Alteon OS 21 Command Reference | Secure Shell | Command Line Interface

Command Reference

Alteon OS 21.0
Alteon Application Switch
Part Number: 315393-E, October 2003

TM

4655 Great America Parkway Santa Clara, CA 95054 Phone 1-800-4Nortel www.nortelnetworks.com

Alteon OS 21.0 Command Reference

Copyright 2003 Nortel Networks, Inc.,4655 Great America Parkway, Santa Clara, California 95054, USA. All rights reserved. Part Number: 315393-E. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of Nortel Networks, Inc. Documentation is provided “as is” without warranty of any kind, either express or implied, including any kind of implied or express warranty of noninfringement or the implied warranties of merchantability or fitness for a particular purpose. U.S. Government End Users: This document is provided with a “commercial item” as defined by FAR 2.101 (Oct 1995) and contains “commercial technical data” and “commercial software documentation” as those terms are used in FAR 12.211-12.212 (Oct 1995). Government End Users are authorized to use this documentation only in accordance with those rights and restrictions set forth herein, consistent with FAR 12.211- 12.212 (Oct 1995), DFARS 227.7202 (JUN 1995) and DFARS 252.227-7015 (Nov 1995). Nortel Networks, Inc. reserves the right to change any products described herein at any time, and without notice. Nortel Networks, Inc. assumes no responsibility or liability arising from the use of products described herein, except as expressly agreed to in writing by Nortel Networks, Inc. The use and purchase of this product does not convey a license under any patent rights, trademark rights, or any other intellectual property rights of Nortel Networks, Inc. Alteon OS is the trademarks of Nortel Networks, Inc. in the United States and certain other countries. Cisco® and EtherChannel® are registered trademarks of Cisco Systems, Inc. in the United States and certain other countries. Any other trademarks appearing in this manual are owned by their respective companies.

2
315393-E, October 2003

Contents
Preface 15 Who Should Use This Book 15 How This Book Is Organized 15 Related Documentation 16 Typographic Conventions 17 How to Get Help 18 Chapter 1: The Command Line Interface 19 Connecting to the Switch 20 Establishing a Console Connection 20 Requirements 20 Procedure 20 Establishing a Telnet Connection 21 Using a BOOTP Server 21 Running Telnet 21 Establishing an SSH Connection 22 Running SSH 22 Accessing the Switch 23 CLI Versus Setup 25 Command Line History and Editing 25 Idle Timeout 25 Chapter 2: First-Time Configuration 27 Using the Setup Utility 27 Information Needed For Setup 27 Starting Setup When You Log In 28 Stopping and Restarting Setup Manually 29 Stopping Setup 29 Restarting Setup 29 Setup Part 1: Basic System Configuration 29
3
315393-E, October 2003

Alteon OS 21.0 Command Reference

Setup Part 2: Port Configuration 31 Setup Part 3: VLANs 33 Setup Part 4: IP Configuration 35 IP Interfaces 35 Default Gateways 36 IP Routing 37 Setup Part 5: Final Steps 38 Optional Setup for SNMP Support 39 Optional Setup for Telnet Support 39 Setting Passwords 40 Changing the Default Administrator Password 40 Changing the Default User Password 42 Changing the Default Layer 4 Administrator Password 43 Chapter 3: Menu Basics 45 The Main Menu 45 Menu Summary 46 Global Commands 47 Command Line History and Editing 49 Command Line Interface Shortcuts 50 Command Stacking 50 Command Abbreviation 50 Tab Completion 50 Chapter 4: The Information Menu 51 Information Menu 51 System Information Menu 53 General System Information 54 Show Last 30 Syslog Messages 55 Management Port Information 56 SONMP Information 56 System Information Dump 58 Layer 2 Information Menu 59 Layer 2 FDB Information 60 Show All FDB Information 61 Clearing Entries from the Forwarding Database 61 Layer 2 Spanning Tree Group Information 62 Trunk Group Information 64

4

„

Contents
315393-E, October 2003

Alteon OS 21.0 Command Reference

VLAN Information 64 Layer2 Dump Information 65 Layer3 Information Menu 66 IP Routing Information 67 Show All IP Route Information 68 Type Parameters 68 Tag Parameters 69 ARP Information Menu 69 Show All ARP Entry Information 71 ARP Address List Information 72 BGP Information Menu 72 BGP Peer information 73 BGP Summary information 73 Dump BGP Information 74 OSPF Information Menu 74 OSPF General Information 76 OSPF Interface Information 76 OSPF Database Information 77 OSPF Information Route Codes 78 IP Information 79 VRRP Information 79 Layer3 Dump Information 81 Layer 4 Information Menu 82 Session Table Information 84 Samples of Session Dumps for Different Applications 86 Session dump information in Alteon OS 87 Show All Layer 4 Information 89 Link Status Information 90 Port Information 91 Bandwidth Management Information 92 Security Information 92 Software Enabled Keys 93 Information Dump 93 Chapter 5: The Statistics Menu 95 Statistics Menu 95 Port Statistics Menu 97 Bridging Statistics 98

Contents
315393-E, October 2003

„

5

Alteon OS 21.0 Command Reference

Ethernet Statistics 99 Interface Statistics 102 Interface Protocol Statistics 104 Link Statistics 105 RMON Statistics 106 Layer 2 Statistics Menu 109 FDB Statistics 109 Layer 3 Statistics Menu 110 OSPF Statistics Menu 111 OSPF Global Statistics 112 IP Statistics 116 Route Statistics 118 ARP statistics 119 VRRP Statistics 120 DNS Statistics 121 ICMP Statistics 121 Interface Statistics 123 TCP Statistics 125 UDP Statistics 126 Load Balancing Statistics Menu 127 Server Load Balancing SP statistics Menu 129 SP Real Server Statistics 130 Real Server SLB Statistics 131 Per Service Octet Counters 132 Real Server Group Statistics 133 Virtual Server SLB Statistics 133 Filter SLB Statistics 134 Global SLB Statistics Menu 134 Real Server Global SLB Statistics 135 Real Server Group Global SLB Statistics 135 Virtual Server Global SLB Statistics 135 Global SLB Maintenance Statistics 136 SLB Layer7 Statistics Menu 137 Layer7 Redirection Statistics 137 Layer 7 SLB String Statistics 138 Layer 7 SLB Maintenance Statistics 139 SLB Secure Socket Layer Statistics 141 File Transfer Protocol SLB and Filter Statistics Menu 142

6

„

Contents
315393-E, October 2003

Alteon OS 21.0 Command Reference

Active FTP SLB Parsing and Filter Statistics 142 Passive FTP SLB Parsing Statistics 143 FTP SLB Maintenance Statistics 143 FTP SLB Statistics Dump 144 RTSP SLB Statistics 145 DNS SLB Statistics 145 WAP SLB Statistics 147 SLB Maintenance Statistics 149 Clearing the SLB Statistics 150 BWM Statistics Menu 152 BWM Switch Processor Statistics 153 BWM Switch Processor Contract Statistics Menu 153 BWM Switch Processor Rate Contract Statistics 154 BWM Contract Statistics 154 BWM Contract Rate Statistics 155 BWM History Statistics 156 BWM Maintenance Statistics 158 Management Processor Statistics 158 MP Packet Statistics 159 TCP Statistics 161 UCB Statistics 161 MP-Specific SFD Statistics 162 CPU Statistics 162 SP Specific Statistics 162 SP-Specific Maintenance Statistics 163 Security Statistics 164 DOS Attack Statistics Menu 165 Types of DOS Attacks 165 IP Access Control List Statistics 166 UDP Blast Statistics 166 UDP Blast Dump Statistics 167 UDP Pattern Match Statistics 167 Rate Limiting Statistics 168 Dump Statistics for Security 169 SNMP Statistics 170 Management Port Statistics 173 Dump Statistics 174

Contents
315393-E, October 2003

„

7

Alteon OS 21.0 Command Reference

Chapter 6: The Configuration Menu 175 Configuration Menu 175 Viewing, Applying, and Saving Changes 176 Viewing Pending Changes 177 Applying Pending Changes 177 Saving the Configuration 177 System Configuration 179 System Host Log Configuration 181 Seven Levels of Severity 182 Management Port Configuration Menu 182 Management Port Link Menu 185 SSH Server Configuration Menu 185 RADIUS Server Configuration 187 NTP Server Configuration 188 SynOptics Network Management Protocol Configuration 189 System SNMP Configuration 190 System Health Check Configuration Menu 192 System Access Control Configuration 193 Management Networks Menu 194 User Access Control Menu 195 Port Configuration 197 Alteon Application Switch 2000 Series 197 Fast Ethernet Ports 197 SFP GBIC Ports 197 Port Link Configuration 199 Alteon Application Switch 3000 Series 201 Port Configuration on Alteon Application Switch 3408 201 Single-Mode ports 202 Single-Mode Copper Port Gigabit Ethernet Link Configuration Menu 203 Single-Mode Fiber Optic Gigabit Ethernet Port Link Configuration Menu 206 Dual-Mode Ports 207 Dual-Mode Copper Port Link Configuration 208 Dual-Mode Fiber Optic Port Link Configuration Menu 210 Temporarily Disabling a Port 210 Port Mirroring Menu 211 Port-Mirroring Menu 211 Bandwidth Management Configuration 212

8

„

Contents
315393-E, October 2003

Alteon OS 21.0 Command Reference Bandwidth Management Contract Configuration 214 Bandwidth Management Policy Configuration 215 Bandwidth Management Current Configuration 216 Layer 2 Configuration Menu 217 Spanning Tree Group Configuration 218 Bridge Spanning Tree Configuration 220 Spanning Tree Port Configuration 221 Trunk Configuration 222 VLAN Configuration 224 Layer 3 Configuration Menu 226 IP Interface Configuration 228 Default IP Gateway Configuration 229 Default Gateway Metrics 230 IP Static Route Configuration 230 ARP Configuration Menu 231 ARP Static Configuration Menu 231 IP Forwarding Configuration 233 Local Network Route Caching Definition 233 Defining IP Address Ranges for the Local Route Cache 234 Network Filter Configuration 235 Routing Map Configuration Menu 236 IP Access List Configuration Menu 238 Autonomous System Filter Path 239 Routing Information Protocol Configuration 240 Open Shortest Path First Configuration 241 Area Index Configuration Menu 243 OSPF Summary Range Configuration Menu 245 OSPF Interface Configuration Menu 246 OSPF Virtual Link Configuration Menu 247 OSPF Host Entry Configuration Menu 249 OSPF Route Redistribution Configuration Menu. 250 OSPF MD5 Key Configuration Menu 250 Border Gateway Protocol Configuration 251 BGP Peer Configuration Menu 253 BGP Redistribution Configuration Menu 255 BGP Aggregate Routing Configuration Menu 256 IP Forwarding Port Configuration Menu 257 Domain Name System Configuration Menu 258 Contents 315393-E. October 2003 „ 9 .

0 Command Reference Bootstrap Protocol Relay Configuration Menu 259 VRRP Configuration Menu 260 Virtual Router Configuration Menu 262 Virtual Router Priority Tracking Configuration 264 Virtual Router Group Menu 265 Virtual Router Group Priority Tracking Configuration Menu 267 Virtual Router Group Configuration 269 Virtual Router Group Priority Tracking Configuration 271 VRRP Interface Configuration 273 VRRP Tracking Configuration 274 Default Gateway Metrics 275 Security Configuration Menu 276 IP Address Access Control List Configuration Menu 277 Pattern Matching Menu 278 Port Security Configuration Menu 279 UDP Blast Protection Configuration Menu 280 Setup 281 Dump 281 Saving the Active Switch Configuration 282 Restoring the Active Switch Configuration 282 Chapter 7: The SLB Configuration Menu 283 SLB Configuration 284 Filtering and Layer 4 (Server Load Balancing) 285 Real Server SLB Configuration 286 Real Server Layer 7 Configuration 290 Real server IDS Configuration Menu 290 Real Server Group SLB Configuration 292 SLB Health Check Types 294 Server Load Balancing Metrics 297 Virtual Server SLB Configuration 299 Virtual Server Service Configuration 301 Virtual Server RTSP Configuration 305 Cookie-Based Persistence 305 SLB Filter Configuration 307 Defining IP Address Ranges for Filters 311 Advanced Filter Configuration 312 Advanced Filter TCP Configuration 314 10 „ Contents 315393-E. October 2003 .Alteon OS 21.

351 Operations-Level Bandwidth Management Options 352 Operations-Level IP Options 352 Operations-Level BGP Options 353 Activating Optional Software 353 Removing Optional Software 354 Contents 315393-E. October 2003 „ 11 .0 Command Reference IP Advanced Menu 315 ICMP Message Types 316 Layer 7 Advanced Filter Configuration Menu 317 SLB Filter Advanced Security Menu 319 Advanced Security Rate Limiting Configuration Menu 320 Port SLB Configuration 321 Global SLB Configuration 323 GSLB Remote Site Configuration 326 GSLB Lookup Configuration 327 GSLB Internet Network Preference Lookup Configuration 328 Layer 7 SLB Resource Definition Menu 329 Web Cache Redirection Configuration 330 Server Load Balance Resource Configuration Menu 331 WAP Configuration 332 Synchronize Peer Switch Configuration 333 Peer Switch Configuration 334 Advanced Layer 4 Configuration 335 SYN Attack Detection Configuration 337 Advanced Health Check Configuration Menu 338 Scriptable Health Checks Configuration 339 SNMP Health Check Configuration 340 WAP Health Check Configuration 341 WSP Content Health Check 342 WTP and WSP Content Health Check Menu 343 Proxy IP Address Configuration Menu For Alteon 2224 344 Proxy IP Address Configuration Menu For Alteon 2424 345 Proxy IP Address Configuration Menu For Alteon 3408 346 Chapter 8: The Operations Menu 347 Operations Menu 347 Operations-Level Port Options 349 Operations-Level SLB Options 350 Operations-Level VRRP Options.Alteon OS 21.

Alteon OS 21.0 Command Reference Chapter 9: The Boot Options Menu 355 Boot Menu 355 Scheduled Reboot of the Switch 356 Scheduled Reboot Menu 356 Updating the Switch Software Image 356 Downloading New Software to Your Switch 356 Selecting a Software Image to Run 358 Uploading a Software Image from Your Switch 358 Selecting a Configuration Block 359 Resetting the Switch 360 Chapter 10: The Maintenance Menu 361 Maintenance Menu 361 System Maintenance Options 363 Forwarding Database Options 363 Debugging Options 365 ARP Cache Options 366 ARP Entries on a Single Port 366 IP Route Manipulation 367 Uuencode Flash Dump 368 TFTP System Dump Put 368 Clearing Dump Information 369 Panic Command 369 Unscheduled System Dumps 370 Appendix A: Alteon OS Syslog Messages 371 LOG_WARNING 371 LOG_ALERT 372 LOG_CRIT 373 LOG_ERR 373 LOG_NOTICE 379 LOG_INFO 381 Appendix B: Alteon OS SNMP Agent 383 Appendix C: Performing a Serial Download 387 Glossary 389 12 „ Contents 315393-E. October 2003 .

0 Command Reference Index 393 Contents 315393-E. October 2003 „ 13 .Alteon OS 21.

October 2003 .0 Command Reference 14 „ Contents 315393-E.Alteon OS 21.

” provides an overview of the menu system. IP addressing. October 2003 .” shows how to view switch configuration parameters. For documentation on installing the switches physically. including a menu map. How This Book Is Organized Chapter 1 “The Command Line Interface. SNMP. Chapter 5 “The Statistics Menu. Port Mirroring. Chapter 6 “The Configuration Menu. the IEEE 802. and menu shortcuts. and more. ports.1d Spanning Tree Protocol. see the Hardware Installation Guide for your particular switch model. 15 315393-E.Preface The Alteon OS 21. Who Should Use This Book This Command Reference is intended for network installers and system administrators engaged in configuring and maintaining a network.” describes how to use the Setup utility for initial switch configuration and how to change the system passwords.” shows how to configure switch system parameters. global commands. Chapter 3 “Menu Basics. and SNMP configuration parameters. VLANs. The administrator should be familiar with Ethernet concepts.0 Command Reference describes how to configure and use the Alteon OS software with your Alteon Application Switch. Port Trunking. Spanning Tree Protocol.” shows how to view switch performance statistics.” describes how to connect to the switch and access the information and configuration menus. IP Routing. Chapter 4 “The Information Menu. Chapter 2 “First-Time Configuration.

Global Server Load Balancing. October 2003 .” lists the Management Interface Bases (MIBs) supported in the switch software. Filtering.Alteon OS 21. but do not alter permanent switch configurations (such as temporarily disabling ports). Related Documentation „ „ Alteon OS 21. Appendix A. „ Alteon OS 21.” shows how to generate and access a dump of critical switch state information. The menu describes how to activate or deactivate optional software features. and more. “Index” includes pointers to the description of the key words used throughout the book. Chapter 10 “The Maintenance Menu.” shows a listing of syslog messages. how to clear it. Alteon OS Browser-Based Interface (BBI) Quick Guide (315395-B) Provides a description of the Switch BBI and how to configure and access it on the Switch.” shows how to use commands which affect switch performance immediately. Appendix B. “Glossary” defines the terminology used throughout the book. “Alteon OS SNMP Agent. Chapter 9 “The Boot Options Menu. how to install it. 16 „ Preface 315393-E. and how to reset the software to factory defaults.0 Command Reference Chapter 7 “The SLB Configuration Menu.” shows how to configure Server Load Balancing.” describes the use of the primary and alternate switch images. how to load a new software image. 315394-E) Provides application explanations and configuration examples for the Switch. and how to clear part or all of the forwarding database.0 Release Notes (315397-E) This document provides a detailed description of any caveats and limitations. Appendix C. Chapter 8 “The Operations Menu. “Alteon OS Syslog Messages.” shows how to directly load a binary software image into the switch for upgrade or maintenance. and how to troubleshoot it.0 Application Guide (Part No. “Performing a Serial Download. „ Alteon Application Switch Hardware Installation Guide (315396-E) Provides a description of the Alteon Application Switch hardware—the physical features.

October 2003 „ 17 . special terms.txt file. host# ls [-a] Preface 315393-E. Read your User’s Guide thoroughly.Alteon OS 21. files. Do not type the brackets.0 Command Reference Typographic Conventions The following table describes the typographic styles used in this book. enter: examples as a parameter placeholder. Do not type the brackets. AaBbCc123 This bold type appears in command examples. and directories used within the text. This also shows book titles. It also depicts on-screen computer output and Main# prompts. It shows text that must be typed in exactly as shown. [ ] Command items shown inside brackets are optional and can be used or excluded as the situation demands. Example View the readme. Main# sys <AaBbCc123> This italicized type appears in command To establish a Telnet session. Replace host# telnet <IP address> the indicated text with the appropriate real name or value when using the command. or words to be emphasized. Table 1 Typographic Conventions Typeface or Symbol AaBbCc123 Meaning This type is used for names of commands.

If you purchased a Nortel Networks service program.nortelnetworks. refer to the following URL: http://www. To locate an ERC for your product or service.Alteon OS 21.0 Command Reference How to Get Help If you purchased a service contract for your Nortel Networks product from a distributor or authorized reseller.html 18 „ Preface 315393-E. contact one of the following Nortel Networks Technical Solutions Centers: Technical Solutions Center Europe. your call is routed to a technical support person who specializes in supporting that product or service. When you use an ERC.com/help/contact/erc/index. contact the technical support staff for that distributor or reseller for assistance. and Africa Telephone 00800 8008 9009 or +44 (0) 870 907 9009 (800) 4NORTEL or (800) 466-7835 (61) (2) 8870-8800 (800) 810-5000 North America Asia Pacific China Additional information about the Nortel Networks Technical Solutions Centers is available at the following URL: http://www. October 2003 .com/help/contact/global An Express Routing Code (ERC) is available for many Nortel Networks products and services. Middle East.nortelnetworks.

text-based command line interface and menu system for access via local terminal or remote Telnet session A GUI-based Element Management System (EMS) for interactive network access SNMP support for access through network management software such as HP OpenView Alteon OS Browser-Based Interface (BBI) The command line interface is the most direct method for collecting switch information and performing switch configuration. require some administrative configuration before they can be used effectively. 19 315393-E. October 2003 .CHAPTER 1 The Command Line Interface Your Alteon Application Switch is ready to perform basic switching functions right out of the box. Some of the more advanced features. you are presented with a hierarchy of menus that enable you to view information and statistics about the switch. however. This chapter explains how to access the Command Line Interface (CLI) to the switch. and to perform any necessary configuration. Using a basic terminal. The extensive Alteon OS switching software included in your switch provides a variety of options for accessing and configuring the switch: „ „ „ „ A built-in.

0 Command Reference Connecting to the Switch You can access the command line interface in any one of the following ways: „ „ „ Using a console connection via the console port Using a Telnet connection over the network Using an SSH connection to securely log into another computer over a network Establishing a Console Connection Requirements To establish a console connection with the switch. Power on the terminal.Alteon OS 21. (For more information. 3. Connect the terminal to the Console port using the serial cable. 2. October 2003 . you will need the following: „ An ASCII terminal or a computer running terminal emulation software set to the parameters shown in the table below: Table 1-1 Console Configuration Parameters Parameter Baud Rate Data Bits Parity Stop Bits Flow Control Value 9600 8 None 1 None „ A standard serial cable with a male DB9 connector (see your switch hardware installation guide for specifics). 20 „ Chapter 1: The Command Line Interface 315393-E. To establish the connection. Procedure 1. You will next be required to enter a password for access to the switch. see “Setting Passwords” on page 40). press <Enter> a few times on your terminal.

The port must be manually configured with the proper IP address. you can access the CLI using a Telnet connection. Telnet access provides the same options for user access and administrator access as those available through the console port.0 Command Reference Establishing a Telnet Connection A Telnet connection offers the convenience of accessing the switch from any workstation connected to the network. Chapter 1: The Command Line Interface 315393-E. from a BOOTP server on your network Manually. the Alteon OS software is set up to request its IP address from a BOOTP server. BOOTP is not supported. you need to have a device with Telnet software located on the same network as the switch. If you have a BOOTP server on your network. followed by the switch IP address: telnet <IP address> You will then be prompted to enter a password as explained on page 22. The MAC address can also be found in the System Information menu (see “System Information” on page 53). add the MAC address of the switch to the BOOTP configuration file located on the BOOTP server. when you configure the switch IP address (see “Setup Part 1: Basic System Configuration” on page 29). The switch must have an IP address. To establish a Telnet connection with the switch. Running Telnet Once the IP parameters on the Alteon Application Switch are configured. Using a BOOTP Server By default. To configure the switch for Telnet access. The switch can get its IP address in one of two ways: „ „ Dynamically. October 2003 „ 21 .Alteon OS 21. NOTE – If connecting to the management port. The MAC address can be found on a small white label on the back panel of the switch. run the Telnet program on your workstation and issue the Telnet command.

As a secure alternative to using Telnet to manage switch configuration. followed by the switch IP address: >> # ssh <switch IP address> 22 „ Chapter 1: The Command Line Interface 315393-E. run the SSH program on your workstation by issuing the SSH command. October 2003 .2. Thus. Radius The following SSH clients have been tested: „ „ „ SSH 1.0.X.27 for Linux (freeware) SecureCRT 3. this method does not provide a secure connection.Alteon OS 21.0.XX.2 and SecureCRT 3. The SSH (Secure Shell) protocol enables you to securely log into another computer over a network to execute commands remotely. To establish an SSH connection with the switch. „ „ „ „ Server Host Authentication: Client RSA-authenticates the switch in the beginning of every connection. a SSH/SCP client will not be able to login if the switch is doing key generation at that time or if another client has just logged in before this client. Key Exchange: RSA Encryption: 3DES-CBC. SSH clients of other versions (especially Version 2) will not be supported. SSH ensures that all data sent over the network is encrypted and secure. DES User Authentication: Local password authentication. you can access the command line interface using an SSH connection.3 (Van Dyke Technologies. Running SSH Once the IP parameters are configured and the SSH service is turned on the Alteon Application Switch. Inc.2.5-1. The supported SSH encryption and authentication methods are listed below.) F-Secure SSH 1.5 and supports SSH-1. Similarly.23 and SSH 1. The switch can do only one session of key/cipher generation at a time.1 for Windows (Data Fellows) NOTE – The Alteon OS implementation of SSH is based on SSH version 1.0 Command Reference Establishing an SSH Connection Although a remote network administrator can manage the configuration of an Alteon Application Switch via Telnet. the system will fail to do the key generation if a SSH/SCP client is logging in at that time.

These changes will be lost when the switch is rebooted/reset. Operators have access to the switch management features used for daily switch operations. seven levels or classes of user access have been implemented on the Alteon Application Switch. Once you are connected to the switch via local console. Users may display information that has no security or privacy implications. Conceptually. Operators can only effect temporary changes on the Alteon Application Switch. Chapter 1: The Command Line Interface 315393-E. The default user names/password for each access level are listed in the following table.0 Command Reference or. Accessing the Switch To enable better switch management and user accountability. use the following command: >> # ssh -1 ace <switch IP address> You will then be prompted to enter your user name and password. they must be aware of the interactions between temporary and permanent changes. For more information. and screens increase as needed to perform various switch management tasks. Web management functions. Administrators are the only ones that may make permanent changes to the switch configuration—changes that are persistent across a reboot/reset of the switch. Because any changes an operator makes are undone by a reset of the switch. „ „ Access to switch functions is controlled through the use of unique surnames and passwords. see “Setting Passwords” on page 40. Levels of access to CLI. October 2003 „ 23 . you are prompted to enter a password. operators cannot severely impact switch operation. NOTE – It is recommended that you change default switch passwords after initial configuration and as regularly as required under your network security policies.Alteon OS 21. if SecurID authentication is required. Telnet. access classes are defined as follows: „ User interaction with the switch is completely passive—nothing can be changed on the Alteon Application Switch. such as switch statistics and current operational state information. Administrators can access switch functions to configure and troubleshoot problems on the Alteon Application Switch. or SSH. Because administrators can also make temporary (operator-level) changes as well.

All user levels below “admin” will by default be initially disabled (empty password) until they are enabled by the “admin” user. the Operator can reset ports or the entire switch. In addition to being able to view all switch information and statistics. He or she can view all switch status information and statistics. with the exception of not being able to configure filters or bandwidth management.0 Command Reference Table 1-2 User Access Levels User Account User Description and Tasks Performed The User has no direct responsibility for switch management. the Layer 4 Administrator can configure all parameters on the Server Load Balancing menus. 24 „ Chapter 1: The Command Line Interface 315393-E. Password user SLB Operator The SLB Operator manages Web servers and other Internet ser. including the ability to change both the user and administrator passwords. In addition to SLB Operator functions. The Layer 4 Operator manages traffic on the lines leading to the l4oper shared Internet services. This user currently has the same access level as the SLB operator. information. October 2003 . the SLB Administrator can configure parameters on the Server Load Balancing menus. to provide access to operational commands for operators managing traffic on the line leading to the shared Internet services. This prevents inadvertently leaving the switch open to unauthorized users. The Layer 4 Administrator configures and manages traffic on the lines leading to the shared Internet services. The superuser Administrator has complete access to all menus. The Operator manages all functions of the switch. slbadmin Layer 4 Operator Operator SLB Administrator Layer 4 Administrator l4admin Administrator admin NOTE – With the exception of the “admin” user.Alteon OS 21. including filters and bandwidth management. In addition to oper SLB Operator functions. In addition to SLB Administrator functions. The SLB Administrator configures and manages Web servers and other Internet services and their loads. and the access level is reserved for future use. but cannot make any configuration changes to the switch. access to each user level can be disabled by setting the password to an empty value.slboper vices and their loads. and configuration commands on the Alteon Application Switch. the SLB Operator can enable/disable servers using the Server Load Balancing operation menu.

The following table shows the Main Menu with administrator privileges. For information on changing this parameter. some menu options will not be available. [Main Menu] info stats cfg oper boot maint diff apply save revert exit - Information Menu Statistics Menu Configuration Menu Operations Command Menu Boot Options Menu Maintenance Menu Show pending config changes [global command] Apply pending config changes [global command] Save updated config to FLASH [global command] Revert pending or applied changes [global command] Exit [global command. Command Line History and Editing For a description of global commands. which can be set from 1 to 60 minutes.Alteon OS 21. If the switch is still set to its factory default configuration. see “Menu Basics” on page 45. If the switch has already been configured. This function is controlled by the idle timeout parameter.” Idle Timeout By default. the system will ask whether you wish to run Setup (see Chapter 2. always available] NOTE – If you are accessing a user account or Layer 4 administrator account. see “System Configuration” on page 179. “First-Time Configuration”). a utility designed to help you through the first-time configuration process. shortcuts. October 2003 „ 25 . you are given complete access to the switch.0 Command Reference CLI Versus Setup Once the administrator password is verified. and command line editing functions. Chapter 1: The Command Line Interface 315393-E. the Main Menu of the CLI is displayed instead. the switch will disconnect your console or Telnet session after five minutes of inactivity.

October 2003 .Alteon OS 21.0 Command Reference 26 „ Chapter 1: The Command Line Interface 315393-E.

Using the Setup Utility Whenever you log in as the system administrator under the factory default configuration. October 2003 . NOTE – If you are configuring a 2000-SSL Series Switch. and negotiation mode (as appropriate) † Whether to use VLAN tagging or not (as appropriate) 27 315393-E. you are asked whether you wish to run the Setup utility.CHAPTER 2 First-Time Configuration To help with the initial process of configuring your switch. you can use the Switch Setup Utility in the Alteon Application Switch 2000-SSL Series Quick Setup Guide (part number 215102-A) instead for setting up the Switch and the SSL Processor. duplex. the Alteon OS software includes a Setup utility. flow control. The Setup utility prompts you step-by-step to enter all the necessary information for basic configuration of the switch. Setup can also be activated manually from the command line interface any time after login. Information Needed For Setup Setup requests the following information: „ Basic system information † Date & time † Whether to use BOOTP or not † Whether to use Spanning Tree Protocol or not † Management port configuration „ Optional configuration for each port † Speed. Then return to this guide for configuration and management information on your Switch. This chapter describes how to use the Setup utility and how to change system passwords.

Connect to the switch console. If the factory default configuration is detected. Enter admin as the default administrator password. and gateway IP address for each IP static route † Whether IP forwarding is enabled or not † Whether the RIP supply is enabled or not Starting Setup When You Log In The Setup prompt appears automatically whenever you login as the system administrator under the factory default settings. 1. the system prompts: Connected to Alteon Application Switch 2424 18:44:05 Wed Jan 1.0 Command Reference „ Optional configuration for each VLAN † Name of VLAN † Which ports are included in the VLAN „ Optional configuration of IP parameters † IP address. and VLAN for each IP interface † IP addresses for up to four default gateways † Destination. or n to bypass the Setup facility. 28 Enter y to begin the initial configuration of the switch. the system configuration has probably been changed from the factory default settings. the login prompt will appear as shown below. To ease the configuration of the switch. „ Chapter 2: First-Time Configuration 315393-E. see “Selecting a Configuration Block” on page 359. 3. and broadcast address. subnet mask.Alteon OS 21. or if the administrator Main Menu appears instead. Enter Password: 2. Would you like to run "Set Up" to configure the switch? [y/n]: NOTE – If the default admin login is unsuccessful. subnet mask. After connecting. October 2003 . 2003 The switch is booted with factory default configuration. If you are certain that you need to return the switch to its factory default settings. a "Set Up" facility which will prompt you with those configuration items that are essential to the operation of the switch is provided.

BOOTP. Restarting Setup You can restart the Setup utility manually at any time by entering the following command at the administrator prompt: # /cfg/setup Setup Part 1: Basic System Configuration When Setup is started. When you abort Setup. the system will prompt: Would you like to run from top again? [y/n] Enter n to abort Setup. Otherwise enter n. Next. To keep the current year.Alteon OS 21. Chapter 2: First-Time Configuration 315393-E.0 Application Guide. you can configure them later using the configuration menus. Spanning Tree. or y to restart the Setup program at the beginning. the system prompts: "Set Up" will walk you through the configuration of System Date and Time. see the 21. the Setup utility prompts you to input basic system information. press <Enter>. [type Ctrl-C to abort "Set Up"] -----------------------------------------------------------Will you be configuring VLANs? [y/n] 1. 2. Enter y if you will be configuring VLANs.0 Command Reference Stopping and Restarting Setup Manually Stopping Setup To abort the Setup utility. Management port. October 2003 „ 29 . VLANs. Port Speed/Mode. For more information on configuring VLANs. press <Ctrl-C> during any Setup question. Enter the year of the current date at the prompt: System Date: Enter year [2003]: Enter the last two digits of the year as a number from 00 to 99. If you decide not to configure VLANs during this session. “00” is considered 2000. and IP interfaces. or by restarting the Setup facility.

Enter the minute of the current time at the prompt: Enter minutes [55]: Enter the minute as a number from 00 to 59. October 2003 . To keep the current minute. 7. To keep the current second. press <Enter>. 30 „ Chapter 2: First-Time Configuration 315393-E. Enter the seconds of the current time at the prompt: Enter seconds [37]: Enter the seconds as a number from 00 to 59.0 Command Reference 3. 2003. 5. Enter the hour of the current system time at the prompt: System Time: Enter hour in 24-hour format [18]: Enter the hour as a number from 00 to 23. Enter the day of the current date at the prompt: Enter day [3]: Enter the date as a number from 1 to 31. press <Enter>. To keep the current month. Enter the month of the current system date at the prompt: System Date: Enter month [1]: Enter the month as a number from 1 to 12. press <Enter>.Alteon OS 21. To keep the current hour. The system displays the date and time settings: System clock set to 18:55:36 Wed Jan 1. press <Enter>. press <Enter>. To keep the current day. 6. 4.

or skip port configuration at the prompt: Port Config: Enter port number: (1-28) If you wish to change settings for individual ports. 1. press <Enter> without specifying any port and go to “Setup Part 3: VLANs” on page 33. you will be prompted for IP address. If desired. set up the management port: Management Port Config: Configure management port? [y/n] y If you answer y to configure the management port. subnet mask. Enter d to disable the use of BOOTP. Chapter 2: First-Time Configuration 315393-E. 2. default gateway. enter the number of the port you wish to configure. Turn Spanning Tree Protocol on or off at the prompt: Spanning Tree: Current Spanning Tree setting: ON Turn Spanning Tree OFF? [y/n] Enter y to turn off Spanning Tree. When configuring port options for other switches.Alteon OS 21. or enter n to leave Spanning Tree on. 9. Select the port to configure.0 Command Reference 8. some of the prompts and options may be different. and other management port options. October 2003 „ 31 . a BOOTP server can supply the switch with IP parameters so that you do not have to enter them manually. before the system will prompt for IP parameters. BOOTP must be disabled however. press <Enter>. To skip port configuration. Enable or disable the use of BOOTP at the prompt: BootP Option: Current BOOTP usage: Enter new BOOTP usage [d/e]: disabled If available on your network. Setup Part 2: Port Configuration NOTE – The port configuration options shown in these steps are for the Alteon OS 2424. or enter e to enable the use of BOOTP. To keep the current setting. broadcast address.

configure Ethernet/Fast Ethernet port flow control. press <Enter>. To keep the current setting. 5. the system prompts: Port Auto Negotiation: Current Port 1 autonegotiation: Enter new value ["on"/"off"]: on Enter on to enable autonegotiation. or any to have the switch auto-negotiate. or enter any to have the switch auto-sense the port speed. configure Ethernet/Fast Ethernet port duplex mode. 32 „ Chapter 2: First-Time Configuration 315393-E. To keep the current setting. the system prompts: Port Mode: Current port 1 mode setting: any Enter new speed ["full"/"half"/"any"] Enter full for full-duplex. If you selected a port that has an Ethernet/Fast Ethernet connector. 6. half for half-duplex. tx for transmit flow control. If appropriate. 4. If you selected a port that has an Ethernet/Fast Ethernet connector. or press <Enter> to keep the current setting. the system prompts: Port Flow Control: Current Port 1 flow control setting: both Enter new value ["rx"/"tx"/"both"/"none"]: Enter rx to enable receive flow control. press <Enter>.0 Command Reference 3. configure Ethernet/Fast Ethernet port speed. If appropriate. both to enable both. If appropriate. the system prompts: Fast Link Configuration: Port Speed: Current Port 1 speed setting: 10/100 Enter new speed ["10"/"100"/"any"]: Enter the port speed from the options available. or none to turn flow control off for the port. configure Ethernet/Fast Ethernet port autonegotiation mode. press <Enter>. October 2003 .Alteon OS 21. If you selected a port that has an Ethernet/Fast Ethernet connector. If you selected a port that has an Ethernet/Fast Ethernet connector. If appropriate. off to disable it. To keep the current setting.

repeat the steps in this section. Setup Part 3: VLANs If you chose to skip VLANs configuration back in Part 1. 8. the system prompts: Gig Link Configuration: Port Flow Control: Current Port 1 flow control setting: both Enter new value ["rx"/"tx"/"both"/"none"]: Enter rx to enable receive flow control. If you selected a port that has a Gigabit Ethernet connector. the system prompts: Port Auto Negotiation: Current Port 1 autonegotiation: Enter new value ["on"/"off"]: on Enter on to enable port autonegotiation. enable or disable VLAN tagging for the port.0 Command Reference 7. To keep the current setting. configure Gigabit Ethernet port autonegotiation mode. tx for transmit flow control. If you have selected to configure VLANs back in Part 1. off to disable it. 10. skip to “Setup Part 4: IP Configuration” on page 35. or none to turn flow control off for the port. If appropriate. press <Enter>. The system prompts you to configure the next port: Enter port number: (1 to 28) When you are through configuring ports. configure Gigabit Ethernet port flow parameters. October 2003 „ 33 . or press <Enter> to keep the current setting. To keep the current setting. If you selected a port that has a Gigabit Ethernet connector. If appropriate. the system prompts: Port VLAN tagging config (tagged port can be a member of multiple VLANs) Current TAG flag: disabled Enter new TAG status [d/e]: Enter d to disable VLAN tagging for the port or enter e to enable VLAN tagging for the port. press <Enter>. 9. Otherwise. both to enable both.Alteon OS 21. press <Enter> without specifying any port. Chapter 2: First-Time Configuration 315393-E. If configuring VLANs.

Enter the VLAN port numbers. When you are finished adding ports to this VLAN. The system prompts you to define the first port in the VLAN: Define ports in VLAN: Current VLAN 2: empty Enter port numbers one per line. press <Enter> without typing a VLAN number and go to “Setup Part 4: IP Configuration” on page 35. When all VLANs have been configured. Repeat this until all ports for the VLAN being configured are entered. press <Enter>. NULL at end: Type the first port number to add to the current VLAN and press <Enter>. 3. 2. without quotes: Entering a new VLAN name is optional. press <Enter> without specifying any port. The system prompts you to configure the next VLAN: VLAN Config: Enter VLAN number from 2 to 4090. NULL at end: Repeat the steps in this section until all VLANs have been configured. 4. Select the VLAN to configure. or skip VLAN configuration at the prompt: VLAN Config: Enter VLAN number from 2 to 4090. October 2003 . type the port number and press <Enter> to move to the next line.0 Command Reference 1. enter the number of the VLAN you wish to configure. Pending new VLAN name: "VLAN 2" Enter new VLAN name.Alteon OS 21. To use the pending new VLAN name. Enter the new VLAN name at the prompt: VLAN is newly created. 34 „ Chapter 2: First-Time Configuration 315393-E. NULL at end: If you wish to change settings for individual VLANs. The right angle prompt appears: > For each additional port in the VLAN. To skip VLAN configuration. press <Enter> without specifying any VLAN.

0 Command Reference Setup Part 4: IP Configuration If BOOTP was enabled back in Part 1. enter the IP subnet mask in dotted decimal notation: Current subnet mask: Enter new subnet mask: 0. No two IP interfaces can be on the same IP subnet. Up to 256 IP interfaces can be configured on the Alteon Application Switch. 2. The IP address assigned to each IP interface provides the switch with an IP presence on your network. press <Enter>. or skip interface configuration at the prompt: IP Config: IP interfaces: Enter interface number: (1-256) If you wish to configure individual IP interfaces. October 2003 „ 35 .0. Select the IP interface to configure.0. Chapter 2: First-Time Configuration 315393-E. and for routing between subnets and VLANs (if used). press <Enter> without typing an interface number and go to “Default Gateways” on page 36.0 To keep the current setting. At the prompt.0. To skip IP interface configuration.0 To keep the current setting. 1.0. press <Enter>. the system prompts for IP parameters. if you disabled BOOTP. The interfaces can be used for connecting to the switch for remote configuration. For the specified IP interface. skip to Setup Part 5: Final Steps. IP Interfaces IP interfaces are used for defining subnets to which the switch belongs. enter the IP address in dotted decimal notation: Current IP address: Enter new IP address: 0. Otherwise.Alteon OS 21. enter the number of the IP interface you wish to configure. 3.

36 „ Chapter 2: First-Time Configuration 315393-E. press <Enter> without typing a gateway number and go to “IP Routing” on page 37. specify a VLAN for the interface.Alteon OS 21. press <Enter>. select a default gateway for configuration. enter y to enable the IP interface. If configuring VLANs.0. enter the broadcast IP address in dotted decimal notation: Current broadcast address: Enter new broadcast address: 0. press <Enter> without specifying any interface number. October 2003 . This prompt appears if you selected to configure VLANs back in Part 1: Current VLAN: Enter new VLAN: 1 Enter the number for the VLAN to which the interface belongs. At the prompt. At the prompt. At the prompt. 6. or n to leave it disabled: Enable IP interface? [y/n] 7. Default Gateways 1.0.0 Command Reference 4. To skip default gateway configuration.0 To keep the current setting. 5. When all interfaces have been configured. The system prompts you to configure another interface: Enter interface number: (1-256) Repeat the steps in this section until all IP interfaces have been configured. or skip default gateway configuration: IP default gateways: Enter default gateway number: (1-259) Enter the number for the default gateway to be configured. or press <Enter> without specifying a VLAN number to accept the current setting.

IP Routing When IP interfaces are configured for the various subnets attached to your switch. enter n and proceed to Step 2. October 2003 „ 37 . enter the IP address for the selected default gateway: Current IP address: Enter new IP address: 0. enable or disable forwarding for IP Routing: Enable IP forwarding? [y/n] Enter y to enable IP forwarding. At the prompt. 2. To disable IP forwarding. When all default gateways have been configured. press <Enter> without specifying any number. At the prompt. or press <Enter> without specifying an address to accept the current setting.0 Command Reference 2. enter y to enable the default gateway. press <Enter>. enable or disable the RIP supply: Enable RIP supply? [y/n] Chapter 2: First-Time Configuration 315393-E.0. The system prompts you to configure another default gateway: Enter default gateway number: (1-4) Repeat the steps in this section until all default gateways have been configured. This eliminates the need to bounce inter-subnet communication off an external router device. At the prompt.0. where subnets may not have a direct presence on the Alteon Application Switch.Alteon OS 21. 3. Routing on more complex networks.To keep the current setting. can be accomplished through configuring static routes or by letting the switch learn routes dynamically. This part of the Setup program prompts you to configure the various routing parameters. At the prompt. or n to leave it disabled: Enable default gateway? [y/n] 4. IP routing between them can be performed entirely within the switch. 1.0 Enter the IP address in dotted decimal notation.

When prompted. it is recommended that you change the default passwords as shown in “Setting Passwords” on page 40. Enter n to return to the Apply the changes? prompt. Enter n to continue without saving the changes. or n to continue without applying.0 Command Reference Setup Part 5: Final Steps 1. 4. decide whether to make the changes permanent: Save changes to flash? [y/n] Enter y to save the changes to flash. or n to continue. the system prompts whether to abort them: Abort all changes? [y/n] Enter y to discard the changes. decide whether to restart Setup or continue: Would you like to run from top again? [y/n] Enter y to restart the Setup utility from the beginning. Changes are normally applied. 5. When prompted. Next. 3. Enter n to continue without reviewing the changes.Alteon OS 21. NOTE – After initial configuration is complete. At the prompt. decide whether to apply the changes at the prompt: Apply the changes? [y/n] Enter y to apply the changes. Changes are normally saved at this point. October 2003 . 38 „ Chapter 2: First-Time Configuration 315393-E. 2. We recommend that you review the changes. If you do not apply or save the changes. decide whether you wish to review the configuration changes: Review the changes made? [y/n] Enter y to review the changes made during this session of the Setup utility.

>> # /cfg/sys/access/tnet ena 2. >> System# apply >> System# save Optional Setup for Telnet Support NOTE – This step is optional. Otherwise.Alteon OS 21. 1. Chapter 2: First-Time Configuration 315393-E. such as Alteon EMS. When RIP is enabled. Otherwise apply and save after “Optional Setup for Telnet Support” on page 39. they are public and private respectively. >> # /cfg/sys/ssnmp/rcomm|wcomm 3. Enable SNMP and select one of the options. enter y to enable the RIP supply. enter n to disable it. Enable telnet.0 Command Reference Optional Setup for SNMP Support NOTE – This step is optional. >> System# apply >> System# save If your network uses Routing Interface Protocol (RIP). Set SNMP read or write community string. >> # /cfg/sys/access/snmp dis|read|write 2. Apply and save SNMP and /or telnet configuration(s). RIP listen is set by default. Perform this procedure only if you are planning on connecting to the switch through any telnet application. 1. By default. October 2003 „ 39 . Apply and save configuration if you are not configuring the switch with Telnet support. Perform this procedure only if you are planning on using SNMPbased tools.

2. From the Main Menu.Restore current configuration from tftp server 40 „ Chapter 2: First-Time Configuration 315393-E. NOTE – If you forget your administrator password. and configuration commands. October 2003 .Dump current configuration to script file ptcfg . use the following command to access the Configuration Menu: Main# /cfg The Configuration Menu is displayed. To change the default password. follow this procedure: 1.Port Menu pmirr .Alteon OS 21.Layer 2 Menu l3 . including the ability to change both the user and administrator passwords.Backup current configuration to tftp server gtcfg . Passwords cannot be modified from the user command mode.0 Command Reference Setting Passwords It is recommended that you change the user and administrator passwords after initial configuration and as regularly as required under your network security policies.System-wide Parameter Menu port . [Configuration Menu] sys . call your technical support representative for help using the password fix-up mode.Server Load Balancing (Layer 4-7) Menu security . To change both the user password and the administrator password.Security Menu setup . Connect to the switch and log in using the admin password. you must login using the administrator password.Bandwidth Management Menu l2 .Step by step configuration set up dump . Changing the Default Administrator Password The administrator has complete access to all menus. information. The default password for the administrator account is admin.Layer 3 Menu slb .Port Mirroring Menu bwm .

validation required. Enter current administrator password: NOTE – If you forget your administrator password.0 Command Reference 3. use the following command to select the System Menu: >> Configuration# sys The System Menu is displayed.. call your technical support representative for help using the password fix-up mode.Alteon OS 21. From the System menu.. October 2003 „ 41 . System# user/admpw 6. [System Menu] syslog mmgmt sshd radius ntp sonmp ssnmp health access date time idle notice bannr smtp hprompt bootp cur - Syslog Menu Management Port Menu SSH Server Menu RADIUS Authentication Menu NTP Server Menu SONMP Menu System SNMP Menu System Health Check Menu System Access Menu Set system date Set system time Set timeout for idle CLI sessions Set login notice Set login banner Set SMTP host Enable/disable display hostname (sysName) in CLI prompt Enable/disable use of BOOTP Display current system-wide parameters 4. Enter the current administrator password at the prompt: Changing ADMINISTRATOR password. Select the administrator password. use the following path to select the User menu: System# access/user 5. Chapter 2: First-Time Configuration 315393-E. From the Configuration Menu.

Alteon OS 21. Connect to the switch and log in using the admin password. as shown in the following procedure. From the Configuration Menu. 2. use the following command to select the System Menu: >> Configuration# sys 4. October 2003 . Enter the new administrator password. but you can’t make configuration changes. use the following command to access the Configuration Menu: Main# cfg 3. The default password for the user account is user. you can view switch information and statistics. Select the user password. System# access/user/usrpw 42 „ Chapter 2: First-Time Configuration 315393-E. Only the administrator has the ability to change passwords. This password cannot be changed from the user account. again. 1. Through a user account. at the prompt: Re-enter new administrator password: 9.0 Command Reference 7. From the Main Menu. Apply and save your change by entering the following commands: System# apply System# save Changing the Default User Password The user login has limited control of the switch. Enter the new administrator password at the prompt: Enter new administrator password: 8.

you can view all switch information and statistics. Enter the current administrator password at the prompt. The default password for the Layer 4 administrator account is l4admin. Enter the new user password. To change any switch password.. Select the Layer 4 administrator password: System# l4apw Chapter 2: First-Time Configuration 315393-E. 2. Apply and save your changes: System# apply System# save Changing the Default Layer 4 Administrator Password The Layer 4 administrator has limited control of the switch. Only the administrator can change the user password. Passwords cannot be modified from the Layer 4 administrator account or the user account. Changing USER password. October 2003 „ 43 . you must login using the administrator password. use the following path to access the user command: Main# /cfg/sys/access/user 3. again. validation required. at the prompt: Re-enter new user password: 8. but can configure changes only on the Server Load Balancing menus.. From the Main Menu. To change the default password. Enter the new user password at the prompt: Enter new user password: 7. Enter current administrator password: 6. Connect to the switch and log in using the administrator account. follow this procedure: 1. Entering the administrator password confirms your authority.Alteon OS 21. Through a Layer 4 administrator account.0 Command Reference 5.

at the prompt: Re-enter new L4 administrator password: 7. October 2003 .. Enter current administrator password: NOTE – If you forget your administrator password..Alteon OS 21. again. Enter the new administrator password.0 Command Reference 4. 5. Enter the new Layer 4 administrator password at the prompt: Enter new L4 administrator password: 6. validation required. Apply and save your change by entering the following commands: System# apply System# save 44 „ Chapter 2: First-Time Configuration 315393-E. call your technical support representative for help using the password fix-up mode. Enter the current administrator password (not the Layer 4 administrator password) at the prompt: Changing L4 ADMINISTRATOR password.

the various commands have been logically grouped into a series of menus and sub-menus. October 2003 . the administrator can use the CLI for performing all levels of switch configuration. always available] 45 315393-E. In addition. NOTE – The ssl option is only visible on the Alteon Application Switch 2000-SSL Series. To make the CLI easy to use. This chapter describes the Main Menu commands. The Main Menu The Main Menu appears after a successful connection and login. and provides a list of commands and shortcuts that are commonly available from all the menus within the CLI. Below each menu is a prompt where you can enter any command appropriate to the current menu.CHAPTER 3 Menu Basics The Alteon Application Switch’s Command Line Interface (CLI) is used for viewing switch information and statistics. Each menu displays a list of commands and/or sub-menus that are available. along with a summary of what each command will do. The following table shows the Main Menu for the administrator login. [Main Menu] info stats cfg oper boot maint diff apply save revert exit - Information Menu Statistics Menu Configuration Menu Operations Command Menu Boot Options Menu Maintenance Menu Show pending config changes [global command] Apply pending config changes [global command] Save updated config to FLASH [global command] Revert pending or applied changes [global command] Exit [global command. Some features are not available under the user login.

and to clear entries in the forwarding database and the ARP and routing tables. October 2003 . „ Operations Command Menu Operations-level commands are used for making immediate and temporary changes to switch configuration. and more. It includes sub-menus for configuring every aspect of the switch. It is also used for activating or deactivating optional software packages. and enabling or disabling Server Load Balancing functions. TCP. DNS. enabling you to generate a dump of the critical state information in the switch. „ Maintenance Menu This menu is used for debugging purposes. and for resetting the switch when necessary. This menu is used for bringing ports temporarily in and out of service. and Layer 4 statistics. Changes to configuration are not active until explicitly applied.0 Command Reference Menu Summary „ Information Menu Provides sub-menus for displaying information about the current status of the switch: from basic system settings to VLANs. VRRP. SNMP. IF. UDP. 46 „ Chapter 3: Menu Basics 315393-E. Changes can be saved to non-volatile memory. „ Configuration Menu This menu is available only from an administrator login. Layer 4 settings. performing port mirroring. „ Boot Options Menu This menu is used for upgrading switch software. „ Statistics Menu Provides sub-menus for displaying switch performance statistics.Alteon OS 21. IP. Included are port. routing. selecting configuration blocks. ICMP. ARP.

If placed at the beginning of a command. Use this command to restore configuration parameters set since last “apply” command. navigating through menus. You will see the following screen: Global Commands: [can be issued from any menu] help up print lines verbose exit diff apply save ping traceroute telnet pushd popd pwd quit revert history The following are used to navigate the menu structure: . Remove pending configuration changes between “apply” commands.. and for applying and saving configuration changes. These commands are useful for obtaining online help. Exit from the command line interface and log out. Go up one level in the menu structure. a summary of the global commands is displayed. or command separator ! Execute command from history Table 3-1 Description of Global Commands Command ? command or help . For help on a specific command. October 2003 „ 47 . When used without a value.. go to the Main Menu.0 Command Reference Global Commands Some basic commands are recognized throughout the menu hierarchy. type help. Write configuration changes to non-volatile flash memory.Alteon OS 21. Show any pending configuration changes. the current setting is displayed. The default is 24 lines. lines diff apply save revert exit or quit Chapter 3: Menu Basics 315393-E. or up / Action Provides more information about a specific command on the current menu. Apply pending configuration changes. Otherwise. Print current menu . When used without the command parameter. Set the number of lines (n) that display on the screen at one time. this is used to separate multiple commands placed on the same line. Display the current menu. or print . Move up one menu level / Top menu if first.

When used without a value. The format is as follows: <hostname>|<IP address> [port] [-m|-mgmt|-d|-data]. Use this command to identify the route used for station-to-station connectivity across the network. This command brings up the history of the last 10 commands. By default. the current setting is displayed. By default. If the management port is used. the -d or -data option for network ports is in effect. This command is used to telnet out of the switch. October 2003 . 1 =Normal: Prompts and requested output are shown. maxhops (optional) is the maximum distance to trace (1-16 devices). specify the -m or -mgmt option. but no menus. As with ping.0 Command Reference Table 3-1 Description of Global Commands Command ping Action Use this command to verify station-to-station connectivity across the network. The format is as follows: traceroute <host name>| <IP address> [<max-hops (1-32)> [msec delay]] [-m|-mgmt|-d|-data] Where IP address is the hostname or IP address of the target station. specify the -m or -mgmt option. traceroute pwd verbose n telnet history 48 „ Chapter 3: Menu Basics 315393-E. the -d or -data option for network ports is in effect. 2 =Verbose: Everything is shown. Sets the level of information displayed on the screen: 0 =Quiet: Nothing appears except errors—not even prompts. The format is as follows: ping <host name>|<IP address> [tries (1-32)> [msec delay]] [-m| -mgmt|-d|-data] Where IP address is the hostname or IP address of the device. Where IP address is the hostname or IP address of the device. the DNS parameters must be configured if specifying hostnames. the -d or -data option for network ports is in effect. By default. Display the command path used to reach the current menu. If the management port is used. If the management port is used. specify the -m or -mgmt option. The DNS parameters must be configured if specifying hostnames (see “Domain Name System Configuration Menu” on page 258). and delay (optional) is the number of milliseconds for wait for the response. tries (optional) is the number of attempts (1-32).Alteon OS 21. msec delay (optional) is the number of milliseconds between attempts.

This can be used multiple times to work backward through the last 10 commands. Redraw the screen.0 Command Reference Command Line History and Editing Using the command line interface.) Recall the previous command from the history list. October 2003 „ 49 . <Ctrl-n> <Ctrl-a> <Ctrl-e> <Ctrl-b> <Ctrl-f> <Backspace> <Ctrl-d> <Ctrl-k> <Ctrl-l> <Ctrl-u> Other keys Chapter 3: Menu Basics 315393-E. This can be used multiple times to work forward through the last 10 commands. Clear the entire line. The recalled command can be entered as is.) Recall the next command from the history list. (Also the up arrow key. (Also the Delete key. Kill (erase) all characters from the cursor position to the end of the command line. (Also the left arrow key. (Also the down arrow key. you can retrieve and modify previously entered commands with just a few keystrokes.) Move the cursor forward one position to the right. The following options are available globally at the command line: Table 3-2 Command Line History and Editing Options Option history !! !n <Ctrl-p> Description Display a numbered list of the last 10 previously entered commands.) Move the cursor back one position to the left. or edited using the options below. Delete one character at the cursor position. Repeat the nth command shown on the history list. (Also the right arrow key. or edited using the options below. Move cursor to the end of the command line.Alteon OS 21. Repeat the last entered command. Insert new characters at the cursor position. The recalled command can be entered as is.) Erase one character to the left of the cursor position. Move the cursor to the beginning of command line.

Alteon OS 21. For example. October 2003 .0 Command Reference Command Line Interface Shortcuts Command Stacking As a shortcut. waiting to be entered. Entering additional letters will further refine the list of commands or options displayed. that command will be supplied on the command line. If the <Tab> key is pressed without any input on the command line. You can connect as many commands as required to access the menu option that you want. the currently active menu will be displayed. the CLI will display all commands or options in that menu that begin with that letter. you can type multiple commands on a single line. separated by forward slashes (/). 50 „ Chapter 3: Menu Basics 315393-E. the keyboard shortcut to access the Spanning Tree Port Configuration Menu from the Main# prompt is as follows: Main# cfg/l2/stp/port Command Abbreviation Most commands can be abbreviated by entering the first characters which distinguish the command from the others in the same menu or sub-menu. the command shown above could also be entered as follows: Main# c/l2/st/p Tab Completion By entering the first letter of a command at any menu prompt and hitting <Tab>. For example. If only one command fits the input text when <Tab> is pressed.

see page 53. October 2003 . l2 Displays the Layer 2 Information Menu. For details.Show enabled software features dump . Table 4-1 Information Menu Options (/info) Command Syntax and Usage sys Displays system menu information. For details.Layer 2 Information Menu l3 . /info Information Menu [Information Menu] sys . This chapter discusses how to use the command line interface to display switch infor- mation.Show link status port . 51 315393-E.Layer 4-7 Information Menu link .System Information Menu l2 .CHAPTER 4 The Information Menu You can view configuration information for the switch in both the user and administrator command modes. To view menu options. with pointers to where detailed information can be found. see page 59.Show port information bwm .Layer 3 Information Menu slb .Show Security status swkey . see page 66.Show Bandwidth Management information security .Dump all information The information provided by each menu option is briefly described in Table 4-1 on page 51. l3 Displays the Layer 3 information menu.

10/100. For details see page 93. If you want to capture dump data to a file.0 Command Reference Table 4-1 Information Menu Options (/info) Command Syntax and Usage slb Displays the Layer 4 Information Menu. including: „ „ „ „ „ bwm Port number Whether the port uses VLAN Tagging or not Port VLAN ID (PVID) Port name VLAN membership For details. see page 93. link Displays configuration information about each port. see page 90. see page 82. or 1000) Duplex mode (half. To view a sample. To view menu options. full. see page 92. set your communication software on your workstation to capture session data prior to issuing the dump commands. 100. or auto) Link status (up or down) For details. dump Dumps all switch information available from the Information Menu (10K or more. port Displays port status information. depending on your configuration). October 2003 . For details. or auto) Flow control for transmit and receive (no. see page 92. including: „ „ „ „ „ Port number Port speed (10. Displays bandwidth management information.Alteon OS 21. 52 „ Chapter 4: The Information Menu 315393-E. swkey Displays a list of all the optional software packages which have been activated or installed on your switch. yes. security Displays current UDP blast settings and the security status of the port. For details. see page 91.

log Displays last 30 syslog messages. See page 56 for detailed information. October 2003 „ 53 .0 Command Reference /info/sys System Information Menu [System Menu] general log mgmt sonmp dump Show Show Show Show Dump general system information last 30 syslog messages Management Port information SONMP topology table information all system information Table 4-2 Information System Menu Options Command Syntax and Usage general Displays general system information including: „ „ „ „ „ „ „ System information like time. Switch model name and number How long the switch has been up Time of last boot MAC address of the switch management processor IP address of IP interface #1 Hardware order number and part numbers of the Mainboard Hardware. mgmt Displays Management port information.Alteon OS 21. day. sonmp Displays SONMP topology table information. and Fast Ethernet Board Hardware „ Software image file and version number „ Configuration name „ Log-in banner. See page 56 for detailed information. and date. if one is configured See page 54 for a sample output. See page 55 for a sample output and detailed information. Management Processor Board Hardware. Chapter 4: The Information Menu 315393-E. See page 58 for a sample output. dump Displays all system information.

Information about fan failures will also be displayed if one or more fans are not functioning. 2003 (reset from console) MAC address: 00:09:97:5e:4c:00 IP (If 1) address: 1.Alteon OS 21.1 Hardware Order No: EB1412011 Mainboard Hardware: Part No: P316017-A Rev: 03 Management Processor Board Hardware: Part No: P314080-A Rev: 02 Fast Ethernet Board Hardware: Part No: P314091-A Rev: 03 Software Version 21.1. 2003 Alteon Application Switch 2424 Switch is up 0 days.0 Command Reference /info/sys/general General System Information System Information at 17:29:51 Mon Aug 25.0. NOTE – The display of temperature will come up only if the temperature of any of the sensors exceeds 60oC. active configuration. 0 hours. October 2003 .0. Last boot: 17:22:29 Mon Aug 25.1. 54 „ Chapter 4: The Information Menu 315393-E. 7 minutes and 21 seconds. The switch will shut down if the power supply overheats and the temperature gets to 100oC.0 (FLASH image2). There will be a warning from the software if any of the sensors exceeds this temperature threshold.

80.22.81.4 Nov 19 17:26:21 NOTICE mgmt: admin login from host 47.80.81.25.1 enabled Nov 19 14:21:27 ALERT ip: cannot contact default gateway 47.1 Nov 19 14:21:47 NOTICE ip: default gateway 47.81. included in text form as a prefix to the log message.80.0 Command Reference /info/sys/log Show Last 30 Syslog Messages Date Time Criticality level Message Nov 19 12:16:51 ALERT stp: STG 1.1 operational Nov 19 14:21:47 NOTICE ip: default gateway 47.80.27. One of eight different prefixes is used. „ „ „ „ „ „ „ „ EMERG: indicates the system is unusable ALERT: Indicates action should be taken immediately CRIT: Indicates critical conditions ERR: indicates error conditions or error operations WARNING: indicates warning conditions NOTICE: indicates a normal but significant condition INFO: indicates an information message DEBUG: indicates a debut-level message Chapter 4: The Information Menu 315393-E.22.1 enabled Nov 19 14:38:55 NOTICE mgmt: admin login from host 47.22.49 Nov 19 17:31:53 NOTICE mgmt: admin idle timeout from Telnet/SSH Each syslog message has a criticality level associated with it.27.27.22.4 Nov 19 16:39:43 NOTICE mgmt: admin idle timeout from Telnet/SSH Nov 19 16:39:59 NOTICE mgmt: admin login from host 47. October 2003 „ 55 .22. as shown below.1 Nov 19 13:52:23 NOTICE ip: default gateway 47.4 Nov 19 14:44:02 NOTICE mgmt: admin idle timeout from Telnet/SSH Nov 19 16:15:06 INFO mgmt: new configuration applied Nov 19 16:15:20 INFO mgmt: new configuration saved Nov 19 16:18:44 INFO mgmt: new configuration applied Nov 19 16:19:37 ERROR mgmt: Error: Apply not done Nov 19 16:19:57 INFO mgmt: new configuration applied Nov 19 16:34:35 NOTICE mgmt: admin login from host 47.81.1 operational Nov 19 13:52:23 NOTICE ip: default gateway 47.80.Alteon OS 21.4 Nov 19 16:54:13 NOTICE mgmt: admin idle timeout from Telnet/SSH Nov 19 17:20:37 NOTICE mgmt: admin login from host 47. new root bridge Nov 19 13:52:03 ALERT ip: cannot contact default gateway 47.81.80. depending on the condition that the administrator is being notified of.27.22.

a topology table is built like the one shown below.80. As the network devices exchange information.0 Command Reference /info/sys/mgmt Management Port Information Speed ----100 Duplex -----full Link ---up Interface information: 47.When SONMP is enabled. full.Alteon OS 21.1 47. and is necessary so that an Alteon switch can be discovered by the Nortel Networks Optivity Switch Manager.80. or auto) Link (Up or down) IP address of the Interface IP address of the gateway.88 255. 56 „ Chapter 4: The Information Menu 315393-E.255.20.20. SONMP protocol is enabled on Alteon Application Switches using the /cfg/sys/ sonmp on command.20.255 Use this command to display Management port information on an Alteon Application Switch including: „ „ „ „ „ Port speed (10/100) Duplex mode (half.255.0 Gateway information: 47. devices on the network exchange multicast packets namely: flatnet hellos and segment hellos. /info/sys/sonmp SONMP Information This command displays the SynOptics Network Management Protocol (SONMP) topology table. The IP address of the device is written into the hello packets. any. October 2003 .80.

not across a bridge) as the reporting agent. October 2003 „ 57 .23.22.23. The MAC address of the sender of the topology message.23.10. The chassis type of the device that sent the topology message.----. The “segment identifier” of the segment from which the remote agent send the topology message.1 263 IP address MAC address ----------------00:01:81:2e:a3:60 00:e0:16:7c:28:24 00:60:cf:81:54:28 00:60:cf:81:54:38 00:60:cf:43:a2:10 00:60:cf:46:d5:60 Local State Seg -----------------.Alteon OS 21.241 257 50.----Alteon2224 true topChanged Passport1200 true heartbeat Passport8610 true heartbeat Passport8610 true heartbeat AlteonAD4 true topChanged Alteon184 true topChanged Chassis Type Table 4-3 SONMP Information Parameters Description Parameter Slot Port Description Specifies the slot and port on which the topology message was received.247 0 47. „ new—sending agent is in new state.80. IP Address Seg ID Mac Address Chassis Type Local Seg State Chapter 4: The Information Menu 315393-E. This is the IP address of the sender of the topology message.23. the values are: „ topChanged—topology information has recently changed „ heartbeat—topology information unchanged.1 770 47.25 259 47.0 Command Reference Slot Port ----0 /0 1 /11 1 /11 1 /11 1 /11 1 /11 Seg Id --------------.--47. The current state of the sender of the topology message.80.10. Different devices may use different methods for representing the segment identifier.80.80. Indicates if the sender of the topology message is on the same Ethernet segment (i.80.25 260 47.e.

3. active configuration. DES PRIVACY 58 „ Chapter 4: The Information Menu 315393-E. 2003 Interface information: Gateway information: Engine ID = 80:00:07:50:03:00:09:97:16:5F:00 User Name -------------------------------adminmd5 adminsha Protocol -------------------------------HMAC_MD5. October 2003 .Alteon OS 21.31. 0 hours.31. DES PRIVACY HMAC_SHA. Last 30 syslog message information: Jun 2 13:07:59 NOTICE system: link up on port 3 Jun 2 13:07:59 NOTICE system: link up on port 7 Jun 2 13:08:00 NOTICE system: link up on port 9 Jun 2 13:08:25 NOTICE slb: real server 172.10 operational Management port information: Speed ----10/100 Duplex -----any Link ---disabled 2.23. Last boot: 13:07:55 Mon Jun 2.80.11 operational Jun 2 13:09:27 INFO mgmt: new configuration applied Jun 2 13:09:32 INFO mgmt: new configuration applied Jun 2 13:09:37 NOTICE slb: real server 172. 21 minutes and 36 seconds. 2003 (reset from Telnet) MAC address: 00:09:97:16:5f:00 IP (If 1) address: 47.0 Command Reference /info/sys/dump System Information Dump System Information at 13:29:31 Mon Jun Alteon Application Switch 2424 Switch is up 0 days.3.81 Hardware Order No: EB1412003 Mainboard Hardware: Part No: P314090-A Rev: 03 Management Processor Board Hardware: Part No: P314080-A Rev: 02 Fast Ethernet Board Hardware: Part No: P314091-A Rev: 03 Unreleased Software: FW_VERSION: #2 Mon Jun 2 11:37:20 PDT 2003 FW_VIEW: bshao_latest FW_CONTEXT: ALT-HW_CH_FE-6 / pass2 / 256m (FLASH image2).

see page 60.0 Command Reference /info/l2 Layer 2 Information Menu [Layer 2 Menu] fdb stg trunk vlan dump Forwarding Database Information Menu Show STG information Show Trunk Group information Show VLAN information Dump all layer 2 information Table 4-4 Layer 2 Information Menu Options Command Syntax and Usage fdb Displays the Forwarding Database Information Menu. Chapter 4: The Information Menu 315393-E. stg <STG index to display or carriage return for all STGs> In addition to seeing if Spanning Tree Protocol is enabled or disabled. For details. see page 62. you can view the state of each port in the various trunk groups. For details. you can view the following STP bridge information: „ „ „ „ „ „ „ „ Priority Hello interval Maximum age value Forwarding delay Aging time You can also see the following port-specific STP information: Port number and priority Cost State For details. October 2003 „ 59 . trunk When trunk groups are configured. dump Displays all Layer 2 information. see page 64.Alteon OS 21. see page 64. including: „ „ „ „ VLAN Number VLAN Name Status Port membership of the VLAN For details. vlan <VLAN number to display or carriage return to display all VLANs> Displays VLAN configuration information.

trunk <trunk group number> Displays all FDB entries on a single trunk. For example. 080020123456. You can also enter the MAC address using the format. see page 61. Table 4-5 Layer 2 FDB Information Menu Options (/info/l2/fdb) Command Syntax and Usage find <MAC address> [<VLAN>] Displays a single database entry by its MAC address. You are prompted to enter the MAC address of the device. xx:xx:xx:xx:xx:xx. xxxxxxxxxxxx. Enter the MAC address using the format.Show FDB entries on a single port trunk . The FDB also shows which other ports have seen frames destined for a particular MAC address. 08:00:20:12:34:56. For more information.Show FDB entries on a single trunk vlan .Alteon OS 21. [Forwarding Database Menu] find . 60 „ Chapter 4: The Information Menu 315393-E. port <port number.Show FDB entries on a single VLAN refpt . vlan <VLAN number (1-4090)> Displays all FDB entries on a single VLAN. October 2003 .0 Command Reference /info/l2/fdb Layer 2 FDB Information The forwarding database (FDB) contains information that maps the media access control (MAC) address of each known device to the switch port where the device address was learned. Each SP port supports up to 8K entries.Show a single FDB entry by MAC address port .Show all FDB entries NOTE – The master forwarding database supports up to 16K MAC address entries on the MP per switch.Show FDB entries referenced by a single SP dump . refpt <SP number (1-4)> Displays the FDB entries referenced by a single port. For example. 0 for "unknown"> Displays all FDB entries for a particular port. dump Displays all entries in the Forwarding Database.

although ports which reference the address as a destination will be listed under “Reference ports. Chapter 4: The Information Menu 315393-E. but has only been seen as a destination address. no outbound port is indicated.---. the MAC address is for a standard VRRP virtual router. If the state for the port is listed as unknown (UNK).Alteon OS 21. refer to “Forwarding Database Options” on page 363. If the state is listed as a virtual server (VIP). means that it has been learned by the switch. October 2003 „ 61 . the port field represents the trunk group number. When an address is in the unknown state.------------00:02:01:00:00:00 300 23 FWD 1 2 1 23 00:02:01:00:00:01 300 23 FWD 1 2 1 23 00:02:01:00:00:02 300 23 FWD 1 2 1 23 00:02:01:00:00:03 300 23 FWD 1 2 1 23 00:02:01:00:00:04 300 23 FWD 1 2 1 23 00:02:01:00:00:05 300 23 FWD 1 2 1 23 00:02:01:00:00:06 300 23 FWD 1 2 1 23 00:02:01:00:00:07 300 23 FWD 1 2 1 23 00:02:01:00:00:08 300 23 FWD 1 2 1 23 00:02:01:00:00:09 300 23 FWD 1 2 1 23 00:02:01:00:00:0a 300 23 FWD 1 2 1 23 00:02:01:00:00:0b 300 23 FWD 1 2 1 23 00:02:01:00:00:0c 300 23 FWD 1 2 1 23 An address that is in the forwarding (FWD) state. Clearing Entries from the Forwarding Database To delete a MAC address from the forwarding database (FDB) or to clear the entire FDB.0 Command Reference /info/l2/fdb/dump Show All FDB Information MAC address VLAN Port State Referenced SPs Referenced ports ----------------.----. When in the trunking (TRK) state.” If the state for the port is listed as an interface (IF).-------------.---. the MAC address has not yet been learned by the switch. the MAC address is for a virtual server router—a virtual router with the same IP address as a virtual server.

Spanning Tree Group 1: On Current Root: 8000 00:01:81:2e:a1:80 Parameters: Priority 32768 Cost ---0 0 0 0 5 0 0 0 0 0 0 Path-Cost 0 Hello 2 Port Hello MaxAge FwdDel Aging 0 2 20 15 300 FwdDel 15 Aging 300 MaxAge 20 Port ----1 2 3 4 5 6 7 8 9 10 11 Priority -------128 128 128 128 128 128 128 128 128 128 128 State ---------DISABLED DISABLED DISABLED DISABLED FORWARDING DISABLED DISABLED DISABLED DISABLED DISABLED DISABLED Designated Bridge Des Port ---------------------.------- 8000-00:01:81:2e:a1:80 32773 The switch software uses the IEEE 802. In addition to seeing if STP is enabled or disabled. you can view the following STP bridge information: „ „ „ „ „ Priority Hello interval Maximum age value Forwarding delay Aging time You can also see the following port-specific STP information: „ Port number and priority 62 „ Chapter 4: The Information Menu 315393-E.0 supports up to 16 multiple Spanning Tress or Spanning Tree Groups. Spanning Tree Protocol (STP) configures the network so that a switch uses only the most efficient path. October 2003 .0 Command Reference /info/l2/stg Layer 2 Spanning Tree Group Information When multiple paths exist on a network.Alteon OS 21.1d Spanning Tree Protocol (STP). NOTE – Alteon OS 21.

in seconds. the amount of time the bridge waits without receiving a packet from a station before removing the station from the Forwarding Database. The state field can be either BLOCKING. The port path cost parameter is used to help determine the designated port for a segment. the lower the path cost. Any bridge that is not the root bridge uses the root bridge hello value. LISTENING. or DISABLED. in seconds. LEARNING. The hello time parameter specifies. the faster the port. The port priority parameter helps determine which bridge port becomes the designated port. MaxAge FwdDel Aging priority (port) Cost State Chapter 4: The Information Menu 315393-E. in seconds. The state field shows the current state of the port. the port with the lowest port priority becomes the designated port for the segment. October 2003 „ 63 .0 Command Reference „ „ „ „ Cost State Designated Bridge Designated Port The following table describes the STP parameters. in seconds. how often the root bridge transmits a configuration bridge protocol data unit (BPDU). In a network topology that has multiple bridge ports connected to a single segment. The maximum age parameter specifies. The forward delay parameter specifies. the amount of time that a bridge port has to wait before it changes from learning state to forwarding state. Table 4-6 Spanning Tree Parameter Descriptions Parameter Priority (bridge) Hello Description The bridge priority parameter controls which bridge on the network will become the STP root bridge.Alteon OS 21. The aging time parameter specifies. FORWARDING. A setting of 0 indicates that the cost will be set to the appropriate default after the link speed has been auto negotiated. the maximum time the bridge waits without receiving a configuration bridge protocol data unit before it reconfigure the STP network. Generally speaking.

----.----Default VLAN ena n 256 ena 1-28 This information display includes all configured VLANs and all member ports that have an active link state. A trunk group is a group of ports that act together. Port membership is represented in slot/port format. multi-link connections between Alteon Application Switches or other trunk-capable devices. a physical port number four with bridge priority 32768 will be displayed as 32678+4=32772. you can view the state of each port in the various trunk groups. The designated port identifies a physical port.----. bw contract 256. larger virtual link. When trunk groups are configured. Trunk group 1. VLAN information includes: 64 „ Chapter 4: The Information Menu 315393-E. For example. port state: 1: STG 1 forwarding 2: STG 1 forwarding NOTE – If Spanning Tree Protocol on any port in the trunk group is set to forwarding. /info/l2/vlan VLAN Information VLAN ---1 Name Status Jumbo BWC Learn Ports -------------------------------. Designated port /info/l2/trunk Trunk Group Information Trunk groups can provide super-bandwidth. This bridge is displayed as character string starting with the bridge priority (1-65535) followed by a hyphen and six byte MAC address of that switch. the remaining ports in the trunk group will also be set to forwarding.-----.0 Command Reference Table 4-6 Spanning Tree Parameter Descriptions (Continued) Parameter Designated Bridge Description The designated bridge resides closest to the root bridge and is responsible for forwarding packets from LAN towards the root bridge.Alteon OS 21. October 2003 . This is a number that is the numerical sum of bridge priority and the actual physical port number.---. combining their bandwidth to create a single.

October 2003 „ 65 .0 Command Reference „ „ „ „ „ „ „ VLAN Number VLAN Name Status Jumbo Frames Bandwidth Contract if BWM is enabled Source MAC Address Learning Port membership of the VLAN /info/l2/dump Layer2 Dump Information Spanning Tree Group 1: On Current Root: 8000 00:01:81:2e:a1:80 Parameters: Priority 32768 Cost ---0 0 0 0 5 0 0 0 0 0 0 0 Path-Cost 0 MaxAge 20 Port Hello MaxAge FwdDel Aging 0 2 20 15 300 FwdDel 15 Aging 300 Hello 2 Port -----1 2 3 4 5 6 7 8 9 10 11 12 Priority -------128 128 128 128 128 128 128 128 128 128 128 128 State ---------DISABLED DISABLED DISABLED DISABLED FORWARDING DISABLED DISABLED DISABLED DISABLED DISABLED DISABLED DISABLED Designated Bridge Des Port ---------------------.Alteon OS 21.------ 8000-00:01:81:2e:a1:80 32773 Chapter 4: The Information Menu 315393-E.

and operational status. broadcast address. For details.0 Command Reference info/l3 Layer3 Information Menu [Layer 3 Menu] route arp bgp ospf ip vrrp dump IP Routing Information Menu ARP Information Menu BGP Information Menu OSPF Routing Information Menu Show IP information Show Virtual Router Redundancy Protocol information Dump all layer 3 information Table 4-7 Layer 3 Information Menu Options Command Syntax and Usage route Displays the IP Routing Menu. subnet mask. specifying the number of hops to the destination (1-15 hops. October 2003 . For details. ip Displays IP Information. IP information. see page 74. VLAN number. or 16 for infinite hops) „ The IP interface that the route uses For details. and gateway address Type of route Tag indicating origin of route Metric for RIP tagged routes. gateway number. lnet and lmask Port status 66 Chapter 4: The Information Menu 315393-E. see page 67. For details. arp Displays the Address Resolution Protocol (ARP) Information Menu. includes: „ „ „ „ „ IP interface information: Interface number. Default gateway information: Metric for selecting which configured gateway to use. ospf Displays OSPF routing information menu. To view menu options. see page 69. IP address.Alteon OS 21. see page 72. see page 79. and health status IP forwarding information: Enable status. the system displays the following for each configured or learned route: „ „ „ „ Route destination IP address. bgp Displays BGP Information Menu. Using the options of this menu. IP address. subnet mask.

17. 192. dump Displays all routes configured in the switch. /info/l3/route IP Routing Information [IP Routing Menu] find . tag fixed|static|addr|rip|ospf|bgp|broadcast|martian|vip Displays routes of a single tag. Chapter 4: The Information Menu 315393-E. For details.Alteon OS 21. see Table 4-10 on page 69. type indirect|direct|local|broadcast|martian|multicast Displays routes of a single type.0 Command Reference Table 4-7 Layer 3 Information Menu Options Command Syntax and Usage vrrp Displays the VRRP Information Menu. see page 68. you can display all or a portion of the IP routes currently held in the switch. 192. For a description of IP routing types.101)> Displays a single route by destination IP address. see page 79.17.4. For more information. For a description of IP routing types. if <interface number (1-256)> Displays routes on a single interface. gw <default gateway address (such as. see Table 4-9 on page 68.Show type .Show tag . Table 4-8 Route Information Menu Options (/info/route) Command Syntax and Usage find <IP address (such as.4.Show gw . October 2003 „ 67 .Show if .Show dump .44)> Displays routes to a single gateway.Show a single route by destination IP address routes to a single gateway routes of a single type routes of a single tag routes on a single interface all routes Using the commands listed below. dump Displays all Layer 3 information.

255.0.3.1 255.31.255 255.0.200 255.0.255.255.23.31.1 direct fixed 2 * 172.4.3.--------------.80.255.255.best Destination Mask Gateway Type Tag Metr If --------------.23.255.1 indirect static 1 * 47.255.255 255.0 martian martian * 172.0.0.0 172.255. October 2003 .0.22.0.255 broadcast broadcast Type Parameters The following table describes the Type parameters.0.255.31.22.Alteon OS 21.0 255.--------.31.255 broadcast broadcast 3 * 172.31.0 0.255.255 172.255 47.31.255.255. Packets will be delivered to a destination host or subnet attached to the switch.255 172.3.255 255. The destination belongs to a host or subnet which is filtered out.0 255.3.31.0 255.255 172.0.255 broadcast broadcast 1 * 127.255 broadcast broadcast 2 * 224.0.4.255.0 224.3.80.0 255.255.---.--------.81 local addr 1 * 47. Table 4-9 IP Routing Type Parameters (/info/l3/route/dump/type) Parameter indirect Description The next hop to the host or subnet destination will be forwarded through a router at the Gateway address.80. Indicates a broadcast route.255 255.4.4.255.3.80.80.0.200 direct vip * 172.81 255.255.31.255.0 47.80.31.254.0 47.0 0.31.* 0.255 255. Indicates a route to one of the switch’s IP interfaces.0 martian martian * 255.0.255.255.4.255.31.255.1 local addr 3 * 172.0.1 255. Indicates a multicast route.31.255.31. direct local broadcast martian multicast 68 „ Chapter 4: The Information Menu 315393-E.4.0.255 47. Packets to this destination are discarded.0 172.0.4.255.1 local addr 2 * 172.255.255.23.23.81 direct fixed 1 * 47.1 direct fixed 3 * 172.0.--------------.255 172.23.255 172.0 0.80.4.0 Command Reference /info/l3/route/dump Show All IP Route Information Status code: * .31.

In any IP communication. ARP resolves a physical address from an IP address.Show help on the fields of ARP entries addr . October 2003 „ 69 .Show ARP entries referenced by a single SP dump .Show all ARP entries help . Then the corresponding physical address is used to send a packet. The address belongs to one of the switch’s IP interfaces. [Address Resolution Protocol Menu] find .Show ARP entries on a single VLAN refpt . The address was learned by Open Shortest Path First (OSPF). the ARP cache is consulted to see if the IP address of the router is present in the ARP cache. addr rip ospf bgp broadcast martian vip /info/l3/Arp ARP Information Menu Address Resolution Protocol (ARP) is the TCP/IP protocol that resides within the Internet layer.Show ARP address list Chapter 4: The Information Menu 315393-E. ARP queries machines on the local network for their physical addresses.Show ARP entries on a single port vlan . The address is a static route which has been configured on the Alteon Application Switch. VIP routes are needed to advertise virtual server IP addresses via BGP. The address was learned via Border Gateway Protocol (BGP) Indicates a broadcast address. The address belongs to a filtered group. The address was learned by the Routing Information Protocol (RIP). ARP also maintains IP to physical address pairs in its cache memory.Show a single ARP entry by IP address port . Indicates a route destination that is a virtual server IP address.Alteon OS 21.0 Command Reference Tag Parameters The following table describes the Tag parameters. Table 4-10 IP Routing Tag Parameters (info/l3/route/tag) Parameter fixed static Description The address belongs to a host or subnet attached to the switch.

see page 71. etc.Indirect ARP (cache) entry for IP address reachable via indirect routes (static/dynamic) 4 .Permanent ARP entry (not obtained via ARP request).17. IP mask.Alteon OS 21. port <port number> Displays the ARP entries on a single port. dump Displays all ARP entries. IP interface. October 2003 . 70 „ Chapter 4: The Information Menu 315393-E. including: „ „ „ „ IP address and MAC address of each entry Address status flag (see below) The VLAN and port to which the address belongs The ports which have referenced the address (empty if no port has routed traffic to the IP address shown) For more information. For example: IP address: Flags: IP address of ARP entry J .0 Command Reference The ARP information includes IP address and MAC address of each entry. e.Layer 4 IP address (VIP) MAC address: VLAN: Port: Referenced SPs: MAC address of ARP entry VLAN of this ARP entry Physical port where this IP address owner is connected SPs on which this ARP entry is present addr Displays the ARP address list: IP address. refpt <SP number (1-4)> Displays the ARP entries referenced by a single port. and VLAN flags. R .101> Displays a single ARP entry by IP address. and port referencing information. 192. Table 4-11 ARP Information Menu Options (/info/l3/arp) Command Syntax and Usage find <IP address (such as.g. VLAN and port for the address. MAC address.ARP entry belongs to a Jumbo capable VLAN P . help Displays help on the ARP field entries. vlan <VLAN number (1-4090)> Displays the ARP entries on a single VLAN. address status flags (see Table 4-12 on page 71). VIP.4.

3.3.3. the designated port will be the normal ingress port.---------------1. the referenced port will be the designated port.81 P 00:09:97:16:5f:00 1 1-4 172.----------------. Permanent entry created for Layer 4 proxy IP address or virtual server IP address.10 P 4 00:09:97:16:5f:01 1-4 47. Unresolved ARP entry. The Flag field is interpreted as follows: Table 4-12 ARP Dump Flag Parameters Flag P P 4 Description Permanent entry created for switch IP interface.1 00:e0:16:7c:28:86 1 23 empty 47.31.31.11 00:b0:d0:98:d8:1b 1 3 empty Referenced ports are the ports that request the ARP entry.11.31.1 P 00:09:97:16:5f:00 1 1-4 172.1 P 4 00:09:97:16:5f:01 1-4 10. From the ARP entry (the referenced ports).80. The MAC address has not been learned.80.Alteon OS 21.10 00:b0:d0:98:d8:1b 1 3 empty 172. So the traffic coming into the referenced ports has the destination IP address. NOTE – If you have VMA turned on. October 2003 „ 71 . Indirect route entry. If you have VMA turned off.10. this traffic needs to be forwarded to the egress port (port 6 in the above example).---.10. R U Chapter 4: The Information Menu 315393-E.----.0 Command Reference /info/l3/arp/dump Show All ARP Entry Information IP address Flags MAC address VLAN Port Referenced SPs --------------.22.23.1.---.

255.31.255 255.255 255. summary Displays peer summary information such as AS.23.4.Alteon OS 21. state. For more information.255.4.----00:09:97:16:5f:01 00:09:97:16:5f:01 00:09:97:16:5f:0e D 00:09:97:16:5f:00 1 00:09:97:16:5f:00 1 00:09:97:16:5f:00 1 /info/l3/bgp BGP Information Menu Border Gateway Protocol (BGP) is an Internet protocol that enables routers on a network to share routing information with each other and advertise information about the segments of the IP address space they can access within their network with routers on external networks.3.10.255 255.255.80.255 MAC address VLAN Flags ----------------.255. [BGP Menu] peer . message received.1 172.11.31. See page 73 for a sample output.0 Command Reference /info/l3/arp/addr ARP Address List Information IP address --------------10. refer to BGP section in chapter: “The Configuration Menu” on page 175 and the Application Guide. See page 73 for a sample output.81 IP mask --------------255.255.1 47.255.31.Show all BGP peers summary .255 255.255.---.Show BGP routing table Table 4-13 BGP Peer Information Menu Options (/info/l3/bgp) Command Syntax and Usage peer Displays BGP peer information.10.255. dump Displays the BGP routing table. October 2003 .1 172.Show all BGP peers in summary dump .255.255.255 255.10 1.200 172. message sent.255. 72 „ Chapter 4: The Information Menu 315393-E.1.255. up/down. See page 74 for a sample output.

201.1.1 .0.15.178. October 2003 „ 73 . BGP Peer Information: 3: 2. Sent updates: 0 Keepalive: 0. MinAdvTime: 60 LastErrorCode: unknown(0). LastErrorSubcode: unspecified(0) Established state transitions: 0 /info/l3/bgp/summary BGP Summary information Following is an example of the information that /info/l3/bgp/summary provides.1. Old status: idle Total received packets: 0.0.142 2: 205.1.-------. version 0.-------. Holdtime: 0. Local AS: 0. Local router ID: 1. Sent updates: 0 Keepalive: 0. Old status: idle Total received packets: 0.148 Information: V AS MsgRcvd MsgSent Up/Down State . Holdtime: 0. LastErrorSubcode: unspecified(0) Established state transitions: 0 4: 2.4 .-------. TTL 1 Remote AS: 0.Alteon OS 21.178.1.---------4 142 113 121 00:00:28 established 0 148 0 0 never connect Chapter 4: The Information Menu 315393-E. Total sent packets: 0 Received updates: 0.0.201. Local router ID: 1. Total sent packets: 0 Received updates: 0.23.0. version 0. Link type: IBGP Remote router ID: 0.1.-------.0 Command Reference /info/l3/bgp/peer BGP Peer information Following is an example of the information that /info/l3/bgp/peer provides. Link type: IBGP Remote router ID: 0.0. TTL 1 Remote AS: 0.1. MinAdvTime: 60 LastErrorCode: unknown(0).5 BGP status: idle. Local AS: 0.0.5 BGP status: idle. BGP Peer Summary Peer --------------1: 205.

IGP. [OSPF Information Menu] general .178.Show neighbor(s) information dbase .0. which then distributes it to other areas as needed.incomplete Network Next Hop Metr LcPrf Wght --------------.--------------.Show details of virtual links nbr .0 205.Show OSPF routes 74 „ Chapter 4: The Information Menu 315393-E.Alteon OS 21.0 205.21.----*> 10. In any AS with multiple areas.147 1 256 *>i205. ? .Show area(s) information if .178.21.0. e .0.21.internal Origin codes: i .15.0. one area must be designated as area 0. OSPF is designed for routing traffic within a single IP domain called an Autonomous System (AS). known as the backbone.147 1 128 *> 205.0 205.Show summary address list nsumadd .178.0 0.17. /info/l3/ospf OSPF Information Menu Alteon OS supports the Open Shortest Path First (OSPF) routing protocol.147 1 256 Path -------------147 148 i 0 i 147 i 147 i 147 {35} ? The 13.EGP.---.0 Command Reference /info/l3/bgp/dump Dump BGP Information Following is an example of the information that /info/l3/bgp/dump provides. >> BGP# dump Status codes: * valid.21. The backbone acts as the central OSPF area. i . All other areas in the AS must be connected to the backbone.178.0.0.178. a loop detected. refer to the OSPF section in chapter “The Configuration Menu” on page 175 and your Alteon OS Application Guide.0.Show general information aindex . or. The Alteon OS implementation conforms to the OSPF version 2 specifications detailed in Internet RFC 1583. The AS can be divided into smaller logical units known as areas.Database Menu sumaddr . Areas inject summary routing information into the backbone.0. For more information on how to configure OSPF on the switch.----.Show NSSA summary address list routes . > best.147 1 128 13.Show interface(s) information virtual .178.0 is filtered out by rrmap. October 2003 .0 * 205.

B. See page 76 for a sample output. October 2003 „ 75 . if <interface number [1-256]> Displays interface information for a particular interface. dbase Displays OSPF database menu. it displays information for all the interfaces.Alteon OS 21. nbr <nbr router-id (A. see page 77. If no router ID is supplied.C. If no parameter is supplied. If no parameter is supplied. See page 76 for a sample output.D)> Displays the status of a neighbor with a particular router ID. sumaddr <area index (0-2)> Displays the list of summary ranges belonging to non-NSSA areas. virtual Displays information about all the configured virtual links. See page 78 for a sample output.0 Command Reference Table 4-14 OSPF Information Menu (/info/l3/ospf) Command Syntax and Usage general Displays general OSPF information. it displays the information about all the current neighbors. To view menu options. routes Displays OSPF routing table. Chapter 4: The Information Menu 315393-E. aindex <area index [0-2]> Displays area information for a particular area index. it displays area information for all the areas. nsumadd <area index (0-2)> Displays the list of summary ranges belonging to NSSA areas.

Transit delay 1 Neighbor count is 1 If Events 4.Alteon OS 21. of which 2 are >=INIT state.2 Timer intervals.0 Command Reference /info/l3/ospf/general OSPF General Information OSPF Version 2 Router ID: 47.247 Started at 95 and the process uptime is 352315 Area Border Router: yes.12.1. Dead 40.0. State DR.10.1.10. Authentication type none 76 „ Chapter 4: The Information Menu 315393-E. Area 0.10.12.0.14. Wait 1663.0 Authentication : none Import ASExtern : yes Number of times SPF ran : 8 Area Border Router count : 2 AS Boundary Router count : 0 LSA count : 5 LSA Checksum sum : 0x2237B Summary : noSummary /info/l3/ospf/if OSPF Interface Information Ip Address 10.10.10. Hello 10.80.1.10.1. AS Boundary Router: no LS types supported are 6 External LSA count 0 External LSA checksum sum 0x0 Number of interfaces in this router is 2 Number of virtual links in this router is 1 16 new lsa received and 34 lsa originated from this router Total number of entries in the LSDB 10 Database checksum sum 0x0 Total neighbors are 1.1. 2 are >=EXCH state.23. Retransmit 5.10. Ip Address 10. 2 are =FULL state Number of areas is 2.10.0. Priority 1 Designated Router (ID) 10.12. October 2003 . Ip Address 10.0. of which 3-transit 0-nssa Area Id : 0.1 Backup Designated Router (ID) 10. Poll interval 0. Admin Status UP Router ID 10.

D)>|<self> Displays ASBR summary LSAs.Alteon OS 21.1 displays ASBR summary LSAs having the link state ID 10.1 displays ASBR summary LSAs having the advertising router 20.B.1. c) asbrsum self displays the self advertised ASBR summary LSAs. for example: 20. dbsumm Displays the following information about the LS database in a table format: a) the number of LSAs of each type in each area.D)> Takes advertising router as a parameter.1.B.LS Database summary ext .D)>|<self> Displays the AS-external (type 5) LSAs with detailed information of each field of the LSAs.1. b) asbrsum link_state_id 10. The usage of this command is as follows: a) asbrsum adv-rtr 20.D)>|<link_state_id (A.1. Displays all the Link State Advertisements (LSAs) in the LS database that have the advertising router with the specified router ID.Router LS Database info self .ASBR Summary LS Database info dbsumm .1.Network-Summary LS Database info all . d) the total number of LSAs for all LSA types for all areas combined. ext <adv-rtr (A.1. Chapter 4: The Information Menu 315393-E.1.External LS Database info nw . October 2003 „ 77 .LS Database info for an Advertising Router asbrsum .NSSA External LS Database info rtr .C.B. No parameters are required.1.C.C. asbrsum <adv-rtr (A.1.D)>|<link_state_id (A. The usage of this command is the same as the usage of the command asbrsum.0 Command Reference /info/l3/ospf/dbase OSPF Database Information [OSPF Database Menu] advrtr .1. c) the total number of LSAs for each LSA type for all areas combined.Network LS Database info nssa .1.All Table 4-15 OSPF Database Information Menu (/info/l3/ospf/dbase) Command Syntax and Usage advrtr <router-id (A.1.C.C.Self Originated LS Database info summ . d) asbrsum with no parameters displays all the ASBR summary LSAs.B.1.B. b) the total number of LSAs for each area.

1.1. The usage of this command is the same as the usage of the command asbrsum.OSPF inter area.1.C.1.18.1.1.2 E2 172. No parameters are required. nssa <adv-rtr (A.D)>|<self> Displays the router (type 1) LSAs with detailed information of each field of the LSAs.18.2 E2 172.B.B. self Displays all the self-advertised LSAs.1. all Displays all the LSAs.B.10.1/32 via 30.network LS database.OSPF NSSA external type 2 E1 .D)>|<self> Displays the NSSA (type 7) LSAs with detailed information of each field of the LSAs.0 Command Reference Table 4-15 OSPF Database Information Menu (/info/l3/ospf/dbase) Command Syntax and Usage nw <adv-rtr (A.18.1.2 IA 150.B.0/24 via 200.0.D)>|<link_state_id (A.1.D)>|<self> Displays the network (type 2) LSAs with detailed information of each field of the LSA.2 IA 40.1.1.8/32 via 30.0/28 via 200.1.1.OSPF NSSA external type 1.1.2 78 „ Chapter 4: The Information Menu 315393-E.D)>|<link_state_id (A.1.2 IA 80.6/32 via 30.0/27 via 20.5/32 via 30.1.7/32 via 30. October 2003 .2 E2 172.2 E2 172.1.3/32 via 30.B. The usage of this command is the same as the usage of the command asbrsum.Alteon OS 21.1.2/32 via 30.1.0/24 via 20.1.1.1.1.C.OSPF external type 1.2 E2 172.2 IA 100.1.1. /info/l3/ospf/routes OSPF Information Route Codes Codes: IA .2 E2 172.2 E2 172.18.1.1.1.1.C.1.B. rtr <adv-rtr (A.C.2 E2 172. The usage of this command is the same as the usage of the command asbrsum.18.C.C.D)>|<self> Displays the network summary (type 3) LSAs with detailed information of each field of the LSAs.D)>|<link_state_id (A.1.1. N2 . The usage of this command is the same as the usage of the command asbrsum.2 IA 140.0/16 via 200.1.18.OSPF external type 2 IA 10.C.1.0/28 via 20.D)>|<link_state_id (A.1.1.1.1. N1 .B. summ <adv-rtr (A.1.18.1.1.1.1.1.1.4/32 via 30.18. E2 .1.B.C.

172.4.1 lsdb limit 0 /info/l3/vrrp VRRP Information Virtual Router Redundancy Protocol (VRRP) support on Alteon Application Switch provides redundancy between routers in a LAN. based on a number of priority criteria.1.0 47.255.1 255.254.255. dirbr disabled Current local networks: Current IP port settings: All other ports have forwarding ON Current network filter settings: none Current route map settings: Current OSPF settings: ON Default route none Router ID: 1. October 2003 „ 79 . 172.1.255.3.22.255. One of the virtual routers is then elected as the master.4. one of the backup virtual routers will assume routing authority and take control of the virtual router IP address.255.255.0 Command Reference /info/l3/ip IP Information Interface information: 1: 47.31.23.80.255.1 255. vlan any. vlan 1. up vlan 1. Refer to your Alteon OS Application Guide for more information on VRRP.31. If the master fails.255. up Default gateway information: metric strict 2: 47. Chapter 4: The Information Menu 315393-E.0 3: 172.0 2: 172.1.31.31.Alteon OS 21.3. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. and assumes control of the shared virtual router IP address. up vlan 1.80.80.23.81 255. up Current IP forwarding settings: ON.

if 28.2. Activity status † master identifies the elected master virtual router.210.200. prio 118.200. prio 102. prio 102. 14. „ Server status. 12. renter. server VRRP information: 1: vrid 2. renter.178. † backup identifies that the virtual router is in backup mode.200. renter. renter. A virtual router is the owner when the IP address of the virtual router and its IP interface are the same. 100: vrid 100. 254: vrid 254. „ „ Priority value.200.200. you can view the status of each virtual router using this command.18.21. prio 110. if if if if if if if if if if 10.200. 11. October 2003 . 28.1.8. 1.2.202. master. 27: vrid 27. These are known as virtual server routers: any virtual router whose IP address is the same as any configured virtual server IP address.200. master 28. renter. renter.100. renter.1.200.1. 205.1.18.8.21. prio 102. backup. 205.2. 205. prio 100.1. † renter identifies virtual routers which are not owned by this device. prio 100. server 172: vrid 172. backup 13. backup 172.1. prio 100. The server state identifies virtual routers that support Layer 4 services. master if 27. 27. 20: vrid 20. if 2: vrid 1.1. the virtual router with the highest priority becomes master. prio 110. server 1.0 Command Reference VRRP information: 10: vrid 10. 28.2. 27. 11: vrid 11. VRRP information includes: „ „ „ „ Virtual router number Virtual router ID and IP address Interface number Ownership status † owner identifies the preferred master virtual router.2. prio 102. prio 110. 12: vrid 12. server 255: vrid 255. master 11. master. master. prio 118.1. renter. renter. prio 118.Alteon OS 21.2.178. 80 „ Chapter 4: The Information Menu 315393-E.100. renter. renter. master 12. master 27.178. backup 20.200.100. if 172.2. 10. backup 1.204. 28: vrid 28. 172. renter. 13. prio 118.2. proxy When virtual routers are configured.1. 172. renter. renter. 20.18. if 3: vrid 3. master 14.1. 13: vrid 13.2. 14: vrid 14. master. During the election process. prio 110. renter.2.

172.255.31. 172. vlan 1.81 255. The use of virtual proxy routers enables redundant switches to share the same IP address.255.31.254.1 255.0 47. dirbr disabled Current local networks: Current IP port settings: All other ports have forwarding ON Current network filter settings: none Current route map settings: Chapter 4: The Information Menu 315393-E.22.255.31.0 Command Reference „ Proxy status.3.255. October 2003 „ 81 .23.255.0 2: 172.4.255.3.255.1 255.0 3: 172. up vlan 1.80. /info/l3/dump Layer3 Dump Information IP information: AS number 0 Interface information: 1: 47.80. vlan any. up Default gateway information: metric strict 2: 47.1.255.31.80. where the virtual router shares the same IP address as a proxy IP address. up vlan 1.23. up Current IP forwarding settings: ON.Alteon OS 21. The proxy state identifies virtual proxy routers.4. minimizing the number of unique IP addresses that must be configured.

physical switch port. the switch is aware of the services provided by each server and can direct user session traffic to an appropriate server.: [Server Load Balancing Information Menu] sess . virtual MAC address „ Virtual Port State: Virtual service or port.Alteon OS 21.Show real server information virt . Refer to your Alteon OS Application Guide for detailed information on this feature. and health check result. MAC address. IP address. it can become overutilized.Session Table Information Menu real . 82 „ Chapter 4: The Information Menu 315393-E. If one of these servers provides access to applications or data that is in high demand. real IP address.Decode the HEX value to get the VIP and RIP synatk . see page 84.Show Global SLB information idshash .Show port information gslb .Show IDS server selected by hash or minmisses metric bind . Placing this kind of strain on a server can decrease the performance of the entire network as user requests are rejected by the server and then resubmitted by the user stations. virt <virtual server number (1-1024)> „ Displays Virtual Server State: Virtual server number. VLAN. group backup server.Show filter information port . In an average network that employs multiple servers without server load balancing. With this software feature. server port mapping.Show real server selected by hash or minmisses metric cookie . real server group. real <real server number (1-1023)> Displays Real server number.Show virtual server information filt . based on a variety of load-balancing algorithms. each server usually specializes in providing one or two unique services.Show SYN attack detection information dump . To view menu options.Show all layer 4 information Table 4-16 Layer 4 Information Menu Options (/info/slb) Command Syntax and Usage sess Displays the Session Table Information Menu. layer where health check is performed. October 2003 .0 Command Reference /info/slb Layer 4 Information Menu Server Load Balancing (SLB) allows you to configure the Alteon Application Switch to balance user session traffic among a pool of available servers that provide shared services.

port <port number> Displays the physical port number. This feature requires dbind to be enabled. idshash <IP address 1> <IP address 2> Displays the Intrusion Detection System server selected by hash or minmisses metric. IP address.0 Command Reference Table 4-16 Layer 4 Information Menu Options (/info/slb) Command Syntax and Usage filt <filter ID (1-2048)>|list|allow|deny|redir|nat Displays the filter number. Chapter 4: The Information Menu 315393-E. October 2003 „ 83 . filter status. group backup server. every two seconds. gslb Displays the remote switch number. proxy IP address. destination port. dump Displays all Layer 4 information for the switch. IP subnet mask. IP address. see page 89. To identify whether or not the server is under SYN attack. synatk Displays SYN attack detection information. and client and/or server Layer 4 activity. a list of applied filters. and health status. bind <IP address> <mask> <group number> Displays the real server selected by hash or minmisses metric. real server port.Alteon OS 21. URL for health checks. the number of new half open sessions is examined within a set period of time. for example. cookie <16 bytes cookie value in hexadecimal format as 0XXXXXXXXXXXXXXXXX> Decodes the hexadecimal value to get the virtual server IP address and real server IP address. backup server. For details. and real server group. real server group. and status. health check layer.

Show all session entries on sp dump . flag <E|L|N|P|S|Rt|Ru|Ri|U|W> Displays all session entries with matching flag. dip <Destination IP address> Displays all session entries with the destination IP address. October 2003 . pport <proxy port> Displays all session entries with proxy port.Alteon OS 21. dport <Destination real port> Displays all session entries with destination port.Show all session entries help . cport <real port> Displays all session entries with source (client) port.Session entry description Table 4-17 Session Information Menu Options (/info/slb/sess) Command Syntax and Usage cip <IP address> Displays all session entries with client’s source IP address.Show all session entries with proxy port filter .Show all session entries with source port dip .Show all session entries with destination port pip .Show all session entries with real IP address sp .Show all session entries with matching filter flag . filter <filter ID (1-2048)> Displays all session entries with matching filter.Show all session entries with matching flag port .0 Command Reference /info/slb/sess Session Table Information [Session Table Information Menu] cip .Show all session entries with destination IP address dport . See “Session dump information in Alteon OS” on page 87 for a description of these options. pip <Proxy IP address> Displays all session entries with proxy IP address. 84 „ Chapter 4: The Information Menu 315393-E.Show all session entries with source IP address cport .Show all session entries with ingress port real .Show all session entries with proxy IP address pport .

1 to 13 associated with a session as identified in the above example.1 http -> 1.2. 2. are described in “Session dump information in Alteon OS” on page 87. help Displays the description of the session entry.3.1. Chapter 4: The Information Menu 315393-E.1.1.2. 01: 1. sp <port number (1-4)> Displays all session entries on switch processor.2 3567 3.0 Command Reference Table 4-17 Session Information Menu Options (/info/slb/sess) Command Syntax and Usage port <port number> Displays all session entries on the ingress port.Alteon OS 21. October 2003 „ 85 . real <IP address> Displays all session entries with real server IP address. dump Displays all session entries.1.3.1 http age 6 f:10 EUSPT c (1) (2) (3) (4) (5) (6) (7a) (7) (8) (9) (10) (11) (12) (13) Note: The fields.1 4586. Information similar to the following may appear in a session entry dump: 3.

October 2003 .2.2.1 rtsp -> 47.31.52.00: 237.13 21220 age 10 P Filtering LinkLB 2.123 160.81.16 2559.81.05: 172.09: 172.4.31.21.144.1.200 ftp ->172. real server IP and server port are not shown for persistent session.21.31.30 age 4 EPS C:3 The destination port.12.8. 205.24. 39.168.21.07: 10. 39.21.1 http -> 47.144.1 rtsp -> 47.1 http -> 47.1. 86 „ Chapter 4: The Information Menu 315393-E.0.12. 172.11 age 8 EP c:1 1. 172. 39.51 http -> 192.11 wcr age 4 f:12 E 3.215 80.12.16: 172.31.81.1 rtsp -> 47.Alteon OS 21. 39.01: 172.2.8.200 44687.2.2.81.21. 39.144. the destination port shows “rtsp” and server port shows “0” L7 WCR RTSP 3.01: 172. 39.13 urlwcr age 10 f:100 EU 3.4.19 4586.162.2.31.3.31.01: 172.09: 172.26 1706.1 21220 -> 47.3.215 4102.12.31.21.144.01: 172.168. 172.2.20 ftp-data age 10 E NAT 2.215 4098.4.19 1040.0 Command Reference Samples of Session Dumps for Different Applications L4 HTTP 3.2. The second session is RTSP UDP data connection.31.20.3.1.81.4.12.178.2. 172.20 ftp age 10 EU 1.84 http -> 192.13 0 age 10 P During client-server port negotiation.13 21220 age 10 P The first session is RTSP TCP control connection.1 21220 -> 47.31.01: 172.24.13 rtsp age 10 EU 3.19 6970.2.19 6970.19 6970.8.4.19 1040.21.144.79 http age 4 L4-L7 WCR HTTP 2.81.12.19 4586.14.200 0 172.0.2. 10.2.79 urlwcr age 6 f:123 E RTSP L4-L7 RTSP 3. 3.00: 172.12.21. 39.200 ftp-data ->172.4.01: 172.4.10 linklb age 8 f:10 E FTP 1.26 http NAT age 2 f:24 E Persistent session 3.21.10.21.2.81.2.01: 172.

3. No address is shown if the filter action is Allow.1 http -> 3.168.07: 1. This field identifies the destination IP address from the client’s TCP/UDP packet.1. this field contains the same as the destination IP address mentioned in field (5).1.1.3. No address is shown if the filter action is Allow.1 1040.1.0 Command Reference Session dump information in Alteon OS Field (1) SP number Description This field indicates the Switch Port number that created the session. This field shows the physical port through which the client traffic enters the switch. It will show ALLOW. 2. DENY or NAT instead.1. 2. This field identifies the destination port from client’s TCP/UDP packet.2. If the switch does not find a live server. 2. this field also shows the real server IP address. this field contains the IP address of the real server that the switch selects to forward client packet to. For example: 3. “DENY” or “NAT” instead.3.1 http-> 192. It will show “ALLOW”. If the switch does not find live server. This field contains the source IP address from the client’s IP packet. This field also shows the real server IP address for filtering. Deny or NAT.2. This field contains the real server IP address of the corresponding server that the switch selects to forward the client packet to.1 rtsp -> 2.2.Alteon OS 21.1.2.01: 1.1 http -> 3.3.2.2. this field is the same as destination IP address (5). October 2003 „ 87 .1 1706.2.1 21220 age 10 P For filtering.2. 2.4. for load balancing.1.01: 1.1 1040.10 linklb age 8 f:10 E (8) Real Server IP Address Chapter 4: The Information Menu 315393-E. Deny or NAT.2. This field contains the Proxy IP address substituted by the switch. (2) Ingress port (3) Source IP address (4) Source port (5) Destination IP address (6) Destination port (7a) Proxy IP address (7) Proxy Port This field identifies the TCP/UDP source port substituted by the switch.01: 1.1 6970. This field identifies the source port from the client’s TCP/UDP packet.1 http age 10 f:11 2.2.1 http age 10 3. For example: 3.1. For load balancing.

(7) and (8) cannot have persistent session. “linkslb” or “nonat”. this server port is obtained from the client-server negotiation. This field can be “urlwcr”. the session is freed. “N”: Indicates the session only translates the destination MAC when forwarding client traffic to the real server. “wcr”. “E”: Indicates the session is in use and will be aged out if no traffic is received within session timeout value.0 Command Reference Field (9) Server port Description This field is the same as the destination port (field 6) for load balancing except for the RTSP UDP session. “idslb”. 88 „ Chapter 4: The Information Menu 315393-E. If no packet is received within the value specified. Fields (6). October 2003 . This field indicates the session created by filtering code as a result of the IP header keys matching the filtering criteria. or Cookie Pbind. “Ru”: Indicates UDP rate limiting per client entry. “L”: Indicates the session is a link load balance session.Alteon OS 21. “S”: Indicates the session is a persistent session and the application is SSL session ID. (13) Persistent session user count This counter indicates the number of client sessions created to associate with this persistent session. This field is the filtering application port for filtering. “P”: Indicates the session is a persistent session and is not to be aged out. “Ri”: Indicates ICMP rate limiting per client entry. “U”: Indicates the session is L7 delay binding and switch is trying to open TCP connection to the real server. “Rt”: Indicates the session is TCP rate limiting per-client entry. For RTSP UDP session. “W”: Indicates the session only translates the destination MAC when forwarding layer 7 WCR traffic to the real server. It is for internal use only. (10) Age (11) Filter number (12) Flag This is the session timeout value.

up 210. vlan 1.20. up Port 1: 2: 3: 4: state: filt disabled.1.20. health 3. up exclusionary string matching: disabled 3: urltwo 4: urlthree Redirect filter state: Action redir dport http. filters: 200 filt disabled. dbind HTTP Application: urlslb real servers: 26: 20. vlan any 200: group 1. filters: 50 200 Chapter 4: The Information Menu 315393-E. 2 ms.20.200.1. vlan 1. up 20.2.101. up exclusionary string matching: disabled 1: any 2: urlone 27: 20. backup none.1. 00:03:47:07:a4:9e.2.102.20.Alteon OS 21. 00:01:02:71:9c:a6.1. vlan 1.2.20. filters: 80 idslb filt enabled. health 3.200. vlan 1.20.101. 00:60:cf:47:5c:1e virtual ports: http: rport http. group 88.102. health 3.20.20. backup none proxy enabled.1. radius snoop disabled real servers: 1: 210. October 2003 „ 89 . rport 3128. backup none. port 6.200. port 1.0 Command Reference /info/slb/dump Show All Layer 4 Information Real 1: 2: 26: 27: server state: 210.2.1.20. 3 ms. health 3. backup none. up 2: 210. filters: 200 idslb filt enabled. 00:01:02:c1:4b:48. 1 ms. health 3. up 20.20. port 7. backup none. 00:01:02:70:4d:4a. backup none. 2 ms. up Virtual server state: 1: 20. port 8.

100.Alteon OS 21. including: „ „ „ „ „ Port number Port speed (10. full. October 2003 . or 1000) Duplex mode (half. or auto) Flow control for transmit and receive (no. or auto) Link status (up or down) 90 „ Chapter 4: The Information Menu 315393-E. yes. any.0 Command Reference /info/link Link Status Information Port ---1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 Speed Duplex -----------10/100 any 10/100 any 10/100 any 10/100 any 100 full 10/100 any 10/100 any 10/100 any 10/100 any 10/100 any 10/100 any 10/100 any 10/100 any 10/100 any 100 full 10/100 any 10/100 any 10/100 any Flow Ctrl --TX-----RX-yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes yes Link -----down down down down up down down down down down down down down down up down down down Use this command to display link status information about each port on an Alteon Application Switch slot. 10/100.

Alteon OS 21.0 Command Reference /info/port Port Information Port ---1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 Tag --n n n n n n n n n n n n n n n n n n n n RMON ---e e e e e e e e e e e e e e e e e e e e PVID ---300 2 4000 4000 4000 4000 7 4000 4000 4000 11 300 300 14 15 16 17 18 19 20 BWC ----256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 256 NAME -------------ixia2-2 pc03p bps3 bps4 bps5 bps6 pc07f bps8 bps9 bps10 pc04u ixia2-4 ixia2-3 8600-1-14 8600-1-15 8600-1-16 8600-1-17 35k-1 35k-2 35k-3 VLAN(s) ------------------300 2 4000 4000 4000 4000 7 4000 4000 4000 11 300 300 14 15 16 17 18 19 20 Port information includes: „ „ „ „ „ „ Port number Whether the port uses VLAN tagging or not (y or n) Port VLAN ID (PVID) Port name VLAN membership Whether RMON is enabled or disabled on the port Chapter 4: The Information Menu 315393-E. October 2003 „ 91 .

receive higher priority versus non-critical traffic. /info/security Security Information This command brings up the information about the current security settings that includes: „ „ „ „ „ rate threshold for security logging whether the out-of-order IP fragment packets have the option of allow or deny on the filters the current IP addresses in the Access Control List (ACL) the current UDP blast protection settings the current port security settings 92 „ Chapter 4: The Information Menu 315393-E. You can see the following information on your switch when you execute this command: Current Bandwidth Management setting: ON Policy Enforcement:enabled BWM history will be mailed in 9 minute(s) to ’abhijitk@nortelnetworks. October 2003 .81. It allows companies to guarantee that critical business traffic.com’ at host ’47.138. BWM policies can be configured to set lower and upper bounds on the bandwidth allocation.Alteon OS 21.com’ at host ’47. such as e-commerce transactions. Traffic classification can be based on user or application information.138.0 Command Reference /info/bwm <contract number> Bandwidth Management Information Bandwidth Management (BWM) enables Web site managers to allocate a portion of the available bandwidth for specific users or applications.26’ BWM history will be mailed in 9 minute(s) to ’abhijitk@nortelnetworks.81.26’ Contract Policy wTOS Traffic Num Name Prec Hard Soft Resv oTOS uTOS State Shaping 1 filter_number01 64 1 100M 1M 500K 0D 0 E D 2 filter_number02 64 1 100M 1M 500K 0D 0 E D 3 filter_number03 64 1 100M 1M 500K 0D 0 E D 4 filter_number04 64 1 100M 1M 500K 0D 0 E D NOTE – The contract number is optional.

If you want to capture dump data to a file. This data is useful for tuning and debugging switch performance. set your communication software on your workstation to capture session data prior to issuing the dump commands.---------------. see “How to Get Help” on page 18. October 2003 „ 93 . For information on ordering optional software license keys.Alteon OS 21.---------------Current UDP blast protection settings: Port security state: /info/swkey Software Enabled Keys For optional Layer 4 switching software. /info/dump Information Dump Use the dump command to dump all switch information available from the Information Menu (10K or more. the information would be displayed as follows: Enabled Software features: Layer 4: GSLB Bandwidth Management Security Pack Software key information includes a list of all the optional software packages which have been activated or installed on your switch. Chapter 4: The Information Menu 315393-E.0 Command Reference Current security settings: seclog 128 fragment allow Current IP address ACL settings: Number Address Mask -------. depending on your configuration).

October 2003 .0 Command Reference 94 „ Chapter 4: The Information Menu 315393-E.Alteon OS 21.

Security Stats Menu snmp .MP-specific Stats Menu sp .SP-specific Stats Menu security .CHAPTER 5 The Statistics Menu You can view switch performance statistics in both the user and administrator command modes.Show SNMP stats mgmt .Layer 3 Stats Menu slb .Dump all stats 95 315393-E.Management Port Stats dump . /stats Statistics Menu [Statistics Menu] port .Layer 2 Stats Menu l3 . This chapter discusses how to use the command line interface to display switch statistics.Port Stats Menu l2 .Server Load Balancing (L4-7) Stats Menu bwm .Bandwidth Management Stats Menu mp . October 2003 .

96 „ Chapter 5: The Statistics Menu 315393-E. see page 127. To view menu options. bwm Displays the Bandwidth Management Menu.0 Command Reference Table 5-1 Statistics Menu Options (/stats) Command Syntax and Usage port <port number> Displays the Port Statistics Menu for the specified port. To view menu options. mgmt Displays interface statistics for the Management Port. Traffic statistics are included in SNMP Management Information Base (MIB) objects. set your communication software on your workstation to capture session data prior to issuing the dump command. See page 173 for sample output. see page 152. see page 158. security Displays Security Statistics Menu. snmp Displays SNMP Statistics. see page 174. see page 97. To view menu options. l3 Displays Layer3 Statistics Menu. To view menu options. See page 170 for a sample output and description of SNMP statistics. mp Displays the Management Processor Statistics Menu. If you want to capture dump data to a file. see page 162. October 2003 . see page 110. sp <SP number (1-4)> Displays Switch Processor-Specific Menu. To view menu options. see page 109. Use this command to gather data for tuning and debugging switch performance. slb Displays the Server Load Balancing (SLB) Menu. l2 Displays Layer 2 Statistics Menu. To view menu options. For details. To view menu options. Use this command to view information on how switch management processes and resources are currently being allocated. see page 164. dump Dumps all switch statistics. Use this command to display traffic statistics on a port-by-port basis. To view menu options.Alteon OS 21.

October 2003 „ 97 .Show interface ("if") stats ip .0 Command Reference /stats/port <port number> Port Statistics Menu This menu displays traffic statistics on a port-by-port basis.Clear all port stats Table 5-2 Port Statistics Menu Options (/stats/port) Command Syntax and Usage brg Displays bridging (“dot1”) statistics for the port. ip Displays IP statistics for the port.Alteon OS 21. if Displays interface statistics for the port. clear This command clears all the statistics on the port. Chapter 5: The Statistics Menu 315393-E. link Displays link statistics for the port. See page 104 for a sample output and the description of statistics.Show RMON stats clear . Traffic statistics include SNMP Management Information Base (MIB) objects. See page 102 for a sample output and the description of statistics. See page 106 for a sample output and the description of statistics. See page 105 for a sample output and the description of statistics. [Port Statistics Menu] brg . See page 99 for a sample output and the description of statistics.Show bridging ("dot1") stats ether . rmon Displays RMON statistics for the port.Show Ethernet ("dot3") stats if . ether Displays Ethernet (“dot1”) statistics for the port.Show link stats rmon .Show Internet Protocol ("IP") stats link . See page 98 for a sample output and the description of statistics.

Note that a frame transmitted on the interface corresponding to this port is only counted by this object if and only if it is for a protocol being processed by the local bridging function. Count of valid frames received which were discarded (that is. including bridge management frames. which have been or would have been learnt. It is incremented by both transparent and source route bridges. dot1PortOutFrames dot1PortInDiscards dot1TpLearnedEntry Discards dot1BasePortDelay ExceededDiscards dot1BasePortMtu ExceededDiscards dot1StpPortForward Transitions 98 „ Chapter 5: The Statistics Menu 315393-E. filtered) by the Forwarding Process. it indicates that the Forwarding Database is regularly becoming full (a condition which has unpleasant performance effects on the subnetwork). It is incremented by both transparent and source route bridges. but have been discarded due to a lack of space to store them in the Forwarding Database.Alteon OS 21. The number of frames that have been transmitted by this port to its segment. including bridge management frames. October 2003 . A frame received on the interface corresponding to this port is only counted by this object if and only if it is for a protocol being processed by the local bridging function. The total number of Forwarding Database entries. Bridging statistics for port 1: dot1PortInFrames: dot1PortOutFrames: dot1PortInDiscards: dot1TpLearnedEntryDiscards: dot1BasePortDelayExceededDiscards: dot1BasePortMtuExceededDiscards: dot1StpPortForwardTransitions: 63242584 63277826 0 0 NA NA 0 Table 5-3 Bridging Statistics of a Port (/stats/port/brg) Statistics dot1PortInFrames Description The number of frames that have been received by this port from its segment. If this counter has a significant value but is not presently increasing. If this counter is increasing.0 Command Reference /stats/port <port number>/brg Bridging Statistics This menu option enables you to display the bridging statistics of the selected port. it indicates that the problem has been occurring but is not persistent. The number of frames discarded by this port due to an excessive size. The number of frames discarded by this port due to excessive transit delay through the bridge. The number of times this port has transitioned from the Learning state to the Forwarding state.

Received frames for which multiple error conditions are obtained are. counted exclusively according to the error status presented to the LLC. The count represented by an instance of this object is incremented when the frameCheckError status is returned by the MAC service to the LLC (or other MAC user).3 Layer Management. Note: Coding errors detected by the physical layer for speeds above 10 Mb/s will cause the frame to fail FCS check. dot3StatsFCSErrors Chapter 5: The Statistics Menu 315393-E.0 Command Reference /stats/port <port number>/ether Ethernet Statistics This menu option enables you to display the ethernet statistics of the selected port Ethernet statistics for port 1: dot3StatsAlignmentErrors: dot3StatsFCSErrors: dot3StatsSingleCollisionFrames: dot3StatsMultipleCollisionFrames: dot3StatsSQETestErrors: dot3StatsDeferredTransmissions: dot3StatsLateCollisions: dot3StatsExcessiveCollisions: dot3StatsInternalMacTransmitErrors: dot3StatsCarrierSenseErrors: dot3StatsFrameTooLongs: dot3StatsInternalMacReceiveErrors: dot3CollFrequencies [1-15]: 0 0 0 0 NA 0 0 0 NA 0 0 0 NA Table 5-4 Ethernet Statistics for Port (/stats/port/ether) Statistics dot3StatsAlignment Errors Description A count of frames received on a particular interface that are not an integral number of octets in length and do not pass the Frame Check Sequence (FCS) check. counted exclusively according to the error status presented to the LLC. Received frames for which multiple error conditions are obtained are. according to the conventions of IEEE 802. A count of frames received on a particular interface that are an integral number of octets in length but do not pass the Frame Check Sequence (FCS) check. This count does not include frames received with frametoo-long or frame-too-short errors. October 2003 „ 99 . The count represented by an instance of this object is incremented when the alignmentError status is returned by the MAC service to the Logical Link Control (LLC) (or other MAC user).Alteon OS 21. according to the conventions of IEEE 802.3 Layer Management.

Alteon OS 21. A count of successfully transmitted frames on a particular interface for which transmission is inhibited by more than one collision. The count represented by an instance of this object does not include frames involved in collisions. A (late) collision included in a count represented by an instance of this object is also considered as a (generic) collision for purposes of other collision-related statistics. and is not counted by the corresponding instance of the dot3StatsMultipleCollisionFrame object. ifOutMulticastPkts.0 Command Reference Table 5-4 Ethernet Statistics for Port (/stats/port/ether) Statistics dot3StatsSingleCollisionFrames Description A count of successfully transmitted frames on a particular interface for which transmission is inhibited by exactly one collision. The SQE TEST ERROR is set in accordance with the rules for the verification of the SQE detection mechanism in the PLS Carrier Sense Function as described in IEEE Std.2. The number of times that a collision is detected on a particular interface later than one slotTime into the transmission of a packet. October 2003 . This counter does not increment when the interface is operating in fullduplex mode. This counter does not increment when the interface is operating in fullduplex mode. Five hundred and twelve bit-times corresponds to 51. or ifOutBroadcastPkts. dot3StatsMultipleCollisionFrames dot3StatsSQETestErrors dot3StatsDeferredTransmissions dot3StatsLateCollisions 100 „ Chapter 5: The Statistics Menu 315393-E. ifOutMulticastPkts. and is not counted by the corresponding instance of the dot3StatsSingleCollisionFrames object. section 7.2 microseconds on a 10 Mbit/s system.6. This counter does not increment when the interface is operating in fullduplex mode.31998 Edition.4. This counter does not increment when the interface is operating in fullduplex mode. A count of times that the SQE TEST ERROR message is generated by the PLS sub layer for a particular interface.802. A frame that is counted by an instance of this object is also counted by the corresponding instance of either the ifOutUcastPkts. A count of frames for which the first transmission attempt on a particular interface is delayed because the medium is busy. or ifOutBroadcastPkts. This counter does not increment when the interface is operating in fullduplex mode. A frame that is counted by an instance of this object is also counted by the corresponding instance of either the ifOutUcastPkts.

This counter does not increment when the interface is operating in fullduplex mode. dot3StatsInternalMacTransmitErrors dot3StatsCarrierSenseErrors dot3StatsFrameTooLongs dot3StatsInternalMacReceiveErrors Chapter 5: The Statistics Menu 315393-E. The count represented by an instance of this object is incremented at most once per transmission attempt. counted exclusively according to the error status presented to the LLC. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsFrameTooLongs object. the dot3StatsAlignmentErrors object. A count of frames received on a particular interface that exceed the maximum permitted frame size. according to the conventions of IEEE 802. A count of frames for which transmission on a particular interface fails due to an internal MAC sub layer transmit error. The number of times that the carrier sense condition was lost or never asserted when attempting to transmit a frame on a particular interface. or the dot3StatsCarrierSenseErrors object. A count of frames for which reception on a particular interface fails due to an internal MAC sub layer receive error. The precise meaning of the count represented by an instance of this object is implementation-specific.Alteon OS 21. The precise meaning of the count represented by an instance of this object is implementation-specific. Received frames for which multiple error conditions are obtained are. even if the carrier sense condition fluctuates during a transmission attempt.3 Layer Management. an instance of this object may represent a count of transmission errors on a particular interface that are not otherwise counted. the dot3StatsExcessiveCollisions object. This counter does not increment when the interface is operating in fullduplex mode. October 2003 „ 101 . In particular.0 Command Reference Table 5-4 Ethernet Statistics for Port (/stats/port/ether) Statistics dot3StatsExcessive Collisions Description A count of frames for which transmission on a particular interface fails due to excessive collisions. The count represented by an instance of this object is incremented when the frameTooLong status is returned by the MAC service to the LLC (or other MAC user). an instance of this object may represent a count of received errors on a particular interface that are not otherwise counted. In particular. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsLateCollisions object. or the dot3StatsFCSErrors object.

which were not addressed to a multicast or broadcast address at this sublayer. This does include the number of octets in valid MAC Control frames received on this interface.layer. delivered by this sub-layer to a higher sub. /stats/port <port number>/if Interface Statistics This menu option enables you to display the interface statistics of the selected port. The number of packets delivered by this sub-layer to a higher (sub) layer.0 Command Reference Table 5-4 Ethernet Statistics for Port (/stats/port/ether) Statistics dot3CollFrequencies Description A count of individual MAC frames for which the transmission (successful or otherwise) on a particular interface occurs after the frame has experienced exactly the number of collisions specified by the index. a frame which is transmitted after experiencing exactly 4 collisions would be indicated by incrementing only dot3CollFrequencies [4]. ifHCInUcastPkts ifHCInBroadcastPkts ifHCInMulticastPkts 102 „ Chapter 5: The Statistics Menu 315393-E. this includes both Group and Functional addresses. delivered by this sub-layer to a higher sub. October 2003 .layer. This counter does not increment when the interface is operating in fullduplex mode.Alteon OS 21. The number of packets. For a MAC layer protocol. Interface statistics for port 1: ifHCIn Counters Octets: 51697080313 UcastPkts: 65356399 BroadcastPkts: 0 MulticastPkts: 0 Discards: 0 Errors: 0 ifHCOut Counters 51721056808 65385714 6516 0 0 0 Table 5-5 Interface Statistics for Port (/stats/port/if) Statistics ifHCInOctets Description The number of octets in valid MAC frames received on the interface. For example. which were addressed to a broadcast address at this sub-layer. No other instance of dot3CollFrequencies would be incremented in this example. The number of packets. which were addressed to a multicast address at this sub-layer. including the MAC header and FCS.

dot3StatsInternalMacTransmitErrors and dot3StatsCarrierSenseErrors. dot3StatsInternalMacReceiveErrors and dot3StatsSymbolErrors. The number of octets transmitted in valid MAC frames on this interface. including the MAC header and FCS. including those that were discarded or not sent. The number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being transmitted. dot3StatsFCSErrors. and which were not addressed to a multicast or broadcast address at this sub-layer. ifHCInErrors ifHCOutOctets ifHCOutUcastPkts ifHCOutBroadcastPkts ifHCOutMulticastPkts ifHCOutDiscards ifHCOutErrors Chapter 5: The Statistics Menu 315393-E. The total number of packets that higher-level protocols requested to be transmitted. dot3StatsFrameTooLongs. this includes both Group and Functional addresses. and which were addressed to a broadcast address at this sublayer. dot3StatsExcessiveCollisions.Alteon OS 21. including those that were discarded or not sent. The sum for this interface of dot3statsAlignmentErrors. One possible reason for discarding such a packet could be to free up buffer space. One possible reason for discarding such a packet could be to free up buffer space. For a MAC layer protocol. The sum for this interface of: dot3statsSQETestErrors. October 2003 „ 103 . The total number of packets that higher-level protocols requested to be transmitted.0 Command Reference Table 5-5 Interface Statistics for Port (/stats/port/if) Statistics ifHCInDiscards Description The number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent their being delivered to a higher-layer protocol. The total number of packets that higher-level protocols requested to be transmitted. and which were addressed to a multicast address at this sublayer. This does not include the number of octets in valid MAC Control frames transmitted on this interface. including those that were discarded or not sent. dot3StatsLateCollisions.

including those received in error. The total number of input datagrams successfully delivered to IP userprotocols (including ICMP). The number of IP datagram for which an ICMP TTL exceeded message was sent.0 Command Reference /stats/port <port number>/ip Interface Protocol Statistics This menu option enables you to display the interface statistics of the selected port. October 2003 . In entities which do not act as IP Gateways. this counter includes datagrams discarded because the destination address was not a local address. as a result of which an attempt was made to find a route to forward them to that final destination.0.0. Class E). and the Source. IP statistics for port 1: ipInReceives: ipInAddrErrors: ipInUnknownProtos: ipInDelivers: ipTtlExceeds: ipLANDattacks: 0 0 0 0 0 0 ipForwDatagrams: ipInDiscards: 0 0 Table 5-6 Interface Protocol Statistics (/stats/port/ip) Statistics ipInReceives Description The total number of input datagrams received from interfaces.0) and addresses of unsupported Classes (for example. Note that this counter does not include any datagrams discarded while awaiting re-assembly.Alteon OS 21. For entities which are not IP Gateways and therefore do not forward datagrams. The number of input datagrams discarded because the IP address in their IP header’s destination field was not a valid address to be received at this entity (the switch). but which were discarded (for example. This count includes invalid addresses (for example. this counter will include only those packets which were Source-Routed via this entity (the switch). The number of input datagrams for which this entity (the switch) was not their final IP destination. for lack of buffer space). ipInAddrErrors ipForwDatagrams ipInUnknownProtos ipInDiscards ipInDelivers ipTtlExceeds 104 „ Chapter 5: The Statistics Menu 315393-E.Route option processing was successful. 0. The number of input IP datagrams for which no problems were encountered to prevent their continued processing. The number of locally-addressed datagrams received successfully but discarded because of an unknown or unsupported protocol.

October 2003 „ 105 .Alteon OS 21. Chapter 5: The Statistics Menu 315393-E. Link statistics for port 1: linkStateChange: 4 Table 5-7 Link Statistics (/stats/port/link) Statistics linkStateChange Description The total number of link state changes. /stats/port <port number>/link Link Statistics This menu enables you to display the link statistics of the selected port.0 Command Reference Table 5-6 Interface Protocol Statistics (/stats/port/ip) Statistics ipLANDattacks Description The number of packets that have the same source and destination IP address.

Alteon OS 21.0 Command Reference /stats/port <port number>/rmon RMON Statistics This menu option enables you to display the remote monitor statistics of the selected port. respectively. and the number of seconds in the interval is Interval. it is just the number of times this condition has been detected. If greater precision is desired. The total number of octets of data (including those in bad packets) received on the network (excluding framing bits but including FCS octets).4 . Note that this number is not necessarily the number of packets dropped. The differences in the sampled values are Pkts and Octets. RMON statistics for port 1: etherStatsDropEvents: etherStatsOctets: etherStatsPkts: etherStatsBroadcastPkts: etherStatsMulticastPkts: etherStatsCRCAlignErrors: etherStatsUndersizePkts: etherStatsOversizePkts: etherStatsFragments: etherStatsJabbers: etherStatsCollisions: etherStatsPkts64Octets: etherStatsPkts65to127Octets: etherStatsPkts128to255Octets: etherStatsPkts256to511Octets: etherStatsPkts64Octets: etherStatsPkts1024to1518Octets: 0 3727038769 69869242 0 0 0 0 0 0 0 0 102426 6050515 12293234 24586063 49171870 47539775 Table 5-8 Remote Monitor Statistics (/stats/port/rmon) Statistics etherStatsDrop Events Description The total number of events in which packets were dropped by the probe due to lack of resources. This object can be used as a reasonable estimate of utilization (which is the percent utilization of the ethernet segment). These values are used to calculate the utilization as follows: Pkts u 9.6 + 6. the etherStatsPkts and etherStatsOctets objects should be sampled before and after a common interval.

+ Octets u 0.8 .

October 2003 . etherStatsOctets 106 „ Chapter 5: The Statistics Menu 315393-E. Utilization = ------------------------------------------------------------------------------------Interval u 10 000 The result of this equation is the percent value of utilization.

2. but including FCS octets).1. This is because it counts both runts (which are normal occurrences due to collisions) and noise hits. Note that this number does not include packets directed to the broadcast address. broadcast packets. but including Frame Check Sequence (FCS) octets) of between 64 and 1518 octets. etherStatsBroadcastPkts etherStatsMulticastPkts etherStatsCRCAlign Errors etherStatsUndersizePkts etherStatsOversizePkts etherStatsFragments etherStatsJabbers Chapter 5: The Statistics Menu 315393-E.1. but including FCS octets) and were otherwise well formed.0 Command Reference Table 5-8 Remote Monitor Statistics (/stats/port/rmon) Statistics etherStatsPkts Description The total number of packets (including bad packets. but including FCS octets) and were otherwise well formed. The total number of packets received that were less than 64 octets long (excluding framing bits. October 2003 „ 107 .4 (10Base-2). Note that this does not include multicast packets. These documents define jabber as the condition where any packet exceeds 20 ms. The total number of good packets received that were directed to a multicast address. but had either a bad Frame Check Sequence (FCS) with an integral number of octets (FCS Error) or a bad FCS with a non-integral number of octets (Alignment Error). inclusive. Note that it is entirely normal for etherStatsFragments to increment. The total number of packets received that were less than 64 octets in length (excluding framing bits but including FCS octets) and had either a bad Frame Check Sequence (FCS) with an integral number of octets (FCS Error) or a bad FCS with a non-integral number of octets (Alignment Error). (A runt is a packet that is less than 64 bytes. Note that this definition of jabber is different than the definition in IEEE802.Alteon OS 21. The total number of packets received that were longer than 1518 octets (excluding framing bits.3.3 section 8. and had either a bad Frame Check Sequence (FCS) with an integral number of octets (FCS Error) or a bad FCS with a non-integral number of octets (Alignment Error).5 (10Base-5) and section 10.) The total number of packets received that were longer than 1518 octets (excluding framing bits. The allowed range to detect jabber is between 20 milliseconds and 150 milliseconds. and multicast packets) received. The total number of packets received that had a length (excluding framing bits. The total number of good packets received that were directed to the broadcast address.

2. The value returned will depend on the location of the RMON probe.4 (10Base-T) of IEEE standard 802. The total number of packets (including bad packets) received that were between 512 and 1023 octets in length (excluding framing bits but including FCS octets).3 (10Base-2) of IEEE standard 802.3.1. if three or more stations are transmitting simultaneously.3k) plus receiver collisions observed on any coax segments to which the repeater is connected.1. etherStatsPkts64Octets etherStatsPkts65to127Octets etherStatsPkts128to255Octets etherStatsPkts256to511Octets etherStatsPkts512to1023Octets etherStatsPkts1024to1518Octets 108 „ Chapter 5: The Statistics Menu 315393-E. Thus a probe placed on a repeater port could record more collisions than a probe connected to a station on the same segment would. Thus probes placed on a station and a repeater. October 2003 . The total number of packets (including bad packets) received that were between 128 and 255 octets in length (excluding framing bits but including Frame Check Sequence (FCS) octets).1.3 states that a station must detect a collision. A 10Base-T station can only detect collisions when it is transmitting. The total number of packets (including bad packets) received that were between 1024 and 1518 octets in length (excluding framing bits but including FCS octets). Probe location plays a much smaller role when considering 10Base-T.0 Command Reference Table 5-8 Remote Monitor Statistics (/stats/port/rmon) Statistics etherStatsCollisions Description The best estimate of the total number of collisions on this Ethernet segment. A repeater port must detect a collision when two or more stations are transmitting simultaneously.2. 14. The total number of packets (including bad packets) received that were between 65 and 127 octets in length (excluding framing bits but including FCS octets). in the receive mode. The total number of packets (including bad packets) received that were between 256 and 511 octets in length (excluding framing bits but including FCS octets).3 (10Base-5) and section 10.Alteon OS 21. should report the same number of collisions.3 defines a collision as the simultaneous presence of signals on the DO and RD circuits (transmitting and receiving at the same time). The total number of packets (including bad packets) received that were 64 octets in length (excluding framing bits but including Frame Check Sequence (FCS) octets). Note also that an RMON probe inside a repeater should ideally report collisions between the repeater and one or more other hosts (transmit collisions as defined by IEEE 802. Section 8.

Number of search failures in the Forwarding Database. finds. Current number of entries in the Forwarding Database.0 Command Reference /stats/l2 Layer 2 Statistics Menu [Layer 2 Statistics Menu] fdb . Number of unsuccessful searches made in the Forwarding Database. including the number of new entries.Show FDB stats /stats/l2/fdb FDB Statistics FDB statistics: creates: current: lookups: finds: find_or_c’s: 30503 83 511889 21801 36140 deletes: hiwat: lookup fails: find fails: overflows: 30420 855 1126 0 0 This menu option enables you to display statistics regarding the use of the forwarding database. and unsuccessful searches. October 2003 „ 109 . Number of successful searches in the Forwarding Database. lookup fails find fails overflows Chapter 5: The Statistics Menu 315393-E. Highest number of entries recorded at any given time in the Forwarding Database. Number of entries found or created in the Forwarding Database. Number of entries overflowing the Forwarding Database.Alteon OS 21. Number of entry lookups in the Forwarding Database. Number of entries deleted from the Forwarding Database. FDB statistics are described in the following table: Table 5-9 Forwarding Database Statistics (/stats/l2/fdb) Statistic creates current lookups finds find_or_c’s deletes hiwat Description Number of entries created in the Forwarding Database.

route Displays route statistics.Show DNS stats icmp . arp Displays Address Resolution Protocol (ARP) statistics. See page 121 for sample output.Show UDP stats ifclear . October 2003 .Alteon OS 21. vrrp When virtual routers are configured.Show ICMP stats if .Clear IP stats dump . 110 „ Chapter 5: The Statistics Menu 315393-E.OSPF Statistics Menu ip .Dump layer 3 stats Table 5-10 Layer 3 Statistics Menu (/stats/l3) Command Syntax and Usage ospf Displays OSPF statistics Menu. Displays Domain Name Server/System (DNS) statistics.Show ARP stats vrrp .Show TCP stats udp .0 Command Reference /stats/l3 Layer 3 Statistics Menu [Layer 3 Statistics Menu] ospf .Show IP interface ("if") stats tcp . icmp Displays ICMP statistics. ip Displays IP statistics. See page 121 for sample output.Show VRRP stats dns . See page 116 for sample output. See page 111 for sample output.Show IP stats route .Clear IP interface ("if") stats ipclear . See page 119 for sample output. See page 118 for sample output.Show route stats arp . but ignored (vrrpBadAdvers) See page 120 for sample output. you can display the following protocol statistics for VRRP: „ „ „ dns Advertisements received (vrrpInAdvers) Advertisements transmitted (vrrpOutAdvers) Advertisements received.

/stats/l3/ospf OSPF Statistics Menu [OSPF stats Menu] general .Show interface(s) stats Table 5-11 OSPF Statistics Menu (/stats/l3/ospf) Command Syntax and Usage general Displays global statistics. Use this command with caution as it will delete all the IP statistics.Show global stats aindex . October 2003 „ 111 . dump Dumps all Layer 3 switch statistics. Use this command with caution as it will delete all the IP interface statistics. tcp Displays TCP statistics. ipclear Clears IP statistics.Alteon OS 21. aindex <area index (0-2)> Displays area index statistics. If you want to capture dump data to a file. udp Displays UDP statistics. See page 112 for sample output and details. See page 123 for sample output. Chapter 5: The Statistics Menu 315393-E. set your communication software on your workstation to capture session data prior to issuing the dump command. See page 125 for sample output.0 Command Reference Table 5-10 Layer 3 Statistics Menu (/stats/l3) Command Syntax and Usage if <interface number (1-256)> Displays IP interface statistics for the management processors. if <interface number (1-256)> Displays interface statistics. Use this command to gather data for tuning and debugging Layer 3 switch performance.Show area(s) stats if . See page 126 for sample output. ifclear Clears IP interface statistics.

0 Command Reference /stats/l3/ospf/general OSPF Global Statistics The OSPF General Statistics contain the sum total of all OSPF packets received on all OSPF areas and interfaces. OSPF stats ---------Rx/Tx Stats: Pkts hello database ls requests ls acks ls updates Nbr change stats: hello start n2way adjoint ok negotiation done exchange done bad requests bad sequence loading done n1way rst_ad down Timers kickoff hello retransmit lsa lock lsa ack dbage summary ase export Rx -------0 23 4 3 7 9 Tx -------0 518 12 1 7 7 Intf change Stats: hello down loop unloop wait timer backup nbr change 2 0 2 2 2 2 0 0 2 0 0 1 4 2 0 0 2 0 5 514 1028 0 0 0 0 0 112 „ Chapter 5: The Statistics Menu 315393-E. October 2003 .Alteon OS 21.

Alteon OS 21. The sum total of all Hello packets received on all OSPF areas and interfaces. The sum total of all Link State Update packets received on all OSPF areas and interfaces. The sum total of all Link State Request packets transmitted on all OSPF areas and interfaces. The sum total of all Database Description packets transmitted on all OSPF areas and interfaces. The sum total of all Link State Acknowledgement packets transmitted on all OSPF areas and interfaces. The sum total of all OSPF packets transmitted on all OSPF areas and interfaces. Description Tx Pkts Rx Hello Tx Hello Rx Database Tx Database Rx ls Requests Tx ls Requests Rx ls Acks Tx ls Acks Rx ls Updates Tx ls Updates Chapter 5: The Statistics Menu 315393-E. The sum total of all Link State Request packets received on all OSPF areas and interfaces. The sum total of all Link State Update packets transmitted on all OSPF areas and interfaces.0 Command Reference Table 5-12 OSPF General Statistics (stats/l3/ospf/general) Statistics Rx/Tx Stats: Rx Pkts The sum total of all OSPF packets received on all OSPF areas and interfaces. The sum total of all Database Description packets received on all OSPF areas and interfaces. October 2003 „ 113 . The sum total of all Hello packets transmitted on all OSPF areas and interfaces. The sum total of all Link State Acknowledgement packets received on all OSPF areas and interfaces.

The sum total number of Link State Requests which have been received for a link state advertisement not contained in the database across all interfaces and OSPF areas. in an adjacency’s final state) having transmitted a full sequence of Database Description packets. The sum total number of decisions to be made (again) as to whether an adjacency should be established/maintained with the neighbor across all OSPF areas and interfaces. in which this router is not mentioned across all OSPF interfaces and areas. The sum total number of Hello packets received from neighbors. across all OSPF areas and interfaces. October 2003 . Any of these conditions indicate that some error has occurred during adjacency establishment for all OSPF areas and interfaces. The total number of Neighboring routers down (that is. The sum total number of neighbors in this state (that is. The sum total number of bidirectional communication establishment between this router and other neighboring routers. The sum total number of times the Neighbor adjacency has been reset across all OPSF areas and interfaces. and sequence numbers have been exchanged. The sum total number of neighbors in this state wherein the Master/slave relationship has been negotiated. Description Start n2way adjoint ok negotiation done exchange done bad requests bad sequence loading done n1way rst_ad down 114 „ Chapter 5: The Statistics Menu 315393-E. The sum total number of neighbors in this state (that is. an indication that Hello packets should now be sent to the neighbor at intervals of HelloInterval seconds) across all OSPF areas and interfaces. The sum total number of link state updates received for all out-of-date portions of the database across all OSPF areas and interfaces. in the initial state of a neighbor conversation) across all OSPF areas and interfaces. across all OSPF areas and interfaces.Alteon OS 21.0 Command Reference Table 5-12 OSPF General Statistics (stats/l3/ospf/general) (Continued) Statistics Nbr Change Stats: hello The sum total of all Hello packets received from neighbors on all OSPF areas and interfaces. The sum total number of Database Description packets which have been received that either: a) Has an unexpected DD sequence number b) Unexpectedly has the init bit set c) Has an options field differing from the last Options field received in a Database Description packet.

retransmit lsa lock lsa ack dbage summary ase export Chapter 5: The Statistics Menu 315393-E. indicating the end of the waiting period that is required before electing a (Backup) Designated Router across all OSPF areas and interfaces. connected to the attached network in all OSPF areas.0 Command Reference Table 5-12 OSPF General Statistics (stats/l3/ospf/general) (Continued) Statistics Intf Change Stats: hello down loop The sum total number of Hello packets sent on all interfaces and areas. October 2003 „ 115 . The sum total number of times the Retransmit timer has been fired across all OPSF areas and interfaces. The sum total of interfaces no longer connected to the attached network across all OSPF areas and interfaces. The sum total number of times the Wait Timer has been fired. The sum total number of times the LSA Ack timer has been fired across all OSPF areas and interfaces. The total number of times the Autonomous System Export (ASE) timer has been fired. The sum total number of changes in the set of bidirectional neighbors associated with any interface across all OSPF areas. The sum total number of interfaces down in all OSPF areas. Description unloop wait timer backup nbr change Timers Kickoff: hello The sum total number of times the Hello timer has been fired (which triggers the send of a Hello packet) across all OPSF areas and interfaces.Alteon OS 21. The sum total number of interfaces. The sum total number of times the Link State Advertisement (LSA) lock timer has been fired across all OSPF areas and interfaces. The total number of times the data base age (Dbage) has been fired. The total number of times the Summary timer has been fired. The sum total number of Backup Designated Routers on the attached network for all OSPF areas and interfaces.

Class E).0. time-to-live exceeded. The number of input datagrams for which this entity (the switch) was not their final IP destination. errors discovered in processing their IP options.0 Command Reference /stats/l3/ip IP Statistics IP statistics: ipInReceives: ipInAddrErrors: ipInUnknownProtos: ipInDelivers: ipOutDiscards: ipReasmReqds: ipReasmFails: ipFragFails: ipRoutingDiscards: ipReasmTimeout: 3115873 35447 500504 2334166 4 0 0 0 0 5 ipInHdrErrors: ipForwDatagrams: ipInDiscards: ipOutRequests: ipOutNoRoutes: ipReasmOKs: ipFragOKs: ipFragCreates: ipDefaultTTL: 1 0 0 1010542 4 0 0 0 255 Table 5-13 IP Statistics (/stats/l3/ip) Statistics ipInReceives Description The total number of input datagrams received from interfaces. which were Source-Routed via this entity (the switch).Alteon OS 21.Route option processing was successful. The number of locally addressed datagrams received successfully but discarded because of an unknown or unsupported protocol. ipInHdrErrors ipInAddrErrors ipForwDatagrams ipInUnknownProtos 116 „ Chapter 5: The Statistics Menu 315393-E. This count includes invalid addresses (for example. other format errors.0.0) and addresses of unsupported Classes (for example. this counter will include only those packets. The number of input datagrams discarded due to errors in their IP headers. including those received in error. and so forth. as a result of which an attempt was made to find a route to forward them to that final destination. version number mismatch. For entities which are not IP Gateways and therefore do not forward datagrams. 0. The number of input datagrams discarded because the IP address in their IP header’s destination field was not a valid address to be received at this entity (the switch). this counter includes datagrams discarded because the destination address was not a local address. October 2003 . including bad checksums. and the Source. In entities which do not act as IP Gateways.

Alteon OS 21. The number of output IP datagrams for which no problem was encountered to prevent their transmission to their destination. Note that this counter does not include any datagrams counted in ipForwDatagrams.assembled.0 Command Reference Table 5-13 IP Statistics (/stats/l3/ip) Statistics ipInDiscards Description The number of input IP datagrams for which no problems were encountered to prevent their continued processing. but which were discarded (for example. because their Don’t Fragment flag was set. and so forth). which meet this no-route criterion. Note that this counter includes any packets counted in ipForwDatagrams. The number of IP datagrams discarded because no route could be found to transmit them to their destination. The number of IP datagrams that have been successfully fragmented at this entity (the switch). ipInDelivers ipOutRequests ipOutDiscards ipOutNoRoutes ipReasmReqds ipReasmOKs ipReasmFails ipFragOKs ipFragFails ipFragCreates Chapter 5: The Statistics Menu 315393-E. The total number of IP datagrams which local IP user-protocols (including ICMP) supplied to IP in requests for transmission. The number of IP datagram fragments that have been generated as a result of fragmentation at this entity (the switch). The number of IP datagrams successfully re. The total number of input datagrams successfully delivered to IP userprotocols (including ICMP). errors.assembly algorithm (for whatever reason: timed out. The number of IP datagrams that have been discarded because they needed to be fragmented at this entity (the switch) but could not be. The number of IP fragments received which needed to be reassembled at this entity (the switch). but which were discarded (for example. Note that this counter does not include any datagrams discarded while awaiting re-assembly. for lack of buffer space). for example. The number of failures detected by the IP re. October 2003 „ 117 . Note that this counter would include datagrams counted in ipForwDatagrams if any such packets met this (discretionary) discard criterion. Note that this is not necessarily a count of discarded IP fragments since some algorithms (notably the algorithm in RFC 815) can lose track of the number of fragments by combining them as they are received. Note that this includes any datagrams which a host cannot route because all of its default gateways are down. for lack of buffer space).

which were chosen to be discarded even though they are valid. 118 „ Chapter 5: The Statistics Menu 315393-E. One possible reason for discarding such an entry could be to free-up buffer space for other routing entries. The maximum number of routes that are supported. The total number of RIP advertisement packets sent. The maximum number of seconds. which received fragments are held while they are awaiting reassembly at this entity (the switch). The highest number of routes ever recorded in the route table. Description The total number of outstanding routes in the route table. ipDefaultTTL ipReasmTimeout /stats/l3/route Route Statistics Route statistics: ipRoutesCur: ipRoutesMax: RIP statistics: ripInPkts: ripDiscardPkts: BGP statistics: bgpInPkts: bgpBadPkts: bgpRoutesAdded: bgpRoutesCur: bgpRoutesIgnored: 7 1024 ipRoutesHighWater: 7 0 ripOutPkts: 0 ripRoutesAgedOut: 0 0 0 0 0 0 0 bgpOutPkts: bgpSessFailures: bgpRoutesRemoved: bgpRoutesFailed: bgpRoutesFiltered: 0 0 0 0 0 Table 5-14 Route Statistics (/stats/l3/route) Statistics ipRoutesCur ipRoutesHighWater ipRoutesMax RIP statistics: ripInPkts ripOutPkts The total number of good RIP advertisement packets received. October 2003 .Alteon OS 21.0 Command Reference Table 5-13 IP Statistics (/stats/l3/ip) Statistics ipRoutingDiscards Description The number of routing entries. The default value inserted into the Time-To-Live (TTL) field of the IP header of datagrams originated at this entity (the switch). whenever a TTL value is not supplied by the transport layer protocol.

ripRoutesAgedOut BGP statistics: bgpInPkts bgpOutPkts bgpBadPkts bgpSessFailures bgpRoutesAdded bgpRoutesRemoved bgpRoutesCur bgpRoutesFailed bgpRoutesIgnored The total number of BGP packets received. The total number of current BGP routes. The maximum number of ARP entries that are supported. The total number of routes that were added to the routing table. The total number of routes dropped by the filter.Alteon OS 21. The total number of routes ignored because the peer was not connected locally or multihop was not configured. The total number of routes learned via RIP that has aged out. The highest number of ARP entries ever recorded in the ARP table. October 2003 „ 119 . The total number of failed sessions. bgpRoutesFiltered /stats/l3/arp ARP statistics This menu option enables you to display Address Resolution Protocol statistics. Chapter 5: The Statistics Menu 315393-E.0 Command Reference Table 5-14 Route Statistics (/stats/l3/route) Statistics ripDiscardPkts Description The total number of RIP advertisement packets received that were dropped. The total number of BGP packets dropped. ARP statistics: arpEntriesCur: arpEntriesMax: 3 4096 arpEntriesHighWater: 4 Table 5-15 ARP Statistics (/stats/l3/arp) Statistics arpEntriesCur arpEntriesHighWater arpEntriesMax Description The total number of outstanding ARP entries in the ARP table. The total number of BGP packets sent. The total number of routes that were removed from the routing table. The total number of BGP routes that failed to add in the routing table.

but ignored (vrrpBadAdvers) The statistics for the VRRP LAN are displayed: VRRP statistics: vrrpInAdvers: vrrpOutAdvers: 0 0 vrrpBadAdvers: 0 Table 5-16 VRRP Statistics (/stats/l3/vrrp) Statistics vrrpInAdvers vrrpBadAdvers vrrpOutAdvers Description The total number of VRRP advertisements that have been received. The total number of VRRP advertisements that have been sent. October 2003 . When virtual routers are configured.0 Command Reference /stats/l3/vrrp VRRP Statistics Virtual Router Redundancy Protocol (VRRP) support on the Alteon Application Switch provides redundancy between routers in a LAN. 120 „ Chapter 5: The Statistics Menu 315393-E. One of the virtual routers is then elected as the master. If the master fails. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. and assumes control of the shared virtual router IP address.Alteon OS 21. one of the backup virtual routers will assume routing authority and take control of the virtual router IP address. The total number of VRRP advertisements received that were dropped. you can display the following protocol statistics for VRRP: „ „ „ Advertisements received (vrrpInAdvers) Advertisements transmitted (vrrpOutAdvers) Advertisements received. based on a number of priority criteria.

0 Command Reference /stats/l3/dns DNS Statistics This menu option enables you to display Domain Name System statistics. Note that this counter includes all those counted by icmpInErrors. The total number of DNS request packets received that were dropped. DNS statistics: dnsInRequests: dnsBadRequests: 0 0 dnsOutRequests: 0 Table 5-17 DNS Statistics (/stats/l3/dns) Statistics dnsInRequests dnsOutRequests dnsBadRequests Description The total number of DNS request packets that have been received. Chapter 5: The Statistics Menu 315393-E. The total number of DNS response packets that have been transmitted. /stats/l3/icmp ICMP Statistics ICMP statistics: icmpInMsgs: icmpInDestUnreachs: icmpInParmProbs: icmpInRedirects: icmpInEchoReps: icmpInTimestampReps: icmpInAddrMaskReps: icmpOutErrors: icmpOutTimeExcds: icmpOutSrcQuenchs: icmpOutEchos: icmpOutTimestamps: icmpOutAddrMasks: 245802 41 0 0 244350 0 0 0 0 0 253777 0 0 icmpInErrors: icmpInTimeExcds: icmpInSrcQuenchs: icmpInEchos: icmpInTimestamps: icmpInAddrMasks: icmpOutMsgs: icmpOutDestUnreachs: icmpOutParmProbs: icmpOutRedirects: icmpOutEchoReps: icmpOutTimestampReps: icmpOutAddrMaskReps: 1393 0 0 18 0 0 253810 15 0 0 18 0 0 Table 5-18 ICMP Statistics (/stats/l3/icmp) Statistics icmpInMsgs Description The total number of ICMP messages which the entity (the switch) received.Alteon OS 21. October 2003 „ 121 .

Note that this counter includes all those counted by icmpOutErrors. The number of ICMP Redirect messages sent. The number of ICMP Address Mask Reply messages received. This value should not include errors discovered outside the ICMP layer such as the inability of IP to route the resultant datagram. The number of ICMP messages which this entity (the switch) did not send due to problems discovered within ICMP such as a lack of buffer. icmpInDestUnreachs icmpInTimeExcds icmpInParmProbs icmpInSrcQuenchs icmpInRedirects icmpInEchos icmpInEchoReps icmpInTimestamps icmpInTimestampReps icmpInAddrMasks icmpInAddrMaskReps icmpOutMsgs icmpOutErrors icmpOutDestUnreachs icmpOutTimeExcds icmpOutParmProbs icmpOutSrcQuenchs icmpOutRedirects 122 „ Chapter 5: The Statistics Menu 315393-E. In some implementations there may be no types of errors that contribute to this counter’s value. The number of ICMP Address Mask Request messages received. The number of ICMP Time Exceeded messages sent. The number of ICMP Redirect messages received. bad length. For a host. The number of ICMP Source Quench (buffer almost full. and so forth). The number of ICMP Echo (request) messages received. since hosts do not send redirects. stop sending data) messages received.Alteon OS 21. The number of ICMP Source Quench (buffer almost full. October 2003 . The number of ICMP Timestamp (request) messages received. The number of ICMP Echo Reply messages received. The total number of ICMP messages which this entity (the switch) attempted to send. The number of ICMP Destination Unreachable messages received. The number of ICMP Parameter Problem messages received. stop sending data) messages sent.0 Command Reference Table 5-18 ICMP Statistics (/stats/l3/icmp) Statistics icmpInErrors Description The number of ICMP messages which the entity (the switch) received but determined as having ICMP-specific errors (bad ICMP checksums. The number of ICMP Timestamp Reply messages received. The number of ICMP Parameter Problem messages sent. The number of ICMP Destination Unreachable messages sent. this object will always be zero. The number of ICMP Time Exceeded messages received.

which were not addressed to a multicast or broadcast address at this sub-layer. delivered by this sub-layer to a higher (sublayer). This object is deprecated in favor of ifInMulticastPkts and ifInBroadcastPkts. The number of inbound packets that were chosen to be discarded even though no errors had been detected to prevent their being delivered to a higher-layer protocol. October 2003 „ 123 .Alteon OS 21. The number of ICMP Address Mask Request messages sent. One possible reason for discarding such a packet could be to free up buffer space. The number of packets.0 Command Reference Table 5-18 ICMP Statistics (/stats/l3/icmp) Statistics icmpOutEchos icmpOutEchoReps icmpOutTimestamps icmpOutTimestampReps icmpOutAddrMasks icmpOutAddrMaskReps Description The number of ICMP Echo (request) messages sent. which were addressed to a multicast or broadcast address at this sub-layer. The number of ICMP Timestamp Reply messages sent. delivered by this sub-layer to a higher (sublayer). The number of ICMP Address Mask Reply messages sent. The number of ICMP Timestamp (request) messages sent. including framing characters. The number of ICMP Echo Reply messages sent. /stats/l3/if <interface number> Interface Statistics IP interface 1 statistics: ifInOctets: 48948386 ifInNUCastPkts: 167895 ifInErrors: 0 ifOutOctets: 27100789 ifOutNUcastPkts: 218652 ifOutErrors: 0 ifInUcastPkts: ifInDiscards: ifInUnknownProtos: ifOutUcastPkts: ifOutDiscards: ifStateChanges 220553 0 0 441938 0 1 Table 5-19 Interface Statistics (/stats/if) Statistics ifInOctets Description The total number of octets received on the interface. ifInUcastPkts ifInNUCastPkts ifInDiscards Chapter 5: The Statistics Menu 315393-E. The number of packets.

For character-oriented or fixed-length interfaces. including framing characters. The total number of packets that higher-level protocols requested to be transmitted. The number of times an interface has transitioned from either down to up or from up to down. ifInUnknownProtos ifOutOctets ifOutUcastPkts ifOutNUcastPkts ifOutDiscards ifOutErrors ifStateChanges 124 „ Chapter 5: The Statistics Menu 315393-E. For any interface which does not support protocol multiplexing. The total number of packets that higher-level protocols requested to be transmitted. For packet-oriented interfaces. For character-oriented or fixed-length interfaces. the number of outbound transmission units that could not be transmitted because of errors. October 2003 . the number of packets received via the interface which were discarded because of an unknown or unsupported protocol. the number of inbound packets that contained errors preventing them from being delivered to a higher-layer protocol. including those that were discarded or not sent.Alteon OS 21. This object is deprecated in favor of ifOutMulticastPkts and ifOutBroadcastPkts. The total number of octets transmitted out of the interface. and which were not addressed to a multicast or broadcast address at this sub-layer. including those that were discarded or not sent. and which were addressed to a multicast or broadcast address at this sub-layer. the number of inbound transmission units that contained errors preventing them from being deliverable to a higher-layer protocol. the number of outbound packets that could not be transmitted because of errors.0 Command Reference Table 5-19 Interface Statistics (/stats/if) Statistics ifInErrors Description For packet-oriented interfaces. The number of outbound packets. For character-oriented or fixed-length interfaces which support protocol multiplexing the number of transmission units received via the interface which were discarded because of an unknown or unsupported protocol. this counter will always be 0. For packet-oriented interfaces. which were chosen to be discarded even though no errors had been detected to prevent their being transmitted. One possible reason for discarding such a packet could be to free up buffer space.

October 2003 „ 125 . when the timeout algorithm is rsre(3). when the timeout algorithm is rsre(3).0 Command Reference /stats/l3/tcp TCP Statistics TCP statistics: tcpRtoAlgorithm: tcpRtoMax: tcpActiveOpens: tcpAttemptFails: tcpInSegs: tcpRetransSegs: tcpCurBuff: tcpOutRsts: 4 240000 252214 528 756401 0 0 417 tcpRtoMin: tcpMaxConn: tcpPassiveOpens: tcpEstabResets: tcpOutSegs: tcpInErrs: tcpCurConn: 0 512 7 4 756655 0 3 Table 5-20 TCP Statistics (/stats/l3/tcp) Statistics tcpRtoAlgorithm Description The algorithm used to determine the timeout value used for retransmitting unacknowledged octets. measured in milliseconds. tcpRtoMin tcpRtoMax tcpMaxConn tcpActiveOpens tcpPassiveOpens tcpAttemptFails Chapter 5: The Statistics Menu 315393-E. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout. In entities where the maximum number of connections is dynamic. The number of times TCP connections have made a direct transition to the SYN-RCVD state from the LISTEN state.Alteon OS 21. The minimum value permitted by a TCP implementation for the retransmission timeout. The maximum value permitted by a TCP implementation for the retransmission timeout. The number of times TCP connections have made a direct transition to the CLOSED state from either the SYN-SENT state or the SYN-RCVD state. The number of times TCP connections have made a direct transition to the SYN-SENT state from the CLOSED state. an object of this type has the semantics of the UBOUND quantity described in RFC 793. this object should contain the value -1. plus the number of times TCP connections have made a direct transition to the LISTEN state from the SYN-RCVD state. measured in milliseconds. an object of this type has the semantics of the LBOUND quantity described in RFC 793. In particular. The limit on the total number of TCP connections the entity (the switch) can support. In particular. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout.

The number of TCP segments sent containing the RST flag. The number of received UDP datagrams that could not be delivered for reasons other than the lack of an application at the destination port. The total number of segments received. October 2003 . The total number of outstanding memory allocations from heap by TCP protocol stack. udpNoPorts 126 „ Chapter 5: The Statistics Menu 315393-E.Alteon OS 21. The total number of outstanding TCP sessions that are currently opened. including those received in error. including those on current connections but excluding those containing only retransmitted octets.0 Command Reference Table 5-20 TCP Statistics (/stats/l3/tcp) Statistics tcpEstabResets Description The number of times TCP connections have made a direct transition to the CLOSED state from either the ESTABLISHED state or the CLOSEWAIT state. This count includes segments received on currently established connections.that is. The total number of UDP datagrams sent from this entity (the switch). the number of TCP segments transmitted containing one or more previously transmitted octets. tcpInSegs tcpOutSegs tcpRetransSegs tcpInErrs tcpCurBuff tcpCurConn tcpOutRsts /stats/l3/udp UDP Statistics UDP statistics: udpInDatagrams: udpInErrors: 54 0 udpOutDatagrams: udpNoPorts: 43 1578077 Table 5-21 UDP Statistics (/stats/l3/udp) Statistics udpInDatagrams udpOutDatagrams udpInErrors Description The total number of UDP datagrams delivered to the switch. The total number of segments received in error (for example. The total number of segments retransmitted . The total number of segments sent. bad TCP checksums). The total number of received UDP datagrams for which there was no application at the destination port.

Show auxiliary session table stats dump . see page 129. Current and total sessions for all real servers associated with the real server group.Show Global SLB stats layer7 .Show real server group stats virt .Show maintenance stats clear .Clear non-operational Server Load Balancing stats aux .SLB Switch SP Stats Menu real . see page 132. October 2003 „ 127 .Show virtual server stats filt .0 Command Reference /stats/slb Load Balancing Statistics Menu [Server Load Balancing Statistics Menu] sp . Highest number of simultaneous sessions recorded for each real server.Show real server stats group . See page 133 for sample output. group <real server group number (1-256)> Displays the following real server group statistics: „ „ „ „ Current and total sessions for each real server in the real server group.Show DNS SLB stats wap .Show RTSP SLB stats dns .Show Layer 7 stats ssl .Show filter stats gslb .Show FTP SLB parsing and NAT stats rtsp .Alteon OS 21. Chapter 5: The Statistics Menu 315393-E.Show SSL SLB stats ftp . Real server transmit/receive octets. For per-service octet counters. To view menu options. real <real server number (1-1023)> Displays the following real server statistics: „ „ „ „ „ Number of times the real server has failed its health checks Number of sessions currently open on the real server Total sessions the real server was assigned Highest number of simultaneous sessions recorded for each real server Real server transmit/receive octets See page 129 for sample output.Dump all SLB statistics Table 5-22 SLB Statistics Menu Options (/stats/slb) Command Syntax and Usage sp <SP number (1-4)> Displays the server load balancing statistics menu.Show WAP SLB stats maint .

128 „ Chapter 5: The Statistics Menu 315393-E. wap Displays WAP SLB statistics. see page 133. See page 147 for sample output. See page 134 for sample output. refer to Table 5-40 on page 150. See page 141 for sample output. Displays auxiliary session table statistics. See page 133 for sample output.Alteon OS 21. See page 137 for sample output. Highest number of simultaneous sessions recorded for each real server. See page 149 for sample output. To view the statistics reset by this command. This command does not reset the switch and does not affect the following counters: „ „ aux Counters required for Layer 4 and Layer 7 operation (such as current real server sessions). resetting them to zero. October 2003 . All related SNMP counters. For more information.0 Command Reference Table 5-22 SLB Statistics Menu Options (/stats/slb) Command Syntax and Usage virt <virtual server number (1-1024)> Displays the following virtual server statistics: „ „ „ „ Current and total sessions for each real server associated with the virtual server. For per-service octet counters. See page 142 for sample output. filt <filter ID (1-2048)> Displays the total number of times any filter has been used. ftp Displays FTP SLB parsing and NAT statistics. Current and total sessions for all real servers associated with the virtual server. rtsp Displays RTSP SLB statistics. See page 145 for sample output. see page 134. ssl Displays SSL server load balancing statistics. layer7 Displays Layer 7 statistics. gslb Displays the Global SLB Statistics Menu. See page 145 for sample output. clear [y|n] Clears all non-operating SLB statistics on the Alteon Application Switch. Real server transmit/receive octets. dns Displays DNS SLB statistics. maint Displays SLB maintenance statistics.

See page 130 for a sample output. virt <virtual server number (1-1024)> Displays statistics of the virtual server. Use this command to gather data for tuning and debugging switch performance. aux Displays the statistics of the auxiliary session table. filt <filter ID (1-2048)> Displays statistics of the filter. clear Deletes all the SP statistics. maint Displays the SP maintenance statistics. group <real server group number (1-1024)> Displays real server group statistics of the switch port.Show maintenance stats aux .Show filter stats maint .Clear SP stats Table 5-23 SP Statistics Menu options (/stats/slb/sp) Command Syntax and Usage real <real server number (1-1023)> Displays real server statistics of the switch port. set your communication software on your workstation to capture session data prior to issuing the dump command. Chapter 5: The Statistics Menu 315393-E.Show real server stats group . October 2003 „ 129 .0 Command Reference Table 5-22 SLB Statistics Menu Options (/stats/slb) Command Syntax and Usage dump Dumps all switch SLB statistics.Show virtual server stats filt . See page 131 for a sample output.Show auxiliary session table stats clear . To save dump data to a file. /stats/slb/sp Server Load Balancing SP statistics Menu [Server Load Balancing SP Statistics Menu] real .Show real server group stats virt . See page 130 for a sample output.Alteon OS 21. See page 131 for a sample output. See page 130 for a sample output.

---------.-------.100.-------40 137 21 Octets --------------480000 616000 --------------1096000 /stats/slb/sp <sp number>/virt <virtual server number> SP Virtual Server Statistics Real server group 1 stats: Current Total Highest Real IP address Sessions Sessions Sessions ---.-------1 200.10.100. October 2003 .10.14 20 60 9 2 200.-------.100.10.10.100 40 137 21 Octets --------------480000 616000 --------------1096000 130 „ Chapter 5: The Statistics Menu 315393-E.100.---------.100.-------.Alteon OS 21.--------------.15 20 77 12 ---.--------------.-------.--------------.10.-------1 200.--------------.14 20 60 9 2 200.15 20 77 12 ---.0 Command Reference /stats/slb/sp/real <real server number> SP Real Server Statistics Port 1 Real server 1 stats: Current sessions: Total sessions: Octets: 3 3 24 /stats/slb/sp <sp number>/group <real group server number> SP Real Group Server Statistics Real server group 1 stats: Current Total Highest Real IP address Sessions Sessions Sessions ---.---------.---------.-------200.

0 Command Reference /stats/slb/sp <sp number>/filt <filter number> SP Filter Statistics Poet 1 Filter 30 stats: Total Firings: 2 /stats/slb/sp <sp number>/maint SP Maintenance Statistics SP 1 SLB Maintenance stats: Maximum sessions: Current sessions: 4 second average: 64 second average: Terminated sessions: Allocation failures: Non TCP/IP frames: TCP fragments: UDP datagrams: Incorrect VIPs: Incorrect Vports: No available real server: Filtered (denied) frames: LAND attacks: Total IP fragment sessions: IP fragment sessions: IP fragment discards: IP fragment table full: 523264 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 /stats/slb/real <real server number> Real Server SLB Statistics Real server 1 stats: Current sessions: Total sessions: Highest sessions: Octets 129 65478 4343 523824000 Chapter 5: The Statistics Menu 315393-E. October 2003 „ 131 .Alteon OS 21.

The octet counters are provided per server–not per service.20 for HTTP services. configure a real server with a real IP address for each service above. The highest number of sessions ever recorded for the particular real server. 3. October 2003 . Configure a separate IP address for each service on each server being load balanced.1. Continuing the example above. If there were five physical servers providing the two services (HTTP and FTP). not per service. configure one real server group for each type of service. Thus.1.0 Command Reference NOTE – Octets are provided per server. If you need octet counters on a perservice basis. Table 5-24 Real Server SLB Statistics (/stats/slb/real) Statistics Current sessions Description The total number of outstanding sessions that are established to the particular real server. The total number of octets sent by the particular real server. On the Alteon Application Switch. and five for the FTP services on each physical server. two groups would be configured: one for handling HTTP and one for handling FTP. The total number of sessions that have been established to the particular real server. and 10. two real servers would be configured for the physical server (representing each real service). Total sessions Highest sessions Octets Per Service Octet Counters For each load-balanced real server. in keeping with our example. and group each appropriate real server IP address into the group that handles the specific service. you can configure IP address 10. 132 „ Chapter 5: The Statistics Menu 315393-E. you can accomplish this through the following configuration: 1. the octet counters represent the combined number of transmit and receive bytes (octets).21 for FTP services on the same physical server. On the Alteon Application Switch. For instance. 10 real servers would have to be configured: five for the HTTP services on each physical server. 2. unless configured as described in “Per Service Octet Counters” on page 132.1. These counters are then added to report the total octets for each virtual server.Alteon OS 21.1.

0 Command Reference 4.10.100. Configure a virtual server and add the appropriate services to that virtual server.100.-------1 200.14 20 60 9 2 200.Alteon OS 21.--------------.--------------.-------. below the real server IP addresses.10.10. October 2003 „ 133 .-------.---------.---------.10. /stats/slb/virt <virtual server number> Virtual Server SLB Statistics Virtual server 1 stats: Current Total Highest Real IP address Sessions Sessions Sessions ---.-------.20 40 309 21 Octets --------------480000 616000 --------------1096000 NOTE – The virtual server IP address is shown on the last line. Real server transmit/receive octets. Virtual server statistics include the following: Chapter 5: The Statistics Menu 315393-E. /stats/slb/group <real server group number> Real Server Group Statistics Real server group 1 stats: Current Total Highest Real IP address Sessions Sessions Sessions ---. Current and total sessions for all real servers associated with the real server group. see the procedure on “Per Service Octet Counters” on page 132. For per-service octet counters.---------.15 20 77 12 ---.---------.--------------.100.-------200.-------1 200.-------40 137 21 Octets --------------480000 616000 --------------1096000 Real server group statistics include the following: „ „ „ „ Current and total sessions for each real server in the real server group.15 20 77 12 ---.14 20 60 9 2 200.10.-------.100.--------------. Highest number of simultaneous sessions recorded for each real server.100.

Real server transmit/receive octets. see page 135. see page 135.Show Virtual server Global SLB stats maint .0 Command Reference „ „ „ „ Current and total sessions for each real server associated with the virtual server. October 2003 . group <real server group number (1-1024)> To view an example and description of what is displayed on-screen. see “Per Service Octet Counters” on page 132. under which the remote server is configured. To view an example and description of what is displayed on-screen. see page 136. /stats/slb/gslb Global SLB Statistics Menu [Global SLB Statistics Menu] real . virt <virtual server number (1-1024)> To view an example and description of what is displayed on-screen. see page 135. /stats/slb/filt <filter number> Filter SLB Statistics Filter 1 stats: Total firings: 1011 You can obtain the total number of times any filter has been used. For per-service octet counters. Current and total sessions for all real servers associated with the virtual server.Alteon OS 21.Show Real server Global SLB stats group . 134 „ Chapter 5: The Statistics Menu 315393-E. maint To view an example and description of what is displayed on-screen.Show Real server group Global SLB stats virt . Highest number of simultaneous sessions recorded for each real server.Show Global SLB maintenance stats Table 5-25 Global SLB Statistics Menu Options (/stats/slb/gslb) Command Syntax and Usage real <real server number (1-1023)> Where the real server number represents the real server ID on this switch.

178.223 608 ----------.13.--------------.54 10 24120 205.178.0 Command Reference /stats/slb/gslb/real <real server number> Real Server Global SLB Statistics Real server 1 global stats: DNS handoffs: HTTP redirects: 3210 12 For any remote real server configured for Global Server Load Balancing.13.54 1240 2 205. the following statistics can be viewed: „ „ Number of DNS hand-offs sent by the remote real server/real server group Number of HTTP redirects sent by the remote real server/real server group /stats/slb/gslb/group <group number> Real Server Group Global SLB Statistics Real server group 1 Global SLB stats: Real server IP address DNS Handoffs ----------.---------------Totals 1848 HTTP Redirects --------------30 12 --------------42 Real server group global statistics include the following: „ „ „ Number of DNS hand-offs to each remote real server in the group Number of HTTP redirects to each remote real server in the group Total DNS hand-offs and HTTP redirects to the remote real servers in the group /stats/slb/gslb/virt <virtual server number> Virtual Server Global SLB Statistics Virtual server 1 Service Server ------.---------------1 205.55 16 21190 205.178.Alteon OS 21.-----------------205.178.------------.13.13. October 2003 „ 135 .55 4 31032 Chapter 5: The Statistics Menu 315393-E.13.-----http v1 http r1 telnet v1 Global SLB stats: IP address Response time Min sessions avail --------------.178.--------------.

October 2003 . Client HTTP GET request packets that do not contain the entire URL are considered bad and are dropped. „ „ „ IP address of the server Response time: the average time (current weight) that each service takes to respond to information exchanges with its peers. If bad updates or dropped packets occur. the number represents the real server ID on this switch. The number of bad/dropped DSSP updates/packets received from remote sites. † v# represents a local virtual server number † r# represents a remote site.0 Command Reference Virtual server global statistics include the following: „ „ Service: type of service running on the virtual server Server: type of server configuration and server ID number. The number of bad/dropped client HTTP requests. This number will change as client traffic loads change. under which the remote server is configured. or as real servers under the virtual server or remote sites go in or out of service. Bad updates or dropped packets usually indicate that there is a GSLB switch configuration problem. The time is specified in ticks of 65 milliseconds. „ 136 „ Chapter 5: The Statistics Menu 315393-E.Alteon OS 21. Minimum sessions available: the current number of sessions available for serving client requests. Since each remote sites is configured on its peers as if it were a real server (with certain special properties). check your syslog for configuration error messages. /stats/slb/gslb/maint Global SLB Maintenance Statistics Global SLB maintenance stats: Updates received: Bad updates received: Bad requests received: 0 0 0 Global SLB maintenance statistics include the following: „ „ The number of Distributed Site State Protocol (DSSP) updates/packets received from remote sites.

See page 137 for a sample output. October 2003 „ 137 .The total number of HTTP requests forwarded from straight to the gin server hits origin server.Show URL Redirection stats str . See page 139 for a sample output.Show SLB String stats maint . Total none-GETs hits The total number of none GET requests forwarded to the origin server. Total straight to ori. Chapter 5: The Statistics Menu 315393-E. maint Displays Layer 7 maintenance statistics.0 Command Reference /stats/slb/layer7 SLB Layer7 Statistics Menu [Layer 7 Statistics Menu] redir .Show Layer 7 Maintenance stats Table 5-26 SLB Layer 7 Statistics Menu Options (/stats/slb/layer7) Command Syntax & Usage redir Displays URL Redirection statistics. See page 138 for a sample output. Total origin server hits The total number of HTTP requests forwarded to the origin server. /stats/slb/layer7/redir Layer7 Redirection Statistics Total Total Total Total Total Total Total Total Total Total URL based web cache redirection stats: cache server hits: origin server hits: straight to origin server hits: none-GETs hits: ’Cookie: ’ hits: no-cache hits: RTSP cache server hits: RTSP origin server hits: HTTP redirection hits: 0 0 0 0 0 0 0 0 0 Table 5-27 Layer 7 Redirection Statistics (/stats/slb/layer7/redir) Statistics Description Total cache server hits The total number of HTTP requests redirected to the cache server.Alteon OS 21. str Displays SLB string statistics.

com 3 www. The total number of RTSP requests redirected to the cache server.[abcdefjhijklm]*.abc. 138 „ Chapter 5: The Statistics Menu 315393-E.[abcdefghijklm]*.com 4 www. The total number of requests containing no-cache header forwarded to the origin server.org Hits 1527115 0 0 0 0 0 0 Table 5-28 Layer 7 SLB String Statistics (/stats/slb/layer7/str) Statistics ID SLB String Hits Description The user-defined strings being used in URL matching. October 2003 .Alteon OS 21.[nopqrstuvwxyz]*. The total number of instances that are load-balanced due to matching of the particular URL ID. /stats/slb/layer7/str Layer 7 SLB String Statistics SLB String stats: ID SLB String 1 any 2 www. The total number of HTTP requests that were redirected by redirection filter.0 Command Reference Table 5-27 Layer 7 Redirection Statistics (/stats/slb/layer7/redir) Statistics Total ’Cookie:’ hits Total no-cache hits Total RTSP cache server hits Total RTSP origin server hits Total HTTP redirection hits Description The total number of cookie requests forwarded to the origin server.org 7 www.[nopqrstuvwxyz]*.junk. The total number of RTSP requests forwarded to the origin server.com 6 www.com 5 www.

Seq buffers: 0 Alloc Fails . The number of reset frames sent to the server by the switch during server connection termination due to delayed binding.Ubufs: Max sessions per bucket: 0 Max frames per session: Max bytes buffered (sess): 0 1310 1310 1310 1310 0 0 0 0 0 0 0 Table 5-29 SLB Layer 7 Maintenance Statistics (/stats/slb/layer7/maint) Statistics Clients reset by switch on client side Description The number of reset frames sent to the client by the switch during server connection termination. the switch will send a reset frame to the client to terminate the connection.1 Invalid HTTP methods Chapter 5: The Statistics Menu 315393-E.Alteon OS 21.1 client requests. The total number of connection swapping between different real servers in supporting multiple HTTP/1. Clients reset by switch on server side Connection Splicing to support HTTP/1. This means that when the switch could not connect to the real sever and the client’s retries exceeded the threshold due to delayed binding.1: 0 Invalid HTTP methods: 0 Aged delayed binding sessions: 0 Half open connections: 0 Switch retries: 0 Random early drops: 0 Requests exceeded 4500 bytes: 0 Invalid 3-way handshakes: 0 Exceeded max frame size: 0 Current SP[1] memory units: 1310 Lowest: Current SP[2] memory units: 1310 Lowest: Current SP[3] memory units: 1310 Lowest: Current SP[4] memory units: 1310 Lowest: Current SP memory units: 5240 Current SEQ buffer entries: 0 Highest: Current Data buffer use: 0 Highest: Current SP buffer entries: 0 Highest: Total Nonzero SEQ Alloc: 0 Total SEQ Buffer Allocs: 0 Total SEQ Frees: Total Data Buffer Allocs: 0 Total Data Frees: Alloc Fails .0 Command Reference /stats/slb/layer7/maint Layer 7 SLB Maintenance Statistics Layer 7 maintenance stats: Clients reset by switch on client side: 0 Clients reset by switch on server side: 0 Connection Splicing to support HTTP/1.0 The total number of HTTP requests that contain invalid methods sent by the client. October 2003 „ 139 .

The highest number of data buffers ever used. The total number of sequence buffer is freed. It is incremented when the switch responds to TCP SYN packet and decremented upon receiving TCP SYN ACK packet from the requester. Switch retries Random early drops Requests exceeded 4500 bytes Invalid 3-way handshakes Exceeded max frame size Current SP memory units Current SEQ buffer entries Highest SEQ buffer entries Current Data buffer use Highest Data buffer use Total Nonzero SEQ Alloc Total SEQ Buffer Allocs Total SEQ Frees Total Data Buffer Allocs Total Data Frees 140 „ Chapter 5: The Statistics Menu 315393-E. The total number of dropped frames because of invalid 3-way hand shakes. The current available SP memory units. The total number of switch retries to connect to the real server. The total number of switch-generated frames that exceeded the maximum allowed frame size. October 2003 . The highest number of sequence buffers ever used. The total number of sequence buffer allocated.0 Command Reference Table 5-29 SLB Layer 7 Maintenance Statistics (/stats/slb/layer7/maint) Statistics Aged delayed binding sessions Half open connections Description The total number of aged delayed binding sessions caused by failed connection initialization between the switch and the server. The total number of GET requests that exceeded 4500 bytes.2 The total of number buffers freed. The number of outstanding sequence buffers used.2 The total number of sequence buffer allocations. The total numbers of outstanding TCP connections that are half opened.Alteon OS 21. The total number of SYN frames dropped when the buffer is low. The total number of buffers allocated to store client request. The number of outstanding data buffers used.

The maximum number of items (sessions) allowed in the session table hash bucket chain. October 2003 „ 141 . /stats/slb/ssl SLB Secure Socket Layer Statistics SSL SLB maintenance stats: SessionId allocation fails: 0 Current Total Highest Sessions Sessions Sessions ------------------------.-------. The number of times the URL data buffer allocation failed. SSL connections Chapter 5: The Statistics Menu 315393-E.Seq buffers Alloc Fails . The number of different TCP connections using SSL service. This number shows the number of unique SSL sessions seen on the switch. Max frames per session The maximum number of frames to be buffered per session.-------Unique SessionIds 0 0 0 SSL connections 0 0 0 Persistent Port Sessions 0 0 0 Table 5-30 SLB Secure Socket Layer Statistics (/stats/slb/ssl) Statistics SSL SLB maintenance stats SessionId allocation fails Description Debug stats for SSL SessionId based persistence.0 Command Reference Table 5-29 SLB Layer 7 Maintenance Statistics (/stats/slb/layer7/maint) Statistics Alloc Fails . the total sessions seen on the switch since last reset and the high water mark of current sessions for the following: Unique SessionIds Many SSL sessions can use the same SessionId.Ubufs Max sessions per bucket Description The number of times sequence buffer allocation failed. The table shows the Current Sessions. Max bytes buffered (sess) The maximum number of bytes to be buffered per session. these should all bind to the same server.Alteon OS 21. The number of times allocation of a session table entry failed when attempting to store a SessionId in the table.---------.

dump Shows all FTP SLB/NAT statistics. parsing Shows parsing statistics. See page 142 for sample output.Show parsing . /stats/slb/ftp File Transfer Protocol SLB and Filter Statistics Menu [FTP SLB parsing and active . /stats/slb/ftp/active Active FTP SLB Parsing and Filter Statistics Total Active FTP NAT stats(PORT): Total FTP: Total New Active FTP Index: Active FTP NAT ACK/SEQ diff: 0 0 0 Table 5-32 Active FTP Slb Parsing and Filter statistics (/stats/slb/ftp/active) Statistics Total Active FTP NAT stats (PORT) Description The number of times the switch receives the port command from the client. maint Shows maintenance statistics. See page 143 for sample output. See page 143 for sample output.Alteon OS 21.0 Command Reference Table 5-30 SLB Secure Socket Layer Statistics (/stats/slb/ssl) Statistics Persistent Port Sessions Description The number of SessionIds maintained to allow for persistence across different client ports. 142 „ Chapter 5: The Statistics Menu 315393-E.Show dump .Show maint .Dump Filter Statistics Menu] active FTP NAT filter stats FTP SLB parsing server stats FTP maintenance stats all FTP SLB/NAT stats Table 5-31 FTP SLB Parsing and Filter Statistics Menu Options (/stats/slb/ftp) Command Syntax and Usage active Shows active FTP SLB parsing and filter statistics. October 2003 . See page 144.

The difference in the numbers of ACK and SEQ that the switch needs FTP SLB parsing. October 2003 „ 143 . The difference in the numbers of ACK and SEQ that the Switch needs for packet adjustment. The number of times the switch creates a new index in response to the pasv command from the client. The number of times the switch creates a new index due to port command from the client.Alteon OS 21. Total New FTP SLB parsing Index FTP SLB parsing ACK/ SEQ diff /stats/slb/ftp/maint FTP SLB Maintenance Statistics FTP mode switch error: 0 Table 5-34 FTP SLB Maintenance Statistics (/stats/slb/ftp/maint) Statistics FTP mode switch error Description The number of times the switch is not able to switch modes from active to passive and vice versa. /stats/slb/ftp/parsing Passive FTP SLB Parsing Statistics Total FTP SLB Parsing Stats(PASV): Total FTP: Total New FTP SLB parsing Index: FTP SLB parsing ACK/SEQ diff: 0 0 0 Table 5-33 Passive FTP SLB Parsing Statistics (/stats/slb/ftp/parsing) Statistics Total FTP Description The number of times the switch receives both active and passive FTP connections. Chapter 5: The Statistics Menu 315393-E.0 Command Reference Table 5-32 Active FTP Slb Parsing and Filter statistics (/stats/slb/ftp/active) Statistics Total FTP Total New Active FTP Index Active FTP NAT ACK/SEQ diff Description The number of times the switch receives both active and passive FTP connections.

The total number of times the adjustment between ACK and SEQ occurred on the filter. October 2003 . 144 „ Chapter 5: The Statistics Menu 315393-E. The number of times the switch creates a new index in response to the pasv command from the client.Alteon OS 21. The number of times the switch could not switch mode from active to passive and vice versa. Total FTP NAT Filtered The total number of FTP NAT filter sessions that occurred.0 Command Reference /stats/slb/ftp/dump FTP SLB Statistics Dump Total FTP : Total FTP NAT Filtered: Total new active FTP NAT Index: Total new FTP SLB parsing Index: FTP Active FTP NAT ACK/SEQ diff: FTP SLB parsing ACK/SEQ diff: FTP mode switch error: 0 0 0 0 0 0 0 Table 5-35 FTP SLB Statistics Dump (/stats/slb/ftp/dump) Statistics Total FTP Description The total number of FTP sessions that occurred. Total new active FTP NAT Index Total new FTP SLB parsing Index FTP Active FTP NAT ACK/SEQ diff FTP SLB parsing ACK/ SEQ diff FTP mode switch error The total number of new data sessions created for FTP NAT filter in active mode. The difference in the numbers of ACK and SEQ that the switch needs for FTP SLB parsing.

The total number of times the connection got redirected.0 Command Reference /stats/slb/rtsp RTSP SLB Statistics Control UDP Connection Buffer Alloc SP Connection Streams Redirect Denied Allocs Failures -.-------0 0 0 0 0 0 Table 5-36 RTSP SLB Statistics (/stats/slb/rtsp) Statistics ControlConnection UDP Streams Description The total number of TCP connections for RTSP control connection.---------1 0 0 0 0 0 0 2 0 0 0 0 0 0 3 0 0 0 0 0 0 4 0 0 0 0 0 0 -.---------.---------.---------.---------. The total number of times the buffer allocation failed. The total number of buffer allocations used.---------.---------. Redirect ConnectionDenied BufferAllocs AllocFailures /stats/slb/dns DNS SLB Statistics Total Total Total Total Total Total Total number number number number number number number of of of of of of of TCP DNS queries: UDP DNS queries: invalid DNS queries: multiple DNS queries: domain name parse errors: failed real server name matches: DNS parsing internal errors: 0 0 0 0 0 0 0 Chapter 5: The Statistics Menu 315393-E.---------. October 2003 „ 145 .---------. The total number of times the connections got denied due to shortage of resources or the real server being down. The total number of UDP connections for data channels.---------.---------. The number depends upon the type of media player being used.Alteon OS 21.

The total number of malformed DNS queries received. The total number of DNS queries received through UDP requests. The total number of out of memory and other unexpected errors the user gets while processing the DNS query.0 Command Reference Table 5-37 DNS SLB Statistics (/stats/slb/dns) Statistics Total number of TCP DNS queries Total number of UDP DNS queries Total number of invalid DNS queries Total number of multiple DNS queries Description The total number of DNS queries that received through TCP connections. Currently only one domain name resolution per request is supported. The total number of DNS queries that contain more than one domain name to be resolved. The total number of times the user failed to find a real server which has the same layer 7 strings that match the domain name to be resolved.Alteon OS 21. The total number of DNS queries that have short or invalid domain names to be resolved. Total number of domain name parse errors Total number of failed real server name matches Total number of DNS parsing internal errors 146 „ Chapter 5: The Statistics Menu 315393-E. October 2003 .

Alteon OS 21.SP dead: 0 -----------------------------------------------------------------RADIUS Snooping stats: acct reqs: 0 acct wrap reqs: 0 acct start reqs: 0 acct update reqs: 0 acct stop reqs: 0 acct bad reqs: 0 acct reqs(FIP): 0 acct reqs(no FIP): 0 add session reqs: 0 del session reqs: 0 req fails. TPCP External Notification stats: Chapter 5: The Statistics Menu 315393-E.SP dead: 0 req fails. Indicates the number of times the switch received a Layer 4 request for a virtual server which was not configured.0 Command Reference /stats/slb/Wap WAP SLB Statistics WAP Maintenance stats: current sessions: 0 allocation failures: 0 incorrect VIPs: 0 incorrect Vports: 0 no available real server: 0 requests to wrong SP: 0 -----------------------------------------------------------------TPCP External Notification stats: add session reqs: 0 del session reqs: 0 req fails.DMA: 0 Table 5-38 WAP SLB Statistics (/stats/slb/wap) Statistics Description WAP Maintenance stats: current sessions allocation failures The number of session bindings currently in use. This dropped frames counter indicates that the virtual server has received frames for TCP/UDP services that have not been configured. October 2003 „ 147 .SP dead: 0 req fails. incorrect VIPs incorrect Vports no available real server requests to wrong SP The number of session add/delete requests sent to the wrong SP. Indicates instances where the switch ran out of available bindings for a port. Normally this indicates a mis-configuration on the virtual server or the client. This dropped frames counter indicates that all real servers are either out of service or at their maxcon limit.

The number of RADIUS Accounting Stop frames received. The number of WAP session add requests via RADIUS snooping. October 2003 . The number of RADIUS Accounting Start frames received. acct start reqs acct update reqs acct stop reqs acct bad reqs add session reqs del session reqs req fails. The number of add-request failures due to dead target SP. The number of add/delete requests failed due to DMA write failure. The number of add/delete request failures due to dead target SP.Alteon OS 21. The number of bad RADIUS Accounting frames received.SP dead req fails.0 Command Reference Table 5-38 WAP SLB Statistics (/stats/slb/wap) Statistics add session reqs req fails.DMA 148 „ Chapter 5: The Statistics Menu 315393-E. The number of RADIUS Accounting Update frames.SP dead Description The number of WAP session add requests via TPCP. The number of WAP session delete requests via RADIUS snooping. RADIUS Snooping stats: acct reqs acct wrap reqs The number of RADIUS Accounting frames received. The number of wrapped RADIUS Accounting frames received.

Number of session bindings currently in use (the last 4 and 64 seconds).0 Command Reference /stats/slb/maint SLB Maintenance Statistics SLB Maintenance stats: Maximum sessions: Current sessions: 4 second average: 64 second average: Terminated sessions: Allocation failures: TCP fragments: UDP datagrams: Non TCP/IP frames: Incorrect VIPs: Incorrect Vports: No available real server: Backup server activations: Overflow server activations: Filtered (denied) frames: LAND attacks: Total IP fragment sessions: Current IP fragment sessions IP fragment discards: IP fragment table full: 2097104 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 SLB Maintenance statistics are described in the following table. TCP Fragments UDP Datagrams Non TCP/IP Frames Incorrect VIPs Indicates the number of TCP fragments encountered by the switch. Allocation Failures Indicates instances where the Switch ran out of available sessions for a port. Indicates that the virtual server IP address and MAC are receiving UDP frames when UDP balancing is not turned on. Indicates the number of non-IP based frames received by the virtual server. Table 5-39 Server Load Balancing Maintenance Statistics (/stats/slb/maint) Statistic Maximum sessions Current Sessions Description The maximum number of simultaneous sessions supported. depending on configuration.Alteon OS 21. Chapter 5: The Statistics Menu 315393-E. October 2003 „ 149 . Layer 4 processing might not handle TCP fragments. Terminated Sessions Number of sessions removed from the session table because the server assigned to them failed and graceful server failure was not enabled. Indicates the number of times the switch received a Layer 4 request for a virtual server which was not configured.

but it may be an indication of a potential security probing application like SATAN. The number of fragmented packets that are discarded due to lack of resources. No Server Available This dropped frames counter indicates that all real servers are either out of service or at their maxcon limit. /stats/slb/clear Clearing the SLB Statistics The following statistics are reset to zero when the clear command is given and confirmed: Table 5-40 SLB Statistics Reset (/stats/slb/clear) Statistics Real server stats: Description Health check failures Total sessions Highest sessions Octets 150 „ Chapter 5: The Statistics Menu 315393-E.0 Command Reference Table 5-39 Server Load Balancing Maintenance Statistics (/stats/slb/maint) Statistic Incorrect Vports Description This dropped frames counter indicates that the virtual server has received frames for TCP/UDP services that have not been configured. Normally this indicates a mis-configuration on the virtual server or the client. This represents the current number of fragment sessions. This counter increases whenever a packet has the same source and destination IP addresses and ports. This represents the total number of fragment sessions the switch has processed so far.Alteon OS 21. This counter indicates how many times session table is full. This indicates the number of frames that were dropped because they matched an active filter with the deny action set. Backup Server Activations Overflow Server Activations Filtered (Denied) Frames LAND attacks Total IP fragment sessions Current IP fragment sessions IP fragment discards IP fragment table full This indicates the number of times a real server failure has occurred and caused a backup server to be brought online. This indicates the number of times a real server has reached the maxcon limit and caused an overflow server to be brought online. October 2003 .

0 Command Reference Table 5-40 SLB Statistics Reset (/stats/slb/clear) Statistics Real server group stats: Description Total sessions Highest sessions Octets Total sessions Highest sessions Octets Total firings Real server stats: Octets. Total sessions Total firings: Octets Per real server: DNS handoffs HTTP redirects Per server group: DNS handoffs HTTP redirects Redir: Total cache server hits Total origin server hits Total none-GETs hits Total ’Cookie: ’ hits Total no-cache hits LB: ID SLB String hits Total Sessions Highest Sessions Total FTP Total FTP NAT Filtered Total new active FTP NAT Index Total new FTP SLB parsing Index FTP Active FTP NAT ACK/SEQ diff FTP SLB parsing ACK/SEQ diff Health check failures Total sessions Highest sessions Octets Virtual server stats Filter stats SLB switch port stats. October 2003 „ 151 . per port Global SLB stats URL SLB and Redirection stats SSL SLB stats FTP SLB parsing and NAT stats Real server stats Chapter 5: The Statistics Menu 315393-E. Total sessions Real server group: Octets.Alteon OS 21. Total sessions Virtual server: Octets.

See page 156 for sample output. maint Displays bandwidth management maintenance statistics. October 2003 .BW Contract stats rcont . dump Displays all bandwidth management statistics.0 Command Reference Table 5-40 SLB Statistics Reset (/stats/slb/clear) Statistics Real server group stats Description Total sessions Highest sessions Octets Total sessions Highest sessions Octets Virtual server stats /stats/bwm BWM Statistics Menu [Bandwidth Management Statistics Menu] port . see page 153.Alteon OS 21.Clear BWM statistics Table 5-41 Bandwidth Management Statistics Menu Options (/stats/bwm) Command Syntax and Usage port <port number> Displays Switch Port Contract Statistics Menu. 152 „ Chapter 5: The Statistics Menu 315393-E.Switch Port Contract Stats Menu cont . See page 154 for details.Dump all BWM statistics clear . cont <BW Contract number (1-256)> Displays bandwidth management contract statistics. To view menu options.BW History stats maint .BW Contract rate stats hist . hist Displays bandwidth management history statistics.Show BWM maint statistics dump . rcont <BW Contract number (1-256)> Displays bandwidth management contract rate statistics. See page 155 for details. See page 158 for sample output.

--------------. October 2003 „ 153 .---------.-----1 cont1 40465360 262049256 0 16320 2 cont2 0 0 0 16320 20 cont20 674252832 1798583472 16384 16320 26 cont26 0 0 0 16320 256 Default 772710 0 0 16320 Chapter 5: The Statistics Menu 315393-E. /stats/bwm/port <port number> BWM Switch Processor Statistics [Bandwidth Management Port Statistics Menu] cont .0 Command Reference Table 5-41 Bandwidth Management Statistics Menu Options (/stats/bwm) Command Syntax and Usage clear Clears all bandwidth management statistics.BW Contract stats rcont .---------. rcont <BW Contract number (1-256)> Displays bandwidth management contract rate statistics. See for a sample output.------.Alteon OS 21. /stats/bwm/port <port number>/cont BWM Switch Processor Contract Statistics Menu BW Contract statistics Contract Name Octets Discards BufUsed BufMax -------.BW Contract rate stats Table 5-42 Management Port Statistics Menu Options (/stats/bwm/sp) Command Syntax and Usage cont <BW Contract number (1-256)> Displays bandwidth management contract statistics.

------.Alteon OS 21.--------------. October 2003 . The contract name.------.---------. Discards 154 „ Chapter 5: The Statistics Menu 315393-E.---------. The number of octets that are being discarded because of seeing more traffic than the bandwidth contract limit permits.0 Command Reference /stats/bwm/port <port number>/rcont BWM Switch Processor Rate Contract Statistics BW Contract statistics Contract Name Rate(Kbps) Octets Discards BufUsed BufMax -------.-----1 cont1 223868832 568900584 16384 456960 2 cont2 0 0 0 456960 20 cont20 224149728 568632456 16384 456960 25 cont25 0 0 0 456960 26 cont26 0 0 0 456960 256 Default 401270 0 0 456960 The following description of statistics applies on a specific SP (switch processor-equivalent to switch port) for all contracts irrespective of whether the contract is enabled or disabled.--------------.---------.---------.---------. Table 5-43 Bandwidth Management Contract Statistics (/stats/bwm/cont) Statistics Contract Name Octets Description The contract number. The number of octets that are being transmitted through a particular contract since the switch is booted.----1 cont1 0 40465360 262049256 0 16320 2 cont2 0 0 0 0 16320 20 cont20 5230 682947936 1822133376 16384 16320 26 cont26 0 0 0 0 16320 256 Default 0 773974 0 0 16320 1 cont1 0 40465360 262049256 0 16320 2 cont2 0 0 0 0 16320 20 cont20 5238 684289056 1825753104 16384 16320 26 cont26 0 0 0 0 16320 256 Default 0 774114 0 0 16320 /stats/bwm/cont <contract number> BWM Contract Statistics BW Contract statistics Contract Name Octets Discards BufUsed BufMax -------.

---------.---------.----1 cont1 5222 285408288 735607152 16384 456960 2 cont2 0 0 0 0 456960 20 cont20 5238 285720864 735308784 16384 456960 26 cont26 0 0 0 0 456960 256 Default 4 517182 0 0 456960 1 cont1 5230 286747296 739228896 16384 456960 2 cont2 0 0 0 0 456960 20 cont20 5230 287059872 738930528 16384 456960 26 cont26 0 0 0 0 456960 256 Default 8 519400 0 0 456960 1 cont1 5222 288084192 742853160 16384 456960 2 cont2 0 0 0 0 456960 20 cont20 5238 288400992 742550760 16384 456960 26 cont26 0 0 0 0 456960 256 Default 8 521578 0 0 456960 Table 5-44 Bandwidth Management Contract Rate Statistics (/stats/bwm/rcont) Statistics Contract Name Rate (in Kbps) Description The contract number. Rate at which the packets are going out of the switch on a particular contract. BW Contract statistics Contract Name Rate(Kbps) Octets Discards BufUsed BufMax -------. The switch starts dropping the packets of a particular contract after the maximum buffer space allocated for that contract is being occupied.---------. Maximum buffer space that can be used to store the packets before they can be transmitted. The contract name. October 2003 „ 155 .------. Chapter 5: The Statistics Menu 315393-E. BufMax /stats/bwm/rcont BWM Contract Rate Statistics Use this command to show the rate statistics of all the enabled contracts.Alteon OS 21.0 Command Reference Table 5-43 Bandwidth Management Contract Statistics (/stats/bwm/cont) Statistics BufUsed Description The current amount of buffer space used to store the packets that is waiting to be transmitted.--------------.

124 1 filter_number01 0 0 20030910:15:11/ -8:00 47.23.23.23.124 8 filter_number08 0 0 20030910:15:11/ -8:00 47.80.---.0 Command Reference Table 5-44 Bandwidth Management Contract Rate Statistics (/stats/bwm/rcont) Statistics Octets Description The number of octets that are being transmitted through a particular contract since the switch is booted.---------.23.124 3 filter_number03 0 0 20030910:15:11/ -8:00 47.124 9 filter_number09 0 0 20030910:15:11/ -8:00 47. The current amount of buffer space used to store the packets that is waiting to be transmitted.80.80.124 256 Default 608 0 20030910:15:11/ -8:00 Switch IP Cont Name Octets You can dump the stats kept in the SMTP history buffer that get dumped periodically when an E-mail is sent.124 6 filter_number06 0 0 20030910:15:11/ -8:00 47.---------------.124 7 filter_number07 0 0 20030910:15:11/ -8:00 47. The switch starts dropping the packets of a particular contract after the maximum buffer space allocated for that contract is being occupied. This command is used to keep long term history only for the contracts that are enabled and have history command turned on.124 5 filter_number05 0 0 20030910:15:11/ -8:00 47. The number of octets that are being discarded because of seeing more traffic than the bandwidth contract limits.80.23.80.80.124 2 filter_number02 0 0 20030910:15:11/ -8:00 47.23.---------.Alteon OS 21. 156 „ Chapter 5: The Statistics Menu 315393-E.---------47.23.80. October 2003 .124 4 filter_number04 0 0 20030910:15:11/ -8:00 47.80. Maximum buffer space that can be used to store the packets before they can be transmitted.23.23.80.23.23.124 10 filter_number10 0 0 20030910:15:11/ -8:00 47.80.80. Discards BufUsed BufMax /stats/bwm/hist BWM History Statistics Discards TimeStamp YyyyMmDd:Hr:Mi/TmZone --------------.

The number of octets sent out on a particular contract. TimeStamp Chapter 5: The Statistics Menu 315393-E.Alteon OS 21.0 Command Reference Use this command to show the history of all the contracts for which history command is enabled. The sampling is done at one-minute intervals. The number of octets discarded because of seeing more traffic than the bandwidth contract limit permits. Indicates the time the packets were received or discarded. October 2003 „ 157 . Table 5-45 Bandwidth Management History Statistics (/stats/bwm/hist) Statistics Contract Octets Discards Description The contract number for which history is enabled.

Show Packet stats tcb . to check for leads and load.Alteon OS 21. tcb Displays all TCP control blocks that are in use. To view a sample output and a description of the stats.0 Command Reference /stats/bwm/maint BWM Maintenance Statistics BWM Maint statistics -----------------------------------------------------------------Maint Stats for rate limiting contracts Discard pkts 0 Discard octets 0 Out pkts 35932 Out octets 4015993 Transmit failed 0 -----------------------------------------------------------------Maint Stats for traffic shaping contracts QFull Discard pkts 0 QFull Discard octets 0 Out of buffers pkts 0 Out of buffers pkts 0 Transmit failed 0 TDT set when qfull 0 TDT set between soft and hard 0 TDT set at soft 0 /stats/mp Management Processor Statistics [MP-specific Statistics Menu] pkt .Show All TCP control blocks in use ucb .Show All Socket FD in use cpu .Show All UDP control blocks in use sfd . October 2003 . To view a sample output and a description of the stats.Show CPU utilization Table 5-46 Management Processor Statistics Menu Options (/stats/mp) Command Syntax and Usage pkt Displays packet statistics. 158 „ Chapter 5: The Statistics Menu 315393-E. see page 161. see page 159.

4. To view a sample output and a description of the stats. and 64 seconds. see page 161.0 Command Reference Table 5-46 Management Processor Statistics Menu Options (/stats/mp) Command Syntax and Usage ucb Displays all UDP control blocks that are in use. To view a sample output. see page 162. Description frees mediums jumbos Chapter 5: The Statistics Menu 315393-E. Total number of packet allocations with size between 128 to 1536 bytes from the packet buffer pool by the TCP/IP protocol stack. sfd Displays all Socket File Descriptors that are in use. Total number of packet allocations with size between 1536 bytes to 9K bytes from the packet buffer pool by the TCP/IP protocol stack. cpu Displays CPU utilization for periods of up to 1. /stats/mp/pkt MP Packet Statistics Packet counts: allocs: mediums: jumbos: smalls: alloc fails: TCP counts: allocs: current: alloc fails: 89262 0 0 0 0 4866 46 0 frees: mediums hi-watermark: jumbos hi-watermark: smalls hi-watermark: packet discards: frees: current hi-watermark: alloc discards: 89262 4 0 4 0 4827 146 0 Table 5-47 Packet Statistics (/stats/mp/pkt) Statistics Packet counts: allocs Total number of packet allocations from the packet buffer pool by the TCP/IP protocol stack. October 2003 „ 159 . see page 162. To view a sample output. Total number of times the packet buffers are freed (released) to the packet buffer pool by the TCP/IP protocol stack.Alteon OS 21.

Total number of packets freed from the packet buffer pool by the TCP/IP protocol stack.Alteon OS 21. packet discards The number of packets that are discarded by the MP. Total number of TCP packet allocations from MP memory by the TCP/IP protocol stack. alloc fails frees mediums hi-watermark jumbos hi-watermark The highest number of packet allocation with size between 1536 bytes to 9K bytes from the packet buffer pool by the TCP/IP protocol stack. The highest number of TCP packet allocation from MP memory by the TCP/IP protocol stack. Total number of TCP packet allocation failures from MP memory by the TCP/IP protocol stack. The number of TCP packets that are discarded by the MP. TCP counts: allocs Total number of TCP packet allocations from MP memory by the TCP/IP protocol stack. current alloc fails frees current hi-watermark alloc discards 160 „ Chapter 5: The Statistics Menu 315393-E. The packets are discarded because MP memory resources are not available. The packets are discarded because buffer resources are not available or the buffer threshold is reached and the low priority packets are discarded. October 2003 . smalls hi-watermark The highest number of packet allocation with size less than 128 bytes from the packet buffer pool by the TCP/IP protocol stack. Total number of times the TCP packet buffers are freed (released) to MP memory by the TCP/IP protocol stack. Total number of packet allocation failures from the packet buffer pool by the TCP/IP protocol stack. The highest number of packet allocation with size between 128 to 1536 bytes from the packet buffer pool by the TCP/IP protocol stack.0 Command Reference Table 5-47 Packet Statistics (/stats/mp/pkt) Statistics smalls Description Total number of packet allocations with size less than 128 bytes from the packet buffer pool by the TCP/IP protocol stack.

27.81.0.0.23.0.0.0.0/47.27.243 80/23 listen/established Description Memory Destination IP address Destination port Source IP Source port State /stats/mp/ucb UCB Statistics All UDP allocated control blocks: 161: listen 1985: listen 3122: listen Table 5-49 UCB Statistics on MP (/stats/mp/ucb) Field 161/1985/3122 Listen Description UDP port number State Chapter 5: The Statistics Menu 315393-E.0/47.5 0/1171 0.80.0 10ad5790: 47.0 0 <=> 0.Alteon OS 21.80.0.0.5 1171 <=> 47.23.243 80 23 listen established Table 5-48 MP Specified TCP Statistics (/stats/mp/tcb) Statistics 10ad41e8/10ad5790 0.0 Command Reference /stats/mp/tcb TCP Statistics All TCP allocated control blocks: 10ad41e8: 0. October 2003 „ 161 .81.0.

0.129. /stats/sp <SP Number> SP Specific Statistics [SP-specific Statistics Menu] maint . The percentage of CPU utilization over a 64 second interval.0.133. CPU utilization: cpuUtil1Second: cpuUtil4Seconds: cpuUtil64Seconds: 100% 100% 100% Table 5-50 CPU Statistics (stats/mp/cpu) Statistics cpuUtil1Second cpuUtil4Seconds cpuUtil64Seconds Description The percentage of CPU utilization over a one second interval.161 23 listen TCP server fdi=2 fd=17 pfdi=1 10c27c78: 47.161 80 listen TCP server fdi=1 fd=16 pfdi=-1 10b9564c: 0.Show maintenance stats clear .Show CPU utilization 162 „ Chapter 5: The Statistics Menu 315393-E.0 Command Reference /stats/mp/sfd MP-Specific SFD Statistics All Socket FD allocated: max_fdi=2 fdi=0 fd=15 pfdi=-1 10c27fd8: 0.108.108.0.133.153. October 2003 .161 23 accept TCP server /stats/mp/cpu CPU Statistics This menu option enables you to display the CPU utilization statistics.0.150 5341<=>47. The percentage of CPU utilization over a four second interval.Alteon OS 21.133.Clear maintenance stats cpu .0 0<=>47.0 0<=>47.108.

October 2003 „ 163 . See page 163 for a sample output. /stats/sp <SP number>/maint SP-Specific Maintenance Statistics Maintenance statistics for SP 1: Receive Letter success from MP: 318730 Receive Letter success from SP 2: 0 Receive Letter success from SP 3: 0 Receive Letter success from SP 4: 0 Receive Letter errors from MP: 0 Receive Letter errors from SP 2: 0 Receive Letter errors from SP 3: 0 Receive Letter errors from SP 4: 0 Send Letter success to MP: 224822 Send Letter success to SP 2: 0 Send Letter success to SP 3: 0 Send Letter success to SP 4: 0 Send Letter failures to MP: 0 Send Letter failures to SP 2: 0 Send Letter failures to SP 3: 0 Send Letter failures to SP 4: 0 learnErrNoddw: 0 resolveErrNoddw: ageMPNoddw: 0 deleteMiss: pfdbFreeEmpty: 0 arpDiscards: 0 icmpDiscards: tcpDiscards: 0 udpDiscards: 0 0 0 0 Chapter 5: The Statistics Menu 315393-E. Displays what percentage of the CPU has been utilized. Deletes all the maintenance statistics.0 Command Reference Table 5-51 SP Specific Statistics (/stats/sp) Statistics maint clear cpu Description Indicates the total number of all the letter statistics received or sent from this SP.Alteon OS 21.

164 „ Chapter 5: The Statistics Menu 315393-E. see page 167.Show pattern match group statistics ratelim . udpblast Displays the UDP Blast statistics menu. see page 165.IP Address ACL Statistics Menu udpblast .DoS Attack Statistics Menu ipacl .Show rate limiting statistics dump . To view a sample output and a description of the statistics. To view a sample output and a description of the stats. see page 168. see page 166.Dump all security statistics Command Syntax and Usage dos Displays the DOS Attack statistics menu. pgroup Displays the Pattern Match Group statistics menu. ipacl Displays the IP Address Access Control List statistics menu. To view a sample output and a description of the stats.UDP Blast Statistics Menu pgroup . October 2003 . To view a sample output and a description of the statistics. dump Displays all security statistics. To view a sample output and a description of the statistics.Alteon OS 21. ratelim Displays the Rate Limiting statistics menu.0 Command Reference /stats/security Security Statistics [Security Statistics Menu] dos . see page 166.

Xmascan. Nullscan. help Displays a description of each type of DOS attack by name and how it works. Nullscan. see “Types of DOS Attacks” on page 165.Clear all DoS attack statistics help . LandAttack. Enable DOS protection on ports connected to any network that could be the source of an attack. Fraggle. and ScanSynFin. clear Deletes all DOS attack statistics. October 2003 „ 165 . LandAttack. dump Displays the number of times the packets were dropped on the switch. Chapter 5: The Statistics Menu 315393-E. Refer to your Alteon OS Application Guide for a detailed description of DOS attacks. Xmascan. Blat For a description of these different types of DOS attacks.Dump all DoS attack statistics clear .DoS attack statistics description Table 5-52 DOS Attacks Statistics Menu Options (/stats/security/dos) Command Syntax and Usage port <port number> Displays the number of times the packets were dropped for each of the following types of DOS attacks.Alteon OS 21. PortZero. on the selected port only. ScanSynFin.Port DoS attack statistics dump . Types of DOS Attacks Alteon OS can protect switch ports against a variety of Denial of Service (DOS) attacks including Port Smurf. for each of the following types of DOS attacks: Smurf. You can use the help command to obtain a brief explanation of each type of DOS attack detected by the switch. Fraggle.0 Command Reference /stats/security/dos DOS Attack Statistics Menu [DoS Attack Statistics Menu] port . PortZero.

/stats/security/udpblast UDP Blast Statistics [UDP Blast Statistics Menu] dump . Nullscan: TCP sequence number is zero and all control bits are zeros. URG and PSH bits are set. Xmascan: TCP sequence number is zero and the FIN.IP address access control Stats clear .Clear all access control Stats Table 5-53 IPACL Security Statistics Menu Options (/stats/security/ipacl) Command Syntax and Usage dump Displays the accumulated blocked packets for each IP address and mask pair. LandAttack: Packets with source IP equal destination IP. ScanSynFin: SYN and FIN bits are set in the packet.x.x. October 2003 .255). PortZero: TCP/UDP Packets with either source/destination port is zero.Alteon OS 21.0 Command Reference >> /stats/security/dos help Smurf: The ICMP ping request to a broadcast destination IP(x.x.x. Fraggle: The UDP packet to a broadcast destination IP(x. Blat: TCP packets with SIP!=DIP and SPORT=DPORT.Clear all UDP Blast Stats 166 „ Chapter 5: The Statistics Menu 315393-E.255). clear Deletes all the statistics of accumulated blocked packets.UDP Blast Stats clear . /stats/security/ipacl IP Access Control List Statistics The following IP Access Control List statistics can be viewed with this command: [IP ACL Statistics Menu] dump .

clear Deletes all the accumulated blocked packets.0 Command Reference Table 5-54 UDP Blast Statistics Menu Options (/stats/security/udpblast) Command Syntax and Usage dump Displays all the accumulated blocked packets for each port. See page 167 for a sample output and a description of the statistics. and the current packet rate per second.Alteon OS 21. /stats/security/udpblast/dump UDP Blast Dump Statistics UDP blast protection stats: UDP Port Blocked Packets ------------------------Current Packet Rate/Second -------------------------- Table 5-55 UDP Blast Dump Statistics Parameters (/stats/security/udpblast/dump) Field UDP Port Blocked Packets Current Packet Rate/ Second Description UDP ports that experienced UDP blast attacks. October 2003 „ 167 . Pattern groups are configured in the “Pattern Matching Menu” on page 278. The number of blocked packets. Displays the current rate of packet to the UDP port. Chapter 5: The Statistics Menu 315393-E. /stats/security/pgroup UDP Pattern Match Statistics Pattern Match Group stats: ID Name 1 Hits 0 This menu displays how many times each configured pattern group has been matched and a subsequent filtering action performed.

0 Command Reference /stats/security/ratelim Rate Limiting Statistics Rate limiting stats: TCP: Total hold downs triggered: Current per-client state entries: UDP: Total hold downs triggered: Current per-client state entries: ICMP: Total hold downs triggered: Current per-client state entries: 0 0 0 0 0 0 Table 5-56 Rate Limiting Statistics (/stats/security/ratelim) Field Total holds down triggered Current per-client state entries Description The total number of packets dropped after the hold-down period expired. The total number of per-client state entries for TCP/UDP/ICMP rate limiting. October 2003 . 168 „ Chapter 5: The Statistics Menu 315393-E.Alteon OS 21.

0 Command Reference /stats/security/dump Dump Statistics for Security IP ACL stats: Address Blocked Packets ---------------------------------------------------------------------------------------------UDP blast protection stats: UDP Port Blocked Packets Current Packet Rate/Second ------------------------------------------------------------------------------------------------------------------Pattern Match Group stats: ID Name Hits 1 0 100 0 101 0 -----------------------------------------------------------------Rate limiting stats: TCP: Total hold downs triggered: Current per-client state entries: UDP: Total hold downs triggered: Current per-client state entries: ICMP: Total hold downs triggered: Current per-client state entries: 0 0 0 0 0 0 Chapter 5: The Statistics Menu 315393-E.Alteon OS 21. October 2003 „ 169 .

The total number of SNMP Messages.209). which were delivered to the SNMP protocol entity and were for an unsupported SNMP version. BER describes how to represent or encode values of each ASN.1 or BER errors encountered by the SNMP protocol entity when decoding SNMP Messages received. defined in X. snmpInBadVersions snmpInBadC’tyNames snmpInBadC’tyUses snmpInASNParseErrs 170 „ Chapter 5: The Statistics Menu 315393-E. The total number of ASN.1 type as a string of eight-bit octets.208).1 is a flexible notation that allows one to define a variety of data types. from simple types such as integers and bit strings to structured types such as sets and sequences. ASN.1 (Abstract Syntax Notation One. The total number of SNMP Messages delivered to the SNMP protocol entity which represented an SNMP operation which was not allowed by the SNMP community named in the Message. Note: OSI’s method of specifying abstract objects is called ASN. defined in X.0 Command Reference /stats/snmp SNMP Statistics SNMP statistics: snmpInPkts: snmpInBadC’tyNames: snmpInASNParseErrs: snmpOutPkts: snmpInTooBigs: snmpInBadValues: snmpInGenErrs: snmpInTotalSetVars: snmpInGetNexts: snmpInGetResponses: snmpOutTooBigs: snmpOutBadValues: snmpOutGenErrs: snmpOutGetNexts: snmpOutGetResponses: 9592 0 0 9592 0 0 0 0 5676 0 0 0 0 0 9592 snmpInBadVersions: snmpInBadC’tyUses: snmpEnableAuthTraps: snmpInBadTypes: snmpInNoSuchNames: snmpInReadOnlys: snmpInTotalReqVars: snmpInGetRequests: snmpInSetRequests: snmpInTraps: snmpOutNoSuchNames: snmpOutReadOnlys: snmpOutGetRequests: snmpOutSetRequests: snmpOutTraps: 0 0 0 0 0 0 15268 3916 0 0 0 0 81814 0 0 Table 5-57 SNMP Statistics (/stats/snmp) Statistics snmpInPkts Description The total number of Messages delivered to the SNMP entity from the transport service.Alteon OS 21. and one set of rules for representing such objects as strings of ones and zeros is called the BER (Basic Encoding Rules. The total number of SNMP Messages delivered to the SNMP entity which used an SNMP community name not known to the said entity (the switch). October 2003 .

snmpInBadTypes snmpInTooBigs snmpInNoSuchNames snmpInBadValues snmpInReadOnlys snmpInGenErrs snmpInTotalReqVars snmpInTotalSetVars snmpInGetRequests snmpInGetNexts snmpInSetRequests Chapter 5: The Statistics Menu 315393-E. which have been accepted and processed by the SNMP protocol entity. The total number of SNMP Messages which were passed from the SNMP protocol entity to the transport service. As such. The total number of SNMP Protocol Data Units (PDUs) which were delivered to the SNMP protocol entity and for which the value of the error-status field is noSuchName. which have been accepted and processed by the SNMP protocol entity. which were delivered to the SNMP protocol entity and for which the value of the error-status field is ‘read-Only’. It should be noted that it is a protocol error to generate an SNMP PDU.0 Command Reference Table 5-57 SNMP Statistics (/stats/snmp) Statistics snmpEnableAuth Traps snmpOutPkts Description An object to enable or disable the authentication traps generated by this entity (the switch). which were delivered to the SNMP protocol entity and for which the value of the error-status field is genErr. this object is provided as a means of detecting incorrect implementations of the SNMP. The total number of MIB objects which have been retrieved successfully by the SNMP protocol entity as a result of receiving valid SNMP GetRequest and Get-Next Protocol Data Units (PDUs). The total number of SNMP Get-Request Protocol Data Units (PDUs). The total number of SNMP Get-Next Protocol Data Units (PDUs). The total number of SNMP Protocol Data Units (PDUs). which have been accepted and processed by the SNMP protocol entity. which contains the value ‘read-Only’ in the error-status field. which have been altered successfully by the SNMP protocol entity as a result of receiving valid SNMP SetRequest Protocol Data Units (PDUs). The total number of valid SNMP Protocol Data Units (PDUs). The total number of MIB objects. The total number of SNMP Protocol Data Units (PDUs) which were delivered to the SNMP protocol entity and for which the value of the error-status field is too big. The total number of SNMP Set-Request Protocol Data Units (PDUs).Alteon OS 21. October 2003 „ 171 . The total number of SNMP Messages which failed ASN parsing. The total number of SNMP Protocol Data Units (PDUs) which were delivered to the SNMP protocol entity and for which the value of the error-status field is badValue.

which have been accepted and processed by the SNMP protocol entity. which were generated by the SNMP protocol entity and for which the value of the errorstatus field is badValue. which have been accepted and processed by the SNMP protocol entity. which have been generated by the SNMP protocol entity. The total number of SNMP Get-Next Protocol Data Units (PDUs). which have been generated by the SNMP protocol entity. The total number of SNMP Protocol Data Units (PDUs). which have been generated by the SNMP protocol entity. which have been generated by the SNMP protocol entity. which have been generated by the SNMP protocol entity. The total number of SNMP Protocol Data Units (PDUs). October 2003 . Not in use. which were generated by the SNMP protocol entity and for which the value of the errorstatus is noSuchName. The total number of SNMP Trap Protocol Data Units (PDUs).Alteon OS 21. which were generated by the SNMP protocol entity and for which the value of the errorstatus field is genErr. snmpInTraps snmpOutTooBigs snmpOutNoSuchNames snmpOutBadValues snmpOutReadOnlys snmpOutGenErrs snmpOutGetRequests snmpOutGetNexts snmpOutSetRequests snmpOutGet Responses snmpOutTraps 172 „ Chapter 5: The Statistics Menu 315393-E.0 Command Reference Table 5-57 SNMP Statistics (/stats/snmp) Statistics snmpInGetResponses Description The total number of SNMP Get-Response Protocol Data Units (PDUs). The total number of SNMP Set-Request Protocol Data Units (PDUs). which were generated by the SNMP protocol entity and for which the value of the errorstatus field is too big. The total number of SNMP Protocol Data Units (PDUs). The total number of SNMP Get-Request Protocol Data Units (PDUs). The total number of SNMP Trap Protocol Data Units (PDUs). The total number of SNMP Get-Response Protocol Data Units (PDUs). The total number of SNMP Protocol Data Units (PDUs).

The total number of outgoing packets successfully transferred by the interface. RX packets RX errors RX dropped RX overruns RX frame errors RX multicast TX bytes TX packets TX errors TX dropped TX overruns TX carrier errors Chapter 5: The Statistics Menu 315393-E. The number of incoming packets that were dropped due to lack of receive buffers. The number of incoming packets dropped due to IP framing errors. The number of received packets that were dropped because their size exceeded that of the receive queue. Not applicable. The number of bad packets received.0 Command Reference /stats/mgmt Management Port Statistics Management port interface RX bytes: RX packets: RX errors: RX dropped: RX overruns: RX frame errors: RX multicast: statistics: 0 TX bytes: 0 TX packets: 0 TX errors: 0 TX dropped: 0 TX overruns: 0 TX carrier errors: 0 TX collisions: 0 0 0 0 0 0 0 Table 5-58 Management Port Statistics (/stats/mgmt) Statistics RX bytes Description The total number of incoming bytes successfully transferred by the interface. The total number of outgoing bytes successfully transferred by the interface. The number of packets dropped because size exceeded that of the transmit queue. October 2003 „ 173 . The number of packets dropped due to lack of transmit buffers.Alteon OS 21. The number of multicast packets received. The total number of incoming packets successfully transferred by the interface. The number of packets dropped due to transmission problems.

0 Command Reference Table 5-58 Management Port Statistics (/stats/mgmt) Statistics TX collisions Description The number of collisions due to congestion on the medium. Collisions occur when two or more stations are transmitting signals at the same time. If you want to capture dump data to a file. /stats/dump Dump Statistics Use the dump command to dump all switch statistics available from the Statistics Menu (40K or more.Alteon OS 21. depending on your configuration). 174 „ Chapter 5: The Statistics Menu 315393-E. October 2003 . This data can be used to tune or debug switch performance. set your communication software on your workstation to capture session data prior to issuing the dump commands.

Server Load Balancing (Layer 4-7) Menu security .Port Mirroring Menu bwm .Security Menu setup . although not new.Bandwidth Management Menu l2 .Step by step configuration set up dump . see page 179.Layer 2 Menu l3 .Backup current configuration to tftp server gtcfg . To view menu options. October 2003 .Layer 3 Menu slb . Many of the commands.System-wide Parameter Menu port . 175 315393-E.CHAPTER 6 The Configuration Menu This chapter discusses how to use the Command Line Interface (CLI) for making.Dump current configuration to script file ptcfg . /cfg Configuration Menu [Configuration Menu] sys . port <port number> Displays the Port Configuration Menu. and saving switch configuration changes. the menu options under the Server Load Balancing Menu (/cfg/slb) are in Chapter 7.Port Menu pmirr . see page 197. Important difference are called out in the text. display more or different information than in the previous version.Restore current configuration from tftp server Table 6-1 Configuration Menu Options (/cfg) Command Syntax and Usage sys Displays the System Configuration Menu. viewing. To view menu options. To make finding information easier.

setup Step-by-step configuration set-up of the switch. see page 226. To view menu options. see page 282. see page 211. any changes are lost the next time the switch boots unless the changes are explicitly saved. “The SLB Configuration Menu”. For details. l2 Displays Layer 2 Configuration Menu.Alteon OS 21. To view menu options. To view menu options. For details. For details. see Chapter 7. see page 276. gtcfg <host name or IP address of TFTP server> <filename on host> Restores current configuration from TFTP server. Applying. ptcfg <host name or IP address of TFTP server> <filename on host> Backs up current configuration to TFTP server. To view menu options. All changes are considered “pending” until you explicitly apply them. see page 217. see page 212. October 2003 . you can do the following: „ „ „ View the pending changes Apply the pending changes Save the changes to flash memory 176 „ Chapter 6: The Configuration Menu 315393-E. see page 281. To view menu options. dump Dumps current configuration to a script file. the changes you make do not take effect immediately. security Displays security menu. bwm Displays the Bandwidth Management Configuration Menu. To view menu options. and Saving Changes As you use the configuration menus to set switch parameters.0 Command Reference Table 6-1 Configuration Menu Options (/cfg) Command Syntax and Usage pmirr Displays the Mirroring Configuration Menu. Also. see page 282. For details. l3 Displays Layer 3 Configuration Menu. see page 281. While configuration changes are in the pending state. slb Displays the Server Load Balancing Configuration Menu. Viewing.

Alteon OS 21. except for starting Spanning Tree Protocol. you can save them to flash memory on the Alteon Application Switch. NOTE – The diff command is a global command. Applying Pending Changes To make your configuration changes active. you must apply the changes. they will be lost the next time the system is rebooted. Saving the Configuration In addition to applying the configuration changes. Therefore. you must apply them. October 2003 „ 177 . you can enter apply at any prompt in the administrative interface. save them (see below). you can enter diff at any prompt in the CLI. To turn STP on or off. enter apply at any prompt in the CLI. # apply NOTE – The apply command is a global command. To apply configuration changes.0 Command Reference Viewing Pending Changes You can view all pending configuration changes by entering diff at the menu prompt. Therefore. NOTE – If you do not save the changes. enter the following command at any CLI prompt: # save Chapter 6: The Configuration Menu 315393-E. and then reset the switch (see “Resetting the Switch” on page 360). NOTE – All configuration changes take effect immediately when applied. To save the new configuration.

For instructions on selecting the configuration to run at the next system reset. Your options include: „ „ „ The active configuration block The backup configuration block Factory default configuration You can view all pending configuration changes that have been applied but not saved to flash memory using the diff flash command. It is a global command that can be executed from any menu. see “Selecting a Configuration Block” on page 359.Alteon OS 21.0 Command Reference When you save configuration changes. If you do not want the previous configuration block copied to the backup configuration block. 178 „ Chapter 6: The Configuration Menu 315393-E. the changes are saved to the active configuration block. The configuration being replaced by the save is first copied to the backup configuration block. October 2003 . enter the following instead: # save n You can decide which configuration you want to run the next time you reset the switch.

To view menu options. see page 181. sshd Displays the SSH Server Menu. see page 185. To view menu options.Alteon OS 21. see page 188. mmgmt Displays Management Port Menu. and management access list. October 2003 „ 179 . To view menu options. To view menu options. see page 187. Web-based management settings. Table 6-2 System Configuration Menu Options (/cfg/sys) Command Syntax and Usage syslog Displays the Syslog Menu. see page 182. radius Displays the RADIUS Authentication Menu. ntp Displays the Network Time Protocol (NTP) Server Menu. To view menu options. Chapter 6: The Configuration Menu 315393-E.0 Command Reference /cfg/sys System Configuration [System Menu] syslog mmgmt sshd radius ntp sonmp ssnmp health access date time idle notice bannr smtp hprompt bootp cur Syslog Menu Management Port Menu SSH Server Menu RADIUS Authentication Menu NTP Server Menu SONMP Menu System SNMP Menu System Health Check Menu System Access Menu Set system date Set system time Set timeout for idle CLI sessions Set login notice Set login banner Set SMTP host Enable/disable display hostname (sysName) in CLI prompt Enable/disable use of BOOTP Display current system-wide parameters This menu provides configuration of switch management parameters such as user and administrator privilege mode passwords.

the switch will query its BOOTP server for all of the switch IP parameters. 180 „ Chapter 6: The Configuration Menu 315393-E. the login banner is displayed. cur Displays the current system parameters. ssnmp Displays the System SNMP Menu. To view menu options. hprompt disable|enable Enables or disables displaying of the host name (system administrator’s name) in the Command Line Interface (CLI). It is also displayed as part of the output from the /info/sys command. To view menu options. affects both console and Telnet> Sets the idle timeout for CLI sessions. October 2003 . date Prompts the user for the system date. bannr <string. This notice can contain up to 1024 characters and new lines. To view menu options. access Displays System Access Menu. see page 193.0 Command Reference Table 6-2 System Configuration Menu Options (/cfg/sys) Command Syntax and Usage sonmp Displays the SynOptics Network Management Protocol (SONMP) menu. see page 190. smtp <SMTP host name or IP address> Sets the Simple Mail Transfer Protocol (SMTP) host. If you enable BOOTP. This command is disabled by default. The default is 5 minutes. idle <idle timeout in minutes. time Configures the system time using a 24-hour clock format.Alteon OS 21. To view menu options. notice <max 1024 char multi-line login notice> <’-’ to end> Displays login notice immediately before the “Enter password:” prompt. which is used for sending bandwidth management history information. see page 192. health Displays system health check menu. maximum 80 characters> Configures a login banner of up to 80 characters. from 1 to 60 minutes. bootp disable|enable Enables or disables the use of BOOTP. When a user or administrator logs into the switch. see page 189.

see page 182.223)> Sets the IP address of the first syslog host.4. log all the seven severity levels. sever2 <syslog host local severity (0–7)> This option sets the severity level of the second syslog host displayed.0 Command Reference /cfg/sys/syslog System Host Log Configuration [Syslog Menu] host host2 sever sever2 facil facil2 console log cur Set IP address of first syslog host Set IP address of second syslog host Set the severity of first syslog host Set the severity of second syslog host Set facility of first syslog host Set facility of second syslog host Enable/disable console output of syslog messages Enable/disable syslogging of features Display current syslog settings Table 6-3 System Configuration Menu Options (/cfg/sys/syslog) Command Syntax and Usage host <new syslog host IP address (such as. console disable|enable Enables or disables delivering syslog messages to the console. Chapter 6: The Configuration Menu 315393-E.Alteon OS 21. or enable/disable syslog on all available features. For a detailed description of the seven levels of severity. sever <syslog host local severity (0–7)> This option sets the severity level of the first syslog host displayed. disabling console ensures the switch is not affected by syslog messages. filter).17.17. see page 182. The default is 7. which means. The default is 0. The default is 7. 192. log <feature|all> <enable|disable> Displays a list of features for which syslog messages can be generated. 192. facil <syslog host local facility (0-7)> This option sets the facility level of the first syslog host displayed.4. You can choose to enable/ disable specific features (such as vlans. gslb. The default is 0. For a detailed description of the seven levels of severity. October 2003 „ 181 . which means log all the seven severity levels.223)> Sets the IP address of the second syslog host. host2 <new syslog host IP address (such as. When necessary. It is enabled by default. cur Displays the current syslog settings. facil2 <syslog host local facility (0-7)> This option sets the facility level of the second syslog host displayed.

and default gateway. 182 „ Chapter 6: The Configuration Menu 315393-E. 2: Critical. the Management port saves consuming a port that could otherwise be used for processing data and traffic. the network ports have to perform all switch management (other than the switch management using the console). 4: Warning. You can change the defaults by configuring these features to permanently use the management port. If this port is disabled. 1: Alert. This means that the system has errors that should be corrected. This means that the condition of the system is normal but with significant conditions that need attention.0 Command Reference Seven Levels of Severity Following is the description of the seven levels of severity: 0: Emergency. This port manages the switch using either telnet CLI. SNMP. and must be enabled before it can be used. 7.Alteon OS 21. Debug. While the switch can be managed from any network port. This means that the system is working but giving out information about certain unfavorable conditions. This means that the system is giving out debug-level messages. October 2003 . broadcast address. This means that the system is unusable. The Management port must be configured with a static IP address. 5: Notice. 3: Error. This means the condition of the system is critical. This means that the system is giving a warning. by using the operational commands to set these options on a one-time basis. This port is isolated from and does not participate in the networking protocols that run on the network ports. or in some cases. or HTTP. 6: Informational. subnet mask. the factory default settings for some of the management features remain with the network ports. If this port is enabled. This means that corrective action must be taken immediately. /cfg/sys/mmgmt Management Port Configuration Menu The Management port is a Fast Ethernet port that is used exclusively to manage the switch.

101)> Sets the IP address. To view the menu options.0)> Sets the subnet mask.255.Management Port Phy Menu addr .0 Command Reference NOTE – This port does not support BOOTP.Set default port for RADIUS smtp .Set default port for NTP radius .Set default port for SNMP traps syslog . addr <IP address (such as.4.Set IP address mask .17. [Management Port Menu] port . intr <interval (0 . 192. October 2003 „ 183 . 255. The default is data port.Set number of failed attempts to declare gateway DOWN dns .17. Chapter 6: The Configuration Menu 315393-E.Set default IP for SONMP hello packets tftp .Set default gateway address intr .Set interval between gateway ping attempts retry . Default is data port.Set default port for TFTP ena .Set default port for SMTP snmp . see page 185.60 seconds)> Sets the interval between gateway ping attempts.4.255. dns default port mgmt|data Sets DNS over management or data port. retry <number of attempts (1-120> Sets the number of failed ping attempts before a gateway is declared DOWN. mask <subnet mask (such as.Set default port for DNS ntp .Disable management port cur .Enable management port dis . gw <gateway address (such as.Display current configuration Table 6-4 Management Port Configuration Menu Options (/cfg/sys/mmgmt) Command Syntax and Usage port Displays the management port link menu.Set default port for SYSLOG sonmp .Set subnet mask gw . 192.Alteon OS 21. ntp default port mgmt|data Sets NTP over management or data ports.1)> Sets the IP address for the default gateway.

Default is data port. Default is data port. Default is data port. But if it is set to data.Alteon OS 21. smtp default port mgmt|data Sets SMTP over management or data ports. 184 „ Chapter 6: The Configuration Menu 315393-E. October 2003 . Default is data port. cur Displays the current configuration. snmp default port mgmt|data Sets SNMP trap host over management or data ports. When this option is set to mgmt then the Management Port IP address is used in the SONMP hello packets transmitted by the switch. syslog default port mgmt|data Sets syslog host access over management or data ports. then the IP address of the data port interface specified by srcif (/cfg/sys/sonmp/srcif) command is used in the hello packets. dis Disables the Management port. tftp default port mgmt|data Sets TFTP over management or data port. Default is data port. sonmp default port mgmt|data Sets default IP address for SONMP hello packets.0 Command Reference Table 6-4 Management Port Configuration Menu Options (/cfg/sys/mmgmt) Command Syntax and Usage radius default port mgmt|data Sets RADIUS over management or data ports. ena Enables the Management port.

Set autonegotiation cur . and scp . Chapter 6: The Configuration Menu 315393-E. mode full|half|any Sets half or full duplex mode. cur Displays the current link configuration. It is widely used by network administrators to control Web and other kinds of servers remotely. Default is any. SSH is actually a suite of three utilities . By default this command is turned on. ssh. rsh.Alteon OS 21. and rcp. auto on|off Sets auto negotiation for the port. sometimes known as Secure Socket Shell. October 2003 „ 185 .Set full or half duplex mode auto .that are secure versions of the earlier UNIX utilities. SSH commands are encrypted and secure in several ways. is a UNIX-based command interface and protocol for securely getting access to a remote computer.Display current link configuration Table 6-5 Management Port Link Menu Options (/cfg/sys/mgmt/port) Command Syntax and Usage speed 10|100|any Sets the speed of the link with the Management port. SSH uses RSA public key cryptography for both connection and authentication.slogin.0 Command Reference /cfg/sys/mmgmt/port Management Port Link Menu [Management Port Link Menu] speed .Set link speed mode . Both ends of the client/server connection are authenticated using a digital certificate. rlogin. Default is any. /cfg/sys/sshd SSH Server Configuration Menu Secure Shell (SSH). and passwords are protected by being encrypted.

Alteon OS 21. SSH scripts can be viewed by using the /cfg/dump command (see page 281). RSA server key generation starts immediately. When you enter this command. cur Displays the current SSH server configuration. When you enter this command. Table 6-6 System Configuration Menu Options (/cfg/sys/sshd) Command Syntax and Usage intrval <interval (0-24)> Sets the interval for generating the RSA server key. this menu enables Secure Shell access from any SSH client. dis Disables SCP. October 2003 . skeygen Generates the RSA server key. sshport <TCP port number> Sets the SSH server port number. scpadm Sets the Secure Copy (SCP)-only admin password. ena Enables SCP. 186 „ Chapter 6: The Configuration Menu 315393-E. on Enables the SSH server. hkeygen Generates the RSA host key.0 Command Reference [SSHD Menu] intrval scpadm hkeygen skeygen sshport ena dis on off cur - Set Interval for generating the RSA server key Set SCP-only admin password Generate the RSA host key Generate the RSA server key Set SSH server port number Enable the SCP apply and save Disable the SCP apply and save Turn SSH server ON Turn SSH server OFF Display current SSH server configuration For the Alteon Application Switch. RSA host key generation starts immediately.

before a RADIUS server authentication attempt is considered to have failed. between 1500 .Set RADIUS port retries .Display current RADIUS configuration Table 6-7 System Configuration Menu Options (/cfg/sys/radius) Command Syntax and Usage prisrv <IP address> Sets the primary RADIUS server address.Turn RADIUS authentication OFF cur . retries <RADIUS server retries (1-3)> Sets the number of failed authentication requests before switching to a different RADIUS server. in seconds. Telnet also applies to SSH/SCP connections. default 1645> Enter the number of the UDP port to be configured. port <RADIUS port to configure. on Enables the RADIUS server. timeout <RADIUS server timeout seconds (1-10)> Sets the amount of time. The default is 3 seconds. secsrv <IP address> Sets the secondary RADIUS server address.3000. The default is 1645. The default is 3 requests.Set primary RADIUS server address secsrv . telnet disable|enable Enables or disables the RADIUS back door for telnet.Turn RADIUS authentication ON off .Set RADIUS secret port .Alteon OS 21. Chapter 6: The Configuration Menu 315393-E.Enable or disable RADIUS backdoor for telnet on .Set RADIUS server retries timeout .0 Command Reference NOTE – The top four commands are only accessible at the serial port /cfg/sys/radius RADIUS Server Configuration [RADIUS Server Menu] prisrv . October 2003 „ 187 .Set RADIUS server timeout telnet . secret <1-32 character secret> This is the shared secret between the switch and the RADIUS server(s).Set secondary RADIUS server address secret .

of the switch you are synchronizing from Greenwich Mean Time (GMT). tzone <offset from GMT. intrval <resync interval in minutes> Specifies the interval.Set NTP server address intrval . October 2003 .Set NTP timezone offset from GMT dlight . cur Displays the current RADIUS server parameters. to re synchronize the switch clock with the NTP server. Table 6-8 System Configuration Menu Options (/cfg/sys/ntp) Command Syntax and Usage server <NTP Server IP address> Prompts for the IP addresses of the NTP server to which you want to synchronize the switch clock. in minutes (1-2880).0 Command Reference Table 6-7 System Configuration Menu Options (/cfg/sys/radius) Command Syntax and Usage off Disables the RADIUS server. the switch will add an extra hour to the system clock so that it is consistent with the local clock. When enabled. By default. in hours and minutes. dlight disable|enable Disables or enables daylight savings time in the system clock. how often. By default.Enable or disable NTP daylight savings time on .Alteon OS 21. 188 „ Chapter 6: The Configuration Menu 315393-E.Display current NTP configuration This menu enables you to synchronize the switch clock to a Network Time Protocol (NTP) server.Turn NTP service OFF cur .Set NTP server resync interval tzone .Turn NTP service ON off . that is. this option is disabled. in HH:MM> Prompts for the NTP time zone offset. /cfg/sys/ntp NTP Server Configuration [NTP Server Menu] server . this option is disabled.

Alteon OS 21.0 Command Reference

Table 6-8 System Configuration Menu Options (/cfg/sys/ntp)
Command Syntax and Usage on Enables the NTP synchronization service. off Disables the NTP synchronization service. cur Displays the current NTP service settings.

/cfg/sys/sonmp
SynOptics Network Management Protocol Configuration
[SONMP Menu] srcif on off cur Set source interface to be used in hello packets Turn Ethernet Autotopology ON Turn Ethernet Autotopology OFF Display current SONMP configuration

SynOptics Network Management Protocol (SONMP) is a proprietary network management protocol that is used by Nortel Networks Optivitiy Switch Manager (OSM) to discover Alteon Application Switches on the network. The following commands add support for the Ethernet Autotopology alogrithm and the Bay Topology MIB. The topology algorithm is executed by each Alteon switch on which SONMP is enabled. Table 6-9 System Configuration Menu Options (/cfg/sys/sonmp)
Command Syntax and Usage srcif <interface number (1-256)> This command specifies the IP address to be used in the hello packets. If the interface specified by this command is not up, then the first interface which is up and running is used in the hello packets. on This command enables the SONMP protocol, and turns Ethernet Autotopology on. off This command disables the SONMP protocol, and turns Ethernet Autotopology off. cur This command displays the current SONMP configuration.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

189

Alteon OS 21.0 Command Reference

/cfg/sys/ssnmp
System SNMP Configuration
[System SNMP Menu] name - Set SNMP "sysName" locn - Set SNMP "sysLocation" cont - Set SNMP "sysContact" rcomm - Set SNMP read community string wcomm - Set SNMP write community string trap1 - Set first SNMP trap host address trap2 - Set second SNMP trap host address t1comm - Set community string for first trap host t2comm - Set community string for second trap host timeout - Set timeout for the SNMP state machine auth - Enable/disable SNMP "sysAuthenTrap" linkt - Enable/disable SNMP link up/down trap cur - Display current system SNMP configuration

The Alteon OS software supports SNMP-based network management. If you are running an SNMP network management station on your network, you can manage the switch using the following standard SNMP MIBs: „ „ „ MIB II (RFC 1213) Ethernet MIB (RFC 1643) Bridge MIB (RFC 1493)

SNMP parameters that can be modified include: „ „ „ „ „ „ „ „ System name System location System contact Use of the SNMP system authentication trap function Read community string Write community string Trap hosts Trap community strings

190

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-10 SNMP Configuration Menu Options (/cfg/sys/ssnmp)
Command Syntax and Usage name <new string (maximum 64 characters)> Configures the name for the system. The name can have a maximum of 64 characters. locn <new string (maximum 64 characters)> Configures the name of the system location. The location can have a maximum of 64 characters. cont <new string (maximum 64 characters)> Configures the name of the system contact. The contact can have a maximum of 64 characters. rcomm <new SNMP read community string (maximum 32 characters)> Configures the SNMP read community string. The read community string controls SNMP “get” access to the switch. It can have a maximum of 32 characters. The default read community string is public. wcomm <new SNMP write community string (maximum 32 characters)> Configures the SNMP write community string. The write community string controls SNMP “set” and “get” access to the switch. It can have a maximum of 32 characters. The default write community string is private. trap1 <new SNMP trap host IP address (such as, 192.4.17.101)> Configures the IP address of the first SNMP trap host using dotted decimal notation. The SNMP trap host is the device that receives SNMP trap messages from the switch. trap2 <new SNMP trap host IP address (such as, 192.4.17.101)> Configures the IP address of the second SNMP trap host using dotted decimal notation. t1comm <new trap host community string (maximum 32 characters)> Configures the community string for the first trap host. The default community string for the first trap host is public. t2comm <new trap host community string (maximum 32 characters)> Configures the community string for the second trap host. The default community string for the second trap host is public. timeout <SNMP state machine timeout minutes, 1-30> Defines the timeout period for SNMP state machine. When you use diff and apply, memory is allocated to store the output of the command. The timeout period determines when the resources/memory allocated for the output will be freed. auth disable|enable Enables or disables the use of the system authentication trap facility. The default setting is disabled.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

191

Alteon OS 21.0 Command Reference

Table 6-10 SNMP Configuration Menu Options (/cfg/sys/ssnmp)
Command Syntax and Usage linkt <port> <disable|enable> Enables or disables the sending of SNMP link up and link down traps. The default setting is enabled. cur Displays the current STP port parameters.

/cfg/sys/health
System Health Check Configuration Menu
[System TCP Health Menu] add - Add TCP services to listen for health check rem - Remove TCP services from listening on - Turn system TCP health services ON off - Turn system TCP health services OFF cur - Display current TCP health services configuration

Table 6-11 System Health Check Configuration Menu Options (/cfg/sys/health)
Command Syntax and Usage add <TCP port (2-65534)> Adds TCP services to listen to the health checks. Specify a TCP service port number, such as 80 for HTTP. rem <TCP port (2-65534)> Removes TCP services that were added for listening to health checks. Specify a TCP service port number, such as 80 for HTTP. on Turns on the TCP health check services. off Turns off the TCP health check services. cur Displays the current TCP health check services configuration.

192

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

/cfg/sys/access
System Access Control Configuration
[System Access Menu] mgmt - Management Network Definition Menu user - User Access Control Menu (passwords) http - Enable/disable HTTP (Web) access wport - Set HTTP (Web) server port number snmp - Set SNMP access control tnet - Enable/disable Telnet access tnport - Set Telnet server port number rlimit - Set max rate of ARP, ICMP, TCP, or UDP packets to MP cur - Display current system access configuration

Table 6-12 System Access Configuration Menu Options (/cfg/sys/access)
Command Syntax and Usage mgmt Displays the Management Configuration Menu. To view menu options, see page 194. user Displays the User Access Control Menu. To view menu options, see page 195. http disable|enable Enables or disables HTTP (Web) access to the browser-based interface. It is disabled by default. wport <TCP port number (1-65535)> Sets the switch port used for serving switch Web content. The default is HTTP port 80. If Global Server Load Balancing is to be used, set this to a different port (such as 8080). snmp disable|read-only|read-write Sets the snmp user access level to either disabled, read-only, or read-write. tnet Enables or disables Telnet access to the switch. This command is disabled by default. You will see this command only if you are connected to the switch through the console port. tnport <TCP port number> Sets an optional telnet server port number for cases where the server listens for telnet sessions on a non-standard port.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

193

Alteon OS 21.0 Command Reference

Table 6-12 System Access Configuration Menu Options (/cfg/sys/access)
Command Syntax and Usage rlimit <arp|icmp|tcp|udp> <max rate, 0-65535> Sets switch-wide rate limiting on traffic entering the switch over ARP, ICMP, TCP, or UDP protocols. Specify which protocol you wish to limit. Then specify the maximum rate, which the maximum number of packets per second that is allowed to enter the switch. cur Displays the current configuration.

/cfg/sys/access/mgmt
Management Networks Menu
This menu is used to define IP address ranges which are allowed to access the switch for management purposes. NOTE – The add and rem commands below replace the /cfg/sys/mnet and /cfg/ sys/mmask commands found in earlier releases of Alteon OS.

[Management Networks Menu] add - Add mgmt network definition rem - Remove mgmt network definition cur - Display current mgmt network definitions

Table 6-13 Management Network Menu Options (/cfg/sys/access/mgmt)
Command Syntax and Usage add <mgmt network address> <mgmt network mask> Adds a defined network through which switch access is allowed through Telnet, SNMP, RIP, or the Alteon OS browser-based interface. A range of IP addresses is produced when used with a network mask address. Specify an IP address and mask address in dotted-decimal notation.

NOTE – If you configure the management network without including the switch interfaces, it will cause the Firewall Load Balancing health checks to fail and will create a “Network Down” state on the network.

194

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-13 Management Network Menu Options (/cfg/sys/access/mgmt)
Command Syntax and Usage rem <mgmt network address> <mgmt network mask> Removes a defined network, which consists of a management network address and a management network mask address. cur Displays the current configuration.

/cfg/sys/access/user
User Access Control Menu
[User Access Control Menu] usrpw - Set user password (user) sopw - Set SLB operator password (slboper) l4opw - Set L4 operator password (l4oper) opw - Set operator password (oper) sapw - Set Slb administrator password (slbadmin) l4apw - Set L4 administrator password (l4admin) admpw - Set administrator password (admin) cur - Display current user statistics

NOTE – Passwords can be a maximum of 15 characters. Table 6-14 User Access Control Menu Options (/cfg/sys/access/user)
Command Syntax and Usage usrpw Sets the user (user) password. The user has no direct responsibility for switch management. He or she can view switch status information and statistics, but cannot make any configuration changes. sopw Sets the SLB operator (slboper)password. The SLB operator manages Web servers and other Internet services and their loads. He or she can view all switch information and statistics and can enable/disable servers using the Server Load Balancing configuration menus. Access includes “user” functions. l4opw Sets the Layer 4 operator (l4oper)password. The Layer 4 operator manages traffic on the lines leading to the shared Internet services. He or she can view all switch information and statistics. Access includes “slboper” functions.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

195

Alteon OS 21.0 Command Reference

Table 6-14 User Access Control Menu Options (/cfg/sys/access/user)
Command Syntax and Usage opw Sets the operator (oper)password. The operator password can have a maximum of 15 characters. The operator manages all functions of the switch. He or she can view all switch information and statistics and can reset ports or the entire switch. Access includes “l4oper” functions. sapw Sets the SLB administrator (slbadmin) password. Administrator who configures and manages Web servers and other Internet services and their loads. He or she can view all switch information and statistics, but can configure changes only on the Server Load Balancing menus. Note that the Filter Menu options are not accessible to the SLB administrator. Access includes “l4oper” functions. l4apw Sets the Layer 4 administrator (l4admin) password. The Layer 4 administrator configures and manages traffic on the lines leading to the shared Internet services. He or she can view all switch information and statistics and can configure parameters on the Server Load Balancing menus, with the exception of not being able to configure filters. Access includes “slbadmin” functions. admpw Sets the administrator (admin) password. The super user administrator has complete access to all menus, information, and configuration commands on the Alteon Application Switch, including the ability to change both the user and administrator passwords. Access includes “oper” and “l4admin” functions. cur Displays the current user status.

196

„

Chapter 6: The Configuration Menu
315393-E, October 2003

For more information on connectors. Port configuration is different on Alteon Application Switch 2000 series and 3000 series. October 2003 „ 197 . The ports are auto-sensing. The commands on Alteon Application Switch 2000 series and their description are as follows: Chapter 6: The Configuration Menu 315393-E.Alteon OS 21. You may order the SFP modules from Nortel Networks. The SFP modules are not shipped with the product. auto-negotiating. Alteon Application Switch 2000 Series The following table displays the number of Fast Ethernet ports and SFP GBIC ports with the numbering of the ports on Alteon Application Switch 2000 series: Table 6-15 Port Configuration and Numbering on Alteon Application Switch 2000 Series Model Alteon 2208 (1U) Alteon 2216 (1U) Alteon 2224 (1U) Alteon 2424 (1U) 10/100 Mbps Fast Ethernet 1000 Mbps SFP GBIC Port Port Numbers Numbers 1–8 1–16 1–24 1–24 9–10 17–18 25–26 25–28 Fast Ethernet Ports The RJ-45 jack is used for connecting 10/100 Mbps Ethernet segments to the port. The LC jack is used for connecting Gigabit Ethernet fiber optic segments. please refer to the Hardware Installation Guide for Alteon Application Switch. This command is enabled by default. SFP GBIC Ports The following figure displays the LC jack connector and the SFP that fits into the port socket.0 Command Reference /cfg/port <port number> Port Configuration The Port Menu enables you to configure settings for individual switch ports. and support half or full-duplex operation.

It is disabled by default.0 Command Reference [Port 1 Menu] fast gig pvid name cont rmon tag iponly ena dis cur - Fast Phy Menu Gig Phy Menu Set default port VLAN id Set port name Set default port BW Contract Enable/Disable RMON for port Enable/disable VLAN tagging for port Enable/disable allowing only IP related frames Enable port Disable port Display current port configuration Table 6-16 Port Configuration Menu Options (/cfg/port) Command Syntax and Usage fast If a port is configured to support Fast Ethernet.Alteon OS 21. name <64 character string>|none Sets a name for the port. this option displays the Fast Ethernet Physical Link Menu. see page 208. The default is set to none. gig If a port is configured to support Gigabit Ethernet. 1-4090> Sets the default VLAN number which will be used to forward frames which are not VLAN tagged. The assigned port name appears next to the port number on some information and statistics screens. To view menu options. rmon disable|enable Disables or enables RMON for this port. ena Enables the port. It is disabled by default. see page 208. To view menu options. It is disabled by default. The default number is 1. tag disable|enable Disables or enables VLAN tagging for this port. October 2003 . 198 „ Chapter 6: The Configuration Menu 315393-E. pvid <VLAN number. cont <BWM Contract (1-256)> Sets the default Bandwidth Management Contract for this port. iponly disable|enable Disables or enables allowing only IP-related frames. this option displays the Gigabit Ethernet Physical Link Menu.

Set auto negotiation cur . and negotiation mode for the port link. Not all options are valid on all ports. flow control. refer to “Temporarily Disabling a Port” on page 210.0 Command Reference Table 6-16 Port Configuration Menu Options (/cfg/port) Command Syntax and Usage dis Disables the port. /cfg/port <port number> fast|gig Port Link Configuration [Fast Link Menu] speed . The choices include: „ „ „ Any for automatic detection (default) 10 Mbps 100 Mbps This menu appears only if a Fast Ethernet port is selected.Set flow control auto . Link menu options are described in Table 6-24 and appear on the fast and gig port configuration menus for the Alteon Application Switch. Using these configuration menus. NOTE – Since the speed and mode parameters cannot be set for Gigabit Ethernet ports.) cur Displays the current port parameters. you can set port parameters such as speed.Alteon OS 21.Set link speed mode . October 2003 „ 199 . (To temporarily disable a port without changing its configuration attributes. Chapter 6: The Configuration Menu 315393-E.Set full or half duplex mode fctl . Table 6-17 Port Link Configuration Menu Options (/cfg/port/fast|gig) Command Syntax and Usage speed 10|100|any Sets the link speed. these options do not appear on the Gigabit Link Menu.Display current fast link configuration Use these menu options to set port parameters for the port link.

The choices include: „ „ „ „ Receive flow control Transmit flow control Both receive and transmit flow control (default) No flow control auto on|off Enables or disables auto negotiation for the port. October 2003 . fctl rx|tx|both|none Sets the flow control.The choices include: „ „ „ Any for auto negotiation (default) Full-duplex Half-duplex This menu appears only if a Fast Ethernet port is selected.Alteon OS 21. 200 „ Chapter 6: The Configuration Menu 315393-E. This command is available only in the Fast Link Menu. This command is available only in the Fast Link Menu. cur Displays the current port parameters.0 Command Reference Table 6-17 Port Link Configuration Menu Options (/cfg/port/fast|gig) Command Syntax and Usage mode full|half|any Sets the operating mode.

Four Small Form Pluggable (SFP) GBIC Fiber Optic ports (9–12). October 2003 „ 201 . 7. 4. and 6). Their description is as follows: „ „ Four 1000BaseT ports (1. 7. full-duplex with autonegotiation turned on. Chapter 6: The Configuration Menu 315393-E. 8 Dual-Mode Port Numbers 3–6 1000 Mbps SFP GBIC Port Numbers 9–12 Alteon 3408 (1U) Port Configuration on Alteon Application Switch 3408 The Alteon Application Switch 3408 contains 12 ports. autonegotiation must be turned on. When the 1000 Mbps SFP GBIC port is selected as the preferred link. 5. See “Dual-Mode Ports” on page 207 for more details. When the 10/100/1000Base-T copper port is selected as the preferred link. Four dual-mode ports (3. refer to the Alteon Application Switch Hardware Installation Guide Part Number 315393-E. 2. The ports are autonegotiating and support half or full duplex operation. However. You can set either interface as the preferred or backup link. These ports are designed to operate at 1000 Mbps and full duplex mode only. it is fixed at 1000 Mbps. and 8) with RJ-45 connectors. „ NOTE – For more information on connectors. 2. These ports have two interfaces each: 1000 Mbps SFP GBIC and 10/100/1000Base-T Copper. if 1000 Mbps is selected.0 Command Reference Alteon Application Switch 3000 Series The following table displays the port configuration and numbering on Alteon Application Switch 3408: Table 6-18 Port configuration on Alteon Application Switch 3408 Model 10/100/1000Base-T Copper Port Numbers 1. it can be configured at any speed.Alteon OS 21.

To view menu options. this option displays the Copper Gigabit Ethernet Physical Link Menu. 7. refer to “Temporarily Disabling a Port” on page 210. 2. 7. or 8>) Command Syntax and Usage gig If a port is configured to support Gigabit Ethernet. you see the menu below: [Port 1 Menu] gig pvid name cont rmon tag iponly ena dis cur - Copper Gig Phy Menu Set default port VLAN id Set port name Set default port BW Contract Enable/Disable RMON for port Enable/disable VLAN tagging for port Enable/disable allowing only IP related frames Enable port Disable port Display current port configuration Table 6-19 Single-Mode Copper Port Configuration Menu Options (/cfg/port <1. tag disable|enable Disables or enables VLAN tagging for this port.) 202 „ Chapter 6: The Configuration Menu 315393-E. It is disabled by default. dis Disables the port. (To temporarily disable a port without changing its configuration attributes. rmon disable|enable Disables or enables RMON for this port.0 Command Reference Single-Mode ports 10/100/1000Base-T Copper Ports When you select a single-mode copper port (1. or 8). The assigned port name appears next to the port number on some information and statistics screens. pvid <VLAN number (1-4090)> Sets the default VLAN number which will be used to forward frames which are not VLAN tagged. It is disabled by default. 2. October 2003 . The default number is 1. see page 203. name <64 character string>|none Sets a name for the port. It is disabled by default. cont <BWM Contract (1-256)> Sets the default Bandwidth Management Contract for this port. iponly disable|enable Disables or enables allowing only IP-related frames.Alteon OS 21. The default is set to None. ena Enables the port.

This command is available only in the Fast Link Menu. or 8>) Command Syntax and Usage cur Displays the current port parameters. The choices include: Any for auto negotiation (default) Full-duplex Half-duplex fctl rx|tx|both|none Sets the flow control. 7.Set auto negotiate cur . 2.0 Command Reference Table 6-19 Single-Mode Copper Port Configuration Menu Options (/cfg/port <1. 2. /cfg/port <port number> gig Single-Mode Copper Port Gigabit Ethernet Link Configuration Menu [GE Copper Link Menu] speed . and negotiation mode for the port link.Alteon OS 21.Set duplex mode fctl . October 2003 Any for automatic detection (default) 10 Mbps 100 Mbps 1000 Mbps mode full|half|any Sets the operating mode. Using these configuration menus. Link menu options are described in Table 6-24 and appear on the gig port configuration menus for the Alteon Application Switch. Table 6-20 Single-Mode Copper Port Gigabit Ethernet Link Configuration Menu Options (/cfg/port <1. you can set port parameters such as speed.Set link speed mode . flow control.Display current ge copper link configuration Use these menu options to set port parameters for the port link.Set flow control auto . or 8>/gig) Command Syntax and Usage speed 10|100|1000|any Sets the link speed. The choices include: „ „ „ „ „ „ „ „ „ „ „ 315393-E. 7.The choices include: Receive flow control Transmit flow control Both receive and transmit flow control (default) No flow control Chapter 6: The Configuration Menu „ 203 . Not all options are valid on all ports.

The assigned port name appears next to the port number on some information and statistics screens. this option displays the Optical Gigabit Ethernet Physical Link Menu. 7. 1000 Mbps SFP GBIC Fiber Optic Ports When you select a single-mode fiber optic port (9–12). rmon disable|enable Disables or enables RMON for this port. 204 „ Chapter 6: The Configuration Menu 315393-E. cont <BWM Contract (1-256)> Sets the default Bandwidth Management Contract for this port. It is disabled by default. cur Displays the current Gigabit Ethernet copper link port parameters. The default number is 1. or 8>/gig) Command Syntax and Usage auto on|off Enables or disables autonegotiation for the port. To view menu options. October 2003 . see page 206. pvid <VLAN number (1-4090)> Sets the default VLAN number which will be used to forward frames which are not VLAN tagged.0 Command Reference Table 6-20 Single-Mode Copper Port Gigabit Ethernet Link Configuration Menu Options (/cfg/port <1.Alteon OS 21. 2. name <64 character string>|none Sets a name for the port. you see a slightly different menu as below: [Port 9 Menu] gig pvid name cont rmon tag iponly ena dis cur - Optical Gig Phy Menu Set default port VLAN id Set port name Set default port BW Contract Enable/Disable RMON for port Enable/disable VLAN tagging for port Enable/disable allowing only IP related frames Enable port Disable port Display current port configuration Table 6-21 Single-Mode Fiber Optic Port Configuration Menu Options (/cfg/port <9–12>) Command Syntax and Usage gig If a port is configured to support Gigabit Ethernet. The default is set to None.

It is disabled by default.0 Command Reference Table 6-21 Single-Mode Fiber Optic Port Configuration Menu Options (/cfg/port <9–12>) Command Syntax and Usage tag disable|enable Disables or enables VLAN tagging for this port. iponly disable|enable Disables or enables allowing only IP-related frames. Chapter 6: The Configuration Menu 315393-E.) cur Displays the current port parameters. October 2003 „ 205 .Alteon OS 21. (To temporarily disable a port without changing its configuration attributes. dis Disables the port. ena Enables the port. It is disabled by default. refer to “Temporarily Disabling a Port” on page 210.

cur Displays the current Gigabit Ethernet Fiber Optic link port parameters. October 2003 . 206 „ Chapter 6: The Configuration Menu 315393-E. and negotiation mode for the port link. you can set port parameters such as flow control. Table 6-22 Single-Mode Fiber Optic Port Link Configuration Menu Options (/cfg/ port <9-12>/gig) Command Syntax and Usage fctl rx|tx|both|none Sets the flow control.Set flow control auto . The choices include: „ „ „ „ Receive flow control Transmit flow control Both receive and transmit flow control (default) No flow control auto on|off Enables or disables autonegotiation for the port. Link menu options are described in Table 6-24 and appear on the gig port configuration menus for the Alteon Application Switch.Alteon OS 21.0 Command Reference /cfg/port <port number> gig Single-Mode Fiber Optic Gigabit Ethernet Port Link Configuration Menu [GE Optical Link Menu] fctl .Set auto negotiate cur .Display current optical gig link configuration Use these menu options to set port parameters for the port link. Using these configuration menus.

Alteon OS 21. To view menu options. you see the menu below: [Port 4 Menu] cop opt pref back pvid name cont rmon tag iponly ena dis cur - Copper Gig Phy Menu Optical Gig Phy Menu Set preferred link Set backup link Set default port VLAN id Set port name Set default port BW Contract Enable/Disable RMON for port Enable/disable VLAN tagging for port Enable/disable allowing only IP related frames Enable port Disable port Display current port configuration Table 6-23 Dual-Mode Port Configuration Menu Options (/cfg/port <3–6>) Command Syntax and Usage cop Displays Copper Gigabit Physical Link Menu. The assigned port name appears next to the port number on some information and statistics screens. Chapter 6: The Configuration Menu 315393-E. see page 210. name <64 character string>|none Sets a name for the port. back copper|optical|none Sets the preference for the backup link if the preferred port is not available. cont <BWM Contract (1-256)> Sets the default Bandwidth Management Contract for this port. If you choose none. The default is set to None. pvid <VLAN number (1-4090)> Sets the default VLAN number which will be used to forward frames which are not VLAN tagged. pref copper|optical Sets the port preference between copper or optical mode. The selected port will be used as the preferred port if both the ports are available. To view menu options.0 Command Reference Dual-Mode Ports When you select any one of the dual-mode ports (3–6). the port will not switch automatically to the backup port if the preferred port goes down. opt Displays Gigabit Fiber Optic Physical Link Menu. You cannot set the preferred port as the backup port. The default number is 1. see page 208. October 2003 „ 207 .

tag disable|enable Disables or enables VLAN tagging for this port.Set flow control auto . Link menu options are described in Table 6-24 and appear on the cop port configuration menus for the Alteon Application Switch.Set auto negotiate cur . flow control.) cur Displays the current port parameters.Set duplex mode fctl .Set link speed mode .Display current ge copper link configuration Use these menu options to set port parameters for the port link.0 Command Reference Table 6-23 Dual-Mode Port Configuration Menu Options (/cfg/port <3–6>) Command Syntax and Usage rmon disable|enable Disables or enables RMON for this port. (To temporarily disable a port without changing its configuration attributes.Alteon OS 21. /cfg/port <port number (3–6)> cop Dual-Mode Copper Port Link Configuration [GE Copper Link Menu] speed . dis Disables the port. iponly disable|enable Disables or enables allowing only IP-related frames. refer to “Temporarily Disabling a Port” on page 210. It is disabled by default. Using these configuration menus. It is disabled by default. and negotiation mode for the port link. October 2003 . ena Enables the port. It is disabled by default. 208 „ Chapter 6: The Configuration Menu 315393-E. you can set port parameters such as speed.

The choices include: Any for autonegotiation (default) Full-duplex Half-duplex fctl rx|tx|both|none Sets the flow control. The choices include: „ „ „ „ „ „ „ „ „ „ „ Any for automatic detection (default) 10 Mbps 100 Mbps 1000 Mbps mode full|half|any Sets the operating mode. October 2003 „ 209 . The choices include: Receive flow control Transmit flow control Both receive and transmit flow control (default) No flow control auto on|off Enables or disables auto negotiation for the port. Chapter 6: The Configuration Menu 315393-E.0 Command Reference Table 6-24 Dual-Mode Copper Port Link Configuration Menu Options (/cfg/port <3–6>/cop) Command Syntax and Usage speed 10|100|1000|any Sets the link speed. Not all options are valid on all ports.Alteon OS 21. cur Displays the current Gigabit Ethernet copper link port parameters.

Temporarily Disabling a Port To temporarily disable a port without changing its stored configuration attributes. you do not need to use apply or save. 210 „ Chapter 6: The Configuration Menu 315393-E.Alteon OS 21.0 Command Reference /cfg/port <port number (3–6)> opt Dual-Mode Fiber Optic Port Link Configuration Menu [GE Optical Link Menu] fctl . The port state will revert to its original configuration when the Alteon Application Switch is reset. enter the following command at any prompt: Main# /oper/port <port number>/dis Because this configuration sets a temporary state for the port. October 2003 . See the “Operations Menu” on page 347 for other operations-level commands.Set flow control cur .Display current optical gig link configuration Table 6-25 Dual-Mode Fiber Optic Port Link Configuration Menu Options (/cfg/port <3-6>/opt) Command Syntax and Usage fctl rx|tx|both|none Sets the flow control. The choices include: „ „ „ „ cur Receive flow control Transmit flow control Both receive and transmit flow control (default) No flow control Displays the current Optical Gigabit link port configuration.

cur Displays the current settings of the mirrored and monitoring ports. When enabled. you can collect detailed information about your network performance and usage. To view menu options. network packets being sent and/or received on a target port are duplicated and sent to a monitor port. October 2003 „ 211 . By attaching a network analyzer to the monitor port. and disable the monitored port. Table 6-26 Port Mirroring menu options (/cfg/pmirr) Command Syntax and Usage mirror disable|enable Enables or disables port mirroring monport <monitoring port (port to mirror to)> Displays port-mirroring menu. enable. see page 211.0 Command Reference /cfg/pmirr Port Mirroring Menu [Port Mirroring mirror monport cur Menu] Enable/Disable Mirroring Monitoring Port based PM Menu Display All Mirrored and Monitoring Ports Port mirroring is disabled by default.Add "Mirrored" port and VLANs rem . /cfg/pmirr/monport Port-Mirroring Menu [Port 1 Menu] add .Display current Port-based Port Mirroring configuration Chapter 6: The Configuration Menu 315393-E. The Port Mirroring Menu is used to configure.Rem "Mirrored" port and VLANs cur .Alteon OS 21.

Display current Bandwidth Management configuration By default. rem <mirrored port (port to mirror from)> <vlan index or Carriage Return for all vlans> Removes the mirrored port. the frame is sent to the monitoring port.Alteon OS 21. BWM policies can be configured to set lower and upper bounds on the bandwidth allocation. out.0 Command Reference Table 6-27 Port-Based Port-Mirroring Menu Options (/cfg/pmirr/monport) Command Syntax and Usage add <mirrored port (port to mirror from)> <direction (in. It allows companies to guarantee that critical business traffic. /cfg/bwm Bandwidth Management Configuration Bandwidth Management (BWM) enables Web site managers to allocate a portion of the available bandwidth for specific users or applications. all traffic on that port will be mirrored. VLAN-based port mirroring allows the user to monitor traffic based on VLANs associated with a port.Contract Menu policy . If the destination port of the frame matches the mirrored port and the mirrored direction is egress or both. If you do not specify a VLAN. It is necessary to specify the direction because: If the source port of the frame matches the mirrored port and the mirrored direction is ingress or both (ingress and egress). You can add specific VLAN(s) to a be monitored even if there are multiple VLANs associated with that port. Traffic classification can be based on user or application information.Set SMTP server user name force .Policy Menu user . October 2003 .Globally turn Bandwidth Management processing OFF cur .Globally turn Bandwidth Management processing ON off .Enable or disable enforce policies on . or both)> <vlan index or Carriage Return for all vlans> Adds the port to be mirrored. receive higher priority versus non-critical traffic. the frame is sent to the mirrored port. cur Displays the current settings of the monitoring port. This command also allows you to enter the direction of the traffic. [Bandwidth Management Menu] cont . such as e-commerce transactions. BWM is turned off 212 „ Chapter 6: The Configuration Menu 315393-E. Refer to your Application Guide for more information.

on Globally enables Bandwidth Management on this switch. To view menu options. To view menu options. When disabled. A bandwidth policy is often based on a rate structure whereby a Web host could charge a customer for bandwidth utilization. the reordering of the packets does not occur. By default. policy <BW policy number (1-64)> Displays the Bandwidth Management Policy Menu. this option is enabled. user <user name> Sets the SMTP user name to whom the history statistics will be mailed. cur Displays the current Bandwidth Management configuration. This means that no bandwidth limit is applied on the queues.0 Application Guide.Alteon OS 21. off Globally disables Bandwidth Management on this switch. Chapter 6: The Configuration Menu 315393-E. specifying the guaranteed bandwidth rates. see the Alteon OS 21. For further details. To manage bandwidth on an Alteon Application Switch.0 Application Guide. The default is set to None. The switch uses these contracts to limit individual traffic flows. this option is disabled. The packets will exit in the order they came in. force disable|enable Enables or disables the enforcement of bandwidth policy on the traffic. see the Alteon OS 21. see page 214.0 Command Reference NOTE – Up to 256 bandwidth management contracts can be configured on Alteon OS. Table 6-28 Bandwidth Management Menu Options (/cfg/bwm) Command Syntax and Usage cont <BW contract number (1-256)> Displays the Bandwidth Management Contract Menu. you must create one or more bandwidth management contracts. Bandwidth policies are bandwidth limita- tions defined for any set of frames. For further details. By default. see page 215. October 2003 „ 213 .

By default. The default policy number is 64.Alteon OS 21. 214 „ Chapter 6: The Configuration Menu 315393-E.Set Contract name policy . history disable|enable Disables or enables saving statistics for this contract on the server. In this context. The default value is 1.Disable BW Contract del .Enable/disable overwriting IP TOS for this Contract shaping . policy <Bandwidth policy number (1-64)> Sets the policy number for this Bandwidth Management contract.Enable/disable traffic shaping for this contract ena . shaping disable|enable Disables or enables shaping of the traffic for this contract.Display current BW Contract configuration Table 6-29 Bandwidth Management Policy Menu Options (/cfg/bwm/cont) Command Syntax and Usage name <15 character name> Sets the name for this Bandwidth Management contract.0 Command Reference /cfg/bwm/cont <contract number> Bandwidth Management Contract Configuration [BW Contract 1 Menu] name .Delete BW Contract cur . prec <Bandwidth precedence value (1-255)> Sets the precedence value for this Bandwidth Management contract.Set Contract Precedence history . del Removes this contract from the switch.Enable BW Contract dis .Enable/disable Saving Contract stats history wtos . cur Displays the current Bandwidth Management contract configuration. it is disabled. it is enabled. By default.Set Contract Policy prec . shaping means buffering a packet and keeping it ready to be sent. dis Disables this Bandwidth Management contract. October 2003 . wtos disable|enable Disables or enables overwriting the IP Type of Service (TOS) for this contract. ena Enables this Bandwidth Management contract.

With this option set to the default value of “0. soft <0k-5000k|1m-1000m> Sets the soft bandwidth limit for this policy. This is the amount of bandwidth always available to this policy. This is the highest amount of bandwidth available to this policy. buffer <Maximum buffer space (bytes) (8192-128000)> Sets the buffer limit for this policy. The default value is 1000 kbps. utos <BW Policy TOS (0-255)> Sets the new utos (underlimit TOS) value to overwrite the original TOS value if the traffic for this contract is under the soft limit. The default value is 500Kbytes. The default value is 8192 bytes. del Deletes the bandwidth management policy. The default value is 2000 kbps. October 2003 „ 215 . Chapter 6: The Configuration Menu 315393-E.” the switch will not overwrite the TOS value.” the switch will not overwrite the TOS value. With this option set to the default value of “0. resv <0k-5000k|1m-1000m> Sets the reserve limit for this policy. cur Displays the current value of the bandwidth policy configuration. otos <BW Policy TOS (0-255)> Sets the new otos (over the limit TOS) value to overwrite the original TOS value if the traffic for this contract is over the soft limit.Alteon OS 21.0 Command Reference /cfg/bwm/policy <policy number> Bandwidth Management Policy Configuration [Policy 1 Menu] hard soft resv utos otos buffer del cur Set hard Limit Set soft Limit Set Reservation Limit Set underlimit (soft limit) TOS Set overlimit (soft limit) TOS Set Buffer Limit Delete BW Policy Display current Policy configuration Table 6-30 Bandwidth Management Policy Menu Options (/cfg/bwm/pol) Command Syntax and Usage hard <0k-5000k|1m-1000m> Sets the hard bandwidth limit for this policy.

October 2003 . Policy 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 Hard 25M 10M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M 2M Soft 20M 8M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M 1M Resv oTOS uTOS Buffer 500K 150 100 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 500K 0 0 16320 216 „ Chapter 6: The Configuration Menu 315393-E.Alteon OS 21.0 Command Reference /cfg/bwm/cur Bandwidth Management Current Configuration Current Bandwidth Management setting: ON Policy Enforcement: enabled SMTP server user name: Contract Name Policy Prec Hist TOS State Shaping 1 cont_1 1 1 E E E E 2 cont_2 2 1 E D D D 256 Default -0 E D E D *Default contract gets all the BW that is available on a port after the active contracts reserved BW is taken.

The factory default value of this command is Nortel multiple STG mode disabled. the Cisco implementation of multiple STGs will be followed. vlan <VLAN number (1-4090)> Displays VLAN Menu. see page 218. see page 224. Chapter 6: The Configuration Menu 315393-E. cur Displays the current Layer 2 parameters. the Nortel implementation of multiple STGs will be followed. When Nortel multiple STG mode is disabled. You need to reset the switch with the command /boot/reset for the Spanning Tree Group configuration to change to ntmstg enabled. To view menu options. To view menu options. ntmstg disable|enable Enables or disables Nortel Multiple Spanning Tree Group mode. trunk <trunk group number (1-12)> Displays Trunk Group Menu. To view menu options. When Nortel multiple STG mode is enabled. see page 222. The ntmstg enabled device will not work with the device configured for Cisco implementation of Spanning Tree BPDUs.0 Command Reference /cfg/l2 Layer 2 Configuration Menu [Layer 2 Menu] stg trunk vlan ntmstg cur Spanning Tree Menu Trunk Group Menu VLAN Menu Enable/disable Nortel multiple STG mode Display current layer 2 parameters Table 6-31 Layer 2 Configuration Menu Options (/cfg/l2) Command Syntax and Usage stg <group number [1-16]> Displays Spanning Tree Group Menu.Alteon OS 21. October 2003 „ 217 .

If that path fails.Globally turn Spanning Tree OFF default .Display current bridge parameters 218 „ Chapter 6: The Configuration Menu 315393-E. This command is turned on by default. Spanning Tree Protocol (STP) detects and eliminates logical loops in a bridged or switched network. When multiple paths exist. Spanning Tree automatically sets up another active path on the network to sustain network operations. The default Spanning Tree group (1) can have more than one VLAN. Alteon OS supports up to 16 instances of Spanning Trees or Spanning Tree groups.Default Spanning Tree and Member parameters cur . All other Spanning Tree groups (2-16) can have only one VLAN associated with it.Port parameter menu add . Alteon OS supports the IEEE 802.1d Spanning Tree Protocol (STP).Bridge parameter menu port . Thus. See your Application Guide for a detailed description of this feature and how to configure Spanning Tree Groups on the switch. October 2003 . STP is used to prevent loops in the network topology. Spanning Tree Protocol (STP) configures the network so that a switch uses only the most efficient path. Multiple Spanning Trees can be enabled on tagged or untagged ports. Each VLAN can be placed in only one Spanning Tree group per switch except for the default Spanning Tree group (STG 1).Alteon OS 21.Globally turn Spanning Tree ON off .Remove all VLANs from Spanning Tree Group on .0 Command Reference /cfg/l2/stg Spanning Tree Group Configuration When multiple paths exist on a network. Spanning Tree can be enabled or disabled for each port.Add VLAN(s) to Spanning Tree Group remove . [Spanning Tree Group 1 Menu] brg . Spanning Tree configures the network so that a switch uses only the most efficient path.Remove VLAN(s) from Spanning Tree Group clear . STP forces redundant data paths into a standby (blocked) state.

default Resets STG and Group member parameters to factory default. clear Removes all VLANs from a spanning tree. off Globally disables Spanning Tree Protocol. To view menu options. Chapter 6: The Configuration Menu 315393-E. on Globally enables Spanning Tree Protocol. cur Displays the current Spanning Tree Protocol parameters.Alteon OS 21. STP must be enabled. port <port number> Displays the Spanning Tree Port Menu. see page 220.0 Command Reference NOTE – When VRRP is used for active/active redundancy. add <VLAN numbers (1-4090)> Associates a VLAN with a spanning tree and requires an external VLAN ID as a parameter. see page 221. To view menu options. Table 6-32 Spanning Tree Configuration Menu (/cfg/l2/stp) Command Syntax and Usage brg Displays the Bridge Spanning Tree Menu. remove <VLAN numbers (1-4090)> Breaks the association between a VLAN and a spanning tree and requires an external VLAN ID as a parameter. October 2003 „ 219 .

0 Command Reference /cfg/l2/stg/brg Bridge Spanning Tree Configuration [Bridge Spanning Tree Menu] prior . The range is 4 to 30 seconds. 0 to disable) cur . The lower the value.Set bridge Hello Time [1-10 secs] mxage . the higher the bridge priority. The maximum age parameter specifies the maximum time the bridge waits without receiving a configuration bridge protocol data unit before it re configures the STP network. The range is 0 to 65535. and the default is 15 seconds. fwd <new bridge Forward Delay (4-30 secs)> Configures the bridge forward delay parameter. 220 „ Chapter 6: The Configuration Menu 315393-E.The hello time specifies how often the root bridge transmits a configuration bridge protocol data unit (BPDU). and the default is 32768. and the default is 2 seconds.Set bridge Aging Time (1-65535 secs. STP bridge parameters include: „ „ „ „ „ Bridge priority Bridge hello time Bridge maximum age Forwarding delay Bridge aging time Table 6-33 Bridge Spanning Tree Menu Options (/cfg/l2/stp/brg) Command Syntax and Usage prior <new bridge priority (0-65535)> Configures the bridge priority. configure the bridge priority lower than all other switches and bridges on your network. hello <new bridge hello time (1-10 secs)> Configures the bridge hello time. October 2003 .Alteon OS 21. To make this switch the root bridge. The forward delay parameter specifies the amount of time that a bridge port has to wait before it changes from the listening state to the learning state and from the learning state to the forwarding state.Set bridge Max Age (6-40 secs) fwd . The range is 6 to 40 seconds.Display current bridge parameters Spanning Tree bridge parameters affect the global STP operation of the switch.Set bridge Forward Delay (4-30 secs) aging . The bridge priority parameter controls which bridge on the network is the STP root bridge.Set bridge Priority [0-65535] hello . and the default is 20 seconds. mxage <new bridge max age (6-40 secs)> Configures the bridge maximum age. Any bridge that is not the root bridge uses the root bridge hello value. The range is 1 to 10 seconds.

To disable aging.0 Command Reference Table 6-33 Bridge Spanning Tree Menu Options (/cfg/l2/stp/brg) Command Syntax and Usage aging <new bridge Aging Time (1-65535 secs. and the default is 300 seconds. set this parameter to 0.Display current port Spanning Tree parameters Spanning Tree port parameters are used to modify STP operation on an individual port basis.Turn port’s Spanning Tree ON off . The range is 1 to 65535 seconds.Set port Priority (0-255) cost . 0 for default) on .Turn port’s Spanning Tree OFF cur . The aging time specifies the amount of time the bridge waits without receiving a packet from a station before removing the station from the forwarding database.Set port Path Cost (1-65535. the following formulas must be used: „ „ 2*(fwd-1) > mxage 2*(hello+1) < mxage /cfg/l2/stg <STG Group Index>/port <port #> Spanning Tree Port Configuration [Spanning Tree Port 1 Menu] prior . When configuring STP bridge parameters. cur Displays the current bridge STP parameters. October 2003 „ 221 .Alteon OS 21. 0 to disable)> Configures the forwarding database aging time. STP port parameters include: „ „ Port priority Port path cost Chapter 6: The Configuration Menu 315393-E.

cur Displays the current STP port parameters. Table 6-34 Spanning Tree Port Menu (/cfg/l2/stp/port) Command Syntax and Usage prior <new port Priority (0-255)> Configures the port priority. Best performance is achieved when all ports in a trunk are configured for the same speed. the port with the lowest port priority becomes the designated port for the segment. Up to 12 trunk groups can be configured on the Alteon Application Switch. multi-link connections between Alteon Application Switches or other trunk-capable devices. The range is 0 to 255. The range is 1 to 65535. The default is 10 for 100Mbps ports. off Disables STP on the port. Trunking from non-Alteon devices must comply with Cisco® EtherChannel® technology. larger virtual link. Generally speaking. The port priority helps determine which bridge port becomes the designated port. you can view the state of each port in the various trunk groups. combining their bandwidth to create a single. Up to eight ports/trunks can belong to the same trunk group.Trunk groups can provide super-bandwidth. When trunk groups are configured. A value of 0 indicates that the default cost will be computed for an auto negotiated link speed. the faster the port.Alteon OS 21. 0 for default)> Configures the port path cost. 222 „ Chapter 6: The Configuration Menu 315393-E. /cfg/l2/trunk <trunk group number> Trunk Configuration Trunk groups can provide super-bandwidth connections between Alteon Application Switches or other trunk capable devices. In a network topology that has multiple bridge ports connected to a single segment. A trunk group is a group of ports that act together. and the default is 128. the lower the path cost. on Enables STP on the port. and 1 for Gigabit ports. October 2003 . cost <new port Path Cost (1-65535. The port path cost is used to help determine the designated port for a segment.0 Command Reference The port option of STP is turned on by default. with the following restrictions: „ „ „ „ Any physical switch port can belong to no more than one trunk group.

0 Command Reference By default. the contract number is 256 for AD3 and 1024 for AD4. Chapter 6: The Configuration Menu 315393-E. del Removes the current trunk group configuration.Disable trunk group del . rem <port number> Removes a physical port from the current trunk group.Display current Trunk Group configuration Table 6-35 Trunk Configuration Menu Options (/cfg/l2/trunk) Command Syntax and Usage cont <BWM Contract (1-256)> Sets the default Bandwidth Management Contract for this trunk group. the trunk group is empty and disabled. [Trunk group 1 Menu] cont .Remove port from trunk group ena . dis Turns the current trunk group off. cur Displays the current trunk group parameters. By default.Add port to trunk group rem . ena Enables the current trunk group. October 2003 „ 223 .Set BW contract for this trunk group add .Delete trunk group cur . add <port number> Adds a physical port to the current trunk group.Alteon OS 21.Enable trunk group dis .

October 2003 . For more information on configuring VLANs. cont <BW Contract number.Alteon OS 21. delete the VLAN. to create logical segmentation of workgroups. and to enforce security policies among logical segments. which is enabled all the time. [VLAN 1 Menu] name stg cont add rem def jumbo learn ena dis del cur - Set VLAN name Assign VLAN to a Spanning Tree Group Set BW contract Add port to VLAN Remove port from VLAN Define VLAN as list of ports Enable/disable Jumbo Frame support Enable/disable smac learning Enable VLAN Disable VLAN Delete VLAN Display current VLAN configuration Table 6-36 VLAN Configuration Menu Options (/cfg/l2/vlan) Command Syntax and Usage name Assigns a name to the VLAN or changes the existing name. 224 „ Chapter 6: The Configuration Menu 315393-E. add <port number> Adds port(s) or trunk group(s) to the VLAN membership. the VLAN menu option is disabled except VLAN 1.0 Command Reference /cfg/l2/vlan <VLAN number> VLAN Configuration VLANs are commonly used to split up groups of network users into manageable broadcast domains. The default VLAN name is the first one. The commands in this menu configure VLAN attributes. (1-256)> Sets the Bandwidth Management contract for this VLAN. and change the port membership of the VLAN. By default. see “Setup Part 3: VLANs” on page 33. rem <port number> Removes port(s) or trunk group(s) from this VLAN. change the status of the VLAN. The default contract number is 256 on AD3 and 1024 on AD4. stg <Spanning Tree Group index (1-16)> Assigns a VLAN to a Spanning Tree Group.

Alteon OS 21. it defines ports between 1-28 for VLAN 1. By default. dis Disables this VLAN without removing it from the configuration.0 Command Reference Table 6-36 VLAN Configuration Menu Options (/cfg/l2/vlan) Command Syntax and Usage def <list of port numbers> Defines which ports are members of this VLAN. Also. Any port which is removed from a VLAN and which is not a member of any other VLAN is automatically added to default VLAN #1. You cannot remove a port from VLAN #1 if the port has no membership in any other VLAN. del Deletes this VLAN. you cannot add a port to more than one VLAN unless the port has VLAN tagging turned on (see the tag command on page 202). Every port must be a member of at least one VLAN. learn disable|enable Enables or disables source MAC address learning on this VLAN. ena Enables this VLAN. cur Displays the current VLAN configuration. Chapter 6: The Configuration Menu 315393-E. October 2003 „ 225 . NOTE – All ports must belong to at least one VLAN. jumbo disable|enable Enables or disables jumbo frame support on this VLAN. You need to reset the switch using /boot/reset command to enable jumbo frames on the switch.

To view menu options. see page 240. see page 231. arp Displays Address Resolution Protocol menu. To view menu options. To view menu options see page 236. see page 230. 226 „ Chapter 6: The Configuration Menu 315393-E. frwd Displays the IP Forwarding Menu. To view menu options. October 2003 . rmap <route map number (1-32)> Displays the Route Map Menu. see page 233. route Displays the IP Static Route Menu. see page 229.Alteon OS 21. To view menu options see page 235. gw <default gateway number (1-259)> Displays the IP Default Gateway Menu. see page 228. nwf <Network filter number (1-256)> Displays the Network Filter Configuration Menu. To view menu options. To view menu options. To view menu options.0 Command Reference /cfg/l3 Layer 3 Configuration Menu [Layer 3 Menu] if gw route arp frwd nwf rmap rip1 ospf bgp port dns bootp vrrp rtrid metrc cur Interface Menu Default Gateway Menu Static Route Menu ARP Menu Forwarding Menu Network Filters Menu Route Map Menu Routing Information Protocol Menu Open Shortest Path First (OSPF) Menu Border Gateway Protocol Menu IP Port Menu Domain Name System Menu Bootstrap Protocol Relay Menu Virtual Router Redundancy Protocol Menu Set router ID Set default gateway metric Display current IP configuration Table 6-37 Layer 3 Configuration Menu Options (/cfg/l3) Command Syntax and Usage if <interface number (1-256)> Displays the IP Interface Menu. rip1 Displays the Routing Interface Protocol version 1 Menu.

To view menu options.Alteon OS 21. port <port number> Displays the IP Port Menu. bootp Displays the Bootstrap Protocol Menu. see page 251.17. Chapter 6: The Configuration Menu 315393-E. vrrp Displays Virtual Router Redundancy Protocol Menu. To view menu options. For more information on gateway metrics. 192. To view menu options. To view menu options. To view menu options. October 2003 „ 227 . see page 258. see page 275.4. see page 257. metrc strict|roundrobin Sets the default gateway metric for strict or roundrobin. To view menu options. bgp Displays the Border Gateway Protocol Menu. The default gateway metric is strict. see page 241. cur Displays the current IP configuration. see page 260 rtrid <IP address (such as. see page 259. dns Displays the IP Domain Name System Menu.0 Command Reference Table 6-37 Layer 3 Configuration Menu Options (/cfg/l3) Command Syntax and Usage ospf Displays the OSPF Menu.101)> Defines the router ID.

though any VLAN can have multiple IP interfaces in it.255.255.4. Each interface can belong to one VLAN.Alteon OS 21. ena Enables this IP interface. cur Displays the current interface settings. del Removes this IP interface. vlan <VLAN number (1-4090)> Configures the VLAN number for this interface.0)> Configures the IP subnet address mask for the interface using dotted decimal notation.0 Command Reference /cfg/l3/if <interface number> IP Interface Configuration [IP Interface addr mask vlan relay ena dis del cur 1 Menu] Set IP address Set subnet mask Set VLAN number Enable/disable BOOTP relay Enable IP interface Disable IP interface Delete IP interface Display current interface configuration The Alteon Application Switch can be configured with up to 256 IP interfaces.101)> Configures the IP address of the switch interface using dotted decimal notation. It is enabled by default. relay disable|enable Enables or disables the BOOTP relay on this interface. mask <IP subnet mask (such as 255. dis Disables this IP interface. Table 6-38 IP Interface Menu Options (/cfg/l3/if) Command Syntax and Usage addr <IP address (such as 192.17. The Interface option is disabled by default. 228 „ Chapter 6: The Configuration Menu 315393-E. October 2003 . Each IP interface represents the Alteon Application Switch on an IP subnet on your network.

ena Enables the gateway for use.Display current default gateway configuration NOTE – The switch can be configured with up to 255 gateways. arp disable|enable Enables or disables Address Resolution Protocol (ARP) health checks.Delete default gateway cur . Gateways one to four are reserved for default gateway load balancing.Alteon OS 21.Set IP address intr .Enable default gateway dis .17. retry <number of attempts (1-120)> Sets the number of failed health check attempts required before declaring this default gateway inoperative.44)> Configures the IP address of the default IP gateway using dotted decimal notation. intr <0-60 seconds> The switch pings the default gateway to verify that it’s up. October 2003 „ 229 . Chapter 6: The Configuration Menu 315393-E.Enable/disable ARP only health checks vlan . The default is 8 attempts.Set VLAN number ena . Gateways five to 259 are used for load-balancing of VLAN-based gateways.4.Set number of failed attempts to declare gateway DOWN arp . The intr option sets the time between health checks. Table 6-39 Default Gateway Options (/cfg/l3/gw) Command Syntax and Usage addr <default gateway address (such as. The range is from 1 to 120 seconds. This command is disabled by default. 192.0 Command Reference /cfg/l3/gw <gateway number> Default IP Gateway Configuration [Default gateway 1 Menu] addr . The default is 2 seconds. This option is disabled by default. The range is from 1 to 120 attempts.Set interval between ping attempts retry .Disable default gateway del . vlan <VLAN number (1-4090)> Sets the VLAN to be assigned to this default IP gateway.

Table 6-40 IP Static Route Configuration Menu Options (cfg/l3/route) Command Syntax and Usage add <destination> <mask> <gateway> <interface number> Adds a static route. The destination address of the route to remove must be specified using dotted decimal notation. 230 „ Chapter 6: The Configuration Menu 315393-E.Add static route rem . Default Gateway Metrics For information about configuring which gateway is selected when multiple default gateways are enabled. destination subnet mask. /cfg/l3/route IP Static Route Configuration [IP Static Route Menu] add . rem <destination> <mask> Removes a static route.Remove static route cur . and gateway address. Enter all addresses using dotted decimal notation.Alteon OS 21.0 Command Reference Table 6-39 Default Gateway Options (/cfg/l3/gw) Command Syntax and Usage dis Disables the gateway. del Deletes the gateway from the configuration. see page 275.Display current static routes Up to 128 static routes can be configured. cur Displays the current IP static routes. October 2003 . cur Displays the current gateway settings. You will be prompted to enter a destination IP address.

the ARP cache is consulted to see if the IP address of the computer or the router is present in the ARP cache. Static ARP entries enable the switch to reach the hosts without sending an ARP broadcast request to the network.Set re-ARP period in minutes .0 Command Reference /cfg/l3/arp ARP Configuration Menu Address Resolution Protocol (ARP) is the TCP/IP protocol that resides within the Internet layer.Alteon OS 21.Display current ARP configuration Table 6-41 ARP Configuration Menu Options (/cfg/l3/arp) Command Syntax and Usage static Displays Static ARP menu. Static ARPs can also be configured on some gateways as a protection against malicious ARP Cache corruption and possible DOS attacks. ARP resolves a physical address from an IP address. To view options. Then the corresponding physical address is used to send a packet. You can set this duration between two and 120 minutes. cur Displays the current ARP configurations. Chapter 6: The Configuration Menu 315393-E. rearp <2-120 minutes> Defines re-ARP period in minutes.Static ARP Menu . October 2003 „ 231 . ARP also maintains IP to physical address pairs in its cache memory. Static ARPs are also useful to communicate with devices that do not respond to ARP requests. see page 231. [ARP Menu] static rearp cur . In any IP communication. ARP queries machines on the local network for their physical addresses. /cfg/l3/arp/static ARP Static Configuration Menu Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically.

Delete an ARP entry cur . October 2003 .0 allows the static ARP configuration to retain over reboots. [Static ARP Menu] add .Alteon OS 21.0 Command Reference NOTE – Alteon OS 21.4.101)> Deletes a permanent ARP entry.x and below allow the user to configure the ARP information but that information cannot be retained over the switch reboot. Alteon OS 20. cur Displays current static ARP configuration.Display current static ARP configuration Table 6-42 ARP Static Configuration Menu Options (/cfg/l3/arp/static) Command Syntax and Usage add <IP address> <MAC address> <VLAN number> <port number> Adds a permanent ARP entry. 192. 232 „ Chapter 6: The Configuration Menu 315393-E.Add a permanent ARP entry del . del <IP address (such as.17.

Forwarding is turned off by default.Enable or disable forwarding directed broadcasts on . dirbr disable|enable Enables or disables forwarding directed broadcasts. cur Displays the current IP forwarding settings. and to remove local networks. see page 233. This command is disabled by default.Display current IP Forwarding configuration Table 6-43 IP Forwarding Configuration Menu Options (/cfg/l3/frwd) Command Syntax and Usage local Displays the menu used to define local network for route caching. off Disables IP forwarding (routing) on the Alteon Application Switch.Add local network definition rem .Alteon OS 21.Local network definition for route caching menu dirbr . Up to five local networks (lnets) can be configured.Remove local network definition cur . /cfg/l3/frwd/local Local Network Route Caching Definition [IP Local Networks Menu] add . Chapter 6: The Configuration Menu 315393-E.Globally turn IP Forwarding OFF cur . To view menu options.Display current local network definitions This menu is used for adding local networks by setting the local network address and netmask for the route cache.Globally turn IP Forwarding ON off . October 2003 „ 233 . on Enables IP forwarding (routing) on the Alteon Application Switch.0 Command Reference /cfg/l3/frwd IP Forwarding Configuration [IP Forwarding Menu] local .

The /cfg/l3/frwd/local/add parameters define a range of addresses that will be cached on the Alteon Application Switch. and the local network mask is the mask which is applied to produce the range.0.32.0 .Alteon OS 21.0.255 Address 0. This produces a range that includes all Internet addresses for route caching: 0.255.255.255.255.255 205.127.0.0. the destination address is masked (bitwise and) with the local network mask and checked against the local network address. To determine if a route should be added to the memory cache.0.0. By default.205.255.255 128.32.0.0 128.0 Mask 128. For details.0 Command Reference Table 2 IP Local Networks Menu Options (/cfg/l3/frwd/local) Command Syntax and Usage add <local network address> <local network mask> Adds a definition for a local network. Table 6-44 Local Routing Cache Address Ranges Local Host Address Range 0. 234 „ Chapter 6: The Configuration Menu 315393-E. the local network address and mask are both set to 0.255. see “Defining IP Address Ranges for the Local Route Cache” on page 234.0 NOTE – All addresses that fall outside the defined range are forwarded to the default gateway.255. October 2003 .255. by reducing the size of the ARP table on the Alteon Application Switch. you could configure the parameters as shown in the examples in the following table.0 .0. To limit the route cache to your local hosts.0 255.0. rem <local network address> <local network mask> Removes a definition for a local network.32.0.0 .0 205.0.0.0.0. The default gateways must be within range. Addresses to be cached are subnets that are directly connected and for which there is an interface configured on the Alteon Application Switch.0.0.0.0. The local network address is used to define the base IP address in the range which will be cached.0. cur Displays the current local network definitions.255.255. Defining IP Address Ranges for the Local Route Cache The Local Route Cache lets you use switch resources more efficiently.0.0 through 255.0 128.

44)> Sets the starting IP address for this filter.0)> Sets the IP subnet mask that is used with /cfg/l3/nwf/addr to define the range of IP addresses that will be accepted by the peer when the filter is enabled. October 2003 „ 235 . cur Displays the current the Network Filter configuration.17.0.0.4.0.Disable Network Filter delete . 192.IP Subnet mask enable . assign the network filter to a route map.0.0 Command Reference /cfg/l3/nwf Network Filter Configuration [IP Network Filter 1 Menu] addr .Alteon OS 21. Chapter 6: The Configuration Menu 315393-E. The default address is 0. then assign the route map to the peer.Display current Network Filter configuration Table 6-45 IP Network Filter Menu Options (/cfg/l3/nwf) Command Syntax and Usage addr <IP address (such as. delete Deletes the Network Filter configuration. disable Disables the Network Filter configuration. 255.255. For Border Gateway Protocol (BGP).0. The default value is 0.255.Delete Network Filter cur .IP Address mask .0.Enable Network Filter disable . enable Enables the Network Filter configuration. mask <subnet mask (such as.

see page 238. aspath <number (1-8)> Displays the Autonomous System (AS) Filter menu. ap <AS number> [<AS number>] [<AS number>]|none Sets the AS path preference of the matched route.Alteon OS 21. October 2003 . The path with the higher preference is preferred. metric <(value 0-4294967294)>|none Sets the metric of the matched route. Table 6-46 Routing Map Menu Options (/cfg/l3/rmap) Command Syntax and Usage alist <number (1-8)> Displays the Access List menu. For more information. see page 239. For more information.0 Command Reference /cfg/l3/rmap <route map number> Routing Map Configuration Menu NOTE – The map number (1-32) represents the routing map you wish to configure. 236 „ Chapter 6: The Configuration Menu 315393-E. One to three path preferences can be configured. [IP Route Map alist aspath ap lp metric type prec weight enable disable delete cur 1 - Menu] Access List number AS Filter Menu Set as-path prepend of the matched route Set local-preference of the matched route Set metric of the matched route Set OSPF metric-type of the matched route Set the precedence of this route map Set weight of the matched route Enable route map Disable route map Delete route map Display current route map configuration Routing maps control and modify routing information. lp <(value 0-4294967294)>|none Sets the local preference of the matched route. which affects both inbound and outbound directions.

enable Enables the route map. disable Disables the route map. prec <value (1-255)> Sets the precedence of the route map. The smaller the value. the higher the precedence. The default is type 1. cur Displays the current route configuration. October 2003 „ 237 . weight <value (0-65534)>|none Sets the weight of the route map.Alteon OS 21. none—Removes the OSPF metric. „ „ „ Type 1—External routes are calculated using both internal and external metrics. Type 2—External routes are calculated using only the external metrics. Default value is 10. Type 2 routes have more cost than Type 2. Chapter 6: The Configuration Menu 315393-E. delete Deletes the route map.0 Command Reference Table 6-46 Routing Map Menu Options (/cfg/l3/rmap) (Continued) Command Syntax and Usage type <value (1|2)>|none Assigns the type of OSPF metric.

Alteon OS 21.0 Command Reference

/cfg/l3/rmap <route map number/alist <access list number>
IP Access List Configuration Menu
NOTE – The route map number (1-32) and the access list number (1-8) represent the IP access list you wish to configure.

[IP Access List nwf metric action enable disable delete cur -

1 Menu] Network Filter number Metric Set Network Filter action Enable Access List Disable Access List Delete Access List Display current Access List configuration

Table 6-47 IP Access List Menu Options (/cfg/l3/rmap/alist)
Command Syntax and Usage nwf <network filter number (1-256)> Sets the network filter number. See “/cfg/l3/nwf” on page 235 for details. metric <(1-4294967294)>|none Sets the metric value in the AS-External (ASE) LSA. action permit|deny or p|d Permits or denies action for the access list. enable Enables the access list. disable Disables the access list. delete Deletes the access list. cur Displays the current Access List configuration.

238

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

/cfg/l3/rmap <route map number> aspath <autonomous system path>
Autonomous System Filter Path
NOTE – The rmap number (1-32) and the path number (1-8) represent the AS path you wish to configure.

[AS Filter 1 Menu] as - AS number action - Set AS Filter action enable - Enable AS Filter disable - Disable AS Filter delete - Delete AS Filter cur - Display current AS Filter configuration

Table 6-48 AS Filter Menu Options (/cfg/l3/rmap/aspath)
Command Syntax and Usage as <AS number (1-65535)> Sets the Autonomous System filter’s path number. action permit|deny or p|d Permits or denies Autonomous System filter action. enable Enables the Autonomous System filter. disable Disables the Autonomous System filter. delete Deletes the Autonomous System filter. cur Displays the current Autonomous System filter configuration.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

239

Alteon OS 21.0 Command Reference

/cfg/l3/rip1
Routing Information Protocol Configuration
[Routing Information Protocol Menu] updat - Set update period in seconds spply - Enable/disable supplying route updates lsten - Enable/disable listening to route updates deflt - Enable/disable listening to default routes statc - Enable/disable supplying static routes poisn - Enable/disable poisoned reverse vip - Enable/disable vip advertisement on - Globally turn RIP ON off - Globally turn RIP OFF cur - Display current RIP configuration

The RIP1 Menu is used for configuring Routing Information Protocol, version 1 (RIP1) parameters. This option is turned off by default. NOTE – Do not configure RIP1 parameters if your routing equipment uses RIP version 2. Table 6-49 Routing Information Protocol Menu (/cfg/l3/rip1)
Command Syntax and Usage updat <update period (1-120 seconds)> Sets the RIP update period in seconds. It is set at 30 seconds by default. spply disable|enable This command is disabled by default. When enabled, the switch supplies routes to other routers. lsten disable|enable This command is disabled by default. When enabled, the switch learns routes from other routers. deflt disable|enable When enabled, the switch accepts RIP default routes from other routers, but gives them lower priority than configured gateways. When disabled, the switch rejects RIP default routes. This command is disabled by default. statc disable|enable This command is disabled by default. When enabled, the switch supplies static routes. poisn disable|enable This command is disabled by default. When enabled, the switch uses split horizon with poisoned reverse. When disabled, the switch uses only split horizon.

240

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-49 Routing Information Protocol Menu (/cfg/l3/rip1)
Command Syntax and Usage vip disable|enable Enables or disables the advertisement of virtual IP addresses as Host Routes. If a VIP route exists in a routing table, it will always be advertised except when it is included in another network route that is already being advertised. Note: If all real servers behind a VIP go down, the route gets removed from the routing table, and will not be advertised. If we disable all the real servers using operation command, the VIP route does not get eliminated from the routing table, and the switch will continue to advertise the route. on Globally turns RIP ON. off Globally turns RIP OFF. cur Displays the current RIP configuration.

/cfg/l3/ospf
Open Shortest Path First Configuration
Alteon OS supports the Open Shortest Path First (OSPF) routing protocol. The Alteon OS implementation conforms to the OSPF version 2 specifications detailed in Internet RFC 1583. OSPF is designed for routing traffic within a single IP domain called an Autonomous System (AS). The AS can be divided into smaller logical units known as areas. In any AS with multiple areas, one area must be designated as area 0, known as the backbone. The backbone acts as the central OSPF area. All other areas in the AS must be connected to the backbone. Areas inject summary routing information into the backbone, which then distributes it to other areas as needed. For more information on how to configure OSPF on the switch, refer to your Alteon OS Application Guide.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

241

Alteon OS 21.0 Command Reference

[Open Shortest Path First Menu] aindex - OSPF Area (index) menu range - OSPF Summary Range menu if - OSPF Interface menu virt - OSPF Virtual Links menu host - OSPF Host Entry menu redist - OSPF Route Redistribute menu lsdb - Set the LSDB limit default - Originate default route information md5key - OSPF MD5 Key menu on - Globally turn OSPF ON off - Globally turn OSPF OFF cur - Display current OSPF configuration

Table 6-50 OSPF Configuration Menu Options (/cfg/l3/ospf)
Command Syntax and Usage aindex <area index (0-2)> Displays the area index menu. This area index does not represent the actual OSPF area number. See page 243 to view menu options. range <range number (1-16)> Displays summary routes menu for up to 16 IP addresses. See page 245 to view menu options. if <interface number (1-256)> Displays the OSPF interface configuration menu. See page 246 to view menu options. virt <virtual link (1-3)> Displays the Virtual Links menu used to configure OSPF for a Virtual Link. See page 247 to view menu options. host <host entry number (1-128)> Displays the menu for configuring OSPF for the host routes. Up to 128 host routes can be configured. Host routes are used for advertising network device IP addresses to external networks to perform server load balancing within OSPF. It also makes Area Border Route (ABR) load sharing and ABR failover possible. See page 249 to view menu options. redist <fixed|static|rip|ebgp|ibgp> Displays Route Distribution Menu See page 250 to view menu options. lsdb <LSDB limit (0-2000, 0 for no limit)> Sets the link state database limit. default <metric (1-16777215)> <metric-type 1|2>|none Sets one default route among multiple choices in an area. Use none for no default.

242

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-50 OSPF Configuration Menu Options (/cfg/l3/ospf)
Command Syntax and Usage md5key <key ID (1-255)> Assigns a string to MD5 authentication key. See on Enables OSPF on the Alteon Application Switch. off Disables OSPF on the Alteon Application Switch. cur Displays the current OSPF configuration settings.

/cfg/l3/ospf/aindex
Area Index Configuration Menu
[OSPF Area (index) 1 Menu] areaid - Set area ID type - Set area type metric - Set stub area metric auth - Set authentication type spf - Set time interval between two SPF calculations enable - Enable area disable - Disable area delete - Delete area cur - Display current OSPF area configuration

Chapter 6: The Configuration Menu
315393-E, October 2003

„

243

Alteon OS 21.0 Command Reference

Table 6-51 Area Index Configuration Menu Options (/cfg/l3/ospf/aindex)
Command Syntax and Usage areaid <IP address (such as, 192.4.17.101)> Defines the IP address of the OSPF area number. type transit|stub|nssa Defines the type of area. For example, when a virtual link has to be established with the backbone, the area type must be defined as transit. Transit area: allows area summary information to be exchanged between routing devices. Any area that is not a stub area or NSSA is considered to be transit area. Stub area: is an area where external routing information is not distributed. Typically, a stub area is connected to only one other area. NSSA: Not-So-Stubby Area (NSSA) is similar to stub area with additional capabilities. For example, routes originating from within the NSSA can be propagated to adjacent transit and backbone areas. External routes from outside the Autonomous System (AS) can be advertised within the NSSA but are not distributed into other areas. metric <metric value (1-65535)> Configures a stub area to send a numeric metric value. All routes received via that stub area carry the configured metric to potentially influencing routing decisions. Metric value assigns the priority for choosing the switch for default route. Metric type determines the method for influencing routing decisions for external routes. auth none|password|md5 None: No authentication required. Password: Authenticates simple passwords so that only trusted routing devices can participate. MD5: This parameter is used when MD5 cryptographic authentication is required. spf <interval (0-255)> Sets time interval between two successive SPF (shortest path first) calculations of the shortest path tree using the Dijkstra’s algorithm. enable Enables the OSPF area. disable Disables the OSPF area. delete Deletes the OSPF area. cur Displays the current OSPF configuration.

244

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

/cfg/l3/ospf/range
OSPF Summary Range Configuration Menu
[OSPF Summary addr mask aindex hide enable disable delete cur Range 1 Menu] - Set IP address - Set IP mask - Set area index - Enable/disable hide range - Enable range - Disable range - Delete range - Display current OSPF summary range configuration

Table 6-52 OSPF Summary Range Configuration Menu Options (/cfg/l3/ospf/range)
Command Syntax and Usage addr <IP Address (such as, 192.4.17.101)> Displays the base IP address for the range. mask <IP address (such as, 192.4.17.101> Displays the IP address mask for the range. aindex <area index [0-2]> Displays the area index used by the Alteon Application Switch. hide disable|enable Hides the OSPF summary range. enable Enables the OSPF summary range. disable Disables the OSPF summary range. delete Deletes the OSPF summary range. cur Displays the current OSPF summary range.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

245

hello <value (1-65535)> Displays the interval in seconds between the hello packets for the interfaces. dead <value (1-65535)> Displays the health parameters of a hello packet. prio <priority value (0-255)> Displays the assigned priority value to the Alteon Application Switch’s OSPF interfaces. A priority value of 0 specifies that the interface cannot be used as Designated Router (DR) or Backup Designated Router (BDR). (A priority value of 127 is the highest and 1 is the lowest.) cost <cost value (1-65535)> Displays cost set for the selected path—preferred or backup. Usually the cost is inversely proportional to the bandwidth of the interface.Alteon OS 21.0 Command Reference /cfg/l3/ospf/if OSPF Interface Configuration Menu [OSPF Interface aindex prio cost hello dead trans retra key mdkey enable disable delete cur 1 Menu] Set area index Set interface router priority Set interface cost Set hello interval in seconds Set dead interval in seconds Set transit delay in seconds Set retransmit interval in seconds Set authentication key Set MD5 key ID Enable interface Disable interface Delete interface Display current OSPF interface configuration Table 6-53 OSPF Interface Configuration Menu Options (/cfg/l3/ospf/if) Command Syntax and Usage aindex <area index (0-2)> Displays the OSPF area index. 246 „ Chapter 6: The Configuration Menu 315393-E. trans <value (0-3600)> Displays the transit delay in seconds. October 2003 . retra <value (0-3600)> Displays the retransmit interval in seconds. which is set for an interval of seconds before declaring a silent router to be down. Low cost indicates high bandwidth.

mdkey <key ID (1-255)>|none Assigns an MD5 key to the interface.Set MD5 key ID .Alteon OS 21. disable Disables OSPF interface.Set transit delay in seconds .Disable interface . delete Deletes OSPF interface.Set dead interval in seconds .Set hello interval in seconds .Set area index .Set router ID of virtual neighbor .0 Command Reference Table 6-53 OSPF Interface Configuration Menu Options (/cfg/l3/ospf/if) Command Syntax and Usage key <key>|none Sets the authentication key to clear the password. enable Enables OSPF interface.Set retransmit interval in seconds .Display current OSPF interface configuration Chapter 6: The Configuration Menu 315393-E.Set authentication key .Delete interface . /cfg/l3/ospf/virt OSPF Virtual Link Configuration Menu [OSPF Virtual aindex hello dead trans retra nbr key mdkey enable disable delete cur Link 1 Menu] . October 2003 „ 247 .Enable interface . cur Displays the current settings for OSPF interface.

October 2003 . retra <value (1-3600)> Displays the retransmit interval in seconds. Default is none. which is set to be in an interval of seconds.0 Command Reference Table 6-54 OSPF Virtual Link Configuration Menu Options (/cfg/l3/ospf/virt) Command Syntax and Usage aindex <area index (0-2)> Displays the OSPF area index.0.Alteon OS 21.0. delete Deletes OSPF virtual link. Default is one seconds. Default is 0. trans <value (1-3600)> Displays the delay in transit in seconds.0. Default is none. cur Displays the current OSPF virtual link settings. nbr <nbr router ID (IP address)> Displays the router ID of the virtual neighbor. Default is five seconds. dead <value (1-65535)> Displays the health parameters of a hello packet. which is set to be in an interval of seconds. Default is 40 seconds. enable Enables OSPF virtual link. 248 „ Chapter 6: The Configuration Menu 315393-E. disable Disables OSPF virtual link. mdkey <key ID (1-255)>|none Sets MD5 key ID for each virtual link. key <key>|none Displays the password (up to eight characters) for each virtual link. hello <value (1-65535)> Displays the authentication parameters of a hello packet.

192. delete Deletes OSPF host entry.Set host entry IP address aindex .Enable host entry disable .Alteon OS 21.Disable host entry delete .Delete host entry cur .Set area index cost . cur Displays the current OSPF host entries.Display current OSPF host entry configuration Table 6-55 OSPF Host Entry Configuration Menu Options (/cfg/l3/ospf/host) Command Syntax and Usage addr <IP address (such as.4. cost <cost value [1-65535]> Displays the cost value of the host.0 Command Reference /cfg/l3/ospf/host OSPF Host Entry Configuration Menu [OSPF Host Entry 1 Menu] addr .101)> Displays the base IP address for the host entry. Chapter 6: The Configuration Menu 315393-E. enable Enables OSPF host entry. October 2003 „ 249 . disable Disables OSPF host entry.Set cost of this host entry enable .17. aindex <area index [0-2]> Displays the area index of the host.

This option adds a route map to the route redistribution list. To add specific route maps.Display current route-maps added Table 6-56 OSPF Route Redistribution Menu Options (/cfg/l3/ospf/redist) Command Syntax and Usage add (<route map (1-32)> <route map (1-32)>)|all Adds selected routing maps to the rmap list. To remove all 32 route maps. To remove a previous configuration and stop exporting the routes of the protocol. Removes routing maps from the rmap list. |all Removes the route map from the route redistribution list. NULL at the end.. To remove specific route maps. October 2003 . enter routing map numbers one per line. The routes of the redistribution protocol matched by the route maps in the route redistribution list will be redistributed.0 Command Reference /cfg/l3/ospf/redist <fixed|static|rip|ebgp|ibgp> OSPF Route Redistribution Configuration Menu.Add rmap into route redistribution list rem .To add all the 32 route maps. [OSPF Redistribute Fixed Menu] add . enter routing map numbers one per line. rem (<route map (1-32)> <route map (1-32)>) .Export all routes of this protocol cur . cur Displays the current route map settings. enter all. export <metric (1-16777215)><metric type (1|2)> |none Exports the routes of this protocol as external OSPF AS-external LSAs in which the metric and metric type are specified.Remove rmap from route redistribution list export . NULL at end. enter all. enter none..Alteon OS 21. /cfg/l3/ospf/md5key OSPF MD5 Key Configuration Menu [OSPF MD5 Key key delete cur 1 Menu] Set authentication key Delete key Display current MD5 key configuration 250 „ Chapter 6: The Configuration Menu 315393-E.

The BGP menu option is turned off by default. cur Displays the current MD5 key configuration. it's called external BGP (eBGP). fixed routes and virtual server IP addresses with other internal and external routers. delete Deletes the authentication key for this OSPF packet. up to 16 chars> Sets the authentication key up to 16 characters for this OSPF packet.Alteon OS 21. [Border Gateway peer aggr as pref on off cur Protocol Menu] Peer menu Aggregation menu Set Autonomous System (AS) number Set Local Preference Globally turn BGP ON Globally turn BGP OFF Display current BGP configuration Chapter 6: The Configuration Menu 315393-E. When run within an autonomous system. The BGP Menu enables you to configure the switch to receive routes and to advertise static routes. it's called internal BGP (iBGP). October 2003 „ 251 . /cfg/l3/bgp Border Gateway Protocol Configuration Border Gateway Protocol (BGP) is an Internet protocol that enables routers on a network to share routing information with each other and advertise information about the segments of the IP address space they can access within their network with routers on external networks. BGP allows you to decide what is the “best” route for a packet to take from your network to a destination on another network. rather than simply setting a default route from your border router(s) to your upstream provider(s). You can configure BGP either within an autonomous system or between different autonomous systems.0 Command Reference Table 6-57 OSPF MD5 Key Configuration Menu Options (/cfg/l3/ospf/md5key) Command Syntax and Usage key <key. BGP is defined in RFC 1771. When run between different autonomous systems.

as <autonomous system number (1-65535)> Sets Autonomous System Number for this autonomous system. To view menu options. use the route with the shortest AS path as the preferred route if you are using eBGP. 252 „ Chapter 6: The Configuration Menu 315393-E. off Globally turns BGP off. There is one fixed route per IP interface. Each border router. or a business division). To view menu options.0 Command Reference NOTE – Fixed routes are subnet routes. on Globally turns BGP on. An autonomous system is assigned a globally unique number called an Autonomous System Number (ASN). cur Displays the current BGP configuration. When multiple peers advertise the same route. October 2003 . a business enterprise. see page 253. or use the local preference if you are using iBGP. exchanges routing information with routers on other external networks. Table 6-58 Border Gateway Protocol Menu (/cfg/l3/bgp) Command Syntax and Usage peer <peer number (1-16)> Displays the menu used to configure each BGP peer. An autonomous system (AS) is the unit of router policy. either a single network or a group of networks that is controlled by a common network administrator on behalf of an administrative entity (such as a university. aggr <aggregate number (1-16)> Displays the Aggregation Menu. The path with the higher value is preferred. An autonomous system shares routing information with other autonomous systems using the Border Gateway Protocol (BGP). see page 256. pref <local preference (0-4294967294)> Sets the local preference. within an autonomous system.Alteon OS 21.

Set remote IP address ras .0 Command Reference /cfg/l3/bgp/peer <peer number> BGP Peer Configuration Menu [BGP Peer 1 Menu] redist .Set remote autonomous system number hold . 3-65535)> Sets the period of time.Delete peer cur .0. hold <hold time (0.Set min time between route originations ttl .Alteon OS 21. addr <IP address (such as.Set connect retry interval orig . which are border routers that exchange routing information with routers on internal and external networks. It is set at 0 by default.Display current peer configuration This menu is used to configure BGP peers. ras <AS number (0-65535)> Sets the remote autonomous system number for the specified peer. using dotted decimal notation. Table 6-59 BGP Peer Configuration Options (/cfg/l3/bgp/peer) Command Syntax and Usage redist Displays BGP Redistribution Menu.17.4. The default address is 0.Enable peer disable .Set keep alive time advert .Set hold time alive .Set time-to-live of IP datagrams addi . October 2003 „ 253 .0.Redistribution menu addr . 1-21845)> Sets the keep-alive time for the specified peer in seconds. It is set at 90 seconds by default.Remove rmap from in-rmap list remo . 192. see page 255. that will elapse before the peer session is torn down because the switch hasn’t received a “keep alive” message from the peer.Disable peer delete . in seconds. Chapter 6: The Configuration Menu 315393-E. The peer option is disabled by default. alive <keepalive time (0.Set min time between advertisements retry .0.101)> Defines the IP address for the specified peer (border router).Remove rmap from out-rmap list enable .Add rmap into in-rmap list addo . To view the menu options.Add rmap into out-rmap list remi .

It is also used to support multi-hops. This command specifies the number of router hops that the IP packet can make. when exhausted. addi <route map ID (1-32)> Adds route map into in-route map list. remo <route map ID (1-32)> Removes route map from out-route map list. del Deletes this peer configuration. 254 „ Chapter 6: The Configuration Menu 315393-E.Alteon OS 21. October 2003 . dis Disables this peer configuration. cur Displays the current BGP peer configuration. remi <route map ID (1-32)> Removes route map from in-route map list. retry <connect retry interval (1-65535)> Sets connection retry interval in seconds. would cause the packet to be discarded. The TTL is determined by the number of router hops the packet is allowed before it must be discarded. The default number is set at 1.0 Command Reference Table 6-59 BGP Peer Configuration Options (/cfg/l3/bgp/peer) Command Syntax and Usage advert <min adv time (1-65535)> Sets time in seconds between advertisements. ttl <number of router hops (1-255)> Time-to-live (TTL) is a value in an IP packet that tells a network router whether or not the packet has been in the network too long and should be discarded. orig <min orig time (1-65535)> Sets the minimum time between route originations in seconds. which allow BGP peers to talk across a routed network. This value is used to restrict the number of “hops” the advertisement makes. addo <route map ID (1-32)> Adds route map into out-route map list. ena Enables this peer configuration. TTL specifies a certain time span in seconds that.

rip disable|enable Enables or disables advertising RIP routes ospf disable|enable Enables or disables advertising OSPF routes. If the routes are learned from default gateway configuration. you have to enable static routes since the routes from default gateway are static routes. Redistribute: Default routes are either configured through default gateway or learned through other protocols and redistributed to peer.Alteon OS 21. fixed disable|enable Enables or disables advertising fixed routes. static disable|enable Enables or disables advertising static routes. Chapter 6: The Configuration Menu 315393-E. originate. you have to enable that protocol in this redistribute submenu. Originate: The switch sends a default route to peers even though it does not have any default routes in its routing table. or none. October 2003 „ 255 .0 Command Reference /cfg/l3/bgp/peer/redist BGP Redistribution Configuration Menu [Redistribution metric default rip ospf fixed static vip cur Menu] Set default-metric of advertised routes Set default route action Enable/disable advertising RIP routes Enable/disable advertising OSPF routes Enable/disable advertising fixed routes Enable/disable advertising static routes Enable/disable advertising VIP routes Display current redistribution configuration Table 6-60 BGP Redistribution Configuration Menu Options (/cfg/l3/bgp/peer/redist) Command Syntax and Usage metric <metric (1-4294967294)>|none Sets default metric of advertised routes. None: No routes are configured Import: Import these routes. default none|import|originate|redistribute Sets default route action. redistribute. Similarly. Defaults routes can be configured as import. if the routes are learned from a certain routing protocol.

0 Command Reference Table 6-60 BGP Redistribution Configuration Menu Options (/cfg/l3/bgp/peer/redist) Command Syntax and Usage vip disable|enable Enables or disables advertising VIP routes. /cfg/l3/bgp/aggr <aggregate number> BGP Aggregate Routing Configuration Menu NOTE – The aggregate number (1-16) represents the aggregation route you wish to configure.Disable aggregation delete .17. such as 192.4. mask <IP subnet mask.101> Adds the IP address to the selected aggregate.Set aggregation IP address mask . such as 255.Alteon OS 21. 256 „ Chapter 6: The Configuration Menu 315393-E. Table 6-61 BGP Aggregate Menu Options (/cfg/l3/ip/bgp/aggr) Command Syntax and Usage addr <IP address.Enable aggregation disable .0> Sets the IP mask for the selected aggregate. delete Deletes the selected aggregate. disable Disables the selected aggregate. October 2003 . cur Displays the current redistribution configuration.Display current aggregation configuration This menu allows you to configure aggregate routing to condense the number of routes between internal and external peer routers.Set aggregation network mask enable .255.Delete aggregation current .255. [BGP Aggr 1 Menu] addr . enable Enables the selected aggregate.

Turn Forwarding OFF cur .Display current port configuration The Layer 3 Port Menu allows you to turn IP forwarding on or off on a port-by-port basis. the port forwarding option is turned on. Chapter 6: The Configuration Menu 315393-E.Turn Forwarding ON off . Table 6-62 IP Forwarding Port Configuration Menu Options (/cfg/l3/port) Command Syntax and Usage on Enables IP forwarding for the current port.Alteon OS 21.0 Command Reference Table 6-61 BGP Aggregate Menu Options (/cfg/l3/ip/bgp/aggr) (Continued) Command Syntax and Usage current Displays the current aggregate configuration. cur Displays the current IP forwarding settings. /cfg/l3/port <port number> IP Forwarding Port Configuration Menu [IP Forwarding Port 1 Menu] on . off Disables IP forwarding for the current port. By default. October 2003 „ 257 .

DNS parameters must be configured prior to using hostname parameters with the ping. 192. and for setting the default domain name served by the switch services. traceroute. Enter the IP address using dotted decimal notation.Set IP address of secondary DNS server dname . October 2003 .Display current DNS configuration The Domain Name System (DNS) Menu is used for defining the primary and secondary DNS servers on your local network.Set IP address of primary DNS server secon .101)> You will be prompted to set the IP address for your secondary DNS server. Table 6-63 Domain Name System Menu Options (/cfg/l3/dns) Command Syntax and Usage prima <IP address (such as.17.17.4.0 Command Reference /cfg/l3/dns Domain Name System Configuration Menu [Domain Name System Menu] prima . For example: mycompany. 192.4. 258 „ Chapter 6: The Configuration Menu 315393-E. Use dotted decimal notation.Alteon OS 21. and tftp commands. the configured secondary will be used instead. dname <dotted DNS notation>|none Sets the default domain name used by the switch.com cur Displays the current Domain Name System settings.101)> You will be prompted to set the IP address for your primary DNS server. secon <IP address (such as. If the primary DNS server fails.Set default domain name cur .

Alteon OS 21.0 Command Reference

/cfg/l3/bootp
Bootstrap Protocol Relay Configuration Menu
[Bootstrap Protocol Relay Menu] addr - Set IP address of BOOTP server addr2 - Set IP address of second BOOTP server on - Globally turn BOOTP relay ON off - Globally turn BOOTP relay OFF cur - Display current BOOTP relay configuration

The Bootstrap Protocol (BOOTP) Relay Menu is used to allow hosts to obtain their configurations from a Dynamic Host Configuration Protocol (DHCP) server. The BOOTP configuration enables the switch to forward a client request for an IP address to two DHCP/BOOTP servers with IP addresses that have been configured on the Alteon Application Switch. BOOTP relay menu is turned off by default. Table 6-64 Bootstrap Protocol Relay Configuration Menu Options (/cfg/l3/bootp)
Command Syntax and Usage addr <IP address (such as, 192.4.17.101)> Sets the IP address of the BOOTP server. addr2 <IP address (such as, 192.4.17.101)> Sets the IP address of the second BOOTP server. on Globally turns on BOOTP relay. off Globally turns off BOOTP relay. cur Displays the current BOOTP relay configuration.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

259

Alteon OS 21.0 Command Reference

/cfg/l3/vrrp
VRRP Configuration Menu
[Virtual Router vr vrgroup group if track hotstan on off holdoff cur Redundancy Protocol Menu] VRRP Virtual Router Menu VRRP Virtual Router Vrgroup Menu VRRP Virtual Router Group Menu VRRP Interface Menu VRRP Priority Tracking Menu Enable/disable hot-standby processing Globally turn VRRP ON Globally turn VRRP OFF Globally VRRP hold off time Display current VRRP configuration

Virtual Router Redundancy Protocol (VRRP) support on Alteon Application Switches provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address. If the master fails, one of the backup virtual routers will assume routing authority and take control of the virtual router IP address. By default, VRRP is disabled. Alteon OS has extended VRRP to include virtual servers as well, allowing for full active/active redundancy between its Layer 4 switches. For more information on VRRP, see the “High Availability” chapter in your Alteon OS 21.0 Application Guide. Table 6-65 Virtual Router Redundancy Protocol Options (/cfg/l3/vrrp)
Command Syntax and Usage vr <virtual router number (1-256)> Displays the VRRP Virtual Router Menu. This menu is used for configuring up to 256 virtual routers on this switch. To view menu options, see page 262. vrgroup <virtual router vrgroup number (1-16)> Displays VR Group Menu. To view menu options, see page 265. group Displays the VRRP virtual router group menu, used to combine all virtual routers together as one logical entity. Group options must be configured when using two or more Alteon switches in a hotstandby failover configuration where only one switch is active at any given time. To view menu options, see page 269.

260

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-65 Virtual Router Redundancy Protocol Options (/cfg/l3/vrrp)
Command Syntax and Usage if <interface number (1-256)> Displays the VRRP Virtual Router Interface Menu. To view menu options, see page 273. track Displays the VRRP Tracking Menu. This menu is used for weighting the criteria used when modifying priority levels in the master router election process. To view menu options, see page 274. hotstan disable|enable Enables or disables hot standby processing, in which two or more switches provide redundancy for each other. By default, this option is disabled. on Globally enables VRRP on this switch. off Globally disables VRRP on this switch. holdoff <0-255 seconds> Globally suspends VRRP operation for the specified interval. cur Displays the current VRRP parameters.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

261

Alteon OS 21.0 Command Reference

/cfg/l3/vrrp/vr <router number>
Virtual Router Configuration Menu
[VRRP Virtual track vrid addr if prio adver preem share ena dis del cur Router 1 Menu] - Priority Tracking Menu - Set virtual router ID - Set IP address - Set interface number - Set renter priority - Set advertisement interval - Enable or disable preemption - Enable or disable sharing - Enable virtual router - Disable virtual router - Delete virtual router - Display current VRRP virtual router configuration

This menu is used for configuring up to 256 virtual routers for this switch. A virtual router is defined by its virtual router ID and an IP address. On each VRRP-capable routing device participating in redundancy for this virtual router, a virtual router will be configured to share the same virtual router ID and IP address. Virtual routers are disabled by default. Table 6-66 VRRP Virtual Router Options (/cfg/l3/vrrp/vr)
Command Syntax and Usage track Displays the VRRP Priority Tracking Menu for this virtual router. Tracking is Alteon’s proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router. Tracking is not needed if sharing (share) is enabled. To view menu options, see page 264. vrid <virtual router ID (1-255)> Defines the virtual router ID. This is used in conjunction with addr (below) to define a virtual router on this switch. To create a pool of VRRP-enabled routing devices which can provide redundancy to each other, each participating VRRP device must be configured with the same virtual router: one that shares the same vrid and addr combination. The vrid for standard virtual routers (where the virtual router IP address is not the same as any virtual server) can be any integer between 1 and 255. The default value is 1. All vrid values must be unique within the VLAN to which the virtual router’s IP interface belongs. addr <IP address (such as, 192.4.17.101)> Defines the IP address for this virtual router using dotted decimal notation. This is used in conjunction with the vrid (above) to configure the same virtual router on each participating VRRP device. The default address is 0.0.0.0.

262

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-66 VRRP Virtual Router Options (/cfg/l3/vrrp/vr)
Command Syntax and Usage if <interface number (1-256)> Selects a switch IP interface (between 1 and 256). If the IP interface has the same IP address as the addr option above, this switch is considered the “owner” of the defined virtual router. An owner has a special priority of 255 (highest) and will always assume the role of master router, even if it must preempt another virtual router which has assumed master routing authority. This preemption occurs even if the preem option below is disabled. The default value is 1. prio <priority (1-254)> Defines the election priority bias for this virtual server. This can be any integer between 1 and 254. The default value is 100. During the master router election process, the routing device with the highest virtual router priority number wins. If there is a tie, the device with the highest IP interface address wins. If this virtual router’s IP address (addr) is the same as the one used by the IP interface, the priority for this virtual router will automatically be set to 255 (highest). When priority tracking is used (/cfg/l3/vrrp/track or /cfg/l3/vrrp/vr #/track), this base priority value can be modified according to a number of performance and operational criteria. adver <seconds (1-255)> Defines the time interval between VRRP master advertisements. This can be any integer between 1 and 255 seconds. The default value is 1. preem disable|enable Enables or disables master preemption. When enabled, if this virtual router is in backup mode but has a higher priority than the current master, this virtual router will preempt the lower priority master and assume control. Note that even when preem is disabled, this virtual router will always preempt any other master if this switch is the owner (the IP interface address and virtual router addr are the same). By default, this option is enabled. share disable|enable Enables or disables virtual router sharing, an Alteon proprietary extension to VRRP. When enabled, this switch will process any traffic addressed to this virtual router, even when in backup mode. By default, this option is enabled. ena Enables this virtual router. dis Disables this virtual router. del Deletes this virtual router from the switch configuration. cur Displays the current configuration information for this virtual router.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

263

Alteon OS 21.0 Command Reference

/cfg/l3/vrrp/vr <router number>/track
Virtual Router Priority Tracking Configuration
[VRRP Virtual vrs ifs ports l4pts reals hsrp hsrv cur Router 1 Priority Tracking Menu] - Enable/disable tracking master virtual routers - Enable/disable tracking other interfaces - Enable/disable tracking VLAN switch ports - Enable/disable tracking L4 switch ports - Enable/disable tracking L4 real servers - Enable/disable tracking HSRP - Enable/disable tracking HSRP by VLAN - Display current VRRP virtual router configuration

This menu is used for modifying the priority system used when electing the master router from a pool of virtual routers. Various tracking criteria can be used to bias the election results. Each time one of the tracking criteria is met, the priority level for the virtual router is increased by an amount defined through the VRRP Tracking Menu (see page 274). Criteria are tracked dynamically, continuously updating virtual router priority levels when enabled. If the virtual router preemption option (see preem in Table 6-66 on page 262) is enabled, this virtual router can assume master routing authority when its priority level rises above that of the current master. Some tracking criteria (vrs, ifs, and ports below) apply to standard virtual routers, otherwise called “virtual interface routers.” Other tracking criteria (l4pts, reals, and hsrp) apply to “virtual server routers,” which perform Layer 4 Server Load Balancing functions. A virtual server router is defined as any virtual router whose IP address (addr) is the same as any configured virtual server IP address. Table 6-67 VRRP Priority Tracking Menu Options (/cfg/l3/vrrp/vr/track)
Command Syntax and Usage vrs disable|enable When enabled, the priority for this virtual router will be increased for each virtual router in master mode on this switch. This is useful for making sure that traffic for any particular client/server pairing are handled by the same switch, increasing routing and load balancing efficiency. This command is disabled by default. ifs disable|enable When enabled, the priority for this virtual router will be increased for each IP interface active on this switch. An IP interface is considered active when there is at least one active port on the same VLAN. This helps elect the virtual routers with the most available routes as the master. This command is disabled by default.

264

„

Chapter 6: The Configuration Menu
315393-E, October 2003

Alteon OS 21.0 Command Reference

Table 6-67 VRRP Priority Tracking Menu Options (/cfg/l3/vrrp/vr/track)
Command Syntax and Usage ports disable|enable When enabled, the priority for this virtual router will be increased for each active port on the same VLAN. A port is considered “active” if it has a link and is forwarding traffic. This helps elect the virtual routers with the most available ports as the master. This command is disabled by default. l4pts disable|enable When enabled for virtual server routers, the priority for this virtual router will be increased for each physical switch port which has active Layer 4 processing on this switch. This helps elect the main Layer 4 switch as the master. This command is disabled by default. reals disable|enable When enabled for virtual server routers, the priority for this virtual router will be increased for each healthy real server behind the virtual server IP address of the same IP address as the virtual router on this switch. This helps elect the switch with the largest server pool as the master, increasing Layer 4 efficiency. This command is disabled by default. hsrp disable|enable <priority (1-254)> Hot Standby Router Protocol (HSRP) is used with some types of routers for establishing router failover. In networks where HSRP is used, enable this switch option to increase the priority of this virtual router for each Layer 4 client-only port that receives HSRP advertisements. Enabling HSRP helps elect the switch closest to the master HSRP router as the master, optimizing routing efficiency. This command is disabled by default. hsrv disable|enable Hot Standby Router on VLAN (HSRV) is used to work in VLAN-tagged environments. Enable this switch option to increment only that vrrp instance that is on the same VLAN as the tagged hsrp master flagged packet. This command is disabled by default. cur Displays the current configuration for priority tracking for this virtual router.

/cfg/l3/vrrp/vrgroup
Virtual Router Group Menu
This feature allows the failover of individual groups of VIRs and VSRs. When Web hosting is shared between two or more customers on a single VRRP switch, you can group VIRs and VSRs to serve the high availability of a specific customer. If failover occurs on a customer link, the group of VIRs and VSRs associated with that customer alone will fail over to the backup switch. The VIRs and VSRs configured for the other customers on the master switch are not affected.

Chapter 6: The Configuration Menu
315393-E, October 2003

„

265

Alteon OS 21.0 Command Reference

Up to 16 virtual router groups can be configured on the switch.
[VRRP Virtual Router Vrgroup 1 Menu] track - Priority Tracking Menu name - Set virtual router group name add - Add virtual router to group rem - Remove virtual router from group prio - Set priority for virtual router group ena - Enable virtual router group dis - Disable virtual router group del - Delete virtual router group cur - Display current VRRP virtual router group configuration

Table 6-68 Virtual Router Group Menu Options (/cfg/l3/vrrp/vrgroup)
Command Syntax and Usage track Displays VRRP priority tracking menu for this virtual router group. Tracking is Alteon’s proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router. To view menu options, see page 267. name Defines virtual router group name up to eight characters. add <virtual router number (1-256)> Adds a virtual router to the group. Each virtual router group can have up to 16 virtual routers. rem <virtual router number (1-256)> Removes a virtual router from the group. prio <1-254> Defines the election priority bias for this virtual router group. This can be any integer between 1 and 254. The default value is 100. During the master router election process, the routing device with the highest virtual router priority number wins. If there is a tie, the device with the highest IP interface address wins. If this virtual router’s IP address (addr) is the same as the one used by the IP interface, the priority for this virtual router will automatically be set to 255 (highest). When priority tracking is used (/cfg/l3/vrrp/vrgroup #/track), this base priority value can be modified according to a number of performance and operational criteria. ena Enables the virtual router group. dis Disables the virtual router group.

266

„

Chapter 6: The Configuration Menu
315393-E, October 2003

This helps elect the virtual routers with the most available ports as the master. Chapter 6: The Configuration Menu 315393-E. /cfg/l3/vrrp/vrgroup <vrgroup number>/ track Virtual Router Group Priority Tracking Configuration Menu This menu is used for modifying the priority system used when electing the master router from a pool of virtual routers. [VRRP Vrgroup ifs ports l4pts reals hsrp hsrv cur 1 Priority Tracking Menu] Enable/disable tracking interfaces Enable/disable tracking VLAN switch ports Enable/disable tracking L4 switch ports Enable/disable tracking L4 real servers Enable/disable tracking HSRP Enable/disable tracking HSRP by VLAN Display current VRRP vrgroup tracking configuration Table 6-69 Virtual Router Group Priority Tracking Menu Options (/cfg/l3/vrrp/vrgroup/track) Command Syntax and Usage ifs disable|enable When enabled. Criteria are tracked dynamically. This command is disabled by default. This command is disabled by default. This helps elect the virtual routers with the most available routes as the master.0 Command Reference Table 6-68 Virtual Router Group Menu Options (/cfg/l3/vrrp/vrgroup) Command Syntax and Usage del Deletes the virtual router group. continuously updating virtual router priority levels when enabled. ports disable|enable When enabled. cur Displays the current VRRP virtual router group configuration.Alteon OS 21. the priority will be increased for each active port on the VLAN on this virtual router group. Various tracking criteria can be used to bias the election results. A port is considered “active” if it has a link and is forwarding traffic. October 2003 „ 267 . An IP interface is considered active when there is at least one active port on the same VLAN. Each time one of the tracking criteria is met. the priority level for the virtual router is increased by an amount defined through the VRRP Tracking Menu (see page 274). the priority will be increased for each IP interface active on this virtual router group.

reals disable|enable When enabled for virtual server routers. In networks where HSRP is used. October 2003 . hsrv disable|enable Hot Standby Router on VLAN (HSRV) is used to work in VLAN-tagged environments.0 Command Reference Table 6-69 Virtual Router Group Priority Tracking Menu Options (/cfg/l3/vrrp/vrgroup/track) Command Syntax and Usage l4pts disable|enable When enabled for virtual server routers. Enabling HSRP helps elect the switch closest to the master HSRP router as the master. This command is disabled by default. This helps elect the main Layer 4 switch as the master.Alteon OS 21. hsrp disable|enable Hot Standby Router Protocol (HSRP) is used with some types of routers for establishing router failover. This helps elect the switch with the largest server pool as the master. cur Displays the current configuration for priority tracking for this virtual router group. optimizing routing efficiency. the priority will be increased for each healthy real server behind the virtual server IP address of the same IP address as the virtual router on this virtual router group. This command is disabled by default. This command is disabled by default. increasing Layer 4 efficiency. the priority will be increased for each physical switch port which has active Layer 4 processing on this virtual router group. This command is disabled by default. Enable this switch option to increment only that vrrp instance on the virtual router group that is on the same VLAN as the tagged hsrp master flagged packet. enable this switch option to increase the priority of this virtual router group for each Layer 4 client-only port that receives HSRP advertisements. 268 „ Chapter 6: The Configuration Menu 315393-E.

0 Command Reference /cfg/l3/vrrp/group Virtual Router Group Configuration [VRRP Virtual track vrid if prio adver preem share ena dis del cur Router Group Menu] .Enable or disable preemption . October 2003 „ 269 .Set virtual router ID .Display current VRRP virtual router configuration The Virtual Router Group menu is used for associating all virtual routers into a single logical virtual router. Chapter 6: The Configuration Menu 315393-E. used for modifying the standard priority system used for electing the master router. Table 6-70 VRRP Virtual Router Group Options (/cfg/l3/vrrp/group) Command Syntax and Usage track Displays the VRRP Priority Tracking Menu for the virtual router group.Enable or disable sharing .Alteon OS 21. To view menu options. The vrid for standard virtual routers (where the virtual router IP address is not the same as any virtual server) can be any integer between 1 and 255. A virtual router is defined by its virtual router ID and an IP address.Disable virtual router . a virtual router will be configured to share the same virtual router ID and IP address.Enable virtual router . vrid <virtual router ID (1-255)> Defines the virtual router ID. which forces all virtual routers on the Alteon Application Switch to either be master or backup as a group. where only one switch is active at any time. All vrid values must be unique within the VLAN to which the virtual router’s IP interface (see if below) belongs.Priority Tracking Menu .Set interface number .Delete virtual router . On each VRRP-capable routing device participating in redundancy for this virtual router. see page 274. The default virtual router ID is 1.Set advertisement interval . NOTE – This option is required to be configured only when using at least two Alteon Application Switches in a hot-standby failover configuration. Tracking is Alteon’s proprietary extension to VRRP. Tracking is not needed if sharing (share) is enabled.Set renter priority .

share disable|enable Enables or disables virtual router sharing. October 2003 . this base priority value can be modified according to a number of performance and operational criteria. When enabled. This can be any integer between 1 and 254. adver <seconds (1-255)> Defines the time interval between VRRP master advertisements. if the virtual router group is in backup mode but has a higher priority than the current master. Note that even when preem is disabled. this switch will process any traffic addressed to this virtual router. this option is enabled. dis Disables the virtual router group. this virtual router will preempt the lower priority master and assume control. del Deletes the virtual router group from the switch configuration.Alteon OS 21. 270 „ Chapter 6: The Configuration Menu 315393-E. Alteon’s proprietary extension to VRRP. preem disable|enable Enables or disables master preemption. The default is 1. This can be any integer between 1 and 255 seconds. the device with the highest IP interface address wins. prio <priority (1-254)> Defines the election priority bias for this virtual router group.0 Command Reference Table 6-70 VRRP Virtual Router Group Options (/cfg/l3/vrrp/group) Command Syntax and Usage if <interface number (1-256)> Selects a switch IP interface (between 1 and 256). During the master router election process. the priority for this virtual router will automatically be set to 255 (highest). The default value is 100. cur Displays the current configuration information for the virtual router group. When enabled. If there is a tie. The default switch IP interface number is 1. By default. this virtual router will always preempt any other master if this switch is the owner (the IP interface address and virtual router addr are the same). By default. ena Enables the virtual router group. this option is enabled. even when in backup mode. When priority tracking is used (/cfg/l3/vrrp/track or /cfg/l3/vrrp/vr #/track). If this virtual router’s IP address (addr) is the same as the one used by the IP interface. the routing device with the highest virtual router priority number wins.

This command is disabled by default. This helps elect the virtual routers with the most available ports as the master. This command is disabled by default. An IP interface is considered active when there is at least one active port on the same VLAN. This helps elect the main Layer 4 switch as the master. ports disable|enable When enabled. then the tracking option will be available only under group option. the priority for this virtual router will be increased for each virtual router in master mode on this switch. October 2003 „ 271 . The tracking setting for the other individual virtual routers will be ignored. This command is disabled by default. This is useful for making sure that traffic for any particular client/server pairing are handled by the same switch. A port is considered “active” if it has a link and is forwarding traffic. increasing routing and load balancing efficiency. This command is disabled by default. ifs disable|enable When enabled. the priority for this virtual router will be increased for each active port on the same VLAN. the priority for this virtual router will be increased for each physical switch port which has active Layer 4 processing on this switch. the priority for this virtual router will be increased for each other IP interface active on this switch. This helps elect the virtual routers with the most available routes as the master.0 Command Reference /cfg/l3/vrrp/group/track Virtual Router Group Priority Tracking Configuration [Virtual Router vrs ifs ports l4pts reals hsrp hsrv cur Group Priority Tracking Menu] Enable/disable tracking master virtual routers Enable/disable tracking other interfaces Enable/disable tracking VLAN switch ports Enable/disable tracking L4 switch ports Enable/disable tracking L4 real servers Enable/disable tracking HSRP Enable/disable tracking HSRP by VLAN Display current VRRP Group Tracking configuration NOTE – If Virtual Router Group Tracking is enabled.Alteon OS 21. l4pts disable|enable When enabled for virtual server routers. Table 6-71 Virtual Router Group Priority Tracking Options (/cfg/l3/vr/group/track) Command Syntax and Usage vrs disable|enable When enabled. Chapter 6: The Configuration Menu 315393-E.

This helps elect the switch closest to the master HSRP router as the master. This command is disabled by default. optimizing routing efficiency. 272 „ Chapter 6: The Configuration Menu 315393-E. hsrp disable|enable Enables Hot Standby Router Protocol (HSRP) for this virtual router group. the priority for this virtual router will be increased for each healthy real server. This command is disabled by default. Enable this switch option to increment only that vrrp instance that is on the same VLAN as the tagged hsrp master flagged packet. This command is disabled by default.Alteon OS 21. This helps elect the switch with the largest server pool as the master. hsrv disable|enable Hot Standby Router on VLAN (HSRV) is used to work in VLAN-tagged environments. HSRP is used with some types of routers for establishing router failover.0 Command Reference Table 6-71 Virtual Router Group Priority Tracking Options (/cfg/l3/vr/group/track) Command Syntax and Usage reals disable|enable When enabled for virtual server routers. In networks where HSRP is used. October 2003 . enable this switch option to increase the priority of this virtual router for each Layer 4 client-only port that receives HSRP advertisements. increasing Layer 4 efficiency. cur Displays the current configuration for priority tracking for this virtual router.

or password (password authentication).Alteon OS 21. Table 6-72 VRRP Interface Menu Options (/cfg/l3/vrrp/if) Command Syntax and Usage auth none|password Defines the type of authentication that will be used: none (no authentication). cur Displays the current configuration for this IP interface’s authentication parameters. del Clears the authentication configuration parameters for this IP interface.0 Command Reference /cfg/l3/vrrp/if <interface number> VRRP Interface Configuration NOTE – The interface-number (1 to 256) represents the IP interface on which authentication parameters must be configured. The IP interface itself is not deleted. Chapter 6: The Configuration Menu 315393-E. October 2003 „ 273 . passw <password> Defines a plain text password up to eight characters long. [VRRP Interface auth passw del cur - 1 Menu] Set authentication types Set plain-text password Delete interface Display current VRRP interface configuration This menu is used for configuring VRRP authentication parameters for the IP interfaces used with the virtual routers. This password will be added to each VRRP packet transmitted by this interface when password authentication is chosen (see auth above).

Set priority increment for L4 real server tracking hsrp . October 2003 .Set priority increment for virtual router tracking ifs . The default value is 10.Alteon OS 21.Set priority increment for IP interface tracking ports . The default value is 2. hsrp <0-254> Defines the priority increment value (1 through 254) for switch ports with Layer 4 client-only processing that receive HSRP broadcasts. The default value is 2. ports <0-254> Defines the priority increment value (1 through 254) for active ports on the virtual router’s VLAN. The default value is 2.Set priority increment for L4 switch port tracking reals . ifs <0-254> Defines the priority increment value (1 through 254) for active IP interfaces detected on this switch.Set priority increment for VLAN switch port tracking l4pts . The default value is 2. 274 „ Chapter 6: The Configuration Menu 315393-E.Set priority increment for HSRP tracking hsrv .0 Command Reference /cfg/l3/vrrp/track VRRP Tracking Configuration [VRRP Tracking Menu] vrs .Set priority increment for HSRP by VLAN tracking cur . Each time one of the tracking criteria is met (see “VRRP Virtual Router Priority Tracking Menu” on page 264). reals <0-254> Defines the priority increment value (1 through 254) for healthy real servers behind the virtual server router. Table 6-73 VRRP Tracking Options (/cfg/l3/vrrp/track) Command Syntax and Usage vrs <0-254> Defines the priority increment value (1 through 254) for virtual routers in master mode detected on this switch. The default value is 2. l4pts <0-254> Defines the priority increment value (1 through 254) for physical switch ports with active Layer 4 processing.Display current VRRP Priority Tracking configuration This menu is used for setting weights for the various criteria used to modify priority levels during the master router election process. the priority level for the virtual router is increased by an amount defined through this menu.

a metric can be set to determine which primary gateway is selected. These priority tracking options only define increment values. This provides basic gateway load balancing. enabled gateway in line. which are described in the table “Default Gateway Metrics (/cfg/l3/metrc)” on page 275.Alteon OS 21. The default value is 10. These options do not affect the VRRP master router election process until options under the VRRP Virtual Router Priority Tracking Menu (see page 264) are enabled. at which point the next in line will take over as the default IP gateway. October 2003 „ 275 . cur Displays the current configuration of priority tracking increment values. There are two metrics. All gateway requests to the same destination IP address are resolved to the same gateway.0 Command Reference Table 6-73 VRRP Tracking Options (/cfg/l3/vrrp/track) Command Syntax and Usage hsrv <0-254> Defines the priority increment value (1 through 254) for vrrp instances that are on the same VLAN. The switch sends each new gateway request to the next healthy. Table 6-74 Default Gateway Metrics (/cfg/l3/metrc) Option strict Description The gateway number determines its level of preference. roundrobin Chapter 6: The Configuration Menu 315393-E. /cfg/l3/metrc <metric name> Default Gateway Metrics If multiple default gateways are configured and enabled. Gateway #1 acts as the preferred default IP gateway until it fails or is disabled.

see page 278. the switch will let through all the out-of-order fragments in filtering.Alteon OS 21. see page 277. To view menu options. udpblast Displays UDP Blast Menu. pgroup <pattern group ID (1-128)> Displays Pattern Match Group Menu. To view menu options. October 2003 . seclog <rate threshold (in packets)> Defines the rate threshold for security logging by the number of packets per second. see page 280. port <port number> Displays Port Security Menu. fragment <allow|deny> Sets the handling of out-of-order IP fragment packets during filtering. The default is allow. When set to deny. 276 „ Chapter 6: The Configuration Menu 315393-E. cur Displays the current security configuration.0 Command Reference /cfg/security Security Configuration Menu [Security Menu] ipacl pgroup port udpblast seclog fragment cur IP Address ACL Menu Pattern Match Group Menu Port Security Menu UDP Blast Menu Set rate threshold for security logging Set out of order IP fragments handling in filtering Display current Security configuration Table 6-75 Security Configuration Menu Options (/cfg/security) Command Syntax and Usage ipacl Displays IP address Access Control Menu. Any packets above the current threshold will be logged. see page 279. When set to allow. the switch will drop these packets. To view menu options. To view options.

defined by the IP address/mask pair. cur Displays current IP addresses ranges in Access Control List. defined by the IP address/mask pair.Alteon OS 21.Remove IP Address/Mask for access control cur . When traffic ingresses the switch. October 2003 „ 277 . Chapter 6: The Configuration Menu 315393-E. If a match is found. the client source IP address is checked against this pool of addresses. rem <IP address> <IP mask> Removes range of source IP addresses to be denied.0 Command Reference /cfg/security/ipacl IP Address Access Control List Configuration Menu Alteon OS can be configured with IP access control lists (ACLs) composed of ranges of client IP addresses that are to be denied access to the switch.Display All IP address/mask for access control Table 6-76 IP Address ACL Menu Options (/cfg/sec/ipacl) Command Syntax and Usage add <IP address> <IP mask> Adds range of source IP addresses to be denied. then the client traffic is blocked. [IP ACL Menu] add .Add IP Address/Mask for access control rem .

NOTE – You can only add the binary or ASCII strings to a pattern matching group.Display current configuration Table 6-77 Pattern Matching Group Menu Options (/cfg/sec/pgroup) Command Syntax and Usage name <31 character name>|none Specifies a descriptive name for this pattern group. del Deletes the pattern group. it is useful to combine them into one group and give the group a name that is easy to remember. the switch will match any of the strings or patterns within that group before denying and dropping the packet. Configure the binary or ASCII pattern strings. and then apply the group to a filter. name the pattern group. group them into a pattern group.Set pattern group name add . 278 „ Chapter 6: The Configuration Menu 315393-E. „ To view existing strings and their ID numbers. Up to five patterns can be combined into a single pattern group.Delete pattern group cur . the packet content can be detected and thus denied access to the network. rem <SLB string ID> Removes an SLB string from this pattern group. use the /cfg/slb/layer7/slb/cur command. When a pattern group is applied to a deny filter. add <string ID> „ Adds a pre-configured SLB string to this pattern group by the string ID number. The filtering commands in Alteon OS Security Pack allow the administrator to define groups of patterns and place them into groups.Remove SLB string from group del .Add SLB string to group rem . Up to five patterns can be combined into a single pattern group.0 Command Reference /cfg/security/pgroup <pattern group number> Pattern Matching Menu When a virus or other attack contains multiple patterns or strings. also on page 331. October 2003 . use the /cfg/slb/layer7/slb/add command described on page 331.Alteon OS 21. By applying the patterns and groups to a deny filter. To configure SLB strings. [Pattern Match Group 1 Menu] name .

Nullscan: TCP sequence number is zero and all control bits are zeros. LandAttack. cur Displays the current security configuration on this port.255). Enable DOS protection on ports connected to any network that could be the source of an attack.x. Fraggle. [Port 1 Menu] dos ipacl udpblast cur - Enable/disable DOS attack detection Enable/disable IP ACL processing Enable/disable UDP Blast processing Display current port configuration Table 6-78 Port Security Menu Options (/cfg/security/port) Command Syntax and Usage dos disable|enable Enables or disables Denial of Service (DOS) protection on this port. Xmascan. LandAttack: Packets with source IP equal to destination IP. Enabling this command will allow detection of the following DoS attacks: Smurf: Fraggle: Xmascan: ICMP ping request to a broadcast destination IP (x. /cfg/security/port <port number> Port Security Configuration Menu Alteon OS can protect switch ports against a variety of Denial of Service (DOS) attacks including Port Smurf. URG and PSH bits are set. Nullscan. ipacl disable|enable Enables or disables IP access control List denial on this port. and ScanSynFin.x. udpblast disable|enable Enables or disables UDP blast protection on this port.x.x. October 2003 „ 279 . PortZero: TCP/UDP Packets whose source or destination port is zero. TCP sequence number is zero and the FIN. Chapter 6: The Configuration Menu 315393-E.Alteon OS 21.255).0 Command Reference Table 6-77 Pattern Matching Group Menu Options (/cfg/sec/pgroup) Command Syntax and Usage cur Displays the current configuration of this pattern group. PortZero. UDP packet sent to a broadcast destination IP (x. Blat: TCP packets with SIP!=DIP and SPORT=DPORT. ScanSynFin: SYN and FIN bits are set in the packet.

using any integer from 1 to 65535. If the number of packets on this port range exceeds the maximum packet rate per second. as well as the maximum packet rate per second. UDP traffic will be dropped. While you can configure multiple port ranges.Alteon OS 21. rem <UDP port number or range (first-last)> Removes UDP port or range for UDP blast protection.Add UDP port/range for UDP blast protection rem .Remove UDP port/range for UDP blast protection default . The maximum port range is 5000. Alteon OS supports up to 5000 UDP port numbers. default <packet rate> Defines the default packet rate for UDP blast protection. If the first port number is 300. You can specify a series of UDP port ranges and the allowed packet limit for that range. the last number that can be used is 5300. UDP traffic is shut down on those ports. thus ensuring that backend servers are not flooded with data and disabled.Display all UDP blast protection Ports Table 6-79 UDP Blast Protection Menu Options (/cfg/sec/udpblast) Command Syntax and Usage add <UDP port number or range (first-last)> [packet rate] Adds UDP port or range for UDP blast protection. 280 „ Chapter 6: The Configuration Menu 315393-E. Alteon OS can be configured to restrict the amount of traffic allowed on any UDP port. the sum of ranges cannot exceed the maximum of 5000 ports. cur Displays all UDP blast protection ports. When the maximum number of packets/second is reached. October 2003 . [UDP Blast Protection Menu] add .0 Command Reference /cfg/security/udpblast UDP Blast Protection Configuration Menu Malicious attacks over UDP protocol ports are becoming a common way to bring down real servers.Default packet rate for UDP blast protection cur .

and placed in a script file.Alteon OS 21. To start the dump program. “First-Time Configuration. VLAN parameters. which can be used to configure other switches through a Telnet connection. Spanning Tree. enter: Configuration# setup /cfg/dump Dump The dump program writes the current switch configuration to the terminal screen. When using Telnet to configure a new switch. IP. edited. as described on page 282. at the Configuration# prompt. Chapter 6: The Configuration Menu 315393-E. The active configuration can also be saved or loaded via TFTP. see Chapter 2. at the Configuration# prompt.” To start the setup program. October 2003 „ 281 . enter: Configuration# dump The configuration is displayed with parameters that have been changed from the default values. The screen display can be captured. port speed/mode. paste the configuration commands from the script file at the command line prompt of the switch. BOOTP.0 Command Reference /cfg/setup Setup The setup program steps you through configuring the system date and time. For a complete description of how to use setup. and IP interfaces.

/cfg/gtcfg <TFTP server> <filename> Restoring the Active Switch Configuration When the gtcfg command is used. 282 „ Chapter 6: The Configuration Menu 315393-E. at the Configuration# prompt. enter: Configuration# gtcfg <TFTP server> <filename> [-m | -mgmt | -d | -data] where server is the TFTP server IP address or hostname. To start the switch configuration download. and not locked by any application). and filename is the name of the target script configuration file. If the apply command is found in the configuration script file loaded using this command. The contents of the specified file will be replaced with the current configuration data. at the Configuration# prompt. The file can contain a full switch configuration or a partial switch configuration. the switch’s active configuration commands (as displayed using /cfg/dump) will be uploaded to the specified script configuration file on the TFTP server. To start the switch configuration upload. the specified ptcfg file must exist prior to executing the ptcfg command and must be writable (set with proper permission.Alteon OS 21.0 Command Reference /cfg/ptcfg <TFTP server> <filename> Saving the Active Switch Configuration When the ptcfg command is used. and filename is the name of the target script configuration file. The configuration loaded using gtcfg is not activated until the apply command is used. NOTE – The output file is formatted with line-breaks but no carriage returns—the file cannot be viewed with editors that require carriage returns (such as Microsoft Notepad). the apply action will be performed automatically. October 2003 . the active configuration will be replaced with the commands found in the specified configuration file. NOTE – If the TFTP server is running SunOS or the Solaris operating system. enter: Configuration# ptcfg <TFTP server> <filename> [-m | -mgmt | -d | -data] where server is the TFTP server IP address or hostname.

283 315393-E. the switch is aware of the services provided by each server and can direct user session traffic to an appropriate server. Refer to your Alteon OS Application Guide for detailed information on this feature.CHAPTER 7 The SLB Configuration Menu Server Load Balancing (SLB) allows you to configure the Alteon Application Switch to balance user session traffic among a pool of available servers that provide shared services. October 2003 . If one of these servers provides access to applications or data that is in high demand. This chapter discusses how to use the Command Line Interface (CLI) for configuring Server Load Balancing (SLB) on the Alteon Application Switch. In an average network that employs multiple servers without server load balancing. it can become overutilized. based on a variety of load-balancing algorithms. Placing this kind of strain on a server can decrease the performance of the entire network as user requests are rejected by the server and then resubmitted by the user stations. each server usually specializes in providing one or two unique services. With this software feature.

virt <virtual server number (1-1024)> Displays the menu for defining virtual servers. group <real server group number (1-1024)> Displays the menu for placing real servers into real server groups. To view menu options.0 Command Reference /cfg/slb SLB Configuration [Layer 4 Menu] real group virt filt port gslb layer7 wap sync adv advhc pip on off cur Real Server Menu Real Server Group Menu Virtual Server Menu Filtering Menu Layer 4 Port Menu Global SLB Menu Layer 7 Resource Definition Menu WAP Menu Config Synch Menu Layer 4 Advanced Menu Layer 4 Advanced Health Check Menu Proxy IP Address Menu Globally turn Layer 4 processing ON Globally turn Layer 4 processing OFF Display current Layer 4 configuration Table 7-1 Server Load Balancing Configuration Menu Options (/cfg/slb) Command Syntax and Usage real <real server number (1-1023)> Displays the menu for configuring real servers. see page 329. To view menu options. see page 321. see page 299. To view menu options. see page 323. To view menu options. layer7 Displays later 7 Resource Definition Menu. To view menu options. October 2003 . To view menu options. see page 292. 284 „ Chapter 7: The SLB Configuration Menu 315393-E. see page 307. gslb Displays the menu for configuring Global Server Load Balancing. see page 286. filt <filter ID (1-2048)> Displays the menu for Filtering and Application Redirection. port <port number> Displays the menu for setting physical switch port states for Layer 4 activity. To view menu options.Alteon OS 21.

but the software processes will no longer be active in the switch cur Displays the current Server Load Balancing configuration. Layer 4 processing must be turned on before redirection filters will work. All configuration information will remain in place (if applied or saved). These filters are not affected by the Server Load Balancing on and off commands in this menu. October 2003 „ 285 . on Globally turns on Layer 4 software services for Server Load Balancing and Application Redirection. To view menu options. see page 333. To view menu options. To view menu options. see page 338.To view options. Enabling Layer 4 services is not necessary for using filters only to allow. or NAT traffic. When the pip is defined. sync Displays the Synch Peer Switch Menu. Filtering and Layer 4 (Server Load Balancing) Filters configured to allow. require Layer 4 software services. advhc Displays Layer 4 Advanced Health Check Menu.Alteon OS 21. see page 335. This option can be performed only after the optional Layer 4 software is enabled (see “Activating Optional Software on page 353). however. pip This menu is used to set the switch proxy IP address using dotted decimal notation. see page 332. off Globally disables Layer 4 services.0 Command Reference Table 7-1 Server Load Balancing Configuration Menu Options (/cfg/slb) Command Syntax and Usage wap Displays WAP Menu. adv Displays the Layer 4 Advanced Menu. or perform Network Address Translation (NAT) on traffic do not require Layer 4 software to be activated. Application Redirection filters. client address information in Layer 4 requests is replaced with this proxy IP address. deny. see page 344. To view menu options. deny. Chapter 7: The SLB Configuration Menu 315393-E.

Set number of successful attempts to declare server UP addport .Set interval between health checks retry .Enable/disable source MAC address substitution ena .0 Command Reference /cfg/slb/real <server number> Real Server SLB Configuration [Real server 1 Menu] layer7 .Set backup real server inter .IDS Command Menu rip .Remove real port from server remote .Add real port to server remport .Enable/disable client proxy operation submac .Set server name weight .Display current real server configuration 286 „ Chapter 7: The SLB Configuration Menu 315393-E.Set server weight maxcon .Alteon OS 21.Disable real server del .Set number of failed attempts to declare server DOWN restr .Delete real server cur .Enable real server dis .Set minutes inactive connection remains open backup .Set IP addr of real server name .Enable/disable remote site operation proxy .Layer 7 Command Menu ids . October 2003 .Set maximum number of connections tmout .

such that new connections will not be issued to this server if the maxcon limit is reached. If all servers in a real server group for a virtual server reach their maxcon limit at the same time. When this command is used. New connections will be issued again to this server once the number of current connections has decreased below the maxcon setting. This will enable the network administrator to quickly identify the server by a natural language keyword value. Weights are not applied when using the hash or minmisses metrics (see “Server Load Balancing Metrics” on page 297). To view menu options. client requests will be dropped by the virtual server. Higher weighting values force the server to receive more connections than the other servers configured in the same real server group.Alteon OS 21. weight <real server weight (1-48)> Sets the weighting value (1 to 48) that this real server will be given in the load balancing algorithms. and the administrator will be warned if the server does not respond. the number of maximum connections is set at 20. ids Displays Intrusion Detection Server/system menu. To view menu options. the address entered is PINGed to determine if the server is up. By default. This option sets a threshold as an artificial barrier. see page 290. rip <real server IP address> Sets the IP address of the real server in dotted decimal format.0 Command Reference This menu is used for configuring information about real servers that participate in a server pool for Server Load Balancing or Application Redirection. Chapter 7: The SLB Configuration Menu 315393-E. maximum 31 characters>|none Defines a 15-character alias for each real server. If no backup servers/server group are configured. By default. name <string. client requests will be sent to the backup/overflow server or backup/overflow server group.000. see page 290. The required parameters are: „ „ Real server IP address Real server enabled (disabled by default) Table 7-2 Real Server Configuration Menu Options (/cfg/slb/real) Command Syntax and Usage layer7 Displays the Layer 7 Menu. each real server is given a weight setting of 1. A setting of 10 would assign the server roughly 10 times the number of connections as a server with a weight of 1. October 2003 „ 287 . maxcon <maximum connections (0-200000)> Sets the maximum number of connections that this server should simultaneously support.

this option sets how long an idle client is allowed to remain associated with a particular server. The inter option lets you choose the time between health checks. backup <real server number (1-1023)>|none Sets the real server used as the backup/overflow server for this real server. The range is from 1 to 63 attempts. and the session table entry is then removed. the data is transferred until the client ends the session. you can set the number of minutes to wait before removing orphan table entries. The range is from 1 to 63 attempts. For TCP services. the switch pings servers to determine their status. retry <number of consecutive health checks (1-63)> Sets the number of failed health check attempts required before declaring this real server inoperative. To prevent loss of service if a particular real server fails. the backup comes online to provide additional processing power until the original server becomes desaturated. The same backup/overflow server may be assigned to more than one real server at the same time inter <number of seconds between health checks (0-60)> Sets the interval between real server health verification attempts. if the real server becomes inoperative. The default interval is 2 seconds. these orphaned entries must be aged out of the binding table. the session is recorded in the table. the switch will activate the backup real server until the original becomes operative again. The default is 4 attempts restr <number of consecutive health checks (1-63)> Sets the number of successful health check attempts required before declaring a UDP service operational. If the real server reaches its maxcon (maximum connections) limit. When a client makes a request. Settings must be specified in even numbered increments between 2 and 30 minutes. Then. In certain circumstances. For UDP services.0 Command Reference Table 7-2 Real Server Configuration Menu Options (/cfg/slb/real) Command Syntax and Usage tmout <even number of minutes (2-32768)> Sets the number of minutes an inactive session remains open (in even numbered increments). This option is also used with the Persistent option (see /cfg/slb/virt/pbind). The default is 8 attempts 288 „ Chapter 7: The SLB Configuration Menu 315393-E. Using the tmout option. October 2003 . Every client-to-server session being load balanced is recorded in the switch’s Session Table. such as when a client application is abnormally terminated by the client’s system. using the defined service ports configured as part of each virtual service. TCP/UDP connections will remain registered in the switch’s binding table. The range is from 1 to 60 seconds. When persistent is activated. In order to prevent table overflow.Alteon OS 21. The default setting is 10. Determining the health of each real server is a necessary function for Layer 4 switching. The backup server is also used in overflow situations. use this option to assign a backup real server number. the switch verifies that real servers and their corresponding services are operational by opening a TCP connection to each service. An interval of “0” disables health checking for the server.

By default. del Deletes this real server from the Layer 4 switching software configuration. With this option enabled (default). See /oper/slb/ena on page 350 for an operations-level command.0 Command Reference Table 7-2 Real Server Configuration Menu Options (/cfg/slb/real) Command Syntax and Usage addport <real server port (2–65534)> Add multiple service ports to the server. disables this real server until it is explicitly re-enabled. as it will delete any configuration options that have been set for this real server. when the apply and save commands are used. dis Disables this real server from Layer 4 service. By default. when the apply and save commands are used. Chapter 7: The SLB Configuration Menu 315393-E. enables this real server for operation until explicitly disabled. this option is disabled. NOTE – This option does not perform a graceful server shutdown. submac disable|enable Enables or disables source MAC address substitution. remote disable|enable Enables or disables remote site operation for this server. When enabled. See /oper/slb/dis on page 350 for an operations-level command that permits graceful server shutdown. October 2003 „ 289 . remport <real server port (2–65534)> Remove multiple service ports from the server. Use this command with caution.Alteon OS 21. This option. This option. ena You must perform this command to enable this real server for Layer 4 service. cur Displays the current configuration information for this real server. a client request from any application can be proxied using a load-balancing Proxy IP address (PIP). this option is disabled. This option should be enabled when the real IP address supplied above represents a remote server (real or virtual) that this switch will access as part of its Global Server Load Balancing network. proxy disable|enable Enables or disables proxy IP address translation. A disabled server will no longer process virtual server requests as part of the real server group to which it is assigned. the real server can process virtual server requests associated with its real server group. This option does not perform a graceful server shutdown. This removes the real server from operation within its real server groups.

Display current real server configuration This menu is used for entering commands and strings for Layer 7 processing. Table 7-3 Layer 7 Commands Menu Options (/cfg/slb/real/layer7) Command Syntax and Usage addlb <URL path ID [1-128]> Adds the predefined URL loadbalance string ID to the real server. and embeds the IP address of the real server that will handle the subsequent requests from the client. cur Displays the current real server configuration.Add URL path for URL load balance remlb .Alteon OS 21.Remove URL path for URL load balance cookser . An Intrusion Detection System gathers and analyzes information from various areas within a computer or a network to identify possible security breaches. /cfg/slb/real <real server number>/ids Real server IDS Configuration Menu Intrusion Detection System (IDS) is a type of security management system for computers and networks. cookser disable|enable Enables or disables the real server to handle client requests that don’t contain a cookie. This option is used if you want to designate a specific server to assign cookies only. remlb <URL path ID [1-128]> Removes the predefined URL loadbalance string ID from the real server. this option is disabled. October 2003 . this option is disabled.Enable/disable exclusionary string matching cur . Refer to your Application Guide for more information. This server gets the client request.Enable/disable cookie assignment server exclude . By default. assigns the cookie. which include both intrusions (attacks from outside the organization) and misuse (attacks from within the organization). 290 „ Chapter 7: The SLB Configuration Menu 315393-E. exclude disable|enable Enables or disables exclusionary string matching. By default.0 Command Reference /cfg/slb/real <server number>/layer7 Real Server Layer 7 Configuration [Layer 7 Commands Menu] addlb .

cur Displays the current real server configuration.0 Command Reference [Real Server 1 IDS Menu] idsvlan .Alteon OS 21.Override OID for SNMP HC comm . This OID overrides the OID for SNMP health checks.Override community string for SNMP HC cur .Display current real server configuration Table 7-4 IDS Configuration Menu options (/cfg/slb/real/ids) Command Syntax and Usage idsvlan <vlan number (1-4090> Defines VLAN ID for Intrusion Detection Server. Chapter 7: The SLB Configuration Menu 315393-E. October 2003 „ 291 . idsport <port number> Defines port for Intrusion Detection Server. oid <SNMP health check object identifier to override group OID> Specifies the object identifier (OID). comm <SNMP health check community string to override group community string> Overrides community string for SNMP health checks.Set Vlan ID for ID Server idsport . NOTE – IDS can only be configured on real servers between 1-62.Set Port for ID Server oid .

Set Intrusion Detection Port idsfld .Set real server group name realthr . See “Server Load Balancing Metrics” on page 297. The content depends on the type of health check specified in the health option (see below).Enable/disable VIP health checking in DSR mode ids . content <filename>|//<host>/<filename>|none This option defines the specific content which is examined during health checks. Each real server can belong to more than one group.Enable/disable Intrusion Detection Group Flood advhlth .Enable/disable Intrusion Detection idsrprt .Set backup real server or group name .Set real server failure threshold viphlth . health link|arp|icmp|tcp|http|dns|pop3|smtp|nntp|ftp|imap|sslh |radius-auth|radiusacc|script<n>|udpdns|wsp|wtp|wtls|ldap |snmp<n>|tftp Sets the type of health checking performed.Display current group configuration This menu is used for combining real servers into real server groups. Each group must consist of at least one real server.Set health check content health . October 2003 . See “SLB Health Check Types” on page 294. Real server groups are used both for Server Load Balancing and Application Redirection. 292 „ Chapter 7: The SLB Configuration Menu 315393-E.Remove real server del .Set health check type backup . The default is tcp. Each real server group should consist of all the real servers which provide a specific service for load balancing.Delete real server group cur . The default setting is leastconns.0 Command Reference /cfg/slb/group <real server group number> Real Server Group SLB Configuration [Real server group 1 Menu] metric .Set an advance group health check formula mhash . Table 7-5 Real Server Group Configuration Menu Options (/cfg/slb/group) Command Syntax and Usage metric leastconns|roundrobin|minmisses|hash|response|bandwidth|phash Set the load balancing metric used for determining which real server in the group will be the target of the next client request.Set metric used to select next server in group content .Add real server rem .Set minmisses hash parameter add .Alteon OS 21.

whether DSR is enabled or disabled. The default threshold is 0. name <maximum 31 characters>|none Defines a 15-character alias for each Real Server Group. idsfld disable|enable Enables or disables the Intrusion Detection flood. Chapter 7: The SLB Configuration Menu 315393-E. However. This feature is enabled by default. October 2003 „ 293 . use this option to assign a backup real server/real server group number. the backup server/server group comes online to provide additional processing power until one of the original servers becomes desaturated. If any time. To prevent loss of service if the entire real server group fails. if the real server group becomes inoperative. the switch uses RIP to perform all health checks. a SYSLOG ALERT message is sent to the configured SYSLOG servers stating that the real server threshold has been reached for the concerned server load balancing group. ids disable|enable Enables or disables this group of servers for IDS load balancing. realthr <real servers (1-15.Alteon OS 21. The same backup/overflow server/server group may be assigned to more than one real server group at the same time. When viphlth is disabled. idsrprt <real server port (2-65534)>|any Sets real server port for the Intrusion Detection Server. 0 for disabled)> Specifies a minimum number of real servers available. it works only when the service has DSR (Direct Server Return) feature enabled. This will enable the network administrator to quickly identify the server group by a natural language keyword value. If all the servers in the real server group reach their maxcon (maximum connections) limit. which also means the option is disabled viphlth disable|enable Enables or disables VIP health checking in a service. the switch will activate the backup real server /server group until one of the original real servers becomes operative again. The backup server/server group is also used in overflow situations. This feature can only be configured on real server groups between 1-63. Then.0 Command Reference Table 7-5 Real Server Group Configuration Menu Options (/cfg/slb/group) Command Syntax and Usage backup r<real server number (1-256)>|g<group number>|none Sets the real server or real server group used as the backup/overflow server/server group for this real server group. the number reaches this minimum limit.

This command supports two boolean operators.Alteon OS 21. October 2003 . This removes the group from operation under all virtual servers it is assigned to. This command allows you to create a boolean expression to health check the real server group based on the state of the virtual services.). AND or OR that are used to manipulate TRUE or FLALSE values.. The health check options are described in the following table.You can also select all 32-bits of the source IP address to hash to the real server. 128>|none Defines an advanced health check formula expression for the real servers. This command also supports a string expression which is up to 128 characters long. mhash 24|32 <number of sip bits used for minmisses hash> Defines the minmisses hash parameter for this real server as either 24 or 32 bits.0 Command Reference Table 7-5 Real Server Group Configuration Menu Options (/cfg/slb/group) Command Syntax and Usage advhlth <(1&2|3. you can create a boolean expression to state the health of the server group. SLB Health Check Types Using the health command. Refer to your Application Guide for their detailed description. you can specify the type of health check for the group of real servers. Table 7-6 SLB Health Check Types (/cfg/slb/group/health) Option and Description link Checks status of port for each server for IDSLB group only. You will be prompted to enter the number of the real server to add to this group. del Deletes this real server group from the Layer 4 software configuration. add <real server number (1-1023)> Adds a real server to this real server group. Using parenthesis with the boolean operators. rem <real server number (1-1023)> Remove a real server from this real server group. the virtual server will become inoperative. cur Displays the current configuration parameters for this real server group. or you can also set the formula expression as none. 294 „ Chapter 7: The SLB Configuration Menu 315393-E. By default the minmiss algorithm uses the upper 24-bits of the source IP address to calculate the real server that the traffic should be sent to when the minmiss metric is selected. You will be prompted for the ID number for the real server to remove from this group. Use this command with caution: if you remove the only group that is assigned to a virtual server.

an HTTP/1. use HTTP 1. negotiate an encryption and compression method. smtp For mail-server services. check that the user specified in content is accessible on the server. check that the newsgroup name specified in content is accessible on the server. ftp For FTP services. check that the domain name specified in content can be resolved by the server. During the handshake. check that the filename specified in content is accessible on the server through anonymous login. dns For Domain Name Service. imap For user mail service.0 Command Reference Table 7-6 SLB Health Check Types (/cfg/slb/group/health) Option and Description arp Sends an ARP request for Layer 2 health checking. Chapter 7: The SLB Configuration Menu 315393-E. pop3 For user mail service.0 GET occurs.Alteon OS 21. and establish a session ID for each session. October 2003 „ 295 . the health check will revert back to TCP on the port that is being load balanced. nntp For newsgroup services. http For HTTP service. the user and server exchange security certificates. icmp For Layer 3 health checking. Otherwise. check that the user:password value specified in content exists on the serve sslh Enables the switch to query the health of the SSL servers by sending an SSL client “Hello” packet and then verify the contents of the server’s “Hello” response. check that the user:password account specified in content exists on the server.1 GETS when a HOST: header is required to check that the URL content is specified in content command. tcp Opens and closes a TCP/IP connection to the server for TCP service. pings the server. Note: If the content is not specified.

The content under /cfg/slb/adv/waphc (see page 338) must also be configured wtls Provides Wireless Transport Layer Security (WTLS) Hello-based health check for encrypted and connection-oriented WTLS traffic on port 9203. wsp Enables connectionless WSP content health checks for WAP gateways. the switch transmits TFTP read requests (RRQ) to all servers in the group. At regular intervals. <n> denotes the health script number (1-5). October 2003 . The health check is successful if the server responds to the RRQ. check that the user:password value specified in content exists on the Alteon Application Switch and the server. script <n> Enables the use of script-based health checks in send/expect format to check for application and content availability.0 Command Reference Table 7-6 SLB Health Check Types (/cfg/slb/group/health) Option and Description radius-auth. 296 „ Chapter 7: The SLB Configuration Menu 315393-E. ldap Sets the health check type to LDAP. The secrt value is a field of up to 32 alphanumeric characters that is used by the switch to encrypt a password during the RSA Message Digest Algorithm (MD5) and by the RADIUS server to decrypt the password during verification.Alteon OS 21. This protocol enables the user to request a file from the server. The health check fails if the switch receives an error packet from the real server. tftp Sets the health check type to TFTP. snmp <n> Enables the use of SNMP-based health checks. <n> denotes the health script number (1-8). udpdns Allows the user to perform health checking using UDP DNS queries. The content under /cfg/ slb/adv/waphc (see page 338) must also be configured. wtp Enables connection-oriented WTP + WSP content health checks for WAP gateways. the network administrator must also configure the /cfg/slb/ secrt parameter. radius-acc For RADIUS remote access server authentication. To perform application health checking to a RADIUS server.

consider using the hash metric. with the fastest servers typically getting the most connections over time. and so on. These metrics are described in the following table: Table 7-7 Real Server Group Metrics (/cfg/slb/group/metric) Option and Description minmisses Minimum misses. When all the real servers in this group have received at least one connection. all requests for a specific IP destination address will be sent to the same server. the second real server gets the next connection. This metric is optimized for Application Redirection. Chapter 7: The SLB Configuration Menu 315393-E. Server load with this metric becomes most evenly balanced as the number of active clients increases. you can set a number of metrics for selecting which real server in a group gets the next client request. This is particularly useful in caching applications. helping to maximize successful cache hits. When specified for a real server group performing Server Load Balancing. roundrobin Round robin. October 2003 „ 297 . hash Like minmisses. due to their ability to accept. Although the hash metric can provide more even load balancing at any given instance. followed by the third real server. This is particularly useful for maximizing successful cache hits. the number of connections currently open on each real server is measured in real time. For Server Load Balancing. With this option.Alteon OS 21. The hash metric should be used if the statistical load balancing achieved using minmisses is not as optimal as desired. new connections are issued to each server in turn: the first real server in this group gets the first connection. With this option. For Application Redirection. all requests for a specific IP destination address will be sent to the same server. it is not as effective as minmisses when servers leave and reenter service. all requests from a specific client will be sent to the same server. The server with the fewest current connections is considered to be the best choice for the next client connection request. Minmisses can also be used for Server Load Balancing. This is useful for applications where client information must be retained on the server between sessions. and shut down connections faster than slower servers. leastconns Least connections. When minmisses is specified for a real server group performing Application Redirection. If the Load Balancing statistics indicate that one server is processing significantly more requests over time than other servers. Best statistical load balancing is achieved when the IP address destinations of load balanced frames are spread across a broad range of IP subnets. This option is the most self-regulating. the issuing process starts over with the first real server. the hash metric uses IP address information in the client request to select a server.0 Command Reference Server Load Balancing Metrics Using the metric command. process. This is useful for applications where client information must be retained between sessions. all requests from a specific client will be sent to the same server.

With this option. October 2003 .Alteon OS 21. it will rehash for that request based on the actual number of servers that are up. the smaller is the weight assigned to that server. Weights are not applied when using the hash or minmisses metrics. NOTE – Under the leastconns and roundrobin metrics. This can improve load balancing among servers of different performance levels. the real server weights are adjusted so they are inversely proportional to the number of octets that the real server processes during a given interval. With phash enabled. The weights are adjusted so they are inversely proportional to a moving average of response time. The response time is used to adjust the real server weights. With this option.0 Command Reference Table 7-7 Real Server Group Metrics (/cfg/slb/group/metric) Option and Description response Real server response time. 298 „ Chapter 7: The SLB Configuration Menu 315393-E. The higher the bandwidth used. If the first hash hits a dead server. when real servers are configured with weights (see the weight option on page 287). bandwidth Bandwidth Metric. the first hash will always be the same even if a real server is down. This results in a request always being sent to a server that is up. phash The phash metric utilizes the best features of the hash and minmiss metrics. the switch supports an even load distribution (hash) and stable server assignment (minmiss) even when a server in the group goes down. a higher proportion of connections are given to servers with higher weights. With the phash metric. the switch monitors and records the amount of time that each real server takes to reply to a health check.

ftp. An example would be foocorp. To get more information about well-known ports. dname <34 character domain name>|none Sets the domain name for this virtual server. the service number. and so forth). To clear the dname. specify the name as none. such as http. To view services menu options. see the sport command on page 309. Chapter 7: The SLB Configuration Menu 315393-E.com. and so forth).Alteon OS 21. Client requests directed to the virtual server’s IP address will be balanced among the real servers available to it through real server group assignments.0 Command Reference /cfg/slb/virt <virtual server number> Virtual Server SLB Configuration [Virtual Server service vip dname cont layr3 ena dis del cur 1 Menu] Virtual Service Menu Set IP addr of virtual server Set domain name of virtual server Set BW Contract Enable/disable layer 3 only balancing Enable virtual server Disable virtual server Delete virtual server Display current virtual configuration This menu is used for configuring the virtual servers which will be the target for client requests for Server Load Balancing.com. vip <virtual server IP address> Sets the IP address of the virtual server using dotted-decimal notation. The domain name typically includes the name of the company or organization. see page 301. www2. see hname below.gov. To define the hostname. and so on. and the Internet group code (. It does not include the hostname portion (www. Configuring a virtual server requires the following parameters: „ „ „ Creating a virtual server IP address Adding TCP/UDP port and real server group Enabling the virtual server (disabled by default) Table 7-8 Virtual Server Configuration Menu Options (/cfg/slb/virt) Command Syntax and Usage service <virtual port or name> Displays the Virtual Services Menu. The maximum number of characters that can be used in a domain name is 34. . ftp. .edu. The virtual port name can be a well-known port name. October 2003 „ 299 .org. The virtual server created within the switch will respond to ARPs and PINGs from network ports as if it was a normal server. .

This option activates the virtual server within the switch so that it can service client requests sent to its defined IP address. When the layr3 option is enabled (disabled by default).0 Command Reference Table 7-8 Virtual Server Configuration Menu Options (/cfg/slb/virt) Command Syntax and Usage cont <BWM contract (1-256)> Enter a new Bandwidth Management Contract for this virtual service. The default number of contracts is set at 256 for Alteon OS. as it will delete the options that have been set for this virtual server. layr3 disable|enable Normally. October 2003 . cur Displays the current configuration of the specified virtual server. dis This option disables the virtual server so that it no longer services client requests. All the frames that match this virtual server services are assigned this BW contract if the previously assigned contract for the frame has lower or equal precedence of the virtual server contract. del This command removes this virtual server from operation within the switch and deletes it from the Layer 4 switching software configuration. the client IP address is used with the client Layer 4 port number to produce a session identifier. the switch uses only the client IP address as the session identifier. Use this command with caution. It associates all the connections from the same client with the same real server while any connection exists between them. However. ena Enables this virtual server. and also in applications where TCP fragments are generated. By default. If the real server to which the client is assigned becomes unavailable. 300 „ Chapter 7: The SLB Configuration Menu 315393-E. the BW contract can be changed for a selected virtual server with /cfg/slb/virt <number>/service <number>/cont.Alteon OS 21. the Layer 4 software will allow the client to connect to a different server. This option is necessary for some server applications where state information about the client system is divided across different simultaneous connections. all services under this virtual server are assigned this BW contract.

NOTE – Select virtual service port 554 to configure RTSP traffic. October 2003 „ 301 .0 Command Reference /cfg/slb/virt <server number>/service <virtual port or name> Virtual Server Service Configuration This menu is used for configuring services assigned to a virtual server. See page 305 to view the menu options for configuring virtual services on port 554 for RTSP. The following example shows a menu for http (port 80) services. [Virtual Server group rport hname httpslb cont urlcont pbind rcount dbind udp frag nonat dnsslb direct del cur - 1 http Service Menu] Set real server group number Set real port Set hostname Set HTTP SLB processing Set BW contract for this virtual service Set BW cont of an SLB string specific to this service Set persistent binding type Set multi response count Enable/disable delayed binding Enable/disable UDP balancing Enable/disable remapping UDP server fragments Enable/disable only substituting MAC addresses Enable/disable DNS query load balancing Enable/disable direct access mode Delete virtual service Display current virtual service configuration Chapter 7: The SLB Configuration Menu 315393-E.Alteon OS 21.

For example: „ „ httpslb <application> httpslb <application> and|or <application> cont <BWM Contract (0-256). This is used in conjunction with dname (above) to create a full host/domain name for individual services. The format for this command is: # hname <hostname> For example.com” would be the full host/ domain name for the service.Alteon OS 21. rport <real server port (0-65534)> Defines the real server TCP or UDP port assigned to this service. „ others: Requires inputs for a particular header field You may choose to combine or select applications to load balance using the commands and and/or or. this is the same as the virtual port (service virtual port).com” was defined (above). By default. use the command: # hname none httpslb urlslb|host|cookie|browser|urlhash|headerhash|others Load balances on the following applications: „ urlslb: Enable or disable URL SLB „ host: Enable or disable for virtual hosting „ cookie: Enable or disable cookie-based SLB for cookie-based preferential load balancing. To clear the hostname for a service. 302 „ Chapter 7: The SLB Configuration Menu 315393-E. If a dname of “foocorp. based on browser type „ urlhash: Enable or disable URL hashing based on URI „ headerhash: Hashes on any HTTP header value.0 Command Reference Table 7-9 Virtual Server Service Configuration Options (/cfg/slb/virt/service) Command Syntax and Usage group <real server group number (1-1024)> Sets a real server group for this service. to add a hostname for Web services.foocorp. enable/disable checking for cookie in URI „ browser: Enable or disable SLB. hname <hostname>|none Sets the hostname for a service added. it will carry the value entered for the Virtual Server IP (vip) contract. 0 for VIP default> Sets a Bandwidth Management contract for this virtual service. number of bytes to be extracted. Note: If you enter 0 for the service contract. If rport is configured to be different than the virtual port defined in /cfg/slb/virt <number>/service <virtual port>. You will be prompted to enter the number (1 to 256) of the real server group to add to this service. October 2003 . “www. you could specify www as the hostname. The default is set at 1. starting point of the cookie value. You will be prompted for the following: Cookie name. the switch will map the virtual port to this real port. The default number of contracts is set at 256 for Alteon OS.

non-repudiation. In Alteon OS 21. „ „ „ „ The clientip option uses the client IP address as an identifier. HTTP and HTTPs traffic from the same client will map to the same server irrespective of the load balancing metric used. they will be connected to the most appropriate real server based on the load balancing metric. with clientip command enabled.0. see “Cookie-Based Persistence” on page 305. The default number is 1. rcount <response count number (1–16)> Sets the maximum response counter for cookie-based persistence. October 2003 „ 303 . see the Persistence chapter in the Alteon OS 20. all subsequent SSL sessions which present the same session ID will be directed to the same real server. By enabling the sslid option. such as with SSL (Secure Socket Layer. different services from the same client may not map to the same server. The cookie option uses a cookie defined in the HTTP header or placed in the URI for hashing.0 Command Reference Table 7-9 Virtual Server Service Configuration Options (/cfg/slb/virt/service) Command Syntax and Usage urlcont <URL path ID> <BW contract> Sets the Bandwidth Management contract of a string specific to this virtual service. For more information on cookie option. The Alteon Application Switch will examine each server response until the cookie is found. since the services are related. This may be necessary for some server applications where state information about the client system is retained on the server over a series of sequential connections. For detailed information on Cookie-Based Persistence. if it has previously been enabled for a particular application.2 Application Guide. This option is disabled by default. The disable option allows you to disable presistent binding. SSL provides authentication. The sslid option is for Secure Sockets Layer (SSL). Enabling this command protects the server from Denial of Service (DoS) attacks. Chapter 7: The SLB Configuration Menu 315393-E. or until the maximum count is reached. Only use this command when a string is shared by multiple virtual services and each service requires a separate bandwidth. Web site search results. Whereas. The connection timeout value (set in the Real Server Menu) is used to control how long these inactive but persistent connections remain associated with their real servers. An alternative approach may be to use the real server group metrics minmisses or hash (see Server Load Balancing Metrics). and associates all connections from the same client with the same real server until the client becomes inactive and the connection is aged out of the binding table. pbind clientip|cookie<p|r|i>|sslid|disable Enables or disables persistent bindings for a real server (disabled by default). The default is set at 1024. or multi-page Web forms. which is a set of protocols built on top of TCP/IP that allow an application server and user to communicate over an encrypted HTTP session. When the client resumes activity after their connection has been aged out. and security. HTTPS). dbind disable|enable Enables or disables Layer 4 Delayed Binding for TCP service and ports.Alteon OS 21. The session ID is a value comprising 32 random bytes chosen by the SSL server that gets stored in a session hash table.

nonat disable|enable Enables or disables substituting only the MAC address of the real server (disabled by default). This option is used for Direct Server Return (DSR) in an one-armed load balancing setup. dnsslb disable|enable Enables or disables DNS-based Layer 7 content load balancing. Since no session is created.0 Command Reference Table 7-9 Virtual Server Service Configuration Options (/cfg/slb/virt/service) Command Syntax and Usage udp disable|enable|stateless Enables or disables UDP load balancing for a virtual port (disabled by default).Alteon OS 21. Note: If applying a filter to the same virtual server IP address on which UDP load balancing is enabled. so that frames returning from server to the client do not have to pass through the switch. 304 „ Chapter 7: The SLB Configuration Menu 315393-E. no session table entry is created. October 2003 . DNS uses UDP and TCP. This command takes precedence over the command to globally enable or disable direct access mode on the switch. When stateless is enabled. you have to bind to a new server every time. disable caching on that filter for optimal performance. as it will delete the options that have been set for this virtual service. see the cache command in Table 7-14 on page 314. you must activate UDP balancing for the particular virtual servers that clients will communicate with using UDP. This option is enabled by default. cur Displays the current configuration of services on the specified virtual server. In those environments. del This command removes this virtual service from operation within the switch and deletes it from the Layer 4 switching software configuration. direct disable|enable Enables or disables Direct Access Mode (DAM) on the selected virtual service. This option does not substitute IP addresses. Use this command with caution. For more information. frag disable|enable Enables or disables remapping server fragments for virtual port. You can configure this option if the service(s) to be load balanced include UDP and TCP: for example.

or disables rtspslb service altogether with dis command. See “/cfg/ slb/virt <server number>/service <virtual port or name>” on page 301 to view the menu options for configuring virtual services on port 80. group must be configured under the menu / cfg/slb/virt <virtual server number>/service 80. October 2003 „ 305 . thereby enabling the service). [Virtual Server group rtspslb del cur 1 rtsp Service Menu] Set real server group number Set RTSP URL load balancing type Delete virtual service Display current virtual service configuration Table 7-10 Virtual Server Service Configuration Menu Options (/cfg/slb/virt 1/service 554) Command Syntax and Usage group <real server group number (1-1024)> Sets real server group number. cur Displays the current virtual service configuration. If you don’t configure group. which is group 1. service 80 and service RTSP will load balance the default group. and has the following command syntax and usage: pbind cookie <mode> <name> <offset> <length> <URI> Chapter 7: The SLB Configuration Menu 315393-E.Alteon OS 21. del Deletes this virtual service. Cookie-Based Persistence The cookie option is used to establish cookie-based persistence. See “Virtual Server Service Configuration Options (/cfg/slb/virt/service)” on page 302 for details on how to configure group.0 Command Reference /cfg/slb/virt <server number>/service 554 Virtual Server RTSP Configuration This menu displays virtual services configured on service port 554 for RTSP traffic. To enable Layer 7 load balancing for RTSP service. rtspslb hash|patternMatch|dis This Layer 7 load balancing option sets the type of rtspslb (hash|patternMatch.

or none <return> Enter the name of the cookie. the network administrator configures the Web server to embed a cookie in the server response that the switch looks for in subsequent requests from the same client. enter d to disable this option. 12/31/01@23:59) . In this mode.g. 306 „ Chapter 7: The SLB Configuration Menu 315393-E. Insert cookie mode expiration parameters are as follows: Enter insert-cookie expiration as either: „ „ „ „ <name> <offset> <length> <URI> . a duration <days[:hours[:minutes]]> (e. Enter the starting point of the cookie value (1-64) Enter number of bytes to extract (1-64). and the switch inserts an Alteon persistence cookie into the data packet.. „ i: Insert mode.. enter e to enable this option. the server responds with the data. The following three modes are available: p: Passive mode.g. the switch. If you want to look for cookie name or value in the URI. The switch intercepts this persistence cookie and rewrites the value to include server-specific information before sending it to the client. 45:30:90) .0 Application Guide. To look for cookie in the HTTP header. For cookie rewrite. In active cookie mode (or cookie rewrite mode). see the Alteon OS 21..0 Command Reference Each parameter is explained in the following table. a date <MM/dd/yy[@hh:mm]> (e.. Table 7-11 Command Syntax and Usage for pbind cookie Options (/cfg/slb/virt/service/pbind cookie) Option <mode> Description Specify the mode for cookie-based persistence. generates the cookie value on behalf of the server. When a client sends a request without a cookie. the extracting length must be 8 or 16.. October 2003 . Look for cookie in the URI. „ r: Rewrite mode.Alteon OS 21.. and not the network administrator. The switch uses this cookie to bind to the appropriate server. For more information on Cookie-Based Persistence.

Enable/disable filter inversion ena .Enable filter dis .Set destination IP address dmask . deny. Each filter can be configured to allow.Delete filter cur . page 312) that can be used to provide more information through syslog.Set source TCP/UDP port or range dport .Filter Advanced Menu name .Set IP protocol sport .Set action group .Set destination TCP/UDP port or range action .Set source IP mask dip .Set destination IP mask proto . This command is disabled by default.Set filter name smac .Set source IP address smask .0 Command Reference /cfg/slb/filt <filter number> SLB Filter Configuration [Filter 1 Menu] adv . redirect or perform Network Address Translation on traffic according to a variety of address and protocol specifications.Alteon OS 21.Set real server port for redirection nat . The types of information include: „ „ „ „ IP protocol TCP/UDP ports TCP flags ICMP message type Chapter 7: The SLB Configuration Menu 315393-E.Set vlan id invert .Set source MAC address dmac .Set destination MAC address sip .Set real server group for redirection rport .Display current filter configuration The switch supports up to 2048 traffic filters. and each physical switch port can be configured to use any combination of filters.Disable filter del . October 2003 „ 307 . There are several options available in the Filter Advanced Menu (/cfg/slb/filt/adv.Set which addresses are network address translated vlan .

255. dmac any|<MAC address (such as. To view menu options. see “Defining IP Address Ranges for Filters” on page 311. 308 „ Chapter 7: The SLB Configuration Menu 315393-E. A range of IP addresses is produced when used with the dmask below. traffic with this source IP address will be affected by this filter.255.0)> This IP address mask is used with the dip to select traffic which this filter will affect. Specify an IP address in dotted decimal notation.255. The default is any if the source MAC address is any. name <31 character name>|none Allows the user to assign a name to a filter. 00:60:cf:40:56:00)> Sets the destination MAC address. 255. dmask <IP subnet mask (such as.0> This IP address mask is used with the sip to select traffic which this filter will affect. The default is any if the destination MAC address is any. deny. The default is any. see page 312. 255. A range of IP addresses is produced when used with the smask below. 00:60:cf:40:56:00)> Sets the source MAC address. nat) Enable the filter Add the filter to a switch port Enable filtering on the Alteon Application Switch port Table 7-12 Filter Configuration Menu Options (/cfg/slb/filt) Command Syntax and Usage adv Displays the Filter Advanced Menu. smac any|<MAC address (such as. The default is any. redirect. and/or protocol that will be affected by the filter Set the filter action (allow. masks. smask <IP subnet mask (such as.0 Command Reference The following parameters are required for filtering: „ „ „ „ „ Set the address. sip any|<IP address> If defined.255. October 2003 . dip any|<IP address> If defined. For more information. See details below for more information on producing address ranges. For more information.Alteon OS 21. or any. Specify an IP address in dotted decimal notation. or any. see “Defining IP Address Ranges for Filters” on page 311. traffic with this destination IP address will be affected by this filter.

range.0 Command Reference Table 7-12 Filter Configuration Menu Options (/cfg/slb/filt) Command Syntax and Usage proto any|<number>|<name> If defined. or “any”. name. traffic with the specified TCP or UDP source port will be affected by this filter. Specify the port number. name. traffic from the specified protocol is affected by this filter. Number 1 2 6 17 89 112 Name icmp igmp tcp udp ospf vrrp sport any|<name>|<port>|<port>-<port> If defined. or “any”.Alteon OS 21. The default is any. Specify the port number. name. or “any”. Specify the protocol number. traffic with the specified real server TCP or UDP destination port will be affected by this filter. Listed below are some of the well-known protocols. range. The default is any. just as with sport above. Chapter 7: The SLB Configuration Menu 315393-E. The default is set at any. October 2003 „ 309 . Listed below are some of the well-known ports: Number 20 21 22 23 25 37 42 43 53 69 70 79 80 109 110 Name ftp-data ftp ssh telnet smtp time name whois domain tftp gopher finger http pop2 pop3 dport any|<name>|<port>|<port>-<port> If defined.

Layer 4 processing must be activated (see the /cfg/slb/on command on page 284). Discard frames that fit this filter’s profile. group <real server group number (1-1024)> This option applies only when redir is specified at the filter action. In addition. rport must be configured for all Application Redirection filters. This can be used to map the source or destination IP address and port information of a private network scheme to/from the advertised network IP address and ports. the frame’s destination IP address (dip) and port number (dport) are replaced with the sip and sport values. Define a real server group (1 to 16) to which redirected traffic will be sent. this must be configured whenever TCP protocol traffic is redirected. if transparent proxies are used for Network Address Translation (NAT) on the Alteon Application Switch (see the pip option in Table 7-21 on page 321). use the /cfg. October 2003 . The “goto” action causes filter processing to jump to a designated filter.Alteon OS 21. If dest is specified. To specify the new filter to goto. Perform generic Network Address Translation (NAT). This can be used for building basic security profiles. This is used in conjunction with the nat option (mentioned in this table) and can also be combined with proxies. Also. nat source|dest When nat is set as the filter action (see above). effectively skipping over a block of filter IDs. This defines the real server TCP or UDP port to which redirected traffic will be sent. The default is group 1 rport <real server port (0-65535)> This option applies only when redir is specified at the filter action. nat goto 310 „ Chapter 7: The SLB Configuration Menu 315393-E. the frame’s source IP address (sip) and port number (sport) are replaced with the dip and dport values. If source is specified. For valid Layer 4 health checks. The default is set at 0. Redirect frames that fit this filter’s profile. Destination (dest) is set as the default filter.slb/filt/adv/goto command. this command specifies whether Network Address Translation (NAT) is performed on the source or the destination information.0 Command Reference Table 7-12 Filter Configuration Menu Options (/cfg/slb/filt) Command Syntax and Usage action allow|deny|redir|nat|goto Specify the action this filter takes: allow deny redir Allow the frame to pass (by default). Filter searching action will then continue from the designated filter ID. Allows the user to specify a target filter ID that the filter search should jump to when a match occurs. such as for web cache redirection.

4090)> Sets the ID of the VLAN that is to be filtered. Chapter 7: The SLB Configuration Menu 315393-E. October 2003 „ 311 . the sip (source) or dip (destination) defines the base IP address in the desired range. Defining IP Address Ranges for Filters You can specify a range of IP address for filtering both the source and/or destination IP address for traffic.0 Command Reference Table 7-12 Filter Configuration Menu Options (/cfg/slb/filt) Command Syntax and Usage vlan any|<VLAN ID (1 . the filter does not get applied to all the member ports of this VLAN. This option is disabled by default. If the conditions of the filter are met. del Deletes this filter. If the conditions for the filter are not met. to determine if a client request’s destination IP address should be redirected to the cache servers attached to a particular switch.Alteon OS 21. ena Enables this filter. don’t act. invert disable|enable Inverts the filter logic. which means the switch will match any VLAN ID of the incoming packet This command allows filters to be configured on per VLAN basis. and the smask (source) or dmask (destination) is the mask which is applied to produce the range. A VLAN has a set of member ports. But by applying this filter to a VLAN. the destination IP address is masked (bitwise AND) with the dmask and then compared to the dip. and applies a filter to a VLAN that already has been configured. For example. When a range of IP addresses is needed. dis Disables this filter. cur Displays the current configuration of the filter. This option allows you to match the VLAN ID of the switch against the VLAN ID of the incoming packet. perform the assigned action. The default is any. You have to manually add the filter to the port.

0.255.0.TCP Advanced Menu ip .0.0.Enable/disable logging fwlb .0 /cfg/slb/filt <filter number>/adv Advanced Filter Configuration [Filter 1 Advanced Menu] tcp . see page 315.Set GOTO filter ID proxy .0. see page 314.Enable/disable WAN link load balancing dbind .127.Security Menu icmp .Set NAT or L7 lookup session timeout idshash .255.0 128.Set ICMP message type cont .0. 312 „ Chapter 7: The SLB Configuration Menu 315393-E.0 0.Set BW contract tmout .Enable/disable client proxy cache .255 128.Enable/disable caching sessions that match filter log .Display current advanced filter configuration Table 7-14 Advanced Filter Menu (/cfg/slb/filt/adv) Command Syntax and Usage tcp Displays the TCP Flags advanced menu.Layer 7 Advanced Menu security .IP Advanced Menu layer7 . To view menu options.255. To do this.0 Command Reference As another example.0.255.255 0.0.0.Alteon OS 21. ip Sets IP advanced menu.0 255. To view menu options.0 .0 128. October 2003 .Enable/disable firewall redirect hash method linklb . you could define the following parameters: Table 7-13 Filtering IP Address Ranges Filter #1 #2 Internet Address Range dip dmask 128.Set hash parameter for intrusion detection SLB thash . you could configure the switch with two filters so that each would handle traffic filtering for one half of the Internet.Enable/disable delayed binding for redirection pbind .0.Enable/disable persistent binding for redirection cur .Set hash parameter for Filter goto .0.0.

tmout <even number of minutes (4-32768)> Sets the session timeout in an even number of minutes. This option applies only when redir or nat is specified as the filter action. see the Alteon OS 21. October 2003 „ 313 . The default is set at any. This is useful when certain traffic must retain original IP address information. proxy disable|enable Enables or disables client proxy. By default. idshash sip|dip|both Sets the hash metric parameter for Intrusion Detection System Server Load Balancing: source IP (sip). "icmp list" for list> Sets the ICMP message type. or when other forms of translation (such as Application Redirection or NAT) are preferred. The sip option allows you to perform tunable hash on source IP address for this filter. For a list of ICMP message types. If disabled. For a detailed description of filtering and ICMP. The option both allows you to perform tunable hash on both source IP address and the destination IP address at the same time. see page 317. or both.Alteon OS 21. see Table 7-17 on page 316. destination IP (dip). security Displays the filter Security Menu.0 Command Reference Table 7-14 Advanced Filter Menu (/cfg/slb/filt/adv) Command Syntax and Usage layer7 Displays Layer7 advanced menu. In order to use this feature. the contract number is set at 256. the action on this filter must be set to goto. To view menu options. goto <filter ID> Defines ID for the GOTO filter. By default. The option sip+sport allows you to perform tunable hash on both source IP address and source port at the same time. The Default is auto. thash auto|sip|dip|both|sip+sport Allows you to choose hash parameter to use for filter redirection. The default is set at 4 minutes. To view menu options. Chapter 7: The SLB Configuration Menu 315393-E. any proxy defined for the switch port using the pip command (see page 321) is not performed for traffic meeting the filter criteria.0 Application Guide. Enable or disable proxy IP address translation for traffic matching the filter criteria. see page 319 icmp any|<number>|<type. this is enabled. cont <BWM Contract (1-256)> Sets the Bandwidth Management Contract. The option dip allows you to perform tunable hash on destination IP address for this filter.

Enable/disable TCP PSH matching . enabling this option changes the hash of the filter from a WCR hash to a FWLB hash.Enable/disable TCP URG matching . A cache-enabled filter creates a session entry in the switch. /cfg/slb/filt <filter number>/adv/tcp Advanced Filter TCP Configuration [TCP Advanced urg ack psh rst syn fin ackrst cur Menu] . pbind disable|enable Enables or disables persistent binding for redirection on this filter. Cache is enabled by default. If the dport is 80 or 21.Enable/disable TCP RST matching . log disable|enable Enables or disables logging filter messages. so that the switch can bypass checking for subsequent frames that match the same criteria.Display current TCP configuration 314 „ Chapter 7: The SLB Configuration Menu 315393-E.Enable/disable TCP ACK or RST matching . linklb disable|enable Enables or disables WAN Link Load Balancing. dbind disable|enable Enables or disables delayed binding for redirection on this filter. this option is disabled. This option is disabled by default. Exercise caution while applying cacheenabled and cache-disabled filters to the same switch port.Enable/disable TCP SYN matching .0 Command Reference Table 7-14 Advanced Filter Menu (/cfg/slb/filt/adv) Command Syntax and Usage cache disable|enable Enables or disables caching sessions that match the filter. By default. fwlb disable|enable To ensure that the stateful inspection behavior of firewalls is maintained. this option is disabled. a hashing algorithm is used to ensure that inbound packets and outbound packets for a pair of IPSA/IPDA traverse through the same firewall. By default. October 2003 .Alteon OS 21.Enable/disable TCP FIN matching . cur Displays the current advanced filter configuration. Note: Cache should be disabled if applying a filter to virtual server IP address while performing UDP load balancing (see “udp disable|enable|stateless” on page 304).Enable/disable TCP ACK matching .

October 2003 „ 315 . syn disable|enable Enables or disables TCP SYN (synchronize) flag matching. By default. this option is disabled. Table 7-15 Advanced Filter TCP Menu (/cfg/slb/filt/adv/tcp) Command Syntax and Usage urg disable|enable Enables or disables TCP URG (urgent) flag matching.0 Command Reference These commands can be used to configure packet filtering for specific TCP flags.Set IP TOS mask newtos . psh disable|enable Enables or disables TCP PSH (push) flag matching.Set IP Type of Service tmask . ack disable|enable Enables or disables TCP ACK (acknowledgement) flag matching. By default. fin disable|enable Enables or disables TCP FIN (finish) flag matching. By default. this option is disabled. this option is disabled.Display current IP configuration Chapter 7: The SLB Configuration Menu 315393-E. cur Displays the current Access Control List TCP filter configuration. By default. By default. ackrst disable|enable Enables or disables TCP acknowledgement or reset flag matching.Set IP maximum packet length option . this option is disabled.Alteon OS 21. this option is disabled.Enable/disable IP option matching cur . /cfg/slb/filt <filter number> /adv/ip IP Advanced Menu [IP Advanced Menu] tos . rst disable|enable Enables or disables TCP RST (reset) flag matching. By default. By default. this option is disabled. this option is disabled.Set new IP TOS length .

refer to RFC 1340 and 1349. For more information on ToS.0 Command Reference Table 7-16 IP Advanced Menu Options (/cfg/slb/filt #/adv/ip) Command Syntax and Usage tos <0-255> Sets IP type of service (ToS) and the value of the type of service. cur Displays the current advanced IP settings for the selected filter. You can list all ICMP message types with the /cfg/slb/filt/adv/icmp list command. newtos <0-255> Sets new IP type of service. Any packet exceeding the maximum length will not match the filter. October 2003 . ICMP Message Types The following ICMP message types are used with the /cfg/slb/filt/adv/icmp command. 64-65535>|any Defines the limit of IP packet’s length. Table 7-17 ICMP Message Types Type # Message Type 0 3 4 5 8 9 10 11 12 echorep destun quench redir echoreq rtradv rtrsol timex param Description ICMP echo reply ICMP destination unreachable ICMP source quench ICMP redirect ICMP echo request ICMP router advertisement ICMP router solicitation ICMP time exceeded ICMP parameter problem 316 „ Chapter 7: The SLB Configuration Menu 315393-E. tmask <0-255> Sets IP type of service mask.Alteon OS 21. option disable|enable Enables or disables IP option matching. length <IP packet length (in bytes).

0 Command Reference Table 7-17 ICMP Message Types Type # Message Type 13 14 15 16 17 18 timereq timerep inforeq inforep maskreq maskrep Description ICMP timestamp request ICMP timestamp reply ICMP information request ICMP information reply ICMP address mask request ICMP address mask reply /cfg/slb/filt <filter number> /adv/layer7 Layer 7 Advanced Filter Configuration Menu [Layer 7 Advanced Menu] urlcont .Remove string for layer 7 filtering rdsnp . Only use this command when a string is shared by multiple filters and each filter requires a separate bandwidth.Enable/disable active FTP NAT l7lkup .Enable/disable RADIUS/WAP Persistence ftpa . then send back an HTTP redirection message back to the client that contains information in the second string ID.Add string for layer 7 filtering remstr .Enable/disable layer 7 lookup (parsing) of all packets cur . Strings are defined under: /cfg/slb/layer7/slb/add. addrd [1>2] Adds an HTTP redirection mapping.Alteon OS 21.Enable/disable Layer 7 content lookup parseall . October 2003 „ 317 .Display current layer 7 configuration Table 7-18 Layer 7 Advanced Filter Menu Options (/cfg/slb/filt/adv/layer7) Command Syntax and Usage urlcont <URL path ID> <BW contract> Sets the URL path BW contract for this filter.Remove HTTP redirection mapping addstr .Set BW cont of an URL path specific to this filter addrd .Add HTTP redirection mapping remrd . Chapter 7: The SLB Configuration Menu 315393-E. This command tells the filter that if it matches on the first string id.Enable/disable WAP RADIUS Snooping rdswap .

When combined with a filter action (e. layer 7 lookup is turned off for the remaining packets in the session. October 2003 . 318 „ Chapter 7: The SLB Configuration Menu 315393-E. deny. some sessions may contain only one packet containing the layer 7 content. When a client in active FTP mode sends a PORT command to a remote FTP server.g. the switch will look into the data part of the frame and replace the client ’s private IP address with a proxy IP (PIP) address. redir). subsequent packets can be ignored. the filter performs a lookup on layer 7 content such as HTTP strings or headers. this feature enables content-intelligent redirection or content-intelligent deny filtering. When enabled. this option is disabled. parseall disable|enable or just d|e Enables or disables parsing of all packets in a session where layer 7 lookup is being performed. This command replaces the urlp and l7deny commands found in earlier releases of Alteon OS. rdswap enable|disable or just d|e Enables or disables WAP radius persistence on this filter. ftpa disable|enable or just d|e Enables or disables active FTP Client Network Address Translation (NAT). rdsnp disable|enable or just d|e Enables or disables WAP radius snooping on this filter. However. cur Displays the current configuration. addstr <string id (1-512)> Adds the string ID to this filter for L7 filtering. This command is enabled by default. When parseall is disabled. that is PIP:PPORT. and normally all data packets in a session are examined by the filter.0 Command Reference Table 7-18 Layer 7 Advanced Filter Menu Options (/cfg/slb/filt/adv/layer7) Command Syntax and Usage remrd <string id to redirect from (1-512)> <string id to redirect to (2-512)> Removes an HTTP redirection mapping that was added using the addrd command described above. The string is defined under: /cfg/slb/layer7/ slb/add.Alteon OS 21. The real server port (RPORT) will be replaced with a proxy port (PPORT). l7lkup disable|enable or just d|e Enables or disables layer 7 lookup on this filter. remstr <string id (1-512)> Removes the string ID for Layer 7 filtering. Once this packet is found. The string is defined under: /cfg/slb/ layer7/slb/add. By default.

This command is enabled by default. Pattern groups are added using the /cfg/security/ pgroup/add command. subsequent packets can be ignored. Currently. parseall disable|enable Enables or disables pattern string lookup (parsing) of all packets in a session where pattern matching is being performed. This feature enables the switch to detect and block UDP or ICMP-based DOS attacks that slow down or decapitate the servers. Once this packet is found. some sessions may contain only one packet containing the layer 7 content. and ICMP protocols. The protocol-based rate limiting limits the traffic coming from specific clients based on the IP address of the client. pattern matching is turned off for the remaining packets in the session. remgrp <pattern match group id> Removes a pattern group from this filter. UDP.Alteon OS 21. and normally all data packets in a session are examined by the filter. However. When parseall is disabled. cur Displays the current configuration.0 Command Reference /cfg/slb/filt <filter number> /adv/security SLB Filter Advanced Security Menu [Security Menu] ratelim addgrp remgrp pmatch matchall parseall cur Rate Limiting Menu Add pattern match group for layer 7 filtering Remove pattern match group for layer 7 filtering Enable/disable pattern matching Enable/disable match-all criteria for layer 7 filtering Enable/disable layer 7 lookup (parsing) of all packets Display current Security configuration Table 7-19 Layer 7 Advanced Filter Menu Options (/cfg/slb/filt/security) Command Syntax and Usage ratelim Displays the Rate Limiting Menu. the switch allows rate limiting to be enabled on TCP. matchall disable|enable Enables or disables matching of all configured patterns before the filter can perform the deny action. October 2003 „ 319 . Chapter 7: The SLB Configuration Menu 315393-E. addgrp <pattern match group id> Adds a pattern group to this filter. pmatch disable|enable Enables or disables pattern matching on this filter. To view menu options see page 320.

2-65535> Defines hold down duration for rate limiting. holddur <minutes. any new TCP connection requests or UDP/ICMP packets from the client are blocked. 1-65535> Defines time window for rate limiting. Rate limiting is applied to the protocol configured on the filter. A time window is a configured period of time (in seconds) during which packets are allowed to be received. The client is held down for a specified number of minutes. The time window can be configured per filter and not globally on all the filters. the client is said to be held down. When blocking occurs. and ICMP. dis Disables TCP.Alteon OS 21. UDP. or ICMP rate limiting Display current rate limiting configuration Table 7-20 Rate Limiting Advanced Menu Options (/cfg/slb/filt/adv/security/ ratelim) Command Syntax and Usage maxconn <# of connections in units of 10 (0-255)> Defines maximum connections for rate limiting. UDP. timewin <seconds. ena Enables the protocol for rate limiting. UDP. The hold-down duration can be configured per filter and not globally on all the filters. When the number of new connections or packets exceeds the configured limit. cur Displays the current rate limiting configuration. October 2003 . or ICMP rate limiting Disable TCP. after which new TCP connection requests or packets from the client are allowed once again to pass through. or ICMP rate limiting. UDP. The supported protocols are: TCP. 320 „ Chapter 7: The SLB Configuration Menu 315393-E.0 Command Reference /cfg/slb/filt <filter number> /adv/security/ ratelim Advanced Security Rate Limiting Configuration Menu [Rate Limiting maxconn timewin holddur ena dis cur Menu] Set maximum connections for rate limiting Set time window for rate limiting Set hold down duration for rate limiting Enable TCP.

expanding your topology options. it may take some time before the port session information is updated so that the filter changes take effect. re-mapping virtual server IP addresses and port values to real server IP addresses and ports. NOTE – When changing the filters on a given port. Maximizing the number of these ports on the Layer 4 switch will improve the switch’s potential for effective Server Load Balancing. or another switch.Enable/disable inter-switch processing proxy .Enable/disable RTS processing hotstan . server disable|enable Ports configured to provide real server responses to client requests require real servers to be connected to the Layer 4 switch.Enable/disable hot-standby processing intersw .Enable/disable server processing rts . Traffic not associated with virtual servers is switched normally.Remove filter from port idslb .Enable/disable intrusion detection server load balancing cur . router. Chapter 7: The SLB Configuration Menu 315393-E.Enable/disable client processing server .Enable/disable filtering add . Ports configured to process client request traffic bind servers to clients and provide address translation from the virtual server IP address to the real server IP address.Add filter to port rem . the port can be enabled or disabled to process client Layer 4 traffic. clear the session binding table for the port (see the clear command in Table 8-3 on page 350).Display current port configuration Alteon OS switch software allows you to enable or disable processing independently for each type of Layer 4 traffic (client and server) on a per port basis. October 2003 „ 321 . Traffic not associated with virtual servers is switched normally. Table 7-21 Port Configuration Menu Options (/cfg/slb/port) Command Syntax and Usage client disable|enable For Server Load Balancing. the switch port re-maps real server IP addresses and Layer 4 port values to virtual server IP addresses and Layer 4 ports. This option is disabled by default. directly or through a hub.Enable/disable use of PIP for ingress traffic filt .Alteon OS 21. When server processing is enabled. To make port filter changes take effect immediately.0 Command Reference /cfg/slb/port <port number> Port SLB Configuration [SLB port 1 Menu] client . This option is disabled by default.

This option is disabled by default. Proxies are also useful for Application Redirection and Network Address Translation (NAT).0 Application Guide. This option is disabled by default. Enable rts on all client-side ports to ensure that traffic ingresses and egresses through the same port. This option is disabled by default. In Server Load Balancing applications. This option is disabled by default. idslb disable|enable Enables or disables Intrusion Detection System Server Load Balancing for this port. this forces response traffic to return through the switch. October 2003 . Enabling the filter sets up the Real Server to look into the VPN session table. proxy disable|enable Enables or disables a proxy for traffic that ingresses this port. This option is used for firewall load balancing or VPN load balancing applications. For more information on using rts.Alteon OS 21. cur Displays the current system parameters. When pip is used with Application Redirection filters. hotstan disable|enable Enables or disables hot-standby processing. This option is enabled for ports connected to a peer switch and is disabled by default. When the PIP is defined. add <filter ID (1 to 2048)|block of IDs (first-last)> Adds a filter or a block of filters for use on this port. Enter filter ID (1 to 2048) or a contiguous block of filter IDs. For example. Use this option and the intersw option in conjunction with VRRP hot-standby failover. intersw disable|enable Enables or disables inter-switch processing. 1-100. rem <filter ID (1 to 2048)|block of IDs (first-last)> Removes a filter or a block of filters from use on this port. see the “Firewall Load Balancing” and “VPN Load Balancing” chapters in the Alteon OS 21. each filter’s rport parameter must also be defined (see rport on page 308). as is possible in complex routing environments. 1-100. filt disable|enable Enables or disables filtering on this port.0 Command Reference Table 7-21 Port Configuration Menu Options (/cfg/slb/port) rts disable|enable Enables or disables Return to Sender (RTS) load balancing on this port. This option is disabled by default. client address information in Layer 4 requests is replaced with this proxy IP address. rather than around it. For example. Enter filter ID (1 to 2048) or a contiguous block of filter IDs. 322 „ Chapter 7: The SLB Configuration Menu 315393-E.

To view menu options.Enable/disable DNS handoffs local . October 2003 „ 323 .Enable/disable HTTP redirect to real server name norem .Set interval between remote site updates weight . alway.Remote Site Menu lookup . The options in this menu will overwrite the geographic awareness (IANA table) during DNS queries. Higher numbers may reduce the amount of DNS traffic. one. A lower value may increase the ability of the GSLB system to adjust to sudden changes in traffic load. By default. but will generate more DNS traffic. this option is disabled.Set minimum number of site connections inter .Set local weight dns . Table 7-22 Global SLB Menu Options (/cfg/slb/gslb) Command Syntax and Usage site <remote site (1-64)> Displays the Remote Site Menu for one of up to 64 remote sites.Network Preference Lookup Menu ttl .Enable/disable geographic awareness http . and geo options have no effect on lookup.Enable/disable DNS responses with only local addresses one .Enable/disable HTTP redirects usern .Display current Global SLB configuration NOTE – The local.Set Time To Live of DNS resource records mincon .Globally turn Global SLB OFF cur .Enable/disable encrypting remote site update on .Globally turn Global SLB ON off . To view menu options. Chapter 7: The SLB Configuration Menu 315393-E.Enable/disable no remote real SLB encrypt . lookup Displays the Global SLB Lookup Menu. see page 326. ttl <time to live in seconds (0-65535)> Specifies the duration (from 0 to 65535 seconds.Enable/disable DNS responses with only one address alway . see page 327.Enable/disable DNS responses at least one address geo . but may slow GSLB’s response to sudden traffic changes.Alteon OS 21.0 Command Reference /cfg/slb/gslb Global SLB Configuration [Global SLB Menu] site . with default at 60) that the DNS response from the switch (indicating site of best service) will remain in the cache of DNS servers.

This option is enabled by default. geo disable|enable Enables or disables geographic awareness. the switch will always respond to DNS queries by providing a local virtual server IP address. This option is enabled by default. The default is 1. such as the IANA table. The higher the weight value. minus the server’s current number of connections. inter <interval in minutes (1-120)> Sets the time between Distributed Site State Protocol (DSSP) updates between this switch and its peers. This option is disabled by default. dns disable|enable Enables or disables DNS handoffs to peer sites by this switch.0 Command Reference Table 7-22 Global SLB Menu Options (/cfg/slb/gslb) Command Syntax and Usage mincon <minimum connections. regardless of performance or load considerations. This option is disabled by default. The default is 1 minute.Alteon OS 21. the local VIP is returned in DNS response to eliminate long DNS timeouts caused by an empty response. When the real servers for the local virtual server IP addresses are unavailable or saturated. whenever the switch receives a DNS request for a configured service. it will respond only with its own virtual server IP address. A site is not eligible for more requests (such as DNS or HTTP redirects) once the number of available connections at a site drops below this threshold. Remote site response times are divided by the real server weight before selection occurs. Even if all remote sites cannot handle another request. October 2003 . This option is disabled by default. 324 „ Chapter 7: The SLB Configuration Menu 315393-E. The range is between 1 and 120 minutes. If the site’s available sessions fall below this value. The default is set at 1024. allowing all sites to be eligible for each client. one disable|enable Enables or disables DNS responses with only one address. At the most one IP address is included in each DNS response. alway disable|enable Enables or disables DNS responses (with) at least one address. At least one IP address is included in each DNS response. the more connections that will be directed to the local site. When enabled. The response time of this site is divided by this weight before the best site is assigned to a client. 0-65535> Sets the minimum number of available site connections. weight <server weight (1-48)> Sets the local weight. all clients and sites will be assumed to exist in the same geographic region. the switch will respond to DNS requests using normal GSLB rules. This should be enabled for proper GSLB operation. as long as the virtual server IP address has healthy real servers with an aggregate number of available connections equal to the total from each server’s configured maxcons value. If disabled. traffic won’t be redirected to the site. If this option is disabled. local disable|enable Enables or disables switch responses to DNS queries with local virtual server IP addresses.

the switch will not encrypt the DSSP messages going out of the switch. on Activates Global Server Load Balancing (GSLB) for this switch. the client is redirected to the new site's IP address. the client will be redirected to the domain name specified by the remote real server name plus virtual server domain name: <remote real server name>. usern disable|enable Enables or disables an HTTP redirect to a real server name. cur Displays the current Global SLB configuration. If usern is enabled. For HTTP protocols. encrypt disable|enable This command enables or disables encrypting of DSSP updates. By default. If disabled.Alteon OS 21.<virtual server domain name> norem disable|enable This command enables or disables no-remote real server load balancing. Chapter 7: The SLB Configuration Menu 315393-E. GSLB is turned off. if you want to do no-remote-real-server load balancing. When a site redirects a client to another site using an HTTP redirect. this switch will redirect client requests to peer sites if its own real servers fail or have reached their maximum connection limits. you need to disable the http parameter in the same menu. When enabled (default). If enabled. Any active remote sites will still perform GSLB services with each other. but will instead drop requests for new connections and cause the client’s browser to eventually issue a new DNS request. October 2003 „ 325 . This option is disabled by default. If disabled. off Turns GSLB off for this switch. This option can be performed only once the optional GSLB software is activated (refer to “Activating Optional Software” on page 353). This option allows the GSLB feature to work with older versions of Web OS that do not encrypt DSSP messages. the switch will not do remote real server load balancing for non-http protocols. but will not hand off requests to this switch. the switch will not perform HTTP Redirects.0 Command Reference Table 7-22 Global SLB Menu Options (/cfg/slb/gslb) Command Syntax and Usage http disable|enable Enables or disables HTTP redirects to peer sites by this switch.

If your local firewall does not permit this traffic. The default is set at none. By default. Both services cannot use the same port.Set primary switch IP address of remote site secon . the switch will not send state updates. Global Server Load Balancing uses service port 80 on the IP interface for DSSP updates. enter the IP address of the IP interface for the remote secondary switch here.Delete remote site cur . this switch will send regular Distributed Site State Protocol (DSSP) updates to its remote peers using HTTP port 80.Disable remote site del . configure the Alteon OS Browser-Based Interface (BBI) to use a different service port (see the /cfg/sys/access/wport option on page 193). update disable|enable Enables or disables remote site updates.0 Command Reference /cfg/slb/gslb/site <site number> GSLB Remote Site Configuration [Remote site 1 Menu] prima . name <31 character name>|none Sets the name of the remote site. disable the updates.Set secondary switch IP address of remote site name .Enable/disable remote site updates ena .Enable remote site dis . October 2003 . secon <server IP address> If the remote site is configured with a redundant switch.Display current remote site configuration Up to 64 remote sites can be configured. the local switch will address the remote site secondary switch instead. If disabled. ena Enables this remote site for use with Global Server Load Balancing. 326 „ Chapter 7: The SLB Configuration Menu 315393-E.Set remote site name update .Alteon OS 21. If enabled (default). If the remote site primary switch fails. Use dotted decimal notation. If both are enabled. the Alteon OS Web-based interface also uses port 80. Table 7-23 GSLB Remote Site Menu Options (/cfg/slb/gslb/site) Command Syntax and Usage prima <server IP address> Defines the IP interface IP address of the primary switch at the remote site used for Global Server Load Balancing. Note: When update is enabled.

lookups disable|enable Enables or disables network preference lookups. dname <34 character domain name>|none Sets the domain name for the internal lookup table. only the domain name will be used to match. the hostname specified in the Virtual Service configuration in addition to the domain name field (dname command in the CLI) will be used to resolve the IP address for the domain. This option is disabled by default. The maximum number of characters that a domain name can use is 34. The default is set at none. Chapter 7: The SLB Configuration Menu 315393-E.Enable or disable network preference lookups hostlk . The switch will no longer use this remote site for Global Server Load Balancing. cur Displays the current remote site configuration. If enabled.Set domain name for internal lookup table lookups . /cfg/slb/gslb/lookup GSLB Lookup Configuration [Global SLB Lookup Menu] network . To view menu options.0 Command Reference Table 7-23 GSLB Remote Site Menu Options (/cfg/slb/gslb/site) Command Syntax and Usage dis Disables this remote site.Internet Network Preference Menu dname .Enable or disable hostname matching in lookups cur . October 2003 „ 327 .Display current lookup configuration Table 7-24 GSLB Lookup Menu Options (/cfg/slb/gslb/lookup) Command Syntax and Usage network <internal static (1-1024)><internet network preference number (1-1024)> Displays the Internet Network Preference Menu.Alteon OS 21. When enabled. When disabled. hostlk disable|enable Enables or disables lookups based on host or domain name in a GSLB configuration. see page 328. the switch responds to DNS requests based on the configured dname and Internet Preference Menu option settings. del Removes this remote site from operation and deletes its configuration.

Display current internet network entry configuration Up to 1024 network preference numbers can be set.Alteon OS 21. Client IP address doesn’t match address in the Network Preference Menu and no default entry is configured.0) and only the VIP1 and VIP 2 are configured. Specify an IP address in dotted decimal notation.0.0.0 Command Reference Table 7-24 GSLB Lookup Menu Options (/cfg/slb/gslb/lookup) Command Syntax and Usage cur Displays the current lookup configuration. The default entry is one where the source IP address and mask are not configured (both are 0.Set Source IP address mask . Table 7-25 GSLB Internet Network Preference Menu Options (/cfg/slb/gslb/ lookup/network) Command Syntax and Usage sip <IP address> Sets the source (client) IP address. All client networks not in the Network Preference Menu will use this entry to respond to a DNS request. There is an entry match in the Network Preference Menu. A range of IP addresses is produced when used with the mask option. VIP1 and VIP2 are not healthy—they are down or over the minimum number of connections (mincon).Set VIP address vip2 . However.Set VIP address del .Set net mask vip1 . October 2003 . using the options in this menu. You can overwrite the IANA table by defining client networks. You should use regular GSLB to respond to a DNS request under the following conditions: „ „ „ Queried domain is not matched. 328 „ Chapter 7: The SLB Configuration Menu 315393-E. /cfg/slb/gslb/lookup/network <preference number> GSLB Internet Network Preference Lookup Configuration [Network 1 Menu] sip .Delete internet network entry cur .

The switch returns the VIP address with the least response time that is over the mincon (minimum number of available connections). To view menu options.Alteon OS 21. cur Displays the current Internet network entry configuration. vip1 <IP address> Sets the first virtual server IP address. To view menu options. slb Displays the Server Load Balancing Menu. del Deletes the network entry.Server Load Balancing Menu dbindtm . dbindtm <10-60 seconds> Sets the timeout for incomplete delayed binding connections. see page 330. see page 331.0 Command Reference Table 7-25 GSLB Internet Network Preference Menu Options (/cfg/slb/gslb/ lookup/network) Command Syntax and Usage mask <IP address> This IP address mask is used with the source IP SIP address to find a correct virtual server IP address to respond to a DNS request. vip2 <IP address> Sets the second virtual server IP address.Set timeout for incomplete delayed binding connections cur .Web Cache Redirection Menu slb . Chapter 7: The SLB Configuration Menu 315393-E. October 2003 „ 329 .Display current Layer 7 configuration Table 7-26 Layer 7 Resource Definition Menu Options (/cfg/slb/layer7) Command Syntax and Usage redir Displays the Web Cache Redirection Menu. cur Displays the current Layer 7 configuration. The address can either be a local or remote virtual server. /cfg/slb/layer7 Layer 7 SLB Resource Definition Menu [Layer 7 Resource Definition Menu] redir .

Alteon OS 21. 330 „ Chapter 7: The SLB Configuration Menu 315393-E. „ If hashing is disabled. „ If this command is disabled. „ „ If this command is enabled. „ If hashing is enabled. „ If this command is disabled. or Pragma: no-cache in HTTP/1. cookie disable|enable Enables or disables auto-ALLOW for cookie to origin servers. the switch will compare the URI against the expression table to determine whether it should redirect all requests that contain Cookie: in the HTTP header to a cache server or origin server. the switch will compare the URI against the expression table to determine whether it should redirect requests that contain Cache-Control: no-cache in HTTP/ 1.0 header to a cache server or origin server. This option is disabled by default. hash disable|enable <number (1-255)> Enables or disables URL hashing based on the URI. October 2003 .Enable/disable server loadbalance based on HTTP header cur . the switch will compare the URI against the expression table to determine whether all non-GET requests should be redirected to a cache server or origin server.1 header. the switch will redirect all non-GET requests to the origin server.0 Command Reference /cfg/slb/layer7/redir Web Cache Redirection Configuration [Web Cache Redirection Menu] urlal . you can set the length of URI that will be used to hash into the cache server by specifying a number from 1-255.Display current WCR configuration Table 7-27 Web Cache Redirection Menu Options (/cfg/slb/layer7/redir) Command Syntax and Usage urlal disable|enable Enables or disables auto-ALLOW for non-GETs to origin servers. nocache disable|enable Enables or disables no-cache control header to origin servers. „ „ If this command is enabled. or Pragma: no-cache in HTTP/1.0 header to the origin server. If this command is disabled.1 header. This option is enabled by default. the switch will redirect all requests that contain Cache-Control: nocache in HTTP/1. If this command is enabled.Enable/disable URL hashing based on URI header . the switch will redirect all requests that contain Cookie: in the HTTP header to the origin server. This option is disabled by default. This option is enabled by default. the switch will only use the host header field to calculate the hash key.Enable/disable auto-ALLOW for non-GETs to origin servers cookie .Enable/disable no-cache control header to origin servers hash .Enable/disable auto-ALLOW for Cookie to origin servers nocache .

Rename SLB string for load balance rem .Display current configuration Table 7-28 Server Load Balance Resource Menu Options (/cfg/slb/layer7/slb) Command Syntax and Usage message <64 byte error message> Sets the message that will be displayed when an error occurs. rem <SLB string ID> Removes the SLB string from load balancing.” add <SLB string> Adds the SLB string for load balancing.Set HTTP error message add . cur Displays the current URL expression table. This option is disabled by default. Chapter 7: The SLB Configuration Menu 315393-E.Set BW contract for the SLB string cur . cont <SLB string ID [1-512]> <BW contract number [1-256]> Sets the Bandwidth Management contract for a specified string for the SLB string ID.Alteon OS 21.0 Command Reference Table 7-27 Web Cache Redirection Menu Options (/cfg/slb/layer7/redir) Command Syntax and Usage header disable|enable host|useragent|others Enables or disables server load balancing based on HTTP header. /cfg/slb/layer7/slb Server Load Balance Resource Configuration Menu [Server Loadbalance Resource Menu] message . cur Displays the currently configured SLB strings and their associated string IDs (index numbers). The default message is “No available server to handle this request. rename <SLB string ID> <SLB string> Renames the SLB string for load balancing.Remove SLB string for load balance cont . October 2003 „ 331 .Add SLB string for load balance rename .

The default is set at 0. October 2003 .0 Command Reference /cfg/slb/wap WAP Configuration [WAP Options Menu] tpcp .WAP debug level cur . debug <wap debug level (0-10)> Sets the debug level for tracing the WAP related messages. cur Displays the current WAP configuration 332 „ Chapter 7: The SLB Configuration Menu 315393-E.Enable/disable WAP TPCP external notification debug .Alteon OS 21. This option is disabled by default.Display current WAP configuration Table 7-29 WAP Configuration Menu Options (/cfg/slb/wap) Command Syntax and Usage tpcp disable|enable Enables or disables the TPCP external notification for Add/Delete session requests.

Chapter 7: The SLB Configuration Menu 315393-E.Enable/disable syncing peer proxy IP addresses bwm . Peers are sent SLB. This option is disabled by default. This option is disabled by default. FILT.Enable/disable syncing port configuration prios . Switches being synchronized must use the same administrator password.Display current Layer 4 sync configuration To synchronize the configuration between two switches.Enable/disable syncing persistent session state update .Set stateful failover update period cur . see page 334. This option is enabled by default. Table 7-30 Synchronization Menu Options (/cfg/slb/sync) Command Syntax and Usage peer <peer switch number (1-2)> Displays the Sync Peer Switch Menu. prios disable|enable Enables or disables syncing VRRP priorities. This option is enabled by default. Peer proxy IP addresses are used in VRRP Active/Active configuration. This option is disabled by default. peerpips disable|enable Enables or disables synchronizing the peer proxy IP addresses. filt disable|enable Enables or disables synchronizing filter configuration. To view menu options. pips disable|enable Enables or disables synchronizing proxy IP addresses. October 2003 „ 333 . ports disable|enable Enables or disables synchronizing Layer 4 port configuration.Enable/disable syncing BWM configuration state .Alteon OS 21. This option is enabled by default.Enable/disable syncing filter configuration ports .0 Command Reference /cfg/slb/sync Synchronize Peer Switch Configuration [Config Synchronization Menu] peer .Synch Peer Switch Menu filt . and VRRP configuration updates using /oper/slb/ synch.Enable/disable syncing VRRP priorities pips . a peer must be configured and enabled on each switch.Enable/disable syncing proxy IP addresses peerpips .

cur Displays the current Layer 4 synchronization configuration.0 Command Reference Table 7-30 Synchronization Menu Options (/cfg/slb/sync) Command Syntax and Usage bwm disable|enable Enables or disables synchronizing Bandwidth Management configuration between Master and backup switches.Disable peer switch del .Set peer switch IP address ena .0. dis Disables the peer for this switch. The default is 0. October 2003 .Enable peer switch dis . this option is disabled. update <seconds.Alteon OS 21. state disable|enable Enables or disables stateful failover for synchronizing the persistent session state. This option is disabled by default. 334 „ Chapter 7: The SLB Configuration Menu 315393-E.0 ena Enables the peer for this switch.Display current peer switch configuration To synchronize the configuration between two switches. This option is enabled by default. Table 7-31 Peer Switch Configuration Menu Options (/cfg/slb/sync/peer) Command Syntax and Usage addr <IP address> Sets the peer switch IP address. Switches being synchronized must use the same administrator password. a peer must be configured and enabled on each switch. /cfg/slb/sync/peer <peer switch number> Peer Switch Configuration [Peer Switch 1 Menu] addr .0. The active server sends update packets of persistent binding entries to the backup switch at the specified update interval.Delete peer switch cur . By default. 1–60> Sets the stateful failover update interval. The default value is 30 seconds.

Enable/disable Transparent Proxy Cache Protocol vstat .Enable/disable graceful real server failure matrix .Session table fast-age (1 sec) period bit shift slowage . Specify an IP address in dotted decimal notation. see page 337.255.255.Display current Layer 4 advanced configuration Table 7-32 Layer 4 Advanced Menu Options (/cfg/slb/adv) Command Syntax and Usage synatk Displays SYN Attack Detection Menu.0 Command Reference Table 7-31 Peer Switch Configuration Menu Options (/cfg/slb/sync/peer) Command Syntax and Usage del Deletes the peer for this switch cur Displays the current peer switch configuration.Set management network mmask .Enable/disable Virtual Service Statistics rtsvlan .Set management subnet mask pmask .0)> Configures the real and virtual server IP address mask using dotted decimal notation. The default is 255.SYN Attack Detection Menu imask .Enable/Disable Source MAC address substitution direct . /cfg/slb/adv Advanced Layer 4 Configuration [Layer 4 Advanced Menu] synatk .Alteon OS 21.Set persistent mask submac . October 2003 „ 335 .255. To view menu options.255.255.Enable/disable Virtual Matrix Architecture tpcp . management traffic with this source IP address will be allowed direct (non-Layer 4) access to the real servers.Enable/disable using VLAN info for real server lookup fastage .Set virtual and real IP address mask mnet .Session table slow-age (2 min) period bit shift cur . A range of IP addresses is produced when used with the mmask option. imask <IP subnet mask (such as 255.Enable/disable Direct Access Mode grace . Chapter 7: The SLB Configuration Menu 315393-E. mnet <IP address> If defined.

vstat disable|enable Enables or disables reporting of virtual service statistics.255. 336 „ Chapter 7: The SLB Configuration Menu 315393-E. The default is 0. grace disable|enable Enables or disables graceful real server failure. By default. see “Service Failure” in the Alteon OS 21. The fastage scan is used to remove TCP sessions that have been closed with a FIN and sessions that have been identified by the slowage scan as idle for the maximum allowed period.0 Command Reference Table 7-32 Layer 4 Advanced Menu Options (/cfg/slb/adv) Command Syntax and Usage mmask <IP subnet mask (such as 255. The default interval is two seconds.255.255.255. this option is disabled.0 Application Guide).0)> This IP address mask is used with the mnet to select management traffic which is allowed direct access to real servers. pmask <IP subnet mask (such as 255. the switch will substitute the source MAC address (for the packets going to the server) with the MAC address of the switch. matrix disable|enable Enables or disables the use of Virtual Matrix Architecture on the Alteon Application Switch.255. By default. The default is 255.0)> Sets persistent mask. This option also allows any virtual server to load balance any real server. This command is used for security reasons—the UDP port can be closed.255. tpcp disable|enable Enables or disables the TPCP (Transparent Proxy Cache Protocol). Allows existing sessions to remain bound to a server after the server has been placed in the service failed state (for more information. this option is disabled.255.Alteon OS 21. rtsvlan disable|enable Enables or disables the use of VLAN for Return to Sender information on the real server. fastage <shift the fast-age (1sec) period 0-7 bits> Controls how frequently a fastage scan is performed.255. But if you enable this command. Each incremental increase of the value doubles the length of the interval. the source MAC is not modified for the packets going to the servers in an SLB environment. direct disable|enable Enable/disables Direct Access Mode to real servers/services. a session can remain in the session table for a few minutes. this option is enabled.255. submac disable|enable Enables or disables Source MAC address substitution. If a large value of fastage is used. October 2003 . this option is disabled. By default. By default. The default is 255. Typically.255.

cur Displays the current Layer 4 advanced configuration.Display current SYN attack detection configuration Table 7-33 SYN Attack Detection Menu Options (/cfg/slb/adv/synatk) Command Syntax and Usage intrval <SYN attack check interval in seconds (2-3600)> Sets the interval of SYN attack inspection. /cfg/slb/adv/synatk SYN Attack Detection Configuration [SYN Attack Detection Menu] intrval . October 2003 „ 337 .Set SYN attack alarm threshold cur . thrshld <SYN attack alarm threshold (new half-open sessions/second) (1-100000)> Sets the threshold of SYN attack alarm.0 Command Reference Table 7-32 Layer 4 Advanced Menu Options (/cfg/slb/adv) Command Syntax and Usage slowage <shift the slow-age (2min) period 0-14 bits> Controls how frequently a slowage scan is performed. cur Displays the current SYN attack detection configuration.Set SYN attack detection interval thrshld . Chapter 7: The SLB Configuration Menu 315393-E. The slowage scan is used to remove idle or non-TCP sessions from the session at the specified intervals. which causes the time to double per increment). (Value is set in bits rather than seconds.Alteon OS 21. If a large value of slowage is used. a session can remain in the session table for months. The default interval is two minutes. Each incremental increase of the value doubles the length of the interval. The default is 0.

waphc Displays the WAP Health Check Menu. see page 341. see page 339. like HTTPs.Scriptable Health Check Menu snmphc . minter <number of seconds between updates (1-256)> This command sets the interval of response and bandwidth metric updates. October 2003 . this option is disabled. When disabled.Set interval of response and bandwidth metric updates cur . snmphc <SNMP health check number (1-5)> Displays the SNMP Health Check Menu. see page 340.LDAP version secret .Enable/disable Allow HTTP Health Check on any port ldapver . To view menu options. The secret value is a field of up to 32 alphanumeric characters that is used by the switch to encrypt a password during the RSA Message Digest Algorithm (MD5) and by the RADIUS server to decrypt the password during verification. To view menu options. cur Displays the current Layer 4 advanced health check configuration.WAP Health Check Menu aphttp . To view menu options. The default is none. secret <1-32 character secret> To perform application health checking to a RADIUS server. 338 „ Chapter 7: The SLB Configuration Menu 315393-E. the network administrator must configure two parameters in the switch: the /cfg/slb/secret value and the cntnt parameter with a username:password value.SNMP Health Check Menu waphc .Display current Layer 4 advanced health check configuration Table 7-34 Advanced Health Check Menu Options (/cfg/slb/advhc) Command Syntax and Usage script <health script number (1-16)> Displays the Scriptable Health Check Menu. By default. The default is set at 10. you can use HTTP health checks only for HTTP service.Alteon OS 21. ldapver <LDAP version> Sets the LDAP version to 2 or 3. Enabling it will allow you to use it on any port. The default is 2. aphttp disable|enable Enables or disables HTTP health checks on any port.Set RADIUS secret minter .0 Command Reference /cfg/slb/advhc Advanced Health Check Configuration Menu [Layer 4 Advanced Health Check Menu] script .

October 2003 „ 339 . Chapter 7: The SLB Configuration Menu 315393-E.Add send command to end of script expect .1 200 close Closes TCP connection. such as.Delete script cur .com\\r\\n\\r\\n. Table 7-35 Scriptable Health Check Menu Options (/cfg/slb/adv/script) Command Syntax and Usage open <real port or name (such as: http)> Sets the TCP port to be opened.1\\r\\nHOST: www.Add expect command to end of script close . For example. such as an HTTP response: HTTP/1." expect <text string> Expects an ASCII string for successful health check on open TCP port.Alteon OS 21.Display current script configuration The Health Script menu provides commands that can be used to define the health “script. del Deletes the current script.asp HTTP/1. cur Lists the current script configuration.Remove last command from script del . Up to eight scripts can be configured.Add close command to end of script rem .” The total number of characters cannot exceed 1024 bytes. send <text string> Sends an ASCII string through open TCP port.Add open command to end of script send . an HTTP request. rem Removes the last entered line from the script.0 Command Reference /cfg/slb/advhc/script <health script number> Scriptable Health Checks Configuration [Health Script 1 Menu] open .alteon. "GET /default.

Enable/disable readjusting of weights based on response del . cur Displays the current SNMP Health Check configuration.5. October 2003 .1. such as. for example.1. 340 „ Chapter 7: The SLB Configuration Menu 315393-E.6. an OID is of the form 1. rcvcnt <expected content an integer value or a string> Enter the content the switch expects to receive from the SNMP agent on the real server.6.0 max 30 sub-identifiers> Specify the Object Identifier (OID) to be sent in the SNMP GET request packet. comm <community string.1.Display current SNMP health check configuration Table 7-36 SNMP Health Check Menu Options (/cfg/slb/adv/snmphc) Command Syntax and Usage oid <object identifier. 1.1.1872.2. The default community string is public.3.2.4.Alteon OS 21. The format of the OID depends on the MIB file.0 Command Reference /cfg/slb/advhc/snmphc SNMP Health Check Configuration [SNMP Health Check 1 Menu] oid .OID to be sent in the SNMP request packet comm . del Deletes the current SNMP health check.Community string used in the SNMP request packet rcvcnt . maximum 32 characters> Enter the community string used in the SNMP get request packet.Enable/disable inversion of expected value weight .1. the real server weights are dynamically adjusted based on SNMP health check response. the health check fails if the response packet contains the value specified in the receive content (rcvnt) field.7.11.3. weight disable|enable When enabled. When the invert option is enabled.Expected value in the SNMP response packet invert .Delete SNMP health check cur .1. invert disable|enable Enables or disables the inversion of the expected value.

October 2003 „ 341 .WSP port number to health check wtpport . WTLS+WTP+WSP).Alteon OS 21. To view menu options. Alteon OS provides a content-based health check mechanism where customized WSP packets are sent to the WAP gateways.Enable/disable coupling with RADIUS Accounting Service cur .0 Command Reference /cfg/slb/advhc/waphc WAP Health Check Configuration Wireless Session Protocol (WSP) is used within the Wireless Application Protocol (WAP) suite to manage sessions between wireless devices and WAP content servers or WAP gateways. wspport <wsp port number to health check (0-65534)> Enter the port number on which WSP health checks will be performed. see page 343. wtpport <wtp port number to health check (0-65534)> Defines the WTP port number to health check. Chapter 7: The SLB Configuration Menu 315393-E. Alteon OS allows you to configure three WAP gateway health check types for all four WAP services (WSP. The default port number is 9200.WTP+WSP Health Check Content Menu wspport . Connectionless WSP runs on UDP/IP protocol.WSP Health Check Content Menu wtpcnt . wtpcnt Displays WTP and WSP Health Check Content Menu. in a manner similar to scriptable health checks. WTLS+WSP. see page 342. [WAP Health Check Menu] wspcnt . WSP content health checks can be configured in two modes: connectionless and connectionoriented.WTP port number to health check wtlswsp . Application switches can be used to load balance the gateways in both modes of operation. For further details. ports 9200 and 9202 and connectionoriented (WTP) traffic runs on ports 9201 and 9203.Display current WAP health check configuration Table 7-37 WAP Health Check Menu Options (/cfg/slb/adv/waphc) Command Syntax and Usage wspcnt Displays WSP Health Check Content Menu. To view menu options. WTP+WSP.WTLS port number to health check couple . and the switch verifies the expected response. The default port number is 9201. refer to the Application Guide.WTLS+WSP port number to health check wtlsprt . deployed on WAP gateways/ servers.

This string will be delivered to the WSP gateway.Content to be received from the WAP gateway cur . If the health check to any one of the four WAP services or Radius Accounting Service fails.0 Command Reference Table 7-37 WAP Health Check Menu Options (/cfg/slb/adv/waphc) Command Syntax and Usage wtlswsp <wtls+wsp port number to health check (0-65534)> Defines the WTLS (Wireless Transport Layer Security) and WSP port number to health check.Display current WSP health check content configuration Table 7-38 WSP Content Health Check Options (/cfg/slb/advhc/waphc/wspcnt) Command Syntax and Usage offset <Offset in the received WSP packet (0-512)> Enter the offset value content of the received WSP packages. then all of the four WAP services and Radius Accounting Service are disabled. cur Displays the current WAP Health Check configuration. sndcnt <send content as hexadecimal string> Enter a hexadecimal string that represents a connectionless WSP request to a WSP gateway. WTP+WSP. /cfg/slb/advhc/waphc/wspcnt WSP Content Health Check [WSP Health Check Content Menu] offset .Content to be sent to the WAP gateway rcvcnt . wtlsprt <port number (0-65534)> Enter the port number on which WTLS health checks will be performed.Alteon OS 21. October 2003 .Offset in received WSP packet sndcnt . couple disable|enable Enables or disables coupling together of all the four WAP services (WSP. An offset value of 0 (default) sets the switch to start comparisons from the beginning of the content of the received packet. WTLS+WTP+WSP) with Radius Accounting Service. The connectionless encrypted WTLS traffic uses default port 9202. 342 „ Chapter 7: The SLB Configuration Menu 315393-E. WTLS+WSP. rcvcnt <receive content as hexadecimal string> Enter a hexadecimal string that represents the content that the switch expects to receive from the WSP gateway. The connection-oriented WTLS traffic uses default port 9203.

[WTP+WSP Health Check Content Menu] offset .REPLY PDU to be received from cur . connect <connect content as hexstring> Enter the content for the first switch-generated WSP session packet. Chapter 7: The SLB Configuration Menu 315393-E. rcvcnt <receive content as a hexadecimal string> Enter a hexadecimal string that represents the content that the switch expects to receive from the WSP gateway. sndcnt <send content as hexadecimal string> Enter a hexadecimal string that represents a WSP request to a WSP gateway.GET PDU to be sent to the WAP rcvcnt .CONNECT PDU to be sent to the sndcnt .Offset in received WSP PDU connect . The offset value is the number of bytes from the beginning of the WSP PDU.0 Command Reference Table 7-38 WSP Content Health Check Options (/cfg/slb/advhc/waphc/wspcnt) Command Syntax and Usage cur Displays the current WAP Health Check configuration. at which the comparison begins to match with the expected receive content.Alteon OS 21.Display current WTP+WSP health WAP gateway gateway the WAP gateway check content configuration Table 7-39 WTP and WSP Content Health Check Menu Options (/cfg/slb/advhc/ waphc/wtpcnt) Command Syntax and Usage offset <offset in the received WSP PDU> Enter the offset value content of the received WSP packets. This string will be delivered to the WSP gateway. This command allows you to customize the headers in the connect message. cur Displays current WTP+WSP health check content configuration. October 2003 „ 343 . An offset value of 0 (default) sets the switch to start comparisons from the beginning of WSP PDU of the received packet. /cfg/slb/advhc/waphc/wtpcnt WTP and WSP Content Health Check Menu This menu is used for configuring the health check for connection-oriented unencrypted WAP traffic.

pip2 <IP address> Sets the proxy IP address for SP2 on ports 13 to 24.Alteon OS 21.Set Proxy IP address for ports 1-12 and 25 pip2 .Display current Proxy IP address configuration Table 7-40 Proxy IP Address Configuration Menu Options for Alteon Application Switch 2224 (/cfg/slb/pip) Command Syntax and Usage pip1 <IP address> Sets the proxy IP address (in Alteon Application Switch 2224) for SP1 ports 1 to 12 and 25 using dotted decimal notation on SP1.Enable/disable Proxy Ip Gratuitous ARP cur . the switch will send gratuitous ARPs for enabled proxy IP addresses (PIPs) every 30 seconds. pip4 <IP address> Sets the proxy IP address for SP4. When the pip is defined. cur Displays the current Proxy IP address configuration. October 2003 .Set Proxy IP address for ports 13-24 pip3 . pgarp disable|enable When this command is enabled.Set Proxy IP address for persistent SP pgarp . pip3 <IP address> Sets the proxy IP address for SP3 on port 26.0 Command Reference /cfg/slb/pip Proxy IP Address Configuration Menu For Alteon 2224 [Proxy IP Address Menu] pip1 .Set Proxy IP address for port 26 pip4 . 344 „ Chapter 7: The SLB Configuration Menu 315393-E. client address information in Layer 4 requests is replaced with this proxy IP address.

Set Proxy IP address for port 26 pip4 . cur Displays the current Proxy IP address configuration. pip3 <IP address> Sets the proxy IP address for SP3 on port 26. pip2 <IP address> Sets the proxy IP address for SP2 on ports 13 to 24 and 27. October 2003 „ 345 . pgarp disable|enable When this command is enabled. Chapter 7: The SLB Configuration Menu 315393-E.0 Command Reference /cfg/slb/pip Proxy IP Address Configuration Menu For Alteon 2424 [Proxy IP Address Menu] pip1 .Set Proxy IP address for port 28 pgarp .Enable/disable Proxy Ip Gratuitous ARP cur . client address information in Layer 4 requests is replaced with this proxy IP address.Set Proxy IP address for port 13 to 24 and 27 pip3 . the switch will send gratuitous ARPs for enabled proxy IP addresses (PIPs) every 30 seconds. When the pip is defined.Set Proxy IP address for port 1 to 12 and 25 pip2 . pip4 <IP address> Sets the proxy IP address for SP4 on port 28.Display current Proxy IP address configuration Table 7-41 Proxy IP Address Configuration Menu Options for Alteon Application Switch 2424 (/cfg/slb/pip) Command Syntax and Usage pip1 <IP address> Sets the proxy IP address (in Alteon Application Switch 2424) for SP1 on ports 1 to 12 and 25 using dotted decimal notation on SP1.Alteon OS 21.

pip2 <IP address> Sets the proxy IP address for SP2 on ports 2.Alteon OS 21.Set Proxy IP address for ports 3. 5. pip4 <IP address> Sets the proxy IP address for SP4 on ports 4. 7. 346 „ Chapter 7: The SLB Configuration Menu 315393-E. and 12. the switch will send gratuitous ARPs for enabled proxy IP addresses (PIPs) every 30 seconds.Display current Proxy IP address configuration Figure 7-1 Proxy IP Address Configuration Menu Options for Alteon Application Switch 3408 (/cfg/slb/pip) Command Syntax and Usage pip1 <IP address> Sets the proxy IP address (in Alteon Application Switch 3408) for SP1 on ports 1. cur Displays the current Proxy IP address configuration. 5 and 9 pip2 . 6. 8 and 12 pgarp . 6 and 11 pip3 .0 Command Reference /cfg/slb/pip Proxy IP Address Configuration Menu For Alteon 3408 [Proxy IP Address Menu] pip1 .Enable/disable Proxy Ip Gratuitous ARP cur . client address information in Layer 4 requests is replaced with this proxy IP address. 7 and 10 pip4 .Set Proxy IP address for ports 1.Set Proxy IP address for ports 2. and 10. When the pip is defined. pip3 <IP address> Sets the proxy IP address for SP3 on ports 3. and 9 using dotted decimal notation on SP1.Set Proxy IP address for ports 4. October 2003 . and 11. pgarp disable|enable When this command is enabled. 8.

Operational IP Menu swkey . you can use the Operations Menu to immediately disable a port (without the need to apply or save the change).Operational Server Load Balancing Menu vrrp . For example.Operational Virtual Router Redundancy Menu bwm . but do not alter permanent switch configurations.Operational Port Menu slb . Port Mirroring menu options are accessible only to the Alteon AD4 and Alteon 184 WebSwitches. /oper Operations Menu [Operations Menu] port .Enter software feature to be removed clrlog .CHAPTER 8 The Operations Menu The Operations Menu is generally used for commands that affect switch performance immediately. 347 315393-E. October 2003 .Enter key to enable software feature rmkey . the port returns to its normally configured operation.Clear syslog messages The commands of the Operations Menu enable you to alter switch operational characteristics without affecting switch configuration.Operational Bandwidth Management Menu ip . with the understanding that when the switch is reset.

slb Displays the Operational Layer 4 Menu. which has one sub-menu/option. To view menu options. see page 354.0 Command Reference Table 8-1 Operations Menu Options (/oper) Command Syntax and Usage port <port number> Displays the Operational Port Menu. To view menu options. see page 351. the Operational Border Gateway Protocol Menu. clrlog Clears all syslog messages. For details. vrrp Displays the Operational Virtual Router Redundancy Menu. bwm Operational Bandwidth Management Menu. see page 352. see page 353. For details. see page 351.Alteon OS 21. rmkey <software feature to be removed (GSL|BWM|Security)> Enter software feature to be removed. To view menu options. see page 350. To view menu options. To view menu options. see page 349. swkey <16-hexadecimal digit key to enable software feature> Enter key to enable software feature. 348 „ Chapter 8: The Operations Menu 315393-E. October 2003 . ip Displays the IP Operations Menu.

The port will be returned to its configured operation mode when the switch is reset.Current port state Operations-level port options are used for temporarily disabling or enabling a port. dis Temporarily disables the port. The port will be returned to its configured operation mode when the switch is reset.Enable/Disable RMON for port ena .Enable port dis . cur Displays the current settings for the port. Table 8-2 Operations-Level Port Menu Options (/oper/port) Command Syntax and Usage rmon disable|enable Temporarily enables/disables Remote Monitoring on the port. October 2003 „ 349 . ena Temporarily enables the port. Chapter 8: The Operations Menu 315393-E.Alteon OS 21. and for changing Remote Monitoring (RMON) status on a port. The port will be returned to its configured operation mode when the switch is reset.Disable port cur .0 Command Reference /oper/port <port number> Operations-Level Port Options [Operations Port 1 Menu] rmon .

see “Disabling and Enabling Real Servers” in the Alteon OS 21.0 Command Reference /oper/slb Operations-Level SLB Options [Server Load Balancing Operations Menu] sync . and VR priorities on a peer switch (a switch that owns the IP address). October 2003 . peers must be configured on the Alteon Application Switch and the administrator password on the switch must be identical. The real server will be returned to its configured operation mode when the switch is reset.Current layer 4 operational state When the optional Layer 4 software is enabled. 350 „ Chapter 8: The Operations Menu 315393-E. ena <real server number (1-1023)> Temporarily enables a real server. For more information. VRRP. Table 8-3 Server Load Balancing Operations Menu Options (/oper/slb) Command Syntax and Usage sync Synchronizes the SLB. filter. the operations-level Server Load Balancing options are used for temporarily disabling or enabling real servers and synchronizing the configuration between the active/active switches.Alteon OS 21. 1-1023> [P .Disable real server clear .0 sessions] p|n The disable command is used to temporarily disable real servers as follows: „ Using the p (persistent) option—immediately suspends assignment of connections to the specified real server (except for persistent http 1.Synchronize SLB.allow persistent http 1.Clear session table cur .0 sessions) by removing the real server from operation within its real server group and virtual server „ Using the n (none) option—immediately suspends assignment of connections to the specified real server by removing the real server from operation within its real server group and virtual server The real server will be returned to its configured state after a switch reset. Bandwidth Management configuration. port. To take effect. VRRP and other configurations on peers ena . dis <real server number. NOTE – This command provides for orderly server shutdown to allow maintenance on a server.Enable real server dis .0 Application Guide.

This is generally used for passing master control back to a preferred switch once the preferred switch has been returned to service after a failure. NOTE – This command disrupts current SLB and Application Redirection sessions. [VRRP Operations Menu] back . cur Displays the current SLB operational state. the current master gives up control and initiates a new election by temporarily advertising its own priority level as 0 (lowest). There are no other virtual routers available to take master control. Chapter 8: The Operations Menu 315393-E.Alteon OS 21. the virtual router forced into backup mode by this command will resume master control in the following cases: „ „ „ This switch owns the virtual router (the IP addresses of the virtual router and its IP interface are the same) This switch’s virtual router has a higher priority and preemption is enabled. When this command is executed.Set virtual router to backup Table 8-4 Virtual Router Redundancy Operations Menu Options (/oper/vrrp) Command Syntax and Usage back <virtual router number (1-256)> Forces the specified master virtual router on this switch into backup mode. /oper/vrrp Operations-Level VRRP Options. After the new election. October 2003 „ 351 .0 Command Reference Table 8-3 Server Load Balancing Operations Menu Options (/oper/slb) Command Syntax and Usage clear Clears all session tables and allows port filter changes to take effect immediately.

Alteon OS 21. To view the menu options see page 353.Send BW History to SMTP server Table 8-5 Bandwidth Operations Menu Options (/oper/bwm/sndhist) Command Syntax and Usage sndhist Sends the bandwidth history to a system administrator specified under /cfg/bwm/user (see page 212). October 2003 . /oper/ip Operations-Level IP Options [IP Operations Menu] bgp .Operational Border Gateway Protocol Menu Table 8-6 IP Operations Menu Options (/oper/ip) Command Syntax and Usage bgp Displays the Border Gateway Protocol Operations Menu. 352 „ Chapter 8: The Operations Menu 315393-E.0 Command Reference /oper/bwm Operations-Level Bandwidth Management Options [Bandwidth Management Operations Menu] sndhist .

Currently the following software packages are available for purchase and installation: „ „ „ Security Pack Bandwidth Management Global Server Load Balancing To obtain a software key. Nortel Networks will then provide a License Password.Alteon OS 21. One software license is needed for each switch where the optional software is to be used. October 2003 „ 353 .0 Command Reference /oper/ip/bgp Operations-Level BGP Options [Border Gateway start stop cur Protocol Operations Menu] Start peer session Stop peer session Current BGP operational state Table 8-7 IP Operations Menu Options (/oper/ip) Command Syntax and Usage start <peer number (1-16)> Starts the peer session. You will receive a Licence Certificate for each software license purchased. /oper/swkey Activating Optional Software The swkey option is used for activating any optional software you have purchased for your switch. Chapter 8: The Operations Menu 315393-E. Before you can activate optional software. stop <peer number (1-16)> Stops the peer session. cur Displays the current BGP operational state. you must register each License Certificate with Nortel Networks and provide the MAC address of the Alteon OS switch that will run the optional software. you must obtain a software license from your Nortel Networks representative or authorized reseller.

enter: Main# oper 2. you will see the following message: Valid software key entered. enter: Operations# swkey 4. /oper/rmkey Removing Optional Software The rmkey option is used for deactivating any optional software. “The Command Line Interface”).0 Command Reference NOTE – Each License Password will work only on the specific switch which has the MAC address you provided when registering your Licence Certificate. Deactivated software is still present in switch memory and can be reactivated at any later time. October 2003 . Software feature enabled. Once you have your License Password. perform the following actions: 1. At the Operations# prompt. For example: Enter Software Feature to be removed: [GSLB]|BWM|security: GSLB 354 „ Chapter 8: The Operations Menu 315393-E. enter the code for software to be removed. To deactivate optional software. For example: Enter Software Key: <16 hexadecimal-digit key to enable software feature (such as. When prompted. enter your 16-digit software key code. At the Main# prompt. 123456789ABCDEF)> If the correct code is entered.Alteon OS 21. Connect to the switch’s command line interface and log in as the administrator (see Chapter 1. 3. enter the following at the Operations Menu: Operations# rmkey <software feature to be removed (GSLB|BWM|security)> When prompted.

CHAPTER 9 The Boot Options Menu To use the Boot Options Menu. The Boot Options Menu provides options for: „ „ „ Selecting a switch software image to be used when the switch is next reset Selecting a configuration block to be used when the switch is next reset Downloading or uploading a new software image to the switch via TFTP /boot Boot Menu [Boot Options sched image conf gtimg ptimg reset cur Menu] . you must be logged in to the switch as the administrator.Select config block to use on next boot .Download new software image via TFTP .Select software image to use on next boot .Display current boot options Each of these options is discussed in greater detail in the following sections.Scheduled Switch Reset Menu .Reset switch [WARNING: Restarts Spanning Tree] . 355 315393-E. October 2003 .Upload selected software image via TFTP .

you would probably load the new image software into image2. you must specify where it should be placed: either into image1. image2. October 2003 . you can upgrade the software running on your switch. This feature is particularly helpful if the user needs to perform switch upgrades during off-peak hours.Cancel pending switch reset cur . as well as boot software. A version of the image ships with the switch.Alteon OS 21. if your active image is currently loaded into image1. and check the time of the currently set reboot schedule with the help of the following sub-menu: /boot/sched Scheduled Reboot Menu [Boot Schedule Menu] set . Upgrading the software image on your switch requires the following: „ „ „ Loading the new image onto a TFTP server on your network Downloading the new image from the TFTP server to your switch Selecting the new software image to be loaded into switch memory the next time the switch is reset Downloading New Software to Your Switch The switch can store up to two different software images. called boot. You can set the reboot time. 356 „ Chapter 9: The Boot Options Menu 315393-E. if needed.Set switch reset time cancel . called image1 and image2. cancel a previously scheduled reboot. This lets you test the new software and reload the original active image (stored in image1). and comes pre-installed on the device. or boot. As new versions of the image are released. When you download new software.0 Command Reference Scheduled Reboot of the Switch This feature allows the switch administrator to schedule a reboot to occur at a particular time in future. For example.Display current switch reset schedule Updating the Switch Software Image The switch software image is the executable code running on the Alteon Application Switch.

See “Domain Name System Configuration Menu” on page 258). October 2003 „ 357 . 1. enter: Boot Options# gtimg 2. Enter the hostname or IP address of the TFTP server. Enter name of file on TFTP server: <filename> The exact form of the name will vary by TFTP server. However. Enter the name of the switch software to be replaced: Enter name of switch software image to be replaced ["image1"/"image2"/"boot"]: <image> 3. At the Boot Options# prompt. Chapter 9: The Boot Options Menu 315393-E. 5.0 Command Reference To download a new software to your switch. Enter the name of the new software file on the server. Enter hostname or IP address of TFTP server: <server name or IP address> 4. you will need the following: „ „ „ „ The image or boot software loaded on a TFTP server on your network The hostname or IP address of the TFTP server The name of the new software image or boot file Setup the TFTP option (/cfg/sys/mgmt/tftp) for the TFTP connection.Alteon OS 21. However. use the following procedure to download the new software to your switch. the file location is normally relative to the TFTP directory (usually /tftpboot). The system prompts you to confirm your request. as described below. You should next select a software image to run. NOTE – The DNS parameters must be configured if specifying hostnames. When the above requirements are met. This sets the default option for the gtimg and ptimg commands. note that you can override this setting with the option provided to these operational commands.

0 Command Reference Selecting a Software Image to Run You can select which software image (image1 or image2) you want to run in switch memory for the next reboot. October 2003 . Enter the name of the file into which the image will be uploaded on the TFTP server: Enter name of file on TFTP server: <filename> 358 „ Chapter 9: The Boot Options Menu 315393-E. Specify new image to use on next reset ["image1"/"image2"]: Uploading a Software Image from Your Switch You can upload a software image from the switch to a TFTP server.Alteon OS 21. Enter the name of the image you want the switch to use upon the next boot. enter: Boot Options# ptimg 2. Enter the desired image: Enter name of switch software image to be uploaded ["image1"|"image2"|"boot"]: <image> <hostname or server-IP-addr> <server-file- name> 3. At the Boot Options# prompt. enter: Boot Options# image 2. Enter the name or the IP address of the TFTP server: Enter hostname or IP address of TFTP server: <server name or IP address> 4. The system informs you of which image is currently set to be loaded at the next reset. and prompts you to enter a new choice: Currently set to use switch software "image1" on next reset. The system prompts you for information. At the Boot Options# prompt. 1. 1.

2. enter: Boot Options# conf 2. your new configuration changes are placed in the active configuration block. This can be useful when a custom-configured Alteon Application Switch is moved to a network environment where it will be re configured for a different purpose. it may be desirable to reset the switch configuration to the default. enter Y. To have the file uploaded. There is also a factory configuration block. and prompts you to enter a new choice: Currently set to use active configuration block on next reset. image2 currently contains Software Version 20. This holds the default configuration set by the factory when your Alteon Application Switch was manufactured. At the Boot Options# prompt. The system then requests confirmation of what you have entered.1.0 Command Reference 5. you must save the changes so that they are retained beyond the next time the switch is reset. Enter the name of the configuration block you want the switch to use: The system informs you of which configuration block is currently set to be loaded at the next reset.7 Upload will transfer image2 (1889411 bytes) to file "test" on TFTP server 192. When you perform the save command. Specify new block to use ["active"/"backup"/"factory"]: Chapter 9: The Boot Options Menu 315393-E. Under certain circumstances.Alteon OS 21. October 2003 „ 359 .1.0. Use the following procedure to set which configuration block you want the switch to load the next time it is reset: 1. The previous configuration is copied into the backup configuration block.1. Confirm upload operation [y/n]: y Selecting a Configuration Block When you make configuration changes to the Alteon Application Switch.

This process can be lengthy. enter: >> Boot Options# reset You are prompted to confirm your request. at the Boot Options# prompt. October 2003 . 360 „ Chapter 9: The Boot Options Menu 315393-E.0 Command Reference Resetting the Switch You can reset the switch to make your software image file and configuration block changes occur.Alteon OS 21. To reset the switch. NOTE – Resetting the switch causes the Spanning Tree Protocol to restart. depending on the topology of your network.

found in the Maintenance Menu.Debugging Menu arp . /maint Maintenance Menu NOTE – To use the Maintenance Menu. The panic option. The purpose of the watchdog timer is to reboot the switch if the switch software freezes. The switch administrator enters the switch reset key combination on a device that is attached to the console port. October 2003 .Uuencode FLASH dump ptdmp . you must be logged in to the switch as the administrator. and then causes the switch to reboot.tftp put FLASH dump to tftp server cldmp . The watchdog timer forces a switch reset. causes the switch to dump state information to flash memory. „ „ 361 315393-E. It also includes a debugging menu to help with troubleshooting.Clear FLASH dump panic .System Maintenance Menu fdb . [Maintenance Menu] sys .CHAPTER 10 The Maintenance Menu The Maintenance Menu is used to manage dump information and forward database information.ARP Cache Manipulation Menu route .Forwarding Database Manipulation Menu debug .Dump state information to FLASH and reboot tsdmp .Tech support dump Dump information contains internal switch state data that is written to flash memory on the Alteon Application Switch after any one of the following occurs: „ The switch administrator forces a switch panic.IP Route Manipulation Menu uudmp . The switch reset key combination is <Shift><Ctrl><->.

see page 369. To view menu options. October 2003 . For details. panic Dumps MP information to FLASH and reboots. see page 368. arp Displays the ARP Cache Manipulation Menu. fdb Displays the Forwarding Database Manipulation Menu. For details. see page 367. To view menu options. see page 363. tsdmp Dumps all Alteon Application Switch information. see page 365. see page 366. ptdmp hostname filename [-mgmt| -data] Saves the system dump information via TFTP.You can log the tsdump output into a file. and send it to Nortel Networks Tech Support for debugging purposes. To view menu options. debug Displays the Debugging Menu. statistics. For details. see page 369. cldmp Clears dump information from flash memory. see page 363. To view menu options. 362 „ Chapter 10: The Maintenance Menu 315393-E. see page 368. uudmp Displays dump information in uuencoded format. For details. To view menu options. route Displays the IP Route Manipulation Menu.0 Command Reference „ The switch detects a hardware or software problem that requires a reboot. Table 10-1 Maintenance Menu Options (/maint) Command Syntax and Usage sys Displays the System Maintenance Menu.Alteon OS 21. and configuration.

Clear entire FDB The Forwarding Database Manipulation Menu can be used to view information and to delete a MAC address from the forwarding database or clear the entire forwarding database.0 Command Reference /maint/sys System Maintenance Options This menu is reserved for use by Nortel Networks Customer Support group. Chapter 10: The Maintenance Menu 315393-E.Set NVRAM flag word Table 10-2 System Maintenance Menu Options (/maint/sys) Command Syntax and Usage flags <new NVRAM flags word as 0xXXXXXXXX> This command sets the flags that are used for debugging purposes by Tech support group.Show a single FDB entry by MAC address port .Show FDB entries referenced by a single port dump . October 2003 „ 363 .Show FDB entries on a single trunk vlan .Show FDB entries for a single VLAN refpt .Delete an FDB entry clear . [System Maintenance Menu] flags . This is helpful in identifying problems associated with MAC address learning and packet forwarding decisions. /maint/fdb Forwarding Database Options [FDB Manipulation Menu] find . The options are used to perform system debugging.Show all FDB entries del .Alteon OS 21.Show FDB entries for a single port trunk .

You are prompted to enter the MAC address of the device.0 Command Reference Table 10-3 FDB Manipulation Menu Options (/maint/fdb) Command Syntax and Usage find <MAC address> [<VLAN>] Displays a single database entry by its MAC address. del <MAC address> [<VLAN number>] Removes a single FDB entry. Enter the MAC address using the xx:xx:xx:xx:xx:xx format (such as 08:00:20:12:34:56) or xxxxxxxxxxxx format (such as 080020123456). 364 „ Chapter 10: The Maintenance Menu 315393-E. clear Clears the entire Forwarding Database from switch memory. For details. Use “0” for unknown port number. October 2003 . dump Displays all entries in the Forwarding Database. see page 61. port <port number. trunk <trunk number (1-12)> Displays all FDB entries for the specified trunk group. vlan <VLAN number (1-4090)> Displays all FDB entries on a single VLAN. refpt <SP number (1-4)> Displays all FDB entries reference by a single port. 0 for unknown>> Displays all FDB entries for a particular port.Alteon OS 21.

mask: 0x00800008 The buffer information is displayed after the header. sptb <port number (1-4)> Displays the Switch Processor trace buffer. Header information similar to the following is shown: MP trace buffer at 13:28:15 Fri May 25.Alteon OS 21. the MP trace buffer and SP trace buffers are saved into the snap trace buffer area.Clear all flash configs The Miscellaneous Debug Menu displays trace buffer information about events that can be helpful in understanding switch operation. mask: 0x2ffdf748 The buffer information is displayed after the header.Show All SP trace buffers clrcfg . 2002. Header information similar to the following is shown: SP 1 trace buffer at 10:56:35 Tue Jul 30. 2001.Show SP trace buffer spall . clrcfg Deletes all flash configuration blocks. October 2003 „ 365 . Header information similar to the following is shown: SP 1 trace buffer at 10:56:35 Tue Jul 30.Show MP trace buffer snap . The buffer information is displayed after the header.0 Command Reference /maint/debug Debugging Options [Miscellaneous Debug Menu] tbuf . spall Displays the Switch Processor trace buffer. snap Displays the Management Processor snap (or post-mortem) trace buffer. This buffer contains information traced at the time that a reset occurred. The output from these commands can be interpreted by the Nortel Networks Customer Support division.Show MP snap (or post-mortem) trace buffer sptb . Chapter 10: The Maintenance Menu 315393-E. You can view the following information using the debug menu: „ „ „ Events traced by the Management Processor (MP) Events traced by the Switch Processor (SP) Events traced to a buffer area when a reset occurs If the switch resets for any reason. Displays all SP trace buffers. mask: 0x00800008. Table 10-4 Miscellaneous Debug Menu Options (/maint/debug) Command Syntax and Usage tbuf Displays the Management Processor trace buffer. 2002.

----.169 00:04:75:db:1c:1a 1 1 empty 366 „ Chapter 10: The Maintenance Menu 315393-E.----. addr Shows the list of IP addresses which the switch will respond to for ARP requests.Show a single ARP entry by IP address port .80.17.1 00:e0:16:7c:28:82 1 1 empty 47. vlan <VLAN number (1-4090)> Shows ARP entries on a single VLAN.Show ARP entries referenced by a single SP dump .80. October 2003 .80.Alteon OS 21.Show ARP address list Table 10-5 Address Resolution Protocol Menu Options (/maint/arp) Command Syntax and Usage find <IP address (such as.16. refpt <SP number (1-4)> Shows all ARP entries referenced by a single port. See page 366 for a sample output. /maint/arp/port <port number> ARP Entries on a Single Port IP address Flags MAC address VLAN Port Referenced SPs --------------.17.Show ARP entries on a single port vlan . clear Clears the entire ARP list from switch memory.101)> Shows a single ARP entry by IP address.Clear ARP cache addr .0 Command Reference /maint/arp ARP Cache Options [Address Resolution Protocol Menu] find .81 00:e0:81:24:ef:3c 1 1 empty 47.4.----------------.--------------47.---.Show ARP entries on a single VLAN refpt .Show all ARP entries clear . 192. dump Shows all ARP entries. port <port number> Displays ARP entries on a single port.16.

For a description of IP routing tags. you can also refer to “IP Routing Information” on page 68.4.Show a single route by destination IP address gw . NOTE – To display all routes. you can also refer to “ARP Information” on page 69.Alteon OS 21. gw <default gateway address (such as.101)> Shows a single route by destination IP address.Show routes of a single tag if .44)> Shows routes to a default gateway.17.Show routes of a single type tag . type indirect|direct|local|broadcast|martian|multicast Shows routes of a single type. or a portion according to one of the options listed on the menu above (find. October 2003 „ 367 .Show routes to a single gateway type .Clear route table Table 10-6 IP Route Manipulation Menu Options (/maint/route) Command Syntax and Usage find <IP address (such as. dump Shows all routes.Show all routes clear . see Table 4-10 on page 69 if <interface number (1-256)> Shows routes on a single interface.4. dump). clear Clears the route table from switch memory.0 Command Reference NOTE – To display all ARP entries currently held in the switch. see Table 4-9 on page 68 tag fixed|static|addr|rip|ospf|bgp|broadcast|martian|vip Shows routes of a single tag. refpt. Chapter 10: The Maintenance Menu 315393-E. 192. port. 192. For a description of IP routing types. vlan.17. /maint/route IP Route Manipulation [IP Routing Menu] find .Show routes on a single interface dump .

and must be writable (set with proper permission. In order for any subsequent dump information to be written to flash memory. and filename is the target dump file. Once entered. October 2003 . the following appears: No FLASH dump available. captured to a file. /maint/ptdmp <server> <filename> TFTP System Dump Put Use this command to put (save) the system dump to a TFTP server. This format makes it easy to capture the dump information as a file or a string of characters. if you have configured your communication software to do so. the specified ptdmp file must exist prior to executing the ptdmp command. enter: Maintenance# uudmp The dump information is displayed on your screen and. To save dump information via TFTP. This will ensure that you do not lose any information. at the Maintenance# prompt. dump information can be read multiple times. enter: Maintenance# ptdmp <server> <filename> [-mgmt| -data] Where server is the TFTP server IP address or hostname. 368 „ Chapter 10: The Maintenance Menu 315393-E. see page 369. If you want to capture dump information to a file. at the Maintenance# prompt. and not locked by any application). you must manually clear the dump region. the uudmp command will cause approximately 23. For more information on clearing the dump region.0 Command Reference /maint/uudmp Uuencode Flash Dump Using this command. dump information is presented in uuencoded format. The command does not cause the information to be updated or cleared from flash memory. NOTE – If the TFTP server is running SunOS or the Solaris operating system. The contents of the specified file will be replaced with the current dump data. Using the uudmp command.300 lines of data to be displayed on your screen and copied into the file. set your communication software on your workstation to capture session data prior to issuing the uudmp command. You can then contact Nortel Networks Customer Support for help analyzing the information.Alteon OS 21. If the dump region is empty. NOTE – Dump information is not cleared automatically. To access dump information.

Alteon OS 21.0 Command Reference

/maint/cldmp Clearing Dump Information
To clear dump information from flash memory, at the Maintenance# prompt, enter:
Maintenance# cldmp

The switch clears the dump region of flash memory and displays the following message:
FLASH dump region cleared.

If the flash dump region is already clear, the switch displays the following message:
FLASH dump region is already clear.

/maint/panic Panic Command
The panic command causes the switch to immediately dump state information to flash memory and automatically reboot. To select panic, at the Maintenance# prompt, enter:
>> Maintenance# panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]:

Enter y to confirm the command:
Confirm dump and reboot [y/n]: y

The following messages are displayed:
Loading Image:.......... Alteon Application Switch 2424 Rebooted because of Software PANIC. Booting complete 19:15:23 Thu Jan 9, 2003: Version 20.2.7 from FLASH image1, active config block. Jan 9 19:15:32 NOTICE system: link up on port 25 Enter password:

Chapter 10: The Maintenance Menu
315393-E, October 2003

„

369

Alteon OS 21.0 Command Reference

Unscheduled System Dumps
If there is an unscheduled system dump to flash memory, the following message is displayed when you log on to the switch:
Note: A system dump exists in FLASH. The dump was saved at 19:15:23 Thu Jan 9, 2003. Use /maint/uudmp to extract the dump for analysis and /maint/cldmp to clear the FLASH region. The region must be cleared before another dump can be saved.

370

„

Chapter 10: The Maintenance Menu
315393-E, October 2003

APPENDIX A

Alteon OS Syslog Messages
The following syntax is used when outputting syslog messages: <Time stamp><Log Label>Web OS<Thread ID>:<Message> where „ <Timestamp> The time of the message event is displayed in month day hour:minute:second format. For example: Aug 19 14:20:30 „ <Log Label> The following types of log messages are recorded: LOG_EMERG, LOG_ALERT, LOG_CRIT, LOG_ERR, LOG_WARNING, LOG_NOTICE, LOG_INFO, and LOG_DEBUG „ <Thread ID> This is the software thread that reports the log message. The following thread IDs are recorded: stp, ip, slb, console, telnet, vrrp, system, web server, ssh, and bgp „ <Message>: The log message

Following is a list of potential syslog messages. To keep this list as short as possible, only <Thread ID> and <Message> are shown. The messages are sorted by <Log Label>. Where the <Thread ID> is listed as mgmt, one of the following may be shown: console, telnet, web server, or ssh.

LOG_WARNING
FILTER “filter <filter number> fired on port <port number>, <source IP address> -> <destination IP address>, [<ICMP type>], [<IP protocol>], [<layer-4 ports>], [<TCP f1ags>]”

371
315393-E, October 2003

Alteon OS 21.0 Command Reference

LOG_ALERT
stp: IP vrrp: vrrp: vrrp: vrrp: slb: slb: gslb: gslb: gslb: gslb: slb: slb: slb: slb: bgp: bgp: vrrp: vrrp: dps: dps: syn_atk tcplim own BPDU received from port <port_id> cannot contact default gateway <ip_address> received errored advertisement from <ip_address> received incorrect password from <ip_address> received incorrect addresses from <ip_address> received incorrect advertisement interval <seconds> from <ip_address> cannot contact real server <ip_address> real server <ip_address> has reached maximum connections received update from <ip_address> for unknown remote server <ip_address> received update from <ip_address> for unknown virtual service received update for unknown remote server <ip_address> from <ip_address> received update for unknown service <ip_address:service> cannot contact real service <ip_address:real_port> real server failure threshold (<threshold>) has been reach for group <group_id> real server <ip_address> disabled through configuration Virtual Service Pool full. gSvcPool=MAX_SERVICES notification (<reason>) received from <BGP peer ip_address> session with <BGP peer ip_address> failed (<reason>) Synchronization from non-configured peer <ip_address> Synchronization from non-configured peer <ip_address> was blocked hold down triggered: <ip_address> for <min> minutes manual hold down: <ip_address> SYN attack detected: <count> new half-open sessions per se cond hold down triggered: <ip_address> for <min> minutes

372

„

Appendix A: Alteon OS Syslog Messages
315393-E, October 2003

Alteon OS 21.0 Command Reference

LOG_CRIT
SYSTEM: temperature at sensor <sensor_id> exceeded threshold SYSTEM: internal power supply failed SYSTEM: redundant power supply failed SYSTEM: fan failure detected SSH can’t allocate memory in load_MP_INT

LOG_ERR
mgmt: mgmt: mgmt: ntp: ntp: isd: stp: stp: mgmt: mgmt: mgmt: cli: cli: cli: cli: cli: cli: cli: cli: PANIC at <file>:<line> in thread <thread id> VERIFY at <file>:<line> in thread <thread id> ASSERT at <file>:<line> in thread <thread id> cannot contact NTP server <ip_address> unable to listen to NTP port unable to listen to BOOTP_SERVER_PORT port Error: Error writing STG config to FLASH Error: Error writing config to FLASH Apply not done Save not done “ <““apply””|““save””> is issued by another user. Try later” Error: Error writing %s config to FLASH New Path Cost for Port <port_id> is invalid PVID <vlan_id> for port <port_id> is not created RADIUS secret must be 1-32 characters long Please configure primary RADIUS server address STP changes can't be applied since STP is OFF Switch reset is required to turn STP on/off Trunk group <trunk_id> contains ports with different PVIDs

Appendix A: Alteon OS Syslog Messages
315393-E, October 2003

„

373

Alteon OS 21.0 Command Reference

LOG_ERR (Continued)
cli: cli: cli: cli: Trunk group <trunk_id> has more than <max_trunk_ports> ports Trunk group <trunk_id> contains no ports but is enabled Not all ports in trunk group <trunk_id> are in VLAN <vlan_id> Trunk groups <trunk_id> and <trunk_id> can not share the same port

port_mirr: Port Mirroring changes are not applied cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: Broadcast address for IP interface <interface_id> is invalid IP Interfaces <interface_id> and <interface_id> are on the same subnet Multiple static routes have same destination Virtual router <vr_id> must have sharing disabled when hotstandby is enabled Virtual router group must be enabled when hotstandby is enabled At least one virtual router must be enabled when group is enabled Virtual router group must have sharing disabled when hotstandby is enabled Virtual router group must have preemption enabled when hotstandby is enabled Virtual router <vr_id> must have an IP address Virtual router <vr_id> cannot have same VRID and VLAN as <vlan_id> Virtual router <vr_id> cannot have same IP address as <ip_address> Virtual router <vr_id> corresponding virtual server <server_id> is not enabled Hot-standby must be enabled when a virtual router has a PIP address Virtual router <vr_id> IP interface should be <interface_id> Enabled real server <server_id> has no IP address Real server <server_id> has same IP address as IP interface <interface_id> Real server <server_id> has same IP address as switch Real server <server_id> (Backup for <server_id>) is not enabled Real server <server_id> has same IP address as virtual server <server_id> Real server <server_id> has same IP address as real server <server_id> Real server group <group_id> cannot backup itself Real server <server_id> cannot be added to same group

374

„

Appendix A: Alteon OS Syslog Messages
315393-E, October 2003

Alteon OS 21.0 Command Reference

LOG_ERR (Continued)
cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: Enabled virtual server <server_id> has no IP address Virtual server <server_id> has same IP address as IP interface <interface_id> Virtual server <server_id> has same IP address as switch Virtual servers <server_id> and <server_id> with same IP address must support same layr3 configuration Real server <server_id> cannot be backup server for both real server <server_id> and group <group_id> Virtual server <server_id> has same IP address and vport as virtual server <server_id> RS <server_id> can’t exist for VS <server_id> vport <virtual_port> Switch port <port_id> has same proxy IP address as port <port_id> Switch port <port_id> has same IP address as IP interface <interface_id> A hot-standby port cannot also be an inter-switch port There must be at least one inter-switch port if any hot-standby port exist “With VMA, ports 1-8 must all have a PIP if any one does” Client bindings are not supported with proxy IP addresses DAM must be turned on or a PIP must be enabled for port <port_id> in order for virtual server to support FTP parsing Real server <server_id> and group %u cannot both have backups configured Virtual server <server_id> : port mapping but layer3 bindings Extracting length has to set to 8 or 16 for cookie rewrite mode DAM must be turned on or a PIP must be enabled for port <port_id> in order for virtural server <server_id> to support URL parsing Port filtering must be disabled on port <port_id> in order to support cookie based persistence for virtual server <server_id> Virtual server <server_id>: port mapping but Direct Access Mode Virtual server %lu: support nonat IP but not layer 3 bindings Virtual servers: all that support IP must use same group Virtual servers <server_id> and <server_id> that include the same real server <server_id> cannot map the same real port or balance UDP Virtual server <server_id>: UDP service <virtual_port> with out-of-range port number

Appendix A: Alteon OS Syslog Messages
315393-E, October 2003

„

375

Alteon OS 21.0 Command Reference

LOG_ERR (Continued)
cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: Switch cannot support more than <MAX_VIRT_SERVICES> virtual services Switch cannot support more than <MAX_SMT> real services Trunk group (<trunk_id>) ports must have same L4 config Trunk group (<trunk_id>) ports must all have a PIP DAM must be turned on or a PIP must be enabled for ports <port_id> in order to do URL based redirection “Two services have same hostname, <host_name>.<domain_name>” Direct access mode is not supported with default gateway load balancing SLB Radius secret must be 16 characters long Dynamic NAT filter <filter_id> must be cached NAT filter <filter_id> must have same smask and dmask NAT filter <filter_id> cannot have port ranges NAT filter <filter_id> must be cached NAT filter <filter_id> dest range includes VIP <server_id> NAT filter <filter_id> dest range includes RIP <server_id> Redirection filter <filter_id> must be cached Filter with L4 ports configured <port_id> must have IP protocol configured “For Global SLB, Web server must be moved from TCP port 80” Remote site <site_id> does not have a primary IP address Primary and secondary remote site <site_id> switches must differ Remote sites <site_id> and <site_id> must use different addresses Remote site <site_id> and real server <server_id> must use different addresses Remote site <site_id> and virtual server <server_id> must use different addresses Only <MAX_SLB_SITES> remote servers are allowed per group Only <MAX_SLB_SERVICES> remote services are supported Enabled external lookup IP address has no IP address domain name must be configured

376

„

Appendix A: Alteon OS Syslog Messages
315393-E, October 2003

Alteon OS 21.<domain_name>” Loadbalance string must be added to real server <server_id> in order to enable exclusionary string matching intrval input value must be in the range [0-24] unapplied changes reverted unsaved changes reverted Attempting to redirect a previously redirected output Attempting to redirect a previously redirected output cfg_sync_tx_putsn: ABORTED Synchronization TX Error Synchronization TX connection RESET Synchronization TX connection TIMEOUT Synchronization TX connection UNREACEABLE Synchronization TX connection UNKNOWN CLOSE Synchronization RX connection RESET Synchronization RX connection TIMEOUT Synchronization RX connection UNREACEABLE Synchronization RX connection UNKNOWN CLOSE Synchronization connection RCLOSE by peer Synchronization connection RCLOSE before RX Appendix A: Alteon OS Syslog Messages 315393-E.0 Command Reference LOG_ERR (Continued) cli: cli: cli: cli: cli: cli: cli: cli: cli: cli: mgmt: mgmt: mgmt: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: Network <static_network_id> has no VIP address duplicate default entry BGP peer <bgp_peer_id> must have an IP address BGP peers <bgp_peer_id> and <bgp_peer_id> have same address BGP peer <bgp_peer_id> have same address as IP interface <ip_interface_id> BGP peer <bgp_peer_id> IP interface <ip_interface_id> is not enabled Filter with ICMP types configured (<icmp_type>) must have IP protocol configure to ICMP “Two services have same hostname. <host_name>. October 2003 „ 377 .

Try later” new configuration did not validate (rc = ) new configuration did not apply (rc = ) new configuration did not save (rc = ) Sync config apply error Restoring Current Config Sync rx tcp open error Sync Version/Password Failed-No Version/Password Line Sync Version Failed .Alteon OS 21.0 Command Reference LOG_ERR (Continued) vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: Synchronization connection early RCLOSE in RX Synchronization connection Wait-For-Close Timeout Synchronization connection Transmit Timeout Synchronization Receive Timeout Synchronization Receive UNKNOWN Timeout Sync transmit in progress … cannot start Sync Sync receive in progress … cannot start Sync Sync already in progress … cannot start Sync Config Sync route find error Config Sync tcp_open error Config Synchronization Timeout . October 2003 .Resuming Console thread “<""apply""|""save""> is issued by another user.peer:%s config:%s Sync Password Failed-Bad Password Sync receive already in progress … cannot start Sync receive Sync transmit in progress … cannot start Sync receive 378 „ Appendix A: Alteon OS Syslog Messages 315393-E.

0 Command Reference LOG_NOTICE system: system: system: system: system: system: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: ssh: ssh: mgmt: mgmt: mgmt: mgmt: internal power supply ok redundant power supply present and ok temperature ok fan ok rebooted <last_reset_information> rebooted <last_reset_information> administrator logged in boot config block changed boot image changed switch reset from CLI syslog host changed to <ip_address> syslog host changed to this host second syslog host changed to <ip_address> second syslog host changed to this host Next boot will use active config block user password changed SLB operator password changed L4 operator password changed operator password changed SLB administrator password changed L4 administrator password changed administrator password changed scp <login_level> login “scp <login_level> <""connection closed""|""idle timeout""|""logout"">” RADIUS server timeouts Failed login attempt via TELNET from host %s PASSWORD FIX-UP MODE IN USE <login_level> login on Console Appendix A: Alteon OS Syslog Messages 315393-E.Alteon OS 21. October 2003 „ 379 .

October 2003 .0 Command Reference LOG_NOTICE (Continued) mgmt: mgmt: “<login_level> <""idle timeout""|""logout""> from Console” PANIC command from CLI port_mirr: “port mirroring is <""enabled""|""disabled"">” vlan: mgmt: mgmt: IP IP vrrp: vrrp: slb: slb: slb: slb: slb: slb: slb: slb: slb: slb: bgp: Default VLAN can not be deleted <login_level> login from host <ip_address> “<login_level> <""connection closed""|""idle timeout""|""logout""> from” “default gateway <ip_address> <""enabled""|""disabled"">” default gateway <ip_address> operational virtual router <ip_address> is now master virtual router <ip_address> is now backup “backup server <ip_address> <""enabled""|""diabled""> for real server <server_id>” “backup server <ip_address> <""enabled""|""disabled""> for real server group <group_id>” “backup group server <ip_address> <""enabled""|""disabled""> for real server group group_id>” “overflow server <ip_address> <""enabled""|""disabled""> for real server <server_id>” “overflow server <ip_address> <""enabled""|""disabled""> for real server group <group_id>” “overflow group server <ip_address> <""enabled""|""disabled""> for real server group <group_id>” real server <ip_address> operational real service <ip_address:real_port> operational No services are available for Virtual Server <virtual_server> Services are available for Virtual Server <virtual_server> session established with <BGP_peer_ip_address> 380 „ Appendix A: Alteon OS Syslog Messages 315393-E.Alteon OS 21.

0 Command Reference LOG_INFO SYSTEM: mgmt: mgmt: mgmt: mgmt: mgmt: mgmt: ssh: ssh: mgmt: mgmt: mgmt: mgmt: ssh: ssh: ssh: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: vrrp: bootp response from <ip_address> new configuration applied new configuration saved unsaved changes reverted Could not revert unsaved changes " <image1|image2> downloaded from host <ip_address>." server key autogen starts server key autogen completes server key autogen timer timeouts new synch configuration applied new synch configuration saved Synchronizing from <host_name> Synchronizing to <host_name> Config Synchronization Transmit Successful Config Synchronization Receive Successful new configuration VALIDATED Appendix A: Alteon OS Syslog Messages 315393-E. file <file_name> <software_version>" serial EEPROM downloaded from host <ip_address> file <file_name> scp <login_level> login " scp <login_level> <""connection closed""|""idle timeout""|""logout"">" <login_level> login on Console " <login_level> <""idle timeout""|""logout""> from Console" <login_level> login from host <ip_address> " <login_level> <""connection closed""|""idle timeout""|""logout""> from Telnet/SSH.Alteon OS 21. October 2003 „ 381 .

Alteon OS 21. October 2003 .0 Command Reference 382 „ Appendix A: Alteon OS Syslog Messages 315393-E.

mib -.SynOptics Registration MIB s5tcs112.mib -.MIB II (System. which requires the following SynOptics MIBS: „ „ „ „ synro193.SynOptics Root MIB s5roo117. Alteon OS SNMP agent supports the following standard MIBs: „ „ RFC 1213 . October 2003 .mib cheetahBwm.Textual Convention MIB s5emt104.mib cheetahPhysical. Address Translation.mib -. SNMP Groups) RFC 1573 . The community string can be modified only through the Command Line Interface (CLI). ICMP. Interface.Ethernet Multi segment Autotopology MIB Users may specify up to two trap hosts for receiving SNMP Traps. Traps will not be sent if there is no host specified. Security is provided through SNMP community strings. The agent will send the SNMP Trap to the specified hosts when appropriate. The default community strings are “public” for SNMP GET operation and “private” for SNMP SET operation. Detailed SNMP MIBs and trap definitions of the Alteon OS SNMP agent can be found in the following enterprise MIB documents: „ „ „ „ „ „ „ „ Altroot.APPENDIX B Alteon OS SNMP Agent The Alteon OS SNMP agent supports SNMP Version 1. IP. Alteon MIBs are registered as Vendor 1872. TCP.mib cheetahLayer4.mib cheetahSwitch.mib cheetahLayer7.mib -.mib cheetahNetwork.mib cheetahTrap. UDP.mib Added support for the ethernet multi-segment autotopology MIB.MIB II Extension (IFX table) 383 315393-E.

Bridge MIB RFC 1757 .RMON MIB (Statistics.EtherLike MIB RFC 1493 . History.Alteon OS 21. Signifies that the default gateway is up and in service Signifies that the default gateway is alive but not in service Signifies that the real server is up and operational Signifies that the real server is down and out of service Signifies that the real server has reached maximum connections Signifies that the backup real server is activated due to availablity of the primary real server Signifies that the backup real server is deactivated due to the primary real server is available 384 „ Appendix B: Alteon OS SNMP Agent 315393-E. October 2003 . Alarm. Event Groups) RFC 1850 for OSPF RFC 1657 for BGP Alteon OS SNMP agent supports the following generic traps as defined in RFC 1215: „ „ „ „ „ ColdStart WarmStart LinkDown LinkUp AuthenticationFailure The SNMP agent also supports two Spanning Tree traps as defined in RFC 1493: „ „ NewRoot TopologyChange The following are the enterprise SNMP traps supported in Alteon OS: Table 10-7 Alteon OS-Supported Enterprise SNMP Traps Trap Name Description altSwDefGwUp altSwDefGwDown altSwDefGwInService altSwDefGwNotInService altSwSlbRealServerUp altSwSlbRealServerDown altSwSlbRealServerMaxConnReached altSwSlbBkupRealServerAct altSwSlbBkupRealServerDeact Signifies that the default gateway is alive. Signifies that the default gateway is down.0 Command Reference „ „ „ „ „ RFC 1643 .

A altSwTempExceedThreshold trap signifies that the switch temperature has exceeded maximum safety limits. October 2003 „ 385 . altSwTempExceedThreshold Appendix B: Alteon OS SNMP Agent 315393-E. The newBackup trap indicates that the sending agent has transitioned to ’Backup’ state. altSwVrrpAuthFailure altSwLoginFailure altSwSlbSynAttack altSwTcpHoldDown A altSwSlbSynAttack trap signifies that a SYN attack has been detected.0 Command Reference Table 10-7 Alteon OS-Supported Enterprise SNMP Traps Trap Name Description altSwSlbBkupRealServerActOverflow altSwSlbBkupRealServerDeactOverflow altSwfltFilterFired altSwSlbRealServerServiceUp altSwSlbRealServerServiceDown altSwVrrpNewMaster altSwVrrpNewBackup Signifies that the backup real server is deactivated due to the primary real server is overflowed Signifies that the backup real server is deactivated due to the primary real server is out from overflow situation Signifies that the packet received on a switch port matches the filter rule Signifies that the service port of the real server is up and operational Signifies that the service port of the real server is down and out of service The newMaster trap indicates that the sending agent has transitioned to ’Master’ state. A vrrpAuthFailure trap signifies that a packet has been received from a router whose authentication key or authentication type conflicts with this router’s authentication key or authentication type. A altSwTcpHoldDown trap signifies that new TCP connection requests from a particular client will be blocked for a pre-determined amount of time since the rate of new TCP connections from that client has reached a pre-determined threshold.Alteon OS 21. Implementation of this trap is optional. A altSwLoginFailure trap signifies that someone failed to enter a valid username/password combination.

Alteon OS 21.0 Command Reference 386 „ Appendix B: Alteon OS SNMP Agent 315393-E. October 2003 .

connect the Console port of an Alteon Application Switch to the serial port of your PC that supports XModem/1K XModem. This procedure requires the following: „ „ „ A computer running terminal emulation software A standard serial cable with a male DB9 connector (see your switch hardware installation guide for specifics) A binary switch firmware image (not the tftp file used for TFTP download) Use the following procedure to perform a serial upgrade. 3.PPCBoot 2.APPENDIX C Performing a Serial Download You can perform a serial download of the new Alteon Application Switch software if you are upgrading Alteon OS directly from any image. Power on the switch.2. Hold the <Shift> key down and hit D repeatedly until the following message appears: Alteon Application Switch . 1. To download a serial image use 1K Xmodem at 115200 387 315393-E. Start hyper terminal (part of Microsoft Windows) and set the following parameters: Parameter Baud Rate Data Bits Parity Stop Bits Flow Control Value 9600 8 None 1 None 2. Using the serial cable. 4. October 2003 .

.0_Serial. You should see the following sample log on your screen: Alteon Application Switch . wait for a few seconds and power the switch on. 8. NOTE – Although slower.2.0. you will see: CCCC. Press <Enter> on the key board of the PC that is connected to the console port of the switch. CAUTION—Do not power off the switch until you see the message: “Change your baud rate to 9600 bps and power cycle switch”. This file can be downloaded from the CD that is shipped with the switch. "21..img" (Or the file previously downloaded to the computer) 7.0.PPCBoot 2. protocol: 1K XMODEM It will take about 15 minutes for the transfer to complete.0 Command Reference 5. Reconfigure your terminal emulation software with the following parameters (only after you see the message displayed in step 4). otherwise. Make sure that the new binary firmware file is available on the computer. Select <Transfer-Send File> and choose the following: file: For example. When the Console Port is successfully communicating with the PC. XMODEM will work too if you choose not to use 1K MODEM. The switch will boot with the new software load. the switch be inoperable. October 2003 . Do *NOT* power cycle the switch Updating flash..: Parameter Baud Rate Data Bits Parity Stop Bits Flow Control Value 115200 8 None 1 None NOTE – You can perform serial downloads at 57600 baud rate by pressing Ctrl f or at 115200 baud rate by pressing Ctrl d. To download a serial image use 1K Xmodem at 115200 CCCCCCCCCCCCCCCCCCCCCCCCCCCCC Total bytes transferred: 0x4ff400 Extracting images. Power off the switch. ################################################################# Change your baudrate to 9600 bps and power cycle the switch ! 388 „ Appendix C: Performing a Serial Download 315393-E.Alteon OS 21. 6.. 9...

and so on. A higher number will win out for master designation. In VRRP. half NAT is when the destination IP or source IP address is changed from one address to another. or a filter. Full NAT is when both addresses are changed from one address to another.) A group of real servers that are associated with a Virtual Server IP address.Glossary DIP (Destination IP Address) Dport (Destination Port) NAT (Network Address Translation) The destination IP address of a frame. October 2003 . to that of one of the real servers. preemption will cause a Virtual Router that has a lower priority to go into backup should a peer Virtual Router start advertising with a higher priority. TCP. Default is 100. No NAT is when neither source nor destination IP addresses are translated. Preemption Priority Proto (Protocol) Real Server Group 389 315393-E. In VRRP. network address translation can be said to have taken place. Minimum value is 1 and maximum value is 254. Virtual server-based load balancing uses half NAT by design. because it translates the destination IP address from the Virtual Server IP address. UDP. ICMP. The protocol of a frame. In general. Can be any value represented by a 8-bit value in the IP header adherent to the IP specification (for example. the value given to a Virtual Router to determine its ranking with its peer(s). OSPF. http-80/https-443/DNS-53) Any time an IP address is changed from one source IP or destination IP address to another address. The destination port (application socket: for example.

Alteon OS 21. spam filter. Filters can be configured to filter on the SIP/Range (via netmask). VIP (Virtual Server IP Address) VIR (Virtual Interface Router) 390 „ Glossary 315393-E. This filter intercepts traffic based on certain IP header criteria and load balances it. or NAT (translation of either the source IP or destination IP address). a filter is configured in the switch. In redirection-based load balancing.0 Command Reference Redirection or Filter-Based Load Balancing A type of load balancing that operates differently from virtual server-based load balancing. Instead. In VRRP. a method to increase the priority of a virtual router and thus master designation (with preemption enabled). Real Server IP Address. client or server designation (increments priority by 2 for each „ reals: healthy real servers (increments by 2 for each healthy real server) „ hsrp: HSRP announcements heard on a client designated port (increments by 10 for each) An IP address that the switch owns and uses to load balance particular service requests (like HTTP) to other servers. redirection-based load balancing is designed to load balance devices that normally operate transparently in your network—such as a firewall. Deny. A VRRP address that is an IP interface address shared between two or more virtual routers. “Transparently” means that requests are not specifically destined for a Virtual Server IP address that the switch owns. An IP addresses that the switch load balances to when requests are made to a Virtual Server IP address (VIP). the destination IP address is not translated to that of one of the real servers. requests are transparently intercepted and “redirected” to a server group. With this type of load balancing. The action on a filter can be Allow. Tracking can be very valuable in an active/active configuration. DIP/Range (via netmask). HTTP-80/HTTPS-443/DNS-53). RIP (Real Server) SIP (Source IP Address) SPort (Source Port) Tracking The source port (application socket: for example. Therefore. Protocol. October 2003 . Redirect to a Server Group. You can track the following: „ Vrs: Virtual Routers in Master Mode (increments priority by 2 for each) „ Ifs: Active IP interfaces on the Alteon Application Switch (increments priority by 2 for each) „ Ports: Active ports on the same VLAN (increments priority by 2 for each) „ l4pts: Active Layer 4 Ports. or transparent Web cache. SPort/Range or DPort/Range. The source IP address of a frame.

forcing the packet up to Layer 3. This process of replacing the destination IP (VIP) with one of the real server addresses is called half NAT.18. The switch then replaces the VIP and with one of the real server IP addresses (RIP’s). Requests destined for a Virtual Server IP address (VIP). The backup switch is always listening for the broadcasts.0. then the VRRP broadcasts will only be sent out on the VLAN of which the associated IP interface is a member. If the frames were not half NAT’ed to the address of one of the RIPs. the two switches would fight for ownership of the Virtual Server IP address. and advertisements. Network address translation is done back and forth. These advertisements are sent via a broadcast message to an address such as 224. a server would receive the frame that was destined for it’s MAC address. one switch is considered the master and the other the backup. For a more detailed description. Virtual Server Load Balancing VRID (Virtual Router Identifier) VRRP (Virtual Router Redundancy Protocol) VSR (Virtual Server Router) Glossary 315393-E. and the ARP tables in the devices around them would have two ARP entries with the same IP address but different MAC addresses. Classic load balancing. A VRRP address that is a shared Virtual Server IP address. Frames come to the switch destined for the VIP. a value between 1 and 255 that is used by each virtual router to create its MAC address and identify its peer for which it is sharing this VRRP address. The server would then drop the frame. as requests come and go. as defined in RFC 2338. are load balanced to a real server contained in the group associated with the VIP. then the VRID number needs to be identical on both switches so each virtual router on each switch knows whom to share with. The switch announces this change in ownership to the devices around it by way of a Gratuitous ARP. If you have a VRRP address that two switches are sharing. VSR is Alteon WebSystems’ proprietary extension to the VRRP specification. The VRRP MAC address as defined in the RFC is 00-00-5E-00-01-{VRID}. and forwards the frame to the server for which it is now destined.Alteon OS 21. the backup will take over ownership of the VRRP IP and MAC addresses as defined by the specification. refer to RFC 2338. The reason for both of these protocols is so devices have a next hop or default gateway that is always available. Should the master stop advertising. updates the relevant checksums. which is owned by the switch. All IP interfaces on the Alteon Application Switch must be in a VLAN. Two or more devices sharing an IP interface are either advertising or listening for advertisements. With VRRP. One virtual router is associated with an IP interface.0 Command Reference Virtual Router A shared address between two devices utilizing VRRP. since the packet would have the DIP of the VIP and not that of the server (RIP). October 2003 „ 391 . A protocol that acts very similarly to Cisco’s proprietary HSRP address sharing protocol. If the backup switch didn’t do the Gratuitous ARP the Layer 2 devices attached to the switch would not know that the MAC address had moved in the network. If they didn’t. This is one of the IP interfaces that the switch is assigned.0. by the switch. as well as IP interfaces. The switches must be able to share Virtual Server IP addresses. The master is always advertising via the broadcasts. If there is more than one VLAN defined on the Alteon Application Switch. In VRRP.

Alteon OS 21. October 2003 .0 Command Reference 392 „ Glossary 315393-E.

.................................................................... 32 auto-negotiation ... 193 action (SLB filtering option) ................... 209 setup........................................ 287............. 206............... 292 / command ................. 282 add SLB port option ... 282 restoring ............................................. 271 active Layer 4 processing ... 204..................................................................................... 178.................................... 353 active configuration block ...... 32............................................................................................................................ 310 activating optional software ........................................ 20 autoconfiguration duplex mode ..................... 69 Address Resolution Protocol (ARP) address list .............................. 177 applying configuration changes ........................................................................................................... 239 Numerics 1K XModem ..... 359 backup server activations (SLB statistics) ....... 182...................................................... 359 active FTP SLB parsing statistics ............. 322 addr ARP entries................................... 366 administrator account ......... 366 IP route tag ............................ 50 access control system ............... 271 active switch configuration gtcfg ....... October 2003 ...... 239 as .......... 239 autonomous system filter path action ........................................ 32 link..... 338 (SLB real server group option) content ............................................................................. 142 active IP interface ............. 83 filters ......................................... 221 STP information ......................... 214 393 315393-E.................... 387 3000 series.......... 47 [ ]....................................................................................................... 63 application redirection ........................... 271 active port VLAN .................................... 196 advertisement of virtual IP addresses .............................................. 33 autonomous system filter action ........................... 293 backup configuration block ................ 282 active switch........................ 150 bandwidth management configuration .................................... 212 contracts ...............Index Symbols (MD5) .. 310 filter states.............................................. 241 aging STP bridge option ..................................................... 33 port speed................... 17 admpw (system option) ........... 214 bandwidth management contract configuration ....................... 32...... 200.............................................................................................................. 282 ptcfg .................................................................................................................... 178.................................................. 27 B backup SLB real server group option .... 177 ASCII terminal . saving and loading configuration ................................................................................................................................................. 201 A abbreviating commands (CLI) ................ 292 apply (global command) ..... 239 aspath ......................... 24........................... 285 within real server groups ......................................................................... 213 bandwidth management contract precedence value ............. 32 enable/disable on port ..............................

................253 IP route tag ........253 router hops.... 153 switch processor contract statistics .................................................................. 366 dump information .......................................................................................................................180 baud rate console connection ...... 45 commands abbreviations .. 156 port ....................................... 17 global commands .........................................21 setup (enable/disable) ................................................................................................................................... 154 C capture dump information to a file. 388 BBI ..............149 binding table .............................................................. 367 clearing SLB statistics .....................................................180 bootstrap protocol ..................215 buffer limit ...........259 Border Gateway Protocol .........251 eBGP ........................................................19 BGP configuration.........................................................................................................220 broadcast IP route tag ...................................................................................................................... October 2003 .............................. 36 Browser-Based Interface .......................220 Bridge Spanning-Tree parameters .................................. 50 tab completion .................................................................................215 hard bandwidth limit .......................................................251 in route ........................................ 368 Cisco Ether Channel .............................................31 system option .... 321 command (help) ...215 underlimit TOS ...............................69 configuration................................................................................ 19 to 25........... 155 contract statistics ................. 68 broadcast domains ... 150 client traffic processing ........................251 Border Gateway Protocol (BGP) operations-level options ...... 222 clear ARP entries ........................... 369 FDB entry ...69 keep-alive time ..................................................215 reserve limit ......255 remote autonomous system .........................................................................................................................219 bridge priority ........................................................................................................................................................................................... 47 shortcuts .......252 peer configuration .................... See Bridge Protocol Data Unit....... for STP ..........Alteon OS 21..........355 BOOTP ...387.......253 peer ...............0 Command Reference Bandwidth Management options operations-level options ........................................251 iBGP ....................................................................................... 224 broadcast IP address .............. 27..............................................................63 STP transmission frequency ......................................................... 364 routing table ..................388 binding failure .303 BLOCKING (port state)..................352 bandwidth management policy configuration ...................................................353 BPDU...................................................... 47 Command-Line Interface (CLI) ...................253 redistribution configuration .............. 153 switch processor rate contract statistics ........ 19 BWM contract rate statistics........215 bandwidth management statistics .............................254 binary ................ 50 conventions used in this manual .................. 50 stacking ........................................................................................63 Bridge Protocol Data Unit (BPDU) ................................................................................................. bridge parameter menu................................. 50 394 „ Index 315393-E................... 154 history statistics ...............................................215 over the limit TOS ......20 serial download ..........152 banner (system option)............................................... border router .................................................................63 boot options menu ........................................................254 IP address... 69 IP route type ......215 soft bandwidth limit ...........................................387 binary firmware image .....................

....................... 388 content SLB real server group option ............. 222 route cache. 177 default gateway interval................... 32 link status ............ 209 port link speed .. bandwidth management .................................................................................................................. 68 directed broadcasts... 281 effect on Spanning-Tree Protocol ............. 188..... 188 debugging ................... 208 VRRP .................................... 311 DNS statistics ........................ 228 user password ...................................................... 229 metrics ................... 367 315393-E... 32 dynamic routes .......... 222 counters......................................................... 303 console port communication settings ........ 162 cur (system option) ........................................................ 25 Distributed Site State Protocol (DSSP) setting update interval .................................................................. 240 connecting via console ........................................................................................ 281 switch IP address .................................. 66 interval.......................................................................................................................................................................................................... 205......................... 189 current bindings ...................... 229 dump command ........................ 228 VLAN tagging . 20 connecting .... 150 CPU statistics ... load balancing for ............... 233 DISABLED (port state) ................... 202.... 150 dump configuration command .............................. 203......................................... 52............. 275 default password ........................................................................................................................... 311 direct (IP route type) .................................................................... 30 system option .............................................. 202......................... 56............................................................................................. 203............................. October 2003 Index „ 395 ........................... 199................................................................. 361 state information .............. 359 selection ......... 90 setup...................... 281 setup command ............................................................................ 229 default gateway IP address ..... 203........... 20 serial download settings ........ 369 duplex mode.................................................. 198.. 204 IP static route ...................................................................................... 162 CPU utilization ...... No Server Available (dropped frames) ............. 292 contracts................................... for health checks .................................... viewing changes ..................... 356 dropped frames (No Server Available) counter ....... 63 STP port option ......................... 209 Gigabit Ethernet .......................... 63 disconnect idle timeout .... 207 VLAN IP interface ........................................... 359 backup........ 200............. 24 delete FDB entry . 200...................................................................... 175 configuring routing information protocol ...Alteon OS 21............................... 71 diff (global) command..................................0 Command Reference configuration administrator password . 121 Domain Name System (DNS) health checks ............... 202................................. 204..... 177 setup . 364 deny (filtering) ........ 198......................................................... for health checks ......... 206...................................................... 196 operating mode ...... 180 daylight savings time ......................................................................... 177 dip (destination IP address for filtering) . 209 port mirroring ...................... .................................................. 20 via Telnet..... 295 peer site handoffs .... 359 factory ... 324 downloading software .......................................... 150 designated port.................... 211 port trunking ........ 149 D date setup........................................ 213 copper ports ................................. 230 Layer 4 administrator password ................... 387.......... 275 round robin.. 177 Fast Ethernet ............................................................................................. 202 cost STP information ............................................. 21 connection timeout (Real Server Menu option) .............. 233 save changes ........... 324 dmask destination mask for filtering ......... 281 maintenance .......................... 260 configuration block active ......... 198 flow control .................................................................. 198...... 195 view changes................. 361 default gateway information .................................................. 196 apply changes ................... 177 VLAN default (PVID) ..................... 359 configuration menu .................

................. 336 Greenwich .......................................................... 193 http ....198 Fast Ethernet........................ 32 hash metric ..................... 133 gtcfg (TFTP load command) .................144 full-duplex . 295 redirects (Global SLB option) .......................38 first-time configuration ................................ 204 Gigabit Ethernet configuration.... 269 HP-OpenView ................204 File Transfer Protocol ..................... 188 group ........................................................................ 209 setup ...... 193 G gig (Port Menu option) ............150 filters IP address ranges .................... 188 Greenwich Mean Time (GMT) .........25...............................................................................................................................222 F factory configuration block ......................................143 FTP SLB statistics dump................................................361 delete entry .......63 global SLB maintenance statistics .39 emulation software ........359 factory default configuration ............52....... 274 Hot Standby Router VLAN (HSRV) use with VRRP ..........................................198................... 202.... 297 health check types.......................... number of failed health checks ... HSRV....................................................Alteon OS 21........... 310 retry....... 27 to 43 fixed IP route tag ......................... 282 H half-duplex .................... 27...................................................... 33 forwarding configuration IP forwarding configuration .. 274 use with VRRP ....................................................... 272 VRRP priority increment value ............................................ 28 Fast Ethernet Physical Link ................ retries ........................................................................................69 flag field............................................198 fastage .................................................... 136 global SLB statistics ........................................................... 229 IDSLB.................... 296. 265 VRRP priority increment value ..................................................... 294 layer information .......71 flow control ............. bridge port ......32....................................................... 180 HSRP...................................... October 2003 ................. 64 FTP server health checks ..........Alteon EMS .......................198.......................................... 204 global commands .................................... 340 WAP .....................295 FTP SLB maintenance statistics ............................ configuring ports for ...................................... 202...... See Hot Standby Router Protocol............................ 241 Hot Standby Router on VLAN (HSRV) use with VLAN-tagged environment ...............................................................61........... 325 system option .......... 202.................................................................311 Final Steps.. 229 script ... 339 SNMP ................... 47 host routes .........................198..... 203...... 294 health checks..................... 341 hello STP information ............................................ See Hot Standby Router Protocol..... 265.......................................387 EtherChannel as used with port trunking ................................... 288 default gateway interval............... 90 configuring .................................................. 206................................................... 272 hot-standby failover ....142 filter statistics ........... 204 Gigabit Ethernet Physical Link ...............233 forwarding database (FDB) ...........................................................200..........364 Forwarding Database Information Menu ............... 295 redirection (rport)................................................................... 134 grace graceful real server failure ...............................................................220 FwdDel (forward delay)......................363 forwarding state (FWD) .....60 Forwarding Database Menu.................................... 25... 63 help ...................................109 fiber optic ports ......................................................... 63..336 FDB statistics ........................ HTTP application health checks ........................................................................................................................134 filtered (denied) frames ............................................47 396 „ Index 315393-E... 82 parameters for most protocols ........... SLB ........32 fwd (STP bridge option) ...........................................................................0 Command Reference E EMS... 275 Hot Standby Router Protocol (HSRP) priority increment value for L4 client ports .................. 19 hprompt system option ...............................

................................... 66 IP route tag ....................................... 181 logical segment............... 224 I ICMP statistics ................. 63 lmask (routing option) ........... 353 link speed................0 Command Reference HTTP health checks on any port (aphttp) ........................................................ 150 indirect (IP route type) ..................... 116 IP subnet mask ... 138 layer7 redirection statistics ................. 203............................. 90 duplex mode ..................... 70 BOOTP ........................................................ 335 IP configuration via setup ........................................................................................................................................................ 274 IP network filter configuration ...... 69 priority increment value (ifs) for VRRP ........................ 234 log syslog messages ................. 115 interface statistics ............ 271 layer 7 SLB maintenance statistics . 66 local (IP route type) .................................................................................................. 56.. 209 link status............................................................................. 35 IP subnets VLANs .. 68 information ....................................................................................................... 64 Information Menu .......................................... 363 switch location .............................................................................................. 90 linkt (SNMP option) .................. configuring ........................... 69 IP Static Route Menu ................................... 294 IEEE standards 802.......... 137 LDAP version ................ 228 configuring VLANs .............................. 60............. 139 layer 7 SLB string statistics ........... 338 IP Route Manipulation Menu ........ 229 filter ranges .......................................................... 235 IP port configuration ................ 35 local route cache ranges . 21 315393-E........................ 358 IMAP server health checks ........................................ 79 IP interface ......... 52 command ......... 123 IP address ........ 335 incorrect VIPs (statistic) ................... 218 image downloading ......................... 62.. 35 tag parameters ........................... 66..................... selecting ..... 295.......................................... 90 Link Status Information ............................................................................................... 353 license password .......................................... 70.. 90 port speed...... 295 imask (IP address mask) .. 21 IP address mask for SLB .... 24 Layer 4 processing active ............... M MAC (media access control) address 53............................... 257 L l4apw (L4 administrator system option) ............................................................................................................................... 56..........Alteon OS 21............................................................................................................... 297 licence certificate ............................................................................... 338 LEARNING (port state) ............................................................................................... 35................................... See IP subnets......... 149 incorrect Vports (dropped frames counter) ..................... 66 IP Information Menu ........................... 63 least connections (SLB Real Server metric) ...... 230 IP statistics ................... 51 Interface change stats . 68 Information Trunk Group Information...................................................................... 192 LISTENING (port state) .. 52.................. 35 IP forwarding ............................................................... 257 directed broadcasts .. 367 IP routing ...................................................................................................... 66 lnet (routing option) ............................................. 228 active ................................................................... 35 ARP information ...... 21 configuring default gateway ........................................ 356 software.................. 233 IP forwarding information .......................... 233 local route cache IP address ranges for.........................................1d Spanning-Tree Protocol ............ 271 configuring address ............................................. 228 IP interfaces ............................... 196 Layer 4 administrator account....... 52............ 311 IP interface ................................. 234 Telnet ............. 25 IDSLB health checks .................... 353................................................................. 68 local network for route caching .................... 121 idle timeout overview..... 233 local networks for route caching ......... 199................ October 2003 Index „ 397 .....................................

..365 mmask IP address mask for SLB .. 353 removing .....................188 NTP synchronization ............... 241 cost of the selected path ..................................................................................................................................................17 martian IP route tag (filtered) ............................................... See Management Processor.........188 398 „ Index 315393-E...........................................................................45 Command-Line Interface (CLI) .................................................. 246 dead.. authentication parameter of a hello packet ............................... 352 operations-level IP options ................. 222 mxage (STP bridge option) ............................... 242........ 351 optional software ... 297 Miscellaneous Debug Menu ........................................................ 293 MD5 authentication key ..........................................................0 Command Reference Main Menu ...............................220 O octet counters ................... 200......68 mask IP interface subnet address ....114 Network Address Translation (NAT) filter action ........................................46 Maintenance Menu .... 132 online help ............................................ 353 operations-level BWM options ................................53 manual style conventions .....................247 media access control...335 monitor port..........68 multi-links between switches using port trunking................................................................................................................ 246 cost value of the host .............................. metric SLB real server group option..63 mcon (maximum connections) .........................297 minimum misses (SLB real server metric) .......... declaring a silent router to be down .............. health parameter of a hello packet ... 112 global ................................................ 349 operations-level SLB options . 248 export ............. 250 fixed routes ........................................ 112 hello........ 350 operations-level VRRP options ..................................................................150...............................................................................................149 notice ..........................64...................................................................... 352 Operations-Level Port Options .....................69 IP route type (filtered out) .............. 243 authentication key .................................19 non TCP/IP frames .................. multicast IP route type ...................................292 metrics........................336 mnet management traffic IP address for SLB ............... 52..........................180 NTP server menu ..................211 mp packet ...............159 MP....................................................................243 MD5 cryptographic authentication ................ configuring ...... 47 operating mode........ 209 operations menu .....228 MaxAge (STP information) ...................................25 summary .................................................................................... See MAC address.........361 Management Processor (MP)..... 74..................... N nbr change statistics.310 network management..................... 241 ospf area index ...........244 MD5 key .. SLB ....................................189 NTP time zone ......................... 347 operations-level BGP options ................................. 93 activating .......... 247 configuration .............................................................................. 252 general ................ October 2003 ........................................Alteon OS 21....................................................... 249 dead.................................................. 203...365 display MAC address ...................................................................................294............. 354 OSPF area types ......

289 Index P panic command .......................................................... 68 Passive FTP SLB Parsing Statistics ....... 242 redistribution menu ......... 90 port speed ..................... 242 MD5 authentication key......................................... 91 preemption assuming VRRP master routing authority .................................. 52........... 197 SLB state information ....................................... 244 stub area ..........................0 Command Reference 248 host entry configuration ............................................................. router ID ....................................... 210 information ...................................... 63 RJ-45 ................................. 245 transit area ............. Port Menu configuration options ........... 61 port trunking description ................ 242 virtual link configuration .................................... 202 configuring Fast Ethernet ........................................ 288 persistent bindings real server .......................................................................................................................................... 24 user account ........................ 303 ping ............. 244 summary range configuration ......................... 244 priority value of the switch interface........................ 345 poisoned reverse....... October 2003 „ 399 ...... 65 priority................................................................................................................ 244 virtual link .. 52...... 243 Not-So-Stubby Area ... 295 port bandwidth management switch processor statistics 153 switch port contract statistics menu........................ 240 POP3 server health checks................................................................................... 78 OSPF statistics ............................ 56.................... 83 STP port priority . 187 proxies IP address translation ...................................................................................................................... 24 default . 250 spf........... 211 Port number ................................................................................................... 361 parameters tag ...................................................................... 24 VRRP authentication ..................... shortest path first ........................................................................ 74 OSPF Information Route Codes ................................................................... 222 VLAN ID... 32 setup.......... 248 OSPF Database Information ........................................................................ 76 OSPF Information ..... 242 interface ....................... 59..........Alteon OS 21. 344........................................................... 24 L4 administrator account ................................................................................................... 246 link state database ... 48........................................................ 249 host routes .............. 66 membership of the VLAN ..... 90 auto-sense ........................................................... 263.. 270 priority (STP port option) ........................................................................ 369 switch (and Maintenance Menu option) ............................... 195 password administrator account .......................................... 198 configuring Gigabit Ethernet (gig) . 222 ports configuration ................................................. 32 port states UNK (unknown) ........... 198......................................................................................... 204 port mirroring configuration ................. 23 315393-E.................................... 242 interface configuration ................................................................ 270 priority virtual router .. 69 type .......................................... 77 OSPF general ......... 287 PIP ............................... 246 range number ....................................................... 91 IP status ....................... 246 type .............................. 222 prisrv primary radius server ............... 273 passwords ................................................................ 31 disabling (temporarily)..... 111 overflow server activations ............................................................ 244 transit delay ........ 197 port flow control... as used with split horizon ................. 143 Password user access control ... 202...................................................... 152 port configuration ............ 264 virtual router .. 75 OSPF General Information .................................................. 222 port trunking configuration ........................................... 247 virtual neighbor... See flow control......................... 242 route redistribution configuration ..................... 150 overflow servers ................................................................

.................................................................... 339 secret radius server .............................. 33..293 priority increment value (reals) for VRRP .........133 real server groups combining servers into ..................................361 restarting switch setup ....344. 186 security VLANs............289 removing optional software .................... 302 RTSP SLB statistics .. See IP subnets....................................... S save (global command) ............................................... serial cable .................................................... 369 receive flow control 32................................................................61 referenced port ...0 Command Reference proxy IP address (PIP) ......................................71 remote monitoring on the port (rmon) .............. 200................................................................................................. 233 route statistics ............. 254 routing information protocol configuration ............................................................. 187 Secure Shell ........... 387 Server Load Balancing IDS ....................286 real servers backup .....................................................................................................................131 real server global SLB statistics ...........................135 real server group global SLB statistics ....................229 rip IP route tag .........52............ See Routing Information Protocol................................................ 345 ptcfg (TFTP save command) ........................ 113 Q quiet (screen display option)............................................................................................................. 206......354 reset key combination ....................................... 145 rx flow control ........................ See IP subnets.........................................82 reboot ...........................274 SLB state information ..... 209........................29 retries radius server .135 real server group options add .......83 proxy IP address (PIP) configuration ............................................ 178 save command.187 read community string (SNMP option) ................................................................................... 354 round robin as used in gateway load balancing ..........................................................Alteon OS 21.................................................................... 339 scriptable health checks configuration ............................ 240 poisoned reverse ..187 retry health checks for default gateway ....296 RADIUS server menu ............. October 2003 ......................... 118 router hops ........... 69 options ................................................................................................361...................310 reference ports ........349 remote site servers ......................... 287 400 „ Index 315393-E................ 350 real server weights .................................292 real server group statistics ... 203..................................... segments.............. 275 roundrobin SLB Real Server metric .... 33 Rx/Tx statistics.......................................................... 240 Routing Information Protocol (RIP) .... 224 segmentation............................................................................................................................ 297 route cache configuration ........................... 177 noback option .... 290 operations-level options ....48 rmkey ................. 210 redir (SLB filtering option) ..................................................282 PVID (port VLAN ID) ......................................................................... 32......................................................................... 359 script health checks ......191 real server statistics ................................................ 91 pwd ...........48 R RADIUS server authentication ............................................................133 real server SLB configuration .............294 real server group SLB configuration...................................... 240 rport SLB virtual server option .................................... 240 version 1 parameters.... 187 secsrv secondary radius server .. 20 serial download ............... 240 split horizon ..............................................................................292 statistics ...69 RIP......... 295.....

..... 32.................................................................................................................................................................................................................................. 33 SFD statistics mp specific ..................................................................................... 191 SNMP Agent ....................... 340 HP-OpenView .................................................................................................................................................................................................... 321 server load balancing configuration options ................ 30 VLAN name ............... 33 VLANs .................. 365 SNMP ........................................................................................................................................................................................................................... 296 smtp ................... 311 smtp ................................ 50 single-mode ports ........ 28 stopping........... October 2003 Index „ 401 ............................... 295 http.............. 295 SNMP .................................................... 149 server port mapping .................................................................................... 288 maxcon (maximum connections) ............................ 295 ftp ....... 288 session identifier ...................... 284 Server Load Balancing Maintenance Statistics Menu ................... 383 SNMP health check configuration ...................................... SLB real server group health checks arp........................................................................................ 337 smask source mask for filtering .............................. 296 radius ........ 19 menu options ........................................... 287 slowage .......... 33 port speed ............................................ 294 health check types ........................................................ 287 restr (restore) SLB real server UDP option ........................................ 296 wtls ........................... 297 port options .........0 Command Reference server load balancing client traffic processing................... 27 BOOTP ................... 295 snap traces buffer ....................................... 19.................. 31 starting .......................... 296 sslh............ 281 setup facility ................... 296 wsp ........................................................................ 295 tcp ......... 31 duplex mode ............... 25............................... 292 health checking ......... 32 restarting .............................................. 34 VLAN port numbers ............................................................................................. 292 SLB real server option backup ................ 288 intr (interval) ..... 142....... 35 port auto-negotiation mode ....................... 292 metric ............................................................... 295 dns ............................................... 29 Spanning-Tree Protocol ....................................................................................... 310 SLB Information ............... configuration ................................................................................................................................................................................................. 288 retry ....... 34 VLAN tagging ........................................................................................... 180 SMTP server health checks .... 32 IP configuration ...... 82 server traffic processing ................................................................................................................... 35 IP subnet mask ...................................................... 162 SFP GBIC ports ........ 289 tmout (time out) ................................................... 204 shortcuts (CLI) ................................... 137 315393-E................................................................... 288 weights ...................................................................... 311 SLB filtering option action ...................................................... 202 SIP (source IP address for filtering) ........... 31 port flow control ............................... 300 setup configuration ................. 296 SNMP statistics ................ 321 Session Binding Table .............................................................................. 287 submac ........................................... 296 SLB real server group option application health checking ............. 295 imap ................................. 294 metrics ....................... 321 health check ...................... 96 health checks .......................................... 33 port configuration ................................... 30 system time .................................................................................................... 170 141........... 295 ldap .................... 296 script . 191 set and get access ......................................................... 287 name..Alteon OS 21............................. 281 setup command........... 340 SNMP health checks ........................................................................ 32..................... 295 udpdns ... 322 server traffic processing ....................................................................................... real server IP address ...................... 82 SLB layer7 statistics ...... 29 system date ...................................... 295 icmp . alias for each real server ............... 288 RIP................

.........................................................222 root bridge .............................................................230 statistics group ...........................................................................................28 state (STP information) .................................... 20 text conventions ...................................................................... 17 TFTP ................................. 50 TCP fragments ......................................35 subnets ............ 295 source and destination ports...303 secure socket layer statistics ..................................................................35 IP interface ..................................................................... 196 BOOTP ...................................................................228 subnet mask ........ 188......................158 Statistics Menu . 180 cur (current system parameters) ................................................................ 350 synchronization VRRP switch....162 spanning tree configuration......................................................356 SP specific statistics .......................................... 180 hprompt .29 subnet address maskconfiguration IP subnet address ................................. 196 login banner .... 220 setup (on/off) .................................................360 Switch Processor (SP)........................337 402 sync .....................222 port priority option .........................50 starting switch setup ................... 189 T tab completion (CLI) ................. 309 TCP statistics .......................................................365 display trace buffer .................221 bridge parameters ........ 357 PUT and GET commands ............... 125.................................... 193 tnport .......................................................................................63 state information........................................................................................... 180 HTTP access ......0 Command Reference SNMP Support optional setup for SNMP support ........................................................................63 port cost option ...... 51..........................365 swkey ..............360 split horizon ............................................. 180 tnet............................................................................................................................................353 software image .240 statis route add ...353 SYN attack detection configuration ....................................................................................................230 static routes Routing Information Protocol (RIP) ............. 189 date ............................................................................................ 350 syslog system host log configuration ................69 static route rem ............. 282 TFTP server .......................Alteon OS 21.....53 license .... 282 „ Index 315393-E....... 193 System Maintenance Menu ................... 300 health checking using ................................ 21 configuring switches using .................... 149..........................................................................39 software image file and version ...............................63..................220 bridge priority ................................................... 180 time.... 53 location (SNMP option) ................................................... 363 system options admpw (administrator password) ............... 193 usrpw (user password) .............................................................................................................................228 switch resetting ................218 Spanning-Tree Protocol ........................................................................95 stopping switch setup........ current ..................................................64.................. 161 Telnet ...............................................................31 switch reset effect .....240 SSL .............. 39 terminal emulation ................................................. 195 system parameters....................... 193 l4apw (Layer 4 administrator password) ................. October 2003 ................... 288 health checks .................................................... 181 system contact (SNMP option) .................. 191 date and time ............................... client system......................133 management processor ....................................................................................... 177 bridge aging option .............................................................. 187 Telnet support optional setup for Telnet support ...................... 333........................................................ 188................................................... 281 telnet radius server .....................................141 stacking commands (CLI) ........................................................ 191 system access control configuration....................................................303 static IP route tag ............... 21 BOOTP ...

..... when used for NAT ............................. 133 virtual servers ............................... 82 virtual port state........................ 83 user account ....................................... DNS response (global SLB menu option) V verbose .................................................................................. 33 323 tnet system option ..... 225 setup............................. 32..................... manual .............................................0 Command Reference time setup .......... 272 HSRP priority increment value ........................... 198... 271 Virtual Router Redundancy Protocol (VRRP) authentication parameters for IP interfaces .............................. 203................. 205............ 263 priority increment values (vrs) for VRRP ................................................. 273 group options (prio) ............... 323 tx flow control.............. 365 traceroute....................... 161 UDP datagrams ...... 336 trace buffer ....................... 82 statistics ........................................ authentication ................ 264 Virtual Router Redundancy Protocol configuration 260 virtual router sharing ........ 30 system option ....... 365 Switch Processor ...... 244 type parameters ................... 309 UDP statistics ...................................................................................... 274 virtual server global SLB statistics ........... 241 IP route tag ................................. 126 unknown (UNK) port state ............................................... 368 315393-E.............................. 33 type of area ospf.................... 209.... 187 timeouts idle connection ............................................. 202........................................ 82 virtual router description .................... 61 Unscheduled System Dump ........................ 270 tracking criteria ........................................................ 269 virtual router group configuration .... 180 timeout radius server ............... 193 TPCP (Transparent Proxy Cache Protocol) ............................... 64 ttl (time to live......... 270 operations-level options . 206.............. 310 Trunk Group Information ...................................... 265............... 274 HSRV....................... 271 configuration .......................................... 17 tzone ...Alteon OS 21.............................. October 2003 Index „ 403 ....... 270 virtual routers HSRP failover ................... 264 virtual router group VRRP priority tracking ............................................ 69 virtual IP address (VIP) .......................... 263 priority tracking options .................................................................................................................................. global SLB menu option) ....................................... 188 U UCB statistics ...... 68 typographic conventions.... 33.............................. 25 timers kickoff........... 193 tnport system option .......... 267 incrementing VRRP instance ......................... 266 transmit flow control32.................. 275 increasing priority level of ......................... 253............. 356 URL for health checks ........................ 269 virtual router group priority tracking ..................... 264.. 149 server status using .................................................................................................................................................................................................................................... 133 VLAN active port .............. 195 Uuencode Flash Dump ........................................... 135 virtual server SLB statistics .......... 271 priority......................... 48 vip advertisement of virtual IP addresses as Host Routes ........ 370 upgrade......................................................................................... 272 HSRV priority increment value ... 48 Tracking VRRP ......................................................................................... 24 usrpw (system option) .............. 115 time-to-live................................. switch software ................................................................................................... 224 VLAN tagging port configuration......... 262......... 210 transparent proxies................................ 262 master mode ...................... 351 password........................................ 200....................... 294 SLB state information . 270 master preemption (prio) ....................... 208 port restrictions .................................. SLB information about ......... 273 priority election for the virtual router .... 265 master preemption (preem) ............................................ 288 source and destination ports ................................................................

.........35 ARP entry information ............ X XModem ..262............................. 342 WAP health check configuration ...33 Spanning-Tree Protocol ..340...........341 WAP SLB statistics ...............218 name ........................................340.........................270 VRRP statistics ...................................................................274 virtual router sharing ................65 VRID (virtual router ID) ...............Alteon OS 21.70 broadcast domains ...............................340.............218 tagging ................. 204........... 342 404 „ Index 315393-E. 341 wtlsprt ....79 VRRP master advertisements time interval ............................341 WAP health check wspport ....................................224 setting default number (PVID) .......................... 65 port numbers ..................................................................273 master advertisements ................263 VRRP Information .......................................................298 setting virtual router priority values ...... 65 name setup..................................................................................... 269 VRRP interface configuration ........ 341 wtlsprt WAP health check ...........................................34 security ....................................59.........................361 web-based management interface.................................................274 write community string (SNMP option) .........36 multiple spanning trees ..........191 wspport WAP health check .........................33.........................................................................59......................................................................... 266 tracking configuration ......................224 information .................................................... 52....................... 387 207 setup .......................64 interface .34 port membership.............................. 225 VLAN Number ................................................ October 2003 ...................................... 91..............................262..................263 tracking .................... 202.................340..........120 W WAP health checks ..............................................198.................................0 Command Reference VLANs ................................................................................................................19 weights for SLB real servers ..................................147 watchdog timer .

Sign up to vote on this title
UsefulNot useful