neutral Link Layer protocol in the Inter net Protocol Suite used by network devices for advertising their identity capabilities and neigh bors on a IEEE 802 LAN The protocol is formally defined in IEEE 802 1AB 5 9 1 Configuring LLDP gt To configure the LLDP on the switch Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable LLDP globally on the switch Run switch config lldp config Step 4
93. Clears BGP learned routes from the BGP table without resetting the connection to the neighbor in Inbound routes are reset out Outbound routes are reset Default N A Configuration Mode Config History 3 3 5006 First release 3 3 5200 Updated description Role admin Example switch config clear ip bgp all switch config Related Commands N A Note This command removes BGP IPv4 learned routes from the routing table reads all routes from designated peers and sends routes to those peers as required Mellanox Technologies 635 Mellanox Technologies Confidential Rev 3 20 router bgp router bgp lt as number gt no router bgp lt as number gt Creates and enters a BGP instance with the specified AS number The no form of the command deletes all router BGP instance configuration Syntax Description as number Autonomous system number A unique number to be used to identify the AS The AS is a number which identifies the BGP router to other routers and tags the routing information passed along Range 1 65535 Default N A Configuration Mode Config History 3 3 5006 First version 3 3 5200 Updated syntax description Role admin Example switch config router bgp 100 switch config router bgp 100 Related Commands ip routing Note Mellanox Technologies 636 Mellanox Technologies Confidential Rev 3 20 6 3 4 2 Config Router shutdown shutdown no s
94. Commands ipv4 mac access list ipv4 mac access list lt acl name gt no ipv4 mac access list lt acl name gt Creates a MAC or IPv4 ACL and enter the ACL configuration mode The no form of the command deletes the ACL Syntax Description ipv4 mac IPv4 or MAC access list acl name User defined string for the ACL Default No ACL available by default Configuration Mode Config History 3 1 1400 Role admin Example switch config mac access list my mac list switch config mac access list my mac list Related Commands __ ipv4 port access group Note Mellanox Technologies 514 Mellanox Technologies Confidential Rev 3 20 ipv4 mac port access group ipv4 mac port access list lt acl name gt no ipv4 mac port access list lt acl name gt Binds an ACL to the interface The no form of the command unbinds the ACL from the interface Syntax Description ipv4 mac IPv4 or MAC access list acl name ACL name Default No ACL is bind by default Configuration Mode Config Interface Ethernet Config Interface Port Channel Config Interface MLAG Port Channel History 3 1 1400 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 mac port access group my list switch config interface ethernet 1 1 Related Commands _ ipv4 mac access list Note The access control list should be defined
95. Config Interface Ethernet Config Interface Port Channel History 3 1 1400 Role admin Example switch config interface ethernet 1 7 switch config interface ethernet 1 7 switchport hybrid allowed vlan all switch config interface ethernet 1 7 show interfaces switchport Interface Mode Access vlan Allowed vlans Payee E Pare SassoaSS Pear er sess ge sree assesses sa Eth1 2 access Eth1 3 access Eth1 4 1 access Eth1 4 2 access Eth1 5 access Eth1 6 access L Eth1 7 hybrid L 1 10 Po34 access Po4096 access switch config interface ethernet 1 7 Related Commands show vlan show interfaces switchport switchport access vlan switchport mode vlan Note This command is not applicable for interfaces with port mode access or access dcb Mellanox Technologies 419 Mellanox Technologies Confidential show interface switchport show interface switchport Displays all interface switch port configurations Rev 3 20 Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show interfaces switchport Interface Mode Access vlan Allowed vlans ee pg ne gee Seer ara S re S Sere te eT eae ee Oe TET BE eR EO Eth1 2 access Eth1 3 access Eth1 4 1 access Eth1 4 2 access Eth1 5 access Eth1 6 access L Eth1 7 hybrid L 1 10 Po34 access Po4096 access switch config Related Commands show
96. Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf transmit delay 2 Related Commands N A Note Mellanox Technologies 616 Mellanox Technologies Confidential Rev 3 20 ip ospf shutdown ip ospf shutdown no ip ospf shutdown Disables the OSPF instance on the interface The no form of the command enables the OSPF on this interface Syntax Description N A Default Enabled no shutdown Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf shutdown Related Commands N A Note Mellanox Technologies 617 Mellanox Technologies Confidential Rev 3 20 ip ospf authentication ip ospf authentication message digest no ip ospf authentication Specifies the authentication type for OSPF The no form of the command disables the authentication Syntax Description message digest Specifies that message digest authentication MD5 is used Default Disabled no Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 R
97. Default no destination interface Configuration Mode Config Monitor Session History 3 3 3500 First version 3 3 4100 Added force argument Role admin Example switch config monitor session 1 destination interface ethernet 1 2 switch config monitor session 1 Related Commands Note Mellanox Technologies 531 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Disables the session The no form of the command enables the session Syntax Description N A Default Disabled Configuration Mode Config Monitor Session History 3 3 3500 Role admin Example switch config monitor session 1 no shutdown switch config monitor session 1 Related Commands Note Mellanox Technologies 532 Mellanox Technologies Confidential Rev 3 20 add source interface add source interface lt type gt lt number gt direction lt d type gt no source interface lt type gt lt number gt Adds a source interface to the mirrored session The no form of the command deletes the source interface Syntax Description interface lt type gt lt num Configures interface as ethernet or port channel ber gt direction lt d type gt Configures the direction of the mirrored traffic The options are as follows e egress sets the egress traffic to be monitored e ingress sets the ingress traffic to be monitored e bo
98. Hello Generation ID 61345 PIM Join Prune Interval 60 seconds PIM domain border no PIM Interface Statistics General sent received Hellos 36 37 JPs 0 0 Asserts 0 0 Grafts 0 0 Graft Acks 0 0 DF Offers 0 0 DF Winners 0 0 DF Backoffs 0 0 DF Passes 0 0 Errors Checksum errors 0 Invalid packet types DF subtypes 0 0 Authentication failed 0 Packets from non neighbors 1 JPs received on RPF interface 0 G Joins received with no wrong RP 0 0 G S G JPs received for SSM Bidir groups 0 0 Related Commands Note Mellanox Technologies 750 Mellanox Technologies Confidential Rev 3 20 show ip pim upstream joins show ip pim upstream joins Displays information about any PIM joins prunes which are currently being sent to upstream PIM routers Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show ip pim upstream joins Neighbor address 159 135 45 26 via interface 159 135 45 34 next message in 43 seconds Group 224 0 10 0 Joins 22 74 49 25 Prunes No prunes included switch config Related Commands Note Should contain the following information neighbor address interface address group range Joins Prunes Mellanox Technologies 751 Mellanox Technologies Confidential Rev 3 20 6 5 5 2 Multicast ip multicast routing ip multicast routing
99. Mellanox Driver Option Settings RoceMode 3 0 Mellanox Technologies 558 Mellanox Technologies Confidential Rev 3 20 6 IP Routing 6 1 General 6 1 1 IP Interfaces MLNX OS supports 3 types of IP interfaces e VLAN interface e Loopback interface e Router ports VLAN interface is a logical IPv4 interface created per subnet over a specific 802 1Q VLAN ID If two hosts from two different subnets need to communicate via the IP layer the network administrator needs to configure two interface VLANs one for each of the subnets The user may configure up to 64 VLAN interfaces Each interface VLAN has the following attributes e Admin state e Operational state e MAC address e IP address and mask e MTU e Description e Set of counters Loopback interface is a logical software entity where traffic transmitted to this interface is imme diately received on the sending end Router port is a regular switch port configured to operate as an L3 interface Router ports are assigned an IP address and all L3 commands become applicable to them Once configured router ports no longer partake in the bridging activities of the switch and VLANs configured on them are separate from the pool allocated for the switch ports Mellanox Technologies 559 Mellanox Technologies Confidential Rev 3 20 6 1 1 1 Commands switchport switchport force no switchport force Configures the Ethernet interface as a regular s
100. Mellanox Technologies 686 Mellanox Technologies Confidential Rev 3 20 show ip as path access list show ip as path access list list name Presents defined as path access lists Syntax Description list name Displays a specific prefix list Default N A Configuration Mode Config History 3 4 0000 Role admin Example switch config show ip as path access list mylist Related Commands N A Note Mellanox Technologies 687 Mellanox Technologies Confidential Rev 3 20 6 3 6 IP Community List 6 3 6 1 Commands ip community list standard ip community list standard lt list name gt deny permit lt list of communities gt no ip community list standard lt list name gt Adds a standard entry to a community list The no form of the command deletes the specified community list Syntax Description list name The name for the community list permit Permits access for a matching condition deny Denies access for a matching condition list of communities List of standard communities e lt aa nn gt e lt number gt e internet e local AS e no advertise no export Default N A Configuration Mode Config History 3 4 0000 Role admin Example switch config ip community list standard mycommunity permit 1 2 3 4 Related Commands N A Note A BGP community access list filters route maps that are configured as BGP commu nities The comm
101. N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show images Images available to be installed image SX_PPC_M460EX ppc m460ex 20120122 084759 img SX_PPC_M460EX 3 0 0000 dev HA 2012 01 22 08 47 59 ppc Installed images Partition 1 SX_PPC_M460EX 3 0 0000 dev HA 2012 01 22 08 47 59 ppc Last dobincp 2012 01 23 14 54 23 Partition 2 SX_PPC_M460EX 3 0 0000 dev HA 2012 01 18 09 52 41 ppc Last dobincp 2012 01 19 16 48 23 Last boot partition 1 Next boot partition 1 Boot manager password is set No image install currently in progress Image signing trusted signature always required Admin require signed images yes Settings for next boot only Fallback reboot on configuration failure yes default switch config Related Commands N A Note Mellanox Technologies 148 Mellanox Technologies Confidential Rev 3 20 4 4 Configuration Management 4 4 1 Saving a Configuration File To save the current configuration to the active configuration file you can either use the config uration write command requires running in Config mode or the write memory command requires running in Enable mode e To save the configuration to the active configuration file run switch config configuration write e To save the configuration to a user specified file without making the new file the active configuration file run switch config configur
102. Note Mellanox Technologies 609 Mellanox Technologies Confidential Rev 3 20 ip ospf dead interval ip ospf dead interval lt seconds gt no ip ospf dead interval Configures the interval during which at least one Hello packet must be received from a neighbor before the router declares that neighbor as down The no form of the command resets this parameter to its default Syntax Description seconds The dead interval timer in seconds Range is 1 65535 Default 40 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf dean interval 10 Related Commands N A Note The value must be the same for all nodes on the network Mellanox Technologies 610 Mellanox Technologies Confidential Rev 3 20 ip ospf hello interval ip ospf hello interval lt seconds gt no ip ospf hello interval Configures the interval between Hello packets that OSPF sends on the interface The no form of the command resets this parameter to default Syntax Description seconds The Hello interval timer in seconds Range is 1 65535 Default 10 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500
103. Note This command does not requires any license e If IP Proxy ARP or IP Routing is enabled the interface cannot be created e No more than 60 in band management interfaces can be created e All management interface commands are applicable under this interface ip address mtu dhcp shutdown zeroconf To enter the interface VLAN configuration mode you need to use the command interface vlan lt id gt e g interface vlan10 Mellanox Technologies 83 Mellanox Technologies Confidential Rev 3 20 ip address ip address lt IP address gt lt netmask gt no ip address Sets the IP address and netmask of this interface The no form of the command clears the IP address and netmask of this interface Syntax Description IP address IPv4 address netmask Subnet mask of IP address Default 0 0 0 0 0 Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 switch config interface mgmt0 ip address 10 10 10 10 255 255 255 0 switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address 10 10 10 10 Netmask 2554255725570 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source p
104. Note Base cost for all calculation is S6GbE Mellanox Technologies 604 Mellanox Technologies Confidential Rev 3 20 area range area lt area id gt range lt ip address gt lt prefix gt not advertise no area lt area id gt range lt ip address gt lt prefix gt not advertise Consolidates and summarizes routes at an OSPF area boundary The no form of the command removes the ip prefix range from summarization Syntax Description area id OSPF area ID Range is 0 4294967295 ip address IP Address not advertise Suppresses routes that match the specified IP address prefix Netowrk prefix in the format of 24 or 255 255 255 0 for example Default Disabled Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf area 0 range 10 10 10 10 24 Related Commands N A Note Mellanox Technologies 605 Mellanox Technologies Confidential Rev 3 20 area stub area lt area id gt stub no summary no area lt area id gt stub no summary Configures an area as an OSPF stub area an area is created if non existent The no form of the command removes the stub area configuration and changes the area to normal or deletes the area if stub is not used Syntax Description area id OSPF area ID Range is 0 4294967295 no summary Summary route will not be advertized into the stub area Default Summary route will be adv
105. Range 0 65535 permit Permits access for a matching condition deny Denies access for a matching condition ip IP address eq ge le lt mask gt e eq Equal to a specified prefix length e ge Greater than or equal to a specified prefix length e le Less than or equal to a specified prefix length Default Sequence value 10 Configuration Mode Config History 3 3 5200 Role admin Example switch config ip prefix list a list permit 10 20 0 0 16 eq 24 switch config Related Commands N A Note Mellanox Technologies 722 Mellanox Technologies Confidential Rev 3 20 show ip prefix list show ip prefix list lt name gt Displays prefix lists Syntax Description name Displays a specific prefix list Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip prefix list prefix list a list count 1 range entries 1 sequences 10 10 seq 10 permit 10 20 0 0 16 ge 24 hit count 0 refcount 0 prefix list b list count 2 range entries 2 sequences 10 20 seq 10 deny 10 10 0 0 16 le 24 hit count 0 refcount 0 seq 20 deny 10 20 0 0 16 le 24 hit count 0 refcount 0 switch config Related Commands N A Note Mellanox Technologies 723 Mellanox Technologies Confidential Rev 3 20 6 5 Multicast IGMP and PIM Protocol independent multicast PIM is a collection of proto
106. S SG ha eles elie ates lates 725 Mellanox Technologies 6 Mellanox Technologies Confidential Rev 3 20 6 5 3 Bootstrap ROUTErs 4 5 65 Seed bet heed Hee hehe de ee ee hes 725 6 5 4 Configuring Multicast 0 ee eee 726 6 5 5 Commands i sseont shee hel eee Shae LG eee ee ed 729 6 0 VRRP iia dark ony apan aae hae wala ea anes Mea nen Pa A ea em aes 7710 6 6 1 Load Balancing 2 70 n in ets ihe Rta Bh ea tee ER SS 770 6 6 2 Configuring VRRP sse cet ses these ees eee ee ede ted os ea A 771 60 3 Verifying VRRP acelin Sb a ate eh ante OEA E ES 772 6 6 4 Commands inutinn Shee heim Seas Sie bea baie a ae 774 67 MAGP euere cee Bae ERS ee EEE NE aie kd Bae eed Gow EE teow ones 785 6 7 1 MAGP Configuration 0 0 00 eee eee ee eee ee 785 6 7 2 Command Sori en ccs Sis kaw Vignes ees Rae SOARES Rea Ss RaSh 787 6 8 DHCP Relays ca sosc data Ue i ee ok ARS oy 793 6 821 Commands iges oe eE EENE eh SIAR Ses b BARA OES eet Be ERS 794 Mellanox Technologies 7 Mellanox Technologies Confidential Rev 3 20 Document Revision History Table 1 Document Revision History apace Date Description Revision Rev 3 20 12 October 2014 e Added e Section 5 5 2 MAC Learning Considerations on page 421 e the command mac learning disable on page 424 Updated e Section 1 2 Ethernet Features on page 15 e Section 3 2 Web Interface Overview on page 32 e the command inter
107. Unit E mail Address switch config Related Commands N A Note Mellanox Technologies 284 Mellanox Technologies Confidential Rev 3 20 show crypto ipsec show crypto ipsec brief configured ike policy sa Displays information ipsec configuration Syntax Description N A Default N A Configuration Mode Config History 3 2 1000 Role admin Example switch config show crypto ipsec IPSec Summary Crypto IKE is using pluto Openswan daemon Daemon process state is stopped No IPSec peers configured IPSec IKE Peering State Crypto IKE is using pluto Openswan daemon Daemon process state is stopped No active IPSec IKE peers IPSec Policy State No active IPSec policies IPSec Security Association State No active IPSec security associations switch config Related Commands N A Note Mellanox Technologies 285 Mellanox Technologies Confidential Rev 3 20 4 11 Scheduled Jobs Use the commands in this section to manage and schedule the execution of jobs 4 11 1 Commands job job lt job ID gt no job lt job ID gt Creates a job The no form of the command deletes the job Syntax Description job ID An integer Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config job 100 switch config job 100 Related Commands show jobs Note Job state is lost on
108. VLAN 3 2 0230 admin switch config interface vlan 10 mtu 9216 switch config interface vlan 10 show interfaces vlan 10 Vian 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 Internet Address 10 10 10 10 24 Broadcast address 10 10 10 255 MTU 9216 bytes Description my ip interface switch config interface vlan 10 interface vlan Mellanox Technologies 571 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Disables the interface The no form of the command enables the interface Syntax Description N A Default Configuration Mode History Role Example Related Commands Note The interface is enabled Config Interface VLAN 3 1 0000 admin switch config interface vlan 20 shutdown switch config interface vlan 20 Vlan 20 Admin state Disabled Operational state Down admin down Mac Address 00 02 c9 5d e0 f0 Internet Address 0 0 0 0 0 Broadcast address 255 255 255 255 MTU 1522 bytes Description N A switch config interface vlan 20 interface vlan Mellanox Technologies 572 Mellanox Technologies Confidential show interfaces vlan 20 Rev 3 20 clear counters clear counters Clears the interface counters Syntax Description N A Default N A Configuration Mode Config Interface VLAN History 3 2 0230 Role admin E
109. access list action my action Access list Action my action Mapped_Vlan_ID Mapped_port Counter_set Policer_ID 10 N A N A N A switch config access list action my action Related Commands Note Mellanox Technologies 521 Mellanox Technologies Confidential Rev 3 20 show mac ipv4 access lists show mac lipv4 access lists lt access list name gt Displays the list of rules for the MAC IPv4 ACL Syntax Description ipv4 mac IPv4 or MAC access list access list name ACL name Default N A Configuration Mode Any Command Mode History 3 1 1400 History 3 3 4500 Updated output Role admin Example switch config mac access list my list show mac access lists my list mac access list my list seq number p d smac dmac protocol cos vlan vlan mask action 10 deny lany lany 10800 13 13 OxXOFFF none 20 deny lany lany 180 2 16 110x0000 none 30 deny lany any any lany fany 0Ox0ACB none 40 deny lany lany any any lany N A none switch config mac access list my list Related Commands deny permit MAC ACL rule deny permit IPv4 ACL rule deny permit IPv4 TCP UDP ACL rule ipv4 mac access list ipv4 mac port access group Note Mellanox Technologies 522 Mellanox Technologies Confidential Rev 3 20 show mac ipy4 access lists summary show mac lipv4 access lists summary Displays the summary of number of rules per ACL and the in
110. achieve better than one millisecond accuracy in local area networks under ideal conditions Mellanox Technologies 123 Mellanox Technologies Confidential Rev 3 20 4 2 1 Commands clock set clock set lt hh mm ss gt lt yyyy mm dd gt Sets the time and date Syntax Description hh mm ss Time yyyy mm dd Date Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config clock set 23 23 23 2010 08 19 switch config show clock Time 23 23 26 Date 2010 08 19 Time zone UTC Etc UTC UTC offset same as UTC switch config Related Commands show clock Note If not specified the date will be left the same Mellanox Technologies 124 Mellanox Technologies Confidential Rev 3 20 clock timezone clock timezone lt zone word gt lt zone word gt lt zone word gt lt zone word gt Sets the system time zone The time zone may be specified in one of three ways e A nearby city whose time zone rules to follow The system has a large list of cities which can be displayed by the help and completion system They are organized hierarchically because there are too many of them to display in a flat list A given city may be required to be specified in two three or four words depending on the city e An offset from UTC This will be in the form UTC offset UTC UTC offset UTC lt 0 14 gt UTC offset UTC lt 1 12 gt e UTC Universal Tim
111. address Run switch config interface vlan 20 magp 100 ip virtual router mac address AA BBC DDE Hii The IP address must be the IP address of the interface This IP address is the default gateway for this MAGP instance This becomes the default gateway configured on the hosts connected to the relevant MLAG gt To verify the MAGP configuration run switch config show magp 1 MAGP 1 Interface vlan 1 MAGP state Master MAGP virtual IP 11 11 11 254 MAGP virtual MAC AA BB CC DD EE FF switch config A This output is to be expected in both MAGP switches aa Mellanox Technologies 786 Mellanox Technologies Confidential Rev 3 20 6 7 2 Commands protocol magp protocol magp no protocol magp Enables MAGP globally and unhides MAGP commands The no form of the command deletes all the MAGP configuration and hides MAGP commands Syntax Description N A Default Disabled Configuration Mode Config History 3 3 4500 Role admin Example switch config protocol magp switch config Related Commands Note IP routing must be enabled to enable MAGP Mellanox Technologies 787 Mellanox Technologies Confidential Rev 3 20 magp magp lt instance gt no magp lt instance gt Creates an MAGP instance on this interface and enters a new configuration mode The no form of the command deletes the MAGP instance Syntax Description instance MAGP instance number Range
112. address of a rendezvous point for a multicast group range or adds new multicast range to existing RP The no form of the command removes the rendezvous point for a multicast group range or removes all configuration of the RP Syntax Description rp address The static IP address of rendezvous point ip address IP address of the group range coupled with the prefix parameter prefix Network prefix in the format of 24 or 255 255 255 0 for example of group range override Specifies that this configuration overrides dynamic configuration learned by BSR bidir Specifies that the group range uses a bidirectional PIM Default N A Configuration Mode Config History 3 3 5006 Role admin Example switch config ip pim rp address 10 10 10 10 bidir Related Commands N A Note Mellanox Technologies 731 Mellanox Technologies Confidential Rev 3 20 ip pim bsr candidate ip pim bsr candidate vlan lt vlan id gt loopback lt number gt ethernet lt port gt hash len lt hash length gt priority lt priority gt interval lt interval gt no ip pim bsr candidate vlan lt vlan id gt loopback lt number gt ethernet lt port gt hash len lt hash length gt priority lt priority gt interval lt interval gt Configures the switch as a candidate BSR router C BSR The no form of the command removes BSR candidate configuration or restores default parameters values
113. admin state and per VLAN admin state Both states need to be enabled in order to enable the IGMP snooping on a specific VLAN Mellanox Technologies 464 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping config ip igmp snooping last member query interval lt 1 25 gt proxy reporting mrouter timeout lt 60 600 gt port purge timeout lt 130 1225 gt report suppres sion interval lt 1 25 gt no ip igmp snooping last member query interval proxy reporting mrouter timeout report suppression interval Configures IGMP global parameters The no form of the command resets the IGMP global parameters to default Syntax Description last member query inter Sets the time period in seconds with which the gen val lt 1 25 gt eral queries are sent by the IGMP quarrier After time out expiration the port will be removed from the multicast group proxy reporting Enables proxy reporting mrouter timeout lt 60 Sets the IGMP snooping router port purge time out 600 gt after which the port gets deleted if no IGMP router con trol packets are received The default value is 125 seconds port purge timeout lt 130 Sets the IGMP snooping port purge time interval after 1225 gt which the port gets deleted if no IGMP reports are received report suppression inter Sets the IGMP snooping report suppression time inter val lt 1 25 gt val for which the IGMPv 2 report messages for the same
114. al 200 2s Y ERME 20 20 20 20 switch config Step 2 Display VRRP detailed status Run switch config show vrrp detail VRRP Admin State Enabled Vlan20 Group 1 IPV4 Instance Admin State Enabled State Backup Virtual IP Address 20 20 20 40 Detorn 200 Advertisement interval sec 2 Preemption Enabled Virtual MAC address AA BB CC DD EE FF switch config Mellanox Technologies 772 Mellanox Technologies Confidential Rev 3 20 Step 3 Display VRRP statistic counters Run Mellanox Technologies 773 Mellanox Technologies Confidential Rev 3 20 6 6 4 Commands protocol vrrp protocol vrrp no protocol vrrp Enables VRRP globally and unhides VRRP related commands The no form of the command deletes all the VRRP configuration and hides VRRP related commands Syntax Description N A Default no feature vrrp Configuration Mode Config History 3 3 4500 Role admin Example switch config protocol vrrp Related Commands Note Mellanox Technologies 774 Mellanox Technologies Confidential Rev 3 20 vrrp vrrp lt number gt no vrrp lt number gt Creates a virtual router group on this interface and enters a new configuration mode The no form of the command deletes the VRRP instance and the related configura tion Syntax Description number A VRRP instance number Range is 1 255 Default N A Configuration Mode C
115. an AS number that identifies the BGP router Run switch config router bgp 100 P To run iBGP the AS number of all remote neighbors should be similar to the local AS number of the configured router Step 3 Configure BGP Router 1 neighbor Run switch config router bgp 100 neighbor 10 10 10 2 remote as 100 Step 4 Configure BGP Router 2 neighbor Run switch config router bgp 100 neighbor 10 10 10 1 remote as 100 Mellanox Technologies 632 Mellanox Technologies Confidential Rev 3 20 6 3 3 Verifying BGP Step 1 Check the general status of BGP Run switch config show ip bgp summary BGP router identifier 10 10 10 1 local AS number 100 BGP table version is 100 main routing table version 100 0 network entries using 0 bytes of memory 0 path entries using 0 bytes of memory 0 BGP AS PATH entries using 0 bytes of memory 0 BGP community entries using 0 bytes of memory 0 BGP extended community entries using 0 bytes of memory Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRed 0 10 ALO 2 0 100 100 76 3 0 0 00 0 10 19 ESTABLISHED switch config BGP summary information for VRF default address family IPv4 e Verify that the state of each BGP neighbor reached to ESTABLISHED state e Incase the neighbor is disabled shutdown The state of the neighbor will be IDLE e BGP incoming and outgoing messages should be incremented e The AS number of each neighbor is the correct one Step 2 Check
116. auto no interface mgmt0 zeroconf switch config Related Commands Note Mellanox Technologies 174 Mellanox Technologies Confidential Rev 3 20 show running config show running config Displays commands to recreate current running configuration Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 3 3 4402 Removed full parameter Role monitor admin Example switch config show running config Running database initial Generated at 2012 02 28 14 59 02 0000 Hostname switch 5ea5d8 License keys license install LK2 EFM_SX 5M11 5K11 5HGL OKAL 64QK 8C2Q 60Q3 6C1G Network interface configuration interface mgmt0 create interface mgmt0 comment interface mgmt0 dhcp interface mgmt0O display interface mgmt0 duplex auto interface mgmt0O mtu 1500 no interface mgmt0O shutdown switch config Related Commands Note Mellanox Technologies 175 Mellanox Technologies Confidential Rev 3 20 4 5 Logging 4 5 1 Monitor gt To print logging events to the terminal Set the modules or events you wish to print to the terminal For example run switch config logging monitor events notice switch config logging monitor sx sdk warning These commands print system events in severity notice and sx sdk module notifications in severity warning to the screen
117. be just the username and we append lt host name gt lt domain gt The default is do not reply but this can be changed to admin or whatnot in case something along the line does not like fictitious addresses The no form of the command resets this attribute to its default Syntax Description username Username Default do not reply Configuration Mode Config History 3 1 0000 Role admin Example switch config email return addr userl switch config show email Mail hub Mail hub port 25 Domain not specified Return address userl Include hostname in return address yes switch config Related Commands show email Note Mellanox Technologies 223 Mellanox Technologies Confidential Rev 3 20 email return host email return host no email return host Includes the hostname in the return address for emails The no form of the command does not include the hostname in the return address for emails Syntax Description N A Default No return host Configuration Mode Config History 3 1 0000 Role admin Example switch config no email return host switch config show email Mail hub Mail hub port 25 Domain system domain name Return address my address Include hostname in return address no Current reply address host localdomain Dead letter settings Save dead letter files yes Dead letter max age 5 days No re
118. between the MLAG switches and the rest of the L3 network should there be one The MLAG protocol is made up of the following components to be expanded later e Keepalive e Unicast and multicast sync e MLAG port sync Upgrading software of an MLAG pair can be done without consideration for master slave roles Switches in the same MLAG group must have the same MLNX OS version When positioned at the top of rack ToR and connecting with a Layer 3 uplink the MLAG pair acts as the L3 border for the hosts connected to it To allow default gateway redundancy both MLAG switches should be addressed by the host via the same default gateway address MLAG uses an IP address VIP that is always directed to the MLAG VIP master node When running MLAG with L3 VRRP or MAGP must be deployed For more information refer to Section 6 6 VRRP on page 770 or Section 6 7 MAGP on page 785 respectively When MLAG is connected through a Layer 2 based uplink there is no need to apply RW default gateway redundancy towards hosts since this function is implemented on the L2 ad L3 border points of the network The two peer switches need to carry the exact same configuration of the MLAG attributes for guaranteeing proper functionality of the MLAG Ensuring that both switches are configured identically is the responsibility of the user and is not monitored by the MLNX OS software x When working with MLAG the maximum number of MAC addresse
119. ca list email autosupport ssl ca list lt ca list name gt default_ca_list none no email autosupport ssl ca list Configures supplemental CA certificates for verification of server certificates The no form of the command removes supplemental CA certificate list Syntax Description default_ca_list Default supplemental CA certificate list none No supplemental list uses built in list only Default default_ca_list Configuration Mode Config History 3 2 3000 Role admin Example switch config email autosupport ssl ca list default_ca_list Related Commands N A Note Mellanox Technologies 216 Mellanox Technologies Confidential Rev 3 20 email dead letter email dead letter cleanup max age lt duration gt enable no email dead letter Configures settings for saving undeliverable emails The no form of the command disables sending of emails to vendor auto support upon certain failures Syntax Description duration Example 5d4h3m2s for 5 days 4 hours 3 minutes 2 seconds enable Saves dead letter files for undeliverable emails Default Save dead letter is enabled The default duration is 14 days Configuration Mode Config History 3 1 0000 Role admin Example switch config email dead letter enable switch config Related Commands show email Note Mellanox Technologies 217 Mellanox Technologies Confidential Rev 3 20
120. come in until the user hits Ctrl C similar to LINUX tail util ity files Displays the list of log files lt file number gt Displays an archived log file where the number may range from 1 up to the number of archived log files available not matching lt reg exp gt The file is piped through a LINUX grep utility to only include lines either matching or not matching the provided regular expression Default N A Configuration Mode Any Command Mode History 3 1 0000 3 3 4402 Updated example and added note Role admin Example switch config show log matching Executing Action Jan 19 10 55 38 arc switchl4 cli28202 cli NOTICE user admin Executing command en Jan 19 2 19 32 arc switchl4 cli28202 cli NOTICE user admin Executing command image install image SX_PPC_M460EX ppc m460ex 20140119 115026 img Jan 19 11 19 32 arc switch14 mgmtd4064 mgmtd NOTICE Action ID 326 requested by user admin System Administrator via CLI Jan 19 2 19 32 arc switchl4 mgmtd4064 mgmtd NOTICE Action ID 326 descr install system software image Jan 19 2 19 32 arc switchl4 mgmtd4064 mgmtd NOTICE Action ID 326 param image file name image SX_PPC_M460EX ppc m460ex 20140119 115026 img version SX_PPC_M460EX 3 0 0000 dev master HA 2014 01 19 11 50 26 ppc Jan 19 11 19 32 arc switch14 mgmtd4064 mgmtd NOTICE Action ID 326 param switch next boot location after install no switch config
121. config ure a certain connection between Mellanox switch systems to lower the width of a link from 4X operation to 1X based on the traffic flow Mellanox Technologies 313 Mellanox Technologies Confidential Rev 3 20 LWR is relevant only for 40GbE and InfiniBand FDR speeds in which the links are operational at a 4X width When show interfaces is used a port s speed appears unchanged even when only one lane is active Da LWR has three operating modes per interface e Disabled LWR does not operate and the link remains in 4X under all circumstances e Automatic the link automatically alternates between 4X and 1X based on traffic flow e Force a port is forced to operate in 1X mode lowering the throughput capability of the port This mode should be chosen in cases where constant low throughput is expected on the port for a certain time period after which the port should be configured to one of the other two modes to allow higher throughput to pass through the port See command power management width on page 319 ao Table 20 LWR Configuration Behavior Switch A Configuration Switch B Configuration Behavior Disable Disable LWR is disabled Disable Force Transmission from Switch B to Switch A operates at 1X On the opposite direction LWR is disabled Disable Auto Depending on traffic flow transmission from Switch B to Switch A may operate at 1X On the opposite direction L
122. e debug debug level messages e emerg system is unusable emergency e err error condition e info informational condition e none disables the logging locally and remotely e notice normal but significant condition e warning warning condition Default CLI commands and audit message are set to notice logging level Configuration Mode Config History 3 1 0000 Role admin Example switch config logging level cli commands info switch config show logging Local logging level info Override for class mgmt front warning Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field enabled Subsecond timestamp precision 1 whole digit 3 fractional digits Levels at which messages are logged CLI commands info Audit messages notice switch config Related Commands show logging Note Mellanox Technologies 186 Mellanox Technologies Confidential Rev 3 20 logging files delete logging files delete current oldest lt number of files gt Deletes the current or oldest log files Syntax Description current Deletes current log file oldest Deletes oldest log file number of files Sets the number of files to be deleted Default CLI commands and audit mes
123. factory default con figuration Use the command crypto certificate ca list default ca list name to add trusted certificates to that list The default ca list option requires LDAP to consult the system s configured global default CA list for sup plemental certificates cert verify Enables verification of SSL TLS server certificates This may be required if the server s certificate is self signed or does not match the name of the server ciphers all TLS1 2 Sets SSL mode to be used mode Sets the security mode for connections to the LDAP server e none requests no encryption for the LDAP connection e ssl the SSL port configuration is used an SSL connec tion is made before LDAP requests are sent LDAP over SSL e start tls the normal LDAP port is used an LDAP con nection is initiated and then TLS is started on this exist ing connection port number Sets the port on the LDAP server to connect to for authentication when the SSL security mode is enabled LDAP over SSL Default cert verify enabled mode none LDAP SSL is not activated port number 636 ciphers all Mellanox Technologies 269 Mellanox Technologies Confidential Configuration Mode History Role Example Related Commands Note Config 3 1 0000 3 2 3000 3 3 5050 admin switch config switch config User base DN User search scope Login attribute Bind DN Bind passw
124. image image boot image boot location lt location ID gt next Specifies the default location where the system should be booted from Syntax Description location ID Specifies the default destination location There can be up to 2 images on the system The possible values are 1 or 2 next Sets the boot location to be the next once after the one currently booted from thus avoiding a cycle through all the available locations Default N A Configuration Mode _ enable config History 3 1 0000 Role admin Example switch config image boot location 2 switch config Related Commands show images Note Mellanox Technologies 139 Mellanox Technologies Confidential Rev 3 20 boot next boot next fallback reboot enable no boot next fallback reboot enable Sets the default setting for next boot Normally if the system fails to apply the config uration on startup after attempting upgrades or downgrades as appropriate it will reboot to the other partition as a fallback The no form of the command tells the system not to do that only for the next boot Syntax Description N A Default N A Configuration Mode Config History 3 2 0506 Role admin Example switch config boot fallback reboot enable switch config Related Commands show images Note e Normally if the system fails to apply the configuration on startup after attempting upgra
125. ip address IP address of the neighbor peer group name Peer group name Default N A Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor groupA peer group switch config router bgp 100 neighbor 1 2 3 4 peer group groupA Related Commands Note e Once a peer group is created the group name can be used as a parameter in neighbor con figuration commands and the configuration will be applied to all members of the group e Settings applied to an individual neighbor in the peer group override group settings e A neighbor can only belong to one peer group so issuing this command for a neighbor that is already a member of another group removes it from that group e When a neighbor is removed from a peer group the neighbor retains the configuration inherited from the peer group Mellanox Technologies 662 Mellanox Technologies Confidential Rev 3 20 neighbor remote as neighbor lt ip address gt remote as lt as number gt no neighbor lt ip address gt remote as lt as number gt Configures a neighbor The no form of the command removes the neighbor dropping the connection and all routes if already connected Syntax Description ip address A BGP peer IP address peer group name Peer group name as number The BGP peer as number Range 1 65535 Default N A Configuration Mode Config Router BGP Hist
126. ipl lt ipl id gt gateway a b c eth ib force no ipl lt ipl id gt Sets this LAG as an IPL port The no form of the command resets this LAG as regular LAG Syntax Description ipl id IPL ID Only 1 IPL port is supported force Forces the change of a regular LAG to an IPL port The user does not need to delete LAG configuration Default no ipl Configuration Mode Config Interface Port Channel History 3 3 4500 Role admin Example switch config interface port channel 1 ipl 1 switch config interface port channel 1 Related Commands Note e IfaLAG is set as IPL only the commands no shutdown no ipl and no interface port channel become applicable e A LAG interface set as IPL must have default LAG configuration otherwise the set is rejected Force option can be used Mellanox Technologies 403 Mellanox Technologies Confidential Rev 3 20 ipl peer address ipl lt ipl id gt peer address lt IP Address gt no ipl lt ipl id gt Maps a VLAN interface to be used for an IPL LAG and sets the peer IP address of the IPL peer port The no form of the command deletes a peer IPL LAG and unbinds this VLAN inter face from the IPL function Syntax Description ipl id IPL ID Only 1 IPL port is supported IP Address IPv4 address Default N A Configuration Mode Config Interface VLAN History 3 3 4500 Role admin Example swi
127. key gt known host lt known host gt remove no ssh client user admin authorized key sshv2 lt public key ID gt identity lt key type gt Adds an entry to the global known hosts configuration file either by generating new key or by adding manually a public or private key The no form of the command removes a public key from the specified user s autho rized key list or changes the key type Syntax Description username The specified user must be a valid account on the sys tem Possible values for this parameter are admin 29 66 monitor xmladmin and xmluser authorized key sshv2 Adds the specified key to the list of authorized SSHv2 lt public key gt RSA or DSA public keys for this user account These keys can be used to log into the user s account identity lt key type gt Sets certain SSH client identity settings for a user dsa2 or rsa2 generate Generates SSH client identity keys for specified user private key Sets private key SSH client identity settings for the user public key Sets public key SSH client identity settings for the user known host lt known host gt Removes host from user s known host file remove Default No keys are created by default Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh client user admin known host 172 30 1 116 remove switch config Related Commands show ssh cl
128. logging level info Override for class mgmt front warning Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field disabled Levels at which messages are logged CLI commands notice Audit messages notice switch config Related Commands show logging logging local Note Mellanox Technologies 179 Mellanox Technologies Confidential Rev 3 20 logging lt syslog IP address gt logging lt syslog IP address gt trap lt log level gt override class lt class gt priority lt log level gt no logging lt syslog IP address gt trap lt log level gt override class lt class gt prior ity lt log level gt Enables by setting the IP address sending logging messages with ability to filter the logging messages according to their classes The no form of the command stops sending messages to the remote syslog server Syntax Description syslog IP address IPv4 address of the remote syslog server log level e alert alert notification action must be taken immediately e crit critical condition e debug debug level messages e emerg system is unusable emergency e err error condition e info informational condition e none disables the logging locally and remotely e no
129. lt snmp version gt no snmp server host lt IPv4 or IPv6 address gt disable traps informs lt com munity gt lt port gt Configures hosts to which to send SNMP traps The no form of the commands removes a host from which SNMP traps should be sent Syntax Description IP address IPv4 or IPv6 address disable Temporarily disables sending of traps to this host community Specifies trap community string port Overrides default UDP port for this trap sink snmp version Specifies the SNMP version of traps to send to this host Default No hosts are configured Default community is public Default UDP port is 162 Default SNMP version is 2c Configuration Mode Config History 3 1 0000 First version 3 2 1050 Add inform option Role admin Mellanox Technologies 345 Mellanox Technologies Confidential Rev 3 20 Example switch config snmp server host 10 10 10 10 traps version 1 switch config show snmp SNMP enabled yes SNMP port 161 System contact System location Read only communities public Read write communities none Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 Trap sinks 10 10 1050 Enabled yes Type traps version 1 Port 162 default Community public default switch config Related Commands show snmp snmp server enable Note This setting is only m
130. match ip address listSmallRoutes Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route is denied The prefix list name should point to an existing IP prefix list If it is not found no route is considered as a match for this clause Mellanox Technologies 701 Mellanox Technologies Confidential Rev 3 20 match ip next hop match ip next hop lt value gt no match ip next hop Configures a route s entry next hop match The no form of the command removes a route map s entry next hop match Syntax Description value Next hop IP address A B C D e g 10 0 13 86 Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 match ip next hop 10 1051 05 10 Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is
131. multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e Ifall clauses fail to permit or deny the route the route is denied Mellanox Technologies 698 Mellanox Technologies Confidential Rev 3 20 match community list match community lt communities list name gt exact match no match community lt communities list name gt exact match Creates a route map clause entry that specifies one route filtering condition The no form of the command removes the match clause Syntax Description communities list name A name of an IP community list Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match community list COM_LIST exact match Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route i
132. neighbor show ipv6 neighbor arp Note e Clearing Neighbor Discovery Protocol NDP cache removes only the dynamic entries learned and not the static entries configured e Use the no form of the ipv6 neighbor command to remove static entries Mellanox Technologies 114 Mellanox Technologies Confidential Rev 3 20 show ipv6 neighbors show ipv6 neighbors static Displays the Neighbor Discovery Protocol NDP table Syntax Description static Filters only the table of the static entries Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show ipv6 neighbors IPv6 Address Age MAC Address State Interf ie 9126 AAIAAGRASAAUARSAR pewianent Hott switch config Related Commands ipv6 neighbor clear ipv6 neighbor show ipv6 Note Mellanox Technologies 115 Mellanox Technologies Confidential Rev 3 20 4 1 6 5 DHCP ip dhcp ip dhcp default gateway yield to staticl hostname lt hostname gt primary intf lt ifname gt send hostname no ip dhcp default gateway yield to staticl hostname primary intf send host name Sets global DHCP configuration The no form of the command deletes the DHCP configuration Syntax Description yield to staticl Does not allow you to install a default gateway from DHCP if there is already a statically configured one hostname Specifies the hostname to be sent during DHCP client
133. no ip multicast routing Allows the switch to forward multicast packets The no form of the command disables multicast routing Syntax Description N A Default Disabled Configuration Mode Config History 3 3 5006 Role admin Example switch config ip multicast routing Related Commands N A Note Mellanox Technologies 752 Mellanox Technologies Confidential Rev 3 20 ip mroute ip mroute lt ip addr gt lt ip mask gt lt next hop gt pref no ip mroute lt ip addr gt lt ip mask gt Configure multicast reverse path forwarding RPF static routes The no form of the command deletes the static multicast route Syntax Description ip addr Unicast IP address ip mask Network mask in a dotted format e g 255 255 255 0 or 24 format next hop Next hop IP address preference Route preference Range 1 255 Default Preference is 1 Configuration Mode Config History 3 3 5006 Role admin Example arc switchl14 standalone master config ip mroute 16 16 0 0 16 E Pae oa l Related Commands N A Note Mellanox Technologies 753 Mellanox Technologies Confidential Rev 3 20 ip multicast ttl threshold ip multicast ttl threshold lt ttl value gt no ip multicast ttl threshold Configures the time to live TTL threshold of packets being forwarded out of an interface The no form of the command removes RPF static routes S
134. possible ways to the mask e length i e 24 e Network address i e 255 255 255 0 next hop IP address IPv4 address of the next hop Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ip route 10 10 10 0 24 172 28 2 4 switch config show ip route Destination Mask Gateway Interface Source default 0 0 0 0 172 28 0 1 mgmt 0 DHCP 10 10 10 0 255 255 255 0 172 28 2 4 mgmt 0 static 172 28 0 0 255 255 0 0 0 0 0 0 mgmt 0 direct 1 0 0 0 255 255 255 0 0 0 0 0 Vlanll direct 2 0 0 0 255 255 255 0 0 0 0 0 Vlanl2 direct 3 0 0 0 255 255 255 0 0 0 0 0 Vlan13 direct 4 0 0 0 255 255 255 0 0 0 0 0 Vlan14 direct 8 8 8 0 255 255 255 0 0 0 0 0 Vlan1 direct 7 7 7 0 255 255 255 0 1 0 0 2 Vlan11 static 22002 Vlanl2 static 4 0 0 2 Vilanl4 static 3 0 0 2 Vlan13 static switch config Related Commands interface vlan ip load sharing show ip route Note The IP prefix and the network mask must be aligned in the LSB mask for example 192 168 0 0 16 or 192 168 10 0 24 or 192 168 10 10 32 Mellanox Technologies 579 Mellanox Technologies Confidential Rev 3 20 ip load sharing ip load sharing lt type gt no ip load sharing This command sets the ECMP load sharing mode The no form of the command sets the load sharing to default Syntax Description type e source ip port e destination ip port e source destination ip port e traffic class e a
135. prior to the binding action Mellanox Technologies 515 Mellanox Technologies Confidential Rev 3 20 deny permit MAC ACL rule seq number lt sequence number gt denylpermit any lt source mac gt mask lt mac gt any lt destination mac gt mask lt mac gt protocol lt protocol gt cos lt cos value gt vlan lt vlan id gt vlan mask lt vlan mask gt action lt action id gt no lt sequence number gt Creates a rule for MAC ACL The no form of the command deletes a rule from the MAC ACL Syntax Description sequence number Optional parameter to set a specific sequence number for the rule The range is 1 500 deny permit Determines the type of the rule denies or permits action any lt source mac gt Sets source MAC and optionally sets a mask for that mask lt mac gt MAC The any option will cause the rule not to check the source MAC any lt destination mac gt Sets destination MAC and optionally sets a mask for mask lt mac gt that MAC The any option will cause the rule not to check the destination MAC protocol Sets the Ethertype filed value from the MAC address Possible range is 0xO0000 Oxffff cos value Sets the COS priority bits field possible range is 0 7 vlan id Sets the VLAN ID field possible range is 0 4095 vlan mask lt vlan mask gt Sets VLAN group Range 0x0000 OxOFFF action Action name free string
136. querier query interval igmp snooping querier query interval lt time gt no igmp snooping querier query interval Configures the query interval The no form of the command rests the parameter to its default Syntax Description time Time interval between queries in seconds Default 125 seconds Configuration Mode Config VLAN History 3 3 4200 Role admin Example switch config vlan 1 igmp snooping querier query interval 20 switch config vlan 1 Related Commands igmp snooping querier query interval show ip igmp snooping querier Note Mellanox Technologies 472 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping show ip igmp snooping Displays IGMP snooping information for all VLANs or a specific VLAN Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp snooping IGMP snooping global configuration IGMP snooping globally enabled IGMP snooping operationally enabled Proxy reporting globally disabled Last member query interval is 1 seconds Mrouter timeout is 125 seconds Port purge timeout is 260 seconds Report suppression interval is 3 seconds IGMP snooping unregistered multicast flood switch config Related Commands Note Mellanox Technologies 473 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping gro
137. reboot Mellanox Technologies 286 Mellanox Technologies Confidential Rev 3 20 command command lt sequence gt lt command gt no command lt sequence gt Adds a CLI command to the job The no form of the command deletes the command from the job Syntax Description sequence An integer that controls the order the command is exe cuted relative to other commands in this job The com mands are executed in an ascending order command A CLI command Default N A Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 command 10 show power switch config job 100 Related Commands show jobs Note The command must be defined with inverted commas e The command must be added as it was executed from the config mode For example in order to change the interface description you need to add the command interface lt type gt lt number gt description my description Mellanox Technologies 287 Mellanox Technologies Confidential Rev 3 20 comment comment lt comment gt no comment Adds a comment to the job The no form of the command deletes the comment Syntax Description comment The comment to be added string Default me Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 commen
138. required switch config Related Commands username show users Note Mellanox Technologies 236 Mellanox Technologies Confidential Rev 3 20 show users show users history Displays logged in users and related information such as idle time and what host they have connected from Syntax Description history Displays current and historical sessions Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show users USERNAME FULL NAME LINE HOST IDLE admin System Administrator pts 0 172 22 237 174 Od0h34m4s admin System Administrator pts 1 172 30 0 127 1d3h30m49s admin System Administrator pts 3 172 22 5237 34 Od0hOm0s switch config show users history admin pts 3 172 22 237 34 Wed Feb 1 11 56 still logged in admin pts 3 172 22 237 34 Wed Feb 1 11 42 11 46 00 04 wtmp begins Wed Feb 1 11 38 10 2012 switch config Related Commands username show usernames Note Mellanox Technologies 237 Mellanox Technologies Confidential Rev 3 20 show whoami show whoami Displays username and capabilities of user currently logged in Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show whoami Current user admin Capabilities admin switch config Related Commands username show usernames show users Not
139. route to the peer is the default route 0 0 0 0 Mellanox Technologies 653 Mellanox Technologies Confidential Rev 3 20 neighbor export localpref neighbor lt ip address gt lt peer group name gt export localpref lt value gt no neighbor lt ip address gt lt peer group name gt export localpref Configures the local preference value sent to the specified peer or peer group The no form of the command resets the local preference to its default value Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name value Preference value Range 0 2147483647 Default 100 Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 export localpref 100 Related Commands Note Mellanox Technologies 654 Mellanox Technologies Confidential Rev 3 20 neighbor graceful restart helper neighbor lt ip address gt lt peer group name gt graceful restart helper no neighbor lt ip address gt lt peer group name gt graceful restart helper Enables BGP graceful restart helper mode for the specified BGP neighbor or peer group The no form of the command Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name Default Graceful restart is enabled Configuration Mode Config Router BGP
140. sent to the collector The range is 200 9216 bytes Default 1400 bytes Configuration Mode Config sFlow History 3 3 3500 Role admin Example switch config sflow max datagram size 9216 switch config sflow Related Commands Note This packet contains the data sample as well as the statistical counter data Mellanox Technologies 548 Mellanox Technologies Confidential Rev 3 20 collector ip collector ip lt ip address gt udp port lt udp port number gt no collector ip lt ip address gt udp port Sets the collector s IP The no form of the command resets the parameters to their default values Syntax Description ip address The collector IP address udp port lt udp port num ber gt Sets the collector UDP port number Default Configuration Mode ip address 0 0 0 0 udf port number 6343 Config sFlow History 3 3 3500 Role admin Example switch config sflow collector ip 10 10 10 10 switch config sflow Related Commands Note Mellanox Technologies 549 Mellanox Technologies Confidential Rev 3 20 agent ip agent ip lt ip address gt interface ethernet lt slot port gt port channel lt channel group gt lt if name gt loopback lt number gt vlan lt id gt no agent ip Sets the IP address associated with this agent The no form of the command resets the param
141. show route map test route map test permit sequence 10 Match clauses as number 40 Set clauses weight 7 switch config route map mymap permit 1200 switch config route map mymap permit 1200 set weight 11 switch config route map mymap permit 1200 abort switch config show route map mymap route map mymap permit sequence 10 Match clauses as number 40 Set clauses weight 7 switch config Related Commands N A Note Mellanox Technologies 694 Mellanox Technologies Confidential Rev 3 20 exit exit Saves pending route map clause changes to running config and returns to global con figuration mode Syntax Description N A Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match as number 40 switch config route map mymap permit 10 set weight 7 switch config show route map test route map test permit sequence 10 Match clauses as number 40 Set clauses weight 7 switch config route map mymap permit 1200 switch config route map mymap permit 1200 set weight 11 switch config route map mymap permit 1200 exit switch config show route map test route map mymap permit sequence 10 Match clauses as number 40 Set clauses weight 7 route map mymap permit sequence 1200 Set clauses weight 11 switch config Related Commands N A Note Mellanox Technologies 695
142. single logical channel LACP allows a network device to negotiate an automatic bundling of links by sending LACP packets to the peer directly connected device that also imple ments LACP LDAP The Lightweight Directory Access Protocol is an application protocol for reading and editing directories over an IP network MAC A Media Access Control address MAC address is a unique identifier assigned to network interfaces for communications on the physical network segment MAC addresses are used for numerous network technologies and most IEEE 802 network technologies including Ethernet Mellanox Technologies 12 Mellanox Technologies Confidential Table 3 Glossary Rev 3 20 MTU Maximum Transfer Unit The maximum size of a packet payload not including headers that can be sent received from a port Network Adapter A hardware device that allows for communication between computers in a network PFC FC Priority Based Flow Control applies pause functionality to traffic classes OR classes of service on the Ethernet link RADIUS Remote Authentication Dial In User Service A networking protocol that enables AAA centralized management for computers to connect and use a net work service RDMA Remote Direct Memory Access Accessing memory in a remote side without involvement of the remote CPU RSTP Rapid Spanning Tree Protocol A spanning tree protocol used to prevent loops in bridge
143. specific overrides to the local log level class Sets or removes a per class override on the logging level All classes which do not have an override set will use the global logging level set with logging local lt log level gt Classes that do have an override will do as the override specifies If none is specified for the log level MLNX OS will not log anything from this class Classes available e debug module debug module functionality e protocol stack protocol stack modules functionality e mgmt back system management back end components mgmt core system management core e mgmt front system management front end components e mlx daemons management daemons e sx sdk switch SDK log level e alert alert notification action must be taken immediately e crit critical condition e debug debug level messages e emerg system is unusable emergency e err error condition e info informational condition e none disables the logging locally and remotely e notice normal but significant condition e warning warning condition Default Override is disabled Configuration Mode Config History 3 1 0000 3 3 4150 Added debug module class Changed iss modules with protocol stack Role admin Mellanox Technologies 178 Mellanox Technologies Confidential Rev 3 20 Example switch config logging local override class mgmt front priority warning switch config show logging Local
144. standard communities 4 lt aa nn gt e lt number gt e internet e local AS e no advertise e no export Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community none Related Commands N A Note Mellanox Technologies 708 Mellanox Technologies Confidential Rev 3 20 set community none set community none no set community none Sets the community attribute of a distributed route to be empty The no form of the command removes the set statement from the clause Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community none Related Commands N A Note Mellanox Technologies 709 Mellanox Technologies Confidential Rev 3 20 set community delete set community lt list of communities gt delete no set community lt list of communities gt delete Deletes matching communities The no form of the command removes the set statement from the clause Syntax Description list of communities List of standard communities 4 lt aa nn gt e lt number gt e internet e local AS e no advertise e no export Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch e07c04 standalone master config route map test_route_map swi
145. stop message and in contrast to configuration change accounting which happens after configuration database changes system actions are logged when the action is started not when the action has completed Mellanox Technologies 239 Mellanox Technologies Confidential Rev 3 20 aaa authentication login aaa authentication login default lt auth method gt lt auth method gt lt auth method gt lt auth method gt lt auth method gt no aaa authentication login Sets a sequence of authentication methods Up to four methods can be configured The no form of the command resets the configuration to its default Syntax Description auth method e local e radius 2 tacacs e Idap Default local Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config aaa authentication login default local radius tacacs ldap switch config show aaa AAA authorization Default User admin Map Order local only Authentication method s local radius tacacst ldap Accounting method s tacacst switch config Related Commands show aaa Note The order in which the methods are specified is the order in which the authentication is attempted It is required that local is one of the methods selected It is recom mended that local be listed first to avoid potential problems logging in to local accounts in the face of network or remote server issues M
146. switch config interface ethernet 1 1 spanning tree bpdufilter enable switch config interface ethernet 1 1 Related Commands show spanning tree Note This command can be used when the switch is connected to hosts Mellanox Technologies 439 Mellanox Technologies Confidential Rev 3 20 clear spanning tree counters clear spanning tree counters Clears the spanning tree counters Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config clear panning tree counters switch config Related Commands show spanning tree Note Mellanox Technologies 440 Mellanox Technologies Confidential Rev 3 20 show spanning tree show spanning tree detail interface lt type gt lt number gt Displays spanning tree information Syntax Description detail Displays detailed spanning tree configuration and sta tistics interface lt type gt lt num Displays the running state for a specific interface ber gt Options for type ethernet or port channel Options for number lt slot port gt or lt number gt Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show spanning tree Switch ethernet default Spanning tree protocol is enabled rstp Spanning tree force version 2 Root ID Priority 32768 Address 00 02
147. the following command switch config interface etherent lt inf gt spanning tree port priority lt 0 240 gt To configure port path cost use the following command switch config interface etherent lt inf gt spanning tree cost lt 1 200000000 gt 5 6 2 Port Type Port type has the following configuration options e edge is not assumed to be converged by the RSTP learning forwarding mechanism It converges to forwarding quickly P It is recommended to configure the port type for all ports connected to hosts as edge ports gt e normal is assumed to be connected to a switch thus it tries to be converged by the RSTP learning forwarding However if it does not receive any BPDUs it is operation ally moved to be edge e network is assumed to be connected to a switch If it does not receive any BPDUs it is moved to discarding state Each of these configuration options is mutually exclusive Port type is configured using the command spanning tree port type It may be applied globally on the switch Config level which configures all switch interfaces Another option is to configure ports individually by entering the interface s configuration mode Mellanox Technologies 428 Mellanox Technologies Confidential Rev 3 20 e Global configuration switch config spanning tree port type edge normal network default e Interface configuration switch config interface etherent lt inf gt spannin
148. the second group should be configured with Router 2 s virtual address Figure 26 Common VRRP Configuration with Load Balancing VR 100 10 10 10 11 VR 200 10 10 10 12 Backup VR 200 es Master VR 200 L2 switch Vlan 10 GroupA Group B Default GW Default GW 10 10 10 11 10 10 10 12 Mellanox Technologies 770 Mellanox Technologies Confidential Rev 3 20 6 6 2 Configuring VRRP gt To configure VRRP Precondition steps Step 1 Enable IP routing functionality Run switch config ip routing Step 2 Enable the desired VLAN Run switch config vlan 20 R The VLAN cannot be the same one configured for the MLAG IPL if MLAG is used gt Step 3 Add this VLAN to the desired interface Run switch config interface ethernet 1 1 switch config ethernet 1 1 switchport access vlan 20 Step 4 Create a VLAN interface Run switch config interface vlan 20 Step 5 Apply IP address to the VLAN interface On one of the switches run switch config interface vlan 20 ip address 20 20 20 20 24 On the other switch run switch config interface vlan 20 ip address 20 20 20 30 24 Step 6 Enable the interface Run switch config interface vlan 20 no shutdown Configure VRRP This is the same configuration on both switches Step 1 Enable VRRP protocol globally Run switch config protocol vrrp Step 2 Create a virtual router group for an IP interface Up to 255 VRRP IDs are s
149. use GRH headers e Set HCA to use Ethernet protocol Display the Device Manager and expand System Devices 5 14 1 2 2Configuring Windows Host Since PFC is responsible for flow controlling at the granularity of traffic priority it is Pd necessary to assign different priorities to different types of network traffic e As per RoCE configuration all ND NDK traffic is assigned to one or more chosen pri orities where PFC is enabled on those priorities Configuring Windows host requires configuring QoS 5 14 1 2 2 1 Using Global Pause Flow Control GFC gt To use Global Pause Flow Control GFC mode disable QoS and Priority PS Disable NetQosFlowControl PS Disable NetAdapterQos 5 14 1 3 Configuring SwitchX Based Switch System gt To enable RoCE the SwitchX should be configured as follows e Ports facing the host should be configured as access ports and either use global pause or Port Control Protocol PCP for priority flow control e Ports facing the network should be configured as trunk ports and use Port Control Pro tocol PCP for priority flow control For further information on how to configure SwitchX please refer to SwitchX User Manual 5 14 1 4 Configuring Arista Switch Step 1 Set the ports that face the hosts as trunk config interface et10 config if Et1l0 switchport mode trunk Step 2 Set VID allowed on trunk port to match the host VID config if Etl0 switchport trunk allowed vlan
150. vlan switchport access vlan switchport mode vlan Note Mellanox Technologies 420 Mellanox Technologies Confidential Rev 3 20 5 5 MAC Address Table 5 5 1 Configuring Unicast Static MAC Address You can configure static MAC addresses for unicast traffic This feature improves security and reduces unknown unicast flooding gt To configure Unicast Static MAC address Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Run the command mac address table static unicast lt destination mac address gt vlan lt vlan identifier 1 4094 gt interface ethernet lt slot gt lt port gt switch config mac address table static unicast 00 11 22 33 44 55 vlan 1 interface ethernet 0 1 5 5 2 MAC Learning Considerations MAC learning may be disabled using the command mac learning disable which is beneficial in the following situations e To prevent denial of service attacks e To manage the available MAC address table space by controlling which interfaces can learn MAC addresses e To duplicate to a dedicated server port7 all the packets that one host host1 port1 sends to another host2 port2 like in port mirroring To accomplish this MAC learn ing is disabled on port2 In this case the FDB does not obtain the MAC address of host2 Also to prevent broadcast to every port it is possible to configure a VLAN VLAN 80 which ports 1 2 and 7 are m
151. which has never been run yet d on the switch use the following command sequence as well yE switch config no boot next fallback reboot enable switch config configuration write Step 7 Reload the switch Run switch config reload 4 3 4 3 Switching to Partition with Older Software Version The system saves a backup configuration file when upgrading from an older software version to a newer one If the system returns to the older software partition it uses this backup configuration file Note that all configuration changes done with the new software are lost when returning to the older software version There are 2 instances where the backup configuration file does not exist e The user has run reset factory command which clears all configuration files in the system e The user has run configuration switch to to a configuration file with different name then the backup file Also note that the configuration file becomes empty if the switch is downgraded to a software version which has never been installed yet Mellanox Technologies 136 Mellanox Technologies Confidential Rev 3 20 To allow switching partition to the older software version in these cases above follow the steps below Step 1 Run the command switch config no boot next fallback reboot enable Step 2 Set the boot partition Run switch config image boot next Step 3 Save the configuration Run switch config configuration
152. yes Auth type PAP Key 3333 default Timeout 3 default Retransmit 1 default switch config Mellanox Technologies 256 Mellanox Technologies Confidential Rev 3 20 Related Commands aaa authorization show tacacs tacacs server Note e TACACS servers are tried in the order they are configured e A PAP auth type similar to an ASCII login except that the username and password arrive at the network access server in a PAP protocol packet instead of being typed in by the user so the user is not prompted e If the user does not specify a parameter for this configured TACACS server the configu ration will be taken from the global TACACS server configuration Refer to tacacs server command Mellanox Technologies 257 Mellanox Technologies Confidential Rev 3 20 show tacacs show tacacs Displays TACACS configurations Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show tacacs TACACS defaults Key 3333 Timeout 3 Retransmit 1 TACACS servers 40 40 40 40 49 Enabled yes Auth type PAP Key 3333 default Timeout 3 default Retransmit 1 default switch config Related Commands Note aaa authorization tacacs server tacacs server host Mellanox Technologies 258 Mellanox Technologies Confidential Rev 3 20 4 9 3 5 LDAP Idap base dn Idap base d
153. 0 gt To fetch a BIN configuration file switch config configuration fetch scp root my server root tmp my filename gt To see the available configuration files switch config show configuration files initial active my filename Active configuration initial Unsaved changes no switch config gt To load a BIN configuration file switch config configuration switch to my filename Applying a new BIN configuration file changes the whole switch s configuration and ad requires system reboot which can be preformed using the command reload 4 4 3 2 Text Configuration Files Text configuration files are text based and editable gt To create a new text based configuration file switch config configuration text generate active running save my filename gt To apply a text based configuration file switch config configuration text file my filename apply Applying a text based configuration file to an existing running data port configuration may result in unpredictable behavior It is therefore suggested to first clear the switch s configuration by applying a specific configuration file following the procedure in Sec tion 4 4 3 1 or by resetting the switch back to factory default 4 gt To upload a text based configuration file from a switch to an external file server switch config configuration text file my filename upload scp root my server root tmp my filename gt To fetch a text bas
154. 1 255 Default Disabled Configuration Mode Config Interface VLAN History 3 3 4500 Role admin Example switch config interface vlan 10 magp 1 switch config interface vlan 10 magp 1 Related Commands Note e Only one MAGP instance can be created on an interface e Different interfaces cannot share an MAGP instance e MAGP and VRRP are mutually exclusive Mellanox Technologies 788 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Enables MAGP instance The no form of the command disables the MAGP instance Syntax Description N A Default Disabled Configuration Mode Config Interface VLAN MAGP History 3 3 4500 Role admin Example switch config interface vlan 10 magp 1 protocol magp switch config interface vlan 10 magp 1 Related Commands Note Mellanox Technologies 789 Mellanox Technologies Confidential Rev 3 20 ip virtual router address ip virtual router address lt ip address gt no ip virtual router address Sets MAGP virtual IP address The no form of the command resets this parameter to its default Syntax Description ip address The virtual router IP address Default N A Configuration Mode Config Interface VLAN MAGP History 3 3 4500 Role admin Example switch config interface vlan 10 magp 1 ip virtual router address 10 10 10 10 switch config interface vlan 10 magp
155. 100 Step 3 Set the ports that face the network as trunk config interface et20 config if Et20 switchport mode trunk Step 4 Assign the relevant ports to LAG config interface et10 config if Et10 dcbx mode ieee config if Etl0 speed forced 40gfull config if Et10 channel group 11 mode active Step 5 Enable PFC on ports that face the network config interface et20 config if Et20 load interval 5 config if Et20 speed forced 40gfull Mellanox Technologies 556 Mellanox Technologies Confidential Rev 3 20 config if Et20 switchport trunk native vlan tag config if Et20 switchport trunk allowed vlan 11 config if Et20 switchport mode trunk config if Et20 dcbx mode ieee config if Et20 priority flow control mode on config if Et20 priority flow control priority 3 no drop 5 14 1 4 1Using Global Pause Flow Conirol GFC gt To enable GFC on ports that face the hosts perform the following config interface et10 config if Et10 flowcontrol receive on config if Et10 flowcontrol send on 5 14 1 4 2Using Priority Flow Control PFC gt To enable PFC on ports that face the hosts perform the following config interface et10 config if Et10 dcbx mode ieee config if Etl0 priority flow control mode on config if Et10 priority flow control priority 3 no drop 5 14 1 5 Configuring Router PFC only The router uses L3 s DSCP value to mark
156. 1008 A OK PS3 0 00 46 88 0 00 1008 A OK PS4 NOT PRESENT PS5 46 72 47 82 0 98 1008 A OK PS6 NOT PRESENT PST NOT PRESENT PS8 a Cal NOT PRESENT PS9 NOT PRESENT PS10 NOT PRESENT Total power used 295 54 W Total power capacity 4032 00 W Total power budget 4032 00 W Total power available 3736 46 W Redundancy mode combined Redundancy status OK switch config Related Commands N A Note Mellanox Technologies 329 Mellanox Technologies Confidential Rev 3 20 show power consumers show power consumers Displays power consumers Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show power consumers Module Power Voltage Current Status Watts Amp MGMT 17 47 48 00 0 36 O S01 33 26 48 00 0 69 O S02 33 50 48 00 0 70 e LO1 BAES 48 00 0 66 O L02 29 76 48 00 0 62 O 130 28 61 48 00 0 60 O FAN5 14 91 48 00 0 3 O FAN2 13 70 48 00 0 29 O FAN1 14 21 48 00 0 30 O FAN6 TESO 48 00 0 3 O FAN4 1453 48 00 0 30 O FAN7 15 04 48 00 0 3 O FAN3 T517 48 00 0 32 Q FAN8 14 98 48 00 0 3 Oo Total power used 291 97 W Max power 1636 00 W switch config Related Commands N A Note Mellanox Technologies 330 Mellanox Technologies Confidential Rev 3 20 show temperature show temperature Displays the system s temperature sensors status
157. 101 We Sulonsics 10 10 100 24 Active Querier 10 10 10 1 Membership count 5 Route queue depth 0 IGMP Version 2 IGMP query interval 125 secs configured value 125 secs IGMP max response time 10 secs configured value 10 secs IGMP startup query interval 125 secs configured value 125 secs IGMP startup query count 2 IGMP group timeout 260 secs configured value 260 secs IGMP querier timeout 260 secs configured value 260 secs IGMP last member mrt 25 secs configured value 25 IGMP robustness variable 2 IGMP interface immediate leave Disabled IGMP interface statistics General sent received v1 v2 reports 0 10 v2 queries 271 0 v2 leaves 0 0 v3 queries 0 0 v3 reports 0 0 switch config Step 3 Display the list of IGMP groups and their status Run switch config show ip igmp groups IGMP Connected Group Membership for VRF default 2 total entries Iye S Gracie D Dynamic b Local P SSM Ihecineilenceel Group Address Type Interface Uptime Expires Last Reporter DAS Oo lO D vlan10 Od 00 00 07 46 0d 00 04 05 08 10 10 10 2 BEG 0 dhe db D vlan10 Oc 0000 07 47 Wel 00 04 05 0601 We 10 10 2 switch config 6 5 4 3 Configuring PIM Prerequisites Step 1 If not enabled enable IP routing Run switch config ip routing Step 2 Globally enable multicast routing Run switch config ip multicast routing Mellanox Technologies 727 Mellanox Technologies Conf
158. 11 04 10 12 02 49 ppc Partition 2 SX OS_PPC_M460EX 3 1 0000 dev HA 2011 04 10 12 02 49 ppc Last boot partition 1 Next boot partition 1 Boot manager password is set No image install currently in progress Require trusted signature in image being installed yes switch config Step 3 Delete the unused images Run switch config image delete image PPC_M460EX SX_3 0 1224 img switch config When deleting an image you delete the file but not the partition This is recommended so as to not overload system resources 4 3 4 Downgrading MLNX OS Software Prior to downgrading software please make sure the following prerequisites are met Step 1 Log into your switch via the CLI using the console port Step 2 Backup your configuration according to the following steps 1 Change to Config mode Run switch 112094 standalone master gt enable switch 112094 standalone master configure terminal switch 112094 standalone master config 2 Disable paging of CLI output Run switch 112094 standalone master config no cli default paging enable 3 Display commands to recreate current running configuration Run switch 112094 standalone master config show running config 4 Copy the output to a text file 4 3 4 1 Downloading Image Step 1 Log into the system to obtain the serial number Run switch 112094 standalone master config show inventory Step 2 Download the requeste
159. 127 0 0 1 56 84 bytes of data 64 bytes from localhost 127 0 0 1 icmp_seq l1 tt1l 64 time 0 078 ms 64 bytes from localhost 127 0 0 1 icmp_seq 2 ttl 64 time 0 052 ms 64 bytes from localhost 127 0 0 1 icmp_seq 3 ttl 64 time 0 058 ms Related Commands show hosts Note e Ifno mapping is configured a mapping between the hostname and the IPv4 loopback address 127 0 0 1 will be added e The no form of the command maps the hostname to the IPv6 loopback address if there is no statically configured mapping from the hostname to an IPv6 address disabled by default e Static host mappings are preferred over DNS results As a result with this option set you will not be able to look up your hostname on your configured DNS server but without it set some problems may arise if your hostname cannot be looked up in DNS Mellanox Technologies 104 Mellanox Technologies Confidential Rev 3 20 show hosts show hosts Displays hostname DNS configuration and static host mappings Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show hosts Hostname my host name Name server 9 9 9 9 configured Name server 10 211 0 121 dynamic Name server 172 30 0 126 dynamic Name server 10 4 0 135 dynamic Domain name mydomain com configured Domain name lab mtl com dynamic Domain name vmlab mtl com dynamic Domain name yok m
160. 173 Commands t i42 Ae EER EON ogi te iela rag AEE EOR 514 5 12 Port Mirroring en ee Se Re Whe Se amen Bas 524 5 12 1 Mirroring Sessions 2 4 cbs eee abe aps eee ees eee eee ee ee 524 5 12 2 Configuring Mirroring Sessions 0 0000 cece cece eens 527 5 12 3 Verifying Mirroring Sessions 00 0 529 5 124 Commands 3 E ett a CNET eign Waa ean ok bene aie a anes 530 SNS SHOW sas Hes ai ohs Daves Hil whe a Raden Wea GaN w oe ae Se ee a 539 513 How Samples siete hoa esa E eating ahead A Rael 539 5 13 2 Statistical Samples 2 0 eee ee ee eee eee ERSS 539 5 13 3 sFlow Datagrams 3 20 oc oe ba Sees ea ea ese oe Se aa oe Aes 540 5 13 4 Sampled Interfaces 0 0 05 fice Shee ee ee eels Gow tee ere es 540 5 13 5 Configuring sFlOW csiis iian eA kG a Soke og Sage eee ee 540 5 13 6 Verifying SFIOW ssi rene iraneu tuee Gotti Saeed hereto 541 S327 COMMANAS ss ea es ea a RAE a TR a GSO E A A a p r lake 542 5 14 Transport Applications 0 0 0 ene eens 554 5 14 1 RDMA over Converged Ethernet ROCE 0 00 e cece eee eee 554 Chapter 6 IP Routing ois isdn 600s 4 si oh Wee Ee Sw HES OE SS SS EOD 6 1 Generals 03 2 d rn dedi tiie ape T EEEE R kee Maes 559 GTI AP Interfaces ra enep aae aban pa E Re Biptod wees Rens E E E eg btn 559 6 1 2 Equal Cost Multi Path Routing ECMP 0 0 2 0 00008 562 6 1 3 IPv4 Routing Mode ipao AREE ENA ARRE a E A a ee eee 563 6 1 4 Creating an IP Interface
161. 18 0d 00 04 08 81 19 19 19 1 225 7 7 7 S vlanl9 0d 00 12 12 15 0d 00 00 00 00 0 0 0 0 225 7 7 7 S vlan21 0d 00 12 12 15 0d 00 00 00 00 0 0 0 0 Related Commands N A Note Mellanox Technologies 767 Mellanox Technologies Confidential Rev 3 20 show ip igmp interface show ip igmp interface vlan lt vlan id gt brief Displays IGMP brief configuration and status Syntax Description brief Displays brief output information vlan lt vlan id gt Filters the output to a specific VLAN ID Default N A Configuration Mode Any Command Mode History Role admin Mellanox Technologies 768 Mellanox Technologies Confidential Rev 3 20 Example switch config show ip igmp interface IGMP Interfaces for VRF default VLANS5 Interface status protocol down admin up link down IP address 5 5 5 49 IP Subnet 5 5 5 0 24 Active Querier 5 5 5 48 Membership count 0 Route queue depth 0 IGMP Version 2 IGMP query interval 125 secs configured value 125 secs IGMP max response time 100 secs configured value 100 secs IGMP startup query interval 125 secs configured value 125 secs IGMP startup query count 2 IGMP group timeout 350 secs configured value 350 secs IGMP querier timeout 350 secs configured value 350 secs IGMP last member mrt 10 secs configured value 10 IGMP robustness variable 2 IGMP interface immediate leave Disabled IGMP interface statistics
162. 2 icmp_seq 2 ttl 64 time 0 187 ms 64 bytes from 172 30 2 2 icmp_seq 3 ttl 64 time 0 166 ms 64 bytes from 172 30 2 2 icmp_seq 4 ttl 64 time 0 161 ms 64 bytes from 172 30 2 2 icmp_seq 5 ttl 64 time 0 153 ms 64 bytes from 172 30 2 2 icmp_seq 6 ttl 64 time 0 144 ms SE 172 30 2 2 ping statistics 6 packets transmitted 6 received 0 packet loss time 5004ms rtt min avg max mdev 0 144 0 252 0 703 0 202 ms switch config Related Commands traceroute Note e Ping to IPv6 address is not supported e When using I option use the interface name interface number for example ping I vian10 Mellanox Technologies 587 Mellanox Technologies Confidential Rev 3 20 traceroute traceroute 46dFITUnrAV f first_ttl g gate i device m max_ttl N squeries p port t tos 1 flow_label w waittime q nqueries s src_addr z sendwait host packetlen Traces the route packets take to a destination Syntax Description 4 Uses IPv4 6 Uses IPv6 d Enables socket level debugging g Sets DF do not fragment bit on I Uses ICMP ECHO for tracerouting T Uses TCP SYN for tracerouting U Uses UDP datagram default for tracerouting n Does not resolve IP addresses to their domain names aos Bypasses the normal routing and send directly to a host on an attached network A Performs AS path lookups in routing registries and print results directly a
163. 3 20 lacp lacp no lacp Enables LACP in the switch The no form of the command disables LACP in the switch Syntax Description N A Default LACP is disabled Configuration Mode Config History 3 1 1400 Role admin Example switch config lacp switch config Related Commands Note Mellanox Technologies 377 Mellanox Technologies Confidential Rev 3 20 lacp system priority lacp system priority lt 1 65535 gt no lacp system priority Configures the LACP system priority The no form of the command sets the LACP system priority to default Syntax Description 1 65535 LACP system priority Default 32768 Configuration Mode Config History 3 1 1400 Role admin Example switch config lacp system priority 1 switch config show lacp interfaces port channel Port channel Module Admin Status is enabled Port channel System Identifier is 00 02 c9 5c 61 70 LACP System Priority 3 switch config Related Commands Note Mellanox Technologies 378 Mellanox Technologies Confidential Rev 3 20 lacp interface lacp rate fast port priority lt 1 65535 gt no lacp rate fast port priority Configures the LACP interface parameters The no form of the command sets the LACP interface configuration to default Syntax Description rate fast Sets LACP PDUs on the port to be in fast 1 second or slow rate
164. 3 20 show ip ospf database show ip ospf database summary lt area id gt lt link state id gt adv router lt ip address gt self originated Displays the OSPF database Syntax Description adv router lt ip address gt Filters per advertize router area id Filters the command per OSPF area id Range is 0 4294967295 link state id The link state ID self originated Self Originate summary Summarizes the output of the OSPF database Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example Router show ip ospf database OSPF Router with ID 50 50 50 50 Process ID pl Router Link States Area 0 Link ID ADV Router Age Seq Checksum Link Count 40 40 40 40 40 40 40 40 930 0x80000004 Ox2eal 3 50 50 50 50 50 50 50 50 935 0x80000002 0x8b52 1 60 60 60 60 60 60 60 60 943 0x800003c5 0x9854 2 Network Link States Area 0 Link ID ADV Router Age Seq Checksum 209 165 201 3 60 60 60 60 944 0x80000001 0x7179 192 0 2 1 50 50 50 50 935 0x80000001 0x516a Summary Network Link States Area 0 Link ID ADV Router Age Seq Checksum 209 165 201 1 40 40 40 40 929 0x80000001 0x2498 209 165 201 1 50 50 50 50 928 0x80000001 Ox5b2f 209 165 201 1 60 60 60 60 1265 0x800003c3 Oxf49b 192 0 2 0 40 40 40 40 943 0x80000001 0x53 3 192 0 2 0 50 50 50 50 935 0x80000001 Ox26f8 192 0 2 0 60 60 60 60 930 0x80000001 Ox7b51 Related Commands N A Note Mellanox Technologies 624 Mell
165. 30 seconds 1 65535 LACP port priority Default rate slow 30 seconds port priority 32768 Configuration Mode Config History 3 1 1400 Role admin Example switch config lacp rate fast switch config show lacp interfaces ethernet 1 7 Port 1 7 Port State Down Channel Group 1 Pseudo port channel Pol LACP port priority 32768 LACP Rate Slow LACP Activity Passive LACP Timeout Short Aggregation State Aggregation Defaulted LACP Port Admin Oper Port Port Port State Priority Key Key Number State 1 7 Down 128 cls 1 0x7 0x0 switch config Related Commands Note Configuring LACP rate fast or slow will configure the peer port to send fast or slow it does not make any affect on the local port LACP rate Mellanox Technologies 379 Mellanox Technologies Confidential Rev 3 20 port channel load balance port channel load balance lt method gt no port channel load balance lt method gt Configures the port channel load balancing distribution function method The no form of the command sets the distribution function method to default Syntax Description method Possible load balance methods e destination ip e destination mac e destination port e source destination ip e source destination mac e source destination port e source ip e source mac e source port Default source destination mac Configuration Mode Config History 3 1 1400 Role admin Example
166. 4 switch config Related Commands ssh server Note Mellanox Technologies 62 Mellanox Technologies Confidential Rev 3 20 3 4 4 Remote Login telnet server enable telnet server enable no telnet server enable Enables the telnet server The no form of the command disables the telnet server Syntax Description N A Default Telnet server is disabled Configuration Mode Config History 3 1 0000 Role admin Example switch config telnet server enable switch config show telnet server Telnet server enabled yes Related Commands show telnet server Note Mellanox Technologies 63 Mellanox Technologies Confidential Rev 3 20 show telnet server show telnet server Displays telnet server settings Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show telnet server Telnet server enabled yes switch config Related Commands telnet server enable Note Mellanox Technologies 64 Mellanox Technologies Confidential Rev 3 20 3 4 5 Web Interface web auto logout web auto logout lt number of minutes gt no web auto logout lt number of minutes gt Configures length of user inactivity before auto logout of a web session The no form of the command disables the web auto logout web sessions will never logged out due to inactivity
167. 4 prevents you from accessing the splittable port and an additional one For example in the procedure above ports 19 and 20 become aa unaccessible 5 1 1 2 Unsplitting a Split Port gt To unsplit a split port Step 1 Shut down all of the split ports Run switch config interface ethernet 1 20 4 shutdown switch config interface ethernet 1 20 4 exit switch config interface ethernet 1 20 3 switch config interface ethernet 1 20 3 shutdown switch config interface ethernet 1 20 3 exit switch config interface ethernet 1 20 2 switch config interface ethernet 1 20 2 shutdown switch config interface ethernet 1 20 2 exit switch config interface ethernet 1 20 1 switch config interface ethernet 1 20 1 shutdown Step 2 From the first member of the split 1 20 1 change the module type back to QSFP Run switch config interface ethernet 1 20 1 module type qsfp pP The module type can be changed only from the first member of the split and not from the interface that was split The following warning will be displayed The following interfaces will be unmapped 1 20 1 1 20 2 1 20 3 1 20 4 Step 3 Type yes when prompted Type yes to confirm unsplit Mellanox Technologies 358 Mellanox Technologies Confidential Rev 3 20 5 1 2 Transceiver Information MLNX OS offers the option of viewing the transceiver information of a module or cable con nected to a specific interfac
168. 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout LRE Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Mellanox Technologies 69 Mellanox Technologies Confidential Rev 3 20 Related Commands show web web enable Note Enabling HTTP is meaningful if the WebUI as a whole is enabled Mellanox Technologies 70 Mellanox Technologies Confidential Rev 3 20 web httpd web httpd listen enable interface lt ifName gt no web httpd listen enable interface lt ifName gt Enables the listen interface restricted list for HTTP and HTTPS The no form of the command disables the HTTP server listen ability Syntax Description enable Enables Web interface restrictions on access to this sys tem interface lt ifName gt Adds interface to Web server access restriction list i e mgmt0 mgmt Default Listening is enabled all interfaces are permitted Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config web httpd listen enable switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HT
169. 4c issd 6509 274844336 issd DEBUG NPAPI FsHwSetSpeed sx_api_port_speed_admin_set 0 un 15 16 20 48 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI FsHwGetSpeed sx_api_port_speed_oper_get 0 un 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 89 ulConfigOption 6 jun 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 33 ulConfigOption 6 jun 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 73 ulConfigOption 6 un 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 121 ulConfigOption 6 un 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 133 ulConfigOption 6 jun 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 13 ulConfigdption 6 un 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 81 ulConfigdption 6 un 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 117 ulConfigOption 6 jun 15 16 20 49 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt CfaGddConfigPort NS u4IfIndex 65 ulConfigOption 6
170. 6 Mellanox Technologies Confidential Rev 3 20 crypto certificate ca list crypto certificate ca list default ca list name lt cert name gt system self signed no crypto certificate ca list default ca list name lt cert name gt system self signed Adds the specified CA certificate to the default CA certificate list The no form of the command removes the certificate from the default CA certificate list Syntax Description cert name The name of the certificate Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config crypto certificate default cert name test Related Commands N A Note e Two certificates with the same subject and issuer fields cannot both be placed onto the CA list The no form of the command does not delete the certificate from the certificate database e Unless specified otherwise applications that use CA certificates will still consult the well known certificate bundle before looking at the default ca list Mellanox Technologies 277 Mellanox Technologies Confidential Rev 3 20 crypto certificate default cert crypto certificate default cert name lt cert name gt system self signed no crypto certificate default cert name lt cert name gt system self signed Designates the named certificate as the global default certificate role for authentica tion of this system to clients The no form of the command r
171. 6 2 OSPF Open Shortest Path First OSPF is a link state routing protocol for IP networks It uses a link state routing algorithm and falls into the group of interior routing protocols operating within a single autonomous system AS OSPF speaking routers send Hello packets to all OSPF enabled IP interfaces If two routers shar ing a common data link agree on certain parameters specified in their respective Hello packets they become neighbors Adjacencies which can be thought of as virtual point to point links are formed between some neighbors OSPF defines several network types and several router types The establishment of an adjacency is determined by the types of routers exchanging Hellos and the type of network over which the Hello packets are exchanged Each router sends link state advertisements LSAs over all adjacencies The LSAs describe all of the router s links or interfaces the router s neighbors and the state of the links These links might be to stub networks those without another router attached to other OSPF routers to net works in other areas or to external networks those learned from another routing process Because of the varying types of link state information OSPF defines multiple LSA types Each router receiving an LSA from a neighbor records the LSA in its link state database and sends a copy of the LSA to all of its other neighbors By flooding LSAs throughout an area all routers will build identical l
172. 94 mapped to it For MSTP network design over Mellanox L2 VMS please refer to Mellanox Virtual Modular Switch Reference Guide Mellanox Technologies 430 Mellanox Technologies Confidential Rev 3 20 5 6 7 Commands spanning tree spanning tree no spanning tree Globally enables the spanning tree feature The no form disables the spanning tree feature Syntax Description N A Default Spanning tree is enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config no spanning tree switch config Related Commands show spanning tree Note Mellanox Technologies 431 Mellanox Technologies Confidential Rev 3 20 spanning tree timers spanning tree forward time lt time in secs gt hello time lt time in secs gt max age lt time in secs gt no spanning tree forward time hello time max age Sets the spanning tree timers The no form of the command sets the timer to default Syntax Description forward time Controls how fast a port changes its spanning tree state from Blocking state to Forwarding state Parameter range 4 30 seconds hello time Determines how often the switch broadcasts its hello message to other switches when it is the root of the spanning tree Parameter range 1 2 seconds max age Sets the maximum age allowed for the Spanning Tree Protocol information learnt from the network on any port before it is di
173. Active Aggregation State Aggregation Sync Collecting Distributing MLAG channel group 28 neighbors Port 1 51 Partner System ID 4 52 14 10 d8 f1 Flags A LACP Partner Port Priority 2 253 LACP Partner Oper Key E33 LACP Partner Port State Oxbe Port State Flags Decode Activity Active Aggregation State Aggregation Sync Collecting Distributing switch config Related Commands Note Mellanox Technologies 385 Mellanox Technologies Confidential Rev 3 20 show lacp show lacp Displays the LACP global parameters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 4 0000 Role admin Example switch config show lacp Port channel Module Admin Status is enabled switch config Related Commands Note Mellanox Technologies 386 Mellanox Technologies Confidential Rev 3 20 show lacp interfaces system identifier show lacp interfaces mlag port channel port channel lt instance gt system identifier Displays the system identifier of LACP Syntax Description instance LAG or MLAG instance Default N A Configuration Mode Any Command Mode History 3 4 0000 Role admin Example switch config show lacp interfaces port channel 2 system identifier Priority 12345 MAC 00 02 C9 AC 2A 60 switch config Related Commands Note Mellanox Technologies 387
174. Command Mode History 3 2 0230 Role admin Example switch config show ip load sharing Load sharing all switch config Related Commands ip load sharing Note Mellanox Technologies 582 Mellanox Technologies Confidential Rev 3 20 6 1 5 5 Network to Media Resolution ARP ip arp ip arp lt ip address gt lt MAC address gt no ip arp lt ip address gt Adds static ARP entry for the defined interface The no form of the command deletes the static ARP entry from the interface Syntax Description IP address IPv4 Address Mac address Mac address format XX XX XX XX XX XX Default Configuration Mode No static ARP entries Config Interface VLAN History 3 2 0230 Role admin Example switch config interface vlan 11 ip arp 1 0 0 3 00 11 22 33 44 55 switch config interface vlan 11 show ip arp ARP Timeout 2000 Total number of entries 55 IP Address MAC Address Interface 1 0 0 2 00 02 c9 5c 30 40 Vlan11 i APA eo E 00 11 22 33 44 55 Vlan11 22 0062 00 02 c9 5c 30 40 Vlan12 3 0 0 2 00 02 c9 5c 30 40 Vlan13 4 0 0 2 00 02 c9 5c 30 40 Vlanl14 switch config interface vlan 11 Related Commands show ip arp Note Mellanox Technologies 583 Mellanox Technologies Confidential Rev 3 20 ip arp timeout ip arp timeout lt timeout value gt no ip arp timeout Sets the dynamic ARP cache timeout The no form of the command sets the t
175. D in a cluster with multiple route reflectors The no form of the command resets the cluster ID for route reflector Syntax Description ip address The route reflector cluster ID e 0 0 0 1 to 255 255 255 255 Valid cluster ID number e 0 0 0 0 removes the cluster ID from the switch similar to no cluster id Default Cluster ID is the same as Router ID Configuration Mode Config Router BGP History 3 2 1000 First version 3 4 0000 Updated syntax description Role admin Example switch config router bgp 100 cluster id 10 10 10 10 Related Commands N A Note Mellanox Technologies 644 Mellanox Technologies Confidential Rev 3 20 client to client reflection client to client reflection no client to client reflection The switch will be configured as a route reflector The no form of the command stops the switch from being a route reflector Syntax Description N A Default client to client reflection is enabled Configuration Mode Config Router BGP History 3 2 1000 Role admin Example switch config router bgp 100 client to client reflection Related Commands N A Note Mellanox Technologies 645 Mellanox Technologies Confidential Rev 3 20 distance distance lt external gt lt internal gt lt local gt no distance Sets the administrative distance of the routes learned through BGP The no form of the command res
176. Description value Range 1 2147483647 Default N A Configuration Mode Config Route Map History 3 3 5200 First version 3 4 0000 Updated value range Role admin Example switch config route map mymap permit 10 match metric 10 Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e Ifall clauses fail to permit or deny the route the route is denied Mellanox Technologies 704 Mellanox Technologies Confidential Rev 3 20 set as path prepend set as path prepend lt value gt lt value gt lt value gt no set as path prepend Modifies as path on affected routes The no form of the command removes the set statement from the route map Syntax Description value BGP AS number that is prepended to as path Range 1 4294967295 Default N A Configuration Mode Config Route Map History 3 4 0000 Role admin Example switch config route map mymap permit 10 set as path prepend 5 10 Related Commands N A Note Mellanox Technologies 705 Mellanox Technologies Confidential Rev 3 20 set as path tag set as path tag lt value gt no
177. F THE PRODUCT S AND RELATED DOCUMENTATION EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE Mellanox TECHNOLOGIES Mellanox Technologies Mellanox Technologies Ltd 350 Oakmead Parkway Suite 100 Beit Mellanox Sunnyvale CA 94085 PO Box 586 Yokneam 20692 U S A Israel www mellanox com www mellanox com Tel 408 970 3400 Tel 972 0 74 723 7200 Fax 408 970 3403 Fax 972 0 4 959 3245 Copyright 2014 Mellanox Technologies All Rights Reserved Mellanox Mellanox logo BridgeX ConnectX Connect IB CoolBox CORE Direct InfiniBridge InfiniHost InfiniScale MetroX MLNX OS PhyX ScalableHPC SwitchX UFM Virtual Protocol Interconnect and Voltaire are registered trademarks of Mellanox Technologies Ltd ExtendX FabricIT Mellanox Open Ethernet Mellanox Virtual Modular Switch MetroDX TestX Unbreakable Link are trademarks of Mellanox Technologies Ltd All other trademarks are property of their respective owners 2 Mellanox Technologies Document Number MLNX 15 1560 IBM E Mellanox Technologies Confidential Rev 3 20 Table of Contents Document Revision History cccccccccccccccccccsccccsscsscesessessedS About this Manali e002 ees ha wh ine Gen teed ieee ek eien ee eeu sree dl Chapter 1 Introduction 6 46 6 566 6905 ceeseee ed eee wee eS eeeee ee esaseee eels 14 Id System Features kind ia ee akd he ie teeta ihe ale ees tole a a a
178. For example in case of interface down event the following gets printed to the screen switch config Wed Jul 10 11 30 42 2013 Interface IB1 17 changed state to DOWN Wed Jul 10 11 30 43 2013 Interface IB1 18 changed state to DOWN switch config To see a list of the events refer to Table 18 Supported Event Notifications and MIB Mapping on page 210 4 5 2 Remote Logging gt To configure remote syslog to send syslog messages to a remote syslog server Step 1 Enter Config mode Run switch gt switch gt enable switch configure terminal Step 2 Set remote syslog server Run switch config logging lt IP address gt Step 3 Set the minimum severity of the log level to info Run switch config logging lt IP address gt trap info Step 4 Override the log levels on a per class basis Run switch config logging lt IP address gt trap override class lt class name gt 4 5 3 Switch Power On Self Test As the switch powers on it begins the Power On Self Test POST a series of tests as part of its power up procedure to ensure that the switch functions properly During the POST the switch logs any errors encountered Some POST errors are critical others are not The updated POST diagnostic code gets stored inside the POST Diagnostic Register Table 17 lists the POST return codes and their meanings Table 17 POST Return Codes Return Code Severity Meaning POST Section
179. GMP ip igmp immediate leave ip igmp immediate leave no ip igmp immediate leave Enables the device to remove the group entry from the multicast routing table imme diately upon receiving a leave message for the group The no form of the command disables immediate leave Syntax Description N A Default Disabled Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp immediate leave Related Commands N A Note Mellanox Technologies 756 Mellanox Technologies Confidential Rev 3 20 ip igmp last member query count ip igmp last member query count lt count gt no ip igmp last member query count Configures the number of query messages the switch sends in response to a group specific or group source specific leave message The no form of the command resets this parameter to its default Syntax Description Count Range 1 7 Default 2 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp last member query count 7 Related Commands N A Note This parameter reflects expected packet loss on a congested network
180. History 3 3 3500 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 sflow enable switch config interface port channel 1 sflow enable Related Commands Note Mellanox Technologies 552 Mellanox Technologies Confidential Rev 3 20 5 13 7 3 Show show sflow show sflow Displays sFlow configuration and counters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch config show sflow sflow protocol enabled sflow enabled sampling rate 16000 max sampled size 156 counter poll interval 19 max datagram size 1500 collector ip 10 10 10 10 collector port 6343 agent ip 20 20 20 20 Interfaces Ethernet eth1 1 Port channel pol Statistics Total Packets 2000 Number of flow samples 1200 Number of samples discarded 0 Number of statistic samples 800 Number of datagrams 300 Related Commands Note Mellanox Technologies 553 Mellanox Technologies Confidential Rev 3 20 5 14 Transport Applications 5 14 1 RDMA over Converged Ethernet RoCE 5 14 1 1 RoCE Overview Remote Direct Memory Access RDMA is the remote memory management capability that allows server to server data movement directly between application memory without any CPU involvement RDMA over Converged Ethernet RoCE is a mechanism to provide this efficient data t
181. MA Mellanox TECHNOLOGIES Connect Accelerate Outperform Mellanox MLNX OS User Manual for IBM 90Y3474 Rev 3 20 Software Version 3 4 0000 www mellanox com Mellanox Technologies Confidential Rev 3 20 NOTE THIS HARDWARE SOFTWARE OR TEST SUITE PRODUCT PRODUCT S AND ITS RELATED DOCUMENTATION ARE PROVIDED BY MELLANOX TECHNOLOGIES AS IS WITH ALL FAULTS OF ANY KIND AND SOLELY FOR THE PURPOSE OF AIDING THE CUSTOMER IN TESTING APPLICATIONS THAT USE THE PRODUCTS IN DESIGNATED SOLUTIONS THE CUSTOMER S MANUFACTURING TEST ENVIRONMENT HAS NOT MET THE STANDARDS SET BY MELLANOX TECHNOLOGIES TO FULLY QUALIFY THE PRODUCTO S AND OR THE SYSTEM USING IT THEREFORE MELLANOX TECHNOLOGIES CANNOT AND DOES NOT GUARANTEE OR WARRANT THAT THE PRODUCTS WILL OPERATE WITH THE HIGHEST QUALITY ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT ARE DISCLAIMED IN NO EVENT SHALL MELLANOX BE LIABLE TO CUSTOMER OR ANY THIRD PARTIES FOR ANY DIRECT INDIRECT SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES OF ANY KIND INCLUDING BUT NOT LIMITED TO PAYMENT FOR PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES LOSS OF USE DATA OR PROFITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY FROM THE USE O
182. Management Management 5 14 1 2 RoCE Configuration In order to function reliably RoCE requires a form of flow control While it is possible to use global flow control this is normally undesirable for performance reasons The normal and optimal way to use RoCE is to use Priority Flow Control PFC To use PFC it must be enabled on all endpoints and switches in the flow path In the following section we present instructions to configure PFC on Mellanox ConnectX cards There are multiple configuration steps required all of which may be performed via Power Shell Therefore although we present each step individually you may ultimately choose to write a PowerShell script to do them all in one step Note that administrator privileges are required for these steps For further information please refer to the following URL http blogs technet com b josebda archive 2012 07 3 1 deploying windows server 2012 with smb direct smb over rdma and the mellanox connectx 3 using 10gbe 40gbe roce step by step aspx 5 14 1 2 1Prerequisites The following are the driver s prerequisites in order to set or configure RoCE e ConnectX 3 and ConnectX 3 Pro firmware version 2 30 3000 or higher 1 Standard RDMA APIs are IP based already for all existing RDMA technologies Mellanox Technologies 555 Mellanox Technologies Confidential Rev 3 20 e All InfiniBand verbs applications which run over InfiniBand verbs should work on RoCE links if they
183. Mask length e g 24 or 255 255 255 254 peer group name Peer group name remote as lt as number gt Remote peer s number Default 100 Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 bgp listen range 10 10 10 10 24 peer group my group remote as 13 Related Commands Note e To create a static peer group use the command neighbor peer group e Neighbors in a dynamic peer group are configured as a group and cannot be configured individually Mellanox Technologies 642 Mellanox Technologies Confidential Rev 3 20 bgp redistribute internal bgp redistribute internal no bgp redistribute internal Enables iBGP redistribution into an interior gateway protocol IGP The no form of the command disables iBGP redistribution into an interior gateway protocol IGP Syntax Description ip prefix IP address length Mask length e g 24 or 255 255 255 254 peer group name Peer group name remote as lt as number gt Remote peer s number Default Disabled Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 bgp redistribute internal Related Commands Note Mellanox Technologies 643 Mellanox Technologies Confidential Rev 3 20 cluster id cluster id lt ip address gt no cluster id lt ip address gt Configures the cluster I
184. Mellanox Technologies Confidential Rev 3 20 clear counters clear counters Clears the interface counters Syntax Description N A Default N A Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1 clear counters switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note Mellanox Technologies 367 Mellanox Technologies Confidential Rev 3 20 show interfaces ethernet show interfaces ethernet lt inf gt counters priority Displays the configuration and status for the interface Syntax Description inf Interface number lt slot gt lt port gt counters Displays interface extended counters priority Displays interface extended counters per priority 0 7 Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces ethernet 1 1 Eth1 1 Admin state Enabled Operational state Up Description N A Mac address 00 02 c9 7l ed 2d MTU 1500 bytes Maximum packet size 1522 bytes Flow control receive off send off Actual speed 40 Gbps Width reduction mode Not supported Switchport mode access Last clearing of show interface counters 00 20 39 60 seconds Ingress rate 0 bits sec 0 bytes sec 0 packets sec 60 seconds Egress rate 0 bits sec 0 bytes sec 0 p
185. N A Note Mellanox Technologies 226 Mellanox Technologies Confidential Rev 3 20 email ssl cert verify email ssl cert verify no email ssl cert verify Enables verification of SSL TLS server certificates for email The no form of the command disables verification of SSL TLS server certificates for email Syntax Description N A Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config email ssl cert verify Related Commands N A Note This command has no impact unless TLS is used Mellanox Technologies 227 Mellanox Technologies Confidential Rev 3 20 email ssl ca list email ssl ca list lt ca list name gt default ca list none no email ssl ca list Specifies the list of supplemental certificates of authority CA from the certificate configuration database that is to be used for verification of server certificates when sending email using TLS if any The no form of the command uses no list of supplemental certificates Syntax Description ca list name Specifies CA list name default ca list Uses default supplemental CA certificate list none Uses no list of supplemental certificates Default default ca list Configuration Mode Config History 3 2 3000 Role admin Example switch config email ssl ca list none Related Commands N A Note This command has no impact unless TLS is used and c
186. PgBZZa 2Ky1K1zUsbZ2pKhgQAAATAJK StiQdtORw1B5UCMzTrTef5LO7DS VreMEYt TRnNBBtgVSNqOFWpSQIYbVDHOr 9T6qCM4V03 9DUHUGOILTMDIX7t 9mfbB87YyUud5a ndbf3GhNhxHWwbz1lr9hgLL7FSHA7DYH7bVOZR1qxH64eQKGZqylps F4E311lyn7GC4EQAAATA 2osHipXf NRjplgfmHROVV mGE9Vzc9 AMUx1JIn5VhAVEJ5CZW9cI LxXMOJojhOj3YW3B1czGxRObDAIVUbKXINc8bkgoUrxySAH1rH NOPqJgeT4L009AItSp3m1lmxHqdS7 jixfIvOTEKWXrgpczlmTB8 z jhUah YuuBl2H switch config Related Commands show ssh server Note Mellanox Technologies 52 Mellanox Technologies Confidential Rev 3 20 ssh server listen ssh server listen enable interface lt inf gt no ssh server listen enable interface lt inf gt Enables the listen interface restricted list for SSH If enabled and at least one non DHCP interface is specified in the list the SSH connections are only accepted on those specified interfaces The no form of the command disables the listen interface restricted list for SSH When disabled SSH connections are not accepted on any interface Syntax Description enable Enables SSH interface restrictions on access to this sys tem interface lt inf gt Adds interface to SSH server access restriction list Possible interfaces are lo and mgmt0 Default SSH listen is enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh server listen enable switch config show ssh server SSH server configur
187. Related Commands logging fields logging files rotation logging level logging local logging receive logging lt syslog IP address gt show logging Note When using a regular expression containing OR the expression should be sur rounded by quotes lt expression gt otherwise it is parsed as filter PIPE command Mellanox Technologies 194 Mellanox Technologies Confidential Rev 3 20 4 6 Debugging gt To use the debugging logs feature Step 1 Enable debugging Run Step 2 Display the debug level set Run Step 3 Display the logs Run Mellanox Technologies 195 Mellanox Technologies Confidential Rev 3 20 4 6 1 Commands debug ethernet all debug ethernet all no debug ethernet all Enables debug traces for Ethernet modules The no form of the command disables the debug traces for all Ethernet modules Syntax Description N A Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet all switch config Related Commands Note Mellanox Technologies 196 Mellanox Technologies Confidential Rev 3 20 debug ethernet dcbx debug ethernet dcbx all management fail all control panel tlv Configures the trace level for DCBX The no form of the command disables the configured DCBX debug traces Syntax Description all Enables all traces management Management m
188. Rev 3 20 Idap bind dn bind password Idap bind dn bind password lt string gt no Idap bind dn bind password Gives the distinguished name or password to bind to on the LDAP server This can be left empty for anonymous login the default The no form of the command resets the attribute to its default values Syntax Description string A case sensitive string that specifies distinguished name or password to bind to on the LDAP server Default en Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap bind dn my dn switch config ldap bind password my password switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute sAMAccountName Bind DN my dn Bind password my password Group base DN Group attribute member LDAP version 718 Referrals yes Server port 389 Search Timeout 5 Bind Timeout aso SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers des FOLOL 10 25 LO KOLO LZ switch config Related Commands show ldap 6699 Note For anonymous login bind dn and bind password should be empty strings Mellanox Technologies 261 Mellanox Technologies Confidential Rev 3 20 Idap group attribute group dn Idap group attribute l
189. Role admin Example switch config interface vlan 10 ip ospf hello interval 20 Related Commands N A Note The value must be the same for all nodes on the network Mellanox Technologies 611 Mellanox Technologies Confidential Rev 3 20 ip ospf priority ip ospf priority lt number gt no ip ospf priority Configures the priority for this OSPF interface The no form of the command resets this parameter to default Syntax Description number The Interface priority used by the OSPF protocol Range is 0 255 Default 1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf priority 100 Related Commands N A Note e Use the ip ospf priority command to set the router priority which determines the desig nated router for this network When two routers are attached to a network both attempt to become the designated router The router with the higher router priority takes precedence If there is a tie the router with the higher router ID takes precedence A router with a router priority set to zero cannot become the designated router or backup designated router Mellanox Technologies 612 Mellanox Technologies Confidential Rev 3 20 ip ospf network ip ospf network lt type gt no ip ospf net
190. Router History 3 3 3500 Role admin Example switch config router ospf shutdown Related Commands N A Note Mellanox Technologies 600 Mellanox Technologies Confidential Rev 3 20 distance distance lt value gt no distance Configures the OSPF route administrative distance The no form of the command resets this parameter to default Syntax Description value OSPF administrative distance Range is 1 255 Default 110 Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf distance 100 Related Commands N A Note Mellanox Technologies 601 Mellanox Technologies Confidential Rev 3 20 redistribute redistribute direct static no redistribute direct static Import routes from other routing protocols as well as any statically configured routers into OSPF The no form of the command disables the importing of the routes Syntax Description direct Redistribute directly connected routes static Redistribute static configured routes Default Disable no redistribution Configuration Mode Config OSPF Router History 3 2 1000 Role admin Example switch config router ospf redistribute direct Related Commands N A Note Routes from multiple protocols can be imported in parallel Mellanox Technologies 602 Mellanox Technologies Confidential Rev 3 20 time
191. Standalone a Riin REA bait ii a titi VI Gti vV betti ETH Save F 0 setup System a Security Ports q Status A 437 MGMT Save Summary Syst bilities a Date and Time 2012 02 07 16 04 06 mempana Hostname switch 5e0aee Power Supplies Uptime 4h 36m 47s Fans Version SX_PPC_M460EX 3 0 0000 dev HA 2012 02 06 08 49 05 ppc CPU Load STES ppe Mono Host ID 0002c95e0aee My System memory 372 MB used 1655 MB free 2027 MB total Network CPU load averages 0 41 0 36 0 25 Logs Maintenance Active alerts Alerts No alerts 2009 2012 Mellanox Technologies Inc 2 4 Licenses MLNX OS software package can be extended with premium features Installing a license allows you to access the specified premium features This section is relevant only to switch systems with an internal management capability The following licenses are offered with MLNX OS software 2 4 1 Installing MLNX OS License CLI gt To install an MLNX OS license via CLI Step 1 Login as admin and change to Config mode switch gt enable switch config terminal Step 2 Install the license using the key Run switch config license install lt license key gt Mellanox Technologies 20 Mellanox Technologies Confidential Rev 3 20 Step 3 Display the installed license s using the following command switch config show licenses License 1 lt license key gt Feature EFM SX Valid yes Active yes swi
192. TPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout 1 hr Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands N A Note If enabled and if at least one of the interfaces listed is eligible to be a listen interface then HTTP HTTPS requests will only be accepted on those interfaces Otherwise HTTP HTTPS requests are accepted on any interface Mellanox Technologies 71 Mellanox Technologies Confidential Rev 3 20 web https web https certificate regenerate name default cert enable port lt port number gt ssl ciphers all TLS1 2 no web https enable port lt port number gt Configures HTTPS access to the web based management console The no form of the command negates HTTPS settings for the web based management console Syntax Description certificate regenerate Re generates certificate to use for HTTPS connections certificate name Configure the named certificate to be used for HTTPS connections certificate default cert Configure HTTPS to use the configured default certifi cate enable Enables HTTPS access to the web based management console port Sets a TCP port f
193. Technologies Confidential Rev 3 20 6 1 2 1 Hash Functions It is advised that LAG and ECMP hash function configuration over more than one hop is differ ent If the same hash function is used over two hops all the traffic sorted from one hop to follow ing one will arrive already having the same characteristics which will render the next hash function useless For example configure load balancing on the first hop based on source IP while on the next hop based on destination IP Figure 23 Multiple Hush Functions Leaf Hash ToR 6 1 3 IPv4 Routing Mode The resources available for IPv4 routing are as follows e number of IPv4 neighbors 2048 e number of IPv4 unicast routes 4096 number of IPv4 multicast routes 672 p Prior to upgrading to this software release the user must align the number of configured ad multicast routes to number defined above 6 1 4 Creating an IP Interface Preconditions e An L3 license must be installed on your system UPGR xxxx GW e A VLAN must be created using the command vlan lt vlan id gt e There must be at least one interface attached to this VLAN to do so run the switchport com mand in the interface configuration mode e There must be at least one interface in the operational state UP gt To create an IP interface Step 1 Create a VLAN interface using the command interface vlan
194. WR is disabled Auto Force Transmission from Switch B to Switch A operates at 1 lane Transmission from Switch A to Switch B may operate at 1X depending on the traffic Auto Auto Width of the connection depends on the traffic flow Force Force Connection between the switches operates at 1X 4 12 3 System Reboot 4 12 3 1 Rebooting 1U Switches gt To reboot a 1U switch system Step 1 Enter Config mode Run switch gt switch gt enable switch configure terminal Mellanox Technologies 314 Mellanox Technologies Confidential Rev 3 20 Step 2 Reboot the system Run switch config reload Mellanox Technologies 315 Mellanox Technologies Confidential Rev 3 20 4 12 4 Commands 4 12 4 1 Chassis Management clear counters clear counters all interface lt type gt lt number gt Clears switch counters Syntax Description all Clears all switch counters type A specific interface type number The interface number Default N A Configuration Mode Config Interface Port Channel History 3 2 3000 Role admin Example switch config clear counters switch config Related Commands Note Mellanox Technologies 316 Mellanox Technologies Confidential Rev 3 20 health health max report len lt length gt re notif cntr lt counter gt report clear Configures health daemon settings Syntax Description max repo
195. a LAN The RSTP component avoids this delay by calculating an alternate root port and immediately switching over to the alternate port if the root port becomes unavailable Thus using RSTP the switch immediately brings the alternate port to forwarding state without the delays caused by the listening and learning states The RSTP component conforms to IEEE standard 802 1D 2004 RSTP enhancements is a set of functions added to increase the volume of RSTP in Mellanox switches It adds a set of capabilities related to the behavior of ports in different segments of the network For example the required behavior of a port connected to a non switch entity such as host is to converge quickly while the required behavior of a port connected to a switch entity is to converge based on the RSTP parameters Additionally it adds security issues on a port and switch basis allowing the operator to deter mine the state and role of a port or the entire switch should an abnormal event occur For exam ple If a port is configured to be root guard the operator will not allow it to become a root port under any circumstances regardless of any BPDU that will have been received on the port 5 6 1 Port Priority and Cost When two ports on a switch are part of a loop the STP port priority and port path cost configura tion determine which port on the switch is put in the forwarding state and which port is put in the blocking state To configure port priority use
196. able size 3 inband 0 out of band 3 switch config Related Commands Note Mellanox Technologies 112 Mellanox Technologies Confidential Rev 3 20 ipv6 neighbor ipv6 neighbor lt IPv6 address gt lt ifname gt lt MAC address gt no ipv6 neighbor lt IPv6 address gt lt ifname gt lt MAC address gt Adds a static neighbor entry The no form of the command deletes the static entry Syntax Description IPv6 address The IPv6 address ifname The management interface i e mgmt0 mgmt1 MAC address The MAC address Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ipv6 neighbor 2001 db8 701f 8f9 mgmt0 00 11 22 33 44 55 switch config Related Commands show ipv6 neighbor ipv6 route arp clear ipv6 neighbors Note e ARP is used only with IPv4 In IPv6 networks Neighbor Discovery Protocol NDP is used similarly e Use The no form of the command to remove static entries Dynamic entries can be cleared via the clear ipv6 neighbors command Mellanox Technologies 113 Mellanox Technologies Confidential Rev 3 20 clear ipv6 neighbors clear ipv6 neighbors Clears the dynamic neighbors cache Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config clear ipv6 neighbors switch config Related Commands ipv6
197. abled Local global configuration Chassis sub type macAddress 4 Chassis id 0002C9030046AF00 System Name my switch System Description SX1036 Supported capabilities B R Supported capabilities enabled B switch config Related Commands Note Mellanox Technologies 490 Mellanox Technologies Confidential Rev 3 20 show Ildp interface show lldp interface ethernet lt inf gt Shows LLDP local interface table information Syntax Description inf Interface number e g 1 1 Default N A Configuration Mode Any Command Mode History 3 2 0300 First version 3 3 4200 Updated example 3 3 4402 Updated example Role admin Example switch config show lldp interface ethernet 1 1 TLV flags PD port description SN sys name SD sys description SC sys capa bilities MA management address ETS C ETS Configuration ETS R ETS Recommendation AP Application Priority PFC Priority Flow Control CEE Converged Enhanced Ethernet DCBX version Interface Receive Transmit Notification TLVs eth1 1 Enable Enable Enable PD SN SD SC MA PFC CEE eth1 2 Disable Disable Enable PD SN SD MA AP eth1 3 Enable Disable Disable PD SD SC ETS R AP PFC switch config Related Commands Note Mellanox Technologies 491 Mellanox Technologies Confidential Rev 3 20 show Ildp interfaces ethernet lt inf gt remote show lldp interfaces ethernet lt inf gt r
198. abled by using the no form of this command or by enabling zeroconf Mellanox Technologies 92 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Disables the specified interface The no form of the command enables the specified interface Syntax Description N A Default no shutdown Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 no shutdown switch config show interfaces mgmt0 configured Interface mgmt0 configuration Enabled yes DHCP yes Zeroconf no IP address Netmask IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 0 Speed auto Duplex auto MTU 1500 Comment switch config Related Commands show interfaces lt ifname gt configured Note Mellanox Technologies 93 Mellanox Technologies Confidential Rev 3 20 zeroconf zeroconf no zeroconf Enables zeroconf on the specified interface It randomly chooses a unique link local IPv4 address from the 169 254 0 0 16 block This command is an alternative to DHCP The no form of the command disables the use of zeroconf on the specified interface Syntax Description N A Default no zeroconf Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 zeroconf switch c
199. acacs server host Note Each TACACS server can override those global parameters using the command tacacs server host Mellanox Technologies 255 Mellanox Technologies Confidential Rev 3 20 tacacs server host tacacs server host lt IP address gt enable auth port lt port gt auth type lt type gt key lt secret gt retransmit lt retries gt timeout lt seconds gt no tacacs server host lt IP address gt enable auth port Configures TACACS server attributes The no form of the command resets the attributes to their default values and deletes the TACACS server Syntax Description IP address TACACS server IP address enable Administrative enable for the TACACS server port TACACS server UDP port number type Authentication type Possible values are e ASCII e PAP Password Authentication Protocol secret Sets a secret key shared hidden text string known to the system and to the TACACS server retries Number of retries 0 5 before exhausting from the authentication seconds Timeout in seconds between each retry 1 60 Default 3 seconds retry Default TCP port is 49 Default auth type is PAP Configuration Mode Config History 3 1 0000 Role admin Example switch config tacacs server host 40 40 40 40 switch config show tacacs TACACS defaults Key 3339 Timeout 3 Retransmit al TACACS servers 40 40 40 40 49 Enabled
200. ace ethernet 1 7 switch config interface ethernet 1 7 switchport access vlan 10 switch config interface ethernet 1 7 show interfaces switchport Interface Mode Access vlan Allowed vlans geet eee te ear Sr eos oreo Te ae Pe NT SETS Bae RE OTE Eth1 2 access Eth1 3 access Eth1 4 1 access Eth1 4 2 access Eth1 5 access Eth1 6 access Eth1 7 access 10 Po4096 access switch config interface ethernet 1 7 Related Commands show vlan show interfaces switchport switchport mode switchport trunk hybrid allowed vlan vlan Note This command is not applicable for interfaces with port mode trunk only one option access access dcb or hybrid is applicable to configure on the port depends on the switchport mode of the port Mellanox Technologies 418 Mellanox Technologies Confidential Rev 3 20 switchport hybrid trunk allowed vlan switchport hybrid trunk allowed vlan lt vlan gt add lt vlan gt remove lt vlan gt all except lt vlan gt none Sets the port allowed VLANs Syntax Description vlan VLAN ID 1 4094 or VLAN range add Adds VLAN or range of VLANs remove Removes VLANs or range of VLANs all Adds all VLANs in available in the VLAN table New VLANs added to the VLAN table are added auto matically except Adds all VLANs expect this VLAN or VLAN range none Removes all VLANs Default N A Configuration Mode
201. ackets sec Rx 0 packets 0 unicast packets 0 multicast packets 0 broadcast packets 0 bytes 0 error packets 0 discard packets TX 63 packets 0 unicast packets 63 multicast packets 0 broadcast packets 4032 bytes 0 discard packets switch config Related Commands Note Mellanox Technologies 368 Mellanox Technologies Confidential Rev 3 20 show interfaces ethernet lt inf gt capabilities show interfaces ethernet lt inf gt capabilities Displays the interface capabilities Syntax Description inf shows only one interface capabilities Interface number lt slot gt lt port gt Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces ethernet 1 1 capabilities Eth1 1 Speed 10000 40000 FlowControl Send Receive switch config Related Commands Note Mellanox Technologies 369 Mellanox Technologies Confidential Rev 3 20 show interfaces ethernet lt inf gt description show interfaces ethernet lt inf gt description Displays the admin status and protocol status for the specified interface Syntax Description inf Interface number lt slot gt lt port gt Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces ethernet 0 1 description Interface Status Protocol Ethernet 1 1 E
202. address do not reply Include hostname in return address yes switch config Related Commands show email events Note Mellanox Technologies 219 Mellanox Technologies Confidential Rev 3 20 email mailhub port email mailhub port lt hostname or IP address gt no email mailhub port Sets the mail relay port to be used to send notification emails The no form of the command resets the port to its default Syntax Description hostname or IP address hostname or IP address Default 25 Configuration Mode Config History 3 1 0000 Role admin Example switch config email mailhub port 125 switch config show email Mail hub 10 0 8 11 Mail hub port 125 Domain system domain name Return address do not reply Include hostname in return address yes switch config Related Commands show email Note Mellanox Technologies 220 Mellanox Technologies Confidential Rev 3 20 email notify event email notify event lt event name gt no email notify event lt event name gt Enables sending email notifications for the specified event type The no form of the command disables sending email notifications for the specified event type Syntax Description event name Example event names would include process crash and cpu util high Default No events are enabled Configuration Mode Config History 3 1 0000 Role admin Exampl
203. address i e 255 255 255 0 Default 0 0 0 0 0 Configuration Mode Config Interface VLAN History 3 2 0230 Role admin Example switch config interface vlan 10 ip address 10 10 10 10 24 switch config interface vlan 10 show interfaces vlan 10 Vian 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 Internet Address 10 10 10 10 24 Broadcast address 10 10 10 255 MTU 1522 bytes Description my ip interface switch config Related Commands interface vlan Note Mellanox Technologies 568 Mellanox Technologies Confidential Rev 3 20 counters counters no counters Enables counters gathering on the IP interface The no form of the command disables counters gathering on the IP interface Syntax Description N A Default counters are disabled Configuration Mode Config Interface VLAN History 3 2 0230 Role admin Example switch config interface vlan 10 switch config interface vlan 10 counters switch config interface vlan 10 show interfaces vlan 10 Vlan 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 Internet Address 0 0 0 0 0 Broadcast address 255 255 255 255 MTU 1522 bytes Description N A RX Unicast frames Multicast frames Unicast octets Multicast octets Error frames ooooo00o Error octets TX Unicast frames Multicast frames Un
204. ain The command specifies the interface used to derive the RP address C RP adver tisement interval and priority rating The BSR selects the RP set by comparing C RP prior ity ratings The C RP advertisement interval specifies the period between successive C RP advertisement message transmissions to the BSR e Running config supports multiple multicast groups through multiple ip pim rp candidate statements e All commands must specify the same interface Issuing a command with an interface that differs from existing commands removes all existing commands from running config e Running config stores the interval and priority setting in a separate statement that applies to all rp candidate statements When a command specifies an interval that differs from the previously configured value the new value replaces the old value and applies to all config ured rp candidate statements The default interval value is 60 seconds e When the no commands do not specify a multicast group all rp candidate statements are removed from running config The no ip pim rp candidate interval commands restore the interval setting to the default value of 60 seconds e When setting a priority all previous rp candidates within all interfaces and groups are con figured to this priority Mellanox Technologies 736 Mellanox Technologies Confidential Rev 3 20 ip pim sparse mode ip pim sparse mode no ip pim sparse mode Sets PIM sparse mode on this in
205. ality The no form of the command disables the SNMP server Syntax Description enable Enables SNMP related functionality SNMP engine SNMP traps communities Enables community based authentication on this sys tem mult communities Enables multiple communities to be configured notify Enables sending of SNMP traps and informs from this system Default SNMP is enabled by default SNMP server communities are enabled by default SNMP notifies are enabled by default SNMP server multi communities are disabled by default Configuration Mode Config History 3 1 0000 First version 3 2 1050 Change traps to notify Role admin Example switch config snmp server enable switch config show snmp SNMP enabled yes SNMP port 161 System contact my name System location Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp Note SNMP traps are only sent if there are trap sinks configured with the snmp server host command and if these trap sinks are themselves enabled Mellanox Technologies 344 Mellanox Technologies Confidential Rev 3 20 snmp server host snmp server host lt IP address gt disable traps informs lt community gt lt port gt version
206. all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout 1 hr Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands show web Note Mellanox Technologies 68 Mellanox Technologies Confidential Rev 3 20 web http web http enable port lt port number gt redirect no web http enable port redirect Configures HTTP access to the web based management console The no form of the command negates HTTP settings for the web based management console Syntax Description enable Enables HTTP access to the web based management console port number Sets a port for HTTP access redirect Enables redirection to HTTPS If HTTP access is enabled this specifies whether a redirect from the HTTP port to the HTTPS port should be issued to man date secure HTTPS access Default HTTP is enabled HTTP TCP port is 80 HTTP redirect to HTTPS is disabled Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config web http enable switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port
207. ample dc com User search scope subtree Login attribute uid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version 23 Referrals no Server port 1111 Search Timeout 55 Bind Timeout 5 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers Ee 0410210 2 10 2 10 5 102 1 05 12 switch config Related Commands show aaa show ldap Note Mellanox Technologies 268 Mellanox Technologies Confidential Rev 3 20 Idap ssl ldap ssl ca list lt options gt cert verify ciphers all TLS1 2 mode lt mode gt port lt port number gt no Idap ssl cert verify ciphers mode port Sets SSL parameter for LDAP The no form of the command resets the attribute to its default value Syntax Description options This command specifies the list of supplemental certifi cates of authority CAs from the certificate configura tion database that is to be used by LDAP for authentication of servers when in TLS or SSL mode The options are e default ca list uses default supplemental CA certifi cate list none no supplemental list uses the built in one only CA certificates are ignored if ldap ssl mode is not configured as either tls or ssl or if no ldap ssl cert verify is configured The default ca list is empty in the
208. an map priority 1 traffic class 2 switch config interface ethernet 1 1 Related Commands show dcb ets interface Note Mellanox Technologies 504 Mellanox Technologies Confidential Rev 3 20 show dcb ets show dcb ets Displays ETS configuration and operational data Syntax Description Default ETS is enabled Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show dcb ets ETS enabled TC Bandwidth 0 25 25 2 25 3 25 Number of Traffic Class 4 switch config Related Commands Note Mellanox Technologies 505 Mellanox Technologies Confidential Rev 3 20 show dcb ets interface show dcb ets interface lt type gt lt number gt Displays ETS configuration and operational data per interface Syntax Description type ethernet or port channel number interface number i e 1 1 Default ETS is enabled Configuration Mode Any Command Mode History 3 1 0000 Role admin Mellanox Technologies 506 Mellanox Technologies Confidential Rev 3 20 Example switch config show dcb ets interface ethernet 1 1 ETS Port Mode ON MODE ETS Oper State INIT STATE ETS State Machine Type Assymetric TC Bandwidth RecomBandwidth 0 25 25 1 25 25 2 25 25 3 25 25 AnD OP WHE OC GO Go IND Bete eee SS Number of Traffic Class 4 Willing Status Disable TC Bandwi
209. and deletes its database Syntax Description Default no protocol mlag Configuration Mode Config History 3 3 4500 Role admin Example switch config protocol mlag switch config Related Commands Note e Running the no form of this command hides MLAG commands e MLAG may be enabled without IP routing but without IP routing an IPL vLAN interface cannot be configured and thus MLAG does not function e MLAG may be enabled without IGMP snooping but if IGMP snooping is disabled multi cast FDBs do not sync Mellanox Technologies 396 Mellanox Technologies Confidential Rev 3 20 mlag mlag Enters MLAG configuration mode Syntax Description N A Default N A Configuration Mode Config History 3 3 4500 Role admin Example switch config mlag switch config mlag Related Commands Note Mellanox Technologies 397 Mellanox Technologies Confidential Rev 3 20 reload delay reload delay lt value gt no reload delay Specifies the amount of time that MLAG ports are disabled after system reboot The no form of the command resets this parameter to its default value Syntax Description value Time in seconds Range 0 300 Default 30 seconds Configuration Mode Config MLAG History 3 3 4500 Role admin Example switch config mlag reload delay 30 switch config mlag Related Commands Note This inter
210. and resets session settings to default Syntax Description renewal lt minutes gt Configures time before expiration to renew a session timeout lt minutes gt Configures time after which a session expires Default timeout 2 5 hours renewal 30 min Configuration Mode Config History 3 1 0000 Role admin Example switch config web session renewal 60 switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout L hr Session timeout 2 hr 30 min Session renewal 60 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands N A Note Mellanox Technologies 74 Mellanox Technologies Confidential Rev 3 20 web proxy auth web proxy auth authtype lt type gt basic password lt password gt username lt username gt no web proxy auth authtype basic password username Configures authentication settings for web proxy authentication The no form of the command resets the attributes to their default values Syntax Description type Configures the type of authentication to use with web
211. and uses regular expressions to name the communities specified by the list Mellanox Technologies 688 Mellanox Technologies Confidential Rev 3 20 ip community list expanded ip community list expanded lt list name gt deny permit lt reg exp gt no ip community list expanded lt list name gt Adds a regular expression entry to a community list The no form of the command deletes the specified community list Syntax Description list name Configures a named standard community list permit Permits access for a matching condition deny Denies access for a matching condition reg exp Regular expression that is used to specify a pattern to match against an input string Default N A Configuration Mode Config History 3 4 0000 Role admin Example switch config ip community list expanded mycommunity permit 1 0 9 Related Commands N A Note A BGP community access list filters route maps that are configured as BGP commu nities The command uses regular expressions to name the communities specified by the list Mellanox Technologies 689 Mellanox Technologies Confidential Rev 3 20 show ip community list show ip community list community list name Displays the defined community lists Syntax Description community list name An optional parameter to display only the specified list Default N A Configuration Mode Config History 3 4 0000
212. ands N A Note Mellanox Technologies 759 Mellanox Technologies Confidential Rev 3 20 ip igmp startup query interval ip igmp startup query interval lt interval gt no ip startup query interval Configures the IGMP startup query interval in seconds The no form of the command resets this parameter to its default Syntax Description interval Range 1 1800 seconds Default 30 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp startup query interval 10 Related Commands N A Note Mellanox Technologies 760 Mellanox Technologies Confidential Rev 3 20 ip igmp query interval ip igmp query interval lt interval gt no ip igmp query interval Configures the IGMP query interval in seconds The no form of the command resets this parameter to its default Syntax Description interval The IGMP query interval Range 1 1800 seconds Default 125 Configuration Mode Config Interface VLAN History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp query interval 60 Related Commands N A Note Mellanox Technologies 761 Mellanox Technologies Confidential Rev 3 20 ip igmp query max response time ip igmp query max response time lt
213. ange 1 60 seconds Default 5 seconds Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap timeout bind 10 switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute suid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version 223 Referrals no Server port 1111 Search Timeout 245 Bind Timeout 10 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers Lae COTOS LO tO 2 10 10 10 12 switch config Related Commands show aaa show ldap Note Mellanox Technologies 271 Mellanox Technologies Confidential Rev 3 20 Idap version Idap version lt version gt no Idap version Sets the LDAP version The no form of the command resets the attribute to its default value Syntax Description version Sets the LDAP version Values 2 and 3 Default 3 Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap version 3 switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute uid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version a
214. ange is 1 64 priority MST instance port priority Possible values are 0 4096 8192 12288 16384 20480 24576 28672 32768 36864 40960 45056 49152 53248 57344 61440 Default 32768 Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst 1 priority 32768 switch config Related Commands Note The bridge priority is the four most significant digits of the bridge ID which is used by spanning tree algorithms to select the root bridge and choose among redundant links Bridge ID numbers range from 0 65535 16 bits bridges with smaller bridge IDs are elected over other bridges Mellanox Technologies 443 Mellanox Technologies Confidential Rev 3 20 spanning tree mst vlan spanning tree mst lt mst instance gt vlan lt vlan range gt no spanning tree mst lt mst instance gt vlan lt vlan range gt Maps a VLAN or a range of VLANs into an MSTP instance The no form of the command unmaps a VLAN or a range of VLANs from MSTP instances Syntax Description mst instance MST instance Range is 1 64 vlan lt vlan range gt A single VLAN or a a range of VLANs The format is lt vlan gt or lt from vlan gt lt to vlan gt Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst 1 vlan 10 20 switch config Related Commands Note Mellanox Technol
215. anox Technologies Confidential Rev 3 20 show ip ospf interface show ip ospf interface vlan lt vlan id gt brief Displays the OSPF related interface configuration Syntax Description brief Gives a brief summary of the output vlan lt vlan id gt Displays OSPF interface configuration and status per VLAN interface Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch show ip ospf interface ethernet 1 5 Ethernet1 5 is up line protocol is down IP address 192 0 2 1 Process ID 201 VRF RemoteOfficeVRF area 0 0 0 10 Enabled by interface configuration State DOWN Network type BROADCAST cost 4 Index 1 Transmit delay 1 sec Router Priority 1 No designated router on this network No backup designated router on this network 0 Neighbors flooding to 0 adjacent with 0 Timer intervals Hello 10 Dead 40 Wait 40 Retransmit 5 No authentication Number of opaque link LSAs 0 checksum sum 0 switch This example shows how to display OSPF information in a brief format switch show ip ospf interface brief OSPF Process ID 201 VRF default Total number of interface 1 Interface ID Area Cost State Neighbors Status VL1 2 0 0 0 0 65535 DOWN 0 down switch Related Commands N A Note Mellanox Technologies 625 Mellanox Technologies Confidential Rev 3 20 show ip ospf neighbors show ip ospf neighbors vlan lt vlan id gt lt ne
216. any option will cause the rule not to check the source IP any lt destination ip gt Sets destination IP and optionally sets a mask for that mask lt ip gt MAC The any option will cause the rule not to check the destination MAC eq source lt port num TCP UDP source port number Range is 0 65535 ber gt eq destination lt port TCP UDP destination port number Range is 0 65535 number gt Default No rule is added by default to access control list Default sequence number is in multiple of 10 Configuration Mode Config IPv4 ACL History 3 1 1400 Role admin Example switch config ipv4 access list my list seq number 10 deny tcp any any eq source 1200 switch config ipv4 access list my list Related Commands ipv4 mac access list ipv4 mac port access group Note Mellanox Technologies 518 Mellanox Technologies Confidential Rev 3 20 access list action access list action lt action profile name gt no access list action lt action profile name gt Creates access list action profile and entering the action profile configuration mode The no form of the command deletes the action profile Syntax Description action profile name given name for the profile Default N A Configuration Mode Config History 3 2 0230 Role admin Example switch config access list action my action switch config access list action my action show access li
217. apping it installs that mapping in the router local cache and uses that information to create multicast distribution trees 6 5 4 Configuring Multicast Precondition steps Step 1 Enable IP routing functionality Run switch config ip routing Step 2 Enable the desired VLAN Run switch config vlan 10 Step 3 Add this VLAN to the desired interface Run switch config interface ethernet 1 1 switch config ethernet 1 1 switchport access vlan 10 Step 4 Create a VLAN interface Run switch config interface vlan 10 Step 5 Apply IP address to the VLAN interface Run switch config interface vlan 10 ip address 10 10 10 10 24 Step 6 Enable the interface Run switch config interface vlan 10 no shutdown 6 5 4 1 Configuring IGMP IGMP is enabled when IP multicast is enabled and static multicast or PIM is enabled on the inter face 6 5 4 2 Verifying IGMP Step 1 Display a brief IGMP interface status Run switch config show ip igmp interface brief IGMP Interfaces for VRF default Count 1 Interface IP Address IGMP Querier Membership Version VLAN10 LO 10 10 1 10 10 10 i 5 v2 Mellanox Technologies 726 Mellanox Technologies Confidential Rev 3 20 Step 2 Display detailed IGMP interface status Run switch config show ip igmp interface vlan 10 IGMP ocer reces Cow Wie Mcksiectoulie VLAN10 Interface status protocol up admin up 1link up IP access 10 10
218. art is not supported Supports only single TOS TOS 0 route Opaque LSA not supported OSPF Admin State is enabled Mellanox Technologies 594 Mellanox Technologies Confidential Rev 3 20 Step 2 Verify the OSPF neighbors status Make sure that each neighbor reaches FULL state with its peer to enable it take part in all dynamic routing changes in the network Run Mellanox Technologies 595 Mellanox Technologies Confidential Rev 3 20 Step 3 Verify the OSPF Interface configuration and status run Mellanox Technologies 596 Mellanox Technologies Confidential Rev 3 20 6 2 5 Commands 6 2 5 1 Config protocol ospf protocol ospf no protocol ospf Enables Open Shortest Path First Protocol OSPF and unhides the related OSPF commands The no form of the command deletes the OSPF configuration and hides the OSPF related commands Syntax Description N A Default OSPF feature is disabled Configuration Mode Config History 3 3 3500 Role admin Example switch config protocol ospf Related Commands ip routing Note Mellanox Technologies 597 Mellanox Technologies Confidential Rev 3 20 router ospf router ospf no router ospf Enters router OSPF configuration mode and creates default OSPF instance if not exist The no form of the command deletes the OSPF instance Syntax Description N A Default No router OSPF is created Configuratio
219. assed on to grep E lt node id gt ID of a node belonging to a cluster This is a numerical value greater than zero lt cluster id gt A string specifying the name of a cluster lt port gt TCP UDP port number Mellanox Technologies Confidential Rev 3 20 Table 9 Angled Brackets Parameter Description Parameter Description lt TCP port gt A TCP port number in the full allowable range 0 65535 lt URL gt A normal URL using any protocol that wget supports including http https ftp sftp and tftp or a pseudo URL specifying an scp file transfer The scp pseudo URL format is scp username password hostname path filename Note that the path is an absolute path Paths relative to the user s home directory are not currently supported The implementation of ftp does not support authenti cation so use scp or sftp for that Note also that if you omit the password part you may be prompted for the password in a follow up prompt where you can type it securely without the characters being echoed This prompt will occur if the cli default prompt empty password setting is true otherwise the CLI will assume you do not want any password If you include the character this will be taken as an explicit declaration that the password is empty and you will not be prompted in any case 3 1 7 Command Output Filtering The MLNX OS CLI supports filteri
220. ast MAC addresses e DCBX e DHCP Relay e ETS 802 1Qaz Flow control 802 3x e IGMP snooping v1 2 e LAG LACP 802 3ad 16 links per LAG 64 LAGs LLDP MLAG e MSTP e OpenFlow e PFC 802 1Qbb e Rapid Spanning Tree 802 1w e sFlow e VLAN 802 1Q 4K IP routing e BGP e DHCP Relay e ECMP IGMP e OSPF PIM e VLAN interface e VRRP Mellanox Technologies 15 Mellanox Technologies Confidential Rev 3 20 Figure 1 Managing an Ethernet Fabric Using MLNX OS Ethernet Subnet Switches Servers with ConnectX and MLNX_OFED or MLNX_WinOF File Storage E gt Remote Management Node Mellanox Technologies 16 Mellanox Technologies Confidential Rev 3 20 2 Getting Started The procedures described in this chapter assume that you have already installed and powered on your switch according to the instructions in the Hardware Installation Guide which was shipped with the product 2 1 Configuring the Switch for the First Time gt To configure the switch Step 1 Connect the host PC to the console mini USB port of the switch system using the supplied cable Figure 2 IBM System Console Ports Management Port Serial Port rd No remote IP connection is available at this stage via the external management port The internal management port can be accessed currently by the chassis management Step 2 Configure a serial terminal with the settin
221. ate a LAG Run switch config interface port channel 1 switch config interface port channel 1 Step 3 Map a physical port to the LAG in active mode LACP Run switch config interface ethernet 1 1 channel group 1 mode active Step 4 Set this LAG as an IPL Run switch config interface port channel 1 ipl 1 Step 5 Enable QoS on this specific interface Run switch config interface port channel 1 dcb priority flow control mode on force Mellanox Technologies 392 Mellanox Technologies Confidential Rev 3 20 Step 6 Create a VLAN interface Run switch config interface vlan 4000 switch config interface vlan 4000 Step 7 Set an IP address and netmask for the VLAN interface On SwitchA run switch config interface vlan 4000 ip address 10 10 10 1 30 On SwitchB run switch config interface vlan 4000 ip address 10 10 10 2 30 Step 8 Map the VLAN interface to be used on the IPL and set the peer IP address the IP address of the IPL port on the second switch of the IPL peer port IPL peer ports must be configured on the same netmask On SwitchA run switch config interface vlan 4000 ipl 1 peer address 10 10 10 2 On SwitchB run switch config interface vlan 4000 ipl 1 peer address 10 10 10 1 Step 9 Configure a virtual IP VIP for the MLAG Run On SwitchA run switch config mlag vip my vip 10 10 10 254 24 mask may also be 255 255 255 0 On SwitchB run switch config mlag vi
222. ated Commands Note Mellanox Technologies 372 Mellanox Technologies Confidential Rev 3 20 module type module type lt type gt force Splits or un splits the interface as desired Syntax Description type qsfp Port runs at 40000 56000Mbps qsfp split 2 Port is split and runs at 2X10000Mbps qsfp split 4 Port is split and runs at 4X 10000Mbps force force the split operation without asking for user confir mation Default interface module type is qsfp if the interface supports 40Gbps speed Configuration Mode Config Interface Ethernet History 3 1 1400 Role admin Example switch config interface ethernet 1 4 module type qsfp split 4 the following interfaces will be unmapped 1 4 1 1 Type yes to confirm split yes switch config interface ethernet 1 4 Related Commands switchport mode switchport trunk hybrid allowed vlan show vlan Note The affected interfaces should be disabled prior to the operation e inorder to un split the interface used the command with qsfp the speed is set to 40Gbps module type qsfp e This command is applicable only on 40Gbps Ethernet ports Mellanox Technologies 373 Mellanox Technologies Confidential Rev 3 20 5 2 Link Aggregation Group LAG Link Aggregation protocol describes a network operation in which several same speed links are combined into a single logical entity with the accumulated bandwidth of th
223. ation SSH server enabled yes Minimum protocol version 2 X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA vl host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f f8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 c2 18 72 12 d6 DSA v2 host key 7c 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 switch config Related Commands show ssh server Note Mellanox Technologies 53 Mellanox Technologies Confidential Rev 3 20 ssh server min version ssh server min version lt version gt no ssh server min version Sets the minimum version of the SSH protocol that the server supports The no form of the command resets the minimum version of SSH protocol supported Syntax Description version Possible versions are 1 and 2 Default 2 Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh server min version 2 switch config show ssh server SSH server configuration SSH server enabled yes Minimum protocol version 2 X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA vl host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f f8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 02 18 72 12 d6 DSA v2 host key 7co 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 switch config Related Comman
224. ation write to myconf no switch e To save the configuration to a user specified file and make the new file the active con figuration file run switch config configuration write to myconf e To display the available configuration files and the active file run switch config show configuration files initial myconf active switch config 4 4 2 Loading a Configuration File By default or after a system reset the system loads the default initial configuration file gt To load a different configuration file and make it the active configuration switch standalone master switch standalone master enable switch standalone master config configuration switch to myconfig switch gt gt switch standalone master configure terminal J standalone master config 4 4 3 Managing Configuration Files There are two types of configuration files that can be applied on the switch BIN files binary and text based configuration files 4 4 3 1 BIN Configuration Files BIN configuration files are not human readable and cannot be edited gt To create a new BIN configuration file switch config configuration new my filename gt To upload a BIN configuration file from a switch to an external file server switch config configuration upload my filename scp root my server root tmp my filename Mellanox Technologies 149 Mellanox Technologies Confidential Rev 3 2
225. ats show files stats lt filename gt Note Mellanox Technologies 153 Mellanox Technologies Confidential Rev 3 20 file tcpdump file tcpdump delete lt filename gt upload lt filename gt lt URL gt Manipulates tcpdump output files Syntax Description delete lt filename gt Deletes the specified tcpdump output file upload lt filename gt Uploads the specified tcpdump output file to the speci lt URL gt fied URL URL HTTP HTTPS FTP TFTP SCP and SFTP are supported Example scp username password host name path filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config file tcmpdump delete my tcpdump file txt switch config Related Commands show files stats tcpdump Note Mellanox Technologies 154 Mellanox Technologies Confidential Rev 3 20 reload reload force halt noconfirm noconfirm Reboots or shuts down the system Syntax Description force Forces an immediate reboot of the system even if the system is busy halt Shuts down the system noconfirm Reboots the system without asking about unsaved changes Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config reload Configuration has been modified save first yes yes Configuration changes saved switch config Related Commands reset factory Note
226. ax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4200 Role admin Example switch config show dcb application priority Application priority configuration Selector Protocol Priority Ethertype 0x8906 3 Ethertype 0x8914 3 switch config Related Commands Note Mellanox Technologies 497 Mellanox Technologies Confidential Rev 3 20 5 10 Quality of Service QoS 5 10 1 Priority Flow Control and Link Level Flow Control Priority Flow Control PFC provides an enhancement to the existing pause mechanism in Ether net The current Ethernet pause option stops all traffic on a link PFC creates eight separate vir tual links on the physical link and allows any of these links to be paused and restarted independently enabling the network to create a no drop class of service for an individual virtual link PFC has 8 possible priorities 3 bits in VLAN header Each priority can be mapped to one of 4 possible queues in the ingress The PFC software offers the following features e Provides per priority enabling or disabling of flow control e Transmits PFC PAUSE frames when the receive threshold for a particular traffic class is reached e Provides the management capability for an administrator to configure the flow control properties on each port of the switch e Keeps flow control disabled for all priorities on all ports by default e Allows an administrator to enab
227. ax Description N A Default no protocol openflow Configuration Mode Config History 3 3 4200 Role admin Example switch config protocol openflow switch config Related Commands Note Mellanox Technologies 454 Mellanox Technologies Confidential Rev 3 20 openflow description openflow description lt string gt Sets the OpenFlow description Syntax Description string Free string Default N A Configuration Mode Config History 3 3 4302 Role admin Example switch config openflow description OF switch 104 switch config show openflow detail OpenFlow version OF VERSION 1 0 Table size 1000 O in use Active controller ip 10 209 1 39 port 6633 Connection status HANDSHAKE COMPLETE CONNECTED Forward to controller ospf lldp arp unicast arp broadcast all Enabled ports Eth1 10 Eth1 11 Eth1 13 Eth1 19 Echo period 10 sec Keep alive period 30 sec Messages in last session 86290 Messages out last session 47984 Disconnect count 0 Openflow description OF switch 104 Datapath ID 00 00 00 02 c9 a8 e3 50 Not supporting buffering Not supporting emergency flows Not supporting port statistics Not supporting IP reassemble Supporting spanning tree Not supporting queue statistics switch config Related Commands Note Mellanox Technologies 455 Mellanox Technologies Confidential Rev 3 20 openflow mode hybrid
228. aximum path The number of routes to install to the routing table Default 1 Configuration Mode Config Router BGP History 3 3 5006 3 3 5200 Updated description and notes Role admin Example switch config router bgp 100 maximum paths ibgp 10 switch config router bgp 100 Related Commands N A Note e This command provides an ECMP parameter that controls the number of equal cost paths that the switch installs in the routing table for each destination e The action is effective after BGP restart If the parameter ibgp is not used the setting is applied on routes learned from peers from other ASs if ibgp is used the setting is applied to routes learned from peers of the same AS Mellanox Technologies 649 Mellanox Technologies Confidential Rev 3 20 neighbor advertisement interval neighbor lt ip address gt lt peer group name gt advertisement interval lt delay gt no neighbor lt ip address gt lt peer group name gt advertisement interval Sets the minimum route advertisement interval MRAT between the sending of BGP routing updates The no form of the command disables this function Syntax Description ip address A BGP peer IP address peer group name Peer group name delay Time in seconds is specified by an integer Range 0 600 Default 30 seconds Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example sw
229. ays valid lt days gt rename lt new name gt no crypto certificate name lt cert name gt Configures default values for certificate generation The no form of the command clears deletes certain certificate settings Syntax Description cert name Unique name by which the certificate is identified comment Specifies a certificate comment generate self signed Generates certificates This option has the following parameters which may be entered sequentially in any order e comment Specifies a certificate comment free string e common name Specifies the common name of the issuer and subject e g a domain name e country code Specifies the country codwo alphanu meric character country code or for none e days valid Specifies the number of days the certificate is valid e email addr Specifies the email address e hash algorithm Specifies the hashing function used for signature algorithm e key size bits Specifies the size of the private key in bits private key length in bits at least 1024 but 2048 is strongly recommended e locality Specifies the locality name e org unit Specifies the organizational unit name e organization Specifies the organization name e serial num Specifies the serial number for the certificate a lower case hexadecimal serial number prefixed with 0x e state or prov Specifies the state or province name private key pem Specifies certificate con
230. b oe 391 5 3 4 MLAG Configuration 0 0 0 eee 391 5 3 5 Commands osis reia aan gets atresia E E RA AAR Bata ence AS 396 SA VEANS Ste carts Save i bedi Balas lt eens aes tht E ea Gs eet ag ecient 411 5 4 1 Configuring Access Mode and Assigning Port VLAN ID PVID 411 5 4 2 Configuring Hybrid Mode and Assigning Port VLAN ID PVID 412 5 4 3 Configuring Trunk Mode VLAN Membership 0 412 5 4 4 Configuring Hybrid Mode VLAN Membership 413 343 Commandss ic sie Hosa oa eas T E Geta ttaann het 414 535 MAC Address Table v2 32 25 obits a ee eng he ie hed Sher ge eared 421 5 5 1 Configuring Unicast Static MAC Address 0000000000000 421 5 5 2 MAC Learning Considerations nsss 0 0 eee 421 55 3 Commands oe tines waiting lhce Waban Bh aie eae are 422 5 6 Spanning Ttee 5 sie nes Sead wee eee Bee the ae ee aoa See ated Reed 428 5 6 1 Port Priority and Cost o e s sospeso presero cee een eee 428 9 0 2 Port Type sen Sites bhatt bed che EE eeeetee ita tieess 428 5 6 3 BRDU Filter karra t one Bh StS oka ae ab Be EE TAG Oi eh eons 429 5 6 4 Loop Guard ssc foes ieee ens Meee ees Mies Sed Mae ete 429 3 6 5 Root Guard ssa on 58 eek os elas haba ea sweat edd ees ee 429 9 6 6 MSTP ic cite is Madea dade dite did dite eh a e a 430 5 0 7 Commands isc seks see aE ghee AeA oh AGA ES Vane eels Ra asad aa slats 431 Sel OpenP
231. ble auto config is enabled Configuration Mode Config Interface Management History 3 1 0000 Role admin Mellanox Technologies 96 Mellanox Technologies Confidential Rev 3 20 Example switch config interface mgmt0 ipv6 fe80 202 c9ff fe5e a5d8 64 switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address 17230322 Netmask 255 255 0 0 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment my interface RX bytes 962067812 TX bytes 40658219 RX packets 3738865 TX packets 142345 RX mcast packets 0 TX discards 0 RX discards RX errors TX errors TX overruns RX overruns ooo TX collisions TX queue len RX frame 0 0 TX carrier 0 0 1 000 switch config interface mgmt0 Related Commands ipv6 enable show interface lt ifname gt Note e Unlike IPv4 IPv6 can have multiple IPv6 addresses on a given interface e For Ethernet the default interface identifier is a 64 bit long modified EUI 64 which is based on the MAC address of the interface Mellanox Technologies 97 Mellanox Technologies Confidential Rev 3 20 show inter
232. bles the management and configuration of Mel lanox Technologies SwitchX silicon based switch platforms MLNX OS supports the Virtual Protocol Interconnect VPI technology which enables it to be used for both Ethernet and Infini Band technology providing the user with greater flexibility MLNX OS provides a full suite of management options including support for Mellanox s Uni fied Fabric Manager UFM SNMP V1 2 3 and web user interface WebUI In addition it incorporates a familiar industry standard CLI which enables administrators to easily configure and manage the system 1 1 System Features Table 4 General System Features Feature Description Software Management e Dual software image e Software and firmware updates File management FTP e TFTP e SCP Logging Event history log e SysLog support Management Interface e DHCP Zeroconf IPv6 Chassis Management e Monitoring environmental controls Network Management e SNMP vl v2c v3 Interfaces e REST interfaces XML Gateway e Puppet Agent Security e SSH e Telnet e RADIUS e TACACS Date and Time NTP Cables amp Transceivers e Transceiver info Mellanox Technologies 14 Mellanox Technologies Confidential Rev 3 20 1 2 Ethernet Features Table 5 Ethernet Features Feature Description General e ACL 24K rules permit deny e Breakout cables e Jumbo Frames 9K Ethernet support e 48K Unic
233. c9 5c 61 70 This bridge is the root Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 32768 Address 00 02 c9 5c 61 70 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Interface Role Sts Cost Prio Type switch config Related Commands clear spanning tree counters spanning tree Note Mellanox Technologies 441 Mellanox Technologies Confidential Rev 3 20 spanning tree mst max hops spanning tree mst max hops lt max hops gt no spanning tree mst max hops Specifies the max hop value inserts into BPDUs that sent out as the root bridge The no form of the command sets the parameter to its default value Syntax Description max hops Max hop value The range is 6 40 Default 20 Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst max hops 20 switch config Related Commands Note The max hop setting determines the number of bridges in an MST region that a BPDU can traverse before it is discarded Mellanox Technologies 442 Mellanox Technologies Confidential Rev 3 20 spanning tree mst priority spanning tree mst lt mst instance gt priority lt priority gt no spanning tree mst lt mst instance gt priority Configures the specified instance s priority number The no form of the command sets the parameter to its default value Syntax Description mst instance MST instance R
234. carry forward from the current running configuration Syntax Description filename Names for new configuration file factory Creates new file with only factory defaults keep basic Keeps licenses and host keys keep connect Keeps configuration necessary for connectivity inter faces routes and ARP Default Keeps licenses and host keys Configuration Mode Config History 3 1 0000 Role admin Example switch config show configuration files initial initial bak initial prev switch config configuration new example2 switch config show configuration files example2 initial initial bak initial prev switch config Related Commands show configuration Note Mellanox Technologies 167 Mellanox Technologies Confidential Rev 3 20 configuration switch to configuration switch to lt filename gt Loads the configuration from the specified file and makes it the active configuration file Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show configuration files initial active newcon initial prev initial bak switch config configuration switch to newcon switch config show configuration files initial newcon active initial prev initial bak switch config Related Commands show configuration files Note The current running configuration is lost and n
235. ce Ethernet History 3 2 0300 Initial revision 3 3 0000 Added none parameter 3 3 4302 Added dcbx parameter 3 3 4402 Added dcbx cee parameter Role admin Example switch config interface ethernet 1 1 lldp tlv select port descrip tion sys name switch config interface ethernet 1 1 Related Commands show lldp interface Note Mellanox Technologies 488 Mellanox Technologies Confidential Rev 3 20 dcb application priority dcb application priority lt selector gt lt protocol gt lt priority gt Adds an application to the application priority table Syntax Description selector Protocol field in hexa notation e g 0x8906 for FCoE 0x8914 for FIP protocol Has 4 options 1 ethertype 2 tcp sctp 3 udp dcecp 4 tcp sctp udp dccp priority Range 0 7 Default No applications are available The table is empty Configuration Mode Config History 3 3 4200 Role admin Example switch config if dcb application priority ethertype 3 0x8906 switch config if Related Commands show lldp interface Note Mellanox Technologies 489 Mellanox Technologies Confidential Rev 3 20 show Ildp local show lldp local Shows LLDP local information Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0300 Role admin Example switch config show lldp local LLDP is En
236. ch config show ssh server SSH server configuration SSH server enabled yes Server security strict mode no Minimum protocol version 2 TCP forwarding enabled yes X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA v1 host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f f8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 02 18 72 12 d6 DSA v2 host key 7co 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 switch config Related Commands show ssh server Note Disabling SSH server does not terminate existing SSH sessions it only prevents new ones from being established Mellanox Technologies 50 Mellanox Technologies Confidential Rev 3 20 ssh server host key ssh server host key lt key type gt private key lt private key gt public key lt public key gt generate Manipulates host keys for SSH Syntax Description key type e sal RSAv1 e rsa RSAv2 e dsa DSAv2 private key Sets new private key for the host keys of the specified type public key Sets new public key for the host keys of the specified type generate Generates new RSA and DSA host keys for SSH Default SSH keys are locally generated Configuration Mode Config History 3 1 0000 Role admin Mellanox Technologies 51 Mellanox Technologies Confidential Rev 3 20 Example switch config ssh server host k
237. ch config traceroute 192 168 10 70 traceroute to 192 168 10 70 192 168 10 70 30 hops max 40 byte packets 1 172 30 0 1 172 30 0 1 3 632 ms 2 849 ms 3 544 ms 10 222 128 46 10 222 128 46 3 176 ms 3 289 ms 3 656 ms 10 158 128 30 10 158 128 30 15 331 ms 15 819 ms 16 388 ms 10 158 128 65 10 158 128 65 20 468 ms 7 893 ms 12 27 ms 10 7 34 115 10 7 34 115 16 405 ms 11 985 ms 12 264 ms 192 168 10 70 192 168 10 70 16 377 ms 16 091 ms 20 475 ms switch config Nu B WH Related Commands Note e Traceroute fot IPv6 is not supported The following flags are not supported 6 1 A e When using i option use the interface name interface number for example traceroute i vlan10 Mellanox Technologies 589 Mellanox Technologies Confidential Rev 3 20 tcpdump tcpdump aAdeflLnNOpqRStuUvxX c count C file_size E algo secret F file i interface M secret r file s snaplen T type w file W filecount y datalinktype Z user expression Invokes standard binary passing command line parameters straight through Runs in foreground printing packets as they arrive until the user hits Ctrl C Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config tcpdump 09 37 38 678812 IP 192 168 10 7 ssh gt 192 168 10 1 54155 P 1494624 1494800 176 ack 625 win 90
238. changes Set maximum number of audit messages to log per change Default 1000 Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration audit max changes 100 switch config show configuration audit Maximum number of changes to log 100 switch config Related Commands show configuration Note N A Mellanox Technologies 160 Mellanox Technologies Confidential Rev 3 20 configuration copy configuration copy lt source name gt lt dest name gt Copies a configuration file Syntax Description source name Name of source file dest name Name of destination file If the file of specified file name does not exist a new file will be created with said filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration copy initial bak example switch config Related Commands Note e This command does not affect the current running configuration The active configuration file may not be the target of a copy However it may be the source of a copy in which case the original remains active Mellanox Technologies 161 Mellanox Technologies Confidential Rev 3 20 configuration delete configuration delete lt filename gt Deletes a configuration file Syntax Description filename Name of file to delete Default N A Configuration Mode Conf
239. chnologies 574 Mellanox Technologies Confidential Rev 3 20 6 1 5 3 Loopback Interface interface loopback interface loopback lt id gt no interface loopback lt id gt Creates a loopback interface and enters the interface configuration mode The no form of the command deletes the interface Syntax Description id A numeric range of 1 32 Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config interface loopback 10 switch config interface loopback 10 Related Commands Note e Up to 32 loopback interfaces can be configured e Within the loopback configuration mode you can configure description and ip address e MTU cannot be configured on the loopback interface Mellanox Technologies 575 Mellanox Technologies Confidential Rev 3 20 ip address ip address lt ip address gt lt mask gt no ip address lt ip address gt lt mask gt Enters user defined description for the interface Syntax Description ip address IPv4 address mask There are two possible ways to the mask e length only 32 is possible e Network address i e 255 255 255 0 Default 0 0 0 0 0 Configuration Mode Config Interface Loopback History 3 3 5006 Role admin Example switch config interface loopback 10 ip address 10 10 10 10 32 Related Commands interface loopback Note Mellanox Technologies 576 Mellanox T
240. cipients configured Autosupport emails Enabled no Recipient autosupport autosupport mellanox com Mail hub autosupport mellanox com switch config Related Commands show email Note This only takes effect if the return address does not contain an character Mellanox Technologies 224 Mellanox Technologies Confidential Rev 3 20 email send test email send test Sends test email to all configured event and failure recipients Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config email autosupport enable switch config Related Commands show email events Note Mellanox Technologies 225 Mellanox Technologies Confidential Rev 3 20 email ssl mode email ss mode none tls tls none no email ss mode Sets the security mode s to try for sending email The no form of the command resets the email SSL mode to its default Syntax Description none No security mode operates in plaintext tls Attempts to use TLS on the regular mailhub port with STARTTLS If this fails it gives up tls none Attempts to use TLS on the regular mailhub port with STARTTLS If this fails it falls back on plaintext Default default cert Configuration Mode Config History 3 2 3000 Role admin Example switch config email ssl mode tls none Related Commands
241. ckets 0 discard packets Eth1 4 0 discard packets 0 discard packets switch config show interfaces include Tx next 5 exclude broad Tx 0 packets 0 unicast packets 0 multicast packets 0 bytes Ibe 0 packets 0 unicast packets 0 multicast packets 0 bytes 3 2 Web Interface Overview MLNX OS package equipped with web interface which is a web GUI that accept input and provide output by generating webpages which can be viewed by the user using a web browser The following web browsers are supported e Internet Explorer 8 0 or higher e Chrome 18 or higher e Mozilla Firefox 12 or higher e Safari 5 or higher The web interface makes available the following perspective tabs e Setup e System e Security e Ports e Status e IB SM Management e Fabric Inspector e Ethernet Management e IP Route e Gateway Pd Make sure to save your changes before switching between menus or submenus Click the y Save button to the right of Save Changes Mellanox Technologies 32 Mellanox Technologies Confidential Rev 3 20 Figure 9 WebUI Mellanox MLNX OS SX6036G Management Console WW GIET TECHNOLOGIES Host switch 6287a4 User admin Logout a Subnet Manager is not running E 5 gt Gateway Save Standalone KiiVirtual IP Active node IA Security a es Ports Boos titi ETH ti Fabric t i Inspetr i Mgmt IP System Ls 3 Route
242. col Packets over IP Figure 20 RoCEv2 and RoCE Frame Format Differences EtherType indicates that packet is RoCE Le next header is IB GRH RoCE RoCEv2 EtherType indicates that packet is IP d UDP dport number Indicates ie next header is IP ip protocol_number that next header is IB BTH indicates that packet is UDP The proposed RoCEv packets use a well known UDP destination port value that unequivocally distinguishes the datagram Similar to other protocols that use UDP encapsulation the UDP source port field is used to carry an opaque flow identifier that allows network devices to imple ment packet forwarding optimizations e g ECMP while staying agnostic to the specifics of the protocol header format Mellanox Technologies 554 Mellanox Technologies Confidential Rev 3 20 Furthermore since this change exclusively affects the packet format on the wire and due to the fact that with RDMA semantics packets are generated and consumed below the AP applications can seamlessly operate over any form of RDMA service including the routable version of RoCE as shown in Figure 2 in a completely transparent way Figure 21 RoCEv2 Protocol Stack RDMA Application ULP o fe RDMA API Verbs 2 a RDMA Software Stack IB IB IB Transport Transport Transport 4 Protocol Protocol Protocol Ss z 2 lt IB Network Layer IB Network Layer InfiniBand RoCE InfiniBand Ethernet Ethernet Management
243. cols that deal with efficient delivery of IP multicast MC data Those protocols are published in the series of RFCs and define differ ent ways and aspects of multicast data distribution PIM protocol family includes PIM dense mode PIM DM PIM sparse mode PIM SM Bidirectional PIM PIM BIDIR and Bootstrap router BSR protocol PIM builds and maintains multicast routing tables based on the unicast routing information pro vided by unicast routing tables that can be maintained statically or dynamically by IP routing protocols like OSPF and BGP 6 5 1 Basic PIM SM PIM relies on the underlying topology gathering protocols that collect unicast routing informa tion and build multicast routing information base MRIB The primary role of MRIB is to deter mine the next hop for PIM messages MC data flows along with the reverse path of the PIM control MC tree construction contains three phases 1 Construction of a shared distribution tree This tree is built around a special designated router DR called the rendezvous point RP 2 Establishing a native forwarding path from MC sources to the RP 3 Building an optimized MC distribution tree from each MC source to all MC targets bypassing the RP The first stage of the multicast tree establishment starts when the MC receiver expresses desire to start receiving MC data It can happen as a result of using one of the L2 protocols like MLD or IGMP or by static configuration When such reque
244. com dynamic Domain name vmlab mtl com dynamic Domain name yok mtl com dynamic Domain name mtl com dynamic IP 127 0 0 1 maps to hostname localhost IPv6 1 maps to hostname localhost6 Automatically map hostname to loopback address yes Automatically map hostname to IPv6 loopback address no switch config Related Commands show hosts Note Mellanox Technologies 101 Mellanox Technologies Confidential Rev 3 20 ip domain list ip domain list lt domain name gt no ip domain list lt domain name gt Sets the static domain name The no form of the command clears the domain name Syntax Description domain name The domain name in a string form A domain name is an identification string that defines a realm of administrative autonomy authority or control in the Internet Domain names are formed by the rules and procedures of the Domain Name System DNS Default No static domain name Configuration Mode Config History 3 1 0000 Role admin Example switch config ip domain list mydomain com switch config show hosts Hostname switch Name server 10 211 0 121 dynamic Name server 172 30 0 126 dynamic Name server 10 4 0 135 dynamic Domain name mydomain com configured Domain name lab mtl com dynamic Domain name vmlab mtl com dynamic Domain name yok mtl com dynamic Domain name mtl com dynamic IP 1 1 1 1 maps to hostname p IP 127 0 0 1 ma
245. configurations RSTP is not aware of VLANs and blocks ports at the physical level SA Subnet Administrator The interface for querying and manipulating subnet management data SCP Secure Copy or SCP is a means of securely transferring computer files between a local and a remote host or between two remote hosts It is based on the Secure Shell SSH protocol SNMP Simple Network Management Protocol A network protocol for the manage ment of a network and the monitoring of network devices and their functions NTP Network Time Protocol A protocol for synchronizing computer clocks in a network SSH Secure Shell A protocol program for securely logging in to and running pro grams on remote machines across a network The program authenticates access to the remote machine and encrypts the transferred information through the connection syslog A standard for forwarding log messages in an IP network TACACS Terminal Access Controller Access Control System Plus A networking proto col that enables access to a network of devices via one or more centralized servers TACACS provides separate AAA services XML Gateway Extensible Markup Language Gateway Provides an XML request response protocol for setting and retrieving HW management information Mellanox Technologies 13 Mellanox Technologies Confidential Rev 3 20 1 Introduction Mellanox Operating System MLNX OS ena
246. connection if a matching host key is already in the known hosts file known host Adds an entry to the global known hosts configuration file known host entry Adds removes an entry to from the global known hosts configuration file The entry consist of lt IP gt lt key type gt lt key gt Default host key check ask no keys are configured by default Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh client global host key check no switch config ssh client global known host 72 30 2 2 ssh rsa AAAAB3NzaClyc2EAAAABIWAAATEArB9i50OnukAHNUOkwpCmE10m88kJgBzL22 F5tfaSn S OpvYxrceZeyuzXsoZ1VtFTk2Fydwy0YvMSOKcv2PuCrPZV GYd31Q0Enn22rEmr1PrKCrM11X1Uy6DF1r30gwWmlbaobmD1G gSziWwz gc4Jgqf2CyxXFq4pzaR1jar1lVk switch config show ssh client SSH client Strict Hostkey Checking ask SSH Global Known Hosts Entry 1 72 30 2 2 Finger Print le b7 8b ec ab 35 98 be 6b d6 12 02 18 72 12 d6 No SSH user identities configured No SSH authorized keys configured switch config Mellanox Technologies 57 Mellanox Technologies Confidential Rev 3 20 Related Commands show ssh client Note Mellanox Technologies 58 Mellanox Technologies Confidential Rev 3 20 ssh client user ssh client user lt username gt authorized key sshv2 lt public key gt identity lt key type gt generate private key lt private key gt public key lt public
247. ct the BSR which then uses BSMs to inform all domain routers of its status e Command parameters specify the switch s BSR address the interval between BSM trans missions hash length used for RP calculations and the priority assigned to the switch when electing a BSR Entering an ip pim bsr candidate command replaces any previously configured bsr candi date command If the new command does not specify a priority or interval the previously configured values persist in running config Mellanox Technologies 733 Mellanox Technologies Confidential Rev 3 20 ip pim bsr holdtime ip pim bsr holdtime lt period gt no ip pim bsr holdtime Configures the timeout period an elected BSR remains valid after receiving a BSM The no form of the command resets the parameters to their default Syntax Description period In seconds Range 12 1073741823 1 073 billion Default period 2 BSR candidate interval 10 Configuration Mode Config History 3 3 5006 Role admin Example switch config ip pim bsr holdtime 30 Related Commands Note Mellanox Technologies 734 Mellanox Technologies Confidential Rev 3 20 ip pim rp candidate ip pim rp candidate vlan lt vlan id gt loopback lt number gt ethernet lt slot port gt group list lt ip address gt lt prefix gt bidir priority lt priority gt interval lt interval gt no ip pim rp candidate vlan lt vlan id gt
248. d Commands N A Note e All changes in a the route map configuration mode become pending until the end of the route map session e If not configured deny permit is configured as permit e If not configured sequence number default value is 10 Mellanox Technologies 692 Mellanox Technologies Confidential Rev 3 20 continue lt sequence number gt continue lt sequence number gt no continue Enables additional route map evaluation of routes whose parameters meet the clause s matching criteria The no form of the command removes this configuration from the route map clause Syntax Description prefix list name Default N A Configuration Mode Config Route Map History 3 3 5006 First version 3 3 5200 Updated example Role admin Example switch config route map mymap permit 10 match as number 40 switch config route map mymap permit 10 set weight 7 switch config route map mymap permit 10 continue 1200 switch config route map mymap permit 10 exit switch config show route map test route map test permit sequence 10 Match clauses as number 40 Set clauses weight 7 continue 1200 switch config route map mymap permit 10 route map test permit 10 no continue switch config route map mymap permit 10 show route map test route map test permit sequence 10 Match clauses as number 40 Set clauses weight 7 switch config route map mymap permit 10 Related Commands route map
249. d MLNX OS version from the following link http support mellanox com SupportWeb Step 3 Enter your username and password when prompted Step 4 Log into the switch via the CLI using the console port Mellanox Technologies 134 Mellanox Technologies Confidential Rev 3 20 Step 5 Change to Config mode Run switch gt enable switch configure terminal switch config Step 6 Delete all previous images from the Images available to be installed prior to fetching the new image Run switch config image delete image EFM_PPC_M405EX ppc m405ex 20090531 190132 img Step 7 Fetch the requested software image Run switch config image fetch scp username password 192 168 10 125 var www htm1 lt image_name gt 100 03 CAAA eee eee HEHEHEEHHEEEHHEE 4 3 4 2 Downgrading Image rd The procedure below assumes that booting and running is done from Partition 1 and the ad downgrade procedure is performed on Partition 2 Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Show all image files on the system Run switch config show images Images available to be installed new_image img lt downgrade version gt 2010 09 19 16 52 50 Installed images Partition 1 lt current version gt 2010 09 19 03 46 25 Panti tiont2 lt current version gt 2010 09 19 03 46 25 Last boot partition 1 Next boot partition 1 No boot manager passwor
250. d Mode History 3 3 5006 Role admin Example switch config show route map mymap route map mymap permit sequence 1200 Set clauses continue 1800 switch config Related Commands N A Note Mellanox Technologies 720 Mellanox Technologies Confidential Rev 3 20 6 4 2 IP Prefix List Prefix list is a list of entries each of which can match one or more IP prefixes A prefix list is usually used to match a specific IP prefix mostly in relation to IP route destinations The prefix is considered to match the list if one of the entries match the prefix the entry itself can be marked as a permit entry or a deny entry which can be used by the matching code to decide if the route is to be accepted or not The prefix is matched to the prefix list entries in the order of the sequence number of the entries in the list Mellanox Technologies 721 Mellanox Technologies Confidential Rev 3 20 6 4 2 1 Commands ip prefix list ip prefix list lt list name gt seq lt number gt permit deny lt ip gt eq lt length gt lt prefix gt eq lt length gt le lt length gt ge lt length gt le lt length gt no ip prefix list lt list name gt seq lt number gt Creates or updates a prefix list The no form of the command deletes a prefix list or a prefix list entry Syntax Description list name String seq lt number gt Sequence number assigned to entry
251. d is set switch config Step 4 Install the MLNX OS image Run switch config image install lt image_name gt Step 1 of 4 Verify Image LOO 0 atta a a a a aa HH a a a a aa a a a a a a aE A a a a a a a a EE EEE aE a EE Step 2 of 4 Uncompress Image LOO OS atta a a Ea EHH HH a a a Ea HH a a a a a Ha aH a A a a A a A EA a aE EA a EE Step 3 of 4 Cre ilesystems LOO O atta a a aa EHH HH a a HHHH a a a a a a a a Ha a a a A a A aE aE A a a EE Mellanox Technologies 135 Mellanox Technologies Confidential Rev 3 20 Step 4 of 4 Extract Image LOO 0 aE a a a a a A aE a a a EE A EE a a AE switch config Step 5 Show all image files on the system Run switch config show images Images available to be installed new_image img lt downgrade version gt 2010 09 19 16 52 50 Installed images Panti tioni lt current version gt 2010 09 19 03 46 25 Partition 2 lt downgrade version gt 2010 09 19 16 52 50 Last boot partition 1 Next boot partition 2 No boot manager password is set switch config Step 6 Set the boot location to be the other partition next Run switch config image boot next There are two installed images on the system Therefore if one of the images gets cor L rupted due to power interruption for example in the next reboot the image will go up aa from the second partition In case you are downloading to an older software version
252. dcb ets enable Step 2 Choose the WRR bandwidth rate and distribution By default the WRR distribution function is equal 25 per TC Changing the WRR bandwidth rate will cause a change in the distribution function for example if you wish to schedule more traffic on TC 0 TC 1 TC 2 while reducing the amount of traffic sent on TC 3 run the com mand dcb ets tc bandwidth switch config dcb ets tc bandwidth 30 30 30 10 show dcb ets ETS enabled IC Bandwidth 0 30 1 30 2 30 3 10 Number of Traffic Class 4 switch config L Traffic class priorities are lt 0 3 gt where 0 is the lowest and 3 is the highest gt Mellanox Technologies 500 Mellanox Technologies Confidential Rev 3 20 Step 3 Run the command show dcb ets to verify the configuration Mellanox Technologies 501 Mellanox Technologies Confidential Rev 3 20 5 10 3 Commands 5 10 3 1 Enhanced Transmission Selection ETS dcb ets enable dcb ets enable no dcb ets enable Sets the switch egress scheduling mode to be weighted round robin The no form of the command sets the switch egress scheduling mode to be strict pri ority Syntax Description N A Default ETS is enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config dcb ets enable switch config show dcb ets ETS enabled TC Bandwidth 0 25 1 25 2 25 3 25 Number of Traffic Class 4 switch confi
253. ded neg 14 1 2 Ethernet Features 35 0 sce kee neru hene hd en cea pe eee pon eute cere 15 Chapter 2 Getting Started 4 66 en saincs ss hc sacked hes eae ees eoele ee eeewiae ee LT 2 1 Configuring the Switch for the First Time 0 0 0 0 00 eae 17 2 2 Starting the Command Line CLI 0 0 0 cee eee 17 2 3 Starting the Web User Interface 0 0 eee eee ee 18 24 TACENSeS4 mir anha Ria dete seen eee A we pe hea ewe bela 20 2 4 1 Installing MLNX OS License CLI 0 0 0 eee ee eee 20 2 4 2 Installing MLNX OS License Web 0 cece eee eens 21 2 4 3 Retrieving a Lost License Key 00 0 e cece cee eee 23 2 4 4 Commands cs eee ie ewes Ake ea ee One Weenie Sey ee EO es 25 Chapter 3 User Interfaces sesesossesesesosocoesesesosocseseseseo 20 3 1 Command Line Interface CLI Overview 0 0 c cee eee 26 Bel WCET MOd ES sc cisco day ite Seas bach A adc eek bine ates 26 3 1 2 Syntax Conventions lt sese eea eke eens ee eh eee ea ae E R S 27 3 1 3 Getting Help is suc n Sia eae Mica Bae be 6 ew ee Gon 27 3 1 4 Prompt and Response Conventions 0 00 0 c cece eee ee eee 28 3 1 5 Using the no Fom seen seb ee bosons iina serach trentet dh tes ent avert otra Eee 29 3 56 Parameter Keys ereot 00h diet noai He RB RODS Ke NONE 4g le settee HEF ay 30 3 1 7 Command Output Filtering 0 eee eee 31 3 2 Web Interface Overview 6 eee eee eens
254. dential Mellanox Technologies 77 Rev 3 20 show web show web Displays the web configuration Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout 1 hr Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled yes Proxy address 10 10 10 11 Proxy port 40 Authentication type basic Basic auth username web user Basic auth password web password Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands show web web proxy auth Note Mellanox Technologies 78 Mellanox Technologies Confidential Rev 3 20 4 System Management 4 1 Management Interface 4 1 1 Configuring Management Interfaces with Static IP Addresses If your switch system was set during initialization to obtain dynamic IP addresses through DHCP and you wish to switch to static assignments perform the following steps Step 1 Enter Config mode Run switch gt switch gt enable switch configur
255. des or downgrades as appropriate it reboots to the other partition as a fallback e The no form of this command tells the system not to do that only for the next boot In other words this setting is not persistent and goes back to enabled automatically after each boot e When downgrading to an older software version which has never been run yet on a system the fallback reboot always happens unless the command no boot next fallback reboot enable is used However this also happens when the older software version has been run before but the configuration file has been switched since upgrading In general a down grade only works without having the fallback reboot forcibly disabled if the process can find a snapshot of the configuration file by the same name as the currently active one which was taken before upgrading from the older software version If that is not found a fallback reboot is performed in preference to falling back to the initial database because the latter generally involves a loss of network connectivity and avoiding that is of paramount importance Mellanox Technologies 140 Mellanox Technologies Confidential Rev 3 20 image default chip fw image default chip fw lt file name gt Sets the default firmware package to be installed Syntax Description filename Specifies the firmware filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example s
256. dge priority gt no spanning tree priority Sets the spanning tree bridge priority The no form of the command sets the bridge priority to default Syntax Description bridge priority Sets the bridge priority for the spanning tree Its value must be in steps of 4096 starting from 0 Only the fol lowing values are applicable 0 4096 8192 12288 16384 20480 24576 28672 32768 36864 40960 45056 49152 53248 57344 61440 Default 32786 Configuration Mode Config History 3 1 0000 Role admin Example switch config Spanning tree priority 4096 switch config Related Commands show spanning tree Note Mellanox Technologies 434 Mellanox Technologies Confidential Rev 3 20 spanning tree port priority spanning tree port priority lt priority gt no spanning tree port priority Configures the spanning tree interface priority The no form of the command returns configuration to its default Syntax Description priority Spanning tree interface priority The possible values are 0 16 32 48 64 80 96 112 128 144 160 176 192 208 224 240 Default 128 Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 switch config interface ethernet 1 1 spanning tree port priority 16 switch config interface e
257. dius Displays RADIUS configurations Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show radius RADIUS defaults Key 3333 Timeout 3 Retransmit X RADIUS servers 40 40 40 40 1812 Enabled yes Key 3333 default Timeout 3 default Retransmit 1 default switch config Related Commands aaa authorization radius server radius server host Note Mellanox Technologies 254 Mellanox Technologies Confidential Rev 3 20 4 9 3 4 TACACS tacacs server tacacs server key lt secret gt retransmit lt retries gt timeout lt seconds gt no tacacs server key retransmit timeout Sets global TACACS server attributes The no form of the command resets the attributes to default values Syntax Description secret Set a secret key shared hidden text string known to the system and to the TACACS server retries Number of retries 0 5 before exhausting from the authentication seconds Timeout in seconds between each retry 1 60 Default 3 seconds retry Configuration Mode Config History 3 1 0000 Role admin Example switch config tacacs server retransmit 3 switch config show tacacs TACACS defaults Key 3333 Timeout 3 Retransmit T No TACACS servers configured switch config Related Commands aaa authorization show radius show tacacs t
258. dmin Example switch config snmp server community private rw switch config show snmp SNMP enabled yes SNMP port 161 System contact System location Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp Note Mellanox Technologies 341 Mellanox Technologies Confidential Rev 3 20 snmp server community snmp server community lt community gt ro rw no snmp server community lt community gt Sets a community name for either read only or read write SNMP requests The no form of the command sets the community string to default Syntax Description community Community name ro Sets the read only community string TW Sets the read write community string Default Read only community public 6699 Read write community Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp server community private rw switch config show snmp SNMP enabled yes SNMP port 161 System contact System location Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config
259. ds show ssh server Note Mellanox Technologies 54 Mellanox Technologies Confidential Rev 3 20 ssh server ports ssh server ports lt port1 gt lt port2 gt Specifies which ports the SSH server listens on Syntax Description port Port number in 1 65535 Default 22 Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh server ports 22 switch config show ssh server SSH server configuration SSH server enabled yes Minimum protocol version 2 X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA vl host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f f8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 02 18 72 12 d6 DSA v2 host key 7co 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 switch config Related Commands show ssh server Note e Multiple ports can be specified by repeating the lt port gt parameter e The command will remove any previous ports if not listed in the command Mellanox Technologies 55 Mellanox Technologies Confidential Rev 3 20 ssh server x11 forwarding ssh server x11 forwarding enable no ssh server x11 forwarding enable Enables X11 forwarding on the SSH server The no form of the command disables X11 forwarding Syntax Description N A Default X11 forwarding is disabled Configuration Mode Co
260. ds this number either at rotation time or when this setting is lowered the system will delete as many files as necessary to bring it down to this number starting with the oldest Default 10 files are kept by default with rotation criteria of 5 of the log partition size Configuration Mode Config History 3 1 0000 Role admin Mellanox Technologies 188 Mellanox Technologies Confidential Rev 3 20 Example switch config logging files rotation criteria size pct 6 switch config show logging Local logging level info Override for class mgmt front warning Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log files to keep 10 Log rotation size threshold 6 000 of partition 51 60 megabytes Log format standard Subsecond timestamp field enabled Subsecond timestamp precision 1 whole digit 3 fractional digits Levels at which messages are logged CLI commands info Audit messages notice switch config Related Commands show logging show log files Note Mellanox Technologies 189 Mellanox Technologies Confidential Rev 3 20 logging files upload logging files upload current lt file number gt lt url gt Uploads a log file to a remote host Syntax Description current The current log file The current log file will have the name messages if you do not specify a
261. dth RecomBandwidth 0 30 30 Al 30 30 2 30 30 3 10 10 switch config Related Commands Note Mellanox Technologies 507 Mellanox Technologies Confidential Rev 3 20 5 10 3 2 Priority Flow Control PFC dcb priority flow control enable dcb priority flow control enable no deb priority flow control enable Enables PFC globally on the switch The no form of the command globally disables PFC on the switch Syntax Description N A Default PFC is disabled Configuration Mode Config History 3 1 0000 Initial revision 3 3 0000 Output update Role admin Example switch config dcb priority flow control enable This action might cause traffic loss while shutting down a port with priority flow control mode on Type yes to confirm enable pfc globally yes switch config show dcb priority flow control PFC enabled Priority Enabled List Priority Disabled List 7 1234 5 6 T LC Lossless 0 N a Y 2 Y 3 N Interface PFC admin PFC oper 1 1 Disabled Disabled 1 2 Disabled Disabled 1 3 Disabled Disabled 1 4 Disabled Disabled switch config Related Commands show dcb priority flow control Note This command asks the user to approve traffic loss because there might be interfaces with dcb mode on that will be shutdown Mellanox Technologies 508 Mellanox Technologies Confidential Rev 3 20 dcb priority flow control priority dcb priority flow cont
262. e Mellanox Technologies 238 Mellanox Technologies Confidential Rev 3 20 4 9 3 2 AAA Methods aaa accounting aaa accounting changes default stop only tacacs no aaa accounting changes default stop only tacacs Enables logging of system changes to an AAA accounting server The no form of the command disables the accounting Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 First version 3 2 3000 Removed time parameter from the command Role admin Example switch config aaa accounting changes default stop only tacacs switch config show aaa AAA authorization Default User admin Map Order local only Authentication method s local radius tacacst ldap Accounting method s tacacst switch config Related Commands show aaa Note e TACACS is presently the only accounting service method supported e Change accounting covers both configuration changes and system actions that are visible under audit logging however this feature operates independently of audit logging so it is unaffected by the logging level audit mgmt or configuration audit commands e Configured TACACS servers are contacted in the order in which they appear in the con figuration until one accepts the accounting data or the server list is exhausted e Despite the name of the stop only keyword which indicates that this feature logs a TACACS accounting
263. e Default no change vlan 1 priority 0 traffic class 0 Configuration Mode Config Monitor Session History 3 3 3500 Role admin Example switch config monitor session 1 header format add ethernet header destination mac 00 0d ec f1l a9 c8 add vlan 10 priority 5 traffic class 2 switch config monitor session 1 Related Commands Note If add ethernet header is used the source MAC address is the one attached to the switch Mellanox Technologies 534 Mellanox Technologies Confidential truncate Rev 3 20 truncate no truncate Truncates the mirrored frames to 64 byte packets The no form of the command disables truncation Syntax Description N A Default Configuration Mode no truncate Config Monitor Session History 3 3 3500 Role admin Example switch config monitor session 1 truncate switch config monitor session 1 Related Commands Note This command applies for all sessions on the same analyzer port Mellanox Technologies 535 Mellanox Technologies Confidential Rev 3 20 congestion congestion drop excessive frames pause excessive frames no congestion Sets the system s behavior when congested The no form of the command disables truncation Syntax Description drop excessive frames Drops excessive frames pause excessive frames Pauses excessive frames Default drop excessive frames Configuration Mod
264. e The information is a set of read only parameters burned onto the EEPROM of the transceiver by the manufacture The parameters include identifier connector type cable type speed and additional inventory attributes gt To display transceiver information of a specific interface run switch config show interfaces ethernet 1 20 transceiver Port 1 60 state identifier QSFP cable module type Passive copper unequalized ethernet speed and type 56GigE vendor Mellanox cable length o ilm part number MC2207130 001 revision AS serial number MT1238VS04936 switch config R The indicated cable length is rounded up to the nearest natural number Da Mellanox Technologies 359 Mellanox Technologies Confidential Rev 3 20 5 1 3 Commands interface ethernet interface ethernet lt slot gt lt port gt lt subport gt lt slot gt lt port gt lt subport gt Enters the Ethernet interface or Ethernet interface range configuration mode Syntax Description lt slot gt lt port gt Ethernet port number subport Ethernet subport number to be used in case of split port Default N A Configuration Mode Config History 3 1 0000 First version 3 2 1100 Added range support Role admin Example switch config interface ethernet 1 1 switch config interface ethernet 1 1 exit switch config interface ethernet 1 1 1 10 switch config interface ethernet 1 1 1 10 Re
265. e master config show ip bgp neighbors 3 5 7 5 received BGP table version is 66 local router ID is 3 5 7 4 Status codes s suppressed d damped h history valid gt best i internal r RIB failure S Stale m multipath b backup path x best external Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrft Weight Path gt 100 0 20 0 24 245 745 10 100 0 5 4 BS 3 527 128 32 3250 135 7 100 005i gt 100 0 30 0 24 Peer tare 0 100 0O5i gt 10 20 30 0 24 BGs bed 0 100 0 5 12k switch e07c04 standalone master config Related Commands N A Note Mellanox Technologies 680 Mellanox Technologies Confidential Rev 3 20 show ip bgp neighbors lt ip gt show ip bgp neighbors lt ip address gt Displays BGP summary information Syntax Description ip address Neighbor IP address advertised Displays routes advertised to the specified neighbor received Displays routes received and accepted from specified neighbor both Displays routes received from specified neighbor longer prefixes Displays the routes to the specified destination and any routes to a more specific destination Example If 10 20 30 0 24 longer prefixes is run all routes starting with 10 20 30 regardless of the prefix length 10 20 30 X 24 10 20 30 X 25 etc are dis played providing there are any such routes received sent from to that neighbor Default N A Config
266. e which is almost identical to GMT and this is the default time zone The no form of the command resets time zone to its default GMT Syntax Description zone word The possible forms this could take include continent city continent country city continent region country city ocean and or island Default GMT Configuration Mode Config History 3 1 0000 Role admin Example switch config clock timezone America North United_States Other New_York switch config show clock Time 04 21 44 Date 2012 02 26 Time zone America North United_States Other New_York switch config Related Commands show clock Note Mellanox Technologies 125 Mellanox Technologies Confidential Rev 3 20 ntp ntp disable enable peer server lt IP address gt version lt number gt disable no ntp disable enable peer server lt IP address gt disable Configures NTP The no form of the command negates NTP options Syntax Description disable Disables NTP enable Enables NTP peer or server Configures an NTP peer or server node IP address IPv4 or IPv6 address version lt number gt Specifies the NTP version number of this peer Possible values are 3 or 4 Default NTP is enabled NTP version number is 4 Configuration Mode Config History 3 1 0000 Role admin Example switch config no ntp peer 192 168 10 24 disable switch config
267. e Changing a route map only takes effect on routes received or sent after the change Mellanox Technologies 665 Mellanox Technologies Confidential Rev 3 20 neighbor route reflector client neighbor lt ip address gt lt peer group name gt route reflector client no neighbor lt ip address gt lt peer group name gt route reflector client Sets the neighbor as a client but does not set up the reflection itself The no form of the command disables route reflection for the specific peer Syntax Description ip address IP address of the neighbor peer group name Peer group name Default N A Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated notes and default Role admin Example switch config router bgp 100 neighbor 10 10 10 10 route reflector client Related Commands Note Mellanox Technologies 666 Mellanox Technologies Confidential Rev 3 20 neighbor send community neighbor lt ip address gt lt peer group name gt send community no neighbor lt ip address gt lt peer group name gt send community Configures the switch to send community attributes to the specified BGP neighbor The no form of the command disables sending community attributes for the specified peer Syntax Description ip address IP address of the neighbor peer group name Peer group name Default Enabled Configuration Mode Config Rout
268. e Config Interface Ethernet Config Interface Port Channel History 3 1 1400 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 7 switch config interface ethernet 1 7 switchport mode access switch config interface ethernet 1 7 show interfaces switchport Interface Mode Access vlan Allowed vlans ie alata kee bane Sets Sse P SPma ears ol Sse ne ae ses eae aa Eth1 2 access Eth1 3 access Eth1 4 1 access Eth1 4 2 access Eth1 5 access Eth1 6 access P034 access Po4096 access switch config interface ethernet 1 7 Related Commands show vlan show interfaces switchport switchport access vlan switchport trunk hybrid allowed vlan vlan Note Mellanox Technologies 417 Mellanox Technologies Confidential Rev 3 20 switchport access switchport access vlan lt vlan id gt no switchport access vlan Sets the port access VLAN The no form of the command sets the port access VLAN to 1 Syntax Description vlan id 1 4094 Default 1 Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 1400 First version 3 2 0500 Format change removed hybrid and access dcb options Previous command format was switchport hybrid access dcb access vlan lt vlan id gt 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interf
269. e Config Monitor Session History 3 3 3500 3 3 4000 Added Syntax Description Role admin Example switch config monitor session 1 congestion pause excessive frames switch config monitor session 1 Related Commands Note This command applies for all sessions on the same analyzer port Mellanox Technologies 536 Mellanox Technologies Confidential Rev 3 20 5 12 4 3 Show show monitor session show monitor session lt session id gt Displays monitor session configuration and status Syntax Description session id The monitor session ID Range is 1 7 Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch config show monitor session 1 Admin Enable Status Up Truncate Enable Destination interface eth1 2 Congestion type pause excessive frames Header format add ethernet header traffic class 2 vlan 10 priority 6 destination mac 00 0d ec f1 a9 c8 Source interfaces Interface direction eth1 1 both switch config Related Commands Note Mellanox Technologies 537 Mellanox Technologies Confidential Rev 3 20 show monitor session summary show monitor session summary Displays monitor session configuration and status summary Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch config
270. e context configure the interface mode to Trunk Run switch standalone master config interface ethernet 1 35 switchport mode trunk switch standalone master config interface ethernet 1 35 5 4 4 Configuring Hybrid Mode VLAN Membership gt To configure Hybrid mode VLAN membership Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a VLAN Run switc switc config vlan 10 config vlan 10 Step 4 Change back to config mode Run switc config vlan 10 exit switc j config Step 5 Enter the interface context Run config interface ethernet 1 35 config interface ethernet 1 35 switc n switch Step 6 From within the interface context configure the interface mode to Hybrid Run hernet 1 35 switchport mode hybrid hernet 1 35 switc switc config interface e config interface e Step 7 From within the interface context configure the allowed VLAN membership Run hernet 1 35 switchport hybrid allowed vlan add 10 hernet 1 35 switc switc config interface e config interface e Step 8 Change to config mode again Run switc switc config interface ethernet 1 35 exit config Mellanox Technologies 413 Mellanox Technologies Confidential Rev 3 20 5 4 5 Commands vlan vlan lt vlan id gt lt vlan range gt no vlan lt vlan id gt
271. e from which to merge settings Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration merge new config file switch config Related Commands Note e No configuration files are modified during this process e The configuration name must be a non active configuration file Mellanox Technologies 165 Mellanox Technologies Confidential Rev 3 20 configuration move configuration move lt source name gt lt dest name gt Moves a configuration file Syntax Description source name Old name of file to move dest name New name for moved file Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show configuration files examplel initial initial bak initial prev switch config configuration move examplel example2 switch config show configuration files example2 initial initial bak initial prev switch config Related Commands show configuration Note This command does not affect the current running configuration e The active configuration file may not be the target of a move Mellanox Technologies 166 Mellanox Technologies Confidential Rev 3 20 configuration new configuration new lt filename gt factory keep basic keep connect Creates a new configuration file under the specified name The parameters specify what configuration if any to
272. e g 24 or 255 255 255 0 detail Displays detailed information about a subset of the bgp learned routes longer prefixes Displays the routes to the specified destination and any routes to a more specific destination Example If 10 20 30 0 24 longer prefixes is run all routes starting with 10 20 30 regardless of the prefix length 10 20 30 X 24 10 20 30 X 25 etc are dis played providing there are any such routes received sent from to that neighbor Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip bgp BGP table version is 100 local router ID is 16 0 1 1 Status codes s suppressed d damped h history valid gt best i internal r RIB failure S Stale m multipath b backup path x best external Origin codes i IGP e EGP incomplete 100 100 100 0 24 2 2 2 2 0 2 50 100 100 100 100 0 24 2 2 2 12 012 50 100 e Network Next Hop Metric LocPrf Weight Path 20 20 20 0 24 252s252 0 2 20 e 40 40 40 0 24 4 4 4 4 0 4 40 ais 100 100 90 32 28 2o22 2 0 2 100 i 100 100 100 0 24 4 4 4 4 0 4 50 i switch config Related Commands N A Note Mellanox Technologies 678 Mellanox Technologies Confidential show ip bgp community Rev 3 20 show ip bgp community lt comm gt lt comm gt lt comm gt exact detail Displays information about the BGP routes RIB filtered according to communities
273. e no form of the command disables sFlow without deleting the configuration Syntax Description N A Default Disabled Configuration Mode Config History 3 3 3500 Role admin Example switch config sflow enable switch config Related Commands Note Mellanox Technologies 543 Mellanox Technologies Confidential Rev 3 20 sflow sflow Enters sFlow configuration mode Syntax Description N A Default N A Configuration Mode Config History 3 3 3500 Role admin Example switch config sflow switch config sflow Related Commands Note Mellanox Technologies 544 Mellanox Technologies Confidential Rev 3 20 5 13 7 2 Config sFlow sampling rate sampling rate lt rate gt no sampling rate Sets sFlow sampling ratio The no form of the command resets this parameter to its default value Syntax Description rate Sets the number of packets passed before selecting one for sampling The range is 4000 16777215 Zero dis ables sampling Default 16000 Configuration Mode Config sFlow History 3 3 3500 Role admin Example switch config sflow sampling rate 16111 switch config sflow Related Commands Note Mellanox Technologies 545 Mellanox Technologies Confidential Rev 3 20 max sample size max sample size lt packet size gt no max sample size Sets the maximum size of sampled pac
274. e originating ports LAG groups exchange Lag Aggregation Control Protocol LACP packets in order to align the functionality between both endpoints of the LAG To equally send traffic on all LAG links the switch uses a hash function which can use a set of attributes as key to the hash function As many as 16 physical ports can be aggregated on a single LAG 5 2 1 Configuring Static Link Aggregation Group LAG gt To configure a static LAG Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a port channel entity Run switch config interface port channel 1 switch config interface port channel 1 Step 4 Change back to config mode switch config interface port channel 1 exit switch config Step 5 Add a physical port to the port channel Run switch config interface ethernet 1 4 channel group 1 mode on switch config interface ethernet 1 4 P If the physical port is operationally up this port becomes an active member of the ad aggregation Consequently it becomes able to convey traffic 5 2 2 Configuring Link Aggregation Control Protocol LACP gt To configure LACP Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a port channel entity Run switch config interface port channel 1 switch config interface port channel 1 Step 4 Change back to co
275. e sessions progress enable Enables progress updates terminal length Sets the number of lines for the current terminal Valid range is 5 999 terminal resize Resizes the CLI terminal settings to match the actual terminal window terminal type Sets the terminal type Valid options are e ansi e console dumb e linux e unknown e vt52 e yvtl00 e vtl02 e vt220 e vt320 e xterm terminal width Sets the width of the terminal in characters Valid range is 34 999 x display full lt display gt Specifies the display as a raw string e g localhost 0 0 Default Configuration Mode History Role N A Config 3 1 0000 admin Mellanox Technologies 42 Mellanox Technologies Confidential Rev 3 20 Example switch config cli session auto logout switch config Related Commands show terminal Note Mellanox Technologies 43 Mellanox Technologies Confidential Rev 3 20 show cli show cli Displays the CLI configuration and status Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show cli CLI current session settings Maximum line size 8192 Terminal width 171 columns Terminal length 38 rows Terminal type xterm X display setting none Auto logout disabled Paging enabled Progress tracking enabled Prefix modes di
276. e switch config email notify event process crash switch config show email events Failure events for which emails will be sent process crash A process in the system has crashed unexpected shutdown Unexpected system shutdown Informational events for which emails will be sent liveness failure A process in the system was detected as hung process exit A process in the system unexpectedly exited cpu util ok CPU utilization has fallen back to normal levels cpu util high CPU utilization has risen too high disk io ok Disk I O per second has fallen back to acceptable levels temperature too high Temperature has risen too high All events for which autosupport emails will be sent process crash A process in the system has crashed liveness failure A process in the system was detected as hungswitch config switch config Related Commands show email Note This does not affect auto support emails Auto support can be disabled overall but if it is enabled all auto support events are sent as emails Mellanox Technologies 221 Mellanox Technologies Confidential Rev 3 20 email notify recipient email notify recipient lt email addr gt class info failure detail no email notify recipient lt email addr gt class info failure detail Adds an email address from the list of addresses to which to send email notifications of events The no form of the command removes an email address from t
277. e terminal Step 2 Disable setting IP addresses using the DHCP using the following command switch config no interface lt ifname gt dhcp Step 3 Define your interfaces statically using the following command switch config interface lt ifname gt ip address lt IP address gt lt netmask gt 4 1 2 Configuring IPv6 Address on the Management Interface Step 1 Enable IPv6 on this interface switch config interface mgmt0 ipv6 enable Step 2 Set the IPv6 address to be configured automatically switch config interface mgmt0 ipv6 address autoconfig Step 3 Verify the IPv6 address is configured correctly switch config show interfaces mgmt0 brief 4 1 3 Dynamic Host Configuration Protocol DHCP DHCP is used for automatic retrieval of management IP addresses For all other systems and software versions DHCP is disabled by default If a user connects through SSH runs the wizard and turns off DHCP the connection is immediately terminated as the management interface loses its IP address Da lt localhost gt ssh admin lt ip address gt Mellanox MLNX OS Switch Management Password Mellanox Switch Mellanox configuration wizard Do you want to use the wizard for initial configuration yes Step 1 Hostname my switch Step 2 Use DHCP on mgmt0 interface yes no lt localhost gt In such case the serial connection should be used Mellanox Technologies 79 Mellanox Technologies Confident
278. eaningful if traps are enabled though the list of hosts may still be edited if traps are disabled Refer to snmp server enable command Mellanox Technologies 346 Mellanox Technologies Confidential Rev 3 20 snmp server listen snmp server listen enable interface lt ifName gt no snmp server listen enable interface lt ifName gt Configures SNMP server interface access restrictions The no form of the command disables the listen interface restricted list for SNMP server Syntax Description enable Enables SNMP interface restrictions on access to this system ifName Adds an interface to the listen list for SNMP server For example mgmt0 mgmt Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp listen enable switch config show snmp SNMP enabled yes SNMP port 161 System contact System location Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 Trap sinks 10 10 10 10 Enabled yes Type traps version 1 Port 3 Community public default switch config Related Commands show snmp Note If enabled and if at least one of the interfaces listed is eligible to be a listen interface then SNMP requests will only be accepted on those interfaces Otherwise SNMP
279. echnologies 265 Mellanox Technologies Confidential Rev 3 20 Idap port Idap port lt port gt no ldap port Sets the TCP port on the LDAP server to connect to for authentication The no form of the command resets this attribute to its default value Syntax Description port TCP port number Default 389 Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap port 1111 switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute uid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version ar Referrals yes Server port PAEL Search Timeout SM5 Bind Timeout tO SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers 1 10 10 10 10 2 10 10 10 12 switch config Related Commands show aaa show ldap Note Mellanox Technologies 266 Mellanox Technologies Confidential Rev 3 20 Idap referrals Idap referrals no Idap referrals Enables LDAP referrals The no form of the command disables LDAP referrals Syntax Description N A Default LDAP referrals are enabled Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config no ldap referrals
280. echnologies Confidential Rev 3 20 description description lt string gt no description Enters a description for the interface The no form of the command sets the description to default Syntax Description string User defined string Default nd Configuration Mode Config Interface Loopback History 3 3 5006 Role admin Example switch config interface loopback 10 description my ip interface Related Commands interface loopback Note Mellanox Technologies 577 Mellanox Technologies Confidential Rev 3 20 show interfaces loopback show interface loopback lt id gt Shows the attribute of the interface loopback Syntax Description id A numeric range of 1 32 Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config show interfaces loopback 2 Loopback 2 Internet Address 2 2 2 2 32 Broadcast address 2 2 2 2 MTU 1500 bytes Description my loopback switch config Related Commands Note Mellanox Technologies 578 Mellanox Technologies Confidential Rev 3 20 6 1 5 4 Routing and ECMP ip route ip route lt IP prefix gt lt netmask gt lt next hop IP address gt no ip route lt IP prefix gt lt netmask gt lt next hop IP address gt Sets a static route The no form of the command deletes the static route Syntax Description IP address IPv4 address netmask There are two
281. echnologies Confidential Rev 3 20 4 7 4 Commands 4 7 4 1 Email Notification email autosupport ssl mode email autosupport ssl mode none tls tls none no email autosupport ssl mode Configures type of security to use for auto support email The no form of the command resets auto support email security mode to its default Syntax Description none Does not use TLS to secure auto support email tls Uses TLS over the default server port to secure auto support email and does not send an email if TLS fails tls none Attempts TLS over the default server port to secure auto support email and falls back on plaintext if this fails Default tls none Configuration Mode Config History 3 2 3000 Role admin Example switch config email autosupport ssl mode tls Related Commands N A Note Mellanox Technologies 214 Mellanox Technologies Confidential Rev 3 20 email autosupport ssl cert verify email autosupport ssl cert verify no email autosupport ssl cert verify Verifies server certificates The no form of the command does not verify server certificates Syntax Description N A Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config email autosupport ssl cert verify Related Commands N A Note Mellanox Technologies 215 Mellanox Technologies Confidential Rev 3 20 email autosupport ssl
282. echnologies Confidential Rev 3 20 ip pim border ip pim border no ip pim border Configures an interface on an IPv4 PIM border The no form of the command removes the interface from being a PIM border Syntax Description N A Default Disabled Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip pim border Related Commands Note PIM border blocks PIM control traffic but sends and receives all multicast traffic Mellanox Technologies 741 Mellanox Technologies Confidential Rev 3 20 ip pim bsr border ip pim bsr border no ip pim bsr border Prevents the switch from sending bootstrap router messages BSMs over the config uration mode interface The no form of the command resets the parameter to its default value Syntax Description N A Default no pim bsr border Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5200 Role admin Example switch config interface vlan 10 ip pim bsr border Related Commands Note Mellanox Technologies 742 Mellanox Technologies Confidential Rev 3 20 debug ethernet ip pim debug ethernet ip pim all control p
283. econd too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config stats alarm cpu_util_indiv clear switch config Related Commands show stats alarm Note Mellanox Technologies 296 Mellanox Technologies Confidential Rev 3 20 stats alarm lt alarm id gt enable stats alarm lt alarm id gt enable no stats alarm lt alarm id gt enable Enables the alarm The no form of the command disables the alarm notifications will not be received Syntax Description alarm ID Alarms supported by the system for example e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees Default The default is different per alarm id
284. ed Commands show ip igmp snooping groups Note If the deleted interface is the last port it deletes the entire multicast group Mellanox Technologies 468 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping mrouter ip igmp snooping mrouter interface lt type gt lt number gt no ip igmp snooping mrouter interface lt type gt lt number gt Creates a static multicast router port on a specific VLAN on a specific interface The no form of the command removes the static multicast router port from a specific VLAN Syntax Description interface lt type gt lt num Attaches the group to a specific interface ber gt type ethernet or port channel Default No static mrouters are configured Configuration Mode Config VLAN History 3 1 1400 Role admin Example switch config vlan 1 switch config vlan 1 ip igmp snooping mrouter interface ethernet 1 1 switch config vlan 1 show ip igmp snooping mrouter Vlan Ports 1 Eth1 1 static switch config vlan 1 Related Commands show ip igmp snooping mrouter Note The multicast router port can be created only if IGMP snooping is enabled both glob ally and on the VLAN Mellanox Technologies 469 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping unregistered multicast ip igmp snooping unregistered multicast lt options gt no ip igmp snooping unregistered multicast Sets the behavior of the snoopin
285. ed configuration file from an external file server to a switch switch config configuration text fetch scp root my server root tmp my filename gt To apply a text based configuration file switch config configuration text file my filename apply When applying a text based configuration file the configuration is appended to the switch s existing configuration Reboot is not required Mellanox Technologies 150 Mellanox Technologies Confidential Rev 3 20 4 4 4 Commands 4 4 4 1 File System debug generate dump debug generate dump Generates a debug dump Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config debug generate dump Generated dump sysdump switch 112104 201140526 091707 tgz switch config Related Commands file debug dump Note The dump can then be manipulated using the file debug dump commands Mellanox Technologies 151 Mellanox Technologies Confidential Rev 3 20 file debug dump file debug dump delete lt filename gt latest email lt filename gt latest upload lt filename gt latest lt URL gt Manipulates debug dump files Syntax Description delete lt filename gt lat Deletes a debug dump file est email lt filename gt lat Emails a debug dump file to pre configured recipients est for informational events regardless of w
286. ed on each L2 multicast capable network for each RP DF serves all multicast groups that share the same RP and has following duties e Itis an only router that is responsible to receive and forward upstream multicast packets on that L2 segment e Itis arouter that should collect all Join requests from the routers on that L2 segment e Itis an only router that will distribute downstream multicast packets on that segment Once Designated forwarders are elected and forwarding rules are established PIM routers can start to issue G Join messages and build shared distribution trees When shared tree is created multicast sources can start to exchange data with receivers and it doesn t require any additional maintenance of the multicast states Compared to PIM SM in bidirectional PIM e Each router will keep only G state and not G and S G like in PIM SM e Multicast traffic from the beginning is forwarded naturally no need to tunnel data to RP e Resulting multicast tree is not shortest path optimal and converges around selected Ren dezvous point but is shared among all participants in that multicast group In BIDIR PIM the packet forwarding rules have been improved over PIM SM allowing traffic to be passed up the shared tree toward the RP To avoid multicast packet looping bidir PIM intro duces a new mechanism called designated forwarder DF election which establishes a loop free SPT rooted at the RP 6 5 3 Bootstrap Router
287. el notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field enabled Subsecond timestamp precision 1 whole digit 3 fractional digits Levels at which messages are logged CLI commands notice Audit messages notice switch config Mellanox Technologies 184 Mellanox Technologies Confidential Rev 3 20 Related Commands show logging Note This is independent of the standard syslog date and time at the beginning of each message in the format of July 15 18 00 00 Aside from indicating the year at full precision its main purpose is to provide subsecond precision Mellanox Technologies 185 Mellanox Technologies Confidential Rev 3 20 logging level logging level cli commands lt log level gt audit mgmt lt log level gt Sets the severity level at which CLI commands or the management audit message that the user executes are logged This includes auditing of both configuration changes and actions Syntax Description cli commands Sets the severity level at which CLI commands which the user executes are logged audit mgmt Sets the severity level at which all network manage ment audit messages are logged log level e alert alert notification action must be taken immediately e crit critical condition
288. el compatibility parameters show lacp interfaces ethernet Note e Setting the mode to active passive is possible only in LACP is enabled The first port in the LAG decide if the LAG will be static on or LACP active pasive e All the ports in the LAG must have the same configuration determines by the first port added to the LAG The port with a different configuration will be rejected for the list of dependencies refer to show interfaces port channel compatibility parameters Mellanox Technologies 381 Mellanox Technologies Confidential Rev 3 20 show lacp counters show lacp counters Displays the LACP PDUs counters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show lacp counters LACPDUs Marker Marker Response LACPDUs Port Sent Recv Sent Recv Sent Recv Illegal Unknown switch config switch config Related Commands Note Mellanox Technologies 382 Mellanox Technologies Confidential Rev 3 20 show lacp interfaces ethernet show lacp interface ethernet lt inf gt Displays the LACP interface configuration and status Syntax Description inf Interface number for example 1 1 Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show lacp interfaces ethernet 1 4 Port
289. ellanox Technologies 240 Mellanox Technologies Confidential Rev 3 20 aaa authentication attempts track enable aaa authentication attempts track enable no aaa authentication attempts track enable Enables tracking of authentication failures The no form of the command disables tracking of authentication failures Syntax Description N A Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config aaa authentication attempts track enable Related Commands N A Note e This is required for the lockout functionality described below but can also be used on its own for informational purposes e Disabling tracking does not clear any records of past authentication failures or the locks in the database However it does prevent any updates to this database from being made no new failures are recorded It also disables lockout preventing new lockouts from being recorded and existing lockouts from being enforced Mellanox Technologies 241 Mellanox Technologies Confidential Rev 3 20 aaa authentication attempts lockout aaa authentication attempts lockout enable lock time max fail unlock time no aaa authentication attempts lockout enable lock time max fail unlock time Configures lockout of accounts based on failed authentication attempts The no form of the command clears configuration for lockout of accounts based on failed authentication atte
290. ember of Figure 14 MAC Learning Disable Example Case Server host1 VLAN 80 RSC Mellanox Technologies 421 Mellanox Technologies Confidential Rev 3 20 5 5 3 Commands mac address table aging time mac address table aging time lt age gt no mac address table aging time Sets the maximum age of a dynamically learnt entry in the MAC address table The no form of the command resets the aging time of the MAC address table to its default Syntax Description age 10 1000000 seconds Default 300 Configuration Mode Config History 3 1 0600 Role admin Example switch config mac address table aging time 50 switch config show mac address table aging time Mac Address Aging Time 50 switch config Related Commands show mac address table show mac address table aging time Note Mellanox Technologies 422 Mellanox Technologies Confidential Rev 3 20 mac address table static mac address table static lt mac address gt vlan lt vlan gt interface lt if type gt lt if number gt no mac address table static lt mac address gt vlan lt vlan gt interface lt if type gt lt if number gt Configures a static MAC address in the forwarding database The no form of the command deletes a configured static MAC address from the for warding database Syntax Description mac address Destination MAC address vlan VLAN ID or VLAN range if type Ethernet
291. emote Shows LLDP remote interface table information Syntax Description inf Local interface number e g 1 1 Default N A Configuration Mode Any Command Mode History 3 2 0300 First version 3 3 4200 Updated output Role admin Mellanox Technologies 492 Mellanox Technologies Confidential Rev 3 20 Example switch config show lldp interfaces ethernet lt number gt Ethernet lt port number gt example Ethernet 1 1 Latest LLDPDU received on lt date gt e g date Thu Feb 14 12 08 29 2013 new field emote Index emo emo e e chassis id lt byte array gt chassis id subtype lt sub type gt e port id lt byte array gt port id subtype lt sub type gt emote port description lt byte array gt emote emote e system name lt byte array gt system description lt byte array gt emo IB gt anagement Table theoretially remote can send more then one management address Future RemoteIndex Subtype Address ifSubtype ifId OID 1 ipV4 1 10 10 10 10 ifIndex 2 1 mgmt0 lt 0id gt 1 ipV4 1 10 10 10 11 ifIndex 3 2 mgmt1 lt 0id gt Unknown TLVs Table Future Type Info system capabilities supported lt enum parced as defined in the MIB gt enable lt enum parced as defined in the lt integer gt lt byte array gt lt integer gt lt byte array gt Organizationally Defined Information Table Future OUI subtype Index DefInfo lt byte array gt lt i
292. ented IP Diagnostic Not implemented 3 3 Secure Shell SSH R It is recommended not to use more than 100 concurrent SSH sessions to the switch Da 3 3 1 Adding a Host and Providing an SSH Key gt To add entries to the global known hosts configuration file and its SSH value Step 1 Change to Config mode Run switch standalone master gt enable switch standalone master configure terminal switch standalone master config Mellanox Technologies 37 Mellanox Technologies Confidential Rev 3 20 Step 2 Add an entry to the global known hosts configuration file and its SSH value Run switch standalone master config ssh client global known host myserver ssh rsa AAAAB3NzaClyc2EAAAABIWAAAIBAsXeklqc8T0EN2mnMcVcfhueaRYzIVgt 4rVsrERI jmlJh4mkYYIa8hGGikNat t5xw2dRrNxnHYLK5 1bUsSG1ZNwZT1Dpme3pAZeMY 764 ZMgGIW9xOuaXgAA3eBeoU jFdi6 1BqchWk0nTbt gMfI MK heQNns7AtTrvqg O5ryIc switch standalone master config Step 3 Verify what keys exist in the host Run switch standalone master config show ssh client SSH client Strict Hostkey Checking ask SSH Global Known Hosts Entry 1 myserver Finger Print dd d be d7 6c bl e4 16 df 61 25 2f b1 53 al 06 No SSH user identities configured No SSH authorized keys configured switch standalone master config 3 3 2 Retrieving Return Codes when Executing Remote Commands gt To stop the CLI and set the system to send return e
293. ential Rev 3 20 show stats alarm show stats alarm lt Alarm ID gt rate limit Displays status of all alarms or the specified alarm Syntax Description Alarm ID May be e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees rate limit Displays rate limit parameters Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show stats alarm Alarm cpu_util_indiv Average CPU utilization too high ok Alarm disk_io Operating System Disk I O per second too high dis abled Alarm fs_mnt Free filesystem space too low Alarm intf_util Network utilization too high Alarm memory_pct_used Too much memory in use Alarm paging Paging activity too high k disabled disabled k k OoOOnAA O Alarm temperature Temperature is too high switch config Related Commands stats alarm Note Mellanox Technologies 310 Mellanox Technologies Confidential Rev 3 20 show stats chd show stats chd lt CHD ID gt Display
294. enticate dial in users and authorize their access to the requested system or service It is commonly used for embedded network devices such as routers modem servers switches and so on RADIUS is currently the de facto standard for remote authentication It is prevalent in both new and legacy systems It is used for several reasons e RADIUS facilitates centralized user administration e RADIUS consistently provides some level of protection against an active attacker Mellanox Technologies 232 Mellanox Technologies Confidential Rev 3 20 4 9 1 2 TACACS TACACS Terminal Access Controller Access Control System widely used in network environ ments is a client server protocol that enables remote access servers to communicate with a cen tral server to authenticate dial in users and authorize their access to the requested system or service It is commonly used for providing NAS Network Access Security NAS ensures secure access from remotely connected users TACACS implements the TACACS Client and provides the AAA Authentication Authorization and Accounting functionalities TACACS is used for several reasons e Facilitates centralized user administration e Uses TCP for transport to ensure reliable delivery e Supports inbound authentication outbound authentication and change password request for the authentication service e Provides some level of protection against an active attacker 4 9 1 3 LDAP LDAP Lightweight Directo
295. er BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 send community Related Commands N A Note Mellanox Technologies 667 Mellanox Technologies Confidential Rev 3 20 neighbor shutdown neighbor lt ip address gt lt peer group name gt shutdown no neighbor lt ip address gt lt peer group name gt shutdown Disables BGP neighbor gracefully The no form of the command enables BGP neighbor Syntax Description ip address IP address of the neighbor peer group name Peer group name Default Enabled Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated note Role admin Example switch config router bgp 100 neighbor 10 10 10 10 shutdown Related Commands N A Note Disabling a neighbor terminates all its active sessions and removes associated routing information Mellanox Technologies 668 Mellanox Technologies Confidential Rev 3 20 neighbor soft reconfiguration inbound neighbor lt ip address gt lt peer group name gt soft reconfiguration inbound no neighbor lt ip address gt lt peer group name gt soft reconfiguration inbound Disables BGP neighbor gracefully The no form of the command restores the system default behavior retaining all routes from the specified neighbor or group Syntax Description ip address IP address of the neighbo
296. er R1 routing table for 10 0 40 24 will contain the following routes e 10 0 10 2 e 10 0 20 2 e 10 0 30 2 Figure 22 ECMP L2 Switch wy D200 Cin Fiero A Bey 10 0 40 D Router 2 Host 2 S Host 1 Router 1 The load balancing function of the ECMP is configured globally on the system Hash algorithm can be symmetric or asymmetric In symmetric hash functions bidirectional flows between routes will follow the same path while in asymmetric hash functions bidirec tional traffic can follow different paths in both directions The following load balancing types are supported e Source IP amp Port source IP SIP and source UDP TCP port If the packet is not UDP TCP only SIP is used for the hash calculation This is an asymmetric hash function e Destination IP amp Port destination IP DIP and destination UDP TCP port If the packet is not UDP TCP only DIP is used for the hash calculation This is an asymmetric hash function e Source and Destination IP amp Port destination and source IP as well as destination and source UDP TCP port If the packet is not UDP TCP only SIP DIP are used for the hash calculation This is a symmetric hash function e Traffic Class Load balance based on the traffic class assigned to the packet This is an asymmetric hash function e All default all above fields are part of the hash calculations This is a symmetric hash function Mellanox Technologies 562 Mellanox
297. er or match switches packets When the pattern is matched at the hardware lookup engine a specified action e g permit deny is applied The rule fields represent flow characteristics such as source and destination addresses protocol and VLAN ID ACL support currently allows actions of permit or deny rules and supports only ingress direc tion ACL search pattern can be taken from either L2 or L3 fields e g L2 L3 source and destina tion addresses protocol VLAN ID and priority or TCP port 5 11 1 Configuring Access Control List Access Control List ACL is configured by the user and is applied to a port once the ACL search engine matches search criteria with a received packet gt To configure ACL Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a MAC IPv4 ACL access list entity switc switc config mac access list mac acl h h config mac access list mac acl Step 4 Add a MAC IP rules to the appropriate access list switch config mac access list mac acl seq number 10 deny 0a 0a 0a 0a 0a 0a mask IERIE CIERRA aly Wisin Cos 2 Coco 30 switch config mac access list mac acl Step 5 Bind the created access list to an interface slot port or port channel switch config switch config interface ethernet 1 1 switch config interface ethernet 1 1 mac port access group mac acl 5 11 2 ACL Actions An ACL action is a s
298. ername monitor full name smith switch config show usernames USERNAME FULL NAME CAPABILITY ACCOUNT STATUS USERID System Administrator admin Password set admin System Administrator admin Password set monitor smith monitor Password set SHA512 xmladmin XML Admin User admin No password required xmluser XML Monitor User monitor No password required switch config Related Commands show usernames show users Note e To enable a user account just set a password on it or use the nopassword command to enable it with no password required for login e Removing a user account does not terminate any current sessions that user has open it just prevents new sessions from being established Encrypted password is useful for the show configuration command since the cleartext password cannot be recovered after it is set Mellanox Technologies 235 Mellanox Technologies Confidential Rev 3 20 show usernames show usernames Displays list of users and their capabilities Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show usernames USERNAME FULL NAME CAPABILITY ACCOUNT STATUS USERID System Administrator admin Password set admin System Administrator admin Password set monitor smith monitor Password set SHA512 xmladmin XML Admin User admin No password required xmluser XML Monitor User monitor No password
299. ertificate verification is enabled Mellanox Technologies 228 Mellanox Technologies Confidential Rev 3 20 show email show email events Shows email configuration or events for which email should be sent upon Syntax Description events show event list Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show email Mail hub Mail hub port 25 Domain system domain name Return address my address Include hostname in return address no Current reply address host localdomain Dead letter settings Save dead letter files yes Dead letter max age 5 days No recipients configured Autosupport emails Enabled no Recipient autosupport autosupport mellanox com Mail hub autosupport mellanox com switch config Related Commands show email Note Mellanox Technologies 229 Mellanox Technologies Confidential Rev 3 20 4 8 mDNS Multicast DNS mDNS protocol is used by the SM HA to deliver control information between the InfiniBand nodes via the management interface To block sending mDNS traffic from the management interface run the command no ha dns enable Mellanox Technologies 230 Mellanox Technologies Confidential Rev 3 20 4 8 1 Commands ha dns enable ha dns enable no ha dns enable Allows mDNS traffic The no form of the command blocks mDNS traffic from being sent from mgmt0 Sy
300. ertise Type5 10 0 2 2 2 0 255 255 255 0 10 10 10 10 Not Advertise Type3 10 0 Related Commands N A Note Mellanox Technologies 630 Mellanox Technologies Confidential Rev 3 20 6 3 BGP Border Gateway Protocol BGP is an exterior gateway protocol which is designed to transfer routing information between routers It maintains and propagates a table of routes which desig nates network reachability among autonomous systems ASs BGP neighbors or peers are routers configured manually to converse using the BGP protocol on top of a TCP session on port 179 A BGP speaker periodically sends keep alive messages to maintain the connection Network reachability includes such information as forwarding destina tions IPv4 or IPv6 together with a list of ASs that this information traverses and other attri butes so it becomes possible to construct a graph of AS connectivity without routing loops BGP makes possible to apply policy rules to enforce connectivity graph BGP routers communicate through TCP connection on port 179 Connection between BGP neighbors is configured manually or can be established dynamically by configuring dynamic lis ten groups When BGP runs between two peers in the same AS it is referred to as Internal BGP iBGP or Interior Border Gateway Protocol When it runs between separate ASs it is called External BGP eBGP or Exterior Border Gateway Protocol Both sides can initiate a connection after the in
301. ertized Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf area 0 stub Related Commands N A Note Mellanox Technologies 606 Mellanox Technologies Confidential Rev 3 20 area nssa area lt area id gt nssa default information originate metric lt m value gt metric type lt m type gt nosummary translate type7 always no area lt area id gt nssa default information originate no summary translate type7 always Configures an area as an OSPF not so stubby NSSA area The no form of the command removes the NSSA area configuration and changes the area to default Syntax Description area id OSPF area ID Range is 0 4294967295 default information origi A default type7 LSA Link State Advertisements is nate generated into the NSSA area m type Metric type for OSPF Range is 1 2 m value Metric value for OSPF Range is 1 65535 no summary Summary route will not be advertized into the NSSA area translate type7 always Type7 LSAs is translated to type5 LSAs Link State Advertisements Default Default m type 2 Default m value 10 Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf area 0 nssa Related Commands Note N A An area can be either stub NSSA or normal Mellanox Technologies 607 Mellanox Techno
302. es Referrals no Server port ame Gelb bet B Search Timeout 2725 Bind Timeout 10 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers 1 10 10 10 10 2 10 10 10 12 switch config Related Commands show aaa show ldap Note Mellanox Technologies 272 Mellanox Technologies Confidential Rev 3 20 show Idap show Idap Displays LDAP configurations Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config show ldap Related Commands Note User base DN User search scope Login attribute Bind DN Bind password Group base DN Group attribute LDAP version Referrals Server port Search Timeout Bind Timeout SSL mode Server SSL port SSL ciphers SSL cert verify SSL ca list LDAP servers 1s TOTO TOTO E O O SA O S 2 switch config show aaa show ldap ou department dc example dc com subtree uid my dn my password my group dn member 3 no 1111 5 10 none 636 not active TLS1 2 yes default ca list not active Mellanox Technologies 273 Mellanox Technologies Confidential Rev 3 20 4 10 Cryptographic X 509 IPSec This chapter contains commands for configuring generating and modifying x 509 certificates used in the system Certi
303. es Confidential Rev 3 20 4 1 6 2 Hostname Resolution hostname hostname lt hostname gt no hostname Sets a static system hostname The no form of the command clears the system hostname Syntax Description hostname A free form string Default Default hostname Configuration Mode Config History 3 1 0000 Role admin Example switch config hostname my switch hostname my Switch hostname config Related Commands show hosts Note Hostname may contain letters numbers and hyphens in any combination e Hostname may not contain other letters such as _ etc e Hostname may not begin with a hyphen e Hostname may be 1 63 characters long e Changing hostname stamps a new HTTPS certificate Mellanox Technologies 100 Mellanox Technologies Confidential Rev 3 20 ip name server ip name server lt IPv4 IPv6 address gt no name server lt IPv4 IPv6 address gt Sets the static name server The no form of the command clears the name server Syntax Description IPv4 v6 address IPv4 or IPv6 address Default No server name Configuration Mode Config History 3 1 0000 Role admin Example switch config ip name server 9 9 9 9 switch config show hosts Hostname switch Name server 9 9 9 9 configured Name server 10 211 0 121 dynamic Name server 172 30 0 126 dynamic Name server 10 4 0 135 dynamic Domain name lab mtl
304. es not specify a valid local user no further mapping is tried e local only Maps all remote users to the user specified by the aaa authorization map default user lt user name gt command Any vendor attributes received by an authenti cation server are ignored Default Default user admin Map order remote first Configuration Mode Config History 3 1 0000 Role admin Example switch config aaa authorization map default user admin switch config show aaa AAA authorization Default User admin Map Order remote first Authentication method s local Accounting method s tacacst switch config Mellanox Technologies 248 Mellanox Technologies Confidential Rev 3 20 Related Commands show aaa username Note If for example the user is locally defined to have admin permission but in a remote server such as RADIUS the user is authenticated as monitor and the order is remote first then the user will be given monitor permissions Mellanox Technologies 249 Mellanox Technologies Confidential Rev 3 20 show aaa show aaa Displays the AAA configuration Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show aaa AAA authorization Default User admin Map Order remote first Authentication method s local Accounting method s tacacst switch config
305. es of this attribute or the user will not be authorized to log in e After login authentication if the group dn is set a user must be a member of this group or the user will not be authorized to log in If the group is not set the default no authori zation checks are done Mellanox Technologies 263 Mellanox Technologies Confidential Rev 3 20 Idap host Idap host lt IP Address gt order lt number gt last no Idap host lt IP Address gt Adds an LDAP server to the set of servers used for authentication The no form of the command deletes the LDAP host Syntax Description IP Address IPv4 or IPv6 address number The order of the LDAP server last The LDAP server will be added in the last location Default No hosts configured Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap host 10 10 10 10 switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute sAMAccountName Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version 33 Referrals yes Server port 389 Search Timeout 2765 Bind Timeout 377 40 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL Ga List default ca list LDAP servers 1 10 10 10 10 2 10 10 10 12 switch config
306. essages fail all All failure traces control panel Control plane traces tlv TLV related trace configuration Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet dcbx all switch config Related Commands Note Mellanox Technologies 197 Mellanox Technologies Confidential Rev 3 20 debug ethernet ip debug ethernet ip all arp all dhcp relay all error igmp snooping all forward db messages group info Init shut packet dump query system resources management source info timer vlan info interface all arp packet dump buffer enet packet dump error fail all filter trace error trace event ospf adjacency all configuration ddp packet helper Inter face ism Irq packet Isa_packet lsu packet Enables debug traces for Ethernet routing specific modules The no form of the command disables the debug traces for ethernet routing protocols Mellanox Technologies 198 Mellanox Technologies Confidential Rev 3 20 Syntax Description all Enables debug traces for all routing modules arp all Enables the trace level for ARP dhcp relay all error Configures the trace level for DHCP e all Enables track traces e error Error code debug messages igmp snooping all for ward db messages group info Init shut packet dump query sys tem res
307. et 1 1 Related Commands show interfaces ethernet Note Mellanox Technologies 362 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Disables the interface The no form of the command enables the interface Syntax Description N A Default The interface is enabled Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1 shutdown switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note Mellanox Technologies 363 Mellanox Technologies Confidential Rev 3 20 description description lt string gt no description Sets an interface description The no form of the command returns the interface description to its default value Syntax Description string 40 bytes Default i Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1 description my interface switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note Mellanox Technologies 364 Mellanox Technologies Confidential Rev 3 20 speed speed lt port speed gt force no speed Sets the speed of the interface The no form of the command sets the speed of the interface to its defa
308. et of actions can be activated in case the packet hits the ACL rule gt To modify the VLAN tag of the egress traffic as part of the ACL permit rule Step 1 Create access list action profile a Create an action access list profile using the command access list action lt action profile name gt b Add rule to map a VLAN using the command vlan map lt vlan id gt within the action profile config uration mode Step 2 Create an access list and bind the action rule a Create an access list profile using the command ipv4 mac access list b Add access list rule using the command deny permit action lt action profile name gt Mellanox Technologies 512 Mellanox Technologies Confidential Rev 3 20 Step 3 Bind the access list to an interface using the command ipv4 mac port access group Create an action profile and add vlan mapping action switch config access list action my action switch config access list action my action vlan map 20 switch config access list action my action exit Create an access list and bind rules switch config mac access list my list switch config mac access list my list permit any any action my action switch config mac access list my list exit Bind an access list to a port Switch config interface ethernet 1 1 Switch config interface ethernet 1 1 mac port access group my list Mellanox Technologies 513 Mellanox Technologies Confidential Rev 3 20 5 11 3
309. eters to their default values Syntax Description interface Configures a specific ethernet port channel interface s agent IP if name Interface name e g mgmt0 mgmt1 ip address The sFlow agent s IP address i e the source IP of the packet loopback lt number gt Loopback interface number Range 1 32 vlan lt id gt Interface VLAN Range 1 4094 Default ip address 0 0 0 0 Configuration Mode Config sFlow History 3 3 3500 3 3 5200 Updated interface parameters Role admin Example switch config sflow agent ip 20 20 20 20 switch config sflow Related Commands Note The IP address here is used in the sFlow header Mellanox Technologies 550 Mellanox Technologies Confidential Rev 3 20 clear counters clear counters Clears sFlow counters Syntax Description N A Default N A Configuration Mode Config sFlow History 3 3 3500 Role admin Example switch config sflow clear counters switch config sflow Related Commands Note Mellanox Technologies 551 Mellanox Technologies Confidential Rev 3 20 sflow enable interface sflow enable no sflow enable Enables sFlow on this interface The no form of the command disables sFlow on the interface Syntax Description N A Default disable no view port channel member Configuration Mode Config Interface Ethernet Config Interface Port Channel Config Interface MLAG Port Channel
310. ets the administrative distance its default Syntax Description external Administrative distance for external BGP routes Range 1 255 internal Administrative distance for internal BGP routes Range 1 255 local Administrative distance for local BGP routes Range 1 255 Default external 200 internal 200 local 200 Configuration Mode Config Router BGP History 3 3 5006 Role admin Example switch config router bgp 100 distance 10 20 30 Related Commands N A Note e Routers use administrative distances to decide on a route when two protocols provide rout ing information to the same destination e Lower distance values correspond to higher reliability e Routes are external when learned from an external autonomous system e Routes are internal when learned from a peer in the local autonomous system Local routes are those networks listed with a network router configuration command often as back doors for the router or for the networks being redistributed from another process BGP routing tables do not include routes with a distance of 255 Mellanox Technologies 646 Mellanox Technologies Confidential Rev 3 20 graceful restart stalepath time graceful restart stalepath time lt interval gt no graceful restart stalepath time Configures the maximum time that stale routes from a restarting BGP neighbor are retained after a BGP session is reestablished with that peer The no form of the command resets to the default va
311. evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route is denied Mellanox Technologies 702 Mellanox Technologies Confidential Rev 3 20 match local preference match local preference lt value gt no match local preference Configures a route s entry local preference match The no form of the command removes a route map s entry local preference match Syntax Description value Range 1 2147483647 Default N A Configuration Mode Config Route Map History 3 3 5200 First version 3 4 0000 Updated value range Role admin Example switch config route map mymap permit 10 match local preference 10 Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e Ifall clauses fail to permit or deny the route the route is denied Mellanox Technologies 703 Mellanox Technologies Confidential Rev 3 20 match metric match metric lt value gt no match metric Configures a route s entry metric match The no form of the command removes a route map s entry metric match Syntax
312. everts the default cert name to system self signed the cert name value is optional and ignored Syntax Description cert name The name of the certificate Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config crypto certificate default cert name test Related Commands N A Note e A certificate must already be defined before it can be configured in the default cert role e If the named default cert is deleted from the database the default cert automatically becomes reconfigured to the factory default the system self signed certificate Mellanox Technologies 278 Mellanox Technologies Confidential crypto certificate generation Rev 3 20 crypto certificate generation default country code days valid email addr hash algorithm shal sha256 key size bits locality org unit organization state or prov Configures default values for certificate generation Syntax Description country code Configures the default certificate value for country code with a two alphanumeric character code or for none days valid Configures the default certificate value for days valid email addr Configures the default certificate value for email address hash algorithm shal sha256 Configures the default certificate hashing algorithm key size bits Configures the default certificate value for private ke
313. expire Default keep alive 60 seconds hold time 180 seconds Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated description Role admin Example switch config router bgp 100 neighbor 10 10 10 10 timers 65 195 Related Commands neighbor lt ip address gt remote as lt as number gt Note Hold time must be at least 3 seconds and should be three times longer than the keep alive setting Mellanox Technologies 670 Mellanox Technologies Confidential Rev 3 20 neighbor transport connection mode passive neighbor lt ip address gt lt peer group name gt transport connection mode passive no neighbor lt ip address gt lt peer group name gt transport connection mode passive Sets the TCP connection for the specified BGP neighbor or peer group to passive mode The no form of the command sets the specified BGP neighbor or peer group to active connection mode Syntax Description ip address IP address of the neighbor peer group name Peer group name Default TCP sessions initiated Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 transport connec tion mode passive Related Commands Note e When the peer s transport connection mode is set to passive it accepts TCP connections for BGP but does not initiate them BGP peers in act
314. ey dsa2 private key Key KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK KKK KKKKKKKKKKK Confirm KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK switch config show ssh server host keys SSH server configuration SSH server enabled yes Minimum protocol version 2 X11 forwarding enabled no SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA vl host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f f8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 c2 18 72 12 d6 DSA v2 host key 7c 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 Host Keys RSA vl host key switch 5ea5d8 1024 35 12457497995374010105491416867919987976776882016984375942831915584962796 99375406596085804272219042450456598705866658144854493132172365068789517 13570509420864336951833046700451354269467758379288848962624165330724512 16091899983038691571036219385577978596282214644533444813712105628654158 3022982220576029771297093 RSA v2 host key switch 5ea5d8 ssh rsa AAAAB3NzaClyc2EAAAABIWAAATEArB9i 5OnukAHNUOkwpCmE10m88kJgBzL22 F5tfaSn S OpvYxrceZeyuzXsoZ1VtFTk2Fydwy0YvMSOKcv2PuCrPZV GYd31Q0Enn22rEmr1PrKCrM11X1Uy6DF1r30gwWmlbaobmD1G gSziwz gc4Jgqf2CyXFq4pzaR1jarlVk DSA v2 host key switch 5ea5d8 ssh dss AAAAB3NzaC1lkc3MAAACBAMeJ3StnyaHhRbwv3tJqlWttDC35RZVC5iG4ZEVMMHp2 8VL940c yyuGh3 9VCdM9pEVal7hzZrsgHrNqakb YLD J7anGH3wpl19Fx81fe0RH3b1lo0JzGt tmJ 6R5momdoPCrKwEKiKABKE00jLz1VznpPOIHxjwF Tb R3dK5HwVzOYw bAAAAFQOCBOD
315. f one is present it must be valid Syntax Description require sig Requires images to be signed by a trusted signature Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config image options require sig switch config Related Commands show images Note Mellanox Technologies 146 Mellanox Technologies Confidential Rev 3 20 show bootvar show bootvar Displays the installed system images and the boot parameters Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show bootvar Installed images Partition 1 SX_PPC_M460EX 3 0 0000 dev HA 2012 01 22 08 47 59 ppc Last dobincp 2012 01 23 14 54 23 Partition 2 SX_PPC_M460EX 3 0 0000 dev HA 2012 01 18 09 52 41 ppc Last dobincp 2012 01 19 16 48 23 Last boot partition 1 Next boot partition 1 Boot manager password is set No image install currently in progress Image signing trusted signature always required Admin require signed images yes Settings for next boot only Fallback reboot on configuration failure yes default switch config Related Commands N A Note Mellanox Technologies 147 Mellanox Technologies Confidential Rev 3 20 show images show image Displays information about the system images and boot parameters Syntax Description N A Default
316. face show interface lt ifname gt configured brief Displays information about the specified interface configuration status and counters Syntax Description ifname The interface name e g mgmt0 mgmt1 lo loopback etc configured Displays the interface configuration brief Displays a brief info on the interface configuration and status Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces mgmt0 configured Interface mgmt0 configuration Enabled yes DHCP yes Zeroconf no IP address Netmask IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 0 Speed auto Duplex auto MTU 1500 Comment my interface switch config show interfaces mgmt0 brief Interface mgmt0 state Admin up yes Link up yes IP address 17 2 530325 2 Netmask 25572557070 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment my interface switch config Mellanox Technologies 98 Mellanox Technologies Confidential Rev 3 20 Related Commands N A Note Mellanox Technologies 99 Mellanox Technologi
317. face Management History 3 1 0000 Role admin Example switch config interface mgmt0 duplex auto switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address L72 30422 Netmask 25532557040 Secondary address 9 9 9 9 32 alias mgmt0 2 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment RX bytes 2970074221 TX bytes 468579522 RX packets 44983023 TX packets 1390539 RX mcast packets 0 TX discards 0 RX discards 0 TX errors 0 RX errors 0 TX overruns 0 RX overruns 0 TX carrier 0 RX frame 0 TX collisions 0 TX queue len 1000 switch config interface mgmt0 Mellanox Technologies 88 Mellanox Technologies Confidential Rev 3 20 Related Commands show interfaces lt ifname gt Note e Setting the duplex to auto also sets the speed to auto e Setting the duplex to one of the settings half or full also sets the speed to a manual set ting which is determined by querying the interface to find out its current auto detected state Mellanox Technologies 89 Mellanox Technologies Confidential Rev 3 20 speed speed lt speed gt no speed Sets the interface
318. face mlag port channel lt if number gt Creates an MLAG interface The no form of the command deletes the MLAG interface Syntax Description if number Integer Interface number range 1 1000 Default N A Configuration Mode Config History 3 3 4500 Role admin Example switch config interface mlag port channel 1 switch config interface mlag port channel 1 Related Commands Note The maximum number of interfaces is 64 e The default Admin state is disabled e Range configuration is possible on this interface e This interface number must be the same in all the MLAG switches Mellanox Technologies 401 Mellanox Technologies Confidential Rev 3 20 mlag channel group mode mlag channel group lt if number gt mode on active passive no mlag channel group Binds an Ethernet port to the MLAG LAG The no form of the command deletes the binding Syntax Description if number Integer Interface number range 1 1000 on Binds to static MLAG active Sets MLAG LAG in LACP active mode passive Sets MLAG LAG in LACP passive mode Default N A Configuration Mode Config Interface Ethernet History 3 3 4500 Role admin Example switch config interface ethernet 1 1 mlag channel group 1 mode on switch config interface ethernet 1 1 Related Commands Note Mellanox Technologies 402 Mellanox Technologies Confidential Rev 3 20 ipl
319. face port channel on page 376 e the command show lacp interfaces neighbor on page 384 Replaced e the command show lacp interfaces port channel with the command show lacp on page 386 e the command show lacp system identifier with the command show lacp interfaces system identifier on page 387 Rev 3 10 20 July 2014 Added e Section 5 14 Transport Applications on page 554 e Updated e Section 4 13 1 XML API on page 340 e MAC addresses note in Section 5 3 MLAG on page 389 Rev 3 00 05 June 2014 N A Rev 2 90 19 May 2014 Updated e the command show configuration on page 174 e the command show uboot on page 323 e the command show voltage on page 332 Rev 2 80 08 May 2014 Added e supported versions note in Section 5 8 IGMP Snooping on page 461 Rev 2 60 10 April 2014 N A Rev 2 50 April 2014 Updated e Section 3 1 7 Command Output Filtering on page 31 e the command show protocols on page 338 e Section 5 1 1 Break Out Cables on page 356 e the command show mac address table on page 426 e the command deny permit MAC ACL rule on page 516 e the command show mac ipv4 access lists on page 522 Mellanox Technologies 8 Mellanox Technologies Confidential Rev 3 20 Table 1 Document Revision History pocine Date Description Revision Rev 2 40 February 2014 Updated e Section 4 3 5 2
320. ficates are used for creating a trusted SSL connection to the system Crypto commands also cover IPSec configuration commands used for establishing a secure con nection between hosts over IP layer which is useful for transferring sensitive information 4 10 1 Commands crypto ipsec peer local crypto ipsec peer lt IPv4 or IPv6 address gt local lt IPv4 or IPv6 address gt enable keying ike auth hmac md5 hmac sha1 hmac sha256 null dh group dis able encrypt exchange mode lifetime local mode peer identity pfs group preshared key prompt preshared key transform set manual auth disable encrypt local spi mode remote spi Configures ipsec in the system Mellanox Technologies 274 Mellanox Technologies Confidential Rev 3 20 Syntax Description enable Enables IPSec peering ike Configures IPSec peering using IKE ISAKMP to man age SA keys It has the following optional parameters e auth Configures the authentication algorithm for IPSec peering e dh group Configures the phase Diffie Hellman group proposed for secure IKE key exchange e disable Configures this IPSec peering administratively disabled e encrypt Configures the encryption algorithm for IPSec peering e exchange mode Configures the IKE key exchange mode to propose for peering e lifetime Configures the SA lifetime to propose for this IPSec peering e local identity Configures the ISAKMP payload identif
321. fidential Rev 3 20 show vrrp show vrrp interface lt type gt lt number gt vr lt id gt Displays VRRP brief configuration and status Syntax Description interface lt type gt lt num Filters the output to a specific interface type and num ber gt ber vr lt id gt Filters the output to a specific virtual router Range 1 10 Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show vrrp Interface VR Pri Time Pre State VR IP addr Eth1 5 1 200 2s Y Init 192 0 1 10 switch config Related Commands Note Mellanox Technologies 782 Mellanox Technologies Confidential Rev 3 20 show vrrp detail show vrrp detail interface lt type gt lt number gt vr lt id gt Displays detailed VRRP configuration and status Syntax Description interface lt type gt lt num Filters the output to a specific interface type and num ber gt ber vr lt id gt Filters the output to a specific virtual router Range 1 255 Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show vrrp detail VRRP Admin State Enabled Vlan20 Group 1 IPV4 Instance Admin State Enabled State Backup Virtual IP Address 20 20 20 40 Priority lt 200 Advertisement interval sec 2 Preemption Enabled Virtual MAC address AA BB CC DD EE FF switch config
322. fig logging debug files delete current switch config Related Commands Note Mellanox Technologies 192 Mellanox Technologies Confidential Rev 3 20 show logging show logging Displays the logging configurations Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show logging Local logging level info Override for class mgmt front warning Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field enabled Subsecond timestamp precision 1 whole digit 3 fractional digits Levels at which messages are logged CLI commands info Audit messages notice switch config Related Commands logging fields logging files rotation logging level logging local logging receive logging lt syslog IP address gt Note Mellanox Technologies 193 Mellanox Technologies Confidential Rev 3 20 show log show log continues files lt file number gt not matching lt reg exp gt Displays the log file with optional filter criteria Syntax Description continues Displays the last few lines of the current log file and then continues to display new lines as they
323. figuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match as path my list Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route is denied Mellanox Technologies 697 Mellanox Technologies Confidential Rev 3 20 match community match community lt list of communities gt exact match no match community lt list of communities gt Creates a route map clause entry that matches a route if it contains at least the speci fied communities The no form of the command removes the match clause Syntax Description list of communities List of standard communities lt aa nn gt e lt number gt e internet e local AS e no advertise e no export exact match Creates a route map clause entry that matches the route s communities exactly Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match community 1 100 3 52 Related Commands N A Note e When a clause contains
324. figuring IPv6 Address on the Management Interface 79 4 1 3 Dynamic Host Configuration Protocol DHCP 0 004 79 4TA Default Gateway scese eerai sri e ne EE EE E E E ites 80 4 1 5 In Band Management n ase EIRE ce RE EE NS 80 41 0 Commands e or a E E E a E NE E eas 82 4 2 NTP Clock amp Time Zones 0 eee cece eee ene 123 4 2 1 Commands ok kh OWE AGS VRAIN EASA RAAB RASH GOA Ro eas 124 4 3 Software Management 0 0 eee eee cece ene 130 4 3 1 Upgrading MLNX OS Software Preconditions 130 4 3 2 Upgrading MLNX OS Software 0 00 eee 130 4 3 3 Deleting Unused Images 02 6 5 cc os ide ed ene eee eee a ees 133 4 3 4 Downgrading MLNX OS Software 0 0 eee 134 4 3 5 Upgrading System Firmware 0 0 0 cee cece eee 137 45326 Commands Ans a cera et liga OAR thie re ce Soles BoB Meat E Bad aan 139 4 4 Configuration Management 0 0 cee een eee 149 4 4 1 Saving a Configuration File 0 00 0 eee eee 149 4 4 2 Loading a Configuration File 0 0 0 0 eee eee eee eee 149 4 4 3 Managing Configuration Files 0 0 eee eee eee eee eee 149 444 Commands s c lt o ther dates Ghee Ahhh eed bade each ned 151 AS TOS SiN 8 vein lst yee BI gre WA Aout al ee RNa BA REALE ge ee ea ee 176 ASL SMOMILOR oree he 42s wae grasa dees baa ete a eh ga Po UR E belt AROE EAA 176 45 2 Remote Lossin sco cite
325. file i interface M secret r file s snaplen T type w file W filecount y datalinktype Z user expression Invokes standard binary passing command line parameters straight through Runs in foreground printing packets as they arrive until the user hits Ctrl C Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config tcpdump OO S7 138 6780812 IP 192 168 10 7 88n gt 192 168 1061 54155 P 1494624 1494800 176 ack 625 win 90 lt nop nop timestamp 5842763 858672398 gt OOrsS7TI38v678860 IP 192 168 10 7 ssh gt 192 166 10 1 541552 P 1494800 1495104 304 ack 625 win 90 lt nop nop timestamp 5842763 858672398 gt 9141 packets captured 9142 packets received by filter 0 packets dropped by kernel switch config Related Commands N A Note Mellanox Technologies 122 Mellanox Technologies Confidential Rev 3 20 4 2 NTP Clock amp Time Zones Network Time Protocol NTP is a networking protocol for clock synchronization between com puter systems over packet switched variable latency data networks NTP is intended to synchro nize all participating computers to within a few milliseconds of Coordinated Universal Time UTC and is designed to mitigate the effects of variable network latency NTP can usually main tain time to within tens of milliseconds over the public Internet and can
326. file may have the name active Mellanox Technologies 172 Mellanox Technologies Confidential Rev 3 20 write write memory local terminal Saves or displays the running configuration Syntax Description memory Saves running configuration to the active configuration file It is the same as configuration write local Saves the running configuration only on the local node It is the same as configuration write local terminal Displays commands to recreate current running config uration It is the same as show running config Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config write terminal Running database initial Generated at 20114 05 27 10 05 16 0000 Hostname switch Network interface configuration interface mgmt0O comment interface mgmt0 create interface mgmt0 dhcp interface mgmt0 display interface mgmt0 duplex auto interface mgmtO mtu 1500 no interface mgmt0O shutdown interface mgmt0 speed auto no interface mgmt0 zeroconf Ht Local user account configuration username a capability admin no username a disable username a disable password switch config Related Commands show running config configuration write Note Mellanox Technologies 173 Mellanox Technologies Confidential Rev 3 20 show configuration show configuration audit
327. files lt filename gt running text files Displays a list of CLI commands that will bring the state of a fresh system up to match the current persistent state of this system Syntax Description audit Displays settings for configuration change auditing files lt filename gt Displays a list of configuration files in persistent stor age if no filename is specified If a filename is speci fied it displays the commands to recreate the configuration in that file In the latter case only non default commands are shown as for the normal show configuration command running Displays commands to recreate current running config uration Same as show configuration except that it applies to the currently running configuration rather than the current persisted configuration text files Displays names of available text based configuration files Default N A Configuration Mode Config History 3 1 0000 3 3 5006 Removed running full and full parameters Role monitor admin Example switch config show configuration Active saved database newcon Generated at 20114 05 25 10 18 52 0000 Hostname switch 3cc29c Network interface configuration SE SE SE OSE SE OE EE interface mgmt0 comment interface mgmt0 create interface mgmt0 dhcp interface mgmt0O display interface mgmt0 duplex auto interface mgmtO mtu 1500 no interface mgmt0O shutdown interface mgmt0 speed
328. files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field disabled Levels at which messages are logged CLI commands notice Audit messages notice switch config Related Commands show logging logging local override Note Mellanox Technologies 181 Mellanox Technologies Confidential Rev 3 20 logging receive logging receive no logging receive Enables receiving logging messages from a remote host The no form of the command disables the option of receiving logging messages from a remote host Syntax Description N A Default Receiving logging is disabled Configuration Mode Config History 3 1 0000 Role admin Example switch config logging receive switch config show logging Local logging level info Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts yes Number of archived log files to keep 10 Log rotation size threshold 5 000 of partition 43 megabytes Log format standard Subsecond timestamp field disabled Levels at which messages are logged CLI commands notice Audit messages notice switch config Related Commands show logging logging local logging local override Note This does not log to the console TTY port e In band management should be enabled in order to open a channel from the host to the CPU
329. from the peer Syntax Description ip address IP address of the neighbor peer group name Peer group name string Free string up to 80 characters in length Default No description Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated example Role admin Example switch config router bgp 100 neighbor 10 10 10 10 description The next door neighbor Related Commands N A Note The peer description only appears in the show commands Mellanox Technologies 652 Mellanox Technologies Confidential Rev 3 20 neighbor ebgp multihop neighbor lt ip address gt lt peer group name gt ebgp multihop lt ttl gt no neighbor lt ip address gt lt peer group name gt ebgp multihop Enables BGP to connect to external peers that are not directly connected to the switch The no form of the command applies the system disables connecting to external peers Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name ttl Time to live Range 1 255 hops Default ttl 1 Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated default Role admin Example switch config router bgp 100 neighbor 10 10 10 10 ebgp multihop 5 Related Commands ip routing neighbor lt ip address gt remote as lt as number gt Note The command does not establish the multi hop if the only
330. fter the corresponding addresses V Prints version info and exit e Starts from the first_ttl hop instead from 1 g Routes packets throw the specified gateway maximum 8 for IPv4 and 127 for IPv6 i Specifies a network interface to operate with m Sets the max number of hops max TTL to be reached Default is 30 N Sets the number of probes to be tried simultaneously default is 16 p Uses destination port It is an initial value for the UDP destination port incremented by each probe default is 33434 for the ICMP seq number incremented as well default from 1 and the constant destination port for TCP tries default is 80 t Sets the TOS IPv4 type of service or TC IPv6 traffic class value for outgoing packets 1 Uses specified flow_label for IPv6 packets Mellanox Technologies 588 Mellanox Technologies Confidential Rev 3 20 w Sets the number of seconds to wait for response to a probe default is 5 0 Non integer float point values allowed too q Sets the number of probes per each hop Default is 3 s Uses source src_addr for outgoing packets z Sets minimal time interval between probes default is 0 If the value is more than 10 then it specifies a num ber in milliseconds else it is a number of seconds float point values allowed too Default N A Configuration Mode Config History 3 1 0000 Role admin Example swit
331. g Related Commands show dcb ets Note Mellanox Technologies 502 Mellanox Technologies Confidential Rev 3 20 dcb ets tc bandwidth dcb ets tc bandwidth lt tc 0 gt lt tc 1 gt lt tc 2 gt lt tce 3 gt no dcb ets tc bandwidth Configures the bandwidth limit of the traffic class The no form of the command sets the bandwidths per traffic class back to its default Syntax Description toti 0 100 Default 25 per traffic class Configuration Mode Config History 3 1 0000 Role admin Example switch config dcb ets tc bandwidth 20 20 30 30 switch config show dcb ets ETS enabled LC Bandwidth 0 20 1 20 2 30 3 30 Number of Traffic Class 4 switch config Related Commands show dcb ets Note The sum of all traffic class bandwidth must be equal to 100 Mellanox Technologies 503 Mellanox Technologies Confidential Rev 3 20 vlan map priority vlan map priority lt priority gt traffic class lt tc gt no vlan map priority lt priority gt Maps an VLAN user priority to a traffic class The no form of the command sets the mapping back to default Syntax Description N A Default Priority 0 1 mapped to tc 0 Priority 2 3 mapped to tc 1 Priority 4 5 mapped to tc 2 Priority 6 7 mapped to tc 3 Configuration Mode Config Interface Ethernet History 3 1 0000 Role admin Example switch config interface ethernet 1 1 vl
332. g reboot Security Menu The Security menu makes available the following sub menus listed in order of appearance from top to bottom Table 12 Security Submenus Submenu Title Description Users Manages setting up removing modifying user accounts Admin Password Modifies the system administrator password SSH Displays and generate host keys AAA Configures AAA Authentication Authorization and Accounting security ser vices such as authentication methods and authorization Login Attempts Manages login attempts RADIUS Manages Radius client TACACS Manages TACACS client LDAP Manages LDAP client Certificate Manages certificates Ports Menu The Ports menu displays the port state and enables some configuration attributes of a selected port It also enables modification of the port configuration A graphical display of traffic over time last hour or last day through the port is also available Table 13 Ports Submenus Submenu Title Description Ports Manages port attributes counters transceiver info and displays a graphical coun ters histogram Phy Profile Provides the ability to manage phy profiles Monitor Session Displays monitor session summary and enables configuration of a selected session Mellanox Technologies Confidential Rev 3 20 3 2 5 Status Menu The Status menu makes available the f
333. g split A set of hard ware restrictions determine which of the ports can be split Specific ports can be split by using a QSFP 1X4 breakout cable to split one 40 Gb s port into 4 lanes 4 SFP connectors These 4 lanes then go one lane to each of the 4 SFP connectors Some ports can be split into 2 10 Gb s ports using lanes 1 and 2 only When a QSFP port is split Mellanox Technologies 356 Mellanox Technologies Confidential Rev 3 20 into 2 10Gb s ports then only SFP connectors 1 and 2 are used Connectors 3 and 4 are left unconnected Splitting the interface deletes all configuration on that interface aa When splitting an interface s traffic into 4 10Gb s data streams four lanes one of the other ports on the switch must be disabled unmapped e some ports can be split into 4 e some ports can be split into 2 e some ports become unmapped due to a 1X4 split Figure 11 Port Splitting Options 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 os xX MES oe Xt Xt mmm This port can be split into 4 10Gb s SFP fm This port can be split into 2 10Gb s SFP x This port is unmapped by the neighboring split 4 port The maximum number of 10 Gb s Ethernet ports configurable with this switch is 34 Table 21 Port Splitting Options Port aes split Turns ra port cate split Port oe Turns 7 port B a a 15 YES 24 YES 25 16 25 17 YES 16 26
334. g switch for unregistered multicast traffic The no form of the command sets it default Syntax Description options e flood e forward to mrouter ports Default flood Configuration Mode Config History 3 2 0500 Role admin Example switch config ip igmp snooping unregisted multicast flood switch config show ip igmp snooping IGMP snooping global configuration IGMP snooping globally enabled IGMP snooping operationally enabled Proxy reporting globally disabled Last member query interval is 1 seconds Mrouter timeout is 125 seconds Port purge timeout is 260 seconds Report suppression interval is 5 seconds IGMP snooping unregistered multicast flood switch config Related Commands show ip igmp snooping Note Mellanox Technologies 470 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping querier ip igmp snooping querier no ip igmp snooping querier Enables the IGMP Snooping Querier on a VLAN The no form of the command disables the IGMP Snooping Querier on a VLAN Syntax Description N A Default Disable Configuration Mode Config VLAN History 3 3 4200 Role admin Example switch config vlan 1 ip igmp snooping querier switch config vlan 1 Related Commands igmp snooping querier query interval show ip igmp snooping querier Note Mellanox Technologies 471 Mellanox Technologies Confidential Rev 3 20 igmp snooping
335. g the coexis tence of an OpenFlow pipeline and a normal pipeline In this model a packet is forwarded according to OpenFlow configuration if such configuration is matched with the packet parame ters Otherwise the packet is handled by the normal regular forwarding routing pipeline The OpenFlow specification defines OpenFlow hybrid switches support both OpenFlow operation and normal Ethernet switching operation i e traditional L2 Ethernet switching VLAN isolation L3 routing IPv4 routing IPv6 routing ACL and QoS processing Those switches must provide a classification mechanism outside of OpenFlow that routes traffic to either the OpenFlow pipeline or the normal pipeline For example a switch may use the VLAN tag or input port of the packet to decide whether to process the packet using one pipeline or the other or it may direct all packets to the OpenFlow pipeline Utilizing the built in capabilities of the hybrid switch router is the main benefit of the hybrid mode It increases network performance and efficiency faster processing of new flows as well as lower load on the controllers The hybrid switch processes non OpenFlow data through its local management plane and achieve better efficiency and use of resources compared to the pure OpenFlow switch 5 7 1 Flow Table The flow table contains flows which are used to perform packet lookup modification and for warding Each flow has a 12 tuple key The key is used in
336. g tree port type edge normal net work 5 6 3 BPDU Filter Using BPDU filter prevents the CPU from sending receiving BPDUs on specific ports BPDU filtering is configured per interface When configured the port does not send any BPDUs and drops all BPDUs that it receives To configure BPDU filter use the following command switch config interface etherent lt inf gt spanning tree bpdufilter enable disable p Configuring BPDU filtering on a port connected to a switch can cause bridging loops y because the port filters any BPDU it receives and goes to forwarding state 5 6 4 Loop Guard Loop guard is a feature that prevents loops in the network When a blocking port in a redundant topology transitions to the forwarding state accidentally an STP loop occurs This happens when BPDUs are no longer received by one of the ports in a physically redundant topology Loop guard is useful in switched networks where devices are connected point to point A desig nated bridge cannot disappear unless it sends an inferior BPDU or brings the link down on a point to point connection R The loop guard configuration is only allowed on network port type Da If loop guard is enabled and the port does not receive BPDUs the port is put into an inconsistent state blocking until the port starts to receive BPDUs again A port in the inconsistent state does not transmit BPDUs If BPDUs are received again loop guard alters its inco
337. gher Note Make sure the screen resolution is set to 1024 768 or higher Step 3 Type in the IP address of the switch or its DNS name in the format https lt switch_IP_address gt Step 4 Login to the switch default user name is admin password admin Figure 3 MLNX OS Login Window Mellanox Mellanox MLNX OS Management Console TECHNOLOGIES Host switch Sea580 User not logged in Login Please enter your username and password then click Login Account admin Password Mellanox MLNX OS Switch Management Best viewed using Firefox Chrome IE 7 or higher at 1024x768 resolution or higher 2009 2012 Mellanox Technologies Inc Mellanox Technologies 18 Mellanox Technologies Confidential Rev 3 20 Step 5 Read and accept the EULA if prompted You are only prompted if you have not accessed the switch via CLI before Figure 4 EULA Prompt Notice Please read and accept the Mellanox End User License Agreement The following figure shows an example of the login window for remote management of the switch After you log in to MLNX OS a default status summary window is displayed as shown in Figure 5 Mellanox Technologies 19 Mellanox Technologies Confidential Rev 3 20 Figure 5 Display After Login Mellanox MLNX OS SX1016 Management Console Mellanox TECHNOLOGIES Host switch SeOaee User admin Logout
338. gmp static oif Statically binds an IP interface to a multicast group The no form of the command deletes the static multicast address from the interface Syntax Description group Multicast IP address Default no ip igmp static oif Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp static oif 10 10 10 5 Related Commands N A Note PIM must be enabled in order to configure the route in the hardware Mellanox Technologies 764 Mellanox Technologies Confidential Rev 3 20 clear ip igmp groups clear ip igmp groups all lt group address gt lt mask gt Clears IGMP group information Syntax Description all Clears all IGMP groups group address Clears a specific group Default no ip igmp static oif Configuration Mode Config History 3 3 5200 Role admin Example switch config clear ip igmp groups all switch config Related Commands N A Note Mellanox Technologies 765 Mellanox Technologies Confidential Rev 3 20 debug ethernet ip igmp I3 debug ethernet ip igmp 13 all control plane data path fail all init shut management memory packet dump resources no debug ethernet ip igmp I3 all control plane data path fail all init shut ma
339. group will not get forwarded onto the router ports The default value is 5 seconds Default last member query interval 1 second proxy reporting is disabled mrouter timout 125 port purge timeout 260 seconds report suppression interval 5 seconds Configuration Mode Config History 3 1 1400 Role admin Mellanox Technologies 465 Mellanox Technologies Confidential Rev 3 20 Example switch config ip igmp snooping report suppression interval 3 switch config show ip igmp snooping IGMP snooping global configuration IGMP snooping globally enabled IGMP snooping operationally enabled Proxy reporting globally disabled Last member query interval is 1 seconds Mrouter timeout is 125 seconds Port purge timeout is 260 seconds Report suppression interval is 3 seconds switch config Related Commands ip igmp snooping admin show ip igmp snooping Note Mellanox Technologies 466 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping fast leave ip igmp snooping fast leave no ip igmp snooping fast leave Enables fast leave processing on a specific interface The no form of the command disables fast leave processing on a specific interface Syntax Description N A Default Normal leave is enabled Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 1400 3 3 4500 Added MLAG port channel configurati
340. gs described below Table 6 Serial Terminal Program Configuration for PPC Based Systems Parameter Setting Baud Rate 9600 Data bits 8 Stop bits 1 Parity None Flow Control None Step 3 Login as admin and use admin as password 2 2 Starting the Command Line CLI Step 1 Set up an Ethernet connection between the switch and a local network machine using a stan dard RJ 45 connector Step 2 Start a remote secured shell SSH to the switch using the command ssh 1 lt username gt lt switch ip address gt rem_machl gt ssh 1 lt username gt lt ip address gt Mellanox Technologies 17 Mellanox Technologies Confidential Rev 3 20 Step 3 Login to the switch default username is admin password admin Step 4 Read and accept the EULA when prompted Step 5 Once you get the prompt you are ready to use the system Mellanox MLNX OS Switch Management Password Last login lt time gt from lt ip address gt Mellanox Switch Please read and accept the Mellanox End User License Agreement located at http www mellanox com related docs prod_management_software MLNX OS_EULA pdf switch gt 2 3 Starting the Web User Interface gt To start a WebUI connection to the switch platform Step 1 Set up an Ethernet connection between the switch and a local network machine using a stan dard RJ 45 connector Step 2 Open a web browser Firefox 12 Chrome 18 IE 8 Safari 5 or hi
341. gt Step 4 Configure the system to send notifications for a specific event Run switch config email notify event lt event name gt Step 5 Show the list of events for which an email is sent Run switch config show email events Failure events for which emails will be sent process crash A process in the system has crashed unexpected shutdown Unexpected system shutdown Informational events for which emails will be sent asic chip down ASIC Chip Down cpu util high CPU utilization has risen too high cpu util ok CPU utilization has fallen back to normal levels disk io high Disk I 0 per second has risen too high disk io ok Disk I O per second has fallen back to acceptable levels disk space low Filesystem free space has fallen too low switch config Step 6 Have the system send you a test email Run switch email send test The last command should generate the following email Saas Original Message From Admin User mailto do not reply switch Sent Sunday May 01 2011 11 17 AM To lt name gt Subject System event on switch Test email for event notification System information Hostname switch Version lt version gt 2011 05 01 14 56 31 Date 2011 05 01 08 17 29 Uptime 17h 8m 28 060s Mellanox Technologies 212 Mellanox Technologies Confidential Rev 3 20 This is a test email Done Mellanox Technologies 213 Mellanox T
342. h text scp username pass word hostname path filename Related Commands N A Note Mellanox Technologies 169 Mellanox Technologies Confidential Rev 3 20 configuration text file configuration text file lt filename gt apply fail continue verbose delete rename lt filename gt upload lt URL gt Performs operations on text based configuration files Syntax Description filename lt file gt Specifies the filename apply Applies the configuration on the system fail continue Continues execution of the commands even if some commands fail verbose Displays all commands being executed and their out put instead of just those that get errors delete Deletes the file rename lt filename gt Renames the file upload lt URL gt Supported types are HTTP HTPPS FTP TFTP SCP and SFTP For example scp username pass word hostname path filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration text file my config file delete switch config Related Commands show configuration files Note Mellanox Technologies 170 Mellanox Technologies Confidential Rev 3 20 configuration text generate configuration text generate active running saved file lt filename gt save lt filename gt upload lt URL gt Generates a new text based configuration file fr
343. he Established state In the Established state the router can send receive KeepAlive Update and Notification messages to from its peer 6 3 2 Configuring BGP Figure 25 Basic BGP Configuration AS 100 AS 100 AS 200 a WS 10 10 10 1 10 10 10 2 7 20 20 20 2 20 20 20 1 7 Router 1 Router 2 Router 3 VLAN10 VLAN10 Vlan20 Mellanox Technologies 631 Mellanox Technologies Confidential Rev 3 20 Follow these steps for basic BGP configuration on two switches Router 1 and Router 2 Preconditions Step 1 Make sure the license installed supports L3 Step 2 Enable IP routing functionality Run switch config ip routing Step 3 Enable the desired VLAN Run switch config vlan 10 The same VLAN must be configured on both switches gt Step 4 Add this VLAN to the desired interface Run switch config interface ethernet 1 1 switch config ethernet 1 1 switchport access vlan 10 Step 5 Create a VLAN interface Run switch config interface vlan 10 Step 6 Apply IP address to the VLAN interface on Router 1 Run switch config interface vlan 10 ip address 10 10 10 1 24 Step 7 Apply IP address to the VLAN interface on Router 2 Run switch config interface vlan 10 ip address 10 10 10 2 24 Step 8 Enable the interface Run no shutdown switch config interface vlan 10 Configure BGP Step 1 Enable BGP Run switch config protocol bgp Step 2 Configure
344. he central collector Run switch config sflow max datagram size 1500 Step 10 Enable the sFlow agent on the desired interfaces Run switc switc config interface ethernet 1 1 sflow enable config interface port channel 1 sflow enable n n 5 13 6 Verifying sFlow gt To verify the attributes of the sFlow agent switch config show sflow sflow protocol enabled sflow enabled sampling rate 16000 max sampled size 156 counter poll interval 19 max datagram size 1500 collector ip 10 10 10 10 collector port 6343 agent ip 20 20 20 20 Interfaces Ethernet eth1 1 Port channel pol Statistics Total Packets 2000 Number of flow samples 1200 Number of samples discarded 0 Number of statistic samples 800 Number of datagrams 300 Mellanox Technologies 541 Mellanox Technologies Confidential Rev 3 20 5 13 7 Commands 5 13 7 1 Config protocol sflow protocol sflow no protocol sflow Unhides the sFlow commands The no form of the command deletes sFlow configuration and hides the sFlow com mands Syntax Description N A Default Disabled Configuration Mode Config History 3 3 3500 Role admin Example switch config protocol sflow switch config Related Commands Note Mellanox Technologies 542 Mellanox Technologies Confidential Rev 3 20 sflow enable global sflow enable no sflow enable Enables sFlow in the system Th
345. he list of addresses to which to send email notifications of events Syntax Description email addr Email address of intended recipient class Specifies which types of events are sent to this recipi ent info Sends informational events to this recipient failure Sends failure events to this recipient detail Sends detailed event emails to this recipient Default No recipients are added Configuration Mode Config History 3 1 0000 Role admin Example switch config email notify recipient user2 autosupport mellanox com switch config show email Mail hub Mail hub port 25 Domain not specified Return address userl Include hostname in return address no Dead letter settings Save dead letter files yes Dead letter max age none Email notification recipients user2 autosupport mellanox com all events in detail Autosupport emails Enabled no Recipient autosupport autosupport mellanox com Mail hub autosupport mellanox com switch config Related Commands show email Note Mellanox Technologies 222 Mellanox Technologies Confidential Rev 3 20 email return addr email return addr lt username gt no email domain Sets the username or fully qualified return address from which email notifications are sent e If the string provided contains an character it is considered to be fully qualified and used as is e Otherwise it is considered to
346. he no form of the command returns fail continue to its default Syntax Description N A Default A job will halt execution as soon as any of its commands fails Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 fail continue switch config job 100 Related Commands show jobs Note Mellanox Technologies 291 Mellanox Technologies Confidential Rev 3 20 name name lt job name gt no name Configures a name for this job The no form of the command resets the name to its default Syntax Description name Specifies a name for the job string Default te Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 name my job switch config job 100 Related Commands show jobs Note Mellanox Technologies 292 Mellanox Technologies Confidential Rev 3 20 schedule type schedule type lt recurrence type gt no schedule type Sets the type of schedule the job will automatically execute on The no form of the command resets the schedule type to its default Syntax Description recurrence type The available schedule types are e daily the job is executed every day at a specified time e weekly the job is executed on a weekly basis e monthly the job is executed every month on a specified day of the month e
347. hether they have requested to receive detailed notifications or not upload lt filename gt lat Uploads a debug dump file to a remote host The URL est lt URL gt to the remote host HTTP HTTPS FTP TFTP SCP and SFTP are supported Example scp user name password hostname path filename Default N A Configuration Mode Config History 3 1 0000 Initial release 3 3 4000 Added latest parameter Role admin Example switch config file debug dump email sysdump switch 112104 20114052 091707 tgz switch config Related Commands show files debug dump Note Mellanox Technologies 152 Mellanox Technologies Confidential Rev 3 20 file stats file stats delete lt filename gt move lt source filename gt lt destination filename gt upload lt filename gt lt URL gt Manipulates statistics report files Syntax Description delete lt filename gt Deletes a stats report file move lt source filename gt Renames a stats report file lt destination filename gt upload lt filename gt Uploads a stats report file lt URL gt URL HTTP HTTPS FTP TFTP SCP and SFTP are supported Example scp username password host name path filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config file stats move memory 1 csv memory 2 csv switch config Related Commands show files st
348. hnologies 298 Mellanox Technologies Confidential Rev 3 20 stats alarm lt alarm id gt rising falling stats alarm lt alarm ID gt rising falling clear threshold error threshold lt threshold value gt Configure alarms thresholds Syntax Description alarm ID Alarms supported by the system for example e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees falling Configures alarm for when the statistic falls too low rising Configures alarm for when the statistic rises too high error threshold Sets threshold to trigger falling or rising alarm clear threshold Sets threshold to clear falling or rising alarm threshold value The desired threshold value different per alarm Default Default is different per alarm id Configuration Mode Config History 3 1 0000 Role admin Example switch config stats alarm cpu_util_indiv falling clear threshold 10 switch config Related Commands show stats alarm Note Not all alarms support all four thresholds Mella
349. hutdown Disables the virtual router The no form of the command enables the virtual router stops the VRRP state machine Syntax Description N A Default Enabled no shutdown Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Example switch config vrrp 100 shutdown Related Commands Note Mellanox Technologies 777 Mellanox Technologies Confidential Rev 3 20 priority priority lt level gt no priority Sets the priority of the virtual router The no form of the command resets the priority to its default Syntax Description level The virtual router priority level Range is 1 254 Default 100 Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Example switch config vrrp 100 priority 200 Related Commands Note e The higher IP address will be selected as master in case the priority of the routers in the VR are the same To influence the election of the master in the VR cluster make sure that the priority of the desired master is the higher Mellanox Technologies 778 Mellanox Technologies Confidential Rev 3 20 preempt preempt no preempt Sets virtual router preemption mode The no form of the command disables the virtual router preemption Syntax Description N A Default Enabled preempt Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Examp
350. hutdown Gracefully disables BGP protocol without removing existing configuration The no form of the command enables BGP Syntax Description N A Default Enabled Configuration Mode Config Router BGP History 3 3 5006 Role admin Example switch config router bgp 100 no shutdown Related Commands Note Mellanox Technologies 637 Mellanox Technologies Confidential Rev 3 20 agegregate address aggregate address lt prefix gt summary only as set attribute map no aggregate address lt prefix gt summary only as set attribute map Creates an aggregate route in the BGP database The no form of the command disables ECMP across AS paths Syntax Description prefix Destination to aggregate summary only Contributor routes are not advertised as set Includes AS_PATH information from contributor routes as AS_SET attributes attribute map Assigns attribute values in set commands of the map s permit clauses Deny clauses and match commands in permit clauses are ignored Default Disabled Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch e07c04 standalone master config router bgp 4 aggregate address 3 5 3 7 32 Related Commands Note e Aggregate routes combine the characteristics of multiple routes into a single route that the switch advertises e Aggregation can reduce the amount of information that a BGP
351. hysical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment RX bytes 2946769856 TX bytes 467577486 RX packets 44866091 TX packets 1385520 RX mcast packets 0 IX discards 0 RX discards 0 TX errors 0 RX errors 0 TX overruns 0 RX overruns 0 TX carrier 0 RX frame 0 TX collisions 0 TX queue len 1000 switch config interface mgmt0 Related Commands show interfaces lt ifname gt Note If DHCP is enabled on the specified interface then the DHCP IP assignment will hold until DHCP is disabled Mellanox Technologies 84 Mellanox Technologies Confidential Rev 3 20 alias alias lt index gt ip address lt IP address gt lt netmask gt no alias lt index gt Adds an additional IP address to the specified interface The secondary address will appear in the output of show interface under the data of the primary interface along with the alias The no form of the command removes the secondary address to the specified inter face Syntax Description index A number that is to be aliased to associated with the secondary IP IP address Additional IP address netmask Subnet mask of the IP address Default N A Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 alias 2 ip address 9 9 9 9 255 259 255 255 switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP addre
352. i cation value to send as local endpoint s identity e mode Configures the peering mode for this IPSec peer ing e peer identity Configures the identification value to match against the peer s ISAKMP payload identification e pfs group Configures the phase2 PFS Perfect Forward ing Secrecy group to propose for Diffie Hellman exchange for this IPSec peering e preshared key Configures the IKE pre shared key for the IPSec peering e prompt preshared key Prompts for the pre shared key rather than entering it on the command line e transform set Configures transform proposal parameters keying Configures key management for this IPSec peering e auth Configures the authentication algorithm for this IPSec peering e disable Configures this IPSec peering administratively disabled e encrypt Configures the encryption algorithm for this IPSec peering e local spi Configures the local SPI for this manual IPSec peering e mode Configures the peering mode for this IPSec peer ing e remote spi Configures the remote SPI for this manual IPSec peering manual Configures IPSec peering using manual keys Default N A Configuration Mode Config History 3 2 3000 Role admin Example switch config crypto ipsec peer 10 10 10 10 local 10 7 34 139 enable switch config Mellanox Technologies 275 Mellanox Technologies Confidential Rev 3 20 Related Commands N A Note Mellanox Technologies 27
353. ial Rev 3 20 4 1 4 Default Gateway To configure manually the default gateway use the ip route command with 0 0 0 0 as prefix and mask The next hop address must be within the range of one of the IP interfaces on the sys tem switch config ip route 0 0 0 0 0 0 0 0 10 209 0 2 switch config show ip route Destination Mask Gateway Interface Source default 00 0 0 10209702 mgmt 0 static 10 209 0 0 255 255 254 0 0 0 0 0 mgmt 0 direct switch config 4 1 5 In Band Management In band management is a management path passing through the data ports In band management can be created over one of the VLANs in the systems The in band management feature does not require any license However it works only for system profiles VPI and Ethernet It cannot be enabled with IP Routing or IP Proxy ARP gt To set an in band management channel Step 1 Create a VLAN Run switch config vlan 10 switch config vlan 10 Step 2 Create a VLAN interface Run switch config interface vlan 10 create Step 3 Enter the VLAN interface configuration mode and configure L3 attributes Run switc switc config interface vlanl0 h h config interface vlan10 ip address 10 10 10 10 24 Step 4 Optional Verify in band management configuration Run switch config show interfaces vlan10 Interface vlan10 status Comment Admin up yes Link up yes DHCP running no IP add
354. icast octets Multicast octets owo S switch config Related Commands interface vlan Note e Enabling counters for the router interface adds delay to the traffic stream e There are maximum of 16 counter sets Mellanox Technologies 569 Mellanox Technologies Confidential description description lt string gt no description Rev 3 20 Enters a description for the interface The no form of the command sets the description to default Syntax Description string User defined string Default pd Configuration Mode Config Interface VLAN History 3 2 0230 Role admin Example switch config interface vlan 10 description my ip interface switch config interface vlan 10 show interfaces vlan 10 Vian 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 Internet Address 0 0 0 0 0 Broadcast address 255 255 255 255 MTU 1522 bytes Description my ip interface switch config Related Commands interface vlan Note Mellanox Technologies 570 Mellanox Technologies Confidential Rev 3 20 mtu mtu lt size gt force no mtu Sets the MTU for the interface The no form of the command sets the MTU to default Syntax Description size 1518 9216 force Forces command implementation Default 1522 Configuration Mode History Role Example Related Commands Note Config Interface
355. id gt enable no stats chd lt chd id gt enable Enables the CHD The no form of the command disables the CHD Syntax Description chd id CHD supported by the system for example e cpu_util CPU utilization percentage of time spent e cpu_util_ave CPU utilization average percentage of time spent e cpu_util_day CPU utilization average percentage of time spent e disk_device_io_hour Storage device I O read write sta tistics for the last hour bytes e disk_io Operating system aggregate disk I O average KB sec e eth_day e eth_hour e fs_mnt day Filesystem system usage average bytes e fs_mnt_month Filesystem system usage average bytes e fs_mnt_week Filesystem system usage average bytes e ib_day e ib_hour e intf day Network interface statistics aggregation bytes e intf_hour Network interface statistics same as inter face sample e intf util Aggregate network utilization across all inter faces e memory_day Average physical memory usage bytes memory_pct Average physical memory usage e paging Paging activity page faults e paging day Paging activity page faults Default Enabled Configuration Mode Config History 3 1 0000 Role monitor admin Example switch config stats chd memory_day enable switch config Related Commands show stats chd Note Mellanox Technologies 302 Mellanox Technologies Confidential Rev 3 20
356. idential Rev 3 20 gt To configure PIM Step 1 Enable PIM Run switch config protocol pim Step 2 Globally enable Bidirectional PIM BIDIR mode Run switch config no ip pim bidir shutdown Mellanox Technologies 728 Mellanox Technologies Confidential Rev 3 20 6 5 5 Commands 6 5 5 1 PIM protocol pim protocol pim no protocol pim Enables protocol independent multicast PIM The no form of the command hides all PIM commands and deletes all PIM configura tions Syntax Description N A Default Disabled Configuration Mode Config History 3 3 5006 Role admin Example switch config protocol pim Related Commands N A Note Mellanox Technologies 729 Mellanox Technologies Confidential Rev 3 20 ip pim bidir shutdown ip pim bidir shutdown no ip pim bidir shutdown Disables PIM bidir The no form of the command enables PIM bidir Syntax Description N A Default Disabled Configuration Mode Config History 3 3 5006 Role admin Example switch config no ip pim bidir shutdown Related Commands N A Note Mellanox Technologies 730 Mellanox Technologies Confidential Rev 3 20 ip pim rp address ip pim rp address lt rp address gt group list lt ip address gt lt prefix gt override bidir no ip pim rp address lt rp address gt group list lt ip address gt lt prefix gt Configures a static IP
357. ient Note If a key is being pasted from a cut buffer and was displayed with a paging program it is likely that newline characters have been inserted even if the output was not long enough to require paging One can specify no cli session paging enable before run ning the show command to prevent the newlines from being inserted Mellanox Technologies 59 Mellanox Technologies Confidential Rev 3 20 slogin slogin lt slogin options gt lt hostname gt Invokes the SSH client The user is returned to the CLI when SSH finishes Syntax Description slogin options usage slogin 1246AaCfgkNngqsTtVvXxY b bind_address c cipher_spec D port e escape_char F configfile i identity_file L port host hostport login_name m mac_spec o option p port R port host hostport user host name command Default N A Configuration Mode Config History 3 1 0000 Role monitor admin Example switch config slogin 192 168 10 70 The authenticity of host 192 168 10 70 192 168 10 70 can t be estab lished RSA key fingerprint is 2e ad 2d 23 45 4e 47 e0 2c ae 8c 34 f0 1la 88 cb Are you sure you want to continue connecting yes no yes Warning Permanently added 192 168 10 70 RSA to the list of known hosts Mellanox MLNX OS Switch Management Last login Sat Feb 28 22 55 17 2009 from 10 208 0 121 Mellanox Switch switch config Related Commands N A
358. ig History 3 1 0000 Role admin Example switch config show configuration files example initial initial bak initial prev switch config configuration delete example switch config show configuration files initial initial bak initial prev switch config Related Commands show configuration Note e This command does not affect the current running configuration e The active configuration file may not be deleted Mellanox Technologies 162 Mellanox Technologies Confidential Rev 3 20 configuration fetch configuration fetch lt URL gt lt name gt Downloads a configuration file from a remote host Syntax Description URL HTTP HTTPS FTP TFTP SCP and SFTP are sup ported Example scp username password host name path filename name The configuration file name Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration fetch scp root password 192 168 10 125 tmp confl switch config Related Commands configuration switch to Note The downloaded file should not override the active configuration file using the lt name gt parameter e Ifno name is specified for a configuration fetch it is given the same name as it had on the server e No configuration file may have the name active Mellanox Technologies 163 Mellanox Technologies Confidential Rev 3 20 configuration jump s
359. ighbor lt ip address gt lt peer group name gt local as Enables the modification of the AS path attribute for routes received from an eBGP neighbor The no form of the command disables AS path modification for the specified peer or peer group Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name no prepend local as number is not prepended to the routes received from external neighbors replace as Prepends only the local autonomous system number as configured with the IP address argument to the AS path attribute Default 12000 Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch e07c04 standalone master config router bgp 4 neighbor 100 100 100 100 local as 123 Related Commands ip routing neighbor lt ip address gt remote as lt as number gt Note This function allows the switch to appear as a member of a different autonomous system AS to external peers e To disable peering with the neighbor run the command clear ip bgp Mellanox Technologies 657 Mellanox Technologies Confidential Rev 3 20 neighbor maximum prefix neighbor lt ip address gt lt peer group name gt maximum prefix lt maximum gt warning only no neighbor lt ip address gt lt peer group name gt maximum prefix Configures the number of BGP routes the switch accepts from a specified neighbor and define
360. ighbor id gt Displays the OSPF related interface neighbor configuration Syntax Description vlan lt vlan id gt Displays OSPF interface configuration and status per VLAN interface neighbor id Filers the output per a specific OSPF neighbor Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example Router show ip ospf neighbors 10 199 199 137 Neighbor 10 199 199 137 interface address 192 0 2 37 In the area 0 0 0 0 via interface Ethernet2 1 Neighbor priority is 1 State is FULL Options 2 Dead timer due in 0 00 32 Link State retransmission due in 0 00 04 Neighbor 100 199 199 137 interface address 209 165 201 189 In the area 0 0 0 0 via interface Ethernet4 3 Neighbor priority is 5 State is FULL Options 2 Dead timer due in 0 00 32 Link State retransmission due in 0 00 03 This example shows how to display the neighbors that match the neighbor ID on an interface Router show ip ospf neighbors ethernet 2 1 10 199 199 137 Neighbor 10 199 199 137 interface address 192 0 2 37 In the area 0 0 0 0 via interface Ethernet2 1 Neighbor priority is 1 State is FULL Options 2 Dead timer due in 0 00 37 Link State retransmission due in 0 00 04 This example shows how to display detailed information about OSPF neigh bors Router show ip ospf neighbors detail Neighbor 192 168 5 2 interface address 10 225 200 28 In the area 0 via interface GigabitEthernet1 0 0 Neighbor priorit
361. il public pem ca list default ca list Displays information about all certificates in the certificate database Syntax Description ca list Displays the list of supplemental certificates configured for the global default system CA certificate role default ca list Displays information about the currently configured default certificates of the CA list default cert Displays information about the currently configured default certificate detail Displays all attributes related to the certificate name Displays information about the certificate specified public pem Displays the uninterpreted public certificate as a PEM formatted data string Default N A Configuration Mode Config History 3 2 1000 Role admin Mellanox Technologies 283 Mellanox Technologies Confidential Rev 3 20 Example switch config show crypto certificate Certificate with name system self signed default cert Comment system generated self signed certif icate Private Key present Serial Number 0x546c935511lbcafc2lac0e8249fbe0844 SHA 1 Fingerprint fe6df38dd26801971cb2d44f62dbe4 92b6063c5f Validity Starts 2012 12 02 13 45 05 Expires 2013 12 02 13 45 05 Subject Common Name IBM DEV Bay4 Country Is State or Province Locality Organization Organizational Unit E mail Address Issuer Common Name IBM DEV Bay4 Country Is State or Province Locality Organization Organizational
362. imeout to default Syntax Description timeout value Time in seconds that an entry remains in the ARP cache Valid values are from 240 to 28800 Default 1500 seconds Configuration Mode Config Interface VLAN History 3 2 0230 Role admin Example switch config ip arp timeout 2000 switch config show ip arp ARP Timeout 2000 Total number of entries 55 IP Address MAC Address Interface LOO 00 02 c9 5c 30 40 Vlan11 T0043 00 11 22 33 44 55 Vlan11 2 0 0 2 00 02 c9 5c 30 40 Vlan12 82 OO 00 02 c9 5c 30 40 Vlan13 4 0 0 2 00 02 c9 5c 30 40 Vlan14 switch config Related Commands ip arp show ip arp Note This value is used as the ARP timeout whenever a new IP interface is created Mellanox Technologies 584 Mellanox Technologies Confidential Rev 3 20 clear ip arp clear ip arp interface lt type gt lt IP address gt Clears dynamic arp entries from the ARP table with possible filters Syntax Description vlan id Clears dynamic ARP entries for a interface IP address Clears dynamic ARP entries for a specific IP address Default N A Configuration Mode Config History 3 2 0230 Role admin Example switch config clear ip arp switch config Related Commands ip arp show ip arp Note Mellanox Technologies 585 Mellanox Technologies Confidential Rev 3 20 show ip arp show ip arp interface lt type gt lt ip address gt
363. in Example switch config spanning tree mode mst switch config Related Commands Note Mellanox Technologies 448 Mellanox Technologies Confidential Rev 3 20 spanning tree mst port priority spanning tree mst mst instance port priority lt priority gt no spanning tree mode Changes the spanning tree mode The no form of the command sets the parameter to its default value Syntax Description mst instance MST instance Range is 1 64 priority MST instance port priority Valid values are 0 16 32 48 64 80 96 112 128 144 160 176 192 208 224 and 240 Default rst Configuration Mode Config Interface Port Channel History 3 3 4150 Role admin Example switch config interface ethernet 1 1 spanning tree mst 1 port priority 32768 switch config interface port channel 1 spanning tree mst 1 port priority 32768 switch config Related Commands Note Mellanox Technologies 449 Mellanox Technologies Confidential Rev 3 20 spanning tree mst cost spanning tree mst mst instance cost lt cost value gt no spanning tree mode Configures the cost per MSTP instance The no form of the command sets the parameter to its default value Syntax Description mst instance MST instance Range is 1 64 cost value MST instance port cost Range is 0 200000000 Default 2000 for 10Gb s 500 for 40Gb s 20000 for 1Gb s 357 for 56Gb s Config
364. ine Interface CLI Overview MLNX OS is equipped with an industry standard CLI The CLI is accessed through SSH or Telnet sessions or directly via the console port on the front panel if it exists 3 1 1 CLI Modes The CLI can be in one of following modes and each mode makes available a certain group or level of commands for execution The different CLI configuration modes are Table 7 CLI Modes and Config Context Mode Context Description Standard When the CLI is launched it begins in Standard mode This is the most restrictive mode and only has commands to query a restricted set of state information Users cannot take any actions that directly affect the system nor can they change any configu ration Enable The enable command moves the user to Enable mode This mode offers commands to view all state information and take actions like rebooting the system but it does not allow any con figurations to be changed Its commands are a superset of those in Standard mode Config The configure terminal command moves the user from Enable mode to Config mode Config mode is allowed only for user accounts in the admin role or capabilities This mode has a full unrestricted set of commands to view anything take any action and change any configuration Its commands are a super set of those in Enable mode To return to Enable mode enter exit or no configure Note that moving directly from to Standard mode to fro
365. ing a Forwarding the packet b Dropping the packet c Forwarding the packet to the OpenFlow controller d Modifying the VLAN VLAN priority PCP and or stripping the VLAN header L The flow table supports up to 1000 flows ba 5 7 2 Configuring OpenFlow gt To run OpenFlow on a switch Step 1 Unlock the OpenFlow CLI commands Run switch config protocol openflow Step 2 Configure interfaces to be managed by OpenFlow Run switch config interface ethernet 1 1 1 4 openflow mode hybrid Step 3 Configure the OpenFlow controller IP and TCP port Run switch config opent low controller ip 10 209 0 205 tcp port 6633 Step 4 Optional Verify the OpenFlow configuration Run switch config show openflow OpenFlow version OF VERSION 1 0 Table size 1000 0 in use Active controller ip 10 209 0 205 port 6633 Connection status HANDSHAKE_COMPLETE CONNECTED Forward to controller ospf lldp arp unicast arp broadcast all Enabled ports Eth1 1 Eth1 2 Eth1 3 Eth1 4 switch config To be able to configure the switch using the controller you should see the following line in the output Connection status must be HANDSHAKE COMPLETE CONNECTED Mellanox Technologies 453 Mellanox Technologies Confidential Rev 3 20 5 7 3 Commands protocol openflow protocol openflow no protocol openflow Unhides the OpenFlow commands The no form of the command hides the OpenFlow commands Synt
366. ing tree mst lt mst instance gt root lt role gt no spanning tree mst lt mst instance gt root Changes the bridge priority for the specified MST instance to the following values e Primary 8192 e Secondary 16384 The no form of the command sets the parameter to its default value Syntax Description mst instance MSTP instance Possible range is 1 64 role Values primary or secondary Default primary Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst name my mst switch config Related Commands Note The root command is a way to automate a system configuration while playing with the priority field The priority field granularity may be too explicit for some users in case you wish to have 2 levels of priority primary and secondary So by default all the switches get the same priority and while using the root option you can get the role of master and backup by setting the priority field to a predefined value Mellanox Technologies 447 Mellanox Technologies Confidential Rev 3 20 spanning tree mode spanning tree mode rst mst no spanning tree mode Changes the spanning tree mode The no form of the command sets the parameter to its default value Syntax Description mst Multiple spanning tree rst Rapid spanning tree Default rst Configuration Mode Config History 3 3 4150 Role adm
367. ink state databases When the databases are complete each router uses the SPF algorithm to calculate a loop free graph describing the shortest lowest cost path to every known destination with itself as the root When all link state information has been flooded to all routers in an area and neighbors have verified that their databases are identical it means the link state databases have been synchro nized and the route tables have been built Hello packets are exchanged between neighbors as keepalives and LSAs are retransmitted If the network topology is stable no other activity should occur For OSPF network design over Mellanox L2 VMS please refer to Mellanox Virtual Modular Switch Reference Guide 6 2 1 Router ID The router ID is a 32 bit number assigned to the router running the OSPF protocol This number uniquely identifies the router within an Autonomous System Router ID can be configured statically however if it is not configured then the default election is as follows e Ifa loopback interface already exists the router ID takes the loopback IP address e Otherwise the lowest IP address is elected as router ID 6 2 2 ECMP Equal cost multi path ECMP routing is a routing strategy where next hop packet forwarding to a single destination can occur over multiple paths The OSPF link state routing algorithm can find multiple routes to the same destination all multiple routes are added to the routing table only if tho
368. ion Mode Config History 3 3 4150 Role admin Example switch config clear ip dhcp relay counters switch config Related Commands N A Note e In order to enable DHCP relay at least one IP address should be configured or always on parameter should be turned on using the command ip dhcp relay always on e When DHCP servers are configured requests are forwarded only to configured servers Mellanox Technologies 797 Mellanox Technologies Confidential Rev 3 20 6 8 1 1 Interface ip dhcp relay information option circuit id ip dhcp relay information option circuit id lt label gt no ip dhcp relay information option circuit id Specifies the content of tags that the switch attaches to DHCP requests before they are forwarded The no form of the command removes the label assigned Syntax Description label Specifies the label attached to packets The string may be up to 15 characters Default The label is taken from the IP interface name e g vlan1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 4150 Role admin Example switch config interface vlan 10 ip dhcp relay information options circuit id my label switch config interface vlan 10 Related Commands N A Note Mellanox Technologies 798 Mellanox Technologies Confidential
369. ion on a TCP connection with a BGP peer The no form of the command resets the value to its default Syntax Description ip address IP address of the neighbor peer group name Peer group name encryption Possible values e no parameter clear text e O clear text e 7 obfuscated string Up to 8 bytes in length Default N A Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 password 7 adminl23 Related Commands Note e Peers must use the same password to ensure communication e neighbor lt ip address gt password 7 lt password gt can only accept data that was created using show config e show config will never show the clear test password it will always be obfuscated and thus displayed using the password 7 syntax Mellanox Technologies 661 Mellanox Technologies Confidential Rev 3 20 neighbor peer group neighbor lt ip address gt peer group lt peer group name gt neighbor lt peer group name gt peer group no neighbor lt ip address gt peer group lt peer group name gt no neighbor lt peer group name gt peer group lt peer group name gt hwN 1 Assigns BGP neighbors to an existing peer group 2 Creates a peer group 3 Unassigns BGP neighbors to an existing peer group 4 Removes a specified neighbor from the peer group Syntax Description
370. itch config job 100 switch config job 100 schedule monthly interval 10 switch config job 100 Related Commands show jobs Note A schedule type is essentially a structure for specifying one or more future dates and times for a job to execute Mellanox Technologies 294 Mellanox Technologies Confidential Rev 3 20 show jobs show jobs lt job id gt Displays configuration and state including results of last execution if any exist of all jobs or of one job if a job ID is specified Syntax Description job id Job ID Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show jobs 10 Job 10 Status inactive Enabled yes Continue on failure no Schedule Type once Time and date 1970 01 01 00 00 00 0000 Last Exec Time Thu 2012 04 05 13 11 42 0000 Next Exec Time N A Commands Command 10 show power Last Output Module Status PS1 OK PS2 NOT PRESENT switch config Related Commands show jobs Note Mellanox Technologies 295 Mellanox Technologies Confidential Rev 3 20 4 12 Statistics and Alarms 4 12 1 Commands stats alarm lt alarm id gt clear stats alarm lt alarm ID gt clear Clears alarm state Syntax Description alarm ID Alarms supported by the system for example e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per s
371. itch config ethernet 1 2 switchport access vlan 20 Mellanox Technologies 593 Mellanox Technologies Confidential Rev 3 20 Step 5 Create a VLAN interface Run switch config interface vlan 10 Step 6 Apply IP address to the VLAN interface Run switch config interface vlan 10 ip address 10 10 10 2 16 Step 7 Enable the interface Run switch config interface vlan 10 no shutdown Step 8 Create a second VLAN interface Run switch config interface vlan 20 Step 9 Apply IP address to the second VLAN interface Run switch config interface vlan 20 ip address 10 10 20 2 16 Step 10 Enable the second interface Run switch config interface vlan 20 no shutdown Basic OSPF Configuration Step 1 To enable OSPF configuration run switch config protocol ospf Step 2 To create a router OSPF instance run switch config router ospf Only one instance of OSPF is supported Step 3 Associate the VLAN interfaces to the OSPF area Area 0 is the backbone area run switch config interface vlan 10 ip ospf area 0 switch config interface vlan 10 exit switch config interface vlan 20 switch config interface vlan 20 ip ospf area 0 6 2 4 Verifying OSPF gt To verify OSPF configuration and status Step 1 Verify OSPF configuration and status Run switch config show ip ospf Routing Process 1 with ID 10 10 10 10 vrf default Stateful High Availability disabled Graceful rest
372. itch config router bgp 100 neighbor 10 10 10 10 advertisement interval 90 Related Commands Note Mellanox Technologies 650 Mellanox Technologies Confidential Rev 3 20 neighbor allowas in neighbor lt ip address gt lt peer group name gt allowas in number no neighbor lt ip address gt lt peer group name gt allowas in Configures the switch to permit the advertisement of prefixes containing duplicate autonomous switch numbers ASNs The no form of the command disables this function Syntax Description ip address A BGP peer IP address peer group name Peer group name number Number of switch s ASN allowed in path Range 1 10 Default N A Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 allowas in 2 Related Commands ip routing router bgp lt as number gt Note Neighbors from the same AS as the router are considered as iBGP peers and neigh bors from other ASs are considered eBGP peers Mellanox Technologies 651 Mellanox Technologies Confidential Rev 3 20 neighbor description neighbor lt ip address gt lt peer group name gt description lt string gt no neighbor lt ip address gt lt peer group name gt description Associates descriptive text with the specified peer or peer group The no form of the command removes the description
373. itial connectivity is created BGP state machine drives both sides to enter into ESTAB LISHED state where they can exchange UPDATE messages with reachability information 6 3 1 State Machine In order to make decisions in its operations with peers a BGP peer uses a simple finite state machine FSM that consists of six states Idle Connect Active OpenSent OpenConfirm and Established For each peer to peer session a BGP implementation maintains a state variable that tracks which of these six states the session is in The BGP protocol defines the messages that each peer should exchange in order to change the session from one state to another The first state is the Idle state In Idle state BGP initializes all resources refuses all inbound BGP connection attempts and initiates a TCP connection to the peer The second state is Con nect In the Connect state the router awaits the TCP connection to complete and transitions to the OpenSent state if successful If unsuccessful it initializes the ConnectRetry timer and tran sitions to the Active state upon expiration In the Active state the router resets the Connec tRetry timer to zero and returns to the Connect state In the OpenSent state the router sends an Open message and waits for one in return in order to transition to the OpenConfirm state KeepAlive messages are exchanged and upon successful receipt the router is placed into t
374. its default value Syntax Description value The most significant 16 bits of the agent data path ID Range is 0x0000 OxFFFF in hexa Default 0x0000 Configuration Mode Config OpenFlow History 3 3 4200 Role admin Example switch config openflow datapath id 0x1234 switch config openflow Related Commands Note Mellanox Technologies 458 Mellanox Technologies Confidential Rev 3 20 forward to controller forward to controller ospf Ildp arp unicast arp broadcast all none Forwards the selected traffic types to the controller from all the ports on which Open Flow enabled Syntax Description ospf Forwards OSPF traffic to the controller Ildp Forwards LLDP traffic to the controller arp unicast Forwards ARP unicast traffic to the controller arp broadcast Forwards ARP broadcast traffic to the controller all Forwards all traffic types to the controller none Forwards no traffic to the controller Default None Configuration Mode Config OpenFlow History 3 3 4200 Role admin Example switch config openflow forward to controller all switch config openflow Related Commands Note Mellanox Technologies 459 Mellanox Technologies Confidential Rev 3 20 show openflow show openflow detail tables flows lt id gt Displays general information about the OpenFlow protocol configuration Syntax Descrip
375. ive mode can both accept and initiate TCP connections for BGP Mellanox Technologies 671 Mellanox Technologies Confidential Rev 3 20 neighbor update source neighbor lt ip address gt update source ethernet lt slot port gt loopback lt num ber gt port channel lt number gt vlan lt vlan id gt no neighbor lt ip address gt update source Configures the source address for routing updates and to establish TCP connections with peers The no form of the command disables configured source address for routing updates and for TCP connection establishment with a peer Syntax Description ip address IP address of the neighbor ethernet lt slot port gt Ethernet interface loopback lt number gt Loopback interface number vlan lt vlan id gt VLAN interface Range 1 4094 port channel lt number gt LAG interface Range is 1 4094 Default BGP uses best local address Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated example Role admin Example switch config router bgp 100 neighbor 10 10 10 2 update source vlan 10 Related Commands N A Note Mellanox Technologies 672 Mellanox Technologies Confidential Rev 3 20 neighbor weight neighbor lt ip address gt lt peer group name gt weight lt value gt no neighbor lt ip address gt lt peer group name gt weight Assigns a weight attribute to paths from the s
376. kets by sFlow The no form of the command resets the parameter to its default value Syntax Description packet size The sampled packet size The range is 64 256 bytes Default 128 bytes Configuration Mode Config sFlow History 3 3 3500 Role admin Example switch config sflow max sample size 165 switch config sflow Related Commands Note Sampled payload beyond the configured size is discarded Mellanox Technologies 546 Mellanox Technologies Confidential Rev 3 20 counter poll interval counter poll interval lt seconds gt no counter poll interval Sets the sFlow statistics polling interval The no form of the command resets the parameter to its default value Syntax Description seconds The sFlow statistics polling interval in seconds Range is 5 3600 seconds Zero disables the statistic polling Default 20 seconds Configuration Mode Config sFlow History 3 3 3500 Role admin Example switch config sflow counter poll interval 30 switch config sflow Related Commands Note Mellanox Technologies 547 Mellanox Technologies Confidential Rev 3 20 max datagram size max datagram size lt packet size gt no max datagram size Sets the maximum sFlow packet size to be sent to the collector The no form of the command resets the parameter to its default value Syntax Description packet size The packet size of the packet being
377. l Displays usage information of the file systems on the system Syntax Description detail Displays more detailed information on file system Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show files system Statistics for config filesystem Bytes Total 100 MB Bytes Used 3 MB Bytes Free 97 MB Bytes Percent Free 97 Bytes Available 97 MB Inodes Total 0 Inodes Used 0 Inodes Free 0 Inodes Percent Free 0 Statistics for var filesystem Bytes Total 860 MB Bytes Used 209 MB Bytes Free 651 MB Bytes Percent Free 75 Bytes Available 651 MB Inodes Total 0 Inodes Used 0 Inodes Free 0 Inodes Percent Free 0 ole switch config Related Commands N A Note Mellanox Technologies 158 Mellanox Technologies Confidential Rev 3 20 show files tcpdump show files tepdump Displays a list of statistics report files Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show files stats test dump 3 switch config Related Commands file tcpdump tcpdump Note Mellanox Technologies 159 Mellanox Technologies Confidential Rev 3 20 4 4 4 2 Configuration Files configuration audit configuration audit max changes lt number gt Chooses settings related to configuration change auditing Syntax Description max
378. lane data path fail all init shut management memory packet dump resources no debug ethernet ip pim all control plane data path fail all init shut management memory packet dump resources Configures the trace level for PIM The no form of the command removes the trace level for PIM Syntax Description all Enable track traces control plane Control plane traces data path IP packet dump trace fail all All failures including Packet Validation Trace init shut Init and shutdown messages management Management messages memory Memory related messages packet dump Packet dump messages resources OS Resource trace Default N A Configuration Mode Config History 3 3 5200 Role admin Example switch config debug ethernet ip pim all Related Commands Note Mellanox Technologies 743 Mellanox Technologies Confidential Rev 3 20 show ip pim protocol show ip pim protocol Displays PIM protocol information counters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip pim protocol PIM Control Counters Received Sent Invalid Assert 0 0 0 Bootstrap Router 0 0 0 CRP Advertisement 0 0 0 Graft 0 0 0 Grapt Ack 0 0 0 Hello 0 0 0 J P 0 0 0 Register 0 0 0 Register Stop 0 0 0 State Refresh 0 0 0 switch config Related Command
379. lated Commands show interfaces ethernet Note Mellanox Technologies 360 Mellanox Technologies Confidential Rev 3 20 flowcontrol flowcontrol receive send off on force Enables or disables IEEE 802 3x link level flow control per direction for the speci fied interface Syntax Description receive send receive ingresses direction send egresses direction off on on enables IEEE 802 3x link level flow control for the specified interface on receive or send off disables IEEE 802 3x link level flow control for the specified interface on receive or send force Forces command implementation Default receive off send off Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1 flowcontrol receive off switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note N A Mellanox Technologies 361 Mellanox Technologies Confidential Rev 3 20 mtu mtu lt frame size gt Configures the Maximum Transmission Unit MTU frame size for the interface Syntax Description frame size This value may be 1518 9216 bytes Default 1522 bytes Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1 mtu 9216 switch config interface ethern
380. le or disable flow control per port and per priority level e Supports flow control only on physical ports not on logical interfaces such as tunnels or interfaces defined by sharing a physical port in multiple virtual switch contexts e Uses the configured threshold values to set up the queue buffer spaces accordingly in the datapath e Provides hardware abstraction layer callouts for the following e Enabling or disabling of flow control on each port for each priority e Configuring the queue depth for each priority on each port e Provides trace logs for execution upon error conditions and for any event notifications from the hardware or datapath These trace logs are a useful aid in troubleshooting e Allows the administrator to configure the minimum and maximum threshold values for flow control These configurations are applied globally on all ports and priorities Priority Based Flow Control PFC provides an enhancement to the existing pause flow control mechanism as described in 802 1X gt To enable PFC globally Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable PFC globally on the switch Run switch config dcb priority flow control enable This action might cause traffic loss while shutting down a port with priority flow con trol mode on Type yes to confirm enable pfc globally yes gt To enable PFC per priority Step 1 Log in as admin
381. le switch config vrrp 100 preempt Related Commands Note To set this router as backup for the current virtual router master preempt must be enabled Mellanox Technologies 779 Mellanox Technologies Confidential Rev 3 20 authentication text authentication text lt password gt no authentication text Sets virtual router authentication password and enables authentication The no form of the command disables the authentication mechanism Syntax Description password The virtual router authentication password The pass word string must be up to 8 alphanumeric characters Default Disabled Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Example switch config vrrp 100 authentication text mypassword Related Commands Note Mellanox Technologies 780 Mellanox Technologies Confidential Rev 3 20 advertisement interval advertisement interval lt seconds gt no advertisement interval Sets the virtual router advertisement interval The no form of the command resets the parameter to its default Syntax Description seconds The virtual router advertisement interval in seconds Range 1 255 Default 1 Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Example switch config vrrp 100 advertisement interval 10 Related Commands Note Mellanox Technologies 781 Mellanox Technologies Con
382. led yes SNMP port 1000 System contact my name System location lab Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp Note Mellanox Technologies 350 Mellanox Technologies Confidential Rev 3 20 shmp server user snmp server user admin lt username gt v3 encrypted auth lt hash type gt lt password gt priv lt privacy type gt lt password gt capability lt cap gt enable lt sets gt prompt auth lt hash type gt priv lt privacy type gt no snmp server user admin lt username gt v3 encrypted auth lt hash type gt lt password gt priv lt privacy type gt lt password gt capability lt cap gt enable lt sets gt prompt auth lt hash type gt priv lt privacy type gt Specifies an existing username or a new one to be added The no form of the command disables access via SNMP v3 for the specified user Syntax Description v3 Configures SNMP v3 users auth Configures SNMP v3 security parameters specifying passwords in plaintext on the command line note passwords are always stored encrypted capability Sets capability level for SET requests enable Enables SNMP v3 access for this user encrypted Configures SNMP v3 security parameters
383. ll Default all Configuration Mode Config History 3 2 0230 Role admin Example switch config ip load sharing all switch config show ip load sharing Load sharing all switch config Related Commands ip route Note Mellanox Technologies 580 Mellanox Technologies Confidential Rev 3 20 show ip route show ip route static summary a Displays the route table Syntax Description static Displays routing table summary Displays routing table summary a Displays static routes currently inactive due to the interface being down Default N A Configuration Mode Any Command Mode History 3 1 0000 First version 3 3 3500 Added Distance Metric column 3 4 0000 Added a parameter Role admin Example switch config show ip route Destination Mask Gateway Interface Source Distance Metric default 0 0 0 0 10 224 13 254 mgmt0 DHCP 0 0 10 224 13 0 255 255 255 0 0 0 0 0 mgmt 0 direct 0 0 11 11 11 0 255 255 255 0 0 0 0 0 vianll direct 0 0 23 23 23 0 255 255 255 0 0 0 0 0 vlan23 direct 0 0 172 21 23 0 255 255 255 0 0 0 0 0 vlan23 ospf 110 2 switch config Related Commands ip route Note ECMP routes are displayed in an aggregated manner Mellanox Technologies 581 Mellanox Technologies Confidential Rev 3 20 show ip load sharing show ip load sharing Displays ECMP hash attribute Syntax Description N A Default N A Configuration Mode Any
384. logies Confidential Rev 3 20 summary address summary address lt ip address gt lt prefix gt not advertise no summary address lt ip address gt lt prefix gt not advertise Creates aggregate addresses for the OSPF protocol The no form of the command disables the aggregation of the ip address Syntax Description ip address The summary IP address not advertise Suppresses routes that match the specified ip address prefix Network prefix in the format of 24 or 255 255 255 0 for example Default N A Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf summary address 10 10 10 10 24 Related Commands N A Note Maximum of 1500 summarized IP addresses can be configured Mellanox Technologies 608 Mellanox Technologies Confidential Rev 3 20 6 2 5 3 Interface ip ospf cost ip ospf cost lt cost gt no ip ospf cost lt cost gt Sets OSPF cost of sending packet of this interface The no form of the command resets this parameter to default Syntax Description cost The Interface cost used by the OSPF Range is 1 65535 Default 1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf cost 100 Related Commands N A
385. low gies hea Meta Caen ead Ue era 452 SRI Plow Tables iaeoe ee ee pa ek eee A ERE Ne SE eas EERE 452 5 7 2 Configuring OpenFlow i a a e cee eee ee 453 JRI Commands es 30a ae eves dood tn eeddeeind MERE tie e Stowe RS 454 5 8 IGMP Snooping oss eta ce aa A eh Ae TAAA 461 5 8 1 Configuring IGMP Snooping 0 00 eee eee eee 461 5 8 2 Defining a Multicast Router Port on a VLAN 02 02 0008 461 5 8 3 IGMP Snooping Querier 22 2 2 cee eee 463 5 8 4 Commands erse obre piset AEE wictheh DOG Hebe S Sid MOBS AAE D esa es 464 5 9 Link Layer Discovery Protocol LLDP 0 0 0 0 ee eee 480 SDLT Configuring LEDP asc stu bs ule th gine Whe elk Bb tee eee syns SEs 480 5 9 2 DEBXs 2258 Dida deta Re a tet telah Boole tite hited Deltas ae 480 5 9 3 Commands esc dsi reinan iai ee Pad eth dob edd eden a a eoerede 4 482 5 10 Quality of Service QOS 6 eect eee nes 498 Mellanox Technologies 5 Mellanox Technologies Confidential Rev 3 20 5 10 1 Priority Flow Control and Link Level Flow Control 498 5 10 2 Enhanced Transmission Selection ETS 0 000 c cece eens 499 3 103 Commands cla es ere ee ee SN Ta owe Moh es wee 502 5311 A cess Control Lister aia neste a aiken hte SAM e ee adh Wen eee a 512 5 11 1 Configuring Access Control List 0 0 0 2 eee eee eee 512 D112 ACTS ACHODS s sienet gp dBib tts doped Rips BOM oda hae 4 na oa ee Cees 512 95 1
386. lt key gt no ip ospf message digest key lt key id gt Sets the message digest key for MD5 authentication The no form of the command deletes the key for MD5 authentication Syntax Description auth type The authentication type 0 Unencrypted password 7 MDS key key Authentication password up to 8 alphanumeric string key id Alphanumeric password of up to 16 bytes Default Unencrypted no Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf message digest key mykeyid md5 7 mykey Related Commands N A Note The user cannot delete the last key until authentication is disabled Mellanox Technologies 620 Mellanox Technologies Confidential Rev 3 20 ip ospf area ip ospf area lt area id gt no ip ospf area Sets OSPF area of this interface and creates the area if non existent The no form of the command removes the interface from the area Syntax Description area id OSPF area ID Range is 0 4294967295 Default N A Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port Config Interface Loopback History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf area 0
387. lt seconds gt no radius server host lt IP address gt enable auth port Configures RADIUS server attributes The no form of the command resets the attributes to their default values and deletes the RADIUS server Syntax Description IP address RADIUS server IP address enable Administrative enable of the RADIUS server port RADIUS server UDP port number secret Sets a secret key shared hidden text string known to the system and to the RADIUS server retries Number of retries 0 5 before exhausting from the authentication seconds Timeout in seconds between each retry 1 60 Default 3 seconds 1 retry Default UDP port is 1812 Configuration Mode Config History 3 1 0000 Role admin Example switch config radius server host 40 40 40 40 switch config show radius RADIUS defaults Key 3333 Timeout 3 Retransmit 1 RADIUS servers 40 40 40 40 1812 Enabled yes Key 3333 default Timeout 3 default Retransmit 1 default switch config Related Commands aaa authorization radius server show radius Note e RADIUS servers are tried in the order they are configured e Ifyou do not specify a parameter for this configured RADIUS server the configuration will be taken from the global RADIUS server configuration Refer to radius server com mand Mellanox Technologies 253 Mellanox Technologies Confidential Rev 3 20 show radius show ra
388. lue Syntax Description interval Time in seconds Range 1 3600 Default 300 seconds Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 graceful restart stalepath time 350 Related Commands N A Note Mellanox Technologies 647 Mellanox Technologies Confidential Rev 3 20 graceful restart helper graceful restart helper no graceful restart helper Enables BGP graceful restart helper mode on the switch for all BGP neighbors The no form of the command disables BGP graceful restart helper mode on the switch for all BGP neighbors Syntax Description N A Default Graceful restart is enabled Configuration Mode Config Router BGP History 3 4 0000 Role admin Example switch config router bgp 100 graceful restart helper Related Commands N A Note e When graceful restart helper mode is enabled the switch retains routes from neighbors capable of graceful restart while those neighbors are restarting BGP e Individual neighbor configuration takes precedence over the global configuration Mellanox Technologies 648 Mellanox Technologies Confidential Rev 3 20 maximum paths maximum paths ibgp lt maximum path gt Configures the maximum number of parallel eBGP iBGP routes that the switch installs in the routing table Syntax Description ibgp Sets the configuration on the internal BGP m
389. ly available image prior to fetching the new image e See section Upgrading MLNX OS SX Software in the Mellanox SwitchX User Man ual for a full upgrade example Mellanox Technologies 143 Mellanox Technologies Confidential Rev 3 20 image install image install lt image filename gt location lt location ID gt progress lt prog options gt verify lt ver options gt Installs the specified image file Syntax Description image filename Specifies the image name location ID Specifies the image destination location prog options e no track overrides CLI default and does not track the installation progress e track overrides CLI default and tracks the installation progress ver options e check sig requires an image to have either a valid sig nature or no signature e ignore sig allows unsigned or invalidly signed images to be installed e require sig requires from the installed image to have a valid signature If a valid signature is not found on the image the image cannot be installed Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config image install SX_PPC_M460EX 3 0 0000 dev HA 2012 01 22 08 47 59 ppc Step 1 of 4 Verify Image 100 0 HERE HH HH HE HE HE HE HH HE FE HE TE FE EE EE EE EE HE FE E EE E TE FE E AE E EE E E E E HE Step 2 of 4 Unc
390. ly connected to the destination interface there are two options for switching the mirrored data to the analyzer system e A VLAN tag may be added to the Ethernet header of the mirrored traffic e An Ethernet header can be added with include a new destination address and VLAN tag It must be taken into account that adding headers increases packet size a gt Mellanox Technologies 526 Mellanox Technologies Confidential Rev 3 20 Figure 17 Header Format Options Source Frame Mirror Frame local Source Frame Mirror Frame add vlan Source Frame Mirror Frame add ethernet header Source Frame Mirror Frame add ethernet header DA sa TER ata HOOO gt pA sa osio VLAN ress DA sA TW Data 5 12 1 4 Congestion Control The destination ports might receive pause frames that lead to congestion in the switch port In addition too much traffic directed to the analyzer port for example 40GbE mirror port is directed into 10G analyzer port might also lead to congestion In case of congestion e When best effort mode is enabled on the analyzer port SwitchX drops excessive traffic headed to the analyzer port using tail drop mechanism however the regular data mir rored data heading to its original port does not suffer from a delay or drops due to the analyzer port congestion e When the best effort mode on the analyzer port is disabled the SwitchX does not drop the excessive traffic This might lead to buffer e
391. lyzer port supports status and statistics as any other port LAG The destination interface cannot be a member of LAG when the header format is local Control Protocols The destination interface may also operate in part as a standard port receiving and sending out non mirrored traffic When the header format is configured as a local port ingress control proto col packets that are received by the local analyzer port get discarded Advanced MTU Considerations The analyzer port like its counterparts is subject to MTU configuration It does not send packets longer than configured When the analyzer port sends encapsulated traffic the analyzer traffic has additional headers and therefore longer frame The MTU must be configured to support the additional length otherwise the packet is truncated to the configured MTU The system on the receiving end of the analyzer port must be set to handle the egress traffic If it is not it might discard it and indicate this in its statistics packet too long 5 12 1 3 Header Format Ingress traffic from the source interface can be manipulated in several ways depending on the network layout using the command header format If the analyzer system is directly connected to the destination interface then the only parameters that can be configured on the port are the MTU speed and port based flow control Priority flow control is not supported is this case However if the analyzer system is indirect
392. m Config mode is not possible Config Interface Management Configuration mode for management interface mgmt0 mgmt and loopback Config Interface Ethernet Configuration mode for Ethernet interface Config Interface Port Channel Configuration mode for Port channel LAG Config VLAN Configuration mode for VLAN Any Command Mode Several commands such as show can be applied within any context Mellanox Technologies 26 Mellanox Technologies Confidential Rev 3 20 3 1 2 Syntax Conventions To help you identify the parts of a CLI command this section explains conventions of presenting the syntax of commands Table 8 Syntax Conventions Syntax Convention Description Example lt gt Angled brackets Indicate a value variable that lt 1 65535 gt or lt switch inter must be replaced face gt Square brackets Enclose optional parameters destination ip destination port However only one parameter out destination mac of the list of parameters listed can be used The user cannot have a combination of the parameters unless stated otherwise Braces Enclose alternatives or variables mode active on passive that are required for the parameter in square brackets Vertical bars Identify mutually exclusive active on passive choices Do not type the angled or square brackets vertical bar or braces in command lines This ad guide uses
393. makes available the following sub menus listed in order of appearance from top to bottom Table 11 System Submenus Submenu Title Description Modules Displays a graphic illustration of the system modules By moving the mouse over the ports in the front view a pop up caption is displayed to indicate the sta tus of the port The port state active down is differentiated by a color scheme green for active gray black for down By moving the mouse over the rear view a pop up caption is displayed to indicate the leaf part information Inventory Displays a table with the following information about the system modules mod ule name type serial number ordering part number and Asic firmware version Power Management Displays a table with the following information about the system power supplies power supply name power voltage level current consumption and status A total power summary table is also displayed providing the power used the power capacity and the power available MLNX OS Upgrade Displays the installed MLNX OS images and the active partition uploads a new image and installs a new image Mellanox Technologies 34 Mellanox Technologies Confidential Rev 3 20 3 2 3 3 2 4 Mellanox Technologies 35 Table 11 System Submenus Submenu Title Description Reboot Reboots the system Make sure that you save your configuration prior to clickin
394. management memory packet port info state machine port receive state machine port role selection state machine port transit state machine port transmit state machine protocol migration state machine timers no debug ethernet spanning tree all error event filters init shut manage ment memory packet port info state machine port receive state machine port role selection state machine port transit state machine port transmit state machine protocol migration state machine timers Configures the trace level for spanning tree The no form of the command disables the configured spanning tree debug traces Syntax Description all Enables all traces error Error messages trace event Events related messages filters Lower later traces init shut Init and shutdown traces management Management messages memory Memory related messages packet BPDU related messages port info state machine Port information messages port receive state machine Port received messages port role selection state machine Port role selection messages port transit state machine Port transition messages port transmit state machine Port transmission messages protocol migration state Protocol migration messages machine timers Timer modules message Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config
395. me lt username gt capability lt cap gt disable login password full name lt name gt nopassword password 0 7 lt password gt no username lt username gt capability disable login password full name Creates a user and sets its capabilities password and name The no form of the command deletes the user configuration Syntax Description username Specifies a username and creates a user account New users are created initially with admin privileges but is disabled cap User capabilities e admin full administrative capabilities e monitor read only capabilities and actions can not change the running configuration disable login password Disable disable this account e Disable login disable all logins to this account e Disable password disable login to this account using a local password name Full name of the user nopassword The next login of the user will not require password 017 e Q specifies a login password in cleartext e 7 specifies a login password in encrypted text password Specifies a password for the user in string form If 0 7 was not specified then the password is in cleartext Default The following usernames are available by default e admin e monitor e xmladmin e xmluser Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Mellanox Technologies 234 Mellanox Technologies Confidential Rev 3 20 Example switch config us
396. mple Role admin Example switch my vip standby config show interfaces mlag port channel summary Port Flags D Down P Up in port channel members MLAG Port Channel Flags D Down U Up P Partial UP S suspended by MLAG Group Port Channel Type Local Ports Peer Ports 1 Mpo2 U Static Eth1 2 P Eth1 2 P 2 Mpo3 U Static Eth1 4 P Eth1 8 P 3 Mpo4 U LACP Eth1 15 P Eth1 12 P switch config Related Commands Note e Jfacluster is not available the column Peer Ports shows N A If the cluster is available but is not configured on the peer the Peer Ports column shows nothing e If the system happens to be busy peer ports may be unavailable and the following prompt may appear in the output System busy and partial information is presented please try again later Mellanox Technologies 409 Mellanox Technologies Confidential Rev 3 20 show mlag statistics show mlag statistics Displays the MLAG IPL counters Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4500 3 4 0000 Updated example Role admin Example switch config show mlag statistics IPL 1 RX Heartbeat 439908 TX Heartbeat 439951 Related Commands Note RX IGMP tunnel 0 TX IGMP tunnel 1 RX mlag notification 0 TX mlag notification 12 RX port notification 56 TX port notification 73 RX FDB sync 424 TX FDB sync 778 RX LACP ma
397. mpts Mellanox Technologies 242 Mellanox Technologies Confidential Rev 3 20 Syntax Description enable Enables locking out of user accounts based on authenti cation failures This both suspends enforcement of any existing lock outs and prevents any new lockouts from being recorded If lockouts are later re enabled any lockouts that had been recorded previously resume being enforced but accounts which have passed the max fail limit in the meantime are NOT automatically locked at this time They would be permitted one more attempt and then locked because of how the locking is done lockouts are applied after an authentication failure if the user has surpassed the threshold at that time Lockouts only work if tracking is enabled Enabling lockouts automatically enables tracking Disabling tracking automatically disables lockouts lock time Sets maximum permitted consecutive authentication failures before locking out users Unlike the max fail setting this does take effect immediately for all accounts If both unlock time and lock time are set the unlock time must be greater than the lock time This is not based on the number of consecutive failures and is therefore divorced from most of the rest of the tally feature except for the tracking of the last login failure max fail Sets maximum permitted consecutive authentication failures before locking out users This setting only impacts what lockouts are imposed
398. multicast Filter the table to a multicast addresses only Default N A Configuration Mode Any Command Mode History 3 1 0600 3 3 4500 Updated Example Role admin Example switch config show mac address table Switch ethernet default Vian Mac Address Type Interface a 00 00 00 00 00 01 Static Po5 1 00 00 3D 5C FE 16 Dynamic Eth1 1 1 00 00 3D 5D FE 1B Dynamic Ethl1 2 Number of unicast 2 Number of multicast 0 switch config Related Commands mac address table static clear mac address table Note Mellanox Technologies 426 Mellanox Technologies Confidential Rev 3 20 show mac address table aging time show mac address table aging time Displays the MAC address table aging time Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0600 Role admin Example switch config mac address table aging time 300 switch config show mac address table aging time Mac Address Aging Time 300 switch config Related Commands mac address table aging time mac address table static clear mac address table Note MAC addresses learned on the mgmt0 is not shown by this command Mellanox Technologies 427 Mellanox Technologies Confidential Rev 3 20 5 6 Spanning Tree The operation of Rapid Spanning Tree Protocol RSTP provides for rapid recovery of connectiv ity following the failure of a bridge bridge port or
399. n ETS provides a common management framework for assign ment of bandwidth to traffic classes for weighted round robin WRR scheduling If a traffic class does not use all the bandwidth allocated to it other traffic classes can use that available bandwidth This allows optimal utilization of the network capacity while prioritizing and provid ing the necessary resources The ETS feature has the following attributes e ETS global admin e Enable default scheduling mode is WRR according to the configured bandwidth per traffic class e Disable scheduling mode is Strict Priority SP Mellanox Technologies 499 Mellanox Technologies Confidential Rev 3 20 e Bandwidth percentage for each traffic class By default each traffic class gets an equal share The default mapping of priority to traffic classes per interface is as follows e Priority 0 1 mapped to TC 0 e Priority 2 3 mapped to TC 1 e Priority 4 5 mapped to TC 2 e Priority 6 7 mapped to TC 3 TCO and TC3 are lossy TCs while TC1 and TC2 can be lossless as well as lossy It is possible but not recommended to map PFC enabled priorities lossless traffic to those aa TCO or TC3 ETS is enabled by default scheduling is WRR gt To set the scheduling mode to Strict Priority Step 1 Run the command dcb ets disable switch config no dcb ets enable gt To configure the WRR bandwidth percentage Step 1 Make sure ETS feature is enabled Run switch config
400. n Example switch config web client cert verify Related Commands N A Note Mellanox Technologies 66 Mellanox Technologies Confidential Rev 3 20 web client ca list web client ca list lt ca list name gt default ca list none no web client ca list Configures supplemental CA certificates for verification of server certificates during HTTPS file transfers The no form of the command uses no supplemental certificates Syntax Description ca list name Specifies CA list to configure default ca list Configures default supplemental CA certificate list none Uses no supplemental certificates Default default ca list Configuration Mode Config History 3 2 3000 Role admin Example switch config web client ca list default ca list Related Commands N A Note Mellanox Technologies 67 Mellanox Technologies Confidential Rev 3 20 web enable web enable no web enable Enables the web based management console The no form of the command disables the web based management console Syntax Description N A Default enable Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config web enable switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HITPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers
401. n lt string gt no Idap base dn Sets the base distinguished name location of the user information in the schema of the LDAP server The no form of the command resets the attribute to its default values Syntax Description string A case sensitive string that specifies the location in the LDAP hierarchy where the server should begin search ing when it receives an authorization request For example ou users dc example dc com with no spaces when ou Organizational unit dc Domain component cn Common name sn Surname Default ou users dc example dc com Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap base dn ou department dc example dc com switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute sAMAccountName Bind DN Bind password Group base DN Group attribute member LDAP version 7 3 Referrals yes Server port 389 Search Timeout 25 Bind Timeout 5 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers 1 10 10 10 10 2 VOC I0 L2 switch config Mellanox Technologies 259 Mellanox Technologies Confidential Rev 3 20 Related Commands show ldap Note Mellanox Technologies 260 Mellanox Technologies Confidential
402. n Mode Config History 3 3 3500 Role admin Example switch config router ospf switch config router ospf Related Commands N A Note Only one OSPF instance is supported Mellanox Technologies 598 Mellanox Technologies Confidential Rev 3 20 6 2 5 2 Config Router router id router id lt ip address gt no router id Sets Router ID for the OSPF instance The no form of the command causes automatic election of router ID by the router Syntax Description ip address The Router id in IP address format Default The router ID is a 32 bit number assigned to the router running the OSPF protocol This number uniquely identifies the router within an Autonomous System Router ID can be configured statically however if it is not configured then the default election is as follows e Ifa loopback interface already exists the router ID takes the loopback IP address e Otherwise the lowest IP address is elected as router ID Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf router id 10 10 10 10 Related Commands N A Note Mellanox Technologies 599 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Disables the OSPF instance The no form of the command enables the OSPF instance Syntax Description N A Default Enable no shutdown Configuration Mode Config OSPF
403. n scenario and the master becomes a standalone switch 5 3 2 Unicast and Multicast Sync Unicast and multicast sync is a mechanism which syncs the unicast and multicast FDBs of the MLAG peers It prevents unicast asymmetric traffic from loading the network with flood traffic and multicast traffic from being processed 5 3 3 MLAG Port Sync Under normal circumstances traffic from the IPL cannot pass through the MLAG ports the IPL is isolated from the MLAG ports If one of the MLAG links break the other MLAG switch opens that isolation and allows traffic from its peer through the IPL to flow via the MLAG port which accesses the destination of the fallen link 5 3 4 MLAG Configuration This section provides an example of how to configure two switches and a server in an MLAG setup Mellanox Technologies 391 Mellanox Technologies Confidential Rev 3 20 Figure 13 Basic MLAG Topology gt To configure L2 MLAG Prerequisites Step 1 Enable IP routing Run switch config ip routing Step 2 Recommended Enable LACP in the switch Run switch config lacp Step 3 Enable QoS on the switch to avoid congestion on the IPL port Run switch config dcb priority flow control enable force Step 4 Enable the MLAG protocol commands Run switch config protocol mlag Configuring the IPL Step 1 Create a VLAN for the inter peer link IPL to run on Run switch config vlan 4000 switch config vlan 4000 Step 2 Cre
404. nabled in the system Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 3000 3 3 4550 Updated output Role admin Example switch config show protocols Ethernet enabled spanning tree rstp lacp disabled lldp enabled igmp snooping disabled ets enabled priority flow control disabled sflow disabled openflow enabled IP routing disabled ospf disabled dhcp relay disabled Infiniband enabled sm enabled switch config Related Commands N A Note Mellanox Technologies 338 Mellanox Technologies Confidential Rev 3 20 Mellanox Technologies 339 Mellanox Technologies Confidential Rev 3 20 4 13 Network Management Interfaces 4 13 1 XML API MLNX OS XML API is currently under development For further information please contact Mellanox support Mellanox Technologies 340 Mellanox Technologies Confidential Rev 3 20 4 13 2 Commands 4 13 2 1 SNMP The commands in this section are used to manage the SNMP server snmp server auto refresh snmp server auto refresh enable interval no snmp server auto refresh enable Configures SNMPD refresh settings The no form of the command disables SNMPD refresh mechanism Syntax Description enable Enables SNMPD refresh mechanism interval Sets SNMPD refresh interval Default Enabled Interval 60 secs Configuration Mode Config History 3 1 0000 Role a
405. nables up switch config Related Commands Note Mellanox Technologies 370 Mellanox Technologies Confidential Rev 3 20 show interfaces ethernet lt inf gt status show interfaces ethernet lt inf gt status Displays the status speed and negotiation mode of the specified interface Syntax Description inf Interface number lt slot gt lt port gt Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces ethernet status Port Operational state Speed Negotiation Eth1 1 Up 40 Gbps No Negotiation Eth1 2 Up 10 Gbps No Negotiation Eth1 3 Up 40 Gbps No Negotiation switch config Related Commands Note Mellanox Technologies 371 Mellanox Technologies Confidential Rev 3 20 show interfaces ethernet lt inf gt transceiver show interfaces ethernet lt inf gt transceiver Displays the transceiver info Syntax Description inf interface number lt slot gt lt port gt Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show interfaces ethernet 1 1 transceiver Port 1 1 state identifier QSFP cable module type Optical cable module ethernet speed and type 40GBASE SR4 vendor Mellanox cable_length 50m part number MC2210411 SR4 revision Al serial number TT1151 00006 switch config Rel
406. nagement memory packet dump resources Configures the trace level for IGMP The no form of the command removes the trace level for IGMP Syntax Description all Enable track traces control plane Control plane traces data path IP packet dump trace fail all All failures including Packet Validation Trace init shut Init and shutdown messages management Management messages memory Memory related messages packet dump Packet dump messages resources OS Resource trace Default N A Configuration Mode Config History 3 3 5200 Role admin Example switch config debug ethernet ip igmp 13 all Related Commands Note Mellanox Technologies 766 Mellanox Technologies Confidential Rev 3 20 show ip igmp groups show ip igmp groups lt group gt vlan lt vlan id gt Displays information about IGMP attached group membership Syntax Description group Filters the output to a specific IP multicast group address vlan lt vlan id gt Filters the output to a specific VLAN ID Default N A Configuration Mode Any Command Mode History Role admin Example switch config show ip igmp groups IGMP Connected Group Membership for VRF default Type S Static D Dynamic L Local T SSM Translated Group Address Type Interface Uptime Expires Last Reporter 225 7 6 0 S vlanl9 0d 00 12 12 14 0d 00 00 00 00 0 0 0 0 225 7 10 1 D vlanl9 0d 00 00 01
407. nager 38 TX LACP manager 21 Mellanox Technologies 410 Mellanox Technologies Confidential Rev 3 20 5 4 VLANs A Virtual Local Area Network VLAN is an L2 segment of the network which defines a broad cast domain and is identified by a tag added to all Ethernet frames running within the domain This tag is called a VLAN ID VID and can take a value of 1 4094 Each port can have a switch mode of either e Access Access port is a port connected to a host It can accept only untagged frames and assigns them a default configured VLAN Port VLAN ID On egress traffic sent from the access port is untagged e Access dcb This mode is Mellanox specific that receives ingress untagged traffic but sends egress priority tag VLAN ID 0 e Hybrid Hybrid port is a port connected to either switches or hosts It can receive both tagged and untagged frames and assigns untagged frames a default configured VLAN Port VLAN ID It receives tagged frames with VLANs of which the port is a member these VLANs names are allowed On egress traffic of allowed VLANs sent from the Hybrid port is sent tagged while traffic sent with PVID is untagged e Trunk Trunk port is a port connecting 2 switches It accepts only tagged frames with VLANs of which the port is a member On egress traffic sent from the Trunk port is tagged By default a Trunk port is automatically a member on all current VLANs 5 4 1 Configuring Acce
408. nce Performs specific maintenance operations automatically on a predefined sched ule Alerts Displays a list of the recent health alerts and enables the user to configure health settings 3 2 6 ETH Mgmt The Eth Mgmt menu is not applicable when the switch profile is not Ethernet or A VPI The ETH Mgmt menu makes available the following sub menus listed in order of appearance from top to bottom Table 15 ETH Mgmt Submenus Submenu Title Description Spanning Tree Configures and monitors spanning tree protocol Mellanox Technologies 36 Mellanox Technologies Confidential Rev 3 20 Table 15 ETH Mgmt Submenus Submenu Title Description MAC Table Configures static mac addresses in the switch and displays the MAC address table Link Aggregation Configures and monitors aggregated Ethernet links LAG and configures LACP VLAN Manages the switch VLAN table IGMP Snooping Manages IGMP snooping in the switch ACL Manages Access Control in the switch Priority Flow Control Manages priority flow control 3 2 7 IP Route The IP Route menu makes available the following sub menus listed in order of appearance from top to bottom Table 16 IP Route Submenus Submenu Title Description Router Global Enables disables IP Routing protocol on the machine IP Route Not implemented IP Interface Not implemented Address Resolution Not implem
409. nd and management interfaces for 1U and blade systems interface up An interface s link state has changed to UP RFC1213 linkup SNMPv1 Supported for Ethernet InfiniBand and management interfaces for 1U and blade systems internal bus error Internal bus PC error Mellanox EFM MIB internalBusError liveness failure A process in the system is detected as hung Not implemented low power Low power supply Mellanox EFM MIB lowPower low power recover Low power supply recover Mellanox EFM MIB lowPowerRecover Mellanox Technologies Confidential Rev 3 20 Table 18 Supported Event Notifications and MIB Mapping mand snmp server notify send test Event Name Event Description MIB OID Comments new_root Local bridge became a Bridge MIB Supported for root bridge newRoot Ethernet paging high Paging activity has risen N A Not supported too high power redundancy mismatch Power redundancy mis Mellanox EFM MIB Supported for match powerRedundancyMis SX65xx only match systems process crash A process in the system Mellanox EFM MIB has crashed procCrash process exit A process in the system Mellanox EFM MIB unexpectedly exited procUnexpectedExit snmp authtrap An SNMPv3 request has Not implemented failed authentication topology_change Topology change trig Bridge MIB topolo Supported for gered by a local bridge gyChange Ethernet
410. negotiation if send hostname is enabled primary intf lt ifname gt Sets the interface from which a non interface specific configuration resolver and routes will be accepted via DHCP send hostname Enables the DHCP client to send a hostname during negotiation Default no ip dhcp yield to static no ip dhcp hostname ip ip dhcp primary intf mgmtO no ip dhcp send hostname Configuration Mode Config History 3 1 0000 Role admin Example switch config ip dhcp default gateway yield to static switch config show ip dhcp DHCP primary interface Configured mgmt0 Active mgmt 0 DHCP yield default gateway to static configuration yes DHCP Client Options Send Hostname no Client Hostname switch using system hostname switch config Related Commands show ip dhcp dhcp renew Note DHCP is supported for IPv4 networks only Mellanox Technologies 116 Mellanox Technologies Confidential Rev 3 20 show ip dhcp show ip dhcp Displays the DHCP configuration and status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show ip dhcp DHCP primary interface Configured mgmt0 Active mgmt 0 DHCP yield default gateway to static configuration yes DHCP Client Options Send Hostname no Client Hostname switch using system hostname switch config Related Command
411. new name for it in the upload URL file number An archived log file The archived log file will have the name mes sages lt n gt gz while n is the file number if you do not specify a new name for it in the upload URL The file will be compressed with gzip url Uplaods URL path FTP TFTP SCP and SFTP are supported For exam ple scp username password hostname path file name Default 10 files are kept by default with rotation criteria of 5 of the log partition size Configuration Mode Config History 3 1 0000 Role admin Example switch config logging files uplaod 1 scp admin scpserver Related Commands show logging show log files Note Mellanox Technologies 190 Mellanox Technologies Confidential Rev 3 20 logging monitor logging monitor lt facility gt lt priority level gt no logging monitor lt facility gt lt priority level gt Sets monitor log facility and level to print to the terminal The no form of the command disables printing logs of facilities to the terminal Syntax Description facility mgmt front e mgmt back mgmt core e events e sx sdk e mlnx daemons e iss modules priority level none emerg e alert e crit err e warming e notice e info e debug Default no logging monitor Configuration Mode Config History 3 3 4000 Role admin Example switch config logging monitor events notice switch
412. nfig History 3 1 0000 Role admin Example switch config ssh server xll forwarding enable switch config show ssh server SSH server configuration SSH server enabled yes Minimum protocol version 2 X11 forwarding enabled yes SSH server ports 22 Interface listen enabled yes No Listen Interfaces Host Key Finger Prints RSA vl host key a0 63 db 96 e2 95 5a 5a fd a8 d0 f4 ab e3 5f 8 RSA v2 host key le b7 8b ec ab 35 98 be 6b d6 12 c2 18 72 12 d6 DSA v2 host key 7c 4a 7 72 51 67 b5 0b cd a2 d2 b9 f3 be 3e 68 switch config Related Commands N A Note Mellanox Technologies 56 Mellanox Technologies Confidential Rev 3 20 ssh client global ssh client global host key check lt policy gt known host lt known host entry gt no ssh client global host key check known host localhost Configures global SSH client settings The no form of the command negates global SSH client settings Syntax Description host key check lt policy gt Sets SSH client configuration to control how host key checking is performed This parameter may be set in 3 ways e Ifset to no it always permits connection and accepts any new or changed host keys without checking e If set to ask it prompts user to accept new host keys but does not permit a connection if there was already a known host entry that does not match the one presented by the host e If set to yes it only permits
413. nfig mode Run switch config interface port channel 1 exit switch config Mellanox Technologies 374 Mellanox Technologies Confidential Rev 3 20 Step 5 Enable LACP in the switch Run switch config lacp switch config Step 6 Add a physical port to the port channel Run switch config interface ethernet 1 4 channel group 1 mode active passive switch config interface ethernet 1 4 Mellanox Technologies 375 Mellanox Technologies Confidential Rev 3 20 5 2 3 Commands interface port channel interface port channel lt 1 4096 gt lt 2 4096 gt no interface port channel lt 1 4096 gt lt 2 4096 gt Creates a LAG and enters the LAG configuration mode There is an option to create a range of LAG interfaces The no form of the command deletes the LAG or range of LAGs Syntax Description 1 4096 2 4096 LAG number Default N A Configuration Mode Config History 3 1 1400 First version 3 2 1100 Added range support 3 4 0000 Added note Role admin Example switch config interface port channel 1 switch config interface port channel 1 exit switch config interface port channel 1 10 switch config interface port channel 1 10 Related Commands Note If a LAG is also an IPL attempting to delete it without first deleting the IPL is rejected by the management Mellanox Technologies 376 Mellanox Technologies Confidential Rev
414. nfigures keyboard inactivity timeout for automatic logout Range is 0 35791 minutes Setting the value to 0 or using the no form of the command disables the auto logout paging enable Enables text viewing one screen at a time prefix modes enable Configures the prefix modes feature of CLI show config e prefix modes enable enables prefix modes for current and all future sessions e prefix modes show config uses prefix modes in show configuration output for current and all future sessions progress enable Enables progress updates prompt confirm reload Prompts for confirmation before rebooting prompt confirm reset Prompts for confirmation before resetting to factory state prompt confirm unsaved Confirms whether or not to save unsaved changes before rebooting prompt empty password Prompts for a password if none is specified in a pseudo URL for SCP Default N A Configuration Mode Config History 3 1 0000 Role admin Mellanox Technologies 40 Mellanox Technologies Confidential Rev 3 20 Example switch config cli default prefix modes enable switch config show cli CLI current session settings Maximum line size 8192 Terminal width 171 columns Terminal length 38 rows Terminal type xterm X display setting none Auto logout disabled Paging enabled Progress tracking enabled Prefix modes disabled CLI defaults for future sessions Auto logout disabled Paging enabled
415. nfigures the BGP keepalive and hold times The no form of the command resets the parameters to their default settings Syntax Description keep alive Frequency in seconds with which keepalive messages are sent to its peer Range 1 3600 seconds 0 no keep alive messages are sent hold Interval in seconds after not receiving a keepalive message that a peer is declared dead 3 7200 seconds 0 peer is held indefinitely regardless of keep alive messages Default Configuration Mode History Role Example Related Commands Note Keepalive time 60 secs Hold time 180 secs Config Router BGP 3 3 5006 3 3 5200 admin First version Updated syntax description related commands and notes switch config router bgp 100 timers bgp 61 181 switch config router bgp 100 ip routing neighbor timers router bgp lt as number gt show ip bgp Timer settings apply to every peer connection e The command neighbor timers configures the times on a specified peer connection e Hold time should be three times longer than the keepalive setting Mellanox Technologies 677 Mellanox Technologies Confidential Rev 3 20 6 3 4 3 Show show ip bgp show ip bgp lt ip address gt lt mask gt detail longer prefixes detail Displays information about the BGP routes table RIB Syntax Description ip address IP address e g 172 3 12 4 mask Netmask
416. nfiniBand Architecture Specification that is pro Release 1 2 1 vided by IBTA Director switch Installation Guide Each Mellanox Technologies switch platform is shipped with an Installation Guide document to bring up and initialize the switch platform System Hardware User Manual This document contains hardware descriptions LED assignments and hardware specifications among other things Switch Product Release Notes Please look up the relevant SwitchX based switch system series release note file Mellanox Virtual Modular Switch This reference architecture provides general informa Reference Guide tion concerning Mellanox L2 and L3 Virtual Modular Switch VMS configuration and design Configuring Mellanox Hardware for VPI This manual provides information on basic configura Operation Application Note tion of the converged VPI networks All of these documents can be found on the Mellanox website They are available either through the product pages or through the support page with a login and password Mellanox Technologies 11 Mellanox Technologies Confidential Glossary Table 3 Glossary Rev 3 20 AAA Authentication Authorization and Accounting Authentication verifies user credentials username and password Authorization grants or refuses privileges to a user client for accessing spe cific services Accounting tracks network resources consumption by use
417. ng show commands to display lines containing or exclud ing certain phrases or characters To filter the outputs of the show commands use the following format switch config lt show command gt include exclude lt extended regular expression gt lt ignore case gt next lt lines gt prev lt lines gt The filtering parameters are separated from the show command they filter by a pipe character i e Quotation marks may be used to include or exclude a string including space and multi ple filters can be used simultaneously For example switch config lt show command gt include lt extended regular expression gt lt ignore case gt next lt lines gt prev lt lines gt exclude lt extended regular expression gt lt ignore case gt next lt lines gt prev lt lines gt Examples switch config switch config switch config show asic version include SX SX module Version SX 9 2 5440 arc switchl4 standalone master config show module exclude PS Module Type Present Power lis Pata eee nee ee MGMT SX1036 1 N A Not Fatal FAN SXX0XX_FAN 1 N A Not Fatal CPU CPU 1 N A Not Fatal arc switchl4 standalone master config show interfaces include Eth discard pac Ethl 1 0 discard packets 0 discard packets Eth1 2 0 discard packets 0 discard packets Mellanox Technologies 31 Mellanox Technologies Confidential Rev 3 20 Eth1 3 0 discard pa
418. ngested e cpu util CPU utilization milliseconds of time spent e disk_device_io Storage device I O statistics e disk_io Operating system aggregate disk I O KB sec e eth e fan Fan speed e fs_mnt bytes Filesystem usage bytes e fs_mnt_inodes Filesystem usage inodes e ib e interface Network interface statistics e intf util Network interface utilization bytes memory System memory utilization bytes e paging Paging activity page faults e power Power supply usage e power consumption e temperature Modules temperature number of seconds Interval in seconds Default Different per sample Configuration Mode Config History 3 1 0000 Role admin Example switch config stats sample temperature interval 1 switch config show stats sample temperature Sample temperature Modules temperature Enabled yes Sampling interval 1 second switch config Related Commands show stats sample Note Mellanox Technologies 307 Mellanox Technologies Confidential Rev 3 20 stats clear all stats clear all Clears data for all samples CHDs and status for all alarms Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config stats clear all switch config Related Commands N A Note Mellanox Technologies 308 Mellanox Technologies Confidential Rev 3 20 stats e
419. ning is not supported on a local analyzer port e Disabling MAC learning is not supported on an IPL LAG Mellanox Technologies 424 Mellanox Technologies Confidential Rev 3 20 clear mac address table dynamic clear mac address table dynamic Clear the dynamic entries in the MAC address table Syntax Description N A Default N A Configuration Mode Config History 3 1 0600 Role admin Example switch config clear mac address table dynamic switch config Related Commands mac address table aging time mac address table static show mac address table Note This command does not clear the MAC addresses learned on the mgmt0 port Static entries are deleted using the no mac address table static command Mellanox Technologies 425 Mellanox Technologies Confidential Rev 3 20 show mac address table show mac address table address lt mac address gt interface ethernet lt if num ber gt vlan lt vlan gt range lt range gt unicast multicast Displays the static and dynamic unicast and multicast MAC addresses for the switch Various of filter options available Syntax Description mac address Filter the table to a specific MAC address if number Filter the table to a specific interface vlan Filter the table to a specific VLAN number 1 4094 range Filter the table to a range of VLANs unicast Filter the table to a unicast addresses only
420. nologies Confidential Rev 3 20 show mlag show mlag Displays MLAG configuration and status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4500 3 3 5006 Updated example Role admin Example switch config show mlag Admin status Enabled Operational status Up Reload delay 1 sec eepalive interval 30 sec System id 00 02 C9 AC 2A 60 LAG Ports Configuration Summary Configured 1 Disabled 0 Enabled L MLAG Ports Status Summary Inactive 0 Active partial 0 Active full 1 MLAG IPLs Summary ID Group Vlan Operational Local Peer Port Channel Interface State IP address IP address 1 Pol in Up LASLO TOST TOTON TO 2 Peers state Summary Peer ID State 88 9B 2D 14 52 F4 Up switch config Related Commands Note Mellanox Technologies 406 Mellanox Technologies Confidential Rev 3 20 show mlag vip show mlag vip Displays MLAG VIP configuration and status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 4500 Role admin Example switch config show mlag vip MLAG VIP MLAG group name my mlag group MLAG VIP address 1 1 1 1 30 Active nodes 2 Hostname VIP State IP Address SwitchaA master 10 10 10 1 SwitchB standby 10 10 10 2 switch config Related Commands Note Mellanox Technologies 407 Mellanox Technologies Confidential
421. nox Technologies 299 Mellanox Technologies Confidential Rev 3 20 stats alarm lt alarm id gt rate limit stats alarm lt alarm ID gt rate limit count lt count type gt lt count gt reset window lt window type gt lt duration gt Configures alarms rate limit Syntax Description alarm ID Alarms supported by the system for example e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees count type Long medium or short count number of alarms reset Set the count and window durations to default values for this alarm window type Long medium or short count in seconds Default Short window 5 alarms in 1 hour Medium window 20 alarms in 1 day Long window 50 alarms in 7 days Configuration Mode Config History 3 1 0000 Role monitor admin Example switch config stats alarm paging rate limit window long 2000 switch config Related Commands show stats alarm Note Mellanox Technologies 300 Mellanox Technologies Confidential Rev 3 20 stats chd l
422. nsistent state condi tion STP converges to a stable topology without the failed link or bridge after loop guard isolates the failure Disabling loop guard moves all loop inconsistent ports to listening state To configure loop guard use the following command switch config interface etherent lt inf gt spanning tree guard loop 5 6 5 Root Guard Configuring root guard on a port prevents that port from becoming a root port A port put in root inconsistent blocked state if an STP convergence is triggered by a BPDU that makes that port a root port The port is unblocked after the port stops sending BPDUs Mellanox Technologies 429 Mellanox Technologies Confidential Rev 3 20 To configure loop guard use the following command switch config interface etherent lt inf gt spanning tree guard root 5 6 6 MSTP Spanning Tree Protocol STP is a mandatory protocol to run on L2 Ethernet networks to elimi nate network loops and the resulting broadcast storm caused by these loops Multiple STP MSTP enables the virtualization of the L2 domain into several VLANs each governed by a separate instance of a spanning tree which results in a network with higher utilization of physical links while still keeping the loop free topology on a logical level Up to 64 MSTP instances can be defined in the switch Up to 64 VLANs can be mapped to a sin gle MSTP instance MSTP instance 0 the default instance may have all possible VLANs 1 40
423. ntax Description N A Default Enabled Configuration Mode Config History 3 3 4000 Role admin Example switch config no ha dns enable switch config Related Commands Note Mellanox Technologies 231 Mellanox Technologies Confidential Rev 3 20 4 9 User Management and Security 4 9 1 Authentication Authorization and Accounting AAA AAA is a term describing a framework for intelligently controlling access to computer resources enforcing policies auditing usage and providing the information necessary to bill for services These combined processes are considered important for effective network management and secu rity The AAA feature allows you to verify the identity of grant access to and track the actions of users managing the MLNX OS switch The MLNX OS switch supports Remote Access Dial In User Service RADIUS or Terminal Access Controller Access Control device Plus TACACS protocols e Authentication authentication provides the initial method of identifying each individ ual user typically by entering a valid username and password before access is granted The AAA server compares a user s authentication credentials with the user credentials stored in a database If the credentials match the user is granted access to the network or devices If the credentials do not match authentication fails and network access is denied e Authorization following the authentication a use
424. nteger gt lt integer gt lt byte array gt lt byte array gt lt integer gt lt integer gt lt byte array gt emote PFC configuration new section Willing enabled disabled fACsec enabled disabled umber of supported traffic classes 4 range is 1 8 FC enabled on priorities 5 7 it could be 01234567 or 137 or None WARNING peer PFC configuration does not match the local PFC configuration This warning should appear only if the ocal and remote PFC configuration don t match emote ETS configuration new section Willing enabled disabled CBS enabled disabled umber of supported traffic classes 3 range is 1 8 WARNING peer ETS configuration does not match the local ETS configuration This warning should appear only if the ocal and remote ETS configuration don t match riority assignment table Priority TC Gonar Gk n Na Or eH wWHE BODE Do Traffic class bandwidth table No need to have the recommended TC ETS Recommended TLV TC Bandwidth TSA Page 43 of 354 0 25 tsaStrictPriority 0 we are expecting either 0 or 2 as answers Related Commands Note Mellanox Technologies 493 Mellanox Technologies Confidential Rev 3 20 show lldp timers show lldp timers Shows LLDP timers configuration Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0300 Role admin Example switch config show lldp
425. o sets the duplex to auto e Setting the speed to one of the manual settings generally 10 100 or 1000 also sets the duplex to a manual setting which is determined by querying the interface to find out its current auto detected state Mellanox Technologies 91 Mellanox Technologies Confidential Rev 3 20 dhcp dhcp renew no dhcp Enables DHCP on the specified interface The no form of the command disables DHCP on the specified interface Syntax Description renew Forces a renewal of the IP address A restart on the DHCP client for the specified interface will be issued Default Could be enabled or disabled per part number manufactured with 3 2 0500 Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 dhcp switch config show interfaces mgmt0 configured Interface mgmt0 configuration Enabled yes DHCP yes Zeroconf no IP address Netmask IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 0 Speed auto Duplex auto MTU 1500 Comment Related Commands show interfaces lt ifname gt configured Note e When enabling DHCP the IP address and netmask are received via DHCP hence the static IP address configuration is ignored e Enabling DHCP disables zeroconf and vice versa e Setting a static IP address and netmask does not disable DHCP DHCP is dis
426. ogies 444 Mellanox Technologies Confidential Rev 3 20 spanning tree mst revision spanning tree mst revision lt number gt no spanning tree mst revision Configures the MSTP revision number The no form of the command sets the parameter to its default value Syntax Description number The MST revision number Range is 0 65535 Default 0 Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst revision 1 switch config Related Commands Note The revision number is one of three parameters along with the MST name and VLAN to instance map that identify the switch s MST region Mellanox Technologies 445 Mellanox Technologies Confidential Rev 3 20 spanning tree mst name spanning tree mst name lt name gt no spanning tree mst name Configures the MSTP name The no form of the command sets the parameter to its default value Syntax Description name MST name Up to 32 characters Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config spanning tree mst name my mst switch config Related Commands Note The name is one of three parameters along with the MST revision number and VLAN to instance map that identifies the switch s MST region Mellanox Technologies 446 Mellanox Technologies Confidential Rev 3 20 spanning tree mst root spann
427. ogout is enabled 1 Display the current CLI session options switch config show cli CLI current session settings Maximum line size 8192 Terminal width 157 columns Terminal length 60 rows Terminal type xterm Auto logout 15 minutes Paging enabled Progress tracking enabled Prefix modes enabled 2 Disable auto logout switch config no cli session auto logout 3 Display the new CLI session options switch 1 standalone master config show cli CLI current session settings Maximum line size 8192 Terminal width 157 columns Terminal length 60 rows Terminal type xterm Auto logout disabled Paging enabled Progress tracking enabled Prefix modes enabled 4 Re enable auto logout after 15 minutes switch config cli session auto logout 15 Mellanox Technologies 29 Mellanox Technologies Confidential Rev 3 20 5 Display the final CLI session options switch config show cli CLI current session settings 3 1 6 Mellanox Technologies 30 Maximum line size 8192 Terminal width 157 columns Terminal length 60 rows Terminal type xterm Auto logout 15 minutes Paging enabled Progress tracking enabled Prefix modes enabled Parameter Key This section provides a key to the meaning and format of all of the angle bracketed parameters in all the commands that are listed in this document Table 9 Angled Brackets Parameter Description
428. ole admin Example switch config interface vlan 10 ip ospf authentication Related Commands N A Note e Without message digest option a simple password authentication will be used e Message digest authentication can be enabled only if a key is configured Mellanox Technologies 618 Mellanox Technologies Confidential Rev 3 20 ip ospf authentication key ip ospf authentication key auth type lt password gt no ip ospf authentication key To assign a password for simple password authentication for the OSPF The no form of the command deletes the simple password authentication key Syntax Description auth type The authentication type 0 Unencrypted password 7 MDS key password Authentication password up to 8 alphanumeric string Default Unencrypted password Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf authentication key 7 mypass word Related Commands N A Note e Without message digest option a simple password authentication will be used e Message digest authentication can be enabled only if a key is configured Mellanox Technologies 619 Mellanox Technologies Confidential Rev 3 20 ip ospf message digest key ip ospf message digest key lt key id gt md5 auth type
429. ollowing sub menus listed in order of appearance from top to bottom Table 14 Status Submenus Submenu Title Description Summary Displays general information about the switch system and the MLNX OS image including current date and time hostname uptime of system system memory CPU load averages etc Profile and Capabilities Displays general information about the switch system capabilities such as the enabled profiles e g IB ETH and their corresponding values Temperature Provides a graphical display of the switch module sensors temperature levels over time 1 hour It is possible to display either the temperature level of one module s sensor or the temperature levels of all the module sensors together Power Supplies Provides a graphical display of one of the switch s power supplies voltage level over time 1 hour Fans Provides a graphical display of fan speeds over time 1 hour The display is per fan unit within a fan module CPU Load Provides a graphical display of the management CPU load over time 1 hour Memory Provides a graphical display of memory utilization over time 1 day Network Provides a graphical display of network usage transmitted and received packets over time 1 day It also provides per interface statistics Logs Displays the system log messages It is possible to display either the currently saved system log or a continuous system log Maintena
430. ologies 201 Mellanox Technologies Confidential Rev 3 20 debug ethernet lldp debug ethernet Ildp all control panel critical event data path fail all init shut management memory neigh add neigh age out neigh del neigh drop neigh updt tlv no debug ethernet Ildp all control panel critical event data path fail all init shut management memory neigh add neigh age out neigh del neigh drop neigh updt tlv Configures the trace level for LLDP The no form of the command disables the configured LLDP debug traces Syntax Description all Enables all traces control panel Control plane traces critical event Critical traces data path IP packet dump trace fail all All failure traces init shut Init and shutdown traces management Management messages memory Memory related messages neigh add Neighbor add traces neigh age out Neighbor ageout traces neigh del Neighbor delete traces neigh drop Neighbor drop traces neigh updt Neighbor update traces tlv TLV related trace configuration Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config debug ethernet lldp all switch config Related Commands Note Mellanox Technologies 202 Mellanox Technologies Confidential Rev 3 20 debug ethernet port debug ethernet port all Configures the trace level for port
431. ologies 528 Mellanox Technologies Confidential Rev 3 20 FA Step 7 Enable the session Run i 5 12 3 Verifying Mirroring Sessions gt To verify the attributes of a specific mirroring session gt To verify the attributes of running mirroring sessions Mellanox Technologies 529 Mellanox Technologies Confidential Rev 3 20 5 12 4 Commands 5 12 4 1 Config monitor session monitor session lt session id gt no monitor session lt session id gt Creates session and enters monitor session configuration mode upon using this com mand for the first time The no form of the command deletes the session Syntax Description session id The monitor session ID The range is 1 7 Default N A Configuration Mode Config History 3 3 3500 Role admin Example switch config monitor session 1 switch config monitor session 1 Related Commands Note Mellanox Technologies 530 Mellanox Technologies Confidential Rev 3 20 5 12 4 2 Config Monitor Session destination interface destination interface lt type gt lt number gt force no destination interface Sets the egress interface number The no form of the command deletes the destination interface Syntax Description interface lt type gt lt num Sets the interface type and number e g ethernet 1 2 ber gt force The user does not need to shutdown the port prior the operation
432. ologies 712 Mellanox Technologies Confidential Rev 3 20 set community list delete set community list lt community list name gt delete no set community list Deletes the matching community list permit entries from the route community list The no form of the command removes the set statement from the clause Syntax Description community list name Name of community list Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community list mycommu nity delete Related Commands N A Note Mellanox Technologies 713 Mellanox Technologies Confidential Rev 3 20 set ip next hop set ip next hop lt value gt no set ip next hop Configures a route s entry next hop parameter The no form of the command removes a route map s entry next hop setting Syntax Description value Route next hop IP A B C D e g 10 0 13 86 Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set ip next hop 10 10 10 10 Related Commands N A Note Mellanox Technologies 714 Mellanox Technologies Confidential Rev 3 20 set local preference set local preference lt value gt no set local preference Configures a route s entry local preference parameter The no form of the command removes a route map
433. ologies Confidential Rev 3 20 Step 3 Enter your license key s in the text box If you have more than one license please enter each license in a separate line Click Add Licenses after entering the last license key to install them If you wish to add another license key in the future you can simply enter it in the text box and click Add Licenses to install it Figure 7 Enter Licence Key s in Text Box Mellanox Mellanox MLNX OS SX6506 Management Console 5 ECHNOLOGIES Host switch 113dc8 User admin Logout Standalone Wi Virtual IP Active node S m Chassis master g Subnet Manager is not running gt mawa e Ez Stat ttti BSM Fabric Si 3 a i MGMT Inspetr Security System Serial Number M naeenees7 Installed Licenses License Hostname Key LK2 EFM_SX 5P26 85G2 3488 A3MG VD3V E7U Hosts Feature EFM_SX ARP valid yes Neighbors Max num ufm ports supported 200 Virtual Switch Mgmt Active yes web E Add New License s Email Alerts XML gateway Please enter one or more licenses each on a separate line Logs lt your license key gt Configurations Date and Time NTP Licensing Add Licenses 2009 2012 Mellanox Technologies Inc All installed licenses should now be displayed Mellanox Technologies 22 Mellanox Technologies Confidential Rev 3 20 Figure 8 Installed License
434. om this system s configuration Syntax Description active Generates from currently active configuration running Uses running configuration saved Uses saved configuration file lt filename gt Generates from inactive saved configuration save Saves new file to local persistent storage upload lt URL gt Supported types are HTTP HTPPS FTP TFTP SCP and SFTP For example scp username pass word hostname path filename Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration text generate file initial prev save example switch config show configuration files initial active initial prev initial bak Active configuration initial Unsaved changes yes switch config Related Commands show configuration files Note Mellanox Technologies 171 Mellanox Technologies Confidential Rev 3 20 configuration upload configuration upload active lt name gt lt URL or scp or sftp username pass word hostname port path filename gt Uploads a configuration file to a remote host Syntax Description active Upload the active configuration file Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration upload active scp root password 192 168 10 125 tmp confl switch config Related Commands N A Note No configuration
435. ompress Image 100 0 HERE HH HH HH HE FE E HE FE FE EE EE EE HE FE HE EE EE FE EE EE E TE FE E HE E E E E E EEE Step 3 of 4 Create Filesystems 00 0 FEFE TE FE HH HH TE FE HE FE E FE FE FE FE HE FE FE HE TE FE HE FE FE E AE FE E FE HE EE HE HH HH E E EE E E E E E E E E E E Step 4 of 4 Extract Image 100 0 HERE HE HH HH HE HE HE HE HE HE EEE HE EE EE HE FE EE HE E TE FE E HE E E E E E E E HE switch config Related Commands show images Note e The image cannot be installed on the active location the one which is currently being booted e Ona two location system the location is chosen automatically if no location is specified Mellanox Technologies 144 Mellanox Technologies Confidential Rev 3 20 image move image move lt src image name gt lt dest image name gt Renames the specified image file Syntax Description src image name Specifies the old image name dest image name Specifies the new image name Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config image move imagel img image2 img switch config Related Commands show images Note Mellanox Technologies 145 Mellanox Technologies Confidential Rev 3 20 image options image options require sig no image options require sig Requires from all the installed images a valid signature The no form of the command does not require a signature However i
436. on for one or more modules of the switch system please contact your assigned Mellanox Technologies field application engi neer Mellanox Technologies 137 Mellanox Technologies Confidential Rev 3 20 4 3 5 2 Importing Firmware and Changing the Default Firmware To perform an automatic firmware update by MLNX OS for a different switch firmware version without changing the MLNX OS version import the firmware package as described below MLNX OS sets it as the new default firmware and performs the firmware update automatically as described in the previous subsections Default Firmware Change on Standalone Systems Step 1 Import the firmware image mfa file Run switch config image fetch image fetch scp root 1 1 1 1 tmp fw Sx rel 9_2_6440 FIT tgz Password if required LOO 0 FREE HEHE HHH HEE HEE HH EH EH EH EH EE A A A A a EE EE switch config image default chip fw fw SX rel 9_2_6440 FIT mfa Installing default firmware image Please wait Default Firmware 9 2 6440 updated Please save configuration and reboot for new FW to take effect switch config Step 2 Save the configuration Run switch config configuration write switch config Step 3 Reboot the system to enable auto update Step 4 Mellanox Technologies 138 Mellanox Technologies Confidential Rev 3 20 4 3 6 Commands This chapter displays all the relevant commands used to manage the system software
437. on mode Role admin Example switch config interface ethernet 1 1 ip igmp snooping fast leave switch config interface ethernet 1 1 show ip igmp snooping inter faces interface leave mode Eth1 1 Fast Eth1 2 Normal Eth1 3 Normal switch config interface ethernet 1 1 Related Commands show ip igmp snooping interfaces Note Mellanox Technologies 467 Mellanox Technologies Confidential Rev 3 20 ip igmp snooping static group ip igmp snooping static group lt IP address gt interface lt type gt lt number gt no ip igmp snooping static group lt IP address gt interface lt type gt lt number gt Creates a static multicast group and attaches a port to a specified group The no form of the command deletes the interface from the multicast group Syntax Description Ip address Multicast IP address lt 224 x x x 239 255 255 255 gt interface lt type gt lt num Attach the group to a specific interface ber gt type ethernet or port channel Default No static groups are configured Configuration Mode Config VLAN History 3 1 1400 Role admin Example switch config vlan 1 switch config vlan 1 ip igmp snooping static group 230 0 0 1 inter face ethernet 1 1 switch config vlan 1 show ip igmp snooping groups Vlan ID Group St Dyn Ports 1 230 0 0 1 St Eth1 1 Total Num of Dynamic Group Addresses 0 Total Num of Static Group Addresses 1 switch config vlan 1 Relat
438. on your system perform the following steps Step 1 Change to Config mode switch gt enable switch configure terminal switch config Step 2 Obtain the previously available image img file You must delete this image in the next step to make room for fetching the new image switch config show images Installed images Partition 1 SX INC WAG OX SoS d130 ZOL3 03 20 Ziles2s2 joe Mellanox Technologies 130 Mellanox Technologies Confidential Rev 3 20 Step 3 Delete the old image if one exists that is listed under Images available to be installed prior to fetching the new image Use the command image delete for this purpose Step 4 Fetch the new software image Step 5 Display the available images Mellanox Technologies 131 Mellanox Technologies Confidential Rev 3 20 Step 6 Install the new image Step 7 Have the new image activate during the next boot Run Step 8 Run show images to review your images Run Mellanox Technologies 132 Mellanox Technologies Confidential Rev 3 20 Step 9 Save current configuration Run Step 10 Reboot the switch to run the new image Run 4 3 3 Deleting Unused Images gt To delete unused images Step 1 Enter Config mode Run Step 2 Get a list of the unused images Run Mellanox Technologies 133 Mellanox Technologies Confidential Rev 3 20 Partition 1 SX OS_PPC_M460EX 3 1 0000 dev HA 20
439. once the job is executed once at a single specified date and time e periodic the job is executed on a specified fixed time interval starting from a fixed point in time Default once Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 schedule type once switch config job 100 Related Commands show jobs Note A schedule type is essentially a structure for specifying one or more future dates and times for a job to execute Mellanox Technologies 293 Mellanox Technologies Confidential Rev 3 20 schedule lt recurrence type gt schedule lt recurrence type gt lt interval and date gt no schedule Sets the type of schedule the job will automatically execute on The no form of the command resets the schedule type to its default Syntax Description recurrence type The available schedule types are e daily the job is executed every day at a specified time e weekly the job is executed on a weekly basis e monthly the job is executed every month on a specified day of the month e once the job is executed once at a single specified date and time e periodic the job is executed on a specified fixed time interval starting from a fixed point in time interval and date Interval and date per recurrence type Default once Configuration Mode Config job History 3 1 0000 Role admin Example sw
440. oncise Displays version information for the currently running system image Syntax Description concise The concise variant fits the description onto one line Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show version Product name SX_PPC_M460EX Product release 3 0 0000 dev HA Build ID 1 dev Build date 2012 02 26 08 47 51 Target arch ppc Target hw m460ex Built by root r fitl6 Uptime ld 3h 32m 24 656s Product model ppc Host ID 0002c91lal5e System memory 110 MB used 1917 MB free 2027 MB total Swap 0O MB used 0 MB free 0 MB total Number of CPUs ls CPU load averages 0 18 0 19 0 16 switch config Related Commands N A Note Mellanox Technologies 322 Mellanox Technologies Confidential Rev 3 20 show uboot show uboot Displays u boot version Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show uboot UBOOT version U Boot 2009 01 SX_PPC_M460EX SX_3 2 0330 82 ppc Dec 20 2012 switch config Related Commands N A Note Mellanox Technologies 323 Mellanox Technologies Confidential Rev 3 20 show cpld show cpld Displays status of all CPLDs in the system Syntax Description N A Default N A Configuration Mode Any Command Mode Histor
441. onfidential Rev 3 20 6 8 DHCP Relay Since Dynamic Host Configuration Protocol must work correctly even before DHCP clients have been configured the DHCP server and DHCP client need to be connected to the same network In larger networks this is not always practical because each network link contains one or more DHCP relay agents These DHCP relay agents receive messages from DHCP clients and forward them to DHCP servers thus extending the reach of the DHCP beyond the local network Mellanox Technologies 793 Mellanox Technologies Confidential Rev 3 20 6 8 1 Commands ip dhcp relay address ip dhcp relay address lt ip address gt no ip dhcp relay address lt ip address gt Configures IP address of the DHCP server to forward DHCP requests The no form of the command deletes the DHCP server IP address Syntax Description ip address Valid IP unicast address of DHCP server Default N A Configuration Mode Config History 3 3 4150 Role admin Example switch config ip dhcp relay address 10 10 10 10 switch config Related Commands N A Note e Upto 16 IP addresses may be configured To enable DHCP relay at least one IP address should be configured or always on parame ter should be turned on using the command ip dhcp relay always on Mellanox Technologies 794 Mellanox Technologies Confidential Rev 3 20 ip dhcp relay information option ip dhcp relay informa
442. onfidential Rev 3 20 show ip pim rp show ip pim rp lt rp address gt Displays information about the rendezvous points RPs for PIM Syntax Description rp address A rendezvous points address Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show ip pim rp PIM RP Status Information for VRF default BSR 10 10 10 10 expires 00 01 16 priority 255 hash length 0 RP 11 11 11 11 expires 00 01 36 priority 0 RP source 10 10 10 10 group ranges 225 10 0 0 24 RP 8 8 8 2 expires 00 01 36 priority 0 RP source 10 10 10 10 group ranges 225 12 0 0 24 switch config Related Commands Note Mellanox Technologies 747 Mellanox Technologies Confidential Rev 3 20 show ip pim rp hash show ip pim rp hash lt group gt Displays the hashed value of the group RP address according the group address Syntax Description group Filters the output per a specific IP Multicast group address Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show ip pim rp hash 225 7 6 2 RP 20 20 20 49 v2 Info Source 20 20 20 49 via bootstrap priority 60 holdtime 57 Expires 00 00 53 PIMv2 Hash Value mask 255 255 255 252 switch config Related Commands Note Mellanox Technologies 748 Mellanox Technologies Confidential Rev 3 20
443. onfig show interfaces mgmt0 configured Interface mgmt0 configuration Enabled yes DHCP no Zeroconf yes IP address Netmask IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 0 Speed auto Duplex auto MTU 1500 Comment Related Commands show interfaces lt ifname gt configured Note Enabling zeroconf disables DHCP and vice versa Mellanox Technologies 94 Mellanox Technologies Confidential Rev 3 20 comment comment lt comment gt no comment Adds a comment for an interface The no form of the command removes a comment for an interface Syntax Description comment A free form string that has no semantics other than being displayed when the interface records are listed Default no comment Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 comment my interface switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address LY 2 930 2 2 Netmask 2553 2553 040 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses IPv6 address 1 fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment my interface
444. onfig Interface VLAN History 3 3 4500 Role admin Example switch config interface vlan 10 switch config interface vlan 10 vrrp 10 Related Commands Note Maximum of 10 VRRP instances are supported Mellanox Technologies 775 Mellanox Technologies Confidential Rev 3 20 address address lt ip address gt secondary no address lt ip address gt secondary Sets virtual router IP address primary and secondary The no form of the command deletes the IP address from the VRRP interface Syntax Description ip address The virtual IP address secondary A secondary IP address for the virtual router Default N A Configuration Mode Config VRRP Interface History 3 3 4500 Role admin Example switch config vrrp 100 address 10 10 10 10 switch config vrrp 100 address 10 10 10 11 secondary switch config vrrp 100 address 10 10 10 12 secondary Related Commands Note e This command is the enabler of the protocol Therefore set all the protocol parameters ini tially and only then set the ip address e There are up to 10 IP addresses associated with the VRRP instance One primary and up to 10 secondary ip addresses e Ifthe configured IP address is the same as the interface IP address this switch automati cally owns the IP address priority 255 Mellanox Technologies 776 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no s
445. onfiguration Mode Config Router BGP History 3 2 1000 Role admin Example switch config router bgp 100 redistribute ospf Related Commands N A Note Multiple redistribution options can be applied Mellanox Technologies 675 Mellanox Technologies Confidential Rev 3 20 router id router id lt ip address gt no router id Configures a fixed router ID for BGP The no form of the command removes the fixed router ID and restores the system default Syntax Description ip address IP Address identified the router ID Default The Router ID is dynamically elected no router id e Ifa loopback interface is configured the router ID is set to the IP address of the loopback interface e If multiple loopback interfaces are configured the router ID is set to the IP address of the loopback interface with the highest IP address e If no loopback interface is configured the router ID is set to the highest IP address on a physical interface Configuration Mode Config Router BGP History 3 3 5006 Role admin Example switch config router bgp 100 router id 10 10 10 10 Related Commands Note The IP address configured identifies the BGP speaker The command triggers an automatic notification and session reset for the BGP neighbors Mellanox Technologies 676 Mellanox Technologies Confidential timers bgp Rev 3 20 timers bgp lt keep alive gt lt hold gt no timers bgp Co
446. ons If you press after a space character and lt cr gt is shown this means that what you have entered so far is a complete command and that you may press Enter carriage return to execute it Try the following to get started show show c show clock show clock show interfaces from enable mode You can also enter help to view a description of the interactive help system Note also that the CLI supports command and or parameter tab completions and their shortened forms For example you can enter en instead of the enable command or cli cl instead of cli clear history In case of ambiguity more than one completion option is available that is then you can hit double tabs to obtain the disambiguation options Thus if you are in Enable mode and wish to learn which commands start with the letter c type c and click twice on the tab key to get the following switch c lt tab gt clear EL configure switch c 66 There are three commands that start with the letter c clear cli and configure 3 1 4 Prompt and Response Conventions The prompt always begins with the hostname of the system What follows depends on what com mand mode the user is in To demonstrate by example assuming the machine name is switch the prompts for each of the modes are switch gt Standard mode switch Enable mode switch config Config mode The follo
447. ontrol mode on switch config interface ethernet 1 1 show dcb priority flow control PFC enabled Priority Enabled List 20 Priority Disabled List sob 2 3 4 5 6 9 LC Lossless 0 N a Y 2 Y 3 N Interface PFC admin PFC oper 1 1 On Enabled 1 2 Disabled Disabled 1 3 Disabled Disabled 1 4 Disabled Disabled switch config Related Commands show dcb priority flow control Note Mellanox Technologies 510 Mellanox Technologies Confidential Rev 3 20 show dcb priority flow control show dcb priority flow control interface lt type gt lt inf gt detail Displays DCB priority flow control configuration and status Syntax Description type e ethernet e port channel inf The interface number detail Adds details information to the show output Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config interface ethernet 1 1 show dcb priority flow control PFC enabled Priority Enabled List wg Priority Disabled List ril23 4 8 67 TE Lossless 0 N 1 y 2 Y 3 N Interface PFC admin PFC oper 1 1 On Enabled 1 2 Disabled Disabled 1 3 Disabled Disabled 1 4 Disabled Disabled switch config Related Commands Note Mellanox Technologies 511 Mellanox Technologies Confidential Rev 3 20 5 11 Access Control List An Access Control List ACL is a list of permissions attached to an object to filt
448. ooping querier VLAN 10 IGMP Querier Present query interval 125 address 1 1 1 2 version 2 switch config vlan 10 Mellanox Technologies 463 Mellanox Technologies Confidential Rev 3 20 5 8 4 Commands ip igmp snooping admin ip igmp snooping no ip igmp snooping Enables IGMP snooping globally or per VLAN The no form of the command disables IGMP snooping globally or per VLAN Syntax Description N A Default IGMP snooping is disabled globally and per VLAN Configuration Mode Config Config VLAN History 3 1 1400 Role admin Example switch config ip igmp snooping switch config vlan 10 switch config vlan 10 ip igmp snooping switch config vlan 10 exit switch config show ip igmp snooping GMP snooping global configuration IGMP snooping globally enabled GMP snooping operationally enabled Proxy reporting globally disabled Last member query interval is 1 seconds Mrouter timeout is 125 seconds Port purge timeout is 260 seconds Report suppression interval is 5 seconds switch config vlan 10 show ip igmp snooping vlan 10 Vlan 10 configuration parameters IGMP snooping is enabled IGMP version is V2 Snooping switch is acting as Non Querier mrouter static port list none mrouter dynamic port list none switch config vlan 10 vlan 10 switch config vlan 10 Related Commands show ip igmp snooping Note IGMP snooping has global
449. or HTTPS access ssl ciphers all TLS1 2 Sets SSL mode to be used for HTTPS Default HTTPS is enabled Default port is 443 Configuration Mode Config History 3 1 0000 3 3 5050 Added ssl ciphers parameter Role admin Mellanox Technologies 72 Mellanox Technologies Confidential Rev 3 20 Example switch config web https enable switch config show web Web User Interface Web interface enabled yes HTTP enabled yes HTTP port 80 HTTP redirect to HTTPS no HTTPS enabled yes HTTPS port 443 HTTPS ssl ciphers all HTTPS certificate name default cert Listen enabled yes o Listen Interfaces Inactivity timeout 1 hr Session timeout 2 hr 30 min Session renewal 30 min Web file transfer proxy Proxy enabled no Web file transfer certificate authority HTTPS server cert verify yes HTTPS supplemental CA list default ca list switch config Related Commands show web web enable Note e Enabling HTTPS is meaningful if the WebUI as a whole is enabled e See the command crypto certificate default cert name for how to change the default cer tificate if inheriting the configured default certificate is preferred Mellanox Technologies 73 Mellanox Technologies Confidential Rev 3 20 web session web session renewal lt minutes gt timeout lt minutes gt no web session renewal timeout Configures session settings The no form of the comm
450. or port channel interface type if number The interface number i e 1 1 3 Default No static MAC addresses available in default Configuration Mode Config History 3 1 0600 Role admin Example switch config mac address table static aa aa aa aa aa aa vlan 1 interface ethernet 1 7 switch config show mac address table Switch ethernet default Vlan Mac Address Type Interface 1 aa aa aa aa aa aa static Eth1 7 Number of unicast 1 Number of multicast 0 switch config Related Commands show mac address table mac address table aging time Note The no form of the command will not clear a dynamic MAC address Dynamic MAC addresses are cleared using the clear mac address table dynamic command Mellanox Technologies 423 Mellanox Technologies Confidential Rev 3 20 mac learning disable mac learning disable no mac learning disable Disables MAC address learning The no form of the command enables MAC address learning Syntax Description N A Default Enabled Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0600 Role admin Example switch config interface ethernet 1 1 mac learning disable Related Commands Note e When adding a port to a LAG the port needs to be aligned with the LAG s configuration e When removing a port from a LAG the port remains in whichever configuration the LAG is in e Disabling MAC lear
451. ord Group base DN Group attribute LDAP version Referrals Server port Search Timeout Bind Timeout SSL mode Server SSL port SSL ciphers SSL cert verify SSL ca list LDAP servers 1 10 10 10 10 28 10 105 10 22 switch config show aaa show ldap Rev 3 20 First version Added ca list argument Added ssl ciphers parameter Updated Example ldap ssl mode ssl show ldap ou department dc example dc com subtree uid my dn my password my group dn member 3 no LLLI 5 5 ssl 636 not active TLS1 2 not active yes default ca list e Ifavailable the TLS mode is recommended as it is standardized and may also be of higher security The port number is used only for SSL mode In case the mode is TLS the LDAP port num ber will be used Mellanox Technologies 270 Mellanox Technologies Confidential Rev 3 20 Idap timeout Idap timeout bind timeout search lt seconds gt no Idap timeout bind timeout search Sets a global communication timeout in seconds for all LDAP servers to specify the extent of the search in the LDAP hierarchy that the server should make when it receives an authorization request The no form of the command resets the attribute to its default value Syntax Description timeout bind Sets the global LDAP bind timeout for all LDAP serv ers timeout search Sets the global LDAP search timeout for all LDAP servers seconds R
452. order to classify a packet into a certain flow The key contains the flowing fields ingress port source MAC destination MAC EtherType VLAN ID PCP source IP destination IP IP protocol IP ToS bits TCP UDP source port and TCP UDP destination port The flow key can have a specific value for each field or wildcard which signals to the switch to ignore this part of the key Each packet passes through the flow table once a match is found the switch performs the actions configured to the specific flow by the OpenFlow controller Upkeeping a flow table enables the switch to forward incoming traffic with a simple lookup on its flow table entries OpenFlow switches perform a check for matching entries on or ignore using a wildcard specific fields of the ingress traffic If the entry exists the switch performs the action associated with that flow entry Packets without a flow entry match are forwarded accord ing to the normal pipeline hybrid switch Mellanox Technologies 452 Mellanox Technologies Confidential Rev 3 20 Every flow entry contains one of the following parameters 1 Header fields for matching purposes with each entry containing a specific value or a wildcard which could match all entries 2 Matching packet counters which are useful for statistical purposes in order to keep track of the number of packets 3 Actions which specify the manner in which to handle the packets of a flow which can be any of the follow
453. oring Sessions Port mirroring is performed by configuring mirroring sessions A session is an association of a mirror port or more and an analyzer port Figure 16 Mirror to Analyzer Mapping Mirror Port Session Analyzer Port Mellanox Technologies 524 Mellanox Technologies Confidential Rev 3 20 A mirroring session is a monitoring configuration mode that has the following parameters Table 22 Mirroring Parameters Parameter Description Access Source interface s List of source interfaces to be mirrored RW Destination interface A single analyzer port through which all mirrored traffic egress RW Header format The format and encapsulation of the mirrored traffic when sent to analyzer RW Truncation Enabling truncation segments each mirrored packet to 64 bytes RW Congestion control Controls the behavior of the source port when destination port is congested RW Admin state Administrative state of the monitoring session RW 5 12 1 1 Source Interface The source interface mirror port refers to the interface from which the traffic is monitored Port mirroring does not affect the switching of the original traffic The traffic is simply duplicated and sent to the analyzer port Traffic in any direction either ingress egress or both can be mirrored There is no limitation on the number of the source interfaces mapped to a mirroring session P Ingress and egress traffic flows of a specific so
454. ory 3 3 5006 First version 3 3 5200 Updated description and note Role admin Example switch config router bgp 100 neighbor 10 10 10 10 remote as 200 switch config router bgp 100 Related Commands ip routing router bgp lt as number gt Note Neighbors from the same AS as the router are considered as iBGP peers and neigh bors from other ASs are considered eBGP peers Mellanox Technologies 663 Mellanox Technologies Confidential Rev 3 20 neighbor remove private as neighbor lt ip address gt lt peer group name gt remove private as no neighbor lt ip address gt lt peer group name gt remove private as Removes private autonomous system numbers from outbound routing updates for external BGP eBGP neighbors The no form of the command preserves private AS numbers for the specified peer Syntax Description ip address A BGP peer IP address peer group name Peer group name Default N A Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 remove private as switch config router bgp 100 Related Commands ip routing router bgp lt as number gt Note This can only be used with external BGP eBGP peers e Ifthe update has only private AS numbers in the AS path BGP removes these numbers e Ifthe AS path includes both private and public AS numbers BGP does not remove the pri va
455. ot automatically saved to the previous active configuration file Mellanox Technologies 168 Mellanox Technologies Confidential Rev 3 20 configuration text fetch configuration text fetch lt URL gt apply discard fail continue filename over write verbose filename lt filename gt overwrite apply filename lt filename gt Fetches a text configuration file list of CLI commands from a specified URL Syntax Description apply Applies the file to the running configuration i e exe cutes the commands in it This option has the follow ing parameters e discard Does not keep downloaded configuration text file after applying it to the system e fail continue If applying commands continues execution even if one of them fails e overwrite If saving the file and the filename already exists replaces the old file e verbose Displays all commands being executed and their output instead of just those that get errors filename Specifies filename for saving downloaded text file overwrite Downloads the file and saves it using the same name it had on the server This option has the following param eters e apply Applies the downloaded configuration to the run ning system e filename Specifies filename for saving downloaded text file Default N A Configuration Mode Config History 3 2 1000 First version 3 2 3000 Updated command Role admin Example switch config configuration fetc
456. ote Mellanox Technologies 326 Mellanox Technologies Confidential Rev 3 20 show memory show memory Displays memory status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show memory Total Used Free Used B C Free B C Physical 2027 MB 761 MB 1266 MB 1214 MB 813 MB Swap 0 MB 0 MB 0 MB Physical Memory Borrowed for System Buffers and Cache Buffers 0 MB Cache 452 MB Total Buffers Cache 452 MB switch config Related Commands N A Note Mellanox Technologies 327 Mellanox Technologies Confidential Rev 3 20 show asic version show asic version Displays firmware ASIC version Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show asic version Sx modales Versi n a DG switch config Related Commands N A Note Mellanox Technologies 328 Mellanox Technologies Confidential Rev 3 20 show power show power Displays power supplies and power usage Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show power Module Power Voltage Current Capacity Grid Status Watts Amp Watts Group PSI 0 00 47 11 0 00 1008 A OK PS2 248 82 48 05 5 18
457. oup grpB Hold time 1 Keep alive 60 Allow as in 0 Weight 32768 Max prefix 12000 Export local preferences 100 Import local preferences 100 Soft reconfiguration set Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State PfxRcd Zak aT 0 7 0 0 0 0 0 0 00 00 17 ACTIVE BGP Peer group tomer_group Hold time 1 Keep alive 60 Allow as in 0 Weight 32768 Max prefix 12000 Export local preferences 100 Import local preferences 100 Soft reconfiguration set Peer groups count 3 switch e07c04 standalone master config Related Commands N A Note Mellanox Technologies 684 Mellanox Technologies Confidential Rev 3 20 show ip bgp summary show ip bgp summary Displays BGP summary information Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5200 Role admin Example switch config show ip bgp summary BGP router identifier 3 5 7 4 local AS number 4 BGP table version is 70 main routing table version 70 network entries using 2176 bytes of memory path entries using 1088 bytes of memory BGP path attribute entries using 256 bytes of memory multipath network entries and 0 multipath paths BGP community entries using 64 bytes of memory on OB DB received paths for inbound soft reconfiguration BGP using 26308 total bytes of memory Dampening disabled 0 history paths 0 dampened paths BGP activity 37 8 prefixes
458. ources manage ment source info timer vlan info Configures the trace level for IGMP snooping e all Enables track traces e forward db messages Forwarding database messages e group info Group information messages e Init shut Init and shutdown messages e packet dump Packet dump messages e query Query related messages e system resources management System resources man agement messages e source info Source information messages e timer Timer messages e vlan info VLAN information messages interface all arp packet dump buffer enet packet dump error fail all filter trace error trace event Configures the trace level for interface e all Enable track traces e arp packet dump ARP packet dump trace buffer Buffer trace e enet packet dump ENET packet dump trace e error Trace error messages e fail all All failures including Packet Validation Trace e filter Lower layer traces e trace error Trace error messages e trace event ospf adjacency all con figuration ddp packet helper Interface ism Irq packet lsa_packet lsu packet Configures the trace level for OSPF e adjacency Adjacency formation debug messages e all Enable track traces e configuration Configuration debug messages e ddp packet DDP packet debug messages e helper Helper debug messages e Interface Interface debug messages e ism Interface State Machine debug messages
459. p 4 Change the interface switchport mode of the port the interface is member of VLAN 1 by default Run switc switc config interface ethernet 1 1 h h config interface ethernet 1 1 switchport mode trunk Step 5 Change back to config mode Run switch config interface ethernet 1 1 exit switch config Step 6 Define the MRouter port on the VLAN Run switch config vlan 2 h switch config vlan 2 ip igmp mrouter interface ethernet 1 1 switch config vlan 2 gt To change the Interface Switchport to Hybrid Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable IGMP snooping globally Run switc switc Step 4 Create a VLAN Run switc switc h config ip igmp snooping h config config vlan 200 config vlan 200 n n Step 5 Change back to config mode Run switc switc config vlan 200 exit config n n Step 6 Change the interface switchport mode of the port the interface is member of VLAN 1 by default Run switc switc config interface ethernet 1 36 h h config interface ethernet 1 36 switchport mode hybrid Step 7 Attach the VLAN to the port s interface Run switc switc config interface ethernet 1 36 switchport mode hybrid allowed vlan 200 config interface ethernet 1 36 Step 8 Change to config mode again Run
460. p my vip Creating an MLAG interface Step 1 Create an MLAG interface for the host Run switch config interface mlag port channel 1 switch config interface mlag port channel 1 Step 2 Disable STP Run switch config interface mlag port channel 1 spanning tree port type edge switch config interface mlag port channel 1 spanning tree bpdufilter enable Step 3 Bind an Ethernet port to the MLAG group Run switch config interface ethernet 1 2 mlag channel group 1 mode on Step 4 Create and enable the MLAG interface Run switch config interface mlag port channel 1 no shutdown STP must be disabled no spanning tree on the MLAG switches when there is at a least 1 MLAG port channel connected to a switch and not to a host Enabling MLAG Step 1 Enable MLAG Run switch my vip master config mlag no shutdown Mellanox Technologies 393 Mellanox Technologies Confidential gt To verify MLAG configuration Step 1 Examine MLAG configuration and status Run Step 2 Examine the MLAG summary table Run Mellanox Technologies 394 Mellanox Technologies Confidential Rev 3 20 Step 3 Examine the MLAG statistics Run Mellanox Technologies 395 Mellanox Technologies Confidential Rev 3 20 5 3 5 Commands protocol mlag protocol mlag no protocol mlag Enables MLAG functionality and unhides the MLAG commands The no form of the command hides the MLAG commands
461. pecified neighbor The no form of the command resets to default values Syntax Description ip address IP address of the neighbor peer group name Peer group name value Weight value Range 1 65535 Default Value is 32768 for router originated paths and 0 for routes received through BGP Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 weight 100 Related Commands N A Note e Weight values set through route map commands have precedence over neighbor weight command values e Other attributes are used only when all paths to the prefix have the same weight e A path s BGP weight is also configurable through route maps e When multiple paths to a destination prefix exist the best path selection algorithm prefers the path with the highest weight e Weight is the first parameter that the BGP best path selection algorithm considers Mellanox Technologies 673 Mellanox Technologies Confidential Rev 3 20 network network lt ip prefix gt lt length gt lt route map name gt no network lt ip prefix gt lt length gt lt route map name gt Configures a route for advertisement to BGP peers The no form of the command removes the route from the BGP routes table prevent ing its advertisement The route is only advertised if the router has a gateway to the destination Syntax Description ip prefix A s
462. phase multicast receivers will try to switch from shared tree to source specific tree by creating a direct distribution path from a multicast source When last hop router of the multi cast receiver identifies multicast traffic coming from any multicast source it will start to send Join messages towards the source with purpose to create a direct source specific path to that source Once such path will be established and Designated router that is attached to the source L2 Mellanox Technologies 724 Mellanox Technologies Confidential Rev 3 20 network will start to distribute the multicast traffic directly bypassing shared tree the last hop router will detach its receivers from shared tree for that data and will switch to the shortest path tree distribution 6 5 2 Bidirectional PIM Bidirectional PIM PIM BIDIR is a variant of PIM SM that builds bidirectional distribution trees that connect multicast senders and receivers It differs from PIM SM by eliminating a need to tunnel multicast packets to RP and to keep a state for each S G pair It also eliminates a need in data driven protocol events PIM BIDIR achieves it by defining a new role Designated For warder DF and by defining new forwarding rules and keeping all other PIM SM mechanisms intact DF is a PIM enabled router that is the closest router to RP among all PIM routers residing on spe cific L2 network It is dynamically elected by all PIM routers on that network DF is requir
463. pon a situation where the interface fails to receive BPDUs the switch will not egress data traffic on this interface root Enables root guard on the interface If root guard is enabled on the interface the interface will never be selected as root port Default loop guard and loop guard are disabled Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 switch config interface ethernet 1 1 spanning tree guard root switch config interface ethernet 1 1 Related Commands show spanning tree Note Mellanox Technologies 438 Mellanox Technologies Confidential Rev 3 20 spanning tree bpdufilter spanning tree bpdufilter disable enable no spanning tree bpdufilter Configures spanning tree BPDU filter on the interface The interface will ignore any BPDU that it receives and will not send PDBUs The STP state on the port will move to the forwarding state The no form of the command returns the configuration to default Syntax Description disable Disables the BPDU filter on this port enable Enables the BPDU filter on this port Default BPDU filter is disabled Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 Role admin Example switch config interface ethernet 1 1
464. ps to hostname localhost IPv6 1 maps to hostname localhost6 Automatically map hostname to loopback address yes Automatically map hostname to IPv6 loopback address no switch config Related Commands show hosts Note Mellanox Technologies 102 Mellanox Technologies Confidential Rev 3 20 ip ipv6 host ip ipv6 host lt hostname gt lt IP Address gt no ip ipv6 host lt hostname gt lt IP Address gt Configures the static hostname IPv4 or IPv6 address mappings The no form of the command clears the static mapping Syntax Description hostname The hostname in a string form IP Address The IPv4 or IPv6 address Default Configuration Mode History Role Example Related Commands Note No static domain name Config 3 1 0000 admin switch config ip host my host 2 2 2 2 switch config ipv6 host my ipv6 host 2001 8f9 switch config show hosts Hostname switch Name server 9 9 9 9 configured Name server 10 211 0 121 dynamic Name server 172 30 0 126 dynamic Name server 10 4 0 135 dynamic Domain name mydomain com configured Domain name lab mtl com dynamic Domain name vmlab mtl com dynamic Domain name yok mtl com dynamic Domain name mtl com dynamic IP 1 1 1 1 maps to hostname p IP 127 0 0 1 maps to hostname localhost IP 2 2 2 2 maps to hostname my host IPv6 2001 8f9 maps to hostname my ipv6 host IP
465. r peer group name Peer group name Default N A Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 soft reconfigura tion inbound Related Commands N A Note e This command also allows the switch to display all advertised routes when the command show ip bgp neighbor advertised routes is issued The no form of the command configures the switch to discard information about routes received from the specified neighbor or group that fail the import policy Mellanox Technologies 669 Mellanox Technologies Confidential Rev 3 20 neighbor timers neighbor lt ip address gt lt peer group name gt timers lt keep alive gt lt hold time gt no neighbor lt ip address gt lt peer group name gt timers Configures the keepalive and hold times for a specified peer The no form of the command resets the parameters to their default values Syntax Description ip address IP address of the neighbor peer group name Peer group name keep alive The period between the transmission of consecutive keep alive messages Range 1 3600 seconds 0 means that keepalive is not sent and the connection does not expire hold time The period the switch waits for a keepalive or update message before it disables peering Range 3 7200 sec onds 0 means that keepalive is not sent and the con nection does not
466. r anything else other than default Mellanox Technologies 436 Mellanox Technologies Confidential Rev 3 20 spanning tree port type spanning tree port type lt port type gt no spanning tree port type Configures spanning tree port type The no form of the command returns configuration to default Syntax Description port type Sets the spanning tree port type The port type parame ter has four options Default globally defined e Edge Normal e Network In case there is no change of this parameter the config uration will be taken from the global default port type Default Globally defined by the command spanning tree port type lt port type gt default Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 switch config interface ethernet 1 1 spanning tree port type edge switch config interface ethernet 1 1 Related Commands show spanning tree Note Mellanox Technologies 437 Mellanox Technologies Confidential Rev 3 20 spanning tree guard spanning tree guard loop root no spanning tree guard loop root Configures spanning tree guard The no form of the command returns configuration to default Syntax Description loop Enables loop guard on the interface If the loop guard is enabled u
467. r login local Sets system login local banner The no form of the command resets the banner Syntax Description string Text string Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config banner login local Testing switch config Related Commands show banner Note If more then one word is used there is a space quotation marks should be added i e XXXX XXXX Mellanox Technologies 46 Mellanox Technologies Confidential Rev 3 20 banner login remote banner login remote lt string gt no banner login remote Sets system login remote banner The no form of the command resets the banner Syntax Description string Text string Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config banner login remote Testing switch config Related Commands show banner Note If more then one word is used there is a space quotation marks should be added i e XXXX XXXX Mellanox Technologies 47 Mellanox Technologies Confidential Rev 3 20 banner motd banner motd lt string gt no banner motd Sets the message of the day banner The no form of the command resets the system Message of the Day banner Syntax Description string Text string Default Mellanox Switch Configuration Mode Config History 3 1 0000 Role admin E
468. r must gain authorization for per forming certain tasks After logging into a system for instance the user may try to issue commands The authorization process determines whether the user has the authority to issue such commands Simply put authorization is the process of enforcing policies determining what types or qualities of activities resources or services a user is permit ted Usually authorization occurs within the context of authentication Once you have authenticated a user they may be authorized for different types of access or activity e Accounting the last level is accounting which measures the resources a user con sumes during access This includes the amount of system time or the amount of data a user has sent and or received during a session Accounting is carried out by logging of session Statistics and usage information and is used for authorization control billing trend analysis resource utilization and capacity planning activities Authentication authorization and accounting services are often provided by a dedicated AAA server a program that performs these functions Network access servers interface with AAA servers using the Remote Authentication Dial In User Service RADIUS protocol 4 9 1 1 RADIUS RADIUS Remote Authentication Dial In User Service widely used in network environments is a client server protocol and software that enables remote access servers to communicate with a central server to auth
469. ransfer with very low latencies on loss less Ethernet networks With advances in data center convergence over reliable Ethernet ConnectX EN with RoCE uses the proven and efficient RDMA transport to provide the platform for deploying RDMA technology in mainstream data center application at 10GigE and 40GigE link speed ConnectX EN with its hardware offload support takes advantage of this efficient RDMA transport InfiniBand services over Ethernet to deliver ultra low latency for performance critical and transaction intensive applications such as financial database storage and content delivery networks RoCE encapsulates IB transport and GRH headers in Ethernet packets bearing a dedicated ether type While the use of GRH is optional within InfiniBand subnets it is mandatory when using RoCE Applications written over IB verbs should work seamlessly but they require provisioning of GRH information when creat ing address vectors The library and driver are modified to provide mapping from GID to MAC addresses required by the hardware 5 14 1 1 1IP Routable RoCEv2 A straightforward extension of the RoCE protocol enables traffic to operate in layer 3 environ ments This capability is obtained via a simple modification of the RoCE packet format Instead of the GRH used in RoCE routable RoCE packets carry an IP header which allows traversal of IP L3 Routers and a UDP header that serves as a stateless encapsulation layer for the RDMA Transport Proto
470. ration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf retransmit interval 10 Related Commands N A Note Mellanox Technologies 614 Mellanox Technologies Confidential Rev 3 20 ip ospf passive interface ip ospf passive interface no ip ospf passive interface Suppresses flooding of OSPF routing updates on an interface The no form of the command reverts the status to active OSPF interface Syntax Description N A Default Active interface no ip ospf passive interface Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf passive interface Related Commands N A Note Mellanox Technologies 615 Mellanox Technologies Confidential Rev 3 20 ip ospf transmit delay ip ospf transmit delay lt seconds gt no ip ospf transmit delay Sets the estimated time required to send an OSPF link state update packet The no form of the command resets this parameter to its default Syntax Description seconds The transmit delay interval in seconds Range is 0 3600 Default 1 Configuration Mode Config Interface VLAN
471. requests are accepted on any interface Mellanox Technologies 347 Mellanox Technologies Confidential Rev 3 20 snmp server location snmp server location lt system location gt no snmp server location Sets a value for the sysLocation variable in MIB II The no form of the command clears the contents of the sysLocation variable Syntax Description system location String Default ae Configuration Mode Config History 3 1 0000 Role admin Example switch config snmp server location lab switch config show snmp SNMP enabled yes SNMP port 161 System contact my name System location lab Read only community public Read write community private Interface listen enabled yes No Listen Interfaces Traps enabled yes Default trap community public Default trap port 162 No trap sinks configured switch config Related Commands show snmp Note Mellanox Technologies 348 Mellanox Technologies Confidential Rev 3 20 snmp server notify snmp server notify community lt community gt event lt event name gt port lt port gt send test no snmp server notify community event lt event name gt port Configures SNMP notifications traps and informs The no form of the commands negate the SNMP notifications Syntax Description community Sets the default community for traps sent to hosts which do not have a custom community string set
472. ress 10 10 10 10 Netmask 25 2519 42199 0 IPv6 enabled no Mellanox Technologies 80 Mellanox Technologies Confidential Rev 3 20 Mellanox Technologies 81 Mellanox Technologies Confidential Rev 3 20 4 1 6 Commands 4 1 6 1 Interface This chapter describes the commands should be used to configure and monitor the management interface interface interface mgmt0 mgmt1 lo vilan lt id gt Enters a management interface context Syntax Description mgmt0O Management port 0 out of band mgmtl Management port 1 out of band lo Loopback interface vlan lt id gt In band management interface e g vlan10 Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config interface mgmt0 switch config interface mgmt0 Related Commands show interfaces lt ifname gt Note Mellanox Technologies 82 Mellanox Technologies Confidential Rev 3 20 interface vlan create interface vlan lt id gt create no interface vlan lt id gt create Creates an in band management interface The no form of the command deletes the in band management interface Syntax Description id VLAN ID Range is 1 4094 Default N A Configuration Mode Config History 3 3 3500 Role admin Example switch config interface vlan 10 create switch config Related Commands interface show interfaces lt ifname gt
473. rol priority lt prio gt enable no dcb priority flow control priority lt prio gt enable Enables PFC per priority on the switch The no form of the command disables PFC per priority on the switch Syntax Description prio 0 7 Default PFC is disabled for all priorities Configuration Mode Config History 3 1 0000 Role admin Example switch config dcb priority flow control priority 0 enable switch config show dcb priority flow control PFC enabled Priority Enabled List 2220 Priority Disabled List cl 23 45 67 T Lossless 0 N 1 Y 2 Y 3 N Interface PFC admin PFC oper 1 1 Disabled Disabled 1 2 Disabled Disabled 1 3 Disabled Disabled 1 4 Disabled Disabled switch config Related Commands show dcb priority flow control Note Mellanox Technologies 509 Mellanox Technologies Confidential Rev 3 20 dcb priority flow control mode on dcb priority flow control mode on force no dcb priority flow control mode Enables PFC per interface The no form of the command disables PFC per interface Syntax Description force Force command implementation Default PFC is disabled for all interfaces Configuration Mode Config Interface Ethernet Config Interface Port Channel Config Interface MLAG Port Channel History 3 1 0000 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 dcb priority flow c
474. rough Designated traffic such as ping to the MAGP interface is not supported One of the A two switches will be able to ping so a ping from one switch can be done 6 7 1 MAGP Configuration Prerequisite steps Step 1 Enable IP routing functionality Run switch config ip routing Step 2 Enable the desired VLAN Run switch config vlan 20 switch config vlan 20 The VLAN cannot be the same one configured for the MLAG IPL if MLAG is used gt Step 3 Add this VLAN to the desired interface Run switch config interface ethernet 1 1 switch config interface ethernet 1 1 switchport access vlan 20 Step 4 Create a VLAN interface Run switch config interface vlan 20 switch config interface vlan 20 Step 5 Set an IP address to the VLAN interface Run switch config interface vlan 20 ip address 20 20 20 20 24 Step 6 Enable the interface Run switch config interface vlan 20 no shutdown Configuring MAGP Step 1 Enable MAGP protocol globally Run switch config protocol magp Step 2 Create a virtual router group for an IP interface Up to 255 MAGP IDs are supported Run switch config interface vlan 20 magp 100 Mellanox Technologies 785 Mellanox Technologies Confidential Rev 3 20 Step 3 Set a virtual router primary IP address Run switch config interface vlan 20 magp 100 ip virtual router address 11 11 11 254 Step 4 Set a virtual router primary MAC
475. rrors if some commands fail Step 1 Connect to the system from the host SSH Step 2 Add the h parameter after the cli as shown in the example below to notify the system to halt on failure and pass through the exit code ssh lt username gt lt hostname gt cli h enable show interfaces brief Mellanox Technologies 38 Mellanox Technologies Confidential Rev 3 20 3 4 Commands 3 4 1 CLI Session This chapter displays all the relevant commands used to manage CLI session terminal cli clear history cli clear history Clears the command history of the current user Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config cli clear history switch config Related Commands N A Note Mellanox Technologies 39 Mellanox Technologies Confidential Rev 3 20 cli default cli default auto logout lt minutes gt paging enable prefix modes enable show config progress enable prompt confirm reload confirm reset confirm unsaved empty password no cli default auto logout paging enable prefix modes enable show config progress enable prompt confirm reload confirm reset confirm unsaved empty password Configures default CLI options for all future sessions The no form of the command deletes or disables the default CLI options Syntax Description minutes Co
476. rs ARP Address Resolution Protocol A protocol that translates IP addresses into MAC addresses for communication over a local area network LAN CLI Command Line Interface A user interface in which you type commands at the prompt DCB Data Center Bridging DCBX DCBX protocol is an extension of the Link Layer Discovery Protocol LLDP DCBX end points exchange request and acknowledgment messages For flexibility parameters are coded in a type length value TLV format DHCP The Dynamic Host Configuration Protocol DHCP is an automatic configura tion protocol used on IP networks DNS Domain Name System A hierarchical naming system for devices in a com puter network ETS ETS provides a common management framework for assignment of band width to traffic classes FTP TFTP sFTP File Transfer Protocol FTP is a standard network protocol used to transfer files from one host to another over a TCP based network such as the Internet Gateway A network node that interfaces with another network using a different network protocol HA High Availability A system design protocol that provides redundancy of system components thus enables overcoming single or multiple failures in minimal downtime Host A computer platform executing an Operating System which may control one or more network adapters LACP Link Aggregation Control Protocol LACP provides a method to control the bundling of several physical ports together to form a
477. rs throttle spf timers throttle spf lt spf delay gt lt spf hold gt no timers throttle spf Sets the OSPF throttle SPF timers The no form of the command resets the timers to default Syntax Description spf delay The interval by which SPF calculations delayed after a topology change reception Range is 0 100 millisec onds spf hold The minimum delay between two consecutive delay calculations Range is 0 1000 milliseconds Default spf delay 1 millisecond spf hold 10 millisecond Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf timers throttle spf 100 1000 Related Commands N A Note Mellanox Technologies 603 Mellanox Technologies Confidential Rev 3 20 area default cost area lt area id gt default cost lt cost gt no area lt area id gt default cost Specifies cost for the default summary route sent into an OSPF stub or not so stubby area NSSA The no form of the command sets the cost to the default value Syntax Description area id OSPF area id Range is 0 4294967295 cost The cost for the default summary route Range is 1 16777215 Default The summary route cost is based on the area border router that generated the sum mary route Configuration Mode Config OSPF Router History 3 3 3500 Role admin Example switch config router ospf area 0 default cost 100 Related Commands N A
478. rt len lt length gt Sets the length of the health report number of line entries Possible values 10 2048 re notif cntr lt counter gt Health control changes notification counter in seconds Possible values 120 7200 seconds report clear Clears the health report Default max report len 50 re notif cntr Configuration Mode Config History 3 1 0000 Role admin Example switch config health re notif cntr 125 switch config Related Commands show health report Note Mellanox Technologies 317 Mellanox Technologies Confidential Rev 3 20 power enable power enable lt module name gt no power enable lt module name gt Powers on the module The no form of the command shuts down the module Syntax Description module name Enables power for selected module Default Power is enabled on all modules Configuration Mode Config History 3 1 0000 Role admin Example switch config power enable L01 switch config Related Commands show power show power consumers Note This command is not applicable for 1U systems Mellanox Technologies 318 Mellanox Technologies Confidential Rev 3 20 power management width power management width auto force no power management width Sets the width of the interface to be automatically adjusted The no form of the command disables power saving Syntax Description auto Allows the s
479. rval Configures PIM Hello interval in milliseconds The no form of the command resets this parameter to its default Syntax Description interval PIM Hello interval in milliseconds Range 1000 65535000 Default 30 000 milliseconds Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip pim hello interval 70000 Related Commands ip pim sparse mode Note The command ip pim sparse mode must be run prior to using this command Mellanox Technologies 739 Mellanox Technologies Confidential Rev 3 20 ip pim join prune interval ip pim join prune interval lt period gt no ip pim join prune interval Configures the period between Join Prune messages that the configuration mode interface originates and sends to the upstream RPF neighbor The no form of the command resets this parameter to its default Syntax Description period Range 1 1000000 seconds Default 60 seconds Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5200 Role admin Example switch config interface vlan 10 ip pim join prune interval 60 Related Commands Note Mellanox Technologies 740 Mellanox T
480. ry Access Protocol is an authentication protocol that allows a remote access server to forward a user s logon password to an authentication server to determine whether access can be allowed to a given system LDAP is based on a client server model The switch acts as a client to the LDAP server A remote user the remote administrator interacts only with the switch not the back end server and database LDAP authentication consists of the following components e A protocol with a frame format that utilizes TCP over IP e A centralized server that stores all the user authorization information e A client in this case the switch Each entry in the LDAP server is referenced by its Distinguished Name DN The DN consists of the user account name concatenated with the LDAP domain name If the user account name is John the following is an example DN uid John ou people dc domain dc com 4 9 2 User Accounts There are two user account types admin and monitor As admin the user is privileged to execute all the available operations As monitor the user can execute operations that display system con figuration and status or set terminal settings Table 19 User Roles Accounts and Default Passwords User Role Default Password admin admin monitor monitor Mellanox Technologies 233 Mellanox Technologies Confidential Rev 3 20 4 9 3 Commands 4 9 3 1 User Accounts username userna
481. s Note Mellanox Technologies 744 Mellanox Technologies Confidential Rev 3 20 show ip pim bsr show ip pim bsr Displays PIM BSR information Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example arc switchl14 standalone master config show ip pim bsr PIMv2 Bootstrap information BSR address 4 4 4 14 Uptime 00 00 30 BSR Priority 0 Hash mask length 30 Expires 00 00 57 This system is a candidate BSR Candidate BSR address 4 4 4 14 priority 0 hash mask length 30 interval 60 holdtime 130 Related Commands Note Mellanox Technologies 745 Mellanox Technologies Confidential Rev 3 20 show ip pim neighbor show ip pim neighbor vlan lt vlan id gt lt other interfaces gt lt ip addr gt Displays information about IPv4 PIM neighbors Syntax Description vlan lt vlan id gt Filters the output per specific VLAN ID neighbor addr Filters the output per specific neighbor IP address Default N A Configuration Mode Any Command Mode History 3 3 5006 Role admin Example switch config show ip pim neighbor PIM Neighbor Status for VRF default Neighbor Interface Uptime Expires Ver DR Prio Mode DO sont VLAN5 10 36 45 00 01 43 1 9ng O VLAN9 10 36 42 00 01 43 1 switch config Related Commands Note Mellanox Technologies 746 Mellanox Technologies C
482. s 1400 bytes 5 13 4 Sampled Interfaces sFlow must be enabled on physical or LAG interfaces that require sampling When adding a port to a LAG sFlow must be disabled on the port If a port with enabled sFlow is configured to be added to a LAG the configuration is rejected Removing a port from a LAG disables sFlow on the port regardless of the LAG s sFlow status 5 13 5 Configuring sFlow gt To configure the sFlow agent Step 1 Unlock the sFlow commands Run switch config protocol sflow Step 2 Enable sFlow on the system Run switch config sflow enable Step 3 Enter sFlow configuration mode Run switch config sflow switch config sflow Step 4 Set the central collector s IP Run switch config sflow collector ip 10 10 10 10 Step 5 Set the agent ip used in the sFlow header Run switch config sflow agent ip 20 20 20 20 Step 6 Optional Set the sampling rate of the mechanism Run switch config sflow sampling rate 16000 This means that one every 16000 packet gets collected for sampling Step 7 Optional Set the maximum size of the data path sample Run switch config sflow max sample size 156 Mellanox Technologies 540 Mellanox Technologies Confidential Rev 3 20 Step 8 Optional Set the frequency in which counters are polled Run switch config sflow counter poll interval 19 Step 9 Optional Set the maximum size of the datagrams sent to t
483. s Resolution Protocol ARP to resolve IP address to MAC address while IPv6 network uses Network Discovery Protocol NDP that performs basically the same as ARP ip arp ip arp lt IP address gt lt MAC address gt no ip arp lt IP address gt lt MAC address gt Sets a static ARP entry The no form of the command deletes the static ARP Syntax Description IP address IPv4 address MAC address MAC address Default N A Configuration Mode Config Interface Management History 3 2 0500 Role admin Example switch config interface mgmt0 ip arp 20 20 20 20 aa aa aa aa aa aa switch config interface mgmt0 show ip arp ARP Timeout 1500 Total number of entries 6 Address Type MAC Address Interface 10 209 1 103 Dynamic D002 9 Coe TIsAte 78 mgmt 0 10 209 1 168 Dynamic 00 02 COs5EsC3128 mgmt 0 10 209 1 104 Dynamic 00 02 C9 11 A1 E6 mgmt 0 1072091153 Dynamic 00 02 C9 11 A1 86 mgmt 0 10 209 1 105 Dynamic 00 02 C9 5E 0B 56 mgmt 0 10 209 0 1 Dynamic 00 00 5E 00 01 01 mgmt 0 20 20 20 20 Static AA AA AA AA AA AA mgmt 0 switch config interface mgmt0 Related Commands show ip arp ip route Note Mellanox Technologies 110 Mellanox Technologies Confidential Rev 3 20 ip arp timeout ip arp timeout lt timeout value gt no ip arp timeout Sets the dynamic ARP cache timeout The no form of the command sets the timeout to default Syntax Description timeout value Time in seconds
484. s an action when the limit is exceeded The no form of the command removes the limitation Syntax Description ip address IP address of the BGP speaking neighbor peer group name Peer group name maximum Number of BGP routes the switch accepts from a speci fied neighbor Range 1 2147483647 warning only Only generates a warning rather than disconnecting the neighbor Default 12000 Configuration Mode Config Router BGP History 3 4 0000 First version Role admin Example switch config router bgp 100 neighbor 10 10 10 10 maximum prefix 12000 warning only Related Commands ip routing neighbor lt ip address gt remote as lt as number gt Note Mellanox Technologies 658 Mellanox Technologies Confidential Rev 3 20 neighbor next hop peer neighbor lt ip address gt lt peer group name gt next hop peer no neighbor lt ip address gt lt peer group name gt next hop peer Configures the switch to list the peer address as the next hop in routes that it receives from the specified peer BGP speaking neighbor or members of the specified peer group The no form of the command disables this function Syntax Description ip address IP address of the neighbor peer group name Peer group name Default no next hop peer Configuration Mode Config Router BGP History 3 3 5006 Role admin Example switch config router bgp 100 neighbor 10 10 10 10 next hop peer
485. s configuration of all statistics CHDs Syntax Description CHD ID May be e cpu_util_indiv Average CPU utilization too high per cent utilization e disk_io Operating System Disk I O per second too high kilobytes per second e fs_mnt Free filesystem space too low percent of disk space free e intf util Network utilization too high bytes per second e memory_pct_used Too much memory in use percent of physical memory used e paging Paging activity too high page faults e temperature Temperature is too high degrees Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show stats chd disk_device_io_hour CHD disk_device_io_hour Storage device I O read write statistics for the last hour bytes Enabled yes Source dataset sample disk_device_io Computation basis data points Interval 1 data point s Range 1 data point s switch config Related Commands stats chd Note Mellanox Technologies 311 Mellanox Technologies Confidential Rev 3 20 show stats cpu show stats cpu Displays some basic stats about CPU utilization e the current level e the peak over the past hour e the average over the past hour Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config show stats cpu CPU 0 Utilization 6 Peak Utilization Last Hour
486. s denied Mellanox Technologies 699 Mellanox Technologies Confidential Rev 3 20 match interface match interface lt interface type gt lt number gt no match interface Matches the route s interface The no form of the command removes the match clause Syntax Description prefix list name Prefix list name Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10 match interface ethernet 1 1 Related Commands N A Note e When a clause contains multiple match commands the permit or deny filter applies to a route only if its properties are equal to corresponding parameters in each match statement e When a route s properties do not equal the statement parameters the route is evaluated against the next clause in the route map as determined by sequence number e If all clauses fail to permit or deny the route the route is denied Mellanox Technologies 700 Mellanox Technologies Confidential Rev 3 20 match ip address match ip address lt prefix list name gt no match ip address Filters according to IPv4 prefix list The no form of the command removes this configuration from the route map clause Syntax Description prefix list name Prefix list name Default N A Configuration Mode Config Route Map History 3 3 5006 Role admin Example switch config route map mymap permit 10
487. s gene hee ee ORR EAS SMES eS 176 4 5 3 Switch Power On Self Test 0 0 0 0 eee eee eee 176 45 4 Commandss 42 82dale sg Mat Meek ave ie behaue bob hae shimaued Ree GN ee bee E P 178 4 6 Debugeme ss 3 463 ey is Soe ee yoy Sea ce SERS Gee wos AO es 195 4 6 1 Commands presa ea Vacs Bi bea Bose os Sea sa eee ee 196 4 7 Event Notifications 0 0 e ene eens 210 4 7 Supported Events na o ae EE late A NAE eis woe a een 210 4 7 2 Terminal Notifications 0 0 0 cece eee teen eee 211 4 7 3 Email Notifications 0 0 0 0 cece eee teen eens 211 457 4 Commands ames ead vated ne eaten vk Rll bed ee ona Counts eee Rae 214 4 85 MDNS oea ennei ga bal ote G oR eileen ath beeen akg Raa Ls dalton Oe Slee aed 230 4 831 Commands se t icscceck ae beet a a Baits beer teni eee ae Eee aes 231 4 9 User Management and Security 0 0 0 cece eee eee 232 4 9 1 Authentication Authorization and Accounting AAA 4 232 4 92 2 User ACCOUnISS miina Ge uke Reet Ede ee tae ate toes ie Bos Seca Be Met Meee 233 4 9 3 sCommands T deta Red ded had hace Cal e face StL cote te aaa Coe 234 4 10 Cryptographic X 509 IPSec 0 0 nee nee eee 274 4410 21 Commands eai s208s si saken Sc WOU RAR a EO bee ba eee 274 AT Scheduled Jobse t teee oie b ek cote le ie eed Sl a AE ON te 286 411 1 Command sis cscs badd Sate ase tas tals Socal haa haa 6 Ady oe Sac 286 4 12 Statistics and Alarms neient ak ee eh eee ee eee 296
488. s ip dhcp dhcp renew Note Mellanox Technologies 117 Mellanox Technologies Confidential Rev 3 20 4 1 6 6 IP Diagnostic Tools ping ping LRUbdfnqrvVaA c count i interval w deadline p pattern s packetsize t ttl I interface or address M mtu discovery hint S sndbuf T timestamp option Q tos hop1 destination Sends ICMP echo requests to a specified host Syntax Description Linux Ping options http linux about com od commands I blcmd18_ping htm Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ping 172 30 2 2 PING 172 30 2 2 172 30 2 2 56 84 bytes of data 64 bytes from 172 30 2 2 icmp_segq 1 ttl 64 time 0 703 ms 64 bytes from 172 30 64 bytes from 172 30 64 bytes from 172 30 64 bytes from 172 30 64 bytes from 172 30 AG gt 172 30 2 2 ping statistics 6 packets transmitted 6 received 0 packet loss time 5004ms rtt min avg max mdev 0 144 0 252 0 703 0 202 ms switch config icmp_seq 2 tt1l 64 time 0 187 ms icmp_seq 3 tt1l 64 time 0 166 ms icmp_seq 4 tt1l 64 time 0 161 ms icmp_segq 5 tt1l 64 time 0 153 ms DM MN DN NY MM NMN DN NY icmp_seq 6 tt1 64 time 0 144 ms Related Commands traceroutes Note Mellanox Technologies 118 Mellanox Technologies Confidential Rev 3 20 traceroute traceroute 46dFITUnrAV f first_ttl g gate i device
489. s is limited to 47 970 Without it the number of MAC addresses would be 55 872 4 When transitioning from standalone into a group or vice versa a few seconds are required for the node state to stabilize During that time group features such as Gate way HA SM HA and MLAG commands should not be executed To run group fea tures wait for the CLI prompt to turn into standalone master lt group gt master or lt group gt standby instead of standalone unknown or lt group gt unknown 4 Mellanox Technologies 390 Mellanox Technologies Confidential Rev 3 20 5 3 1 MLAG Keepalive and Failover Master election in MLAG is based on the IPs of the nodes taking part of the MLAG The master elected is that which has the higher IPL VLAN Interface The MLAG pair of switches periodically exchanges a keepalive message on a user configurable interval If the keepalive message fails to arrive for three consecutive intervals the switches break into two standalone switches In such case the remaining active switch begins to act as a stand alone switch and assumes that its previously peering MLAG switch has failed To avoid a scenario where failure on the IPL causes both MLAG peers to assume that their peer has failed a safety mechanism based on UDP packets running via the management plane is main tained and alerts both peers of IPL failure In such a case of IPL failure the slave shuts down its interfaces to avoid a split brai
490. sabled CLI defaults for future sessions Auto logout disabled Paging enabled Progress tracking enabled Prefix modes enabled and use in show configuration Settings for both this session and future ones Show hidden config yes Confirm losing changes yes Confirm reboot shutdown no Confirm factory reset yes Prompt on empty password yes switch config Related Commands cli default Note Mellanox Technologies 44 Mellanox Technologies Confidential Rev 3 20 3 4 2 Banner banner login banner login login remote login local lt string gt no banner login Sets the CLI welcome banner message The login remote refers to the SSH connec tions banner while the login local refers to the serial connection banner The no form of the command resets the system login banner to its default Syntax Description string Text string Default Mellanox MLNX OS Switch Management Configuration Mode Config History 3 1 0000 Role admin Example switch config banner login example switch config show banner Banners MOTD Mellanox Switch Login example switch config Related Commands show banner Note If more then one word is used there is a space quotation marks should be added i e XXXX XXXX Mellanox Technologies 45 Mellanox Technologies Confidential Rev 3 20 banner login local banner login local lt string gt no banne
491. sage are set to notice logging level Configuration Mode Config History 3 1 0000 Role admin Example switch config logging files delete current switch config Related Commands show logging show log files Note Mellanox Technologies 187 Mellanox Technologies Confidential Rev 3 20 logging files rotation logging files rotation criteria frequency lt freq gt size lt size mb gt size pct lt size percentage gt force max number lt number of files gt Sets the rotation criteria of the logging files Syntax Description freq Sets rotation criteria according to time Possible options are e Daily e Weekly e Monthly size mb Sets rotation criteria according to size in mega bytes The range is 1 9999 size percentage Sets rotation criteria according to size in percentage of the partition where the logging files are kept in The percentage given is truncated to three decimal points thousandths of a percent force Forces an immediate rotation of the log files This does not affect the schedule of auto rotation if it was done based on time the next automatic rotation will still occur at the same time for which it was previously scheduled Naturally if the auto rotation was based on size this will delay it somewhat as it reduces the size of the active log file to zero number of files The number of log files will be kept If the number of log files ever excee
492. scarded Parameter range 6 40 seconds Default forward time 15 seconds hello time 2 seconds max age 20 seconds Configuration Mode Config History 3 1 0000 Role admin Example switch config Spanning tree forward time switch config Related Commands show spanning tree Note The following formula applies on the spanning tree timers 2 ForwardTime 1 gt MaxAgeTime gt 2 Hello Time 1 Mellanox Technologies 432 Mellanox Technologies Confidential Rev 3 20 spanning tree port type default global spanning tree port type lt port type gt default no spanning tree port type default Configures all switch interfaces as edge network normal ports These ports can be connected to any type of device The no form of the command disables the spanning tree operation Syntax Description port type e Edge Assumes all ports are connected to hosts servers Network Assumes all ports are connected to switches and bridges e Normal the port type Edge or Network deter mines according to the spanning tree operational mode Default Normal Configuration Mode Config History 3 1 0000 Role admin Example switch config spanning tree port type edge default switch config Related Commands show spanning tree Note Mellanox Technologies 433 Mellanox Technologies Confidential Rev 3 20 spanning tree priority spanning tree priority lt bri
493. se routes are equal cost routes Mellanox Technologies 592 Mellanox Technologies Confidential Rev 3 20 In case there are several routes with different cost only the route with the lowest cost is selected In case there are multiple routes with the same lowest cost all of them are used up to maximum of 64 ECMP routes ECMP is not configurable but is enabled by default for OSPF 6 2 3 Configuring OSPF Figure 24 OSPF Basic Topology Router 2 10 10 10 2 ee 10 10 20 2 Vian10 Vlan20 Router A Router 3 z 10 10 50 az aM Noro aes seaman fa oo 10 60 1 M doce Vlan50 Vlan60 0 10 40 1 10 10 30 A Vian40 Vian30 10 10 40 2 Gay 10 10 30 2 aE 4 Precondition steps pP The following configuration example refers to Router 2 in Figure 24 The remainder of the routers in the figure are configured similarly It is recommended to disable STP before enabling OSPF Use the command no span ning tree Step 1 Make sure an L3 license is installed For a list of the available licenses see Section 2 4 Licenses on page 20 Step 2 Enable IP routing functionality Run switch config ip routing Step 3 Enable the desired VLAN Run switch config vlan 10 switch config vlan 20 Step 4 Add this VLAN to the desired interface Run switch config interface ethernet 1 1 switch config ethernet 1 1 switchport access vlan 10 switch config ethernet 1 1 exit switch config interface ethernet 1 2 sw
494. set as path tag Configures a route s entry AS path tag parameter The no form of the command removes a route map s entry AS path tag setting Syntax Description value Range 1 2147483648 Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set as path tag 1 Related Commands N A Note Mellanox Technologies 706 Mellanox Technologies Confidential Rev 3 20 set community set community lt list of communities gt none no set community lt list of communities gt none Sets the community attribute of a distributed route The no form of the command removes the set statement from the clause Syntax Description list of communities List of standard communities 4 lt aa nn gt e lt number gt e internet e local AS e no advertise e no export Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community 1 2 3 4 Related Commands N A Note Mellanox Technologies 707 Mellanox Technologies Confidential Rev 3 20 set community additive set community lt list of communities gt none no set community lt list of communities gt none Adds the matching communities The no form of the command removes the set statement from the clause Syntax Description list of communities List of
495. shed for security reasons switch 627d3c standalone master config switch config Related Commands N A Note Mellanox Technologies 251 Mellanox Technologies Confidential Rev 3 20 4 9 3 3 RADIUS radius server radius server key lt secret gt retransmit lt retries gt timeout lt seconds gt no radius server key retransmit timeout Sets global RADIUS server attributes The no form of the command resets the attributes to their default values Syntax Description secret Sets a secret key shared hidden text string known to the system and to the RADIUS server retries Number of retries 0 5 before exhausting from the authentication seconds Timeout in seconds between each retry 1 60 Default 3 seconds retry Configuration Mode Config History 3 1 0000 Role admin Example switch config radius server retransmit 3 switch config show radius RADIUS defaults Key 3333 Timeout 3 Retransmit al No RADIUS servers configured switch config Related Commands aaa authorization radius server host show radius Note Each RADIUS server can override those global parameters using the command radius server host Mellanox Technologies 252 Mellanox Technologies Confidential Rev 3 20 radius server host radius server host lt IP address gt enable auth port lt port gt key lt secret gt retransmit lt retries gt timeout
496. show monitor session summary Session Admin Status Mode Destination Source al Enable Up add eth eth1 2 eth1 1 b 2 Disable Down add vlan eth1 2 eth1 8 i pol e 3 Enable Up add eth eth1 5 eth1 18 e 7 Disable Down local switch config Related Commands Note Mellanox Technologies 538 Mellanox Technologies Confidential Rev 3 20 5 13 sFlow sFlow ver 5 is a procedure for statistical monitoring of traffic in networks MLNX OS supports an sFlow sampling mechanism agent which includes collecting traffic samples and data from counters The sFlow datagrams are then sent to a central collector The sampling mechanism must ensure that any packet going into the system has an equal chance of being sampled irrespective of the flow to which it belongs The sampling mechanism provides the collector with periodical information on the amount and load of traffic per interface by loading the counter samples into sFlow datagrams The sFlow packets are encapsulated and sent in UDP over IP The UDP port number that is used is the standard 6343 by default Figure 19 sFlow Functionality Overview Collector Collector Pr Banii sFlow agent sFlow agent Statistics Statistics Sampeling sFlow agent Sampeling Statistics Switch Switch Sampeling Switch 5 13 1 Flow Samples The sFlow agent samples the data path packet based Truncation and sampling rate are the two parameters that influence the flow samples
497. speaker is required to store and transmit when advertising routes to other BGP speakers e Aggregate routes are advertised only after they are redistributed Mellanox Technologies 638 Mellanox Technologies Confidential Rev 3 20 bestpath as path multipath relax bestpath as path multipath relax no bestpath as path multipath relax Enables ECMP across AS paths The no form of the command disables ECMP across AS paths Syntax Description N A Default Disabled Configuration Mode Config Router BGP History 3 3 5006 3 3 5200 Updated description and notes Role admin Example switch config router bgp 100 bestpath as path multipath relax Related Commands maximum paths Note e With this option disabled only routes with exactly the same AS path as the best route to a destination are considered for ECMP e With this option enabled all routes with similar length AS path as the best route are consid ered for ECMP Mellanox Technologies 639 Mellanox Technologies Confidential Rev 3 20 bgp fast external fallover bgp fast external fallover no bgp fast external fallover Terminates eBGP sessions of any directly adjacent peer without waiting for the hold down timer to expire if the link used to reach the peer goes down The no form of the command waits for hold down timer to expire before terminating eBGP sessions Syntax Description N A Default no bgp fast external fallover
498. speed The no form of the command resets the speed setting for this interface to its default value Syntax Description speed Sets the speed of the interface The following are the possible values e 10 fixed to 1OMbps e 100 fixed to 1000Mbps e 1000 fixed to 1000Mbps e auto auto speed sensing 10 100 1000Mbps Default auto Configuration Mode Config Interface Management History 3 1 0000 Role admin Example switch config interface mgmt0 speed auto switch config interface mgmt0 show interfaces mgmt0 Interface mgmt0 state Admin up yes Link up yes IP address 172 30 2 2 Netmask 25572554070 Secondary address 9 9 9 9 32 alias mgmt0 2 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses 1 IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment RX bytes 2970074221 TX bytes 468579522 RX packets 44983023 TX packets 1390539 RX mcast packets 0 TX discards 0 RX discards 0 TX errors 0 RX errors 0 TX overruns 0 RX overruns 0 TX carrier 0 RX frame 0 TX collisions 0 TX queue len 1000 switch config interface mgmt0 Mellanox Technologies 90 Mellanox Technologies Confidential Rev 3 20 Related Commands show interfaces lt ifname gt Note e Setting the speed to auto als
499. splays the trace level for QoS spanning tree Displays the trace level for spanning tree vlan Displays the trace level for VLAN Default N A Configuration Mode Any Command Mode History 3 3 4150 Role admin Example switch config show debug ethernet dcbx dcbx protocol management is ON fail all is ON control panel is ON tlv is ON switch config Related Commands Note Mellanox Technologies 208 Mellanox Technologies Confidential Rev 3 20 show log debug show log debug continuous files matching not Displays current event debug log file in a scrollable pager Syntax Description continuous Displays new event log messages as they arrive files Displays archived debug log files matching Displays event debug logs that match a given regular expression not Displays event debug logs that do not meet certain cri teria Default N A Configuration Mode Any Command Mode History 3 3 4150 Role admin Example switch config show log debug un 15 16 20 47 switch 627e4c last message repeated 7 times un 15 16 20 47 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt QoSHwQueueDelete i41fIndex 137 un 15 16 20 47 switch 627e4c last message repeated 7 times un 15 16 20 47 switch 627e4c issd 6509 274844336 issd DEBUG NPAPI gt gt QoSHwQueueDelete i4IfIndex 141 un 15 16 20 47 switch 627e4c last message repeated 7 times un 15 16 20 48 switch 627e
500. ss 1722 304252 Netmask 299 255 0 0 Secondary address 9 9 9 9 32 alias mgmt0 2 IPv6 enabled yes Autoconf enabled no Autoconf route yes Autoconf privacy no IPv6 addresses Bt IPv6 address fe80 202 c9ff fe5e a5d8 64 Speed 1000Mb s auto Duplex full auto Interface type ethernet Interface ifindex 2 Interface source physical MTU 1500 HW address 00 02 C9 5E A5 D8 Comment RX bytes 2970074221 TX bytes 468579522 RX packets 44983023 TX packets 1390539 RX mcast packets 0 TX discards 0 RX discards RX errors RX overruns TX errors 0 TX overruns 0 TX carrier 0 0 T o0oo0oo0oOo RX frame TX collisions TX queue len 000 switch config interface mgmt0 Mellanox Technologies 85 Mellanox Technologies Confidential Rev 3 20 Related Commands show interfaces lt ifname gt Note IfDHCP is enabled on the specified interface then the DHCP IP assignment will hold until DHCP is disabled e More than one additional IP address can be added to the interface Mellanox Technologies 86 Mellanox Technologies Confidential Rev 3 20 mtu mtu lt bytes gt no mtu lt bytes gt Sets the Maximum Transmission Unit MTU of this interface The no form of the command resets the MTU to its default Syntax Description bytes The entry range is 68 1500 Default 1500 Configuration Mode Config Interface Management History 3 1 0000 Role admin
501. ss Mode and Assigning Port VLAN ID PVID gt To configure Access mode and assign PVID to interfaces Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a VLAN Run switc switc config vlan 6 n h config vlan 6 Step 4 Change back to config mode Run switc switc config vlan 6 exit h h config Step 5 Enter the interface context Run switc switc config interface ethernet 1 36 config interface ethernet 1 36 Step 6 From within the interface context configure the interface mode to Access Run switc switc config interface ethernet 1 36 switchport mode access config interface ethernet 1 36 Step 7 From within the interface context configure the Access VLAN membership Run switc switc config interface ethernet 1 36 switchport access vlan 6 config interface ethernet 1 36 Mellanox Technologies 411 Mellanox Technologies Confidential Rev 3 20 Step 8 Change back to config mode Run switch config interface ethernet 1 36 exit switch config 5 4 2 Configuring Hybrid Mode and Assigning Port VLAN ID PVID gt To configure Hybrid mode and assign PVID to interfaces Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Create a VLAN Run switc switc config vlan 6 h h fig vlan 6
502. st action my action Access list Action my action Mapped_Vlan_ID Mapped_port Counter_set Policer_ID N A N A N A N A l switch config access list action my action Related Commands Note Mellanox Technologies 519 Mellanox Technologies Confidential Rev 3 20 vlan map vlan map lt vlan id gt no vlan map Adds action to map a new VLAN to the packet in the ingress port or VLAN The no form of the command removes the action to map a new VLAN Syntax Description vlan id 0 4095 Default N A Configuration Mode Config History 3 2 0230 Role admin Example switch config access list action my action vlan map 10 switch config access list action my action show access list action my action Access list Action my action Mapped_Vlan_ID Mapped_port Counter_set Policer_ID 10 N A N A N A switch config access list action my action Related Commands Note Mellanox Technologies 520 Mellanox Technologies Confidential Rev 3 20 show access list action show access list action lt action profile name gt summary Displays the access list action profiles summary Syntax Description action profile name Filter the table according to the action profile name summary Display summary of the action list Default N A Configuration Mode Config History 3 2 0230 Role admin Example witch config access list action my action show
503. st is received by the last hop router a desig nated router this router starts to build a distribution path from the RP It starts to send periodic Join messages to the nearest PIM neighbor router towards the RP The next router continues to do the same Eventually the process converges when Join messages reach RP or a router that has already created that distribution tree Usually that tree is called a shared tree because it is created for any source for specific MC group G and is noted as G At that stage MC senders can start sending MC data The DR next to the MC source extracts the packets from the data flow and tunnels them to the RP The RP decapsulates the packets and dis tributes them to all MC receivers along with the share tree On the second stage the RP switches from tunneling of multicast packets from MC sources to forwarding native traffic When the RP identifies that a new MC source started to send packets it initiates an establishment of a native forwarding path from the DR of that source to itself For this purpose it starts to send Join messages towards MC source to nearest neighbor to that source according the MRIB This is a source specific Join and is noted as S G When data path is established up to the DR the DR switches from tunneling MC packets to their native forwarding so the RP does not need to decapsulate MC packets anymore but still continue to distribute the packets along with shared tree On the third
504. stats chd lt chd id gt compute time stats chd lt CHD ID gt compute time interval range lt number of seconds gt Sets parameters for when this CHD is computed Syntax Description CHD ID Possible IDs e cpu_util CPU utilization percentage of time spent e cpu_util_ave CPU utilization average percentage of time spent e cpu_util_day CPU utilization average percentage of time spent e disk_device_io_hour Storage device I O read write sta tistics for the last hour bytes e disk_io Operating system aggregate disk I O average KB sec e eth_day e eth_hour e fs_mnt day Filesystem system usage average bytes e fs_mnt_month Filesystem system usage average bytes e fs_mnt_ week Filesystem system usage average bytes e ib_day e ib_hour e intf day Network interface statistics aggregation bytes e intf hour Network interface statistics same as inter face sample e intf util Aggregate network utilization across all inter faces e memory_day Average physical memory usage bytes e memory_pct Average physical memory usage e paging Paging activity page faults e paging day Paging activity page faults interval Specifies calculation interval how often to do a new calculation in number of seconds range Specifies calculation range in number of seconds number of seconds Number of seconds Default Different per CHD Configuration Mode Config History 3
505. stem profile Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0000 Role admin Example switch config show system profile eth single switch switch config Related Commands system profile Note Mellanox Technologies 335 Mellanox Technologies Confidential Rev 3 20 show system capabilities show system capabilities Displays system capabilities Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 First version 3 3 0000 Added gateway support Role admin Example switch config show system capabilities IB Supported Ethernet Supported Full L2 GW Supported Max number of GW ports 0 Max SM nodes 648 IB Max licensed speed FDR Ethernet Max licensed speed 56Gb switch config Related Commands show system profile Note Mellanox Technologies 336 Mellanox Technologies Confidential Rev 3 20 show system mac show system mac Displays system MAC address Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show system mac 00 02 C9 5E AF 18 switch config Related Commands N A Note Mellanox Technologies 337 Mellanox Technologies Confidential Rev 3 20 show protocols show protocols Displays all protocols e
506. switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute uid Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version ae Referrals no Server port L111 Search Timeout 2345 Bind Timeout tO SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers 1 10 10 10 10 2 10 10 10 12 switch config Related Commands show aaa show ldap Note Referral is the process by which an LDAP server instead of returning a result will return a referral a reference to another LDAP server which may contain further information Mellanox Technologies 267 Mellanox Technologies Confidential Rev 3 20 Idap scope Idap scope lt scope gt no Idap scope Specifies the extent of the search in the LDAP hierarchy that the server should make when it receives an authorization request The no form of the command resets the attribute to its default value Syntax Description scope e one level searches the immediate children of the base dn e subtree searches at the base DN and all its children Default subtree Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap scope subtree switch config show ldap User base DN ou department dc ex
507. switch config port channel load balance ethernet destination ip source port source mac switch config show interfaces port channel load balance destination ip source mac source port switch config Related Commands Note Several load balance methods can be configured refer to the example Mellanox Technologies 380 Mellanox Technologies Confidential Rev 3 20 channel group channel group lt 1 4096 gt mode on active passive no channel group Assigns and configures a physical interface to a port channel The no form of the command removes a physical interface from the port channel Syntax Description 1 4096 The port channel number mode on Static assignment the port to LAG LACP will not be enabled on this port mode active passive Dynamic assignment of the port to LAG LACP will be enabled in either passive or active mode Default N A Configuration Mode Config Interface Ethernet History 3 1 1400 Role admin Example switch config interface 1 7 channel group 1 mode active switch config interface 1 7 show interfaces port channel summary Flags D Down P Up in port channel members I Individual H Hot standby LACP only s Suspended r Module removed U Up port channel Group Port Type Member Ports Channel 1 Pol D LACP Eth1 7 D switch config interface 1 7 Related Commands show interfaces port channel summary show interfaces port chann
508. t show ip ospf retransmission list lt neighbor id gt vlan lt vlan id gt Displays the OSPF list of all link state advertisements LSAs waiting to be resent to neighbors Syntax Description neighbor id Filers the output per a specific OSPF neighbor vlan id Filers the output per a specific VLAN ID Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example Router show ip ospf retransmission list 192 0 2 11 ethernet 2 1 OSPF Router with ID 192 0 2 12 Process ID 1 Neighbor 192 0 2 11 interface Ethernet2 1 address 209 165 201 11 Link state retransmission due in 3764 msec Queue length 2 Type LS ID ADV RTR Seq NO Age Checksum 1 192 0 2 12 192 0 2 12 0x80000210 0 0xB196 Related Commands N A Note Mellanox Technologies 629 Mellanox Technologies Confidential Rev 3 20 show ip ospf summary address show ip ospf summary address Displays a list of all summary address redistribution information configured on the OSPF Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example switch config show ip ospf summary address Display of Summary addresses for External Routes and area ranges for the summary LSAs OSPF Process default OSPF External Summary Address and area range Configuration Information Network Mask Area Advertise LSA type Metric Tag Mickoked 25532553255 60 NA Adv
509. t Channel e command spanning tree cost on page 436 with Config Interface Port Channel e command spanning tree port type on page 437 with Config Interface Port Channel e command spanning tree guard on page 438 with Config Interface Port Chan nel e the command spanning tree bpdufilter on page 439 with Config Interface Port Channel e command sflow enable interface on page 552 with Config Interface Port Channel e Section 6 2 OSPF on page 592 command router id on page 599 Mellanox Technologies 9 Mellanox Technologies Confidential Rev 3 20 Table 1 Document Revision History Document Revision Date Description Rev 2 00 December 2013 Added Section 5 1 2 Transceiver Information on page 359 Updated Section 4 3 2 Upgrading MLNX OS Software on page 130 Updated Section 4 3 3 Deleting Unused Images on page 133 Updated Section 4 6 Debugging on page 195 Updated the example of the command show cpld on page 324 Updated Notification Indicator column in Section 8 4 2 Standalone Proxy ARP Configuration on page 1111 Updated the command Ildp tlv select on page 488 Moved Section 4 5 3 Switch Power On Self Test on page 176 from 4 11 1 Moved Section 3 3 Secure Shell SSH on page 37 from 4 13 2 Removed mention of the MLNX OS Command Reference Guide Removed the command Ildp tlv select dcbx
510. t Job_for_example switch config job 100 Related Commands show jobs Note Mellanox Technologies 288 Mellanox Technologies Confidential Rev 3 20 enable enable no enable Enables the specified job The no form of the command disables the specified job Syntax Description N A Default N A Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 enable switch config job 100 Related Commands show jobs Note If a job is disabled it will not be executed automatically according to its schedule nor can it be executed manually Mellanox Technologies 289 Mellanox Technologies Confidential Rev 3 20 execute execute Forces an immediate execution of the job Syntax Description N A Default N A Configuration Mode Config job History 3 1 0000 Role admin Example switch config job 100 switch config job 100 execute switch config job 100 Related Commands show jobs Note e The job timer if set is not canceled and the job state is not changed i e the time of the next automatic execution is not affected The job will not be run if not currently enabled Mellanox Technologies 290 Mellanox Technologies Confidential Rev 3 20 fail continue fail continue no fail continue Continues the job execution regardless of any job failures T
511. t chd id gt clear stats chd lt CHD ID gt clear Clears CHD counters Syntax Description CHD ID CHD supported by the system for example e cpu_util CPU utilization percentage of time spent e cpu_util_ave CPU utilization average percentage of time spent e cpu_util_day CPU utilization average percentage of time spent e disk_device_io_hour Storage device I O read write sta tistics for the last hour bytes e disk_io Operating system aggregate disk I O average KB sec e eth_day e eth_hour e fs_mnt day Filesystem system usage average bytes e fs_mnt_month Filesystem system usage average bytes e fs_mnt_week Filesystem system usage average bytes e ib_day e ib_hour e intf day Network interface statistics aggregation bytes e intf hour Network interface statistics same as inter face sample e intf util Aggregate network utilization across all inter faces e memory_day Average physical memory usage bytes e memory_pct Average physical memory usage e paging Paging activity page faults e paging day Paging activity page faults Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config stats chd memory_day clear switch config Related Commands show stats chd Note Mellanox Technologies 301 Mellanox Technologies Confidential Rev 3 20 stats chd lt chd id gt enable stats chd lt chd
512. t group att gt Imember uniqueMember group dn lt group dn gt no Idap group attribute group dn Sets the distinguished name or attribute name of a group on the LDAP server The no form of the command resets the attribute to its default values Syntax Description group att Specifies a custom attribute name member groupOfNames or group membership attribute uniqueMember groupOfUniqueNames membership attribute group dn DN of group required for authorization Default group att member group dn Configuration Mode Config History 3 1 0000 3 3 5050 Updated Example Role admin Example switch config ldap group attribute member switch config ldap group dn my group dn switch config show ldap User base DN ou department dc example dc com User search scope subtree Login attribute sAMAccountName Bind DN my dn Bind password my password Group base DN my group dn Group attribute member LDAP version HB Referrals yes Server port 23389 Search Timeout ES Bind Timeout se 5 SSL mode none Server SSL port 636 not active SSL ciphers TLS1 2 not active SSL cert verify yes SSL ca list default ca list LDAP servers tsr 04 103 AOLO 2 10 10 10 12 switch config Mellanox Technologies 262 Mellanox Technologies Confidential Rev 3 20 Related Commands show ldap Note The user s distinguished name must be listed as one of the valu
513. tart configuration jump start Runs the initial configuration wizard Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config configuration jump start Mellanox configuration wizard Step 1 Hostname switch 3cc29c Step 2 Use DHCP on mgmt0 interface y Step 3 Admin password Enter to leave unchanged You have entered the following information 1 Hostname switch 3cc29c 2 Use DHCP on mgmt0O interface yes 3 Enable IPv6 yes 4 Enable IPv6 autoconfig SLAAC on mgmt0O interface yes 53 Admin password Enter to leave unchanged unchanged To change an answer enter the step number to return to Otherwise hit lt enter gt to save changes and exit Choice Configuration changes saved switch config Related Commands N A Note e The wizard is automatically invoked whenever the CLI is launched when the active config uration file is fresh i e not modified from its initial contents e This command invokes the wizard on demand see chapter Initializing the Switch for the First Time in the Mellanox MLNX OS SwitchX User Manual Mellanox Technologies 164 Mellanox Technologies Confidential Rev 3 20 configuration merge configuration merge lt filename gt Merges the shared configuration from one configuration file into the running con figuration Syntax Description filename Name of fil
514. tch config Make sure that the Valid and Active fields both indicate yes Step 4 Save the configuration to complete the license installation Run switch config configuration write If you do not save the installation session you will lose the license at the next system start up 2 4 2 Installing MLNX OS License Web gt To install an MLNX OS license via CLI Step 1 Log in as admin Step 2 Click the Setup tab and then Licensing in the left side navigation pane Figure 6 No Licenses Installed Mellanox MLNX OS SX6506 Management Console Mellanox N i Sle ae T Host switch 113dc8 User admin Logout Standalone Wi Virtual IP Active node aaa Chassis master Ea Subnet Manager is not running pas syst lA Securit Stat EH psn Jt Fabric a Save iar aces M ti i S Setup ystem ecurity Ports tatus 11 MGMT Q car Lt System Serial Number Interfaces HA M teint 7 Routing Installed Licenses DNS License Hostname Key LK2 EFM_SX 5P26 85G2 3488 A3MG VD3V E7U Hosts Feature EFM_SX ARP Valid yes Neighbors Max num ufm ports supported 200 Virtual Switch Mgmt Active yes web ee Add New License s Email Alerts XML gateway Please enter one or more licenses each on a separate line Logs Configurations Date and Time NTP Add Licenses 2009 2012 Mellanox Technologies Inc Mellanox Technologies 21 Mellanox Techn
515. tch config interface vlan 1 ipl 1 peer address 10 10 10 10 switch config interface vlan 1 Related Commands Note The subnet mask is the same subnet mask of the VLAN interface This VLAN interface should be used for IPL only Mellanox Technologies 404 Mellanox Technologies Confidential Rev 3 20 mlag vip mlag vip lt domain name gt lt ip address gt lt masklen gt lt ip address gt lt subnet gt force no mlag vip Sets the VIP domain and IP address for MLAG The no form of the command deletes the VIP domain and IP address Syntax Description mlag domain name MLAG group name lt ip address gt lt masklen gt IP address and mask length in the format 10 10 10 10 24 Note that a space is required between the IP address and the mask lt ip address gt lt subnet gt IP address and mask length in the format 10 10 10 10 24 or 255 255 255 0 Note that a space is required between the IP address and the mask force Forces the IP address if another IP is already config ured Default N A Configuration Mode Config History 3 3 4500 Role admin Example switch config mlag vip my mlag domain 10 10 10 254 24 switch config Related Commands Note e This IP address must be configured in one of the MLAG switches and must be in the box management subnet e Other switches in the MLAG must join the same domain name Mellanox Technologies 405 Mellanox Tech
516. tch e07c04 standalone master config route map test_route_map permit 10 set community 400 1 delete Related Commands N A Note Mellanox Technologies 710 Mellanox Technologies Confidential Rev 3 20 set community list set community list lt community list name gt no set community lt list of communities gt Configures a named standard community list The no form of the command removes the set statement from the clause Syntax Description lt community list name gt Name of community list Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community internet 1 3 additive Related Commands N A Note Mellanox Technologies 711 Mellanox Technologies Confidential Rev 3 20 set community list additive set community list lt community list name gt additive no set community lt list of communities gt additive Adds to existing communities using the communities found in the community list The no form of the command removes the set statement from the clause Syntax Description lt community list name gt Name of community list Default N A Configuration Mode Config Route Map History 3 3 5200 Role admin Example switch config route map mymap permit 10 set community list mycommu nity additive Related Commands N A Note Mellanox Techn
517. te AS numbers This situation is considered a configuration error e Ifthe AS path contains the AS number of the eBGP neighbor BGP does not remove the private AS number e Ifthe AS path contains confederations BGP removes the private AS numbers only if they come after the confederation portion of the AS path Mellanox Technologies 664 Mellanox Technologies Confidential Rev 3 20 neighbor route map neighbor lt ip address gt lt peer group name gt route map lt route map name gt in no neighbor lt ip address gt lt peer group name gt route map lt route map name gt in Configures a route map to inbound BGP routes The no form of the command undoes the configuration Syntax Description ip address IP address of the neighbor peer group name Peer group name route map name String The name of the route map in Applies route map to inbound routes Default N A Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated notes and default Role admin Example switch config router bgp 100 neighbor 10 10 10 10 route map MyRouteMap in Related Commands neighbor lt ip address gt remote as lt as number gt route map lt map name gt deny permit sequence number clear ip bgp lt ip address gt all Note e Only one inbound route map can be applied to a given neighbor e Ifanew route map is applied to a neighbor it replaces the previous route map
518. ted Commands show web web proxy host Note Mellanox Technologies 76 Mellanox Technologies Confidential web proxy host web proxy host lt IP address gt port lt port number gt no web proxy Adds and enables a proxy to be used for any HTTP or FTP downloads The no form of the command disables the web proxy Rev 3 20 Syntax Description IP address IPv4 or IPv6 address port number Sets the web proxy default port Default Configuration Mode History Role Example Related Commands Note 1080 Config 3 1 0000 admin switch config switch config Web User Interface Web interface enabled HTTP enabled HTTP port HTTPS HTTPS HTTPS HTTPS Listen enabled o Listen Interfaces enabled port ssl ciphers Inactivity timeout Session timeout Session renewal Web file transfer proxy Proxy enabled yes Proxy address Proxy port Authentication type auth username auth password Basic Basic Web file HTTPS HTTPS switch config web proxy auth HTTP redirect to HTTPS certificate name supplemental CA list web proxy host 10 10 10 10 port show web yes yes 80 no yes 443 all default cert yes 1 hr 2 hr 30 min 30 min 10 10 10 10 1080 basic web user web password transfer certificate authority server cert verify yes default ca list 1080 Mellanox Technologies Confi
519. tents in PEM format prompt private key Prompts for certificate private key with secure echo public cert Installs a certificate regenerate Regenerates the named certificate using configured cer tificate generation default values for the specified validity period rename Renames the certificate Default N A Mellanox Technologies 280 Mellanox Technologies Confidential Rev 3 20 Configuration Mode Config History 3 2 3000 First version 3 3 4402 Added hash algorithm parameter Role admin Example switch config crypto certificate name system self signed generate self signed hash algorithm sha256 Related Commands N A Note Mellanox Technologies 281 Mellanox Technologies Confidential Rev 3 20 crypto certificate system self signed crypto certificate system self signed regenerate days valid lt days gt Configures default values for certificate generation Syntax Description days valid Specifies the number of days the certificate is valid Default N A Configuration Mode Config History 3 2 1000 Role admin Example switch config crypto certificate system self signed regenerate days valid 3 Related Commands N A Note Mellanox Technologies 282 Mellanox Technologies Confidential Rev 3 20 show crypto certificate show crypto certificate detail public pem default cert detail public pem name lt cert name gt deta
520. terface The no form of the command disables the sparse mode on the interface and deletes all interfaces configuration Syntax Description N A Default Disabled Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip pim sparse mode Related Commands N A Note Mellanox Technologies 737 Mellanox Technologies Confidential Rev 3 20 ip pim dr priority ip pim dr priority lt priority gt no ip pim dr priority Configures the designated router DR priority of PIM Hello messages The no form of the command resets this parameter to its default Syntax Description priority The designated router priority of the PIM Hello mes sages Range is 1 4294967295 Default 1 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip pim dr priority 5 Related Commands ip pim sparse mode Note The command ip pim sparse mode must be run prior to using this command Mellanox Technologies 738 Mellanox Technologies Confidential Rev 3 20 ip pim hello interval ip pim hello interval lt interval gt no ip pim hello inte
521. terface vlan lt vlan id gt no interface vlan lt vlan id gt Creates a VLAN interface and enters the interface VLAN configuration mode The no form of the command deletes the VLAN interface Syntax Description vlan id A numeric range of 1 4094 Default N A Configuration Mode Config History 3 2 0230 Role admin Example switch config interface vlan 10 switch config interface vlan 10 show interfaces vlan 10 Vian 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 Internet Address 0 0 0 0 0 Broadcast address 255 255 255 255 MTU 1522 bytes Description N A switch config interface vlan 10 Related Commands ip routing vlan lt vlan id gt switchport mode switchport access show interfaces vlan Note e Make sure the VLAN was created using the command vlan lt vlan id gt in the global con figuration mode e The VLAN must be assigned to one of the L2 interfaces To do so run the command swichport e At least one interface belong to that VLAN must be in UP state Mellanox Technologies 567 Mellanox Technologies Confidential Rev 3 20 ip address ip address lt ip address gt lt mask gt no ip address lt ip address gt lt mask gt Enters user defined description for the interface Syntax Description ip address IPv4 address mask There are two possible ways to the mask e length i e 24 e Network
522. terfaces attached Syntax Description ipv4 mac IPv4 or MAC Access list access list name ACL name Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show mac access lists summary mac access list my list Total ACEs Configured 2 Configured on interfaces Ethernet 1 1 Ethernet 1 2 switch config Related Commands deny permit MAC ACL rule deny permit IPv4 ACL rule deny permit IPv4 TCP UDP ACL rule ipv4 mac access list ipv4 mac port access group Note Mellanox Technologies 523 Mellanox Technologies Confidential Rev 3 20 5 12 Port Mirroring Port mirroring enables data plane monitoring functionality which allows the user to send an entire traffic stream for testing Port mirroring sends a copy of packets of a port s traffic stream called mirrored port into an analyzer port Port mirroring is used for network monitoring It can be used for intrusion detection security breaches latency analysis capacity and performance matters and protocol analysis Figure 15 provides an overview of the mirroring functionality Figure 15 Overview of Mirroring Functionality Analyzer i Egress Mirrored Ingress Mirrored Port Copy Port Copy Modify 1 7 opt Switchx There is no limitation on the number of mirroring sources and more than a single source can be mapped to a single analyzer destination 5 12 1 Mirr
523. th sets egress and ingress traffic to be monitored Default N A Configuration Mode Config Monitor Session History 3 3 3500 Role admin Example switch config monitor session 1 add source interface ethernet 1 1 direction both switch config monitor session 1 Related Commands Note If mirroring is configured in one direction e g ingress on an interface and then is configured in the other direction e g egress then the ultimate setting is both Mellanox Technologies 533 Mellanox Technologies Confidential Rev 3 20 header format header format local traffic class lt tc gt add vlan lt vlan id gt priority lt prio gt traffic class lt tc gt add ethernet header destination mac lt mac address gt add vlan lt vlan id gt priority lt prio gt traffic class lt tc gt no header format Sets the header format of the mirrored traffic The no form of the command resets the parameter values back to default Syntax Description local The mirrored header of the frame is not changed traffic class lt tc gt Changes the egress traffic class of the frame Range is 0 3 add vlan lt vlan id gt An 802 1q VLAN tag is added to the frame priority lt prio gt The priority to be added to the Ethernet header Range is 0 7 add ethernet header Adds an Ethernet header to the mirrored frame destination mac The destination MAC address of the added Ethernet fram
524. that an entry remains in the ARP cache Valid values are from 240 to 28800 Default 1500 seconds Configuration Mode Config History 3 2 0230 Role admin Example switch config ip arp timeout 2000 switch config show ip arp ARP Timeout 2000 Total number of entries 55 IP Address MAC Address Interface LO O72 00 02 c9 5c 30 40 Vlan11 1 0 0 3 00 11 22 33 44 55 Vlan11 2 0 0 2 00 02 c9 5c 30 40 Vlan12 3120 0 62 00 02 c9 5c 30 40 Vlan13 4 0 0 2 00 02 c9 5c 30 40 Vlanl14 switch config Related Commands ip arp show ip arp Note This value is used as the ARP timeout whenever a new IP interface is created Mellanox Technologies 111 Mellanox Technologies Confidential Rev 3 20 show ip arp show ip arp interface lt type gt lt ip address gt count Displays ARP table Syntax Description interface type Filters the table according to a specific interface i e mgmt0 ip address Filters the table to the specific ip address count Shows ARP statistics Default N A Configuration Mode Any Command Mode History 3 3 3000 Role admin Example switch 626a54 standalone master config show ip arp Total number of entries 3 Address Type Hardware Address Interface 10 209 0 1 Dynamic ETH 00 00 5E 00 01 01 mgmt 0 10 209 1 120 Dynamic ETH 00 02 C9 62288 C2 mgmt 0 10 209 1 221 Dynamic ETH 00 02 C9 62 E7 42 mgmt 0 switch config show ip arp count ARP T
525. that is a master and backup routers acting as a group The default gateway of a participating host is assigned to the virtual router instead of a physical router If the physical router that is routing packets on behalf of the virtual router fails another physical router is selected to automatically replace it The physical router that is forwarding packets at any given time is called the master router VRRP provides information on the state of a router not the routes processed and exchanged by that router Each VRRP instance is limited in scope to a single subnet It does not advertise IP routes beyond that subnet or affect the routing table in any way Routers have a priority of between 1 255 and the router with the highest priority becomes the master The configurable priority value ranges from 1 254 the router which owns the interface IP address as one of its associated IP addresses has the priority value 255 When a planned with drawal of a master router is to take place its priority can be lowered which means a backup router will preempt the master router status rather than having to wait for the hold time to expire 6 6 1 Load Balancing To create load balancing between routers participating in the same VR it is recommended to cre ate 2 or more VRs Each router will be a master in one of the VRs and a backup to the other VR s A group of hosts should be configured with Router 1 s virtual address as the default gate way while
526. the egress traffic of L2 PCP The required mapping maps the three most significant bits of the DSCP into the PCP This is the default behavior and no additional configuration is required 5 14 1 5 1Copying Port Control Protocol PCP between Subnets The captured PCP option from the Ethernet header of the incoming packet can be used to set the PCP bits on the outgoing Ethernet header 5 14 1 6 Configuring the RoCE Mode Configuring the RoCE mode requires the following e RoCE mode is configured per driver and is enforced on all the devices in the system The supported RoCE modes depend on the firmware installed If the firmware does not A support the needed mode the fallback mode would be the maximum supported RoCE aa mode of the installed NIC RoCE mode can be enabled and disabled via PowerShell gt To enable RoCE using the PowerShell e Open the PowerShell and run Set MlnxDriverCoreSetting RoceMode 1 gt To enable RoCEv2 using the PowerShell e Open the PowerShell and run Set MlnxDriverCoreSetting RoceMode 2 Mellanox Technologies 557 Mellanox Technologies Confidential Rev 3 20 gt To disable any version of RoCE using the PowerShell Open the PowerShell and run Set MlnxDriverCoreSetting RoceMode 0 gt To check current version of RoCE using the PowerShell Step 1 Open the PowerShell and run Get MlnxDriverCoreSetting Step 2 Example output Caption DriverCoreSettingData mlx4_bus Description
527. the status of the neighbors Run switch config show ip bgp neighbors BGP neighbor is 10 10 10 2 remote AS 100 external link BGP version 0 remote router ID 0 0 0 0 BGP State ESTABLISHED Last read 0 00 00 00 last write 0 00 00 00 hold time is 180 keepalive interval is 60 seconds Configured hold time is 180 keepalive interval is 60 seconds Minimum holdtime from neighbor is 0 seconds switch config You should be able to see running BGP counters and ESTABLISHED state per active neigh bor Mellanox Technologies 633 Mellanox Technologies Confidential Rev 3 20 6 3 4 Commands 6 3 4 1 Config protocol bgp protocol bgp no protocol bgp Enables BGP feature and unhides BGP related commands The no form of the command deletes all BGP configuration and hides BGP related commands Syntax Description N A Default Disabled Configuration Mode Config History 3 3 5006 Role admin Example switch config protocol bgp switch config Related Commands ip routing Note Mellanox Technologies 634 Mellanox Technologies Confidential Rev 3 20 clear ip bgp clear ip bgp lt ip address gt all soft in out Clears BGP learned routes from the BGP table and resets the connection to the neigh bor Syntax Description ip address A BGP peer IP address Only the specified neighbor is reset all All BGP peers All BGP neighbors are reset soft
528. thernet 1 1 Related Commands show spanning tree Note Mellanox Technologies 435 Mellanox Technologies Confidential Rev 3 20 spanning tree cost spanning tree cost lt port cost gt no spanning tree cost Configures the interface cost of the spanning tree The no form of the command returns configuration to its default Syntax Description port cost Sets the spanning tree cost of an interface Value range is 0 200000000 Default The default cost is derived from the speed 1Gbps 20000 10Gbps 2000 40Gbps 500 56Gbps 357 Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 1 0000 3 3 4500 Added MLAG port channel configuration mode Role admin Example switch config interface ethernet 1 1 switch config interface ethernet 1 1 spanning tree cost 1000 switch config interface ethernet 1 1 Related Commands show spanning tree Note e LAG default cost is calculated by dividing the port speed by the number of active links in UP state For example if there were 4 links in the LAG out of which only two are in UP state assuming the port speed is 10Gbps the LAG cost will be 2000 2 1000 e When configuring the cost for a LAG the cost will be fixed to this configuration no matter what the number of active links UIP state in the LAG is e Unstable network may cause the LAG cost to change dynamically assuming the cost parameter is not configured fo
529. these symbols only to show the types of entries CLI commands and options are in lowercase and are case sensitive For example when you enter the enable command enter it all in lowercase It cannot be ENABLE or Enable Text entries you create are also case sensitive 3 1 3 Getting Help You may request context sensitive help at any time by pressing on the command line This will show a list of choices for the word you are on or a list of top level commands if you have not typed anything yet For example if you are in Standard mode and you type at the command line then you will get the following list of available commands switch gt qlat Configure CLI shell options enable Enter enable mode exit Log out of the CLI help View description of the interactive help system no Negate or clear certain configuration options show Display system configuration or statistics Mellanox Technologies 27 Mellanox Technologies Confidential Rev 3 20 slogin Log into another system securely using ssh switch Configure switch on system telnet Log into another system using telnet terminal Set terminal parameters traceroute Trace the route packets take to a destination switch 11a596 standalone master gt If you type a legal string and then press without a space character before it then you will either get a description of the command that you have typed so far or the possible command parameter completi
530. tic hosts Note Changing hostname stamps a new HTTPS certificate DNS Configures removes modifies or displays static and dynamic name servers Login Messages Edits the login messages Message of the Day MOTD Remote Login message and Local Login message Mellanox Technologies Confidential Rev 3 20 Table 10 Setup Submenus Submenu Title Description Address Resolution Adds static and dynamic ARP entries and clears the dynamic ARP cache IPSec Configures IPSec Neighbors Displays IPv6 neighbor discovery protocol Virtualization Manages the virtualization and virtual machines Virtual Switch Mgmt Configures the system profile Web Configures web user interface and proxy settings SNMP Configures SNMP attributes SNMP admin user and trap sinks Email Alerts Configures the destination of email alerts and the recipients to be notified XML gateway Provides an XML request response protocol to get and set hardware manage ment information Logs Sets up system log files remote log sinks and log formats Configurations Manages activates saves and imports MLNX OS SwitchX configuration files and executes CLI commands Date and Time Configures the date time and time zone of the switch system NTP Configures NTP Network Time Protocol and NTP servers Licensing Manages MLNX OS licenses 3 2 2 System Menu The System menu
531. tice normal but significant condition e warning warning condition class Sets or removes a per class override on the logging level All classes which do not have an override set will use the global logging level set with logging local lt log level gt Classes that do have an override will do as the override specifies If none is specified for the log level MLNX OS will not log anything from this class Classes available e iss modules protocol stack e mgmt back system management back end mgmt core system management core e mgmt front system management front end e mlx daemons management daemons sx sdk switch SDK log level e alert alert notification action must be taken immediately e crit critical condition e debug debug level messages e emerg system is unusable emergency e err error condition e info informational condition e none disables the logging locally and remotely e notice normal but significant condition e warning warning condition Default Remote logging is disabled Configuration Mode Config History 3 1 0000 Role admin Mellanox Technologies 180 Mellanox Technologies Confidential Rev 3 20 Example switch config logging local info switch config show logging Local logging level info Default remote logging level notice No remote syslog servers configured Allow receiving of messages from remote hosts no Number of archived log
532. time gt no ip igmp query max response time Configures the IGMP max response time in seconds The no form of the command resets this parameter to its default Syntax Description time The IGMP max response time Range 1 25 seconds Default 10 Configuration Mode Config Interface VLAN History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp query max response time 20 Related Commands N A Note Mellanox Technologies 762 Mellanox Technologies Confidential Rev 3 20 ip igmp robustness variable ip igmp robustness variable lt count gt no ip igmp robustness variable Configures the IGMP robustness variable The no form of the command resets this parameter to its default Syntax Description count IGMP robustness variable Range 1 7 Default 2 Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip igmp robustness variable 4 Related Commands N A Note e The robustness variable can be increased to increase the number of times that packets are resent This parameter reflects expected packet loss on a congested network Mellanox Technologies 763 Mellanox Technologies Confidential Rev 3 20 ip igmp static oif ip igmp static oif lt group gt no ip i
533. timers msg tx interval 30 tx delay 2 tx hold 4 tx reinit delay 2 switch config Related Commands Note Mellanox Technologies 494 Mellanox Technologies Confidential Rev 3 20 show Ildp statistics global show Ildp statistics global Shows LLDP global statistics Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0300 Role admin Example switch config show lldp timers Remote Table Last Change Time 10300 Remote Table Inserts 5 Remote Table Deletes 0 Remote Table Drops 0 Remote Table Ageouts 0 switch config Related Commands Note Mellanox Technologies 495 Mellanox Technologies Confidential Rev 3 20 show lldp statistics interface ethernet lt inf gt show lldp statistics interface ethernet lt inf gt Shows LLDP interface statistics Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 2 0300 Role admin Example switch config show lldp statistics ethernet 1 1 Related Commands Note Interface Frames In In TLVs TLVs Ageout Out Discarded Errors Total Discarded Unrecognize Frames Eth 1 1 0 0 10 0 0 0 0 switch config Mellanox Technologies 496 Mellanox Technologies Confidential Rev 3 20 show dcb application priority show dcb application priority Displays application priority admin table Synt
534. tion detail Displays detailed information about the OpenFlow pro tocol tables Displays information about the OpenFlow tables size type etc flows lt id gt Displays specific flows inside the OpenFlow tables ID may be a range e g 1 10 statistics Displays OpenFlow statistics Default None Configuration Mode Any Command Mode History 3 3 4200 3 3 4302 Removed flow id parameter Added flows and statistics parameters Role admin Example switch config openflow show openflow flows 2 Flow id 2 priority 1 hard timeout infinite idle timeout 0 sec match ingress interface Eth1 18 source Ethernet address 11 22 33 44 55 66 destination Ethernet address 77 88 aa bb cc fe Ethernet type 0x800 VLAN ID 308 PCP 4 SIP ore re Lee DIP 2420202 Dport 1790 Protocol 86 TOS 120 actions output controller statistics 0 packets 0 bytes switch config openflow Related Commands Note Mellanox Technologies 460 Mellanox Technologies Confidential Rev 3 20 5 8 IGMP Snooping R Only IGMP Snooping v1 and v2 are supported Da The Internet Group Multicast Protocol IGMP is a communications protocol used by hosts and adjacent routers on IP networks to establish multicast group memberships The host joins a mul ticast group by sending a join request message towards the network router and responds to que ries sent from the network router by dispatching a join report A gi
535. tion option no ip dhcp relay information option Enables the DHCP relay agent to insert option 82 info on the packets The no form of the command removes option 82 from the packets Syntax Description N A Default Disabled Configuration Mode Config History 3 3 4150 Role admin Example switch config ip dhcp relay information option switch config Related Commands N A Note Mellanox Technologies 795 Mellanox Technologies Confidential Rev 3 20 ip dhcp relay always on ip dhcp relay always on no ip dhcp relay always on Broadcasts DHCP requests to all interfaces with the DHCP relay agent The no form of the command disables the always on mode Syntax Description N A Default Disabled Configuration Mode Config History 3 3 4150 Role admin Example switch config ip dhcp relay always on switch config Related Commands N A Note In order to enable DHCP relay at least one IP address should be configured or always on parameter should be turned on using the command ip dhcp relay always on e When DHCP servers are configured requests are forwarded only to configured servers Mellanox Technologies 796 Mellanox Technologies Confidential Rev 3 20 clear ip dhcp relay counters clear ip dhcp relay counters Clears all DHCP relay counters all interfaces Syntax Description N A Default Disabled Configurat
536. tl com dynamic Domain name mtl com dynamic Related Commands Note IP 1 1 1 1 maps to hostname p IP 127 0 0 1 maps to hostname localhost IP 2 2 2 2 maps to hostname my host IPv6 1 maps to hostname localhost6 Automatically map hostname to loopback address yes Automatically map hostname to IPv6 loopback address switch config N A no Mellanox Technologies 105 Mellanox Technologies Confidential Rev 3 20 4 1 6 3 Routing ip ipv6 route ip ipv6 route lt network prefix gt lt netmask gt lt nexthop address gt lt ifname gt no ip route lt network prefix gt lt netmask gt lt nexthop address gt lt ifname gt Sets a static route for a given IP The no form of the command deletes the static route Syntax Description network prefix IPv4 or IPv6 network prefix netmask IPv4 netmask formats are 24 e 255 255 255 0 IPv6 netmask format is e 48 as a part of the network prefix nexthop address The IPv4 or IPv6 address of the next hop router for this route ifname The interface name e g mgmt0 mgmt1 Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config ip route 20 20 20 0 255 255 255 0 mgmt0 switch config show ip route Destination Mask Gateway Interface Source default 0 0 0 0 1 72 30 20 1 mgmt 0 DHCP 10 10 10 10 ZOO 200 ZOOL 9 0 0 0 0 0 mgmt 0 static 20 10 10 10 299 209 ZOON ZOO 172530202 mgmt
537. tring that specific route map is assigned to the net work length 24 or 255 255 255 0 format route map name The name of a route map which is used to set the route s attributes when it is advertised Default N A Configuration Mode Config Router BGP History 3 3 5006 First version 3 3 5200 Updated description syntax description and notes Role admin Example switch config router bgp 100 network 10 10 10 0 24 routemap Related Commands Note e The parameters ip prefix and length specify the route destination The configuration zeros the host portion of the specified network address For example 192 0 2 4 24 is stored as 192 0 2 0 24 Mellanox Technologies 674 Mellanox Technologies Confidential Rev 3 20 redistribute redistribute connected static ospf ospf internal ospf external lt route map gt no redistribute connected static ospf Enables redistribution of specified routes to the BGP domain The no form of the command disables route redistribution from the specified source Syntax Description connected Redistributes the direct routes static Redistributes the user defined static route ospf Redistributes all routes learned by ospf protocol ospf internal Redistributes all osfp learned routes which are marked as internal ospf external Redistributes all osfp learned routes which are marked as external Default No redistribution C
538. ult value Syntax Description port speed 1000 1GbE 10000 10GbE 40000 40GbE auto auto negotiates link speed force force changing the speed Default Depends on the port module type see the Notes section below Configuration Mode Config Interface Ethernet History 3 1 0000 3 3 3500 Added auto negotiation option Role admin Example switch config interface ethernet 1 1 speed 40000 switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note e 56Gbps port speed requires a license LIC 6036F 56GE e The default speed depends on the interface capabilities interface capable with 40Gbps will have 40Gbps speed by default e Not all interfaces support all speed options Mellanox Technologies 365 Mellanox Technologies Confidential Rev 3 20 load interval load interval lt time gt no load interval Sets the interface counter interval The no form of the command resets the interval to its default value Syntax Description time In seconds Default 300 seconds Configuration Mode Config Interface Ethernet Config Interface Port Channel History 3 3 0000 Role admin Example switch config interface ethernet 1 1 load interval 30 switch config interface ethernet 1 1 Related Commands show interfaces ethernet Note This interval is used for the ingress rate and egress rate counters Mellanox Technologies 366
539. unexpected shutdown Unexpected system shut Mellanox EFM MIB down unexpectedShutdown To send use the CLI com Send a testing event testTrap N A Reset occurred due to over heating of ASIC Mellanox EFM MIB asicOverTempReset Not supported temperature too high Temperature is too high Mellanox EFM MIB asicOverTemp 4 7 2 Terminal Notifications gt To print events to the terminal Set the events you wish to print to the terminal Run switch config logging monitor events notice This command prints system events in the severity notice to the screen For example in case of interface down event the following gets printed to the screen switch config Wed Jul 10 11 30 42 2013 Interface IB1 17 changed state to DOWN Wed Jul 10 11 30 43 2013 Interface IB1 18 changed state to DOWN switch config 4 7 3 Email Notifications gt To configure MLNX OS to send you emails for all configured events and failures Mellanox Technologies 211 Mellanox Technologies Confidential Rev 3 20 Step 1 Enter to Config mode Run switch gt switch gt enable switch configure terminal Step 2 Set your mailhub to the IP address to be your mail client s server for example Microsoft Out look exchange server switch config email mailhub lt IP address gt Step 3 Add your email address for notifications Run switch config email notify recipient lt email address
540. upported Run switch config interface vlan 20 vrrp 100 Step 3 Set the VIP address Run switch config interface vlan 20 vrrp 100 address 20 20 20 40 Step 4 Influence the election of the master in the VR cluster make sure that the priority of the desired master is the highest Note that the higher IP address is selected in case the priority of the rout ers in the VR are the same Select the priority Run switch config interface vlan 20 vrrp 100 priority 200 Mellanox Technologies 771 Mellanox Technologies Confidential Rev 3 20 Step 5 The advertizement interval should be the same for all the routers within the VR Modify the interval Run switch config interface vlan 20 vrrp 100 advertisement interval 2 Step 6 The authentication text should be the same for all the routers within the VR Configure the authentication text Run switch config interface vlan 20 vrrp 100 authentication text my password Step 7 Use the preempt command to enable a high priority backup virtual router to preempt the low priority master virtual router Run switch config interface vlan 20 vrrp 100 preempt Step 8 Disable VRRP Run switch config interface vlan 20 vrrp 100 shutdown R The configuration will not be deleted only the VRRP state machine will be stopped ba 6 6 3 Verifying VRRP Step 1 Display VRRP brief status Run switch config show vrrp Interface VR Pri Time Pre State VR IP addr Vlan20
541. ups show ip igmp snooping groups Displays per VLAN the list of multicast groups attached static or dynamic allocated per port Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp snooping groups Vlan ID Group St Dyn Ports 1 230 0 0 1 st EthI 1 Total Num of Dynamic Group Addresses 0 Total Num of Static Group Addresses 1 switch config Related Commands Note Mellanox Technologies 474 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping vlan show ip igmp snooping vlan lt vlan vlan range gt all Displays IGMP configuration per VLAN or VLAN range Syntax Description vlan vlan range Displays IGMP VLAN configuration per specific VLAN or VLAN range all Display IGMP VLAN configuration on all VLAN Default N A Configuration Mode Any Command Mode History 3 1 1400 Role admin Example switch config show ip igmp vlan 1 Vlan 1 configuration parameters IGMP snooping is enabled IGMP version is V2 Snooping switch is acting as Non Querier mrouter static port list Eth1 1 mrouter dynamic port list none switch config Related Commands Note Mellanox Technologies 475 Mellanox Technologies Confidential Rev 3 20 show ip igmp snooping mrouter show ip igmp snooping mrouter Displays IGMP snooping multicast router information
542. uration Mode Any Command Mode History 3 3 5200 Role admin Example switch e07c04 standalone master config show ip bgp neighbors 3 5 7 5 received BGP table version is 66 local router ID is 3 5 7 4 Status codes s suppressed d damped h history valid gt best i internal r RIB failure S Stale m multipath b backup path x best external Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrft Weight Path x gt 100 20 20 0724 ILOS TFS 10 100 0S5 gt 3 5 7 128 32 B05 4 TS HL 100 0 5T gt 100 0 30 0 24 34 5Tx5 0 100 ec eae gt 10 20 30 0 24 820d 5 0 100 0 5 12 i switch e07c04 standalone master config Related Commands N A Note Mellanox Technologies 681 Mellanox Technologies Confidential Rev 3 20 show ip bgp neighbors lt ip gt received show ip bgp neighbors lt ip address gt received lt ip address gt lt mask gt longer prefixes Displays BGP summary information Syntax Description ip address Neighbor IP address received Displays routes received and accepted from specified neighbor longer prefixes Displays the routes to the specified destination and any routes to a more specific destination Example If 10 20 30 0 24 longer prefixes is run all routes starting with 10 20 30 regardless of the prefix length 10 20 30 X 24 10 20 30 X 25 etc are dis played providing there are any such routes received
543. uration Mode Config Interface Port Channel History 3 3 4150 Role admin Example switch config interface ethernet 1 1 spanning tree mst 1 cost 4000 switch config interface port channel 1 spanning tree mst 1 cost 4000 switch config Related Commands Note Mellanox Technologies 450 Mellanox Technologies Confidential Rev 3 20 show spanning tree show spanning tree detail interface ethernet lt slot gt lt port gt port channel lt port channel gt mst lt instance gt interface ethernet lt slot gt lt port gt port channel lt port channel gt details interface ethernet lt slot gt lt port gt port channel lt port channel gt root Displays spanning tree information for a switch Syntax Description detail Displays detailed spanning tree information on a switch interface ethernet lt slot gt Displays running state for the specified interface lt port gt port channel lt port channel gt mst lt instance gt interface Displays basic multi spanning tree information of a ethernet lt slot gt lt port gt specific switch or a specific interface port channel lt port chan nel gt details interface ethernet lt slot gt lt port gt port channel lt port chan nel gt root Displays root multi spanning tree information of a spe cific switch Default N A Configuration Mode Any Command Mode History 3 3 4150
544. urce interface can be mapped to two dif ad ferent sessions LAG The source interface can be a physical interface or a LAG Port mirroring can be configured on a LAG interface but not on a LAG member When a port is added to a mirrored LAG it inherits the LAG s mirror configuration However if port mirroring configuration is set on a port that configuration must be removed prior to adding the port to a LAG interface When a port is removed from a LAG the mirror property is switched off for that port Control Protocols All control protocols captured on the mirror port are forwarded to the analyzer port in addition to their normal treatment For example LACP STP and LLDP are forwarded to the analyzer port in addition to their normal treatment by the CPU Exceptions to the behavior above are the packets that are being handled by the MAC layer such as pause frames 5 12 1 2 Destination Interface The destination interface is an analyzer port is one to which mirrored traffic is sent The mirrored packets are duplicated optionally modified and sent to the analyzer port The SwitchX plat form supports up to 7 analyzer ports where any mirror port can be mapped to any analyzer port and more than a single mirror port can be mapped to a single analyzer port Mellanox Technologies 525 Mellanox Technologies Confidential Rev 3 20 Packets can be forwarded to any destination using the command destination interface The ana
545. v6 Automatically map hostname to loopback address 1 maps to hostname localhost6 yes Automatically map hostname to IPv6 loopback address switch config show hosts yes Mellanox Technologies 103 Mellanox Technologies Confidential Rev 3 20 ip ipv6 map hostname ip lipv6 map hostname no ip ipv6 map hostname Maps between the currently configured hostname and the loopback address 127 0 0 1 The no form of the command clears the mapping Syntax Description N A Default IPv4 mapping is enabled by default IPv6 mapping is disabled by default Configuration Mode Config History 3 1 0000 Role admin Example switch config ip map hostname switch config show hosts Hostname switch Name server 9 9 9 9 configured Name server 10 211 0 121 dynamic Name server 172 30 0 126 dynamic Name server 10 4 0 135 dynamic Domain name mydomain com configured Domain name lab mtl com dynamic Domain name vmlab mtl com dynamic Domain name yok mtl com dynamic Domain name mtl com dynamic IP 1 1 1 1 maps to hostname p IP 127 0 0 1 maps to hostname localhost IP 2 2 2 2 maps to hostname my host IPv6 2001 8f9 maps to hostname my ipv6 host IPv6 1 maps to hostname localhost6 Automatically map hostname to loopback address yes Automatically map hostname to IPv6 loopback address yes switch config switch config ping my host name PING localhost
546. val allows the switch to learn the IPL topology to identify the master and sync the MAC address before opening the MLAG ports e This parameter must be similar in all MLAG peers Mellanox Technologies 398 Mellanox Technologies Confidential Rev 3 20 keep alive interval keep alive interval lt value gt no keep alive interval Configures the interval during which keep alive messages are issued between the MLAG switches The no form of the command resets this parameter to its default value Syntax Description value Time in seconds Range 1 300 Default 1 second Configuration Mode Config MLAG History 3 3 4500 Role admin Example switch config mlag keep alive interval 1 switch config mlag Related Commands Note This parameter must be similar in all MLAG peers Mellanox Technologies 399 Mellanox Technologies Confidential Rev 3 20 shutdown shutdown no shutdown Enables MLAG The no form of the command disables MLAG Syntax Description N A Default Disabled Configuration Mode Config MLAG History 3 3 4500 Role admin Example switch config mlag no shutdown switch config mlag Related Commands Note This parameter must be similar in all MLAG peers Mellanox Technologies 400 Mellanox Technologies Confidential Rev 3 20 interface mlag port channel interface mlag port channel lt if number gt no inter
547. ven port can be either manually configured to be a router port or it can be dynamically man ifested when having received a query hence the network router is connected to this port All IGMP Snooping Control packets received from hosts joins leaves are forwarded to the router port and the router port updates its multicast group data base accordingly Each dynamically learnt multicast group will be added to all of the router ports on the switch As many as 5K multicast groups can be created on the switch 5 8 1 Configuring IGMP Snooping You can configure IGMP snooping to establish multicast group memberships gt To configure IGMP snooping Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable IGMP snooping globally Run switch config ip igmp snooping switch config Step 4 Enable IGMP snooping on a VLAN Run switch config vlan 2 switch config vlan 2 ip igmp snooping 5 8 2 Defining a Multicast Router Port on a VLAN You can define a Multicast Router MRouter port on a VLAN in one of the following methods gt To change the Interface Switchport to Trunk Step 1 Log in as admin Step 2 Enter config mode Run switch gt enable switch configure terminal Step 3 Enable IGMP snooping globally Run switch config ip igmp snooping switch config Mellanox Technologies 461 Mellanox Technologies Confidential Rev 3 20 Ste
548. wing session shows how to move between command modes switch gt You start in Standard mode switch gt enable Move to Enable mode switch You are in Enable mode switch configure terminal Move to Config mode switch config You are in Config mode switch config exit Exit Config mode switch You are back in Enable mode switch disable Exit Enable mode switch gt You are back in Standard mode Mellanox Technologies 28 Mellanox Technologies Confidential Rev 3 20 Commands entered do not print any response and simply show the command prompt after you press lt Enter gt If an error is encountered in executing a command the response will begin with followed by some text describing the error 3 1 5 Using the no Form Several Config mode commands offer the negation form using the keyword no This no form can be used to disable a function to cancel certain command parameters or options or to reset a parameter value to its default To re enable a function or to set cancelled command parameters or options enter the command without the no keyword with parameter values if necessary The following example performs the following 1 Displays the current CLI session options 2 Disables auto logout 3 Displays the new CLI session options auto logout is disabled 4 Re enables auto logout after 15 minutes 5 Displays the final CLI session options auto l
549. witch config image default chip fw image SX_PPC_M460EX ppc m460ex 20120122 084759 img switch config Related Commands image install chip fw show images Note Mellanox Technologies 141 Mellanox Technologies Confidential Rev 3 20 image delete image delete lt image name gt Deletes the specified image file Syntax Description image name Specifies the image name Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config image delete image MLXNX OS 201140526 010145 img switch config Related Commands show images Note Mellanox Technologies 142 Mellanox Technologies Confidential Rev 3 20 image fetch image fetch lt URL gt lt filename gt Downloads an image from the specified URL or via SCP Syntax Description URL HTTP HTTPS FTP TFTP SCP and SFTP are sup ported Example scp username password host name path filename filename Specifies a filename for this image to be stored as locally Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config image fetch scp lt username gt 192 168 10 125 var www html lt image_name gt Password x LOO LOS LHHHE HE HH HH HH HH HH HE HH HH FH HE EE HE EE HE EE HH HH HE HE HH HE EE HE HE HE switch config Related Commands show images Note e Please delete the previous
550. witchport The no form of the command configures the Ethernet interface as a router port Syntax Description force Forces configuration even if the interface s admin state is enabled Default N A Configuration Mode Config History 3 3 5200 Role admin Example switch config interface ethernet 1 10 no switchport force Related Commands Note Mellanox Technologies 560 Mellanox Technologies Confidential Rev 3 20 encapsulation dotlq vlan encapsulation dotlq vlan lt vlan id gt force no encapsulation dot1q vlan force Enables L2 802 1Q encapsulation of traffic on a specified router port ina VLAN The no form of the command disables L2 802 1Q encapsulation of traffic on a speci fied router port ina VLAN Syntax Description vlan id Enables L2 802 1Q encapsulation of traffic on a router port ina VLAN force Forces admin state down Default N A Configuration Mode Config Interface Ethernet History 3 3 5200 Role admin Example switch config interface ethernet 1 10 encapsulation dotlq vlan 10 Related Commands Note Mellanox Technologies 561 Mellanox Technologies Confidential Rev 3 20 6 1 2 Equal Cost Multi Path Routing ECMP Equal cost multi path routing ECMP is a routing strategy where next hop packet forwarding to a single destination can occur over multiple paths In Figure 22 routers R1 and R2 can both access each of their router peer networks Rout
551. work Sets the OSPF interface network type The no form of the command resets the interface network type to its default Syntax Description type The network type on this interface The options are broadcast or point to point Default broadcast Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 3500 Role admin Example switch config interface vlan 10 ip ospf network point to point Related Commands N A Note e The network type influences the behavior of the OSPF interface An OSPF network type is usually broadcast which uses OSPF multicasting capabilities Under this network type a designated router and backup designated router are elected For point to point networks there are only two neighbors and multicast is not required e All routers on the same network should have the same network type Mellanox Technologies 613 Mellanox Technologies Confidential Rev 3 20 ip ospf retransmit interval ip ospf retransmit interval lt seconds gt no ip ospf retransmit interval Configures the time between OSPF link state advertisement LSA retransmissions for adjacencies that belongs to the interface The no form of the command resets this parameter to its default Syntax Description seconds The retransmit interval in seconds Range is 0 3600 Default 5 Configu
552. write Step 4 Reload the system Run switch config reload 4 3 5 Upgrading System Firmware Each MLNX OS software package version has a default switch firmware version When you update the MLNX OS software to a new version an automatic firmware update process will be attempted by MLNX OS This process is described below 4 3 5 1 After Updating MLNX OS Software Upon rebooting your switch system after updating the MLNX OS software MLNX OS com pares its default firmware version with the currently programmed firmware versions on all the switch modules leafs and spines on director class switches or simply the switch card on edge switch systems If one or more of the switch modules is programmed with a firmware version other than the default version then MLNX OS automatically attempts to burn the default firmware version instead If a firmware update takes place then the login process is delayed a few minutes ba To verify that the firmware update was successful log into MLNX OS and run the command show asic version can be run in any mode This command lists all of the switch modules along with their firmware versions Make sure that all the firmware versions are the same and match the default firmware version If the firmware update failed for one or more modules then the following warning is displayed Some subsystems are not updated with a default firmware If you detect a mismatch in firmware versi
553. xample switch config banner motd My Banner switch config show banner Banners MOTD My Banner Login Mellanox MLNX OS Switch Management switch config Related Commands show banner Note If more then one word is used there is a space quotation marks should be added i e XXXX XXXX e To insert a multi line MotD hit Ctrl V escape sequence followed by Ctrl J new line sequence The symbol J should appear Then whatever is typed after it becomes the new line of the MotD Remember to also include the string between quotation marks Mellanox Technologies 48 Mellanox Technologies Confidential Rev 3 20 show banner show banner Displays configured banners Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role unpriv monitor admin Example switch config show banner Banners MOTD Testing Login Mellanox MLNX OS Switch Management switch config Related Commands banner login banner motd Note Mellanox Technologies 49 Mellanox Technologies Confidential Rev 3 20 3 4 3 SSH ssh server enable ssh server enable no ssh server enable Enables the SSH server The no form of the command disables the SSH server Syntax Description N A Default SSH server is enabled Configuration Mode Config History 3 1 0000 Role admin Example switch config ssh server enable swit
554. xample switch config show ntp NTP is enabled Clock is unsynchronized No NIP peers or servers configured switch config Related Commands N A Note Mellanox Technologies 129 Mellanox Technologies Confidential Rev 3 20 4 3 Software Management 4 3 1 Upgrading MLNX OS Software Preconditions Prior to upgrading MLNX OS software from version 3 2 0100 and lower please remove any old configuration from your system To remove old configuration Step 1 Clear your system of any old configuration Run from CMM system switch 2 gt clear cnfg OK system switch 2 gt Step 2 Follow the steps described in Section 4 3 2 Upgrading MLNX OS Software on page 130 4 3 2 Upgrading MLNX OS Software When upgrading from a software version older than 3 2 0100 to software version rd 3 3 0000 or higher the upgrade procedure must be done in two steps First update the ad software to 3 2 0300 100 for InfiniBand platforms or 3 2 0506 for Ethernet plat forms then update to the desired software version The system being upgraded becomes indisposed throughout the upgrade procedure p The upgrade procedure burns the software image as well as the firmware should there be a need You have to read and accept the End User License Agreement EULA after image LP upgrade in case the EULA is modified The EULA link is only available upon first ad login to CLI To upgrade MLNX OS software
555. xample switch config interface vlan 10 clear counters switch config interface vlan 10 Related Commands interface vlan counters Note Mellanox Technologies 573 Mellanox Technologies Confidential Rev 3 20 show interfaces vlan show interfaces vlan lt vlan ID gt status Displays the interface VLAN configuration and status per VLAN or as a summarized list Syntax Description vlan id A numeric range of 1 4094 status Displays a summarized status table Default N A Configuration Mode Any Command Mode History 3 2 0230 3 3 4000 Added ARP timeout to the output example Role admin Example switch config show interfaces vlan status Interface Description State Vianl N A Up Vlan10 my ip interface Down Vlan11 N A Up Vlan12 N A Up Vlan13 N A Up Vlan14 N A Up Vlan20 N A Down switch config show interfaces vlan 10 Vlan 10 Admin state Enabled Operational state Down no up member port Mac Address 00 02 c9 5d e0 f0 MTU 1522 bytes Arp timeout 240 seconds Description N A RX Unicast frames Multicast frames Unicast octets Multicast octets Error frames Error octets EOD TX Unicast frames Multicast frames Unicast octets Multicast octets ooo o switch config Related Commands interface vlan Note Byte counters count octets starting from the IP header field it doesn t count the L2 header MAC VLAN and FCS length Mellanox Te
556. xhaustion and data path packet loss The default behavior in congestion situations is to drop any excessive frames that may clog the system RP ETS PFC and FC configurations do not apply to the destination port aa 5 12 1 5 Truncation When enabled the system can truncate the mirrored packets into smaller 64 byte packets default which is enough to capture the packets L2 and L3 headers 5 12 2 Configuring Mirroring Sessions Figure 18 presents two network scenarios with direct and remote connectivity to the analyzer equipment Direct connectivity is when the analyzer is connected to the analyzer port of the switch In this case there is no need for adding an L2 header to the mirrored traffic Remote con nectivity is when the analyzer is indirectly connected to the analyzer port of the switch In this situation adding an L2 header may be necessary depending on the network s setup Mellanox Technologies 527 Mellanox Technologies Confidential Rev 3 20 Figure 18 Mirroring Session Host Switch Direct local connectivity Remote connectivity gt To configure a mirroring session Step 1 Create a session Run s Step 2 Add source interface s Run Step 3 Add destination interface Run Step 4 Optional Set header format Run Step 5 Optional Truncate the mirrored traffic to 64 byte packets Run Step 6 Optional Set congestion control Run 7 en Mellanox Techn
557. xport stats export lt format gt lt report name gt after before lt yyyy mm dd gt lt hh mm ss gt filename lt filename gt Exports statistics to a file Syntax Description format Currently the only supported value for lt format gt is csv comma separated value report name Determines dataset to be exported Possible report names are e memory Memory utilization e paging Paging I O e cpu util CPU utilization after before Only includes stats collected after or before a specific time yyyy mm dd Date It must be between 1970 01 01 and 2038 01 19 hh mm ss Time It must be between 00 00 00 and 03 14 07 UTC and is treated as local time filename Specifies filename to give new report If a filename is specified the stats will be exported to a file of that name otherwise a name will be chosen automatically and will contain the name of the report and the time and date of the export Any automatically chosen name will be given a csv extension Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config stats export csv memory filename mellanoxexample before 2000 08 14 15 59 50 after 2000 08 14 15 01 50 Generated report file mellanoxexample csv switch config show files stats mellanoxexample csv switch config Related Commands show files stats Note Mellanox Technologies 309 Mellanox Technologies Confid
558. y Iidp tx delay lt seconds gt no Ildp tx delay Indicates the delay in seconds between successive LLDP frame transmissions The no form of the command sets the parameter to default Syntax Description seconds 1 8192 Default 2 Configuration Mode Config History 3 2 0300 Role admin Example switch config lldp tx delay 10 switch config Related Commands show lldp timers Note The recommended value for the tx delay is set by the following formula 1 lt lldp tx delay lt 0 25 Ildp timer Mellanox Technologies 485 Mellanox Technologies Confidential Rev 3 20 Iidp tx hold multiplier lldp tx hold multiplier lt seconds gt no Ildp tx hold multiplier The time to live value expressed as a multiple of the IldpMessageTxInterval object The no form of the command sets the parameter to default Syntax Description seconds 1 8192 Default 2 Configuration Mode Config History 3 2 0300 Role admin Example switch config lldp tx hold multiplier 10 switch config Related Commands show lldp timers Note The actual time to live value used in LLDP frames can be expressed by the follow ing formula TTL min 65535 IlIdpMessageTxInterval IldpMessageTxHoldMul tiplier For example if the value of IldpMessageTxInterval is 30 and the value of lidpMessageTxHoldMultiplier is 4 then the value 120 is encoded in the TTL field in the LLDP header
559. y size Private key length in bits at least 1024 but 2048 is strongly recommended locality Configures the default certificate value for locality org unit Configures the default certificate value for organiza tional unit organization Configures the default certificate value for the organi zation name state or prov Configures the default certificate value for state or province Default Configuration Mode History Role Example Related Commands Note N A Config 3 2 1000 3 3 4350 admin First version Added hash algorithm parameter switch config crypto certificate generation default hash algorithm sha256 N A The default hashing algorithm used is shal Mellanox Technologies 279 Mellanox Technologies Confidential Rev 3 20 crypto certificate name crypto certificate name lt cert name gt system self signed comment lt new comment gt generate self signed comment lt cert comment gt common name lt domain gt country code lt code gt days valid lt days gt email addr lt address gt hash algorithm sha1 sha256 key size bits lt bits gt locality lt name gt org unit lt name gt organization lt name gt serial num lt number gt state or prov lt name gt private key pem lt PEM string gt prompt private key public cert comment lt comment string gt pem lt PEM string gt regenerate d
560. y 3 1 0000 3 3 4302 Updated example Role admin Example switch config show cpld Name Type Version Cpldl CPLD_TOR 4 Cpld2 CPLD_PORT1 2 Cpld3 CPLD_PORT2 2 Cpl1d4 CPLD_MEZZ 3 switch config Related Commands N A Note Mellanox Technologies 324 Mellanox Technologies Confidential Rev 3 20 show inventory show inventory Displays system inventory Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show inventory Module Type Part number Serial Number Asic revision CHASSIS SX1036 MSX1036B 1SFR MT1205X01549 N A MGMT SX1036 MSX1036B 1SFR MT1205X01549 0 FAN SXX0XX_FAN MSX60 FF MT1206X07209 N A PS1 SXX0XX_PS MSX60 PF MT1206X06697 N A CPU CPU SA000203 B MT1220X01231 N A switch config Related Commands N A Note Mellanox Technologies 325 Mellanox Technologies Confidential Rev 3 20 show module show module Displays modules status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 First version 3 3 0000 Added Is Fatal column Role admin Example switch config show module Module Type Present Power Is Fatal MGMT SX1036 1 N A Not Fatal FAN SXXOXX_FAN ab N A Not Fatal PSL SXXOXX_PS 1 N A Not Fatal PS2 SXXOXX_PS 0 N A Not Fatal CPU CPU 1 N A Not Fatal switch config Related Commands N A N
561. y is 1 State is FULL 6 state changes DR is 10 225 200 28 BDR is 10 225 200 30 Options is 0x42 LLS Options is 0x1 LR last OOB Resync 00 03 08 ago Dead timer due in 00 00 36 Neighbor is up for 00 09 46 Index 1 1 retransmission queue length 0 number of retransmission 1 First 0x0 0 0x0 0 Next 0x0 0 0x0 0 Last retransmission scan length is 1 maximum is 1 Last retransmission scan time is 0 msec maximum is 0 msec Mellanox Technologies 626 Mellanox Technologies Confidential Rev 3 20 Related Commands N A Note Mellanox Technologies 627 Mellanox Technologies Confidential Rev 3 20 show ip ospf request list show ip ospf request list lt neighbor id gt vlan lt vlan id gt Displays the OSPF list of all link state advertisements LSAs requested by a router Syntax Description neighbor id Filers the output per a specific OSPF neighbor vlan id Filers the output per a specific VLAN ID Default N A Configuration Mode Any Command Mode History 3 3 3500 Role admin Example Router show ip ospf request list 40 40 40 ethernet 2 1 OSPF Process ID pl Neighbor 40 40 40 40 interface Ethernet2 1 address 192 0 2 1 1 LSAs on request list Type LS ID ADV RTR Seq NO Age Checksum 1 192 0 2 12 192 0 2 12 0x8000020D 8 0x6572 Related Commands N A Note Mellanox Technologies 628 Mellanox Technologies Confidential Rev 3 20 show ip ospf retransmission lis
562. yntax Description ttl value Range 0 225 Default 0 all packets are forwarded Configuration Mode Config Interface VLAN Config Interface Ethernet configured as a router port Config Interface Port Channel configured as a router port History 3 3 5006 Role admin Example switch config interface vlan 10 ip multicast ttl threshold 10 Related Commands N A Note Mellanox Technologies 754 Mellanox Technologies Confidential Rev 3 20 show ip mroute show ip mroute summary lt group gt lt prefix gt lt source gt Displays information about IPv4 multicast routes Syntax Description source Source IP address group IP address of multicast group prefix Network prefix of multicast group in the format of 24 or 255 255 255 0 for example summary Displays a summary of the multicast routes Default N A Configuration Mode Any Command Mode History 3 2 1000 Role admin Example arc switchl4 standalone master config show ip mroute IP Multicast Routing Table Flags B Bidir Group L Local P Pruned R RP bit set T SPT bit set J Join SPT Timers Uptime Expires Interface state Interface State Mode 225 0 0 0 24 00D 00 14 49 RP 18 18 18 14 flags BR Bidir Upstream Lo7 Outgoing interface list Related Commands N A Note Mellanox Technologies 755 Mellanox Technologies Confidential Rev 3 20 6 5 5 3 I
563. ystem to automatically decide whether to work in power saving mode or not force Forces power saving mode on the port Default Disabled Configuration Mode Config Interface Ethernet History 3 3 4000 Role admin Example switch config interface ib 1 1 power management width auto switch config Related Commands show interface Note Mellanox Technologies 319 Mellanox Technologies Confidential Rev 3 20 usb eject usb eject Gracefully turns off the USB interface Syntax Description N A Default N A Configuration Mode Config History 3 1 0000 Role admin Example switch config usb eject switch config Related Commands N A Note Applicable only for systems with USB interface Mellanox Technologies 320 Mellanox Technologies Confidential Rev 3 20 show fan show fan Displays fans status Syntax Description N A Default N A Configuration Mode Any Command Mode History 3 1 0000 Role admin Example switch config show fan switch config show fan Module Device Fan Speed Status RPM FAN FAN F1 5340 00 OK FAN FAN F2 5340 00 OK FAN FAN F3 5640 00 OK FAN FAN F4 5640 00 OK PS1 FAN F1 5730 00 OK PS2 FAN 3 NOT PRESENT switch config Related Commands N A Note Mellanox Technologies 321 Mellanox Technologies Confidential Rev 3 20 show version show version c
Download Pdf Manuals
Related Search