Beruflich Dokumente
Kultur Dokumente
Command Reference
Release 1.9
THE PRODUCT INFORMATION PRESENTED WITHIN THIS DOCUMENT IS SUBJECT TO CHANGE WITHOUT NOTICE. ALL PRODUCT INFORMATION IS BELIEVED TO BE ACCURATE, BUT IS PROVIDED WITHOUT WARRANTY OF ANY KIND, EXPRESSED OR IMPLIED. NETSOCKET, INC. ACCEPTS NO RESPONSIBILITY FOR USERS SPECIFIC APPLICATION OF THE PRODUCT(S) FEATURED WITHIN THIS DOCUMENT. NEITHER NETSOCKET, INC. NOR ITS SUPPLIERS SHALL BE LIABLE FOR DAMAGES OF ANY KIND, INCLUDING, BUT NOT LIMITED TO, LOSS OF DATA OR REVENUE, ARISING FROM THE USE OF THE FEATURED PRODUCT(S) AND ASSOCIATED INFORMATION PRESENTED WITHIN THI S DOCUMENT.
NETSOCKET INC., CONFIDENTIAL THE INFORMATION CONTAINED IN THIS DOCUMENT IS THE PROPERTY OF NETSOCKET. EXCEPT AS SPECIFICALLY AUTHORIZED IN WRITING BY NETSOCKET, THE HOLDER OF THIS DOCUMENT SHALL KEEP THE INFORMATION CONT AINED HEREIN CONFIDENTIAL AND SHALL PROTECT SAME IN WHOLE OR IN PART FROM DISCLOSURE AND DISSEMINATION TO THIRD PARTIES AND USE SAME FOR EVALUATION, OPERATION AND MAINTENANCE PURPOSES ONLY. THE CONTENT OF THIS DOCUMENT IS PROVIDED FOR INFORMATION PURPOSES ONLY AND IS SUBJECT TO MODIFICATION. IT DOES NOT CONSTITUTE ANY REPRESENTATION OR WARRANTY FROM NETSOCKET AS TO THE CONTENT OR ACCURACY OF THE INFORMATION CONTAINED HEREIN, INCLUDING BUT NOT LIMITED TO THE SUITABILITY AND PERFORMANCES OF THE PRODUCT OR ITS INTENDED APPLICATION.
NetSocket 2012
Table of Contents
1 Introduction ................................................................................................................................ 1-1 1.1 1.2 1.3 1.4 2 About the Document ........................................................................................................ 1-1 Audience .......................................................................................................................... 1-1 How to Get Help .............................................................................................................. 1-1 Product Documentation ................................................................................................... 1-1 Session2Topology Correlation ..................................................................................... 2-1 SVM ................................................................................................................................. 2-2 SVP .................................................................................................................................. 2-2 SVA .................................................................................................................................. 2-2 2.4.1 2.4.2 2.5 3 SVA Standard IP MOS Monitoring ...................................................................... 2-3 SVA IP MOS Plus Analogue ............................................................................... 2-3
Initial System Access ................................................................................................................ 3-1 3.1 3.2 3.3 3.4 1U Server......................................................................................................................... 3-1 2U Server......................................................................................................................... 3-2 CLI Access using the Default IP Address ........................................................................ 3-2 CLI Access using the Serial Ports ................................................................................... 3-3 3.4.1 3.4.2 3.5 System Serial Ports ............................................................................................. 3-3 Accessing the CLI from a Serial Port .................................................................. 3-4
CLI Basics ................................................................................................................................. 4-1 4.1 Command Structure ........................................................................................................ 4-1 4.1.1 4.1.2 4.1.3 4.2 4.2.1 4.2.2 Command Classes .............................................................................................. 4-1 Command Modes ................................................................................................ 4-1 Command Syntax ................................................................................................ 4-3 CLI Functions ...................................................................................................... 4-4 CLI Customization ............................................................................................... 4-7
Introduction
The NetSocket solution consists of the Service Visibility Manager (SVM), the Service Visibility Point (SVP), and the Service Visibility Analyzer (SVA). This document provides basic description of the SVM, SVP, and SVA, as well as a web-based Graphical User Interface (GUI) called the SVM Dashboard.
1.1
1.2
Audience
The Command and Configuration Guide is intended for the individuals tasked with the turn-up and configuration of the SVM, SVP, and SVA in the providers network.
1.3
1.4
Product Documentation
Following is the list of all documents included into the product documentation suite: Software Release Notes Installation Guide contains installation procedures. User Guide contains description and explanation of the SVM, SVP, and SVA functionality. The User Guide is intended for SVM Dashboard users. Command and Configuration Guide contains CLI command definitions and configuration examples. SVM SNMP Reference contains information about NetSockets proprietary MIBs and SNMP Traps.
1-1
System Overview
The NetSocket Visibility Solution provides real-time IP service assurance in Fixed Mobile Convergence (FMC), IP MPLS, and Enterprise environments by performing Session2Topology correlation for real-time IP services such as VoIP and Video. The solution consists of three system types: The Service Visibility Manager (SVM) is an element management system for the SVPs and SVAs. The SVM provides a web based GUI, called the Dashboard, used to monitor the NetSocket Visibility Solution. The Service Visibility Point (SVP) is a server appliance that monitors the layer-3 IP network and the layer-4 session signaling. The Service Visibility Analyzer (SVA) is a server appliance that monitors and analyzes RTP media streams associated with the sessions monitored by the SVP. The NetSocket Visibility Solution works in a hierarchical model where one SVM monitors one or more SVPs and an SVP can monitor zero or more SVAs. After the initial configuration, the user accesses and monitors the entire solution via the SVM Dashboard. This chapter provides a functional overview of the SVM, the SVP and the SVA. The following topics are covered within this chapter: Session2Topology Correlation SVM SVP SVA SVM Dashboard
2.1
Session2Topology Correlation
As the name suggests, this key technology automatically correlates the real-time state and changes in the IP network to the individual sessions being carried through that network. In real-time, the NetSocket solution knows the exact hop-by-hop path of any session, and can identify what network event has impacted, or is impacting, that session. Further, this same knowledge is used to proactively alert the service manager to changes in network configuration that can impact the traffic on the network. Unique aspects of the Session2Topology correlation engine include: Works in real time to create a service assurance mashup, providing a dynamic "map" of the network onto which media and application/service information is correlated. Monitors the network without imposing any burden on the deployed network nodes, such as routers; it passively participates in the routed network using standard IP routing protocols.
The results of the Session2Topology correlation are presented in the Quality of Session Record (QSR).
2-1
System Overview
2.2
SVM
The Service Visibility Manager is a management node for the SVPs and SVAs deployed in a network. For each application, the SVM provides metrics applicable to that application. In addition, the SVM provides Fault, Configuration, Accounting, Performance, and Security (FCAPS) management for the SVPs deployed. The SVM receives operational information from all the SVPs within the network, which is then displayed on the SVM Dashboard. An industry compatible Command Line Interface (CLI) is also supported by the SVM. The CLI is used for configuration and maintenance. A user can access the CLI remotely through the SVMs Ethernet ports, or locally through the console serial ports. Remote CLI access is through SSH or Telnet. CLI access authentication and authorization can be enabled via RADIUS or TACACS+. Further, the solution allows a user to configure access lists to filter incoming or outgoing traffic on any interface. SNMP traps can be used to provide the operators NMS/OSS with SVM fault/alarm information. The SVM supports SNMP v1 and v2c for this purpose.
2.3
SVP
The Service Visibility Point provides a way to monitor user traffic (i.e., sessions) in a routed IP network, giving carriers the power to understand how these sessions traverse their IP networks. It determines the paths taken by sessions through an IP network, stores information pertaining to the sessions, and provides real-time and historical operational statistics for the network. With this understanding, service providers can quickly identify and rectify issues, increase operational efficiency, and improve customer satisfaction. The SVP learns network topology and status of available network resources by using standard IP routing protocols, such as OSPF and BGP, and by collecting information from the monitored routers using SNMP and CLI. The SVP passively monitors signaling information exchanged with the session control node (e.g., Femtocell Gateway in a Femtocell deployment, a Call Controller in a VoIP deployment, etc.) to obtain real-time session information. This information is correlated to the IP network topology monitored in real-time by the SVP. This correlation is called Session2Topology correlation, and is key to the network visibility provided by the NetSocket solution. As sessions are established and released, the SVP maintains operational metrics about each session. If these metrics deviate outside the normal operational range (based on user defined thresholds), the SVP alerts the Operations team of potential problems and provides a list of affected sessions. This allows proactive management of the network and can significantly reduce the Mean Time to Isolate (MTTI) in problem resolution.
2.4
SVA
The Service Visibility Analyzer analyzes voice and video RTP streams associated with the sessions monitored by an SVP. Each SVA provides four 10/100/1000 Ethernet monitoring interfaces or two 10-Gigabit Ethernet monitoring interfaces. The SVA can be deployed with two different monitoring configurations: standard IP MOS monitoring and IP monitoring plus analogue analysis.
2-2
System Overview
2.4.1
2.4.2
2.5
SVM Dashboard
The SVM contains a web server to enable access to the SVM Dashboard using industry standard web browsers such as Firefox and Internet Explorer. The Dashboard can be accessed from any personal workstation within an operators network where the SVM is deployed. It presents information about the SVM-monitored domain in an easily understood and meaningful format and allows a user to run various searches and reports, while analyzing a network issue. The SVM Dashboard presents information about SVPs, SVAs and the operators network in both tabular and graphical formats.
2-3
3.1
1U Server
Letter A B C D
Description Serial port VGA connector USB ports Management interface (nnet0)
3-1
3.2
2U Server
Letter A B C D E F
Location Front Panel Front Panel Rear Panel Rear Panel Rear Panel Rear Panel
Description Serial port USB port Serial port VGA connector USB ports Management interface (nnet0)
3.3
3-2
3.4
3.4.1
Pin 1 2 3 4 5 6 7 8
Signal RTS (Request to Send) DTR (Data Terminal Ready) TXD (Transmit Data) GND RIA (Ring Indicator) RXD (Receive Data) DSR/DCD (Data set Ready / Data Carrier Detect CTS (Clear to Send)
To connect a PC to the system a RJ-45 to DB-9 adapter will be required. The pinout for this adapter is provided in the table below.
Table 3-4 - RJ-45 to DB-9 Adapter Pinout
SVM/SVP/SVA RJ-45 Serial Port Signal RTS DTR TXD GND RIA RXD DSR/DCD CTS Pin 1 2 3 4 5 6 7 8 Pin 8 6 2 5 5 3 4 7
PC DB-9 Serial Port Signal CTS DSR RXD GND GND TXD DTR RTS
The serial port on the NetSocket servers has the same pinouts as Cisco routers and switches. Therefore, console cables that can be used to connect to a Cisco device may also be used to connect to a NetSocket server. Note that the NetSocket serial port uses a higher baud rate than Cisco devices as shown in the table below.
3-3
The following table provides the terminal settings used to connect to the serial ports.
Table 3-5 - Serial Port Terminal Settings
Setting Baud Rate Data Bits Parity Stop Bits Flow Control
3.4.2
3.5
3-4
4
4.1
CLI Basics
This chapter provides information about the Command Line Interface (CLI) used to provision the NetSocket SVP, SVA, and SVM.
Command Structure
In its basic form, a CLI command can be thought of as a single-word command followed by possible mandatory or optional keywords and arguments. However, when forming names of CLI commands for documentation purposes, the single-word command is often combined with mandatory keyword choices to produce one or more commands. For example, the show alarms and show aliases CLI commands are documented as two separate commands instead of a single show command with alarms and aliases as keyword choices. This breakdown of large commands into smaller units is done so that the resulting commands can be more effectively located and understood by the user of the documentation.
4.1.1
Command Classes
The CLI command set is comprised of three classes of commands: Configuration, Monitoring, and Operations. The Configuration class of commands includes all commands that allow a user to create, modify, or delete persistent configuration information within the SVP, SVA, and SVM. Configuration commands are available within various configuration command modes. The Monitoring class of commands includes all commands that allow a user to retrieve configuration and status information from the system. Monitoring commands are available entirely within the EXEC command mode. The Operations class of commands includes all commands that allow a user to initiate specific functions of the system, but not to change any configuration information. Operations commands are available entirely within the EXEC command mode.
4.1.2
Command Modes
The CLI contains a hierarchical structure for accessing commands. Sets of commands are available within different command modes located at various levels within the hierarchical structure. The left column of the following table lists the names of all supported command modes. For configuration command modes that vary the set of commands available depending upon the type of object being configured, a command mode qualifier is also specified as part of the command mode. The command mode qualifier is simply the name for the type of object being configured, enclosed within parentheses. By default, the CLI prompt indicates the current command mode. The right column lists the CLI default prompt values for each command mode. The contents of the CLI prompt can be customized using the prompt command.
4-1
CLI Basics
Command Mode User EXEC Privileged EXEC Global Configuration Address Family Configuration (at-type) Flow Aggregation Cache Configuration Interface Configuration (entity-type) IP Extended Access-List Configuration IP Standard Access-List Configuration Route-Map Assign Route-Map Configuration Router Configuration (protocol) Session-Thresholds Subinterface Configuration (entity-type) Traceoptions Configuration Topology Map Topology Map Router Router> Router# Router(config)#
Prompt
Router(config-router-af)# Router(config-flow-cache)# Router(config-if)# Router(config-ext-nacl)# Router(config-std-nacl)# Router(route-map-assign)# Router(config-route-map)# Router(config-router)# Router(config- session-threshold) Router(config-subif)# Router(config-traceoptions)# Router (config-topology-map)# Router (config-topology-map-router)#
When establishing a connection with the CLI, the user is placed in the EXEC command mode. The EXEC command mode has 16 possible privilege levels (ranging from 0 to 15), but by default, the user starts at privilege level 1, or the User level. When at the User level, the EXEC command mode is referred to as the User EXEC Mode. The User EXEC Mode has a limited set of commands made available to the user. To gain access to additional commands at a higher privilege level, the user enters the enable command (followed by a password if configured). As an initial system default, all commands not available at the User level are available at privilege level 15, referred to as the Privileged level. When at the Privileged level, the EXEC command mode is referred to as the Privileged EXEC Mode. Once the user is in the Privileged EXEC Mode, all other command modes are accessible. The Global Configuration Mode can be used to configure items that are of a non-specific nature. From the Privileged EXEC Mode, the user enters the configure command to move to the Global Configuration Mode. From the Global Configuration Mode, a number of specific configuration modes can also be reached by entering the specific configuration mode entry command. For example, the Controller Configuration Mode can be reached from the Global Configuration Mode by entering controller (followed by a controller entity-name). By using a small set of commands, a user can move from one command mode to another. For a complete list of all mode navigation commands, see the following table.
4-2
CLI Basics
From I To from EXEC to User EXEC (creates a new session) from User EXEC to Privileged EXE from Privileged EXEC to User EXEC (creates a new session) from Privileged EXEC to Global Configuration from Global Configuration to any configuration mode from any configuration mode to Global Configuration from any configuration mode to back one mode from any configuration mode to Privileged EXEC from Privileged EXEC to User EXEC from any EXEC mode to log off router exit (config) end disable (EXEC) login enable login configure
Command
4.1.3
Command Syntax
As an aid in conveying CLI syntax requirements, command syntax conventions have been adopted within the command documentation. These syntax conventions are summarized below.
Table 4-3 - Syntax Conventions
Syntax Convention bold italics output In Progress ... a [a] ... I * [a]...
Description Bold indicates keywords input exactly as shown Italic type indicates arguments that must be supplied by the user Non-proportional font indicates output from the router Output message indicates the entered command is in progress Nothing indicates required keyword, argument, or combination Brackets indicate optional keyword, argument, or combination Ellipsis, pipe, and asterisk indicate operators of an expression Brackets followed by an ellipsis indicate optional one or more unique instances of an argument, expression, or combination
4-3
CLI Basics
{a}...
Braces followed by an ellipsis indicate required one or more unique instances of an argument, expression, or combination
[a I b] {a I b}
Brackets separated by one or more pipes indicate optional choice of a keyword, argument, expression, or combination Braces separated by one or more pipes indicate required choice of a keyword, argument, expression, or combination
*[a I b]
Brackets preceded by an asterisk and separated by one or more pipes indicate optional one or more non-ordered choices of a keyword, argument, expression, or combination Braces preceded by an asterisk and separated by one or more pipes indicate required one or more non-ordered choices of a keyword, argument, expression, or combination
*{a I b}
4.2
4.2.1
CLI Fundamentals
CLI Functions
The CLI allows unique abbreviations to be substituted within commands in place of fully entered keywords (and certain arguments). This function is merely a time-saving feature to be used or not used by preference of the user. The CLI provides command-line help functions to assist the user in forming valid command input. The following table summarizes the available command-line help functions and how to access them. Note that help is only offered for the commands that are valid within the current command mode.
Table 4-4 - Command-Line Help
Help Function Show command-line help information Show a list of all available commands Show commands starting with given input Show available keywords and arguments Auto-complete command or keyword
How to Access Type help and then the enter key Type ? Type ? after entering input Type a command, a space, and then ? Type first letter(s) and then the tab key
The CLI provides a set of command-line editing functions. These functions are invoked by special key combinations. A list of these key combinations and corresponding functions is shown below. Note that a dash (-) means two keys must be pressed at the same time.
4-4
CLI Basics
Key Combination Ctrl-a {Ctrl-b I lt arrow} Ctrl-e {Ctrl-f I rt arrow} {del I backspace} Ctrl-d Ctrl-k {Ctrl-u I Ctrl-x} Ctrl-w Ctrl-t {Ctrl-p I up arrow} {Ctrl-n I dn arrow}
Function Move cursor to the start of the line being edited Move cursor backward one character (to the left) Move cursor to the end of the line being edited Move cursor forward one character (to the right) Delete character to the left of the cursor Delete character directly under cursor Delete characters from the cursor to the end of the line being edited Delete characters from the cursor to the start of the line being edited Delete entire word to the left of the cursor Transpose character under the cursor with the character to the left Display older command within the command history buffer Display newer command within the command history buffer
The CLI provides the capability within all show commands to filter out certain lines in the output based on matching a regular expression string. By simply appending the output modifier syntax shown in the following table to the normal show command syntax, the corresponding filter function can be applied. Note that the reg-exp (regular expression) argument of the output modifier syntax is case sensitive. If the regular expression string includes one or more spaces to be used in the filtering criteria, parentheses must be used as delimiters.
Table 4-6 - Show Output Filtering
Function Display show output beginning at line matched by reg-exp string Display show output including all lines matched by reg-exp string Display show output excluding all lines matched by reg-exp string
The CLI provides the capability to enter and display numeric constants using multiple formats based on special prefixes applied to the constant. The following table shows the prefixes understood by the CLI and the corresponding meaning.
Table 4-7 - Numeric Constant Prefixes
Prefix (none) 0 0x
Meaning Numeric constant is interpreted as decimal (base 10) Numeric constant is interpreted as octal (base 8) Numeric constant is interpreted as hexadecimal (base 16)
4-5
CLI Basics
While displaying output that exceeds the length of a single display screen, the CLI provides a paging capability that allows entry of various paging-related commands. These CLI paging commands are listed below.
Table 4-8 - Paging Commands
Command :help [n] {f I Ctrl-f I space} [n] {b I Ctrl-b} [n] {j I cr} [n] k [n] {d I Ctrl-d} [n] {u I Ctrl-u} [n] g {r I Ctrl-l} [n] Ipattern [n] I!pattern [n] ?pattern [n] ?!pattern [n] n [n] N {= I Ctrl-g} {q I :q I ZZ}
Function Display paging command help Forward n lines, default one screen Backward n lines, default one screen Forward n lines, default one line Backward n lines, default one line Forward n lines, default half screen or last n Backward n lines, default half screen or last n Go to line n, default line 1 Repaint screen Search forward for nth line containing the pattern Search forward for nth line not containing the pattern Search backward for nth line containing the pattern Search backward for nth line not containing the pattern Repeat previous search (for nth occurrence) Repeat previous search other direction (for nth occurrence) Display current status Exit
Finally, the CLI provides many powerful utilities that can be accessed by the user. These CLI utilities are listed below.
Table 4-9 - Utility Commands
Utility Sends an asynchronous user message to another user Opens a telnet connection with a remote host Sends an asynchronous user message to all users
4-6
CLI Basics
4.2.2
CLI Customization
Some aspects of the CLI can be modified to accommodate the individual needs of the user. The CLI commands and corresponding functions that provide this level of CLI customization are listed below.
Table 4-10 - CLI Customization Commands
Command alias banner enable banner exec banner login banner motd enable password exec-banner exec-timeout motd-banner privilege level prompt terminal history terminal length terminal monitor terminal width
Function Sets a command alias to be used instead of an original command Sets a message to display upon enabling to a new privilege level Sets a message to display after user login Sets a message to display before user login Sets a message of the day (MOTD) message Sets a password to control access to a specified privilege level Enables both the EXEC and message of the day (MOTD) banners Sets the EXEC time-out period Enables the message of the day (MOTD) banner Assigns a privilege level to a command Enables a custom prompt string to be configured Enables the command history feature or sets the command buffer size Sets the number of display lines per screen Enables output of debug and error messages Sets the number of characters per display line
4-7
5-1
Sends an accounting notice only when a process ends. Include the TACACS+ method.
5-2
Parameters Parameter default Description Use the list of authentication methods that follow to create the default list.
Include the local user name database method. Include the RADIUS servers method. Include the TACACS+ servers method.
Mode Global Configuration Guidelines If the default login AAA authentication method list does not exist, the local user name database is used as the default login AAA authentication method list.
default
local
5-3
tacacs+
Mode
5-4
Global Confguration Guidelines If the default EXEC shell AAA authorization method list does not exist, the local user name database is used as the default EXEC shell AAA authorization method list.
aar
Average Active Registrations (AAR) is an average number of active registrations. The command replaces the existing settings for the intervals specified. This alert can be used if a known minimum number of registrations is expected. The no form of the command with no arguments disables the AAR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the AAR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold. Syntax aar {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no aar {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If number of active tunnels is less than this value, alert will set. If number of active tunnels is greater than or equal to this value, alert will clear. 0 to 300,000 where 00 implies off. 00 to 300,000 Type/Range Default None None None None 0
clear
5-5
aat
Average Active Tunnels (AAT) is an average number of active tunnels. This alert can be used if a known minimum number of tunnels expected. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the AAT alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the AAT alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold. Syntax aat {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no aat {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If number of active tunnels is less than this value, alert will set. If number of active tunnels is greater than or equal to this value, alert will clear. 0 to 300,000 where 00 implies off. 00 to 300,000 Type/Range Default None None None None 0
clear
access-list (extended)
5-6
Creates an extended access-list. If no sequence number or matching clause is specified, the no form of this command deletes the entire access-list; otherwise, only the access-list clause specified by the sequence number and/or matching clause is deleted. Syntax access-list access-list-id [seq sequence-number] {{deny | permit} {protocol | ip} {sourceipaddress source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments] | remark string} [class-map class-map-name] no access-list access-list-id [seq sequence-number] [{deny | permit} {protocol | ip} {sourceipaddress source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments] | remark string] [class-map class-map-name] Parameters Parameter access-list-id sequence-number Description Alphanumeric name string (40 characters maximum) of the extended access-list being defined. Unique sequence number of the deny, permit, or remark clause being added to (or deleted from) the access list; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access list. Access is denied for the source and destination addresses specified. Access is permitted for the source and destination addresses specified. Name or number of an internet protocol, or symbol-name as defined in define ipprotocol, valid protocol numbers are 0 to 255 (SVP option only). Any IP protocol. Access is denied or permitted for packets originating from this source IP address and wildcard mask combination. Access is denied or permitted for packets originating from any source IP address. Access is denied or permitted for packets originating from this source IP address host. Access is denied or permitted for packets sent to this destination IP address and wildcard mask combination. Access is denied or permitted for packets sent to any destination IP address. Access is denied or permitted for packets sent to this destination IP address host.
ip source-ip-address sourcewildmask any host source-ip-address dest-ip-address destwildmask any host dest-ip-address
5-7
dscp-value
DSCP value to be matched, range is 0 to 63, or a wellknown DSCP name, or symbol-name if defined in define dscp. Precedence level to be matched, valid entries are 0 to 7, or a well-known precedence name, or symbol-name if defined in define ip-precedence. Service level to be matched, range is 0 to 15, or a wellknown ToS name (SVP option only). Specifies that information about matching packets will be sent to the console. Specifies that the input interface is to be included in the log. Specifies that packets in IP datagram fragments are to be matched (SVP option only). Text about or explanation of the access-list, up to 100 characters long. Name of an existing class-map (created with class-map command) to which the access-list is being applied.
precedence-value
5-8
Parameters Parameter icmp-type icmp-subcode Mode Global Configuration Description ICMP name or code to be matched, range is 0 to 255, or symbol-name may be used if defined in define icmp-code. ICMP subcode to be matched, range is 0 to 255.
5-9
See the access-list (extended) command for other descriptions of inputs that are common between the access-list family of commands. Syntax access-list access-list-id [seq sequence-number] {{deny | permit} {6 | tcp} {source-ipaddress source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-tcp-port | range source-tcp-port1 source-tcp-port2] {dest-ip-address dest-wildmask | any | host dest-ipaddress} [{eq | gt | lt | neq} dest-tcp-port | range dest-tcp-port1 dest-tcp-port2] *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments | ack | established | fin | psh | rst | syn | urg] | remark string} [class-map class-map-name] no access-list access-list-id [seq sequence-number] [{deny | permit} {6 | tcp} {sourceipaddress source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-tcp-port | range source-tcp-port1 source-tcp-port2] {dest-ip-address dest-wildmask | any | host destipaddress} [{eq | gt | lt | neq} dest-tcp-port | range dest-tcp-port1 dest-tcp-port2] *[dscp dscpvalue | precedence precedence-value | tos tos-value | {log | log-input} | fragments | ack | established | fin | psh | rst | syn | urg] | remark string] [class-map class-map-name] Parameters Parameter eq gt lt neq range source-tcp-port dest-tcp-port ack established fin psh rst syn urg Mode Global Configuration Description Specifies that port must be equal to a value. Specifies that port must be greater than a value. Specifies that port must be less than a value. Specifies that port must be not equal to a value. Specifies that port must be within a range of values. Decimal number or well-known name of the source TCP port, or symbol name if defined in define tcp-port. Decimal number or well-known name of the destination TCP port, or symbol name if defined in define tcp-port. TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only). TCP flag to be matched (SVP option only).
5-10
access-list sequence-enable
Enables the display of sequence numbers when showing access-lists. The no form of this command disables the display of sequence numbers when showing access-lists (default).
5-11
This command does not affect access-list commands displayed within running configuration output. Sequence numbers are not displayed within running configuration output. Syntax access-list sequence-enable no access-list sequence-enable Mode Global Configuration
access-list (standard)
Creates a standard access-list. If no sequence number or matching clause is specified, the no form of this command deletes the entire access-list; otherwise, only the access-list clause specified by the sequence number and/or matching clause is deleted. Syntax access-list access-list-id [seq sequence-number] {{deny | permit} {ip-address [wildmask] | any | host ip-address} [log] | remark string} [class-map class-map-name] no access-list access-list-id [seq sequence-number] [{deny | permit} {ip-address [wildmask] | any | host ip-address} [log] | remark string] [class-map class-map-name] Parameters Parameter access-list-id sequence-number Description Alphanumeric name string (40 characters maximum) of the standard access-list being defined. Unique sequence number of the deny, permit, or remark clause being added to (or deleted from) the access list; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access list. Access is denied for the source addresses specified. Access is permitted for the source addresses specified. Access is denied or permitted for packets originating from this source IP address and wildcard mask combination (if wildcard mask is not specified, 0.0.0.0 is assumed). Access is denied or permitted for packets originating from any source IP address. Access is denied or permitted for packets originating from this source IP address host.
5-12
Specifies that information about matching packets will be sent to the console. Text about or explanation of the access-list, up to 100 characters long. Name of an existing class-map (created with class-map command) to which the access-list is being applied.
acd
Average Call Duration (ACD) is an average duration of successfully connected calls from the beginning of the call request to the release of the call. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ACD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the ACD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold. Syntax acd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no acd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is less than this value, alert will set. 0 to 600 where 00 implies off. Type/Range Default None None None None 0
5-13
clear
Value of duration in seconds is greater than or equal to this value, alert will clear.
00 to 600
acdd
Average Call Disconnect Delay (ACDD) is an average delay for VoIP sessions measured from the release request to the acknowledgement. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ACDD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the ACDD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Average Call Disconnect Delay. The set threshold must be greater than or equal to the clear threshold. Syntax acdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no acdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is greater than this value, alert will set. 0 to 600 where 00 implies off. Type/Range Default None None None None 0
5-14
clear
Value of duration in seconds is less than or equal to this value, alert will clear.
00 to 600
add
Average Data Duration (ADD) is an average duration of successfully established data sessions. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ADD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the ADD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Average Data Duration. The set threshold must be less than or equal to the clear threshold. Syntax add {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no add {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is less than this value, alert will set. Value of duration in seconds is greater than or equal to this value, alert will clear. 0 to 300 where 00 implies off. 00 to 300 Type/Range Default None None None None 0
clear
5-15
address-family ipv4
Enables IPv4 address family based running configuration on the RCP and enters into the specified Address Family Configuration Mode. The no form of this command does a no activate command on all peers and peer groups in the address family, removes all peers from their peer groups, and clears out all the attributes from peers. Syntax address-family ipv4 [multicast | [unicast] [vrf vrf-name]] no address-family ipv4 [multicast | [unicast] [vrf vrf-name]] Parameters Parameter ipv4 multicast unicast vrf-name Description Specifies IP version 4 Specifies Multicast mode. Specifies Unicast mode (default). Alpha-numeric-symbolic name for the VRF the address-family information is associated with, range is 1 to 40 characters.
Mode Router Configuration (BGP) Guidelines Once address family based running configuration is enabled on the RCP, it cannot be disabled.
address-family (traceoptions)
Enables debug messages of specified BGP address family names to be placed in the trace file. The no form of this command disables debug messages of specified BGP address family names (or all names if none specified) from being placed in the trace file (default). Syntax address-family {family-name}... no address-family [family-name]...
5-16
Parameters Parameter family-name Description Family name of BGP address family, either ipv4 unicast or ipv4 multicast.
alias
Creates a command alias for a specified command within a specified command mode. The no form of this command deletes a specified command alias within a specified mode or deletes all command aliases within a specified mode. Syntax alias mode command-alias command no alias mode [command-alias [command]] Parameters Parameter mode Description {address-family | configure | controller | cos-queue-group-in | cos-queuegroupout | exec | flow-cache | interface | ipexplicit-path | ipenacl | ipsnacl | line | path-attr | policy-list | protmon | QoSclassmap | QoSpolicymap-in | QoSpolicymap-out | QoSpolicymapclassin | QoSpolicymapclass-out | route-map | router | subinterface | traceoptions}. Address Family Configuration Mode. Global Configuration Mode. EXEC mode. Flow aggregation Cache Configuration Mode. Interface Configuration Mode. IP Explicit Path Configuration Mode. IP Extended Access-List Configuration Mode.
5-17
ipsnacl line path-attr policy-list protmon route-map router subinterface traceoptions Mode Global Configuration
IP Standard Access-List Configuration Mode. Line Configuration Mode. Path Attribute Configuration Mode. IP Policy List Configuration Mode. Protection Monitor Configuration Mode Route-Map Configuration Mode. Router Configuration Mode. Subinterface Configuration Mode. Traceoptions Configuration Mode.
apdd
Average Post Dial Delay (APDD) is an average delay for VoIP sessions measured from the call request to ringing. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ACRD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the APDD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax apdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no apdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. Type/Range Default None None None
5-18
interval4 set
set/clear thresholds for fourth interval of the day. Value of duration in seconds is greater than this value, alert will set. Value of duration in seconds is less than or equal to this value, alert will clear. 0 to 600 where 00 implies off. 00 to 600
None 0
clear
ard
Average Registration Delay (ARD) is the average delay for VoIP applications for registration delay duration. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ARD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the ARD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Average Registration Delay. The set threshold must be greater than or equal to the clear threshold. Syntax ard {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no ard {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Type/Range Default None None None None
5-19
set
Value of duration in seconds is greater than this value, alert will set. Value of duration in seconds is less than or equal to this value, alert will clear.
clear
area authentication
Enables authentication in the OSPF area specified. The no form of this command disables authentication for the area (default). Syntax area {ip-address | area-id} authentication [simple | message-digest] no area {ip-address | area-id} authentication [simple | message-digest] Parameters Parameter ip-address Description Area to be authenticated, expressed as an IP address (dotted decimal). Area to be authenticated, expressed as a decimal number Specifies Type-1 (simple password) authentication (default). Specifies MD5 authentication. 0 to 4294967295 Type/Range
area-id
simple
message-digest
Mode Router Configuration (OSPF) Guidelines If simple or message-digest is not specified, simple authentication is done.
5-20
area default-cost
In an Area Border Router (ABR), specifies the cost of the default summary route sent into a stub area. The no form of this command removes the specified default summary route cost, and sets the default-cost to 1 (default). Syntax area {ip-address | area-id} default-cost cost no area {ip-address | area-id} default-cost [cost] Parameters Parameter ip-address Description IPv4 or IPv6 address of the area into which the defaultcost is being sent. Area into which the defaultcost is being sent, expressed as a decimal number Default summary route cost for the stub area Type/Range IPv4 or IPv6
area-id
0 to 4294967295
cost
1 to 65535, default is 1.
area nssa
Enables an OSPF area to be a not-so-stubby-area (NSSA). The no form of this command removes an OSPF area from NSSA designation. Syntax area {ip-address | area-id} nssa [no-redistribution] [default-information-originate] [nosummary] no area {ip-address | area-id} nssa [no-redistribution] [default-information-originate] [nosummary] Parameters Parameter Description Type/Range
5-21
ip-address
Area being designated as an NSSA, expressed as an ip address (dotted decimal). Area being designated as an NSSA, expressed as a decimal number Configures this router (which must be an NSSA Area Border Router) to not redistribute routes into the NSSA, but to allow redistribution into the nonNSSA areas. Configures this router to not send Network Summary LSAs (Type 3) into the NSSA Configures this router (which must be an NSSA Area Border Router) to generate an NSSA External LSA (Type 7) default route into the NSSA. 0 to 4294967295
area-id
no-redistribution
no-summary
default-informationoriginate
area virtual-link
Sets an OSPF virtual link (a link to the backbone through a non-backbone area). The no form of this command removes the virtual link. Syntax area {ip-address | area-id} virtual-link router-id *[authentication [null | message-digest] | dead-interval seconds | hello-interval seconds | retransmit-interval seconds | transmitdelay seconds] [authentication-key [encryption-type] password | message-digest-key key-id md5 [encryption-type] key] no area {ip-address | area-id} virtual-link router-id *[authentication [null | message-digest] | dead-interval seconds | hello-interval seconds | retransmit-interval seconds | transmitdelay seconds] [authentication-key [encryption-type] password | message-digest-key key-id md5 [encryption-type] key] Parameters
5-22
Parameter ip-address
Description IP address of the area of the non-backbone (transit) area being used for the virtual link. Area of the non-backbone (transit) area being used for the virtual link Router-id of the ABR with which the virtual-link is being established. Amount of time in seconds that passes between the sending of Hello packets. Amount of time in seconds to wait between unacknowledged OSPF packet retransmissions Amount of time in seconds it takes to transmit an LSA on this interface. The LSA age will be increased by this amount as it exits this interface or resides in the LSA database Amount of time in seconds that the RCP will wait to hear a Hello from a neighbor on the network to which the interface is connected before declaring the neighbor dead (down) Configures the link to use simple (password) authentication. Configures the link to use no authentication. Configures the link to use MD5 authentication. Optional number specifying the type of encryption to use when storing and displaying the simple password
Type/Range
area-id
0 to 4294967295
router-id
hello-interval seconds
1 to 8192, default is 10
retransmit-interval seconds
1 to 8192, default is 5
transmit-delay seconds
1 to 8192, default is 1
dead-interval seconds
1 to 8192, default is 40
authentication
5-23
password
Continuous string of characters, up to 8 bytes long, that is the simple password to be used by neighboring routers. Identifier for the MD5 key Optional number specifying the type of encryption to use when storing and displaying the md5 key Alphanumeric string of up to 16 characters that is the value of the MD5 key. 1 to 255 0 to 7, default is 0 (no encryption).
key
Mode Router Configuration (OSPF) Guidelines If the command password-encryption has been enabled, all passwords are encrypted for storage and display, regardless of the encryption type parameters specified here.
arp
Creates a static entry within the Address Resolution Protocol (ARP) table. The no form of this command removes a static entry. Syntax arp ip-address mac-address no arp ip-address [mac-address] Parameters Parameter ip-address mac-address Description IP address of the static entry. 48-bit IEEE MAC address using three 4-digit hex numbers separated by periods (xxxx.xxxx.xxxx)
5-24
assign
Creates a variable that can have multiple match commands associated with it, so that more than one match condition may exist for a set command. The no form of this command deletes the variable definition. Syntax assign variable-name no assign variable-name Parameters Parameter variable-name Description Name of the variable being created, can be one alphabetic character a-z Type/Range
Mode Route-Map Configuration Guidelines This command enters Route-Map Assign Mode, where all of the route-map match commands are available. After entering the match commands to be assigned to this variable, type exit to return to normal Route-Map Configuration Mode.
atd
Average Tunnel Duration (ATD) is an average duration of successfully established tunnel sessions. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the ATD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the ATD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Average Tunnel Duration. The set threshold must be less than or equal to the clear threshold. Syntax atd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no atd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters
5-25
Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is less than this value, alert will set. Value of duration in seconds is greater than or equal to this value, alert will clear.
Type/Range
clear
avd
Average Video Duration (AVD) is an average duration of successfully connected video session from the beginning of the request to the release of the session. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the AVD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the AVD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold. Syntax avd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no avd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 Description set/clear thresholds for first interval of the day. Type/Range Default None
5-26
set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is less than this value, alert will set. Value of duration in seconds is greater than or equal to this value, alert will clear. 0 to 600 where 00 implies off. 00 to 600
clear
avdd
Average Video Disconnect Delay (AVDD) is the average from the request for termination until the acknowledgement. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the AVDD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the AVDD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Average Video Disconnect Delay. The set threshold must be greater than or equal to the clear threshold. Syntax avdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no avdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. Type/Range Default None None
5-27
set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is greater than this value, alert will set. Value of duration in seconds is less than or equal to this value, alert will clear. 0 to 600 where 00 implies off. 00 to 600
None None 0
clear
avpdd
Average Video Post Dial Delay (AVPDD) is the average delay from the initial request to the ringing. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the AVPDD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the AVPDD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax avpdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no avpdd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Type/Range Default None None None None
5-28
set
Value of duration in seconds is greater than this value, alert will set. Value of duration in seconds is less than or equal to this value, alert will clear.
clear
bandwidth (interface)
Sets the bandwidth informational value for an interface. The no form of this command sets the bandwidth informational value to the default value. Syntax bandwidth kilobits no bandwidth [kilobits] Parameters Parameter kilobits Description Bandwidth in kilobits per second Type/Range Range is 1 to 80000000, default values are 9 for Tunnel; 10000 for Admin and NNET; and Loopback, and Null. For Port-chan and Pos-chan, the default is for the bandwidth value to be dynamically set according to the number of active members. Subinterface defaults are same as parent interface.
Mode Interface Configuration (Admin, Em, Loopback, NNET, Null, Tunnel) Guidelines When an interface is assigned as a member of a link bundle interface, the bandwidth value for that interface is changed to the default value for that interface. Once an interface is removed as
5-29
a member of the link bundle interface, the bandwidth value is returned to the actual configured value. Attempts to configure the bandwidth value while the interface is assigned as a member of a link bundle will be denied. When the bandwidth value is configured to be dynamically set for link bundle interfaces, the minimum bandwidth value possible is the total capacity of the number of active members set by the channel-group minimum active command.
banner enable
Sets a message to display upon enabling to a new privilege level. The no form of this command deletes an existing message (default). Syntax banner enable c message c no banner enable [c message c] Parameters Parameter c Description Delimiting character, any character is allowed but it must use a different character than any used in the banner message. Banner message text.
If desired, a message can span multiple lines by using a carriage return. The RCP will continue to allow additional lines until a line is entered containing an ending delimiting character.
banner exec
Sets a message to display after user login. The no form of this command deletes an existing message (default). Syntax banner exec c message c no banner exec [c message c]
5-30
Parameters Parameter c Description Delimiting character, any character is allowed but it must use a different character than any used in the banner message. Banner message text.
message
banner login
Sets a message to display before user login. The no form of this command deletes an existing message (default). Syntax banner login c message c no banner login [c message c] Parameters Parameter c Description Delimiting character, any character is allowed but it must use a different character than any used in the banner message. Banner message text.
message
banner motd
Sets a message-of-the-day (MOTD) message to display before login message. The no form of this command deletes an existing message (default). Syntax banner motd c message c
5-31
no banner motd [c message c] Parameters Parameter c Description Delimiting character, any character is allowed but it must use a different character than any used in the banner message. Banner message text.
message
bgp
Enables the RCP to allow any integer as a valid router ID, including 0. The no form of this command enables the RCP to reject bad router IDs (default). Syntax bgp allow-illegal-routerid no bgp allow-illegal-routerid Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
5-32
Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
bgp cluster-id
Sets the cluster ID for the routers acting as route reflectors if the BGP cluster has more than one route reflector. The no form of this command removes the cluster ID. Syntax bgp cluster-id cluster-id no bgp cluster-id [cluster-id] Parameters Parameter cluster-id Description Cluster ID of this route reflector expressed as a nonzero-32-bit-integer (1 to 4294967295) or a dotted decimal IP address.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
5-33
Syntax bgp default ipv4-unicast no bgp default ipv4-unicast Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast)
bgp fast-external-fallover
Enables the BGP sessions of any directly adjacent external peers to immediately reset if the link used to reach them goes down (default). The no form of this command disables this function. Syntax bgp fast-external-fallover no bgp fast-external-fallover Modes Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
bgp log-neighbor-changes
5-34
Enables logging of BGP neighbor status changes (up or down) and resets. The no form of this command disables the logging of changes (default). Syntax bgp log-neighbor-changes [access-list-id] no bgp log-neighbor-changes [access-list-id] Parameters Parameter access-list-id Description Neighbor changes are logged for neighbors matching this access list.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
bgp peer-restart-timer
Sets the time gap between the command that is the cause of the peer reset and the actual peer reset. The no form of this command returns the timers to their default values. Syntax bgp peer-restart-timer {level-1 time-in-seconds | level-2 time-in-seconds | level-3 timeinseconds} no bgp peer-restart-timer {level-1 [time-in-seconds] | level-2 [time-in-seconds] | level-3 [timein-seconds]} Parameters Parameter level-1 time-inseconds Description Period of time between the trigger event and the peer reset for level-1 restart timers Period of time between the trigger event and the peer reset for level-2 restart timers Type/Range 0 to 180 30 Default
level-2 time-inseconds
0 to 180
20
5-35
level-3 time-inseconds
Period of time between the trigger event and the peer reset for level-3 restart timers
0 to 180,
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF) Guidelines This command is not available in Address-family Router Configuration Mode.
bgp reset-peer-on-illegal-nexthop
Enables the RCP to shut down a peering session when an illegal next-hop is received from that peer. The no form of this command causes BGP to ignore incoming routes with illegal nexthops and keep the peering session up (default). Syntax bgp reset-peer-on-illegal-nexthop no bgp reset-peer-on-illegal-nexthop Modes Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF) Guidelines Illegal nexthop values are 0.0.0.0, 0.*.*.*, the address of any local interface on this router, and any address in the range 224.*.*.* to 255.*.*.*.
bgp router-id
Sets the BGP router-id. The no form of this command sets the router-id to the default setting, which is the highest IP address on the RCP, or the highest loopback address on the RCP. Syntax bgp router-id ip-address
5-36
no bgp router-id [ip-address] Parameters Parameter ip-address Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF) Description IP address of this router.
bgp-topology-neighbor
To add a BGP neighbor into the RCP managed topology, use the bgp-topology-neighbor command in topology-map configuration mode. Multiple BGP neighbor can be specified in topology map. Syntax bgp-topology-neighbor <ip-address> [md5 password [<encryption-type>] <password>] [asnum <as-number>] no bgp-topology-neighbor <ip-address> [md5 password [<encryption-type>] <password>] [as-num <as-number>] Parameters Parameter ip-address md5 <password> encrypted Description IP address of BGP neighbor [Optional] Use MD5 algorithm. Password. [Optional] Whether the password will be encrypted for display. Autonomous System ID Integer None String None Type/Range String Default None
as-number Mode
bmosp
The SVA calculates MOS values for RTP streams that are detected at an SVA monitoring point
5-37
and correspond to a session monitored by its associated SVP. For call sessions, the codec used has an associated nominal score. The actual calculated MOS may be better if measured values are higher than default values or lower if network impairments affect the voice stream. Since the SVP attempts to isolate network impairments, the session quality is determined by calculating a percentage using the calculated MOS and the nominal MOS. There is no nominal MOS value defined for video codecs. A given video codec can adjust many factors which can significantly alter the perceived quality. These changes in quality are attributed to the codec itself and not related to the performance of the transport network. The SVA generates a scaled MOS score based on network induced degradation. For each session, a degradation factor is computed: 0 meaning no impairment and 10 meaning the most severe. Measured network induced factors are used to generate a scaled MOS score which is higher than the MOS value calculated based on the severity of the impairment. This scaled MOS score can then be used to identify sessions that low quality based on the network impairment measured for that session. The SVP calculates a percentage using the measured MOS and the scaled MOS. Since nominal MOS is used for speech sessions and scaled MOS is used for video sessions, each session type has its own threshold value. Thresholds are defined to categorize sessions as Bad, Poor, Fair and Good. The system compares the percentage value with the Bad, Poor, and then Fair thresholds in that order. If the value is less than or equal to a threshold, the comparison stops. Otherwise the comparison continues to the next threshold value. Sessions with a percentage greater than the Fair threshold are considered Good. This command specifies the threshold to determine if a session has a bad MOS percentage and specifies the ratio of such sessions that would trigger an alert to be generated. All sessions with a MOS percentage less than or equal to the configured value will be marked as having a Bad MOS value. The command replaces the existing BMOS thresholds and/or the settings for the intervals specified. The no form of the command with no arguments disables the BMOSP alert for all time intervals and returns the BMOS thresholds to their default value. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the BMOSP alert for that time interval. The no form of the command with the BSMOS and/or BVMOS value will return the threshold to its default value. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax bmosp {[bsmos <bsmos>] [bvmos <bvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no bmosp {[bsmos <bsmos>] [bvmos <bvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter Description Type/Range Default
5-38
bsmos
Bad Speech MOS percentage threshold value. Bad Video MOS percentage threshold value. set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a bad MOS ratio is greater than this value an alarm will be sent. If the percentage of sessions with a bad MOS ratio is less than or equal to this value the alarm will be cleared.
0-100
60
bvmos
40-100
60
interval1 interval2
None None
clear
0-99
none
capability opaque
Enables the RCP to allow Opaque LSAs (Types 9, 10, and 11) (default). The no form of this command disables the RCPs capability to handle Opaque LSAs. Syntax capability opaque no capability opaque Mode Router Configuration (OSPF)
5-39
casr
Call Authentication Success Ratio (CASR) is a percentage of call authentication attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the CASR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the CASR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold per time interval. Syntax casr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no casr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
ccsr
Call Connect Success Ratio (CCSR) is the call connection attempt success ratio. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the CCSR alert for all time intervals. The no form of the command with a single interval, regardless of threshold values, will disable the CCSR alert for that time interval.
5-40
This command enables generation of alerts to the SVM and traps to the NMS based on the Call Connection Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax ccsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no ccsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
cd
Changes the default file directory. Syntax cd [directory-name] Parameters Parameter Description
5-41
directory-name
Name of the file directory as [device:]directory, default is top level file directory.
Mode Privileged EXEC Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). For a complete list of valid device arguments, refer to the dir command documentation.
clear arp-cache
Clears all dynamic entries within the Address Resolution Protocol (ARP) table. Syntax clear arp-cache Mode Privileged EXEC
5-42
Removes CLNS neighbors (adjacencies) from the neighbor table. Syntax clear clns neighbors Modes Privileged EXEC Guidelines Once the neighbor is removed, IS-IS will re-establish the adjacency if the neighbor still exists.
clear counters
Clears the show interfaces or show controllers counters for the specified interface or port. If an interface or port is not specified, then all interfaces and ports are cleared. Syntax clear counters [interface-name | port-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | null 0 | portchan channel-number | pos-chan channelnumber | tunnel tunnel-number} Mode Privileged Exec
5-43
Guidelines If an interface or port is not specified on the input of this command, then all interfaces and ports will be cleared. To confirm that clearing the counters of all interfaces and ports is what the user intended, a warning message is displayed along with a confirmation message. Type y to continue or n to cancel this command. Clearing of the show controllers counters associated with SONET Performance Monitoring is accomplished through use of the clear pm command.
clear host
Clears associations made between a host name and one or more IP addresses. Syntax clear host {host | *} Parameters Parameter host * Description Name of host device for which the associated IP address(es) will be cleared. Clears the associated IP address(es) for all host names.
Mode Privileged Exec Guidelines Clearing a static name/address association also removes the corresponding CLI command entry assignment by automatically performing the equivalent of a no ip host command.
clear host-login-lockout
Clear system lockout of login connections from host IP. If no IP address is specified, all locks will be cleared. NOTE: if the system has logged some number of consecutive login failures from a host, the count is cleared even if lockout has not yet occurred. Syntax clear host-login-lockout [ip-address <ip-address>]
5-44
5-45
clear interface dampening [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | null 0 | portchan channel-number | pos-chan channelnumber | tunnel tunnel-number} Mode Privileged Exec
clear ip bgp
Clears a BGP connection. Syntax clear ip bgp {* | as-number | peer-ip-address} [vrf vrf-name] [[ipv4 | ipv6] [unicast | multicast] | [vpnv4 | vpnv6] [unicast | multicast] [rd {16-bit-integer:16-bit-integer | ip-address:16bitinteger}]] [soft] [in [aspath-filter | comm-filter | extcomm-filter | prefix-filter] | out] Parameters Parameter * Description Clears all current BGP peer sessions
5-46
as-number
Clears all BGP connections for peers with this autonomous system number (or symbol, if created with define as. Clears this specific peers BGP connection specified by either an IPv4 or IPv6 address. Alpha-numeric-symbolic name for the VPN Routing and Forwarding (VRF) for which the routes will be cleared for, range is 1 to 40 characters.
peer-ip-address vrf-name
ipv4 ipv6 unicast multicast vpnv4 vpnv6 rd 16-bit-integer ip-address soft in aspath-filter comm-filter extcomm-filter prefix-filter out Mode Privileged Exec
Specifies IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Specifies VPN version 4 address family. Specifies VPN version 6 address family. Specifies route distiguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Session is cleared without resetting the BGP TCP session (soft re-configuration). Inbound soft re-configuration. Sends updated as-path-filter information to the peer router. Sends updated community-filter information to the peer router. Sends updated extended-community-filter information to the peer router. Sends updated prefix-filter information to the peer router. Outbound soft re-configuration.
5-47
Syntax clear ip bgp [[ipv4 | ipv6] [unicast | multicast] | [vpnv4 | vpnv6] [unicast | multicast] [rd {16-bit-integer:16-bit-integer | ip-address:16-bit-integer}]] flap-statistics [[ip-address [netmask] | ip-address/mask-length] | filter-list as-path-access-list-id | regexp regular-expression] Parameters Parameter ipv4 ipv6 unicast multicast vpnv4 vpnv6 rd 16-bit-integer ip-address netmask ip-address/mask-length as-path-access-list-id regular-expression Description Specifies IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Specifies VPN version 4 address family. Specifies VPN version 6 address family. Specifies route distiguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Subnet mask of the address for which flapstatistics are being cleared. IP address and mask length of the network for which IP flap-statistics are being cleared. Clears flap-statistics for all the addresses that pass this access list. Clears flap-statistics for all the addresses that match this regular expression.
5-48
Parameters Parameter peer-group vrf-name Description Clears this specific peer groups BGP connection. Alpha-numeric-symbolic name for the VPN Routing and Forwarding (VRF) for which the routes will be cleared for, range is 1 to 40 characters. ipv4 ipv6 unicast multicast vpnv4 vpnv6 rd 16-bit-integer ip-address soft in aspath-filter comm-filter extcomm-filter prefix-filter out Mode Privileged Exec Guidelines The BGP peer router should apply the transmitted filter when sending updates. Specifies IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Specifies VPN version 4 address family. Specifies VPN version 6 address family. Specifies route distiguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Session is cleared without resetting the BGP TCP session (soft re-configuration). Inbound soft re-configuration. Sends updated as-path-filter information to the peer router. Sends updated community-filter information to the peer router. Sends updated extended-community-filter information to the peer router. Sends updated prefix-filter information to the peer router. Outbound soft re-configuration.
5-49
neighbor
interface-name
ip-address
5-50
Guidelines This command performs the following functions: Resets all neighbors Deletes all self-originated LSAs Removes all OSPF routes from the RIB Re-establishes neighbor adjacencies Re-originates all self-originated LSAs Re-adds OSPF routes to the RIB This command is similar to deleting and re-adding the OSPF instance except that the configuration for the OSPF instance is preserved.
clear ip route
Validates that the specified IP route or all IP routes should be in the routing table. Syntax clear ip route {ip-address [netmask] | ip-address/mask-length | *} Parameters Parameter ip-address [netmask] ip-address/mask-length * Mode Privileged Exec Description IP address and subnet mask of the IP route to be validated. IP address and netmask length of the route to be validated. Validates all IP routes.
5-51
clear ip static-routes
Removes all IP static routes from the routing table. Syntax clear ip static-routes Mode Privileged Exec Guidelines Use with caution. This command permanently deletes all IP static routes from the routing table and the running-configuration.
clear vlan
Clears the show vlan counters for the specified VLAN identifier, or optionally, for all VLAN identifiers.
5-52
Syntax clear vlan {statistics | vlan-id} Parameters Parameter statistics vlan-id Description Clear counters for all VLAN identifiers. Clear counters for one VLAN identifier, range is 1 to 4094.
cli-access host
To configuration CLI related information so that SVP can communicate with CLI running on the router defined by the router command, use the cli-access host command. The no form of this command only requires the ip-address parameter. Syntax cli-access host <ip-address> username <username> [encrypted] password <password> [access-type {telnet | ssh}] [privilege-level <level> priv-password <priv-password>] [prompt <prompt-string>] [interval <value>] no cli-access host <ip-address> username <username> [[encrypted] password <password> [access-type {telnet | ssh}] [privilege-level <level> priv-password <privpassword>] [prompt <prompt-string>] [interval <value>]] Parameters Parameter ip-address username <username> password <password> encrypted Description IP address of the CLI host. This address does not have to match with routers IP address. Name of the user for user name password authentication. Password for the user. [Optional] Indicates that the entered password string is encrypted. When the cli-access command is first entered the encrypted keyword is not used and the password is entered in clear text. The SVP will encrypt the password and the command will be displayed in the running config with the encrypted keyword. [Optional] Access type for CLI. Default is telnet. [Optional] Specifies the privilege level 0-15
5-53
priv-password <privpassword> prompt <prompt-string> internal <value> Mode Topology map router configuration
Specifies the privilege password. [Optional] Specifies CLI prompt. [Optional] Query interval in seconds. Default is 60 seconds.
clock set
Manually sets the system clock value. Syntax clock set {hh:mm:ss dd month yyyy | hh:mm:ss month dd yyyy} Parameters Parameter hh:mm:ss dd month yyyy Mode Privileged EXEC Guidelines If this command is executed while NTP is operational and configured to synchronize with a network time source, the system clock value will be synchronized to the network time source in the following manner: a) if the difference between the system clock and the network time source is 128ms or less, the system clock value will be slowly slewed toward the network time source value at a rate of 0.5ms per second until synchronized. If the difference between the system clock and the network time source is greater than 128ms, the system clock value will be instantly synchronized to the network time source value. Description Hours (24-hour format), minutes, and seconds. Day of the month in two-digit format, range is 01 to 31. Name of the month, only the first three letters of the month are significant. Year in four-digit format.
clock summer-time
Enables automatic switching to and from daylight savings time. The no form of this command
5-54
disables automatic switching to and from daylight savings time. Syntax clock summer-time zone {date {dd month yyyy hh:mm dd month yyyy hh:mm | month dd yyyy hh:mm month dd yyyy hh:mm} [minutes-offset] | recurring [{week | last} day month hh:mm {week | last} day month hh:mm [minutes-offset]]} no clock summer-time [zone {date {dd month yyyy hh:mm dd month yyyy hh:mm | month dd yyyy hh:mm month dd yyyy hh:mm} [minutes-offset] | recurring [{week | last} day month hh:mm {week | last} day month hh:mm [minutes-offset]]}] Parameters Parameter zone Description Name of time zone when daylight savings time is in effect, range is 1 to 8 alphanumeric characters. Specifies the start time and end time for daylight saving time. Day of the week, range is 1 to 31. Name of the month, only the first three letters of the month are significant. Year, range is 1970 to 2035. Hours and minutes. Number of minutes to offset for daylight savings time, default is 60. Specifies when daylight savings time should begin and end. Week number of the month, range is 1 to 5 (or last). Day of the week, values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday, Saturday. Name of the month, only the first three letters of the month are significant. Hours and minutes in 24-hour time.
clock timezone
5-55
Sets the utilized time zone to a user entered value. The no form of this command sets the utilized time zone to Coordinated Universal Time (UTC). Syntax clock timezone zone hours-offset [minutes-offset] no clock timezone [zone hours-offset [minutes-offset]] Parameters Parameter zone Description Name of time zone when standard time is in effect, range is 1 to 8 alphanumeric characters. Number of hours to offset from UTC. Number of minutes to offset from UTC.
commit-based-config
Sets the configuration method for configuration mode to commit-based. The no form of this command sets the method to auto-based (default). Syntax commit-based-config no commit-based-config Mode Global Configuration Guidelines While in the commit-based configuration method, the commit command is used to exit configuration mode to the Privileged EXEC Mode and keep all the changes that were made since initialing entering into configuration mode by typing the config command. If in commit-based configuration method and end is entered from any configuration mode, or exit is entered from Global Configuration Mode, a warning message will be displayed informing that configuration changes will not be saved. Confirmation to continue must be given. A y or CR response will leave configuration mode without committing changes; any other response will stay in configuration mode.
5-56
commit
Performs an exit of a configuration mode to the Privileged EXEC mode, and keeps all changes made while in configuration mode. Syntax commit Mode All configuration command modes
compatible rfc1583
Enables the RCP to use the method specified in RFC 1583 for calculating summary route costs. The no form of this command disables the RFC 1583 method of summary route calculation costs and causes the RCP to instead use the method specified in RFC 2328 (default). Syntax compatible rfc1583 no compatible rfc1583 Mode Router Configuration (OSPF)
configure
Enters Global Configuration Mode. Syntax configure [terminal] Mode Privileged Exec
continue
Enables route-map processing to continue even if the route-map has resulted in a match. If no sequence number is specified, this command goes to the next sequence number in the routemap. The no version of this command removes the continue statement from the routemap.
5-57
Syntax continue [routemap-sequence-number] no continue [routemap-sequence-number] Parameters Parameter routemap-sequence-number Description Route-map sequence number at which processing should continue, or the next highest number after this one, if this number is not in the sequence.
Mode Route-Map Configuration Guidelines In combination with the routemap-exit command, this command allows the user to create something like an if-then-else in a route-map. The continue command provides a forward branch operation and routemap-exit allows the user to terminate processing at the end of an isolated segment of the route-map. For multiple set commands setting the same parameter, the last set command is the one that is used.
copsrm router-id
This command specifies the interface IP address to be used as the router ID for COPS-RM. The default router ID is taken from the loop back interface (if configured) or the highest interface IP address on the SVP. The no form of this command returns the router ID to the default. The IP address used must ensure reachability between the SVM and all SVPs participating in the COPS-RM protocol. Syntax copsrm router-id <interface-ip-address> no copsrm router-id <interface-ip-address> Parameters Parameter interface-ipaddress Description Interface IP address to be used for COPS-RM router ID. Type/Range IP address in dotted notation. Default Loopback interface IP or highest interface IP.
5-58
copsrm shutdown
This command closes all open COPS-RM peering sessions. The no form of this command allows connection attempts to be made. Syntax copsrm shutdown no copsrm shutdown Mode COPS-RM router configuration
copy
Copies a file from a source location to a destination location. Syntax copy source destination Parameters Parameter Description
5-59
source
Source location of the file, can be one of the following sources: filename Name of the file as [device:][directory/]file. ftp://[username[:password]@]remotehost/filename Copy the file using FTP. http://rhost/filename Copy the file using HTTP. pftp://[username[:password]@]remotehost/filename Copy the file using passive mode FTP. rcp://[username@]rhost/filename Copy the file using RCP. running-config Copy the file from the current system configuration. scp://[username@]rhost/filename Copy the file using SCP. startup-config Copy the file from the startup configuration. tftp://rhost/filename Copy the file using TFTP. destination Destination of the file, can be one of the following destinations: filename Name of the file as [device:][directory/]file. ftp://[username[:password]@]remotehost/filename Copy the file using FTP. pftp://[username[:password]@]remotehost/filename Copy the file using passive mode FTP. rcp://[username@]rhost/filename Copy the file using RCP. running-config [verbose] Copy the file to the current system configuration. Optionally, if verbose is specified, echo the commands from the running configuration to the screen. scp://[username@]rhost/filename Copy the file using SCP. startup-config Copy the file to the startup configuration. tftp://rhost/filename Copy the file using TFTP.
5-60
Mode Privileged EXEC Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). For a complete list of valid device arguments, refer to the dir command documentation. When the cdrw device is specified in the destination argument of this command, cd-rw media must be utilized (since data cannot be copied to cd-r media). Regardless of type, media should always be removed from the cdrw device by using the eject command. Care should be taken not to enter arguments that are shortened forms of the reserved runningconfig and startup-config filenames, as this command will automatically complete the syntax to be running-config and startup-config.
dcd
Drop Call Duration (DCD) is an average duration of successfully established call sessions that are terminated with a non-normal disconnect reason. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the DCD alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the DCD alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be less than or equal to the clear threshold. Syntax dcd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set
5-61
<set> clear <clear>] [interval4 set <set> clear <clear>] } no dcd {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of duration in seconds is less than this value, alert will set. Value of duration in seconds is greater than or equal to this value, alert will clear. 0 to 300 where 00 implies off. 00 to 300 Type/Range Default None None None None 0
clear
dcr
Drop Call Ratio (DCR) is a percentage of successfully established calls that are disconnected for a non-normal cause. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the DCR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the DCR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The clear threshold must be less than or equal to the set threshold per time interval. Syntax dcr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no dcr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] }
5-62
Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is greater than this value, alert will set. Value of ratio is less than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00
clear
00
debug all
The debug all form of this command is not supported. The no form of this command turns off all debug commands at one time. Syntax no debug all Mode Privileged EXEC Guidelines The debug all form of this command is not supported because the flood of messages that would result from turning on all debug messages would be problematic.
debug dampening
Logs link-dampening debug messages.
5-63
Syntax debug dampening [all | interface-name] no debug dampening [all | interface-name] Parameters Parameter all interface-name Description Debug is enabled on all links {admin 0 | loopback loopback-number | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnelnumber}
Mode Privileged EXEC Guidelines If no parameter or all is specified, debug is enabled on all links, otherwise, it is enabled on a specific link.
debug ip bgp
Turns on debugging for the given BGP peer or all peers if no peer is specified. The no form of this command turns off debugging for the given peer, or, if no peer is specified, turns off debugging for all peers. Syntax debug ip bgp [ip-address] no debug ip bgp [ip-address] Parameters Parameter ip-address Description Address of the BGP peer to which the debugging applies, if none is entered, debugging is turned on for all peers, with all options.
5-64
5-65
Syntax debug ip bgp dampening [access-list-id] no debug ip bgp dampening [access-list-id] Parameters Parameter access-list-id Description Standard or extended access-list that is applied to routing information to determine when to print the debug information.
5-66
no debug ip bgp in [[ip-address] updates [access-list-id]] Parameters Parameter ip-address access-list-id Description Address of the BGP peer sending the BGP UPDATES to this router. Standard or extended access-list that is applied to routing information to determine when to print the debug information.
5-67
Parameters Parameter ip-address Description IPv4 or IPv6 address of the BGP peer to which the open message debugging applies.
5-68
in out
debug ip copsrm
This command enables various debug options. The no form of this command disables the specified debug option. Syntax debug ip copsrm { events | protocol-errors | keepalives | open | <router-id> packets } no debug ip copsrm { events | protocol-errors | keepalives | open | <router-id> packets } Parameters Parameter events Description Various events are logged. Type/Range Default None
5-69
Detected protocol errors are logged. Reception of keep alive messages are logged. TCP connection events are logged. IP address identifying the router ID of the neighbor. Enables logging of packets exchanged with specified neighbor. IP address in dotted notation
packets
None
Mode EXEC
5-70
Parameters Parameter process-id Description ID of the OSPF routing process on this router for which debug information is being displayed, range is 1 to 65535.
5-71
dd
header
5-72
hello
Displays information about each OSPF Hello (discover/maintain neighbors) packet received
lsr
Displays information about each OSPF Link State Request (database download) packet received
lsu
Displays information about each OSPF Link State Update (database update) packet received.
access-list-id
5-73
Syntax debug mpls traffic-eng path {num | lookup | spf | verify} no debug mpls traffic-eng path [num | lookup | spf | verify] Parameters Parameter num lookup spf verify Mode Privileged EXEC Description Local tunnel number, range is 0 to 65535. Display information for path lookups. Display information for shortest path first (SFP) calculations. Display information for path verifications.
debug sm
This is grouped command of three different debugging commands to display information from SM module. Syntax debug sm command <command-string> [oid <obj-id>] [parameter <string>] debug sm show-object <obj-name-string> [oid <obj-id>] [parameter <string>] debug sm show-summary [ <string> ] Parameters Parameter <command-string> <obj-id> <obj-name-string> Mode EXEC SM command string object ID, in 32-bit integer format object name in string format Description
debug topology
Enables the logging of TM-RM, TM-IRPM messages and information for next hop.
5-74
Syntax debug topology {message | next-hop} no debug topology {message | next-hop} Mode EXEC Guidelines The debug topology message command turns on the feature, which logs TM-RM and TMIRPM messages, while the debug topology next-hop command turns on the feature, which logs the information of the next hop.
define as
Creates a symbol that can be used on the RCP to represent the as-number specified. The no form of this command deletes the symbol. Syntax define as symbol-name as-number no define as symbol-name [as-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the as-number. Autonomous system number for which the symbol is being created.
as-number
define community
Creates a symbol that can be used on the RCP to represent the community number specified. The no form of this command deletes the symbol. Syntax define community symbol-name community-number
5-75
no define community symbol-name [community-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the as-number. Community number for which the symbol is being created.
community-number
define dscp
Creates a symbol that can be used on the RCP to represent the IP DSCP number(s) specified. The no form of this command deletes the symbol. Syntax define dscp symbol-name ip-dscp-number no define dscp symbol-name [ip-dscp-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the ip-dscpnumber, the well known DSCP symbolic names are:
5-76
af11 Representing dscp 10 (binary 001010). af12 Representing dscp 12 (binary 001100). af13 Representing dscp 14 (binary 001110). af21 Representing dscp 18 (binary 010010). af22 Representing dscp 20 (binary 010100). af23 Representing dscp 22 (binary 010110). af31 Representing dscp 26 (binary 011010). af32 Representing dscp 28 (binary 011100). af33 Representing dscp 30 (binary 011110). af41 Representing dscp 34 (binary 100010). af42 Representing dscp 36 (binary 100100). af43 Representing dscp 38 (binary 100110). cs1 Representing dscp 8 (binary 001000). cs2 Representing dscp 16 (binary 010000). cs3 Representing dscp 24 (binary 011000). cs4 Representing dscp 32 (binary 100000). cs5 Representing dscp 40 (binary 101000). cs6 Representing dscp 48 (binary 110000). cs7 Representing dscp 56 (binary 111000). default Representing dscp 0 (binary 000000). ef Representing dscp 46 (binary 101110). ip-dscp-number IP DSCP number for which the symbol is being created, range is 0 to 63.
Mode Global Configuration Guidelines It is recommended that groups of up to eight IP DSCP numbers (whose upper three bits are the same) representing the same class should be entered separated by white-spaces.
define icmp-code
Creates a symbol that can be used on the RCP to represent the ICMP code and, optionally, the ICMP subcode specified. The no form of this command deletes the symbol. Syntax define icmp-code symbol-name icmp-code-number [subcode icmp-subcode-number] no define icmp-code symbol-name [icmp-code-number] [subcode icmp-subcode-number]
5-77
Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the icmp-codenumber and icmp-subcode-number (if specified). ICPM code number for which the symbol is being created, range is 0 to 255. ICPM subcode number for which the symbol is being created, range is 0 to 255.
icmp-code-number icmp-subcode-number
define icmp-type
Creates a symbol that can be used on the router to represent the ICMP message type specified. The no form of this command deletes the symbol. Syntax define icmp-type symbol-name icmp-type-number no define icmp-type symbol-name [icmp-type-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the icmp-typenumber. ICMP message type number for which the symbol is being created, range is 0 to 255.
icmp-type-number
define igmp-type
Creates a symbol that can be used on the RCP to represent the IGMP protocol specified. The
5-78
no form of this command deletes the symbol. Syntax define igmp-type symbol-name igmp-protocol-number no define igmp-type symbol-name [igmp-protocol-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the igmp-protocolnumber. IGMP protocol number for which the symbol is being created, range is 0 to 15.
igmp-protocol-number
define ip-precedence
Creates a symbol that can be used on the RCP to represent the IP precedence number(s) specified. The no form of this command deletes the symbol. Syntax define ip-precedence symbol-name ip-precedence-number no define ip-precedence symbol-name [ip-precedence-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the ip-precedencenumber. Numerical value representing the IP precedence bits for which the symbol is being created, range is 0 to 7
ip-precedence-number
5-79
define ip-protocol
Creates a symbol that can be used on the RCP to represent the IP protocol specified. The no form of this command deletes the symbol. Syntax define ip-protocol symbol-name ip-protocol-number no define ip-protocol symbol-name [ip-protocol-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the ip-protocolnumber. IP protocol number for which the symbol is being created, range is 0 to 255.
ip-protocol-number
define ipv6-protocol
Creates a symbol that can be used on the RCP to represent the IPv6 protocol specified. The no form of this command deletes the symbol. Syntax define ipv6-protocol symbol-name ipv6-protocol-number no define ipv6-protocol symbol-name [ipv6-protocol-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the ip-protocolnumber. IPv6 protocol number for which the symbol is being created, range is 0 to 255.
ipv6-protocol-number
5-80
define mpls-experimental
Creates a symbol that can be used on the RCP to represent the MPLS experimental number(s) specified. The no form of this command deletes the symbol. Syntax define mpls-experimental symbol-name mpls-exp-number no define mpls-experimental symbol-name [mpls-exp-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the mpls-expnumber. Numerical value representing the MPLS experimental bits for which thesymbol is being created, range is 0 to 7.
mpls-exp-number
define tcp-port
Creates a symbol that can be used on the RCP to represent the TCP port specified. The no form of this command deletes the symbol. Syntax define tcp-port symbol-name tcp-port no define tcp-port symbol-name [tcp-port] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the tcp-port.
5-81
tcp-port
TCP port for which the symbol is being created, range is 0 to 65535.
define tos-code
Creates a symbol that can be used on the RCP to represent the Type of Service (ToS) code number(s) specified. The no form of this command deletes the symbol. Syntax define tos-code symbol-name ip-tos-number no define tos-code symbol-name [ip-tos-number] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the ip-tos-number. ToS number for which the symbol is being created, range is 0 to 15.
ip-tos-number
define udp-port
Creates a symbol that can be used on the RCP to represent the UDP port specified. The no form of this command deletes the symbol. define udp-port symbol-name udp-port no define udp-port symbol-name [udp-port] Parameters Parameter symbol-name Description Alphanumeric text string (that begins with an alphabetic character) of up to 20 characters representing the udp-port.
5-82
udp-port
UDP port for which the symbol is being created, range is 0 to 65535.
delete
Deletes a file from a file directory. Syntax delete filename Parameters Parameter filename Mode Privileged EXEC Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). For a complete list of valid device arguments, refer to the dir command documentation. When this command is issued with the startup-config filename, all of the configuration lines in the startup-config file are deleted except end. Description Name of the file as [device:][directory/]file.
deny (extended)
In an extended access-list, sets the conditions under which packets are denied. The no form of this command removes a deny condition from the access-list through specification of a sequence number and/or matching deny clause. Syntax deny [seq sequence-number] [rcp] {protocol | ip} {source-ip-address source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments] no deny {seq sequence-number | [seq sequence-number] [rcp] {protocol | ip} {sourceipaddress sourc -wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments]}
5-83
Parameters Parameter sequence-number Description Unique sequence number of the deny clause being added or deleted; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access-list. rcp Specifies that this clause should allow an extended set of options only available on the RCP; therefore, this clause will not be applied on the line card. Name or number of an internet protocol, or symbol-name as defined in define ipprotocol, valid protocol numbers are 0 to 255 (RCP option only). Any IP protocol. Access is denied for packets originating from this source IP address and wildcard mask combination. Access is denied for packets originating from any source IP addresses. Access is denied for packets originating from this source IP address host. Access is denied for packets sent to this destination IP address and wildcard mask combination. Access is denied for packets sent to any destination IP address. Access is denied for packets sent to this destination IP address host. DSCP value to be matched, range is 0 to 63, or a well-known DSCP name, or symbol-name if defined in define dscp. Precedence level to be matched, valid entries are 0 to 7, or a well-known precedence name, or symbol-name if defined in define ip-precedence. tos-value Service level to be matched, range is 0 to 15, or a well-known ToS name (RCP option only). Specifies that information about matching packets will be sent to the console.
protocol
ip source-ip-address source-wildmask
precedence-value
log
5-84
log-input fragments
Specifies that the input interface is to be included in the log. Specifies that packets in IP datagram fragments are to be matched (RCP option only).
icmp-subcode
Mode IP Extended Access-List Configuration Guidelines See the deny (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
5-85
form of this command removes a deny condition from the access-list through specification of a sequence number and/or matching deny clause. Syntax deny [seq sequence-number] [rcp] {6 | tcp} {source-ip-address source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-tcp-port | range source-tcp-port1 source-tcpport2] {dest-ip-address dest-wildmask | any | host dest-ip-address} [{eq | gt | lt | neq} dest-tcpport | range dest-tcp-port1 dest-tcp-port2] *[dscp dscp-value | precedence recedence-value | tos tos-value | {log | log-input} | fragments | ack | established | fin | psh | rst | syn | urg] no deny {seq sequence-number | [seq sequence-number] [rcp] {6 | tcp} {source-ip-address source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-tcp-port | range source-tcp-port1 source-tcp-port2] {dest-ip-address dest-wildmask | any | host dest-ipaddress} [{eq | gt | lt | neq} dest-tcp-port | range dest-tcp-port1 dest-tcp-port2] *[dscp dscpvalue | precedence precedence-value | tos tos-value | {log | log-input} | fragments | ack | established | fin | psh | rst | syn | urg]} Parameters Parameter eq gt lt neq range source-tcp-port Description Specifies that port must be equal to a value. Specifies that port must be greater than a value. Specifies that port must be less than a value. Specifies that port must be not equal to a value. Specifies that port must be within a range of values. Decimal number or well-known name of the source TCP port, or symbolname if defined in define tcp-port. Decimal number or well-known name of the destination TCP port, or symbolname if defined in define tcp-port. TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only) TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only).
dest-tcp-port
5-86
Mode IP Extended Access-List Configuration Guidelines See the deny (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
dest-udp-port
5-87
Mode IP Extended Access-List Configuration Guidelines See the deny (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
deny (IPv6)
Sets the conditions under which packets are denied. The no form of this command removes a deny condition from the access-list through specification of a sequence number and/or matching deny clause. Syntax deny [seq sequence-number] {protocol | ipv6} {source-ipv6-address/masklength | any | host source-ipv6-address} {dest-ipv6-address/masklength | any | host dest-ipv6-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments] no deny {seq sequence-number | [seq sequence-number] {protocol | ipv6} {source-ipv6address/masklength | any | host source-ipv6-address} {dest-ipv6-address/masklength | any | host dest-ipv6-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments]} Parameters Parameter sequence-number Description Unique sequence number of the deny clause being added or deleted; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access-list. Specifies that this clause should allow an extended set of options only available on the RCP; therefore, this clause will not be applied on the line card. Name or number of an internet protocol, or symbol-name as defined in define ipv6 protocol, valid protocol numbers are 0 to 255 (RCP option only). Any IPv6 protocol. Access is denied for packets originating from this source IPv6 address and masklength combination.
rcp
protocol
ipv6 source-ipv6-address/masklength
5-88
Access is denied for packets originating from any source IPv6 addresses. Access is denied for packets originating from this source IPv6 address host. Access is denied for packets sent to this destination IPv6 address and masklength combination.
Access is denied for packets sent to any destination IPv6 address. Access is denied for packets sent to this destination IPv6 address host. DSCP value to be matched, range is 0 to 63, or a well-known DSCP name, or symbol-name if defined in define dscp. Precedence level to be matched, valid entries are 0 to 7, or a well-known precedence name, or symbol-name if defined in define ipv6 precedence.
precedence-value
tos-value
Service level to be matched, range is 0 to 15, or a well-known ToS name (RCP option only). Specifies that information about matching packets will be sent to the console. Specifies that the input interface is to be included in the log. Specifies that packets in IPv6 datagram fragments are to be matched (RCP option only).
deny (standard)
In a standard access-list, sets the conditions under which packets are denied. The no form of this command removes a deny condition from the access-list through specification of a sequence number and/or matching deny clause. Syntax deny [seq sequence-number] {ip-address [wildmask] | any | host ip-address} [log] no deny {seq sequence-number | [seq sequence-number] {ip-address [wildmask] | any | host
5-89
ip-address} [log]} Parameters Parameter sequence-number Description Unique sequence number of the deny clause being added or deleted; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access-list. Access is denied for all addresses matching the IP address and wildcard mask combination (if wildcard mask is not specified, 0.0.0.0 is assumed). Access is denied for all IP addresses. Access is denied for this host IP address. Specifies that information about matching packets will be sent to the console.
ip-address [wildmask]
description (interface)
Assigns a descriptive string to an interface. The no form of this command un-assigns the descriptive string from an interface. Syntax description string no description [string] Parameters Parameter string Description Alpha-numeric-symbolic characters of the description, maximum number of characters is 255. If the string contains a space character or is null, the string must begin and end with a quotation-mark character (). Mode Interface Configuration (Admin, Em, Loopback, NNET, Null, Tunnel)
5-90
diff
Compares two files and displays the differences. Syntax diff filename1 filename2 Parameters Parameter filename1 filename2 Description Name of the first file as [device:][directory/]file. Name of the second file as [device:][directory/]file
Mode Privileged EXEC Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). For a complete list of valid device arguments, refer to the dir command documentation.
dir
Displays information on all files in a file directory, or a single file in a file directory if a filename is specified. If no inputs are specified, information on all files in the current file directory is displayed. Syntax dir [directory-name | filename] Parameters Parameter directory-name filename Mode Description Name of the file directory as [device:]directory. Name of the file as [device:][directory/]file.
5-91
Privileged Exec Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). The list of valid device arguments includes: backup Directory area for all backup files; cdrw Compact Disk physical storage device; mibs Directory area for all MIBS (Managed Information Bases); swdepot Directory area for all software loads; and trace Directory area for all trace debug files. Media should always be removed from the cdrw device by using the eject command.
disable (EXEC)
Exits the Privileged EXEC Mode and/or enters into a lower privileged level. If the level is not specified, the default level is 1 (User EXEC Mode). Syntax disable [level] Parameters Parameter level Mode User EXEC Description Privilege level, range is 0 to 15.
distance (BGP)
Specifies the External BGP administrative distance for routing policy. The no form of this command returns the value to its default. Syntax distance administrative-distance ip-address wildmask [access-list-id] no distance administrative-distance ip-address wildmask [access-list-id] Parameters Parameter Description
5-92
administrative-distance
Administrative distance to be used. The lower the number, the higher the trust rating, range is 10 to 255, external BGP routes have an administrative distance of 20. BGP peers source IP address and inverse mask (wildmask). Access list to be applied to incoming route updates.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
distance (OSPF)
Sets the default administrative distance for OSPF routes or the routes specified. The no form of this command removes the previously-set default administrative distance and causes the router to use the default distance of 110 for OSPF routes.
5-93
Syntax distance default-distance-value [ip-address wildmask [access-list-id]] no distance [default-distance-value] [ip-address wildmask [access-list-id]] Parameters Parameter default-distance-value ip-address wildmask Description Default administrative distance for OSPF routes, range is 1 to 255. Sets the administrative distance for routes matching this IP address and inverse mask (wildmask). Sets the administrative distance for routes permitted by this standard IP access list.
access-list-id
distance bgp
Specifies administrative distances to be used for external, internal, and local BGP routes. The no form of this command returns the distance values to their defaults. Syntax distance bgp distance-external distance-internal distance-local no distance bgp [distance-external distance-internal distance-local] Parameters Parameter distance-external Description Administrative distance to be used for BGP external routes, range is 1 to 255, default is 20. Administrative distance to be used for BGP internal routes, range is 1 to 255, default is 200. Administrative distance to be used for BGP local routes, range is 1 to 255, default is 200.
distance-internal
distance-local
5-94
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
distance ospf
Defines OSPF route administrative distances by route-type. The no form of this command sets the distance to the default of 110. Syntax distance ospf [external distance-value] [inter-area distance-value] [intra-area distance-value] no distance ospf [external distance-value] [inter-area distance-value] [intra-area distancevalue] Parameters Parameter external distance-value Description Administrative distance for external routes (learned through redistribution into OSPF), range is 0 to 255. Administrative distance for OSPF routes within this area, range is 0 to 255. Administrative distance for OSPF routes between areas, range is 0 to 255.
distribute-list in (BGP)
Enables filtering of incoming route updates, using the access or prefix list specified. The no form of the command cancels the route filtering. distribute-list {access-list-id | prefix prefix-list-id [gateway prefix-list-id] | gateway prefix-listid} in [interface-name] no distribute-list {access-list-id | prefix prefix-list-id [gateway prefix-list-id] | gateway prefixlist- id} in [interface-name] Parameters
5-95
Parameter access-list-id
Description Standard IP access list defining which networks are to be permitted and which are to be denied in routing updates. Name of the prefix list being used to determine usable routes. Name of the prefix list being used to match the next hop.
dsr
Data Success Ratio (DSR) is an aggregate percentage of data session attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the DSR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the DSR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Data Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax dsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no dsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Type/Range Default None None None None
5-96
set clear
Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear.
00 00
echo-analysis
This command is used to customize the echo analysis performed by the SVA when it is enabled to perform analogue analysis. Echo detection is performed from the perspective of the calling and the called party if streams in both directions have approximately the same energy level. When one direction has a significantly lower energy level than the other direction, echo analysis cannot be performed accurately for that direction. The allowed-signal-level-difference parameter defines the boundary for this determination. Echo analysis is performed by identifying periods of active speech and then searching for echo in the opposite direction during these active speech periods. Active speech is identified by first calculating the active signal level throughout the call sample as specified by the media-analysis command. The signal level is then calculated for subintervals of the call sample. Subintervals whose signal level is close to the sample's signal level is treated as active speech. The talkeractive-level parameter defines the range for this comparison. If the Signal to Noise Ratio (SNR) of the talker's stream is small, it may not be possible to distinguish active speech from noise. The talker-minimum-snr parameter specifies the criterion for making this determination. The duration of the active speech period must be long enough to perform the echo detection algorithm. The talker-minimum-active-duration parameter defines the minimum amount of active speech required. To accommodate breaks in speech, periods of active speech with intermediate pauses can be viewed as a continues talking period if the ratio of speech to silence is sufficiently high. The talker-active-ratio parameter determines the acceptable percentage. Since echo is detected at a mathematical model, the analysis may indicate echo when it is not perceptible to the human ear. The echo result is expressed as an Echo Return Loss (ERL) and delay from the original source signal. By default the system filters echo results based on the standard G.131 specification, in addition a tighter limit is applied to decrease the likelihood that inaudible echo is reported as unacceptable. The echo-erl-delay-limit parameters allow this range check to be altered. In addition, the echo-level-limit parameter can be used to judge whether the echo signal level is audible. Echo detection can be effected by double talk. This occurs when both parties are talking at the same time. If this occurs during a period analyzed by the echo analysis algorithm, false echo may be detected. Likewise increased background noise injected from the listener side might be interpreted as false echo. The echo-analysis configuration command provides for various ways of handling this.
5-97
The percentage of time echo is detected during the subinterval is considered. Echo which is detected for only a small percentage of the subinterval, might indicate noise or double talk in the opposite direction is being detected as echo. The echo-occurrence-ratio parameter configures the minimum percentage of the subinterval that echo must be detected. If this threshold is not met, the echo is reported as being ignored. The listener-active-level and listener-minimum-snr can be configured to avoid periods of double talk. If the listener's SNR value is at least the minimum SNR configured and the active signal level is within range of the talker's signal level as indicated by the allowed-signal-leveldifference parameter, sub-periods with listener signal level considered to be active based on the listener-active-level range will be omitted for consideration as a talker active level subperiod. The net effect is that if both parties are interacting during an otherwise active period, then the period will be avoided due to double talk concerns. The no form of the command regardless of parameters returns the settings to their system default. Syntax echo-analysis allowed-signal-level-difference <allowed-signal-level-difference> [talkeractive-level <talker-active-level>] [talker-minimum-snr <talker-minimum-snr>] [talkerminimum-active-duration <talker-minimum-active-duration>] [talker-active-ratio <talkeractive-ratio>] [echo-occurrence-ratio <echo-occurrence-ratio>] [echo-erl-delay-limit <erl> <delay>] [echo-level-limit <echo-level-limit>] [listener-active-level <listener-active-level>] [listener-minimum-snr <listener-minimum-snr>] no echo-analysis [allowed-signal-level-difference <allowed-signal-level-difference> [talkeractive-level <talker-active-level>] [talker-minimum-snr <talker-minimum-snr>] [talkerminimum-active-duration <talker-minimum-active-duration>] [talker-active-ratio <talkeractive-ratio>] [echo-occurrence-ratio <echo-occurrence-ratio>] [echo-erl-delay-limit <erl> <delay>] [echo-level-limit <echo-level-limit>] [listener-active-level <listener-active-level>] [listener-minimum-snr <listener-minimum-snr>]] Parameters Parameter allowed-signal-leveldifference Description The allowed signal level difference between the direction with the highest signal level and the other's direction signal level. If the difference is greater than this value, echo analysis will only performed for the direction with the highest signal level. If the sub second interval's signal level is smaller than the call's signal level for the talker, and the difference is greater than this value, the interval is not considered to contain active speech. Range 0 to 100 dB Default 4 dB
talker-active-level
-10 dBov
5-98
talker-minimum-snr
The minimum SNR value required for the talker's direction to enable echo analysis to be performed. The minimum active duration the talker must speak before analysis is performed. The ratio of active speech to silence that must be maintained while determining the active speech duration. The minimum percentage of time echo must be detected during an interval to be reported. If the provisioned ratio is not met, the echo is classified as no echo. If the echo ERL measured is greater than this value and the echo delay is greater than the delay parameter, the echo should be considered acceptable. See erl parameter above for a description. If the measured signal level during the echo period is less than this value, unacceptable echo will be labeled as acceptable.
20 to 60 dB
26 dB
talker-minimum-activeduration talker-active-ratio
5 seconds 80
echo-occurrence-ratio
0 to 100
80
erl
0 to 100 dB 0 disables this check. 0 to 1000 ms 0 to -100 dBov 0 disables this check. -1 to -20 dBov A value of 0 disables double talk detection. 20 to 60 dB
40
delay echo-level-limit
96 -65 dBov
listener-active-level
If the sub second interval's signal level is smaller than the call's signal level for the listener, and the difference is less than this value, the interval is considered to contain active speech. This interval will not be analyzed for echo to avoid the affects of double talk. The minimum SNR value required for the listener's direction to enable echo analysis to be performed.
-10
listener-minimum-snr
26 dB
5-99
eject
Ejects the compact disk from the compact disk drive. Syntax eject cdrw Mode Privileged EXEC
enable (EXEC)
Exits the User EXEC Mode and/or enters into a higher privileged level. If the level is not specified, the default level is 15 (Privileged EXEC Mode). Syntax enable [level] Parameters Parameter level Mode User EXEC Description Privilege level, range is 0 to 15.
5-100
enable password
Sets a password to control enable access to a specified privilege level. The no form of this command removes a password from a specified privilege level. Syntax enable password [level level] [encryption-type] password no enable password [level level] [[encryption-type] password] Parameters Parameter level Description Privilege level for which access is controlled by password, range is 1 to 15, 1 usually indicates the EXEC mode and 15 (default) usually indicates the Privileged EXEC Mode. Specifies whether the password that follows is encrypted. A value of 0 (default) indicates the following password is not encrypted, and a value of 7 indicates the following password is encrypted. Alpha-numeric-symbolic characters of the password, range is 1 to 25 characters, embedded spaces and quotation marks are not allowed.
encryption-type
password
enable service
Enables a specified service application. The no form of this command disables a specified service application. Syntax enable service { {{ftp | telnet} [ipv4 | ipv6] [max-connections max-connections]} | ssh [version *{1 | 2}] } no enable service { {{ftp | telnet} [ipv4 | ipv6] [max-connections max-connections]} | ssh [version *{1 | 2}] }
5-101
Parameters Parameter ftp telnet ipv4 ipv6 max-connections ssh version 1 version 2 Mode Global Configuration Description Enable or disable (default) the ftp service Enable (default) or disable the telnet service Enables only IPv4 version of the specified service Enables only IPv6 version of the specified service Maximum connections per IP per minute Enable (default) or disable the secure shell service Version 1 of the SSH protocol Version 2 of the SSH protocol (default)
5-102
end
Performs an exit of configuration mode to the Privileged EXEC Mode. Syntax end Mode All configuration command modes
error
Enables routing software error debug messages to be placed in the trace file. The no form of this command disables routing software error debug messages from being placed in the trace file (default). Syntax error no error Mode Traceoptions Configuration
5-103
exec-banner
Enables both the EXEC and message-of-the-day (MOTD) banners (default). The no form of this command disables both the banners. Syntax exec-banner no exec-banner Mode Line Configuration Guidelines The no exec-banner command disables the message-of-the-day (MOTD) banner regardless of the whether the motd-banner command has enabled it.
exec-timeout
Sets the EXEC command line interpreter timeout period. The no form of this command (or specifying 0 minutes and 0 seconds) disables the EXEC command line interpreter timeout function (default). Syntax exec-timeout minutes [seconds] no exec-timeout [minutes [seconds]] Parameters Parameter minutes seconds Description Number of minutes, range is 0 to 65535. Additional number of seconds, range is 0 to 65535, default is 0.
execute
Executes a program group.
5-104
Syntax execute program-group Parameters Parameter program-group Mode Protmon Configuration Description Name of program group.
exit-address-family
Performs an exit of the Address Family Configuration Mode and returns to the Router Configuration Mode. Syntax exit-address-family Mode Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv4 Unicast)
exit (config)
Performs an exit of a configuration mode and returns to the next highest hierarchal mode. Syntax exit Mode All configuration command modes
exit (EXEC)
Exits the EXEC mode and logs off the RCP. Syntax exit
5-105
Mode Flow Aggregation Cache Configuration Guidelines Version 9 Cflow records exported by a router have an associated template that is sent to the flow collector.
5-106
file-count
Sets the number of previous file versions to maintain for the trace file. The no form of this command sets the previous number of file versions to maintain to the default value. Syntax file-count files no file-count [files] Parameters Parameter files Description Number of previous file versions maintained, range is 2 to 10, default is 2.
file-size
Sets the maximum file size for a version of the trace file. The no form of this command sets the maximum file size to the default value. Syntax file-size bytes no file-size [bytes] Parameters Parameter bytes Description Number of bytes, range is 10240 to 4294967295, default is 10485760.
find-as
Evaluates the specified source and destination IP addresses against the Routing Information Base (RIB) and determines, without actually routing the packet, the AS number from which a packet with these IP addresses would have come and the AS number to which the packet
5-107
would be routed. Syntax find-as source-ip-address destination-ip-address Parameters Parameter source-ip-address destination-ip-address Description Source ip address as it would appear in an IP packet entering this router. Destination ip address as it would appear in an IP packet entering this router.
Mode Privileged EXEC Guidelines If an address is resolved by an IGP route or an IBGP route, the AS number returned will be 0, indicating that the packet is either going to or coming from the AS to which this router belongs.
find-interface
Evaluates the specified source and destination IP addresses against the Routing Information Base (RIB) and determines the expected interface for ingress and egress for these addresses. Syntax find-interface source-ip-address destination-ip-address Parameters Parameter source-ip-address destination-ip-address Description Source ip address as it would appear in an IP packet entering this router. Destination ip address as it would appear in an IP packet entering this router.
find-prefix
5-108
Evaluates the specified source and destination IP addresses against the Routing Information Base (RIB) and determines the prefixes from the RIB that would resolve these IP addresses Syntax find-prefix source-ip-address destination-ip-address Parameters Parameter source-ip-address destination-ip-address Description Source ip address as it would appear in an IP packet entering this router. Destination ip address as it would appear in an IP packet entering this router.
Mode Privileged EXEC Guidelines If the prefix cannot be resolved, a route of 0.0.0.0/0 is returned.
fmosp
The calculation of the session's MOS percentage and the method for session categorization is described in the bmosp command. This command specifies the threshold for determining if the session has a Fair MOS percentage. This command also specifies the ratio of all fair sessions to all sessions with MOS scores calculated. If the calculated ratio is greater than the configured threshold, an alert will be generated. The command replaces the existing FMOS threshold and/or the settings for the intervals specified. The no form of the command with no arguments disables the FMOSP alert for all time intervals and returns the FMOS thresholds to their default value. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the FMOSP alert for that time interval. The no form of the command with the FSMOS and/or FVMOS value will return the threshold to its default value. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax fmosp {[fsmos <fsmos>] [fvmos <fvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no fmosp {[fsmos <fsmos>] [fvmos <fvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters
5-109
Parameter fsmos
Description Fair Speech MOS percentage threshold value. Fair Video MOS percentage threshold value. set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a fair MOS ratio is greater than this value an alarm will be sent. If the percentage of sessions with a fair MOS ratio is less than or equal to this value the alarm will be cleared.
Type/Range 0-100 80
Default
fvmos
40-100
80
interval1 interval2
None None
clear
0-99
none
format
Formats a blank compact disk. Syntax format cdrw Mode Privileged EXEC
5-110
Guidelines Because this command destroys all data on a compact disk, this command will display a warning message along with a confirmation message. Type y to continue or n to cancel this command.
ganc
The GANC is a network element used in a UMA or Femtocell deployment that acts as a gateway to the Core Network. The SVP can provide additional information by identifying session flows and data session bandwidth associated with a GANC. The no form of this command removes the GANC configuration for the GANC identified by the site-id. This command puts CLI in ganc configuration mode which enables polling and session path identification configuration commands to be entered. NOTE: If the no form of the command is given and there are active sessions identified with that GANC, the ganc is not removed from the system. Instead a periodic check is made waiting for the sessions to be removed. If the session is a monitor-path session, it must be removed manually using the no monitor path command. Syntax ganc <site-id> no ganc <site-id> Parameters Parameter site-id Description A network unique string for the GANC. Type/Range String Default None
gmosp
The calculation of the session's MOS percentage and the method for session categorization is described in the bmosp command. This command specifies the ratio of all good sessions to all sessions with MOS scores calculated. If the calculated ratio is less than the provisioned ratio, an alert will be generated. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the GMOSP alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the GMOSP alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold.
5-111
Syntax gmosp { [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no gmosp {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a good MOS ratio is less than this value an alarm will be sent. If the percentage of sessions with a good MOS ratio is greater than or equal to this value the alarm will be cleared. 0-100 Type/Range Default None None
clear
0-100
none
help
Displays a brief overview of the help feature. Syntax help
5-112
hisr
Handover In Success Ratio (HISR) is a percentage of handover in attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the HISR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the HISR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Handover In Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax hisr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no hisr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
history
5-113
Enables the command line history feature (default). Alternatively, with the size keyword specified, this command sets the number of lines in the history buffer. The no history form of this command disables the command line history feature. The no history size form of this command sets the number of lines in the history buffer to the default value. Syntax history [size buffer-size] no history [size [buffer-size]] Parameters Parameter buffer-size Description Number of lines in the history buffer, range is 0 to 255, default is 10.
hosr
Handover Out Success Ratio (HOSR) is a percentage of handover out attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the HOSR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the HOSR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Handover Out Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax hosr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no hosr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. Type/Range Default None None
5-114
set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100
None None 00 00
hostname
Sets a new value for the SVP hostname. The no form of this command sets the hostname back to the default hostname value. This command will be denied if the hostname argument entered matches a hostname already set within another partition, or if the hostname argument entered is one of the reserved default hostname values. Syntax hostname hostname no hostname [hostname] Parameters Parameter hostname Description Network unique name to be assigned to the SVP, range is 1 to 63 alphanumeric or hyphen characters (the first or last character cannot be a hyphen).
hsrp-mib
This command enables the SVP to gather information from the router's HSRP MIB. HSRP is a Cisco proprietary variation of VRRP. HSRP is deployed at the access point to a network to provide redundancy to hosts connected via a layer 2 network. By enabling this feature for the routers involved in the HSRP scheme, the SVP can accurately determine which router is receiving traffic from the hosts and performing the IP forwarding on behalf of the access network.
5-115
NOTE: This feature relies on snmp polling being configured for the router in question. If it is not enabled, HSRP collection will not be performed. If the no form of this command is issued, the system will not collect HSRP information from the router. Syntax hsrp-mib [poll-multiple <poll-multiple>] no hsrp-mib [poll-multiple <poll-multiple>] Parameters Parameter poll-multiple Description Number of SNMP poll intervals between hsrp-mib polls. E.g. if snmp-access poll interval is 90 seconds and this value is 2, the hsrp-mib will be polled every 180 seconds. Poll interval should be less than 5 minutes. Type/Range 1-10 1 Default
ignore-media-session
In the beginning of a phone call, a caller may be directed to a voice recorder or may be temporarily connected to a default end point until the true end point is determined. To reflect the true user experience, the SVA must ignore this movement of the end points until the call is properly connected. This command allows the user to configure how these temporary media sessions are identified. The minimum-duration parameter defines the minimum time in seconds a media session must be active before it used to effect the call's MOS scoring. The stabilized-duration parameter defines the media-session duration that defines when the end point shuffling can be considered over. If this parameter is configured with a non-zero value and a media session persists for at least as long as this duration, all previous sessions are ignored. If no stabilized session duration occurs, than all sessions with a duration equal to or larger than the minimum duration will be used for scoring. If a media session is ignored, it is still saved in the session detail output but the score of the session is not factored into the MOS score of the call. The no form of this command regardless of parameters sets the values back to their default value.
5-116
Syntax ignore-media-session minimum-duration <minimum-duration> [stabilized-duration <stabilized-duration>] no ignore-media-session [minimum-duration <minimum-duration> [stabilized-duration <stabilized-duration>]]
Parameters Parameter minimum-duration Description Minimum duration required for a media session to be used for scoring. Stabilized-duration defines the minimum duration expected of a media session when the call end point shuffling is over. Range 0-30 Default 2
stabilized-duration
0, 30-120 0:disabled
install
Installs a new software package on the system. The no form of this command uninstalls a software package on the system.. Syntax install package-name [subpackage-name] [partition {admin | all | hostname | partitionnumber}] {active | peer | self | standby} no install package-name [subpackage-name] [partition {admin | all | hostname | partitionnumber}] {active | peer | self | standby} Parameters Parameter package-name subpackage-name partition hostname Description Name of the software package to be installed. Name of the subpackage within the software package to be installed. Install partition-specific software only within specified partitions. Hostname of a router partition, range is 1 to 63 alphanumeric or hyphen characters (the first or last character cannot be a hyphen).
5-117
Router partition number, range is 0 to 5. Installs software on the active RCP. Installs software on peer RCP. Installs software on self RCP. Installs software on the standby RCP.
interface
Enables debug messages of specified interface names (or all names if none specified) to be placed in the trace file. The no form of this command disables debug messages of specified interface names (or all names if none specified) from being placed in the trace file (default). Syntax interface [interface-name]... no interface [interface-name]... Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | null 0 | port-chan channelnumber[. subinterface] | pos-chan channel-number | tunnel tunnelnumber}.
interface admin
Enters into the Interface Configuration Mode to configure a specified Admin interface. Syntax interface admin 0 Mode Global Configuration
5-118
interface loopback
Creates a Loopback interface and enters into the Interface Configuration Mode. The no form of this command deletes a Loopback interface. Syntax interface loopback loopback-number no interface loopback loopback-number Mode Global Configuration Guidelines Loopback 0 is required for proper system operation, and therefore cannot be deleted.
interface nnet
Enters into the Interface Configuration Mode to configure a specified NNET interface. Syntax interface nnet rcp-number Mode Global Configuration
interface null
Enters into the Interface Configuration Mode to configure a specified Null interface. Syntax interface null 0 Mode Global Configuration
internal
Enables software-internal debug messages to be placed in the trace file. The no form of this command disables software-internal debug messages from being placed in the trace file (default).
5-119
interval-start-time
Session thresholds can be set for different times of the day so that the sensitivity to network issues can account for peak usage times. This command specifies the start-time for up to 4 times of the day. This model allows for morning peak usage, mid-day usage, afternoon usage and late night usage periods. The end-time of a period is the start-time of the next period. If the time interval is not defined for the session alerts, then no alerts will be generated regardless of whether the alert threshold for that interval is defined. The command specifies the complete set of intervals to be used and replaces any previous setting. The no form of the command will delete all time intervals regardless of what intervals are specified, thus disabling session alert generation. This command defines the start hour for the different times of day that that session thresholds will follow. The time interval must be defined in order for the configured set/clear thresholds to take effect. The time intervals are validated to ensure there are no overlaps among the periods. Syntax interval-start-time {[time1 <hh>] | [time1 <hh time2 <hh>] | [time1 <hh time2 <hh> time3 <hh>] | [time1 <hh time2 <hh> time3 <hh> time4 <hh>]} no interval-start-time [[time1 <hh>] | [time1 <hh time2 <hh>] | [time1 <hh time2 <hh> time3 <hh>] | [time1 <hh time2 <hh> time3 <hh> time4 <hh]] Parameters Parameter time1 time2 time3 time4 Description Hour of the day for first time interval. Hour of the day for second time interval. Hour of the day for third time interval. Hour of the day for fourth time interval. Type/Range Decimal 00 to 23 Decimal 00 to 23. Decimal 00 to 23. Decimal 00 to 23. Default None None None None
5-120
ip-address
Enables debug messages of prefix or IP address information, based on specified access-lists, to be placed in the trace file. The no form of this command disables debug messages of prefix or IP address information, based on specified access-lists (or all access-lists if none specified), from being placed in the trace file (default). Syntax ip-address {access-list-id}... no ip-address [access-list-id]... Parameters Parameter access-list-id Description Alphanumeric name string identifier of an access-list.
Mode Traceoptions Configuration Guidelines The ip-address and ip-address prefix-list commands are mutually exclusive; they cannot be selected as trace options for the same trace file.
ip-address prefix-list
Enables debug messages of prefix or IP address information, based on specified prefix-lists, to be placed in the trace file. The no form of this command disables debug messages of prefix or IP address information, based on specified prefix-lists (or all prefix-lists if none specified), from being placed in the trace file (default). Syntax ip-address prefix-list {prefix-list-id}... no ip-address prefix-list [prefix-list-id]... Parameters Parameter Description
5-121
prefix-list-id
Mode Traceoptions Configuration Guidelines The ip-address and ip-address prefix-list commands are mutually exclusive; they cannot be selected as trace options for the same trace file.
ip access-group (global)
Enables the SVP to conditionally process packets on all interfaces that have inheriting of a global access-list enabled and do not have a per-interface access-list specified, based on a specified global access-list. The no ip access-group form of this command removes the specification of a global access-list. When an rcp-receive access-list is being applied by the SVP (through the ip receive access-list command) and a global in access-list is also being applied by the SVP (through the global ip access-group command), the global access-list is processed first. If a permit or deny match is not found within the global access-list, the rcp-receive access-list is then searched. If a permit or deny match is not found within the rcp-receive access-list, an implicit deny is performed. Syntax ip access-group access-list-id {in | out} no ip access-group [access-list-id] {in | out} Parameters Parameter access-list-id in out Description Alphanumeric name string of the access-list. Applies the specified access-list to packets entering the interface (applied by line card and SVP). Applies the specified access-list to packets exiting the interface (applied by SVP only).
ip access-group (interface)
5-122
Enables the SVP to conditionally process packets on an interface based on a specified perinterface access-list, or based on an inherited global access-list when a per-interface access-list is not specified (default). The no ip access-group form of this command removes the specification of a per-interface access-list (allowing inheriting of a global access-list, if enabled). The no ip access-group inherit-acl form of this command disables inheriting of a global accesslist. The special string inherit-acl is a keyword of this command and should not be used as the name of an access list identifier. When an rcp-receive access-list is being applied by the SVP (using the ip receive accesslist command) and a per-interface in access-list is also being applied by the SVP (using the interface ip access-group command), the per-interface accesslist is processed first. If a permit or deny match is not found within the per-interface access-list, the rcp-receive access-list is then searched. If a permit or deny match is not found within the rcp-receive access-list, an implicit deny is performed. Syntax ip access-group {access-list-id {in | out} | inherit-acl} no ip access-group {[access-list-id] {in | out} | inherit-acl} Parameters Parameter access-list-id in out inherit-acl Description Alphanumeric name string of the access-list. Applies the specified access-list to packets entering the interface (applied by line card and SVP). Applies the specified access-list to packets exiting the interface (applied by SVP only). Enables inheriting of a global access-list when a perinterface access-list is not specified.
Mode Interface Configuration (Admin, Loopback, NNET, Null, Tunnel, EM) Subinterface Configuration (EM)
ip access-list
Creates a standard or extended access-list and enters into an Access-List Configuration Mode. The no form of this command deletes an access-list, or removes a clause from the access-list through specification of a sequence number. Syntax ip access-list {standard | extended} access-list-id no ip access-list {standard | extended} access-list-id [seq sequence-number]
5-123
Parameters Parameter standard extended access-list-id sequence-number Description Standard access-list, the deny and permit commands used must be standard. Extended access-list, the deny and permit commands used may be extended. Alphanumeric name string (40 characters maximum) of the access-list being defined. Sequence number of the clause being removed from the access-list.
ip access-list sequence-enable
Enables the display of sequence numbers when showing access-lists. The no form of this command disables the display of sequence numbers when showing access-lists (default). Syntax ip access-list sequence-enable no ip access-list sequence-enable Mode Global Configuration
ip address
Assigns an IP address to an interface. The no form of this command un-assigns an IP address to an interface. There is no limit (except router memory) to the number of secondary IP addresses that can be assigned to an interface; however, only one primary IP address can be assigned. Syntax ip address {ip-address netmask | ip-address/mask-length} [secondary] no ip address [{ip-address netmask | ip-address/mask-length} [secondary]] Parameters
5-124
Parameter ip-address netmask ip-address/mask-length secondary username <username> password <password> Mode
Description IP address and network mask of the interface IP address and mask length of the interface Indicates an assignment of a secondary IP address to the interface. Name of the user for user name password authentication. Password for the user.
Interface Configuration (admin, em, loopback, nnet, tunnel, xyxs) Subinterface Configuration (em)
ip as-path access-list
Creates or modifies an as-path access list to be used by BGP. The no form of this command deletes the as-path access-list (if no sequence number is specified) or the as-path access-list clause specified by the sequence number. Syntax ip as-path access-list as-path-access-list-id [seq sequence-number] {deny | permit} aspathregular- expression no ip as-path access-list as-path-access-list-id [seq sequence-number] [{deny | permit} aspath- regular-expression] Parameters Parameter as-path-access-list-id Description Alphanumeric string (40 characters maximum) identifying the as-path access list being created or modified. Unique sequence number of the deny, permit, or remark clause being added to (or deleted from) the as-path access list; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the as-path access list. Denies access for matching AS-paths. Permits access for matching AS-paths. Regular expression of the autonomous system path to match.
sequence-number
5-125
ip bgp-community new-format
Displays BGP communities in the format AA:NN (AS-Number:Community Number, each consisting of 2 bytes) (default). The no form of this command sets the BGP community format to NN:AA (Community Number:AS-Number). Syntax ip bgp-community new-format no ip bgp-community new-format
5-126
ip broadcast-address
Sets the broadcast address for an interface. The no form of this command sets the broadcast address to the default value. Syntax ip broadcast-address ip-address no ip broadcast-address [ip-address] Parameters Parameter ip-address Description Broadcast IP address of the interface, values are 0.0.0.0 or 255.255.255.255, default is 255.255.255.255
ip classless
Enables classless interdomain routing (default). Syntax ip classless Mode Global Configuration
ip community-list
Creates or modifies a BGP community list and controls access to that list. The no form of this command deletes the community-list (if no sequence number is specified) or the community-list clause specified by the sequence number. Syntax
5-127
ip community-list [standard | expanded] community-list-id [seq sequence-number] {permit | deny} {{internet | no-export | local-as | no-advertise} | {community-number}...} no ip community-list community-list-id [seq sequence-number] [{permit | deny} {{internet | no-export | local-as | no-advertise} | {community-number}...}] Parameters Parameter standard expanded Description Standard community list, which can be named by a string. Expanded community list, which can contain regular expressions (default if neither standard nor expanded is entered). Alphanumeric string identifying the community-list. Unique sequence number of the deny, permit, or remark clause being added to (or deleted from) the community list; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the community list. Permits access for matching communities. Denies access for matching communities. Internet community. Routes with this community are sent to peers in other sub-autonomous systems within a confederation Do not advertise this route to an EBGP peer External systems are those outside the confederation If there is no confederation, an external system is any EBGP peer. Send this route to peers in other subautonomous systems within the local confederation; do not advertise this route to an external system. Do not advertise this route to any peer (internal or external).
community-list-id sequence-number
local-as
no-advertise
5-128
community-number
Community number configured by a set community command; this can be any of the following: number from 1 to 4294967295; specify a single number or multiple numbers separated by a space. number in the format n:m, where n and m are integers in the range 0-65535. community symbol as defined with the define community command; specify a single symbol or multiple symbols separated by a space.
ip community-list display-community-symbols
Enables the RCP to show community symbols (as configured in the define community command), rather than community numbers, when showing community-lists (default). The no form of this command enables the RCP to display community numbers, not the symbols, when showing community-lists. Syntax ip community-list display-community-symbols no ip community-list display-community-symbols Mode Global Configuration
ip community-list sequence-enable
Enables the display of sequence numbers when showing community-lists. The no form of this command disables the display of sequence numbers when showing community-lists (default). Syntax ip community-list sequence-enable no ip community-list sequence-enable
Mode
5-129
Global Configuration
ip default-network
Sets which route will be used as the default network for unknown addresses. The no form of this command removes the default network. Syntax ip default-network ip-address no ip default-network ip-address Parameters Parameter ip-address Mode Global Configuration Description Any valid class A, B, or C IP address.
ip domain-list
Sets one or more domain names to be appended to the domain search list. The no form of this command removes one or more domain names from the domain search list. Syntax ip domain-list {domain}... no ip domain-list [domain]... Parameters Parameter domain Description Domain name to be appended or removed from the domain search list, up to five alpha-numeric-symbolic domain name entries are allowed separated by spaces. The total number of characters in all entries combined cannot exceed 200.
5-130
Guidelines This command appends domain name entries to an internal list. This command is denied if the internal list would exceed a maximum of 5 entries, or if the total number of domain name characters in all entries would exceed 200.
ip domain-lookup
Enables Domain Name System (DNS) lookup for name/address translation (default). The no form of this command disables DNS lookup. Syntax ip domain-lookup no ip domain-lookup Mode Global Configuration
ip domain-name
Sets the default domain name for an unqualified host name. The no form of this command removes the default domain name. Syntax ip domain-name domain no ip domain-name [domain] Parameters Parameter domain Description Default domain name, range is 1 to 200 alpha-numeric-symbolic characters.
Mode Global Configuration Guidelines The default domain name specified by this command will be ignored if one or more default domain names exist within the domain list.
5-131
ip extcommunity-list
Creates or modifies a BGP extended community list and controls access to that list. The no form of this command deletes the extended community-list (if no sequence number is specified) or the extended community-list clause specified by the sequence number. Syntax ip extcommunity-list [standard] ext-community-list-id [seq sequence-number] {permit | deny} *{rt {as-number:32-bit-value | ip-address:16-bit-value} | soo {as-number:32-bit-value | ipaddress: 16-bit-value} | lbw {as-number:32-bit-value | ip-address:16-bit-value} | opaque 32-bit integer:32-bit-integer} no ip extcommunity-list [standard] ext-community-list-id [seq sequence-number] {permit | deny} *{rt {as-number:32-bit-value | ip-address:16-bit-value} | soo {as-number:32-bit-value | ipaddress: 16-bit-value} | lbw {as-number:32-bit-value | ip-address:16-bit-value} | opaque 32-bit integer:32-bit-integer} Parameters Parameter standard Description Standard extended community list, which can be named by a string, and cannot contain regular expressions. Alphanumeric string identifying the extended community-list. Unique sequence number of the deny, permit, or remark clause being added to (or deleted from) the extended community list; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the extended community list. Permits access for matching extended communities. Denies access for matching extended communities. Matches routes with this Route Target (rt) extended community attribute value. Matches routes with this Route Target (rt) extended community attribute value. Matches routes with this soo (site-of-origin) extended community attribute value. Matches routes with this Link Bandwidth (lbw) extended community attribute value.
ext-community-list-id sequence-number
5-132
Matches routes with this Link Bandwidth (lbw) extended community attribute value. Matches routes with this extended community type and value (a raw 64-bit extended community value).
ip extcommunity-list sequence-enable
Enables the display of sequence numbers when showing extended community-lists. The no form of this command disables the display of sequence numbers when showing extended communitylists (default). Syntax ip extcommunity-list sequence-enable no ip extcommunity-list sequence-enable Mode Global Configuration
ip ftp password
Sets a File Transfer Protocol (FTP) password. The no form of this command removes an FTP password. Syntax ip ftp password [encryption-type] password no ip ftp password [[encryption-type] password] Parameters Parameter encryption-type Description Specifies whether the password that follows is encrypted, a value of 0 (default) indicates the following password is not encrypted, and a value of 7 indicates the following password is encrypted.
5-133
password
Alpha-numeric-symbolic characters of the password, range is 1 to 25 characters, embedded spaces and quotation marks are not allowed.
ip ftp source-interface
Sets the File Transfer Protocol (FTP) connection source address to that of the specified interface. The no form of this command sets the FTP connection source address to the default interface value. Syntax ip ftp source-interface interface-name no ip ftp source-interface [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
ip ftp username
Sets a File Transfer Protocol (FTP) username. The no form of this command removes an FTP username. Syntax ip ftp username username no ip ftp username [username] Parameters Parameter Description
5-134
username
Alpha-numeric-symbolic characters of the username, range is 1 to 25 characters, embedded spaces and quotation marks are not allowed.
ip host
Assigns a host name to an IP address or multiple IP addresses. The no form of this command unassigns an IP address or multiple IP addresses from a host name. Syntax ip host host {ip-address}... no ip host host [ip-address]... Parameters Parameter host ip-address Mode Global Configuration Guidelines This command adds IP address entries to an internal list. This command is denied if the internal list would exceed a maximum of 8 entries. Description Name of the host device to assign IP address(es). IP address to be assigned to the host name.
ip mask-reply
Enables sending ICMP Mask Reply messages. The no form of this command disables sending ICMP Mask Reply messages (default). Syntax ip mask-reply no ip mask-reply
5-135
ip name-server
Sets one or more Domain Name System (DNS) server IP addresses. The no form of this command removes one or more DNS server IP addresses. Syntax ip name-server {ip-address | ipv6-address}... no ip name-server [ip-address]... Parameters Parameter ip name-server ipv6-address Mode Global Configuration Guidelines This command adds IP address entries to an internal list. This command is denied if the internal list would exceed a maximum of 3 entries. When multiple name servers are specified, the server determined to be nearest (based on response times) is used. Description IPv4 address of a DNS server. IPv6 address of a DNS server
ip ospf authentication-key
Sets the simple password to be used for this interface by neighboring routers. The no form of this command removes the password. Syntax ip ospf authentication-key [encryption-type] password no ip ospf authentication-key [encryption-type] [password] Parameters Parameter Description
5-136
encryption-type
Number specifying the type of password encryption to use when storing and displaying the password, range is 0 to 7, default is 0 (no encryption). Simple password to be used by neighboring routers, a continuous string of characters, up to 8 bytes long.
password
Mode Interface Configuration (Loopback, Em, Tunnel) Guidelines If the command password-encryption has been enabled, all passwords are encrypted for storage and display, regardless of the encryption type parameter specified here.
ip ospf authentication
Sets the OSPF authentication to the specified type (or simple authentication if none specified). The no form of this command sets the OSPF authentication to the type specified for the OSPF area (default). Syntax ip ospf authentication [null | message-digest] no ip ospf authentication [null | message-digest] Parameters Parameter null message-digest Description No authentication will be used on the interface. MD5 authentication will be used on the interface.
ip ospf cost
Sets the cost of sending packets out this interface. The no form of this command sets the cost to the default value.
5-137
Syntax ip ospf cost cost no ip ospf cost [cost] Parameters Parameter cost Description 16-bit integer representing the cost of using this interface for outgoing packets, range is 1 to 65535, default is reference-bandwidth (108, or the value specified in auto-cost referencebandwidth) divided by the interface bandwidth. Mode Interface Configuration (Loopback, Em, Tunnel)
ip ospf database-filter
Enables the filtering of all outgoing LSAs to an interface. The no form of this command disables the filtering of all outgoing LSAs (default). Syntax ip ospf database-filter all out no ip ospf database-filter all out Mode Interface Configuration (Loopback, Em, Tunnel)
ip ospf dead-interval
Sets the maximum amount of time that this routers neighbors will wait for Hello packets before declaring this router dead (down). The no form of this command sets this value to the default Syntax ip ospf dead-interval seconds no ip ospf dead-interval [seconds] Parameters
5-138
Parameter seconds
Description Amount of time in seconds that this routers neighbors will wait for Hello packets from this router before declaring this router dead, range is 1 to 65535, defaults are: 40 for broadcast, 120 for NBMA, 120 for point-tomultipoint, 40 for point-to-point networks (4 times the value of ip ospf hello-interval).
Mode Interface Configuration (Loopback, Em, Tunnel) Guidelines Changing the value of ip ospf hello-interval automatically changes the value of ip ospf deadinterval to 4 times the value of ip ospf hello-interval.
ip ospf flood-reduction
Enables flood-reduction for this interface. The no form of this command disables flood-reduction (default). Syntax ip ospf flood-reduction no ip ospf flood-reduction Mode Interface Configuration (Loopback, Em, Tunnel)
ip ospf hello-interval
Sets the amount of time that this router waits between sending Hello packets on this interface. The no form of this command sets this value to the default. Syntax ip ospf hello-interval seconds no ip ospf hello-interval [seconds] Parameters Parameter Description
5-139
seconds
Amount of time in seconds that passes between the sending of Hello packets on this interface, range is 1 to 65535, defaults are: 10 for broadcast, 30 for NBMA, 30 for point-tomultipoint, 10 for point-to-point.
Mode Interface Configuration (Loopback, Em, Tunnel) Guidelines Changing the value of ip ospf hello-interval automatically changes the value of ip ospf deadinterval to 4 times the value of ip ospf hello-interval.
ip ospf message-digest-key
Sets the MD5 key to be used for this interface by neighboring routers. The no form of this command removes the key. Syntax ip ospf message-digest-key key-id md5 [encryption-type] key no ip ospf message-digest-key key-id md5 [encryption-type] [key] Parameters Parameter key-id encryption-type Description Identifier for the MD5 key, range is 1 to 255. Number specifying the type of encryption to use when storing and displaying the md5 key, range is 0 to 7, default is 0 (no encryption). Alphanumeric string of up to 16 characters that is the value of the MD5 key.
key
Mode Interface Configuration (Loopback, Em, Tunnel) Guidelines If the command password-encryption has been enabled, all passwords are encrypted for storage and display, regardless of the encryption type parameter specified here.
ip ospf network
5-140
Sets the OSPF network to be a type other than the default for this interface. The no form of this command sets the network type to the default. Syntax ip ospf network {broadcast | non-broadcast | point-to-point | point-to-multipoint} no ip ospf network [broadcast | non-broadcast | point-to-point | point-to-multipoint] Parameters Parameter broadcast non-broadcast point-to-point point-to-multipoint Description Configures the network as a broadcast network. Configures the network as a non-broadcast multi-access (NBMA) network. Configures the network as point-to-point. Configures the network as point-tomultipoint.
ip ospf priority
Sets the RCP priority, which is used in the election of Designated Routers. The no form of this command sets the RCP priority value to the default value. Syntax ip ospf priority number no ip ospf priority [number] Parameters Parameter number Description Priority value for this router, range is 0 to 255, default is 1.
5-141
Setting the IP OSPF priority to zero makes the RCP ineligible to become designated router or backup designated router for this LAN segment.
ip ospf retransmit-interval
Sets the retransmit interval for the RCP. The no form of this command sets the value to the default. Syntax ip ospf retransmit-interval seconds no ip ospf retransmit-interval [seconds] Parameters Parameter seconds Description Amount of time in seconds to wait before retransmitting unacknowledged OSPF packets, range is 1 to 65535, default is 5.
ip ospf transmit-delay
Sets the retransmit interval for the RCP. The no form of this command sets the value to the default. Syntax ip ospf transmit-delay seconds no ip ospf transmit-delay [seconds] Parameters Parameter seconds Description Amount of time in seconds to wait before retransmitting unacknowledged OSPF packets, range is 1 to 65535, default is 5.
5-142
ip prefix-list
Creates a prefix-list. The no form of this command deletes either the entire prefix-list (if a specific deny or permit clause is not given) or the deny or permit clause specified. Syntax ip prefix-list prefix-list-id [seq sequence-number] {deny | permit} {ip-address/mask-length} [ge mask-length] [le mask-length] no ip prefix-list prefix-list-id [seq sequence-number] {deny | permit} {ip-address/mask-length} [ge mask-length] [le mask-length] Parameters Parameter prefix-list-id sequence-number Description Name of the prefix list being created. Used when creating an entry in the prefixlist to specify a sequence number for the entry; by default, sequence numbers start at 5 and increment by 5 for each entry added to the end of the prefix-list. Denies access for matching conditions. Permits access for matching conditions. IP address and netmask length of the prefix being denied or permitted. If a netmask length range is to be used (for prefixes more specific than that specified in ip-address/mask-length), specifies the from portion of the range. The to portion of the netmask length range.
le mask-length
ip prefix-list description
Assigns a descriptive string to a prefix-list. The no form of this command un-assigns the descriptive string from a prefix-list. Syntax ip prefix-list prefix-list-id description description-string
5-143
no ip prefix-list prefix-list-id description [description-string] Parameters Parameter prefix-list-id description-string Description Name of the prefix-list for which a description is being added. Text describing the prefix-list, may contain up to 80 characters.
ip prefix-list sequence-number
Enables the automatic generation of sequence numbers for items in a prefix-list (default). The no form of this command disables automatic generation of sequence numbers. Syntax ip prefix-list sequence-number no ip prefix-list sequence-number Mode Global Configuration
ip proxy-arp
Enables proxy ARP (Address Resolution Protocol) on an interface (default). The no form of this command disables proxy ARP on an interface. Syntax ip proxy-arp no ip proxy-arp Mode Interface Configuration (Port-chan) Subinterface Configuration (Port-chan)
ip qsr-export host
5-144
To add a host that can receive QSR reports via ftp, use ip qsr-export host command. Multiple hosts can be configured. Syntax ip qsr-export host { {primary | alternate } <ip-address> ftp username <username> [encrypted] password <password> } no ip qsr-export host { primary | alternate } [ <ip-address> ] [ ftp username <username> [encrypted] password <password> ] Parameters Parameter primary | alternate ip-address ftp username <username> password <password> Mode Global configuration Description the host added as a primary or alternate host IP address of the host receiving QSR reports. Currently supported protocol. Name of the user for user name password authentication. Password for the user.
ip qsr-export interval
To set the QSR report generation interval, use ip qsr-export interval command. Syntax ip qsr-export interval {hours <hh> [base-export-time <hh:mm>]} no ip qsr-export interval [hours <hh> ] [base-export-time <hh:mm>] Parameters Parameter base-export-time <hh:mm> hours <hh> Mode Global configuration Description Interval time in hours:minutes format. Interval in hours (1--24).
5-145
ip radius source-interface
Sets the source address for all outgoing RADIUS packets to that of the specified interface. The no form of this command sets the source address for all outgoing RADIUS packets to the default interface value. Syntax ip radius source-interface interface-name no ip radius source-interface [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
ip receive access-list
Enables the RCP to conditionally process packets received by the RCP based on a specified rcp-receive access-list. The no form of this command removes the specification of an rcpreceive access-list. Syntax ip receive access-list access-list-id no ip receive access-list [access-list-id] Parameters Parameter access-list-id Mode Global Configuration Guidelines When an rcp-receive access-list is being applied by the RCP (through the ip receive access-list command) and a per-interface/global in access-list is also being applied by the RCP (through Description Alphanumeric name string of the access-list.
5-146
the interface/global ip access-group command), the per-interface/global access-list is processed first. If a permit or deny match is not found within the per-interface/global access-list, the rcpreceive access-list is then searched. If a permit or deny match is not found within the rcp-receive access-list, an implicit deny is performed
ip redirects
Enables sending ICMP Redirect Messages on an interface (default). The no form of this command disables sending ICMP Redirect Messages. Syntax ip redirects no ip redirects Mode Interface Configuration (Admin, Loopback, NNET, Null, Em, Tunnel)
ip routing
Enables IP routing on the RCP. The no form of this command disables IP routing. Syntax ip routing no ip routing Mode Global Configuration
ip route
To configure a static IP route, use the ip route command. The no form of the command deletes a static route. In this release, the only change to this command is to add the drib key word. Syntax ip route { <ip-address><ip-netmask> | <ip-address/mask-length> } { <ip-address> | { <interface-name-string> [ <ip-address> ]}} [ <distance-value> ] [permanent] [ tag <tag-value> ] [ drib <drib-name> ] no ip route { <ip-address><ip-netmask> | <ip-address/mask-length> } { <ip-address> | { <interface-name-string> [ <ip-address> ]}} [ <distance-value> ] [permanent] [ tag <tag-value>
5-147
] [ drib <drib-name> ] Parameters Parameter <ip-address><ip-netmask> <ip-address/mask-length> <ip-address> <interface-name-string> <distance-value> <tag-value> Description The parameter pairs to specify the destination IP address and netmask of the static route being created. IP address of the next hop to reach the static route. The interface name string defined with ifconfig. administrative distance to be used, the lower the number, the higher the trust rating, range is 1 to 255, default is 1. decimal value that can be used as a match value for controlling redistribution via route maps, range is 0 to 4294967295. The name of the DRIB, limited to 40 characters.
ip source-route
Sets router to process packets with IP source routing header options (default). The no form of this command sets router to drop packets with IP source routing header options. Syntax ip source-route no ip source-route Mode Global Configuration
ip subnet-zero
Enables the use of subnet-zero for interface addresses and in routing updates (default). Syntax ip subnet-zero Mode
5-148
Global Configuration
ip tacacs source-interface
Sets the source address for all outgoing TACACS+ packets to that of the specified interface. The no form of this command sets the source address for all outgoing TACACS+ packets to the default interface value. Syntax ip tacacs source-interface interface-name no ip tacacs source-interface [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
ip tcp path-mtu-discovery
Enables path MTU discovery for all new TCP connections from the RCP (default). The no form of this command disables this function. Syntax ip tcp path-mtu-discovery no ip tcp path-mtu-discovery Mode Global Configuration
ip telnet source-interface
Sets the Telnet connection source address to that of the specified interface. The no form of this command sets the Telnet connection source address to the default interface value.
5-149
Syntax ip telnet source-interface interface-name no ip telnet source-interface [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
ip unnumbered
Enables IP processing on an interface without an explicit IP address. The no form of this command disables IP processing on an interface without an explicit IP address (default). Syntax ip unnumbered interface-name no ip unnumbered [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
Mode Interface Configuration (Loopback, Pos-chan, Tunnel) Subinterface Configuration Guidelines This command is denied if the specified interface does not have an assigned IP address.
ip unreachables
5-150
Enables sending ICMP Unreachable Messages on an interface (default). The no form of this command disables sending ICMP Unreachable Messages. Syntax ip unreachables no ip unreachables Mode Interface Configuration (Admin, Loopback, NNET, Null, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan)
ip-to-dn host
In some UNIStim deployments, accurately detecting the UNIStim phone number associated with the calling and/or called party phone is not possible. This command enables acquisition of the phone IP address to Directory Number mappings via a network database. When this capability is enabled, the SVP will query the database at SVP startup and once every day at a time specified by this command. If the database query does not succeed, the SVP will retry at an interval configured by this command. This command replaces all settings associated with this configuration. The no version of this command regardless of the parameters specified, disables the database acquisition.
Syntax ip-to-dn host <ip-address> [port <port>] username <username> [encrypted] password <password> [{access-type cicm-xml}] [time-of-day <hh:mm>] [retry <retry>] no ip-to-dn host <ip-address> [port <port>] username <username> [encrypted] password <password> [{access-type cicm-xml}] [time-of-day <hh:mm>] [retry <retry>]
Parameters Parameter ip-address port username <username> password <password> encrypted Description IP address of the network database. port number for access. Name of the user access login. Password for the user. [Optional] Indicates that the entered password string is encrypted. This option is included by the system as part of the running configuration. 443 Default
5-151
access-type time-of-day
Currently only the CICM database is supported via XML. Time of day to perform daily database acquisition of the form hh:mm. Retry period if database acquisition fails. The value is specified in minutes from 10 to 120.
cicm-xml 01:30
retry
30
ip-to-dn poll
This command initiates a query of the IP to Directory Number network database. The access information for the poll must be configured with the ip-to-dn host command before the poll can successfully be performed. This command is intended to be used if changes to the database have been made and it is desirable for the SVP to become aware of the changes prior to the daily poll.
ipsec-tunnel bandwidth
To configure a fixed bandwidth value for all IPSec tunnels, use the ipsec-tunnel bandwidth command. The no form of the command sets the tunnel bandwidth to the default value. Note: When this command is entered, the new bandwidth value applies to the new tunnels only. The bandwidth value for the existing tunnels will not be changed. Syntax ipsec-tunnel bandwidth <bandwidth> no ipsec-tunnel bandwidth [<bandwidth>]
5-152
Parameters Parameter bandwidth Description The fixed bandwidth for all IPSec tunnels. Range 10 kbps 100,000 kbps Default 0 kbps
ipsec-tunnel short-duration
To configure the boundary time value to distinguish short duration tunnels from long duration tunnels use ipsec-tunnel short-duration command. The no-form command reverts the boundary time value to the default. Note: When the boundary duration is changed, the new boundary duration only applies to newly established tunnels. The existing tunnels will remain in their existing short or long duration categories. Syntax ipsec-tunnel short-duration less-than <time> no ipsec-tunnel short-duration less-than [<time>] Parameters Parameter duration Description Time boundary in minutes to distinguish short-duration tunnels from long duration tunnels. Range 1 60 minutes Default 5 minutes
ipv6 neighbor
Creates a static entry in the IPv6 neighbor discovery cache. The no form of this command deletes a static entry in the IPv6 neighbor discovery cache. Syntax ipv6 neighbor ipv6-address interface-name mac-address
5-153
no ipv6 neighbor ipv6-address interface-name [mac-address] Parameters Parameter ipv6-address interface-name Description IPv6 address specified in hexadecimal form (separated by colons) as per RFC2373 {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number} Local data link 48-bit MAC address in A.B.C format.
mac-address
isis password
Enables authentication on the interface and sets the authentication password for this interface. The no form of this command removes the password (default). Syntax isis password password [level-1 | level-2] no isis password [password [level-1 | level-2]] Parameters Parameter password level-1 level-2 Description Authentication text password to be carried in Hello PDUs between neighbors (LAN-type interface option only) level 1 packets only. (LAN-type interface option only) level 2 packets only.
Mode Interface Configuration (Loopback, Em, Tunnel) Guidelines If neither level-1 nor level-2 is specified, the password is set for Level-1. If no parameters are
5-154
given when issuing no isis password, only the level-1 password is removed.
isis-topology-map
This command enables inclusion of ISIS link state information into the topology map for determining router interface connectivity. The actual configuration of the protocol for peering must be done separately using router ISIS configuration commands. The no form of this command disables inclusion of this information. NOTE: This command has no effect on the ISIS peering state. Syntax isis-topology-map no isis-topology-map Mode Topology map configuration
jump
Performs jumping to another route-map if a preceding match statement was successful, in a route-map. The no form of this command removes the jump statement from the route-map. jump route-map-name no jump route-map-name Parameters Parameter route-map-name Mode IP Policy-List Configuration Route-Map Configuration Route-Map Assign Guidelines In order to avoid loops in processing route-maps, a jump statement cannot be placed in a routemap which is being jumped to by another route-map. Also, a jump statement cannot be entered into a route-map if the target route-map for the jump contains a jump statement. Description Name of the route-map to jump to.
keepalive
5-155
Enables and sets duration value for interface keepalive timers (default). The no form of this command disables interface keepalive timers. Syntax keepalive [seconds] no keepalive [seconds] Parameters Parameter seconds Description Duration of keepalive timers, range 0 (disabled) to 32767 seconds, default is 10.
kill
Terminates a specified user login or session. Syntax kill userid Parameters Parameter userid Mode Privileged EXEC Guidelines This command will terminate the login or session associated with the specified userID plus all related child sessions. Description Assigned user identification number.
length
Sets the number of display lines per screen. The no form of this command sets the number of display lines per screen to automatically be determined using the negotiated login window size (default).
5-156
Syntax length screen-length no length [screen-length] Parameters Parameter screen-length Description Number of lines displayed on the terminal, range is 0 to 512. A value of 0 disables pausing between full screens of output.
Mode Line Configuration Guidelines This command is used to set the system default page size for paged output applications.
line
Enters Line Configuration Mode to configure the console and all tty lines. Syntax line Mode Global Configuration
link-bandwidth thresholds
To specify link bandwidth congestion threshold, use link-bandwidth threshold command. Topology alerts will be set or cleared based on the crossing of these thresholds. The no form command disables the thresholds and the alerts. These thresholds are used to monitor the links bandwidth reservation condition of ongoing sessions. Thresholds may be specified on a global or per link (indicated by node-id and if-index) basis. Link specific thresholds take precedence over global thresholds. When a no form command for link specific thresholds is entered, if the global thresholds exist, the global thresholds will be set on that link. If no global thresholds exist, then the topology alert is turned off. When the no form command for the global thresholds is entered, the links that have per link thresholds set will have the same thresholds in effect. The links that do not have per link thresholds set will have the alerts turned off.
5-157
Syntax link-bandwidth thresholds set-threshold <set-threshold > clear-threshold <clear-threshold > [node-id <node-id> if-index <if-index>]
no link-bandwidth thresholds [set-threshold <set-threshold > clear-threshold <clearthreshold > [node-id <node-id> if-index <if-index>]]
Parameters Parameter set-threshold Description Threshold value represented as a percentage of the link physical bandwidth. When the utilized bandwidth on the link becomes higher than this threshold, an alert will be set. This value must be greater than clear-threshold. The range is 2% -500%. Threshold value represented as a percentage of the link physical bandwidth. When the utilized bandwidth on the link becomes lower than this threshold, the previously set alert will be cleared. The range is 1% -499%. The value must be smaller than set-threshold. IP address that represents the node-id of a node in the network. Interface index number
clear-threshold
5-158
no link-bandwidth utilization thresholds [set-threshold <link-bw-thr-percent> clearthreshold <link-bw-thr-percent> [node-id <ip-address> if-name <interface-name-string>]] Parameters Parameter link-bw-thr-percent Description Threshold value represented as a percentage of the link physical bandwidth. When the utilized bandwidth on the link becomes higher than set-threshold, an alert will be set. When the utilized bandwidth on the link becomes lower than the clear-threshold, the previously set alert will be cleared. The set-threshold, ranged 2% - 500%, must be greater than clear-threshold, which range is 1% -499%. IP address that represents the node-id of a node in the network. Interface name string of the link.
link-packet-drop thresholds
To specify link packet drop threshold, use link-packet-drop threshold command. Topology alerts will be set or cleared based on the crossing of these thresholds. The packet drop information is based on SNMP polling on the link(s). The no form command disables the thresholds and the alerts. Thresholds may be specified on a global or per link (indicated by node-id and if-index) basis. Link specific thresholds take precedence over global thresholds. When a no form command for link specific thresholds is entered, if the global thresholds exist, the global thresholds will be set on that link. If no global thresholds exist, then the topology alert is turned off. When the no form command for the global thresholds is entered, the links that have per link thresholds set will have the same thresholds in effect. The links that do not have per link thresholds set will have the alerts turned off. Syntax link-packet-drop thresholds set-threshold <link-pd-threshold> clear-threshold <link-pdthreshold> [node-id <ip-address> if-name <interface-name-string>] no link-packet-drop thresholds [set-threshold <link-pd-threshold> clear-threshold <linkpd-threshold> [node-id <ip-address> if-name <interface-name-string>]] Parameters Parameter Description
5-159
link-pd-threshold
Threshold value represented as a number of packets drop on the link. When the packets dropped on the link(s) become higher than set-threshold, an alert will be set. When the packets dropped on the link(s) become lower than the clear-threshold, the previously set alert will be cleared. The set-threshold value must be greater than clearthreshold. The range of the value is [1 ]. IP address that represents the node-id of a node in the network. The interface string name of the link.
list
Displays all or part of the explicit path or paths. Syntax list [starting-index-number] [detail] Parameters Parameter starting-index-number detail Mode IP Explicit Path Configuration Description Displays the list starting at the entry index number, range is 1 to 65535. Displays information in long form.
load-distribution
The SVP performs a default load distribution algorithm when selecting a path which is part of an ECMP. This command enables the SVP to gather information from the router to aid in customizing the algorithm to match the router's behavior. Currently on CEF behavior can be enhanced. NOTE: This feature relies on CLI polling being configured for the router in question. If it is not enabled, load distribution information will not be collected. If the no form of this command is issued, the system will not collect load distribution information from the router.
5-160
Syntax load-distribution cef [poll-multiple <poll-multiple>] no load-distribution cef [poll-multiple <poll-multiple>] Parameters Parameter cef Description Cisco Express Forwarding information should be collected from the router. Number of CLI poll intervals between load distribution polls. E.g. if cli-access poll interval is 90 seconds and this value is 2, the CLI will be polled every 180 seconds. Poll interval should be less than 5 minutes. 1-10 1 Type/Range Default
poll-multiple
logging console
Enables logging messages to the console (default). The no form of this command disables logging messages to the console. Syntax logging console [level] no logging console [level] Parameters Parameter level Description Valid integer (or alpha) values for level are: 0 (emergencies), 1 (alerts), 2 (critical), 3 (errors), 4 (warnings), 5 (notifications), 6 (information), and 7 (debugging) from highest to lowest priority, default is 7 (debugging).
5-161
Guidelines Higher-priority messages are logged when the logging level is set to lower levels. For example, if the logging level is set to critical (level 2), then emergencies (level 0) messages and alerts (level 1) messages will be logged.
logging enable
Enables DRP-related logging. The no form of this command disables DRP-related logging. Syntax logging enable {command_logging | console_logging | syslog_logging} no logging enable [command_logging | console_logging | syslog_logging] Parameters Parameter command_logging console_logging syslog_logging Mode Global Configuration Description Enables command logging. Enables console logging. Enables syslog logging.
logging facility
Sets a UNIX system facility where error messages are to be sent. The no form of this command sets the UNIX system facility value to the default value. Syntax logging facility facility-type no logging facility [facility-type] Parameters Parameter facility-type Description {local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7} (all reserved for locally defined messages), default is local7.
5-162
logging history
Sets the alarm level at which alarms of equal or higher priority will be sent to the history table and to the SNMP network management station. Alternatively, with the size keyword specified, this command sets the number of syslog messages to be stored in the history table. The no logging history form of this command sets the history table alarm level to the default value. The no logging history size form of this command sets the history table size to the default value. Syntax logging history {level | size number} no logging history [level | size [number]] Parameters Parameter level Description Valid integer (or alpha) values for level are: 0 (emergencies), 1 (alerts), 2 (critical), 3 (errors), 4 (warnings), 5 (notifications), 6 (information), and 7 (debugging) from highest to lowest priority, default is 4 (warnings). Number of messages to be stored in the history table, range is 0 to 500, default is 1.
number
Mode Global Configuration Guidelines Higher-priority messages are logged when the logging level is set to lower levels. For example, if the logging level is set to critical (level 2), then emergencies (level 0) messages and alerts (level 1) messages will be logged.
logging host
Sets a specified remote server host to be a syslog server. The no form of this command deletes the remote server host from the list of syslog servers. The default is to have no remote host specified to be a syslog server. Syntax
5-163
logging host {host | ip-address} no logging host {host | ip-address} Parameters Parameter host ip-address Mode Global Configuration Description Name of the syslog server host. IP address of the syslog server host.
logging monitor
Enables logging messages to the terminal lines. The no form of this command disables logging messages to terminal lines (default). This command does not apply to the console. Syntax logging monitor [level] no logging monitor [level] Parameters Parameter level Description Valid integer (or alpha) values for level are: 0 (emergencies), 1 (alerts), 2 (critical), 3 (errors), 4 (warnings), 5 (notifications), 6 (information), and 7 (debugging) from highest to lowest priority, default is 7 (debugging).
Mode Global Configuration Guidelines Higher-priority messages are logged when the logging level is set to lower levels. For example, if the logging level is set to critical (level 2), then emergencies (level 0) messages and alerts (level 1) messages will be logged.
logging on
5-164
Enables the logging function. The no form of this command disables the logging function. Syntax logging on no logging on Mode Global Configuration
logging source-interface
Sets the source IP address of all syslog packets to a specified value. The no form of this command sets the IP address of the interface used to leave the RCP to be issued within a syslog packet. Syntax logging source-interface interface-name no logging source-interface [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
logging trap
Enables logging messages to the remote syslog servers (default). The no form of this command disables logging messages to the remote syslog servers. Syntax logging trap [level] no logging trap [level] Parameters
5-165
Parameter level
Description Valid integer (or alpha) values for level are: 0 (emergencies), 1 (alerts), 2 (critical), 3 (errors), 4 (warnings), 5 (notifications), 6 (information), and 7 (debugging) from highest to lowest priority, default is 6 (information).
Mode Global Configuration Guidelines Higher-priority messages are logged when the logging level is set to lower levels. For example, if the logging level is set to critical (level 2), then emergencies (level 0) messages and alerts (level 1) messages will be logged.
login
Creates a new session and suspends the current session. Syntax login Mode User EXEC
login backoff
Sets the number of consecutive failed login retries that triggers the start of backoff delays. The no form of this command sets the number of retries to the default value. Syntax login backoff retries [starting-delay] no login backoff [retries [starting-delay]] Parameters Parameter retries Description Number of consecutive failed login retries that triggers the start of backoff delays, range is 0 to 9, default is 2.
5-166
starting-delay
Mode Global Configuration Guidelines For each consecutive failed login retry after the first backoff delay occurs, the backoff delay is doubled.
login retries
Sets the number of consecutive failed login retries that triggers a disconnection. The no form of this command sets the number of retries to the default value. Syntax login retries retries no login retries [retries] Parameters Parameter retries Description Number of consecutive failed login retries that triggers the start of backoff delays, range is 0 to 9, default is 2.
Mode Global Configuration Guidelines If the number of retries that triggers a disconnection is set less than or equal to the number of retries that triggers the start of backoff delays, backoff delays are effectively disabled.
logout
Exits the EXEC mode and logs off the RCP. Syntax logout
5-167
mac-address
Sets the mac layer address for an Ethernet port. Syntax mac-address mac-address Parameters Parameter mac-address Description 48-bit IEEE MAC address using three 4-digit hex numbers separated by periods (xxxx.xxxx.xxxx).
maintenance-window
To specify a time window for SVP and SVM system maintenance routines to run, use the maintenance-window command. The no form of this command deletes the provisioned time window and reverts to the default maintenance window. If the maintenance window command is executed multiple times, the newer command will overwrite the existing maintenance window. Therefore, only the last maintenance window is remembered. Syntax maintenance-window {start-time <hh:mm> end-time <hh:mm>} [no] maintenance-window [start-time <hh:mm> end-time <hh:mm>] Parameters Parameter start-time <hh:mm> end-time <hh:mm> Mode Global Configuration Description The start time of the maintenance period, in hour, minute. The end time of the maintenance period, in hour, minute.
5-168
man
Displays on-line documentation of CLI commands in man-page format. Syntax man command-name Parameters Parameter command-name Description Name of the command for which documentation is requested.
match as-path
Assigns the specified as-path-access-list to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match as-path {as-path-access-list-id}... no match as-path [as-path-access-list-id]... Parameters Parameter as-path-access-list-id Mode IP Policy-List Configuration Description AS-path access list(s) to be matched.
match community
Assigns communities permitted by the given community-list to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match community {community-list-id}... [exact-match]
5-169
no match community [{community-list-id}... [exact-match]] Parameters Parameter community-list-id exact-match Description Alphanumeric string identifying the community-list to be matched. All of the communities in the community-list and only the communities in the communitylist must be present for a match to occur.
match expression
Assigns any variables that have been created with the assign command to be matched in a routemap. The no form of this command removes the match from the route-map. Syntax match expression logical-expression no match expression logical-expression Parameters Parameter logical-expression Description Assigned variables to be matched (a to z), valid logical operators are ( ), AND (&), OR ( | ) and NOT (~), with the precedence being NOT, AND, then OR.
match extcommunity
Assigns extended communities permitted by the given extended community-list to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax
5-170
match extcommunity {ext-community-list-id}... [exact-match] no match extcommunity [{ext-community-list-id}... [exact-match]] Parameters Parameter ext-community-list-id exact-match Description Extended community-list(s) to be matched. All of the communities in the community-list and only the communities in the communitylist must be present for a match to occur.
match interface
Assigns any routes that have their next hop out the interface to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match interface {interface-name}... no match interface {interface-name}... Parameters Parameter interface-name Description {loopback loopback-number | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number}.
match ip address
Assigns IP addresses that are permitted in the access-list(s) to be matched in a route-map. The no form of this command removes the match from the route-map.
5-171
Syntax match ip address {access-list-id}... no match ip address [access-list-id]... Parameters Parameter access-list-id Description Name of the access list of IP addresses to be matched.
match ip next-hop
Assigns next-hop router addresses that are permitted in the access-list(s) to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match ip next-hop {access-list-id}...
5-172
no match ip next-hop [access-list-id]... Parameters Parameter access-list-id Description Access-list of next-hop router addresses to be matched.
match ip route-source
Assigns routes that have come from the route-source addresses permitted in the access-list(s) to be matched in a route-map. The no form of this command removes the match from the routemap. Syntax match ip route-source {access-list-id}...
5-173
no match ip route-source [access-list-id]... Parameters Parameter access-list-id Description Access-list of route source addresses to be matched.
match local-preference
Assigns the specified local-preference to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match local-preference {local-preference-value}... no match local-preference {local-preference-value}...
5-174
match metric
Assigns routes that have the specified metric to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match metric {metric-value}... no match metric {metric-value}... Parameters Parameter metric-value Mode IP Policy-List Configuration Route-Map Configuration Route-Map Assign Description Route metric, range is 0 to 4294967295.
match policy-list
Sets a match statement into a route-map for one or more policy lists. The no form of this command removes the match statement from the route-map for one or more policy lists, or all policy lists if none specified. Syntax match policy-list {policy-list-id}... no match policy-list [policy-list-id]...
5-175
Parameters Parameter policy-list-id Description Policy list name for which a match statement will be inserted.
match route-type
Assigns routes of the type specified to be matched in a route-map. The no form of this command removes the match from the route-map. Syntax match route-type [external [type-1 | type-2]] [internal] [level-1] [level-2] [local] [nssaexternal [type-1 | type-2]] no match route-type [external [type-1 | type-2]] [internal] [level-1] [level-2] [local] [nssaexternal [type-1 | type-2]] Parameters Parameter external [type-1 | type-2] internal level-1 level-2 local nssa-external [type-1 | type-2] Description OSPF external type-1 or type-2 routes. OSPF intra-area and inter-area routes. IS-IS Level 1 routes. IS-IS Level 2 routes. Locally generated BGP routes. OSPF NSSA external type-1 or type-2 routes.
match tag
Assigns routes with the tag specified to be matched in a route-map. The no form of this command removes the match from the route-map.
5-176
Syntax match tag {tag-value}... no match tag [tag-value]... Parameters Parameter tag-value Description Route tag to be matched, range is 0 to 4294967295.
maximum-paths (BGP)
Sets the allowable maximum number of parallel routes to a destination. The no form of this command restores the maximum-paths value to its default. Syntax maximum-paths maximum-path-count no maximum-paths [maximum-path-count] Parameters Parameter maximum-path-count Description Maximum number of equal cost routes to a destination allowable in the routing table, range is 1 to 6, default is 1 for BGP and 4 for OSPF.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast)
5-177
Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
maximum-paths (OSPF)
Sets the allowable maximum number of parallel routes to a destination. The no form of this command restores the maximum-paths value to its default. Syntax maximum-paths maximum-path-count no maximum-paths [maximum-path-count] Parameters Parameter maximum-path-count Description Maximum number of equal cost routes to a destination allowable in the routing table, range is 1 to 6, default is 1 for BGP and 4 for OSPF.
max-metric
Enables the OSPF protocol to advertise a maximum metric so that other routers do not prefer the RCP as an intermediate hop in their SPF calculations. The no form of this command disables the advertisement of a maximum metric (default). Syntax max-metric router-lsa [on-startup {announce-time | wait-for-bgp}] no max-metric router-lsa [on-startup {announce-time | wait-for-bgp}] Parameters Parameter on-startup announce-time Description Causes the OSPF to advertise the maximum metric at startup time. Causes the OSPF to advertise the maximum metric for the specified time interval, range is 5 to 86,400 seconds.
5-178
wait-for-bgp
Causes the OSPF to advertise the maximum metric until BGP routing tables have converged or the default timer (600 seconds) has expired.
media-analysis
This command is used to customize the media analysis configuration. When the SVA performs analogue analysis for a voice call, it only analyzes a portion of the call. This allows more calls to be processed since it involves fewer system resources for caching the media stream and performing the analysis. The number of active calls to buffer is also configurable. This allows more calls to be analyzed but also delays when the system processing is completed following the end of the call. The longer this delay the more visible the metric graphs and alert declaration times will lag real-time. The optional call-sample-duration parameter can be used to limit the duration of the call on which echo analysis is performed. This parameter can be used to allow a longer period of time for signal analysis while limiting the impact to call analysis rates. The default duration without this parameter is the maximum-call-duration. The no form of the command regardless of parameters returns the settings to their system default. Syntax media-analysis minimum-call-duration <minimum-call-duration> maximum-call-duration <maximum-call-duration> maximum-buffered-calls <maximum-buffered-calls> [call-sampleduration <call-sample-duration>] no media-analysis [minimum-call-duration <minimum-call-duration> maximum-callduration <maximum-call-duration> maximum-buffered-calls <maximum-buffered-calls>] [call-sample-duration <call-sample-duration>] Parameters Parameter minimum-call-duration Description The minimum duration of the call required to do analysis. NOTE: the call duration starts when RTP is received in both directions of the call. The maximum duration of the call that will be analyzed. This limits the amount of memory required to cache the call. Range 10 - 60 seconds Default 20 seconds
maximum-call-duration
10 - 120 seconds
20 seconds
5-179
maximum-bufferedcalls
The maximum number of calls that are buffered at one time. The actual limit is dependent on the maximum-call-duration. Specifies a subset of the maximum-call-duration for performing echo analysis.
10 2000
50
call-sample-duration
10-30 seconds
20 seconds
minimum-sessions
During periods of very low user activity, it is possible that alerts will be generated when only one user activity fails. This may be undesirable depending on acceptable network performance. Likewise, if a very high level of network reliability is desired, alert generation should be very sensitive regardless of user activity. This command specifies the minimum number of sessions required during the previous alert generation period to allow alert generation. The no form of the command with a single interval, regardless of value, will return the minimum sessions for that interval to its default. The no form without any intervals specified, returns all intervals to their default value. Syntax minimum-sessions {[interval1 <session-count>] [interval2 <session-count>] [interval3 <session-count>] [interval4 <session-count>] } no minimum-sessions [[interval1 <session-count>] [interval2 <session-count>] [interval3 <session-count>] [interval4 <session-count>] ]
Parameters Parameter interval1 interval2 interval3 interval4 Description Minimum sessions for first interval of the day. Minimum sessions for second interval of the day. Minimum sessions for third interval of the day. Minimum sessions for fourth interval of the day. Type/Range 1-10000 1-10000 1-10000 1-10000 20 20 20 20 Default
Mode
5-180
missing-media
This command is used to enable the SVA to mark sessions when both directions of an RTP stream are not seen. The default is no session marking. The following cases are considered as part of this detection. The SVA is expected to receive media for every session monitored by its accompanying SVP. The SVA is expected to receive bidirectional media on some combination of interfaces for every session it receives media for. The SVA can be configured for any combination of these cases. The no form of this command regardless of parameters disables marking sessions. Syntax missing-media {[expect-all-sessions] [expect-bidirectional-media]} no missing-media [expect-all-sessions] [expect-bidirectional-media]
Parameters Parameter expect-all-sessions expect-bidirectional-media Description If the SVA is requested to monitor media for a session and no media is received, the session should be marked. If the SVA receives media for a session but does not receive both directions, the session should be marked.
mkdir
Creates a new file directory as a sub-directory within the current file directory. Syntax mkdir subdirectory Parameters Parameter Description
5-181
subdirectory
mmp
The SVA must be enabled to mark sessions when it detects media as missing or setting this threshold on the SVP will have no effect. This command specifies the percentage of sessions that were monitored and had missing media. If the calculated ratio is greater than the configured threshold, an alert will be generated. The command replaces the existing MMP settings for the intervals specified. The no form of the command with no arguments disables the MMP alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the MMP alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax mmp {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no mmp {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with missing media is greater than this value an alert will be sent. 0-99 Type/Range Default None None
5-182
clear
If the percentage of sessions missing media is less than or equal to this value the alert will be cleared.
0-99
none
monitor bgp
Displays BGP statistics in real time. The no form of this command disables this function. Syntax monitor bgp [display-interval] no monitor bgp [display-interval] Parameters Parameter display-interval Description Number of seconds between screen updates, range is 1 to 3600 seconds, default is 2
monitor interface
Displays interface statistics in real time. The no form of this command disables this function. Syntax monitor interface {interface-name | traffic} [display-interval] no monitor interface {interface-name | traffic} [display-interval] Parameters Parameter Description
5-183
interface-name
{admin 0 | loopback loopback-number | nnet rcp-number | null 0 | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number} Display traffic statistics on all interfaces. Number of seconds between screen updates, range is 1 to 3600 seconds, default is 2.
traffic display-interval
Guidelines The valid interface types on Admin Partition include: admin 0, loopback, nnet, and null 0. The valid interface types on Routing Partitions include: admin 0, gig-subif, loopback, null, port-chan, port-chan-subif, pos-subif, pos-chan, ten-subif, and tunnel.
monitor path
To specify a prefixed session for monitoring the path, use monitor path command. The no form command delete the prefixed session. This command is used to monitor a path and collect topology events along the path. This command creates a hypothetical session for user to monitor the topology events along its path. The no form can only remove a session added with monitor path command. Syntax monitor path {source-ip <ip-address> destination-ip <ip-address> [description <string>]} no monitor path {source-ip <ip-address> destination-ip <ip-address> [description <string>]} Parameters Parameter source-ip <ip-address> destination-ip <ip-address> description <string> Description These are mandatory parameters to define the source IP address and destination IP address of the session. Optional parameter to work as a signature or name of the prefixed session.
more begin
Displays more file output beginning with the line matched by the regular-expression.
5-184
Syntax more file-url | begin regular-expression Parameters Parameter file-url regular-expression Description Universal resource locator (url) of the file to search. Regular-expression to be matched to control the result of the search.
Mode Privileged EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
more exclude
Displays more file output excluding the lines matched by the regular-expression. Syntax more file-url | exclude regular-expression Parameters Parameter file-url regular-expression Description Universal resource locator (url) of the file to search. Regular-expression to match text that is to be excluded in the search.
Mode Privileged EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
more include
5-185
Displays more file output including only the lines matched by the regular-expression Syntax more file-url | include regular-expression Parameters Parameter file-url regular-expression Description Universal resource locator (url) of the file to search. Regular-expression to match text that is to be included in the search.
Mode Privileged EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
motd-banner
Enables the message-of-the-day (MOTD) banner (default). The no form of this command disables the banner. motd-banner no motd-banner Mode Line Configuration
mount
Mounts a compact disk contained within the compact disk drive. Syntax mount cd Mode Privileged Exec
5-186
mtu
Sets the Maximum Transmission Unit (MTU) value on an interface. The no form of this command sets the MTU value to the default value. Syntax mtu bytes no mtu [bytes] Parameters Parameter bytes Description IP MTU value in bytes (non inclusive of layer 2 overhead), range is 68 to 1500 for Admin and NNET; 68 to 65535 for Loopback, Null, and Tunnel; 68 to 9578 for Port-chan; and 68 to 9596 for Pos-chan; default is 1500 for Admin, NNET, and Portchan; 16384 for Loopback, and Null; and 4470 for Pos-chan and Tunnel. Subinterface defaults are same as parent interface. Mode Interface Configuration (Admin, Loopback, NNET, Null, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan) Guidelines There are more than one CLI commands used to configure MTU packet size. The MTU value (set by the mtu command) represents the interface MTU setting independent of a specific protocol. The IP MTU value (set by the ip mtu command), for example, represents the interface MTU setting specifically for the IP protocol. The IP MTU value can be affected by changing the MTU value. If the values of IP MTU and MTU have been configured to be equal with each other and the MTU value is changed, the IP MTU value is automatically changed to the new MTU value. However, changing the IP MTU value has no effect on the MTU value. The system will not allow the IP MTU value to be changed so that it is less than the MTU value.
nar
Network Availability Ratio (NAR) is a percentage of time the network is providing service. This is determined by subtracting the amount of time that no voice and/or data sessions are allowed. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the NAR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the NAR alert for that time interval.
5-187
This command enables generation of alerts to the SVM and traps to the NMS based on the Network Availability Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax nar {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no nar [[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] ] Parameters Parameter interval1 interval2 interval3 interval4 set Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00
clear
00
neighbor
This command enables a COPS-RM neighbor relationship to be formed. Each SVP should be configured with the SVM as a neighbor and the SVM should be configured with each SVP as a neighbor. Peering between SVPs is done automatically based on router interface connectivity as determined and distributed by the SVM. The TCP connection can be secured using an MD5 digest. The password would need to be configured at the SVP and the SVM. Since inter-SVP peering is done automatically, all connections should use the same password. Syntax neighbor <router-id> [password [0..7] <string>]
5-188
no neighbor <router-id> [password [0..7] <string>] Parameters Parameter router-id Description IP address identifying the router ID of the neighbor. MD5 case sensitive password string. password display encryption type Type/Range IP address in dotted notation String 0 to 7 Default None.
None. None
neighbor activate
Enables a specific address-family for the given neighbor, according to the current Address Family Configuration Mode. The no form of this command disables the address-family on the peering session. Syntax neighbor {peer-group | ip-address} activate no neighbor {peer-group | ip-address} activate Mode Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines In IPv4, the neighbor is automatically activated once the neighbor remote-as command has been issued. Once there are no address-families left on the peering session, it is shut down.
neighbor allowas-in
5-189
Enables this RCP to accept updates from the specified peer-group or neighbor that include this routers AS in the as-path. The no form of this command disables this function. Syntax neighbor {peer-group | ip-address} allowas-in [as-repeat-count] no neighbor {peer-group | ip-address} allowas-in [as-repeat-count] Parameters Parameter peer-group ip-address allowas-in [as-repeat-count] Description Peer-group from which the updates are received. IP address of the neighbor from which updates are received. Maximum number of times this routers AS may appear in the updates as-path, range is 1 to 10, default is 3.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor block-updates
Disables sending and receiving routing updates to/from a peer router. The no form of this command enables the routing updates. Syntax neighbor {peer-group | ip-address} block-updates no neighbor {peer-group | ip-address} block-updates Parameters Parameter Description
5-190
Name of the BGP peer group. IPv4 or IPv6 address of the neighbor router.
both
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
5-191
Enables Outbound Community Filter capabilities for a peer router. Syntax neighbor {ip-address | peer-group-name} capability orf comm-list [send | recv | both] no neighbor {ip-address | peer-group-name} capability orf comm-list [send | recv | both] Parameters Parameter ip-address peer-group-name send recv Description Address of the neighbor router. Name of the BGP peer group. Route-filter is sent to the specified neighbor and is installed by the neighbor. Route-filter can be received from the specified neighbor and installed by the local router. Both send and receive capabilities are enabled.
both Mode
Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines This command cannot be invoked from VPNv4/VPNv6 RD configuration sub-mode.
5-192
Parameters Parameter ip-address peer-group-name send recv Description Address of the neighbor router. Name of the BGP peer group. Route-filter is sent to the specified neighbor and is installed by the neighbor. Route-filter can be received from the specified neighbor and installed by the local router. Both send and receive capabilities are enabled.
both Mode
Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines This command cannot be invoked from VPNv4/VPNv6 RD configuration sub-mode.
neighbor description
This command associates a description string with a copsrm neighbor. The description is only for user convenience. The no form regardless of parameter value removes the description string. Syntax neighbor <router-id> description <string> no neighbor <router-id> description <string> Parameters Parameter Description Type/Range Default
5-193
router-id
IP address identifying the router ID of the neighbor. Text description string up to 80 characters.
None.
description
None.
neighbor distribute-list
Establishes filters on inbound or outbound routes matching the specified access-list. The no form of this command disables the filtering. Syntax neighbor {peer-group | ip-address} distribute-list {access-list-id} {in | out} no neighbor {peer-group | ip-address} distribute-list {access-list-id} {in | out} Parameters Parameter ip-address peer-group-name access-list-id in out Description Address of the neighbor router. Name of the BGP peer group. Access list that determines filtered routes. Applies filtering to inbound routes from the specified peer-group or neighbor Applies filtering to outbound routes to the specified peer-group or neighbor.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
5-194
neighbor dont-capability-negotiate
Enables the router to perform Capability Parameter negotiation in BGP Open messages. The no form of this command enables the router to perform Capability Parameter negotiation (default). Syntax neighbor {peer-group | ip-address} dont-capability-negotiate no neighbor {peer-group | ip-address} dont-capability-negotiate Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
neighbor ebgp-multihop
Creates a BGP neighbor session with an external BGP peer that is logically, but not physically, connected. The no form of this command removes the ebgp multihop neighbor session. Syntax neighbor {peer-group | ip-address} ebgp-multihop [ttl-value] no neighbor {peer-group | ip-address} ebgp-multihop [ttl-value] Parameters Parameter peer-group ip-address Description BGP peer-group with which to establish an external BGP multihop session. IPv4 or IPv6 address of the BGP peer with which to establish an external BGP multihop session. Time-to-live value (max hop count) of the ebgp multihop neighbor, range is 1 to 255, default is 255. Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
ttl-value
5-195
neighbor eliminate-private-as
Removes all private autonomous system numbers from the as-path in routing updates to or from the specified neighbor. The no form of this command disables this function (default). Syntax neighbor {peer-group | ip-address} eliminate-private-as [in | out] no neighbor {peer-group | ip-address} eliminate-private-as [in | out] Parameters Parameter peer-group Description AS-path contains no private AS system numbers in routing updates to or from this BGP peer-group. AS-path contains no private AS system numbers in routing updates to or from this BGP peer address Private autonomous system numbers are eliminated from the as-path in routing updates from the specified neighbor Private autonomous system numbers are eliminated from the as-path in routing updates to the specified neighbor
ip-address
in
out
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines If neither in nor out is specified, private-as numbers are removed from both incoming and outgoing routing updates. This command can be set independently for each peer-group member.
5-196
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
5-197
neighbor {peer-group | ip-address} filter-list as-path-access-list-id weight weight-value no neighbor {peer-group | ip-address} filter-list as-path-access-list-id weight weight-value Parameters Parameter peer-group ip-address as-path-access-list-id weight-value Description BGP peer-group to which the filtering applies. Address of the BGP peer to which the filtering applies. AS-path access list that determines filtered BGP routes. Network weight to be assigned to incoming routes that match the as-path list, range is 0 to 65535.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor local-as
Enables this router to be a member of a second autonomous AS (the local-as-number), which is used when peering with the specified external neighbor or peer-group. The no form of this command removes the routers membership from the second AS. Syntax neighbor {peer-group | ip-address} local-as local-as-number [no-prepend] no neighbor {peer-group | ip-address} local-as [local-as-number [no-prepend]] Parameters Parameter Description
5-198
peer-group
When peering with this BGP peer-group, the RCP appears to be a member of the localas-number rather than its primary AS number. When peering with this BGP peer, the RCP appears to be a member of the localasnumber rather than its primary AS number. Autonomous system number (or symbol, if created with define as) of the second AS to which this router is being added. Forces EBGP peers not to prepend their asnumber to the as-path string of advertised routes when local-as is used.
ip-address
local-as-number
no-prepend
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor maximum-prefix
Sets how many prefixes can be received from the specified neighbor. The no form of this command removes the maximum-prefix limit for the neighbor (default). Syntax neighbor {peer-group | ip-address} maximum-prefix prefix-limit [warning-threshold] [warningonly] no neighbor {peer-group | ip-address} maximum-prefix [prefix-limit [warning-threshold] [warning-only]] Parameters Parameter peer-group Description BGP peer-group for which the prefix limit is being specified.
5-199
ip-address prefix-limit
IPv4 or IPv6 address of the BGP peer for which the prefix limit is being specified. Maximum number of prefixes that can be received from the specified neighbor, range is 1 to 4294967295.
warning-threshold
After the RCP has received this percentage of the maximum number of prefixes from the specified neighbor, the RCP begins to generate warning signals, range is 1 to 100 percent of the prefix-limit, default is 75 percent. Router continues to peer with the specified neighbor even after the maximum number of prefixes has been reached; warnings are generated but the session is not ended.
warning-only
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor next-hop-self
Sets this routers address as the next-hop router in routes sent to the neighbor specified. The no form of this command disables this function (default). Syntax neighbor {peer-group | ip-address} next-hop-self. no neighbor {peer-group | ip-address} next-hop-self Parameters Parameter peer-group Description BGP peer-group that will receive routes with this (the RCP being configured) routers address as the next-hop router.
5-200
ip-address
Address of the BGP peer that will receive routes with this (the RCP being configured) routers address as the next-hop router.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor next-hop-unchanged
Enables an exterior BGP (eBGP) multihop peer to propagate the next hop without changing it. The no form of this command disables this function (default). Syntax neighbor {peer-group | ip-address} next-hop-unchanged no neighbor {peer-group | ip-address} next-hop-unchanged Parameters Parameter peer-group ip-address Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Description Next-hop BGP peer-group. Next-hop IP address.
5-201
neighbor password
Enables MD5 authentication on a TCP connection between two BGP peers. The no form of this command disables the MD5 authentication (default). Syntax neighbor {peer-group | ip-address} password [encryption-type] password-string no neighbor {peer-group | ip-address} password [encryption-type] [password-string] Parameters Parameter peer-group ip-address encryption-type Description BGP peer-group with which to use MD5 authentication. Address of the BGP peer with which to use MD5 authentication. Type of encryption to use when storing and displaying the MD5 password, range is 0 to 7, default is 0 (no encryption). Password of up to 80 letters.
password-string Mode
Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF) Guidelines If the command password-encryption has been enabled, all passwords are encrypted for storage and display, regardless of the encryption type specified with this command.
5-202
Parameter peer-group Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF) Guidelines
A peer group can be either all internal or all external. If the peer group is internal, the asnumber of all members must match the as-number of the BGP instance. If the peer group is external, no member of the peer group can have an as-number that matches the as-number of the BGP instance. If the peer group itself has an as-number, all members of the peer-group inherit that as-number and cannot change it while a member of the group. The group members are all either internal or external based on the as-number of the group If the peer group has an implicit (from its members) remote-as, that implicit remote-as and the internal/external restrictions on adding members are removed when all members are removed from the peer group.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF)
5-203
Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines If an attribute is set on a peer group, the members automatically inherit the attribute overriding any current setting. If a member-settable group attribute is set (by command) on a peer-group member, that attribute will override the peer-group value. If the value is removed, the member will revert to the group value for the attribute. Value may include no commands (such as no shutdown) which change an attribute of the peer-group member so that its different than the attribute of the group. Inheritance rules for joining the peer-group are listed below: advertise-map exist-map The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. advertise-map non-exist-map The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. advertisement interval If the attribute is set to non-default in the group attributes, it is inherited. Otherwise the member will reset to the default advertisement interval. allowas-in The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. default-originate The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. description The attribute is not inherited if the member has an attribute of this type set. distribute-list (in) The attribute is not inherited if the member has an attribute of this type set. distribute-list (out) The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. dont-capability-negotiate The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. ebgp-multihop The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. eliminate-private-as [in] The attribute is not inherited if the member has an attribute of this type set. eliminate-private-as [out] The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. filter-list (out) The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. filter-list (weight) The attribute is not inherited if the member has an attribute of this type set. local-as The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. maximum-prefix The attribute is not inherited if the member has an attribute of this type set. next-hop-self The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. next-hop-unchanged The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member.
5-204
password If a password attribute exists in the group, it is inherited by the peer. If the group has no password attribute, the member password is unchanged. precedence The attribute is not inherited. The precedence value of a peer group member is relative to the other members of the peer group. The precedence value of the peer group as a whole controls the precedence of the peer-group and its members in relationship to other peers and peer-groups. prefix-list (in) The attribute is not inherited if the member has an attribute of this type set. prefix-list (out) The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. remote-as If the attribute is set in the group, the value is inherited overriding that set in the member. If the attribute is not set in the group, the existing value is kept in the member. remove-private-as The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. route-map (in) The attribute is not inherited if the member has an attribute of this type set. route-map (out) The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. route-reflector-client The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. send-community The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. shutdown If the group is shut down, the member will be shut down. If the group is up, the member will be created in the up state. soft-reconfiguration inbound If the group has soft-reconfiguration set on, the member will inherit the attribute and set soft-reconfiguration on. timers The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. unsuppress-map The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. update-source The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. version The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. The attribute in the member is set identical to the value set in the group. If the attribute is not set in the group, it is not set in the member. Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF)
neighbor precedence
Sets the specified neighbors precedence for display and relative importance. The no form of this command causes the RCP to set the precedence value to 0 (default). Syntax neighbor {peer-group | ip-address} precedence precedence
5-205
no neighbor {peer-group | ip-address} precedence [precedence] Parameters Parameter peer-group ip-address precedence Description BGP peer-group to which this precedence value applies. IP address of the BGP peer to which this precedence value applies. Precedence to be used for this neighbor, default is 0, range is 0 to 65535.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
neighbor prefix-list
Establishes filters on inbound or outbound routes in the specified prefix-list. The no form of this command disables the filtering. Syntax neighbor {peer-group | ip-address} prefix-list prefix-list-id {in | out} no neighbor {peer-group | ip-address} prefix-list prefix-list-id {in | out} Parameters Parameter peer-group ip-address prefix-list-id in out Description BGP peer-group to which the filtering applies. Address of the BGP peer to which the filtering applies. Prefix list to be applied to determine filtered routes. Applies filtering to inbound routes from the specified peer-group or neighbor. Applies filtering to outbound routes to the specified peer-group or neighbor.
5-206
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor remote-as
Sets a neighbor to the BGP neighbor table. The no form of this command removes the specified neighbor from the table. Syntax neighbor {peer-group | ip-address} remote-as as-number no neighbor {peer-group | ip-address} [remote-as [as-number]] Parameters Parameter peer-group ip-address as-number Description Neighbor BGP peer-group to be added. Address of the neighbor BGP peer to be added. Neighbors autonomous system number (or symbol, if created with define as).
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
neighbor remove-private-as
Removes private autonomous system numbers from the AS_path in outbound routing updates to the specified neighbor. The no form of this command disables this function (default). Syntax
5-207
neighbor {peer-group | ip-address} remove-private-as no neighbor {peer-group | ip-address} remove-private-as Parameters Parameter peer-group Description AS-path contains no private AS system numbers in routing updates to this BGP peer-group. AS-path contains no private AS system numbers in routing updates to this BGP peer address.
ip-address
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor route-map
Enables the specified route-map to be applied to incoming or outgoing route updates to the specified neighbor. The no form of this command stops the specified route-map from being applied. Syntax neighbor {peer-group | ip-address} route-map route-map-name {in | out} no neighbor {peer-group | ip-address} route-map route-map-name {in | out} Parameters Parameter peer-group ip-address Description BGP peer-group to which the route-map applies. Address of the BGP peer to which the routemap applies.
5-208
route-map-name in out
Route-map to be applied to ingoing or outgoing routes. Applies the route-map to inbound routes from the specified peer-group or neighbor. Applies the route-map to outbound routes to the specified peer-group or neighbor.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor route-reflector-client
Enables the router to be a BGP route reflector and sets the specified neighbor as its client. The no form of this command removes the neighbor as a client. Syntax neighbor {peer-group | ip-address} route-reflector-client no neighbor {peer-group | ip-address} route-reflector-client Parameters Parameter peer-group ip-address Description BGP peer-group that will be a client of this BGP route-reflector. Address of the BGP peer that will be a client of this BGP route-reflector.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF)
5-209
Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor send-community
Enables the router to send COMMUNITY attributes to the specified BGP neighbor. The no form of this command disables the router from sending COMMUNITY attributes (default). Syntax neighbor {peer-group | ip-address} send-community [both | extended | standard] no neighbor {peer-group | ip-address} send-community [both | extended | standard] Parameters Parameter peer-group ip-address both extended standard Description BGP peer-group to which COMMUNITY attributes are sent. Address of the BGP peer to which COMMUNITY attributes are sent. Sends both standard and extended COMMUNITY attributes. Sends only extended COMMUNITY attributes. Sends only standard COMMUNITY attributes (default if no type is specified).
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor shutdown
5-210
This command closes the connection with this COPS-RM peer. The no form of this command allows the connection to be established. Syntax neighbor <router-id> shutdown no neighbor <router-id> shutdown Parameters Parameter router-id Description IP address identifying the router ID of the neighbor. Type/Range IP address in dotted notation Default None.
ip-address
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast)
5-211
Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor timers
This command specifies the COPS-RM keep alive and dead timer values for a neighbor. A keep alive timer value of 0 turns off the sending of keep alive messages. The no form of this command regardless of parameter value, removes the neighbor setting and the global configuration is used instead. Syntax neighbor <router-id> timers <tx-keep-alive-interval> <rx-dead-interval> no neighbor <router-id> timers <tx-keep-alive-interval> <rx-dead-interval> Parameters Parameter router-id Description IP address identifying the router ID of the neighbor. Time in seconds between sending of keep alive messages. Time lapse between messages before peer is assumed dead. Type/Range IP address in dotted notation 0-65535 seconds 0-65535 seconds Default None.
tx-keep-aliveinterval rx-dead-interval
60 180
neighbor unsuppress-map
Applies the specified route-map toward the specified neighbor to selectively unsuppress routes suppressed by aggregation. The no form of this command disables this function. Syntax neighbor {peer-group | ip-address} unsuppress-map route-map-name no neighbor {peer-group | ip-address} unsuppress-map route-map-name
5-212
Parameters Parameter peer-group ip-address route-map-name Description BGP peer-group toward which the routemap is applied. BGP peer toward which the route-map is applied. Route-map to be applied to ingoing or outgoing routes.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
neighbor update-source
Enables internal BGP sessions on the router to use the specified interface for TCP connections with the specified neighbor. The no form of this command restores the interface assignment to the closest interface, which is called the best local address. Syntax neighbor {peer-group | ip-address} update-source interface-name no neighbor {peer-group | ip-address} update-source [interface-name] Parameters Parameter peer-group ip-address Description BGP peer-group that will use the interface for TCP connections with this router. Address of the BGP peer that will use the interface for TCP connections with this router. {loopback loopback-number | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number}.
interface-name
5-213
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
neighbor version
Sets a particular BGP version to be used with the specified neighbor. The no form of this command uses the neighbors default BGP version. Syntax neighbor {peer-group | ip-address} version version-number no neighbor {peer-group | ip-address} version [version-number] Parameters Parameter peer-group ip-address interface-name Description BGP peer-group for which the BGP version is being set. Address of the BGP peer for which the BGP version is being set. BGP version number to be used with this neighbor, the only valid value is 4.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv6 Unicast VRF)
neighbor weight
Sets a network weight to routes from the specified neighbor. Routes learned from this neighbor will have the assigned weight initially. The no form of this command removes the weight assignment for this neighbor. Syntax neighbor {peer-group | ip-address} weight weight-value no neighbor {peer-group | ip-address} weight [weight-value]
5-214
Parameters Parameter peer-group ip-address interface-name Description BGP peer-group to which the network weight applies. Address of the BGP peer to which the network weight applies. Network weight to be assigned to incoming routes from the specified neighbor, range is 0 to 65535.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines The weights assigned in route-maps override the weights assigned using the neighbor weight and neighbor filter-list commands.
netflow-collection
The SVP can be enabled to collect NetFlow records using this command. The records are analyzed per router interface direction. Each router for which the SVP should collect NetFlow information must be enabled via the netflow-receive command. This command provisions up to two ports that the SVP will listen to for NetFlow records. This command also provisions the aggregation limit used by the SVP. As the SVP receives records it identifies the top users of the interface bandwidth. The number of top users the SVP will identify is controlled by the aggregation-limit parameter. Using the NetSocket GUI, the operator can configure IP subnets or layer 4 port ranges so that multiple flows can be viewed as a single user in the list of user flows. In order to provide to a second level of inspection for a specific user, the SVP must save the flow records associated with that user. Depending on the desired visibility and the available processing and storage on the SVP, the system can save the netflow information differently. The flow-record parameter controls how this information is saved. not-saved - No flow records are saved to disk. The system will still give summarized
5-215
utilization but no detailed inspection is possible. no-aggregation - The original flow identifier is saved for all fields. This allows the best detailed visibility but requires the most overhead. aggregation - The original flow identifier is replaced by an aggregation value. For example a specific host IP is saved as the subnet the host resides in. This reduces the storage requirement while allowing for inspection per aggregation. application-aggregation - Only the layer 4 port, protocol and DSCP fields of the flow records are saved with an aggregation value. This allows inspection of end-points while reducing the number of redundant application flows.
By default the SVP will not listen for NetFlow records. The no form of this command regardless of parameters returns the system to the default state. Syntax netflow-collection [udp-port1 <udp-port1> [udp-port2 <udp-port2>]] [aggregation-limit <aggregation-limit>] [flow-record { not-saved | no-aggregation | aggregation | applicationaggregation}] no netflow-collection [udp-port1 <udp-port1> [udp-port2 <udp-port2>]] [aggregation-limit <aggregation-limit>] [flow-record { not-saved | no-aggregation | aggregation | applicationaggregation}]
Parameters Parameter udp-port1 udp-port2 aggregationlimit flow-record Description UDP port for receiving NetFlow records.. Second UDP port for receiving NetFlow records.. Bounds the size of the top users that will be tracked per router interface direction. Defines how flow records are stored. See explanation above. Type/Range 1000-65535 1000-65535 10-100 Default 9995 Disabled 30
applicationaggregation
netflow-receive
5-216
The SVP can be enabled to collect NetFlow records using the netflow-collector command. The netflow-receive command enables reception of records from a specific router. Records received from routers which have not been enabled will be ignored. This command identifies the source IP address used by the sending router. A template-timeout parameter is also available for timing out stale version 9 templates. By default the SVP will not process records received from routers. The no form of this command regardless of parameters returns the system to the default state. Syntax netflow-receive ip-address <ip-address> [template-timeout <template-timeout>] no netflow-receive [ip-address <ip-address>] [template-timeout <template-timeout>]
Parameters Parameter ip-address templatetimeout Description Source IP address in sender's Netflow messages. If a previously received template is not refreshed within this timeout period, the template is no longer considered valid. 1-3600 minutes Type/Range Default disabled 35
netstat
Displays network status information. Syntax netstat [routing-tables][partition partition-number] Parameters Parameter partition-number Description Router partition from which information is requested, range is 0-5.
5-217
Guidelines If a partition number is not specified, information is retrieved from the active partition. Output Address Local address. Proto Protocol of active sockets. Recv-Q Receive queue size in bytes. Send-Q Send queue size in bytes. Local Address Local address of the active socket. Foreign Address Remote address of the active socket. (state) State of the active socket. Inode Kernel address of the file system object handle. Conn Kernel address of the protocol control block. Refs Referencing socket linked list. Nextref Kernel link list link address. Add Name of files system object. Destination Destination to use when forwarding packets. Gateway Gateway to use when forwarding packets. Flags Information about the route indicated by the following character flags: 1 Protocol-specific routing flag #1. 2 Protocol-specific routing flag #2. 3 Protocol-specific routing flag #3. B Discard packets. b Route represents a broadcast address. C Clone new routes. c Protocol-specified clone new routes. D Created dynamically. G Forwarding by gateway. H Host entry. L Link address translation. M Modified dynamically. R Host or net unreachable. S Statically added. U Route usable. W Route was cloned. X External daemon translates protocol to link address. Netif Name of network interface. Expire Time (in seconds) until the route expires.
network
Sets a network to be advertised by this router. The no form of this command removes the network from the list of advertised routes. Syntax network {ip-address [mask netmask] | ip-address/mask-length} [weight weight-value] [routemap route-map-name] [backdoor]
5-218
no network {ip-address [mask network-mask] | ip-address/mask-length} [weight weight-value] [route-map route-map-name] [backdoor] Parameters Parameter ip-address netmask ip-address/mask-length weight-value route-map-name backdoor Description IP address of the network that BGP will advertise. Netmask of the IP address that BGP will advertise. IP address and mask length of the network that BGP will advertise. Network weight assigned to the network that BGP will advertise. Route-map to be applied when BGP advertises this network. Specifies that this is a backdoor network (treated as a local network and preferred over external BGP routes).
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast) Guidelines ip-address netmask or ip-address/mask-length must be of ipv4 address format if this command is invoked in one of the IPv4/VPNv4 address family modes (Unicast/Unicast VRF and Multicast). ip-address netmask or ip-address/mask-length must be of ipv6 address format if this command is invoked in one of the IPv6/VPNv6 address family modes (Unicast/Unicast VRF and Multicast).
network area
Enables one or more interfaces to run OSPF, and specifies the areas to which those OSPF
5-219
interfaces belong. The no form of this command disables OSPF for the interface(s) defined by the IP address and mask. Syntax network ip-address wildmask area {area-id | ip-address} no network ip-address wildmask area {area-id | ip-address} Parameters Parameter ip-address wildmask Description When interfaces match this ip address and inverse mask, they will be assigned to the specified area. Area to which matching interfaces are assigned, expressed in decimal format, range is 0 to 4294967295. Area to which matching interfaces are assigned, expressed as an ip address (dotted decimal).
area-id
ip-address
no area
Removes the specified OSPF area. Syntax no area {area-id | ip-address} Parameters Parameter area-id ip-address Description Area to be deleted, expressed in decimal format, range is 0 to 4294967295. Area to be deleted, expressed as an IP address (dotted decimal).
5-220
Guidelines Before removing an OSPF area, the associated networks must be removed from the area with the no network area command.
ntp authenticate
Enables the NTP authentication feature (default). The no form of this command disables the NTP authentication feature. Syntax ntp authenticate no ntp authenticate Mode Global Configuration
ntp authentication-key
Specifies an authentication key for the NTP authentication feature. The no form of this command removes an authentication key. Syntax ntp authentication-key key-number md5 [encryption-type] key-value no ntp authentication-key key-number [md5 [encryption-type] key-value] Parameters Parameter key-number md5 encryption-type Description Key number, range is 1 to 65534. Use Message Digest 5 algorithm. Specifies whether the key that follows is encrypted. A value of 0 (default) indicates the following key is not encrypted, and a value of 7 indicates the following key is encrypted. Key value, range is 1 to 8 alpha-numericsymbolic characters (cannot begin with a # character and spaces are not allowed).
key-value
Mode
5-221
Global Configuration
ntp broadcast
Enables an interface to send Network Time Protocol (NTP) broadcast packets. The no form of this command disables an interface to send NTP broadcast packets (default). Syntax ntp broadcast *[key key-number | version ntp-version] no ntp broadcast *[key key-number | version ntp-version] Parameters Parameter key-number Description Authentication key number, range is 1 to 65534 (as determined by the ntp authentication-key command), default is no encryption. NTP version number, range is 1 to 4, default is 4.
ntp-version
Mode Interface Configuration (Admin, Loopback, NNET, Null, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan)
ntp broadcastdelay
5-222
Sets the delay value between the NTP broadcast server and the RCP. The no form of this command sets the delay value to the default value. Syntax ntp broadcastdelay microseconds no ntp broadcastdelay [microseconds] Parameters Parameter microseconds Description Delay value in microseconds, range is 1 to 999999, default is 4000.
ntp master
Enables the router to be configured as an independent time source based on the local clock of the router. The no form of this command disables this function (default). Syntax ntp master [stratum] no ntp master [stratum] Parameters Parameter stratum Mode Global Configuration Description Stratum number, range is 1 to 15.
ntp on
Enables NTP (Network Time Protocol) operation (default). The no form of this command disables NTP operation. Syntax ntp on
5-223
no ntp on Mode Global Configuration Guidelines When NTP is enabled and configured to synchronize with an NTP server, the system clock value will be synchronized to the NTP server in the following manner: a) if the difference between the system clock and the NTP server is 128ms or less, the system clock value will be slowly slewed toward the NTP server value at a rate of 0.5ms per second until synchronized. If the difference between the system clock and the NTP server is greater than 128ms, the system clock value will be instantly synchronized to the NTP server value.
ntp peer
Enables system clock peer-type synchronization with an NTP server. The no form of this command disables system clock peer-type synchronization with an NTP server (default). Syntax ntp peer ip-address *[key key-number | prefer | version ntp-version] no ntp peer ip-address *[key key-number | prefer | version ntp-version] Parameters Parameter ip-address key-number Description IP address of the peer. Authentication key number, range is 1 to 65534 (as determined by the ntp authentication-key command), default is no encryption. Specifies that this is the preferred peer. NTP version number, range is 1 to 4, default is 4.
prefer ntp-version
ntp restrict-list
Creates NTP access control restrict-list entries. The no form of this command removes NTP access control restrict-list entries.
5-224
Syntax ntp restrict-list {ip-address [netmask] | ip-address/mask-length} *{ignore | nomodify | nopeer | noquery | noserve | notrust} no ntp restrict-list {ip-address [netmask] | ip-address/mask-length} *{ignore | nomodify | nopeer | noquery | noserve | notrust} Parameters Parameter ip-address netmask ip-address/mask-length ignore nomodify nopeer noquery noserve notrust Description IP address of NTP host. Optional mask of ip-address. IP address and prefix length. Ignore all packets from NTP hosts that match this address. Ignore all re-configuration packets from the NTP host. Provide time service to the NTP host but do not allocate peer memory resources. Ignore all NTP information queries from the NTP host. Ignore all NTP packets except control packets. Do not use the NTP host as a synchronization source.
ntp server
Enables system clock client-type synchronization with an NTP server. The no form of this command disables system clock client-type synchronization with an NTP server (default). The NTP server can be configured using the hostname. The system will perform DNS lookup and resolve the name to an IP address. The IP address is then stored as part of the running configuration. Syntax ntp server {ip-address | hostname} *[key key-number | prefer | version ntp-version] no ntp server {ip-address | hostname} *[key key-number | prefer | version ntp-version]
5-225
Parameters Parameter ip address hostname key-number Description IP address of the NTP server. Hostname of the NTP server. This requires that a domain name server is configured. Authentication key number, range is 1 to 65534 (as determined by the ntp authentication-key command), default is no encryption. Specifies that this is the preferred server. NTP version number, range is 1 to 4, default is 4.
prefer ntp-version
ntp source
Sets the source IP address for all transmitted NTP packets to that of a specified interface. The no form of this command removes the specification of a source IP address (default). Syntax ntp source interface-name no ntp source [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
ntp trusted-key
Selects the authentication key to be used for authenticating received NTP packets. The no form of this command disables authentication of received NTP packets (default).
5-226
Syntax ntp trusted-key key-number no ntp trusted-key key-number Parameters Parameter key-number Description Authentication key number, range is 1 to 65534.
ntptrace
Displays the route from the RCP to the originating ntp clock source. Syntax ntptrace Mode User EXEC
offline
Specifies what actions should be taken when transitioning from any state to the offline state. Syntax offline command-string Parameters Parameter command-string Description List of commands (separated by semicolons) to be executed in sequence.
5-227
ospf
Enables debug messages of specified OSPF instances (or all instances if none specified) to be placed in the trace file. The no form of this command disables debug messages of specified OSPF instances (or all instances if none specified) from being placed in the trace file (default). Syntax ospf [instance-id]... no ospf [instance-id]... Parameters Parameter instance-id Mode Traceoptions Configuration Description OSPF instance identification.
ospf alternative-abr
Enables alternative Area Border Router (ABR) implementation. The no form of this command disables this function (default). Syntax ospf alternative-abr no ospf alternative-abr Mode Global Configuration Guidelines With this feature enabled, if the RCP is attached to multiple OSPF areas but does not have a functional connection to the OSPF backbone area, the RCP will not advertise itself as an ABR. It will consider itself an internal router.
ospf area
This is a group of functions that configure OSPF multi-area parameters. Each command has a no form to delete the configured feature. Note: This command will overwrite OSPF instance created using the router ospf command.
5-228
Syntax ospf area { <area-id> } authentication [message-digest] ospf area { <area-id> } stub [no-summary] ospf area { <area-id> } nssa [no-summary] no ospf area { <area-id> } no ospf area { <area-id> } authentication [message-digest] no ospf area { <area-id> } stub [no-summary] no ospf area { <area-id> } nssa [no-summary] Parameters Parameter <area-id> Description A mandatory parameter that specifies the OSPF area ID in decimal. Enables authentication in area Specifies MD5 authentication Defines a stub area ABR does not send Type 3 LSAs into the stub area Configures not-so-stubby area Disables sending of Type 3 LSAs in NSSA
authentication message-digest stub no-summary nssa no-summary Mode Topology map configuration.
ospf-topology-neighbor
To add an OSPF neighbor into the SVP managed topology, use the ospf-topology-neighbor command in topology-map configuration mode. Multiple OSPF neighbors can be specified in topology map. Syntax ospf-topology-neighbor <ifname> area {<ip-address> |<area-id>} ospf-id <ospf-id> no ospf-topology-neighbor <ifname> area {<ip-address> |<area-id>} ospf-id <ospf-id> Parameters Parameter ifname ip-address Description name of the interface area ID in IP address format Type/Range String Default None
5-229
packet
Enables packet routing debug messages to be placed in the trace file. The no form of this command disables packet routing debug messages from being placed in the trace file (default). Syntax packet no packet Mode Traceoptions Configuration
Mode Interface Configuration (Loopback, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan)
5-230
passive-interface (OSPF)
Disables the sending of routing updates from the specified interface. The no form of this command re-enables sending of routing updates from the interface. Syntax passive-interface {default | interface-name} no passive-interface [default | interface-name] Parameters Parameter default interface-name Description Disables sending of routing updates from all of the RCPs interfaces. {loopback loopback-number | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number}.
password-encryption
Enables password encryption for BGP, IS-IS, and OSPF neighbor passwords. The no form of this command disables password encryption (default). Syntax password-encryption no password-encryption Mode Global Configuration Guidelines This command enables or disables encryption for BGP, IS-IS, and OSPF neighbor passwords only. Username passwords, privileged mode passwords, and authentication key passwords are always encrypted.
pcap-enable
5-231
This command is used to enable saving RTP streams analyzed for analogue metrics to disk. When the system allowed disk space is exhausted, older files are deleted. For security purposes, the RTP data upload to the browser can be password protected and scrambled. Scrambling slightly distorts the signal level information such that visual analysis is still possible. However, the speech is unrecognizable. To understand the system behavior for this command the following scenarios are identified: Scrambling enabled with a password: Users that upload wav files without providing a password or an incorrect password receive a scrambled version of the file. Users that upload wav files and provide the correct password receive unscrambled wav files. Scrambling enabled with no password. The wav files are always scrambled prior to upload. Password enabled with no scrambling. The wav files are upload without scrambling if the password provided matches the configured password. No password and no scrambling. The wav files are always uploaded unscrambled.
The no form of this command, regardless of parameters, disables the saving of the RTP streams to disk. Syntax pcap-enable [[encrypted] upload-password <upload-password>] [scramble] no pcap-enable [[[encrypted] upload-password <upload-password>] [scramble]]
Parameters Parameter encrypted upload-password scramble Mode Global Configure Description The encrypted keyword is used for encrypting the output of the running configuration. The password that must be entered when a request is made to retrieve RTP pcap file from the browser. Scramble wav file before uploading. Default is off.
pdsp
The Packet Drop Session Percentage is the percentage of sessions that ended with an packet drop ratio greater than or equal to the defined threshold. This command specifies the threshold to determine if a session has excessive packet drop and specifies the percentage of such sessions that would trigger an alert to be generated. If the packet drop ratio is specified, then all sessions with an packet drop ratio (PDR) greater than or equal to that value will be marked as having excessive packet drop. Note: a PDR value of 0 is interpreted to mean sessions with a non-zero packet drop count.
5-232
The command replaces the existing packet drop ratio and/or the settings for the intervals specified. The no form of the command with no arguments disables the PDSP alert for all time intervals and returns the PDR threshold to its default value. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the PDSP alert for that time interval. The no form of the command with the PDR value will return the PDR to its default value. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax pdsp {[pdr pdr>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no pdsp {[pdr <pdr>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter pdr interval1 interval2 Description Packet Drop Ratio threshold value. set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a PDR is greater than this value an alarm will be sent. If the percentage of sessions with a PDR is less than or equal to this value the alarm will be cleared. 0-99 Type/Range 0-100 30 None None Default
clear
0-99
none
5-233
peer-address
Enables debug messages of specified peer addresses to be placed in the trace file. The no form of this command disables debug messages of specified peer addresses (or all peer addresses if none specified) from being placed in the trace file (default). Syntax peer-address {ip-address}... no peer-address [ip-address]... Parameters Parameter ip-address Mode Traceoptions Configuration Description IP address of peer
permit (extended)
In an extended access-list, sets the conditions under which packets are permitted. The no form of this command removes a permit condition from the access-list through specification of a sequence number and/or matching permit clause. Syntax permit [seq sequence-number] [rcp] {protocol | ip} {source-ip-address source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments] [class-map class-map-name] no permit {seq sequence-number | [seq sequence-number] [rcp] {protocol | ip} {sourceipaddress source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments]} [class-map class-map-name] Parameters Parameter sequence-number Description Unique sequence number of the permit clause being added or deleted; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access-list.
5-234
rcp
Specifies that this clause should allow an extended set of options only available on the RCP; therefore, this clause will not be applied on the line card. Name or number of an internet protocol, or symbol-name as defined in define ipprotocol, valid protocol numbers are 0 to 255 (RCP option only). Any IP protocol Access is permitted for packets originating from this source IP address and wildcard mask combination. Access is permitted for packets originating from any source IP addresses. Access is permitted for packets originating from this source IP address host. Access is permitted for packets sent to this destination IP address and wildcard mask combination. Access is permitted for packets sent to any destination IP address. Access is permitted for packets sent to this destination IP address host. DSCP value to be matched, range is 0 to 63, or a well-known DSCP name, or symbol-name if defined in define dscp. Precedence level to be matched, valid entries are 0 to 7, or a well-known precedence name, or symbol-name if defined in define ip-precedence. Service level to be matched, range is 0 to 15, or a well-known ToS name (RCP option only). Specifies that information about matching packets will be sent to the console. Specifies that the input interface is to be included in the log. Specifies that packets in IP datagram fragments are to be matched (RCP option only).
protocol
ip source-ip-address source-wildmask
precedence-value
tos-value
5-235
class-map-name
Name of an existing class-map (created with class-map command) to which the access-list is being applied.
icmp-subcode
Mode IP Extended Access-List Configuration Guidelines See the permit (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
5-236
no form of this command removes a permit condition from the access-list through specification of a sequence number and/or matching permit clause. Syntax permit [seq sequence-number] [rcp] {2 | igmp} {source-ip-address source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | log-input} | fragments | igmp-type] [class-map class-map-name] no permit {seq sequence-number | [seq sequence-number] [rcp] {2 | igmp} {source-ipaddress source-wildmask | any | host source-ip-address} {dest-ip-address dest-wildmask | any | host dest-ip-address} *[dscp dscp-value | precedence precedence-value | tos tos-value | {log | loginput} | fragments | igmp-type]} [class-map class-map-name] Parameters Parameter igmp-type Description IGMP protocol name or code to be matched, range is 0 to 15, or symbol-name may be used if defined in define igmp.
Mode IP Extended Access-List Con figuration Guidelines See the permit (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
5-237
Parameters Parameter eq gt lt neg range source-tcp-port Description Specifies that port must be equal to a value. Specifies that port must be greater than a value. Specifies that port must be less than a value. Specifies that port must be not equal to a value. Specifies that port must be within a range of values. Decimal number or well-known name of the source TCP port, or symbolname if defined in define tcp-port. Decimal number or well-known name of the destination TCP port, or symbolname if defined in define tcp-port. TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only). TCP flag to be matched (RCP option only).
dest-tcp-port
ack established fin psh rst syn urg Mode IP Extended Access-List Con figuration Guidelines
See the permit (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
5-238
Syntax permit [seq sequence-number] [rcp] {17 | udp} {source-ip-address source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-udp-port | range source-udp-port1 sourceudp- port2] {dest-ip-address dest-wildmask | any | host dest-ip-address} [{eq | gt | lt | neq} destudp- port | range dest-udp-port1 dest-udp-port2] *[dscp dscp-value | precedence precedencevalue | tos tos-value | {log | log-input} | fragments] [class-map class-map-name] no permit {seq sequence-number | [seq sequence-number] [rcp] {17 | udp} {source-ipaddress source-wildmask | any | host source-ip-address} [{eq | gt | lt | neq} source-udp-port | range source-udp-port1 source-udp-port2] {dest-ip-address dest-wildmask | any | host destipaddress} [{eq | gt | lt | neq} dest-udp-port | range dest-udp-port1 dest-udp-port2] *[dscp dscpvalue | precedence precedence-value | tos tos-value | {log | log-input} | fragments]} [classmap class-map-name] Parameters Parameter eq gt lt neg range source-udp-port Description Specifies that port must be equal to a value. Specifies that port must be greater than a value. Specifies that port must be less than a value. Specifies that port must be not equal to a value. Specifies that port must be within a range of values. Decimal number or well-known name of the source TCP port, or symbolname if defined in define udp-port. Decimal number or well-known name of the destination TCP port, or symbolname if defined in define udp-port.
dest-udp-port
Mode IP Extended Access-List Con figuration Guidelines See the permit (extended) command for other descriptions of inputs that are common between the IP access-list family of commands.
permit (standard)
In a standard access-list, sets the conditions under which packets are permitted. The no form of this command removes a permit condition from the access-list through specification of a
5-239
sequence number and/or matching permit clause. Syntax permit [seq sequence-number] {ip-address [wildmask] | any | host ip-address} [log] no permit {seq sequence-number | [seq sequence-number] {ip-address [wildmask] | any | host ip-address} [log]} Parameters Parameter sequence-number Description Unique sequence number of the permit clause being added or deleted; by default, sequence numbers start at 10 and increment by 10 for each entry added to the end of the access-list. Access is permitted for all addresses matching the IP address and wildcard mask combination (if wildcard mask is not specified, 0.0.0.0 is assumed). Access is permitted for all IP addresses. Access is permitted for this host IP address. Specifies that information about matching packets will be sent to the console.
ip-address [wildmask]
plsp
The Packet Loss Session Percentage is the percentage of sessions that ended with an packet loss ratio greater than or equal to the defined threshold. This command specifies the threshold to determine if a session has excessive packet loss and specifies the percentage of such sessions that would trigger an alert to be generated. If the packet loss ratio is specified, then all sessions with an packet loss ratio (PLR) greater than or equal to that value will be marked as having excessive packet loss. Note: a PLR value of zero is interpreted to mean any sessions with a non-zero packet loss count. The command replaces the existing packet loss ratio and/or the settings for the intervals specified. The no form of the command with no arguments disables the PLSP alert for all time intervals and returns the PLR threshold to its default value. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the PLSP alert for that time interval. The no form of the command with the PLR value will return the PLR to its default value. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold.
5-240
Syntax plsp {[plr plr>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no plsp {[plr <plr>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter plr interval1 interval2 Description Packet Loss Ratio threshold value. set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a PLR is greater than this value an alarm will be sent. If the percentage of sessions with a PLR is less than or equal to this value the alarm will be cleared. 0-99 Type/Range 0-100 30 None None Default
clear
0-99
none
pmosp
The calculation of the session's MOS percentage and the method for session categorization is described in the bmosp command. This command specifies the threshold for determining if the session has a Poor MOS percentage. This command also specifies the ratio of all poor sessions to all sessions with MOS scores calculated. If the calculated ratio is greater than the configured threshold, an alert will be generated. This command replaces the existing PMOS threshold and/or the settings for the intervals specified. The no form of the command with no arguments disables the PMOSP alert for all time intervals and returns the PMOS thresholds to their default value. The no form of the command with a single interval, regardless of set/clear
5-241
threshold value, will disable the PMOSP alert for that time interval. The no form of the command with the PSMOS value and/or PVMOS will return the threshold to its default value. This command enables generation of alerts to the SVM and traps to the NMS. The set threshold must be greater than or equal to the clear threshold. Syntax pmosp {[psmos <psmos>] [pvmos <pvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no pmosp {[psmos <psmos>] [pvmos <pvmos>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter psmos Description Poor Speech MOS percentage threshold value. Poor Video MOS percentage threshold value. set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with a poor MOS ratio is greater than this value an alarm will be sent. If the percentage of sessions with a poor MOS ratio is less than or equal to this value the alarm will be cleared. 0-99 Type/Range 0-100 70 Default
pvmos
40-100
70
interval1 interval2
None None
clear
0-99
none
Mode
5-242
pgmgroup
Specifies a group of programs or commands that can be initiated or terminated as a group. Syntax pgmgroup program-group {program-specification} Parameters Parameter program-group program-specification Description Program group name. [ENV_VARIABLE=VALUE.] [sh | csh | gdb] command-string -f1. arg1. [chdir path] [vnet num] [sigrecovery num] [sigoffline num] [waitexit] [onexit {ignore | restart | fail | stop | returnstatus | recover}] [<stdin] [>stdout][>&stderr]. Environment variable settings, VALUE can be a number, name, or string; the string must begin and end with a quotation-mark character (). Shell specification CShell specification GNU Debugger Specification Command name or pathname and any desired flags or arguments, the command string must begin and end with a quotationmark character (). Pathname used to set the current working directory. Sets the programs vnet number. Signal to be delivered when the RCP enters a recovery state. Signal to be delivered when the RCP enters an offline state.
ENV_VARIABLE=VALUE
5-243
waitexit
Specifies that the protection monitor program should wait for a program to exit or send a Program Status message before continuing with other program initiations. Tells the protection monitor program what to do if the program exits. Ignore the exit (default). Restart the program. Assume the program has failed (triggering an RCP switch over if it occurs on an active protected RCP). Stop the program. Tells the protection monitor program to switch over if possible, otherwise to restart the failed program. Standard input, the string must begin and end with a quotation-mark character (). Standard output, the string must begin and end with a quotation-mark character (). Standard error, the string must begin and end with a quotation-mark character ().
stop recover
ping (privileged)
Provides advanced network connectivity diagnosis. Syntax ping [{host | ip-address} *[data pattern | interval seconds | numeric | quiet | repeat count | size bytes | source {host | interface-name | ip-address} | sweep min-size max-size interval | time-limit seconds]] Parameters Parameter host ip-address data pattern Description Name of the destination host. IP address of the destination host Data pattern, range is 1 to 16 bytes, default is 0xABCD.
5-244
Interval in seconds to wait before sending each packet, range is 1 to 3600, default is 1. Only numeric addresses are displayed, default is no numeric. Normal output is not displayed except summary lines at startup and completion, default is no quiet. Number of ping packets sent to the destination host, range is 1 to 2147483647, default is 5. Size of the ping datagram in bytes, range is 1 to 8184, default is 100. Source name for outgoing packets. Source interface name for outgoing packets. {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}. Source address for outgoing packets. Minimum bytes for sweep range, range is 1 to 8184, default is 1. Maximum bytes for sweep range, range is 1 to 8184, default is 8184. Interval value to increment by, default is 1. Time in seconds that a ping exits regardless of the number of packets received, range is 0 to 3600, default is 0 (no time-limit).
repeat count
source ip-address sweep min-size sweep max-size sweep interval time-limit seconds
If this command is issued without options, the user is prompted with the following fields: Parameter Target IP address: Numeric display [n]: Repeat count [5]: Description IP address of the destination host. Only numeric addresses are displayed, default is no numeric. Number of ping packets sent to the destination host, range is 1 to 2147483647, default is 5. Interval in seconds to wait before sending each packet, range is 1 to 3600, default is 1. Size of the ping datagram in bytes, range is 1 to 8184, default is 100.
5-245
Time in seconds that a ping exits regardless of the number of packets received, range is 0 to 3600, default is 0 (no time-limit). Source name or address, or interface-name for outgoing packets. Data pattern, range is 1 to 16 bytes, default is 0xABCD. Datagram size is sequentially varied, default is no sweep range. Minimum bytes for sweep range, range is 1 to 8184, default is 1. Maximum bytes for sweep range, range is 1 to 8184, default is 8184. Interval value to increment by. Normal output is not displayed except summary lines at startup and completion, default is no quiet.
Source address or interface: 16-byte data pattern [0xABCD]: Sweep range of sizes [n]: Sweep min size [1]: Sweep max size [8184]: Sweep interval [1]: Quiet display output [n]:
Mode Privileged EXEC Guidelines All incoming ICMP Echo Request packets that are addressed to the RCP, and greater than 9000 bytes, are dropped in order to protect the RCP from malicious network traffic.
ping (user)
Provides basic network connectivity diagnosis. Syntax ping {host | ip-address} Parameters Parameter host ip-address Mode User EXEC Description Name of the destination host. IP address of the destination host
5-246
Guidelines All incoming ICMP Echo Request packets that are addressed to the RCP, and greater than 9000 bytes, are dropped in order to protect the RCP from malicious network traffic.
5-247
maximum-entries
Number of entries that the address policy cache may contain before old entries are written over by new entries, default is 20000, range is 0 to 250000.
privilege level
Assigns a privilege level to a command. The no form of this command assigns a command back to the default privilege level value. Syntax privilege mode level level command no privilege mode [level level command] Parameters Parameter Description
5-248
mode
{address-family | configure | controller | cos-queue-group-in | cos-queuegroupout | exec | flow-cache | interface | ipexplicit-path | ipenacl | ipsnacl | line | path-attr | policy-list | protmon | QoSclassmap | QoSpolicymap-in | QoSpolicymap-out | QoSpolicymapclassin | QoSpolicymapclass-out | route-map | router | subinterface | traceoptions}.
address-family configure controller cos-queue-group-in cos-queue-group-out exec flow-cache interface ip-explicit-path ipenacl ipsnacl line path-attr policy-list protmon QoSclassmap QoSpolicymap-in QoSpolicymap-out QoSpolicymapclass-in QoSpolicymapclass-out route-map
Address Family Configuration mode. Global Configuration Mode. Controller Configuration Mode. CoS Queue Group Input Configuration Mode. CoS Queue Group Output Configuration Mode. EXEC mode. Flow Aggregation Cache Configuration Mode. Interface Configuration Mode. IP Explicit Path Configuration Mode. IP Extended Access-List Configuration Mode. IP Standard Access-List Configuration Mode. Line Configuration Mode. Path Attribute Configuration Mode. IP Policy-List Configuration Mode. Protection Monitor Configuration Mode. QoS Class-Map Configuration Mode. QoS Policy-Map Input Configuration Mode. QoS Policy-Map Output Configuration Mode. QoS Policy-Map Class Input Configuration Mode. QoS Policy-Map Class Output Configuration Mode. Route-Map Configuration Mode.
5-249
Router Configuration Mode. Subinterface Configuration Mode. Traceoptions Configuration Mode. Privilege level, range is 0 to 15. Command that is being assigned a privilege level.
prompt
Enables a custom prompt string to be configured. The no form of this command disables the custom prompt string function, and sets the prompt string to the default value (default). Syntax prompt prompt-string no prompt [prompt-string] Parameters Parameter prompt-string Description Custom prompt alphanumeric string plus special string sequences as listed below, range is from 1 to 64 alphanumeric characters. If the string contains a space character or is null, the string must begin and end with a quotation-mark character (). Percent sign character (%). Backup RCP indicator (HA-BU: if backup RCP). Hostname. RCP copy number (0 or 1). TTY number. Prompt character. Partition number (0.5 or admin). Space character. Tab character.
%% %b %h %m %n %p %r %s %t
5-250
Mode Global Configuration Guidelines The default value for the prompt is equivalent to a %b%h%p custom prompt string.
5-251
pwd
Displays the name of the default file directory. Syntax pwd Mode Privileged EXEC
qos-mib
This command enables the SVP to gather qos information from a router in the monitored network. The command specifies the mib type to poll, how many queues should be monitored and the polling rate. The snmp access command must be configured to allow the qos-mib collection to occur. The default poll interval will be the same as that specified snmp-access command. Syntax qos-mib [mib-type {cisco-class-based-qos | cisco-wrr-qos}] max-queues <max-queues> [poll-multiple <poll-multiple>] no qos-mib [mib-type {cisco-class-based-qos | cisco-wrr-qos}] max-queues <maxqueues> [poll-multiple <poll-multiple>] Parameters Parameter mib-type Description Vendor specific mib type to poll for. Maximum number of queues to monitor based on mib type. Number of SNMP poll intervals between qos-mib polls. E.g. if snmp-access poll interval is 90 seconds and this value is 2, the qos-mib will be polled every 180 seconds. Poll interval should be less than 5 minutes. Type/Range cisco-class-basedqos or cisco-wrrqos 1-8 1-10 Default cisco-classbased-qos None 1
max-queues poll-multiple
5-252
queue-bandwidth-utilization thresholds
This command enables the SVP to set an alert if the measured queue utilization divided by the provisioned utilization is greater than a specified percentage. This command only has an effect if the qos-mib command has been configured to enable monitor of qos information from monitored routers. If packet drops are detected or the set threshold is crossed, an alert will be generated. This command allows a different threshold for two queue types: priority and nonpriority. If no threshold is set for a queue type, then no alert is generated. If the no form of the command is entered and no parameters are specified, all thresholds are removed. If a specific queue type is entered, that queue types threshold is removed regardless of the value. The priority queue bandwidth alert will set the congestion field of all sessions on the link at the time of the alert. Syntax queue-bandwidth-utilization thresholds {[priority-set <priority-set> priority-clear <priorityclear>] | [non-priority-set <non-priority-set> non-priority-clear <non-priority-clear>] } no queue-bandwidth-utilization thresholds [priority-set <priority-set> priority-clear <priority-clear>] | [non-priority-set <non-priority-set> non-priority-clear <non-priority-clear>] Parameters Parameter priority-set, non-priority set Description If the measured utilization for queue n divided by the provisioned bandwidth is greater than this value, an alert is raised. If the measured utilization divided queue n by the provisioned bandwidth is less than or equal to this value, the alert is cleared. 1-100 Range Default none
1-100
none
radius-server host
Sets a RADIUS server host to be used by the RCP. The no form of this command removes a RADIUS server host. Syntax radius-server host {host | ip-address} *[auth-port udp-port | key [encryption-type] key-value | retransmit retransmit-value | timeout seconds]
5-253
no radius-server host {host | ip-address} *[auth-port udp-port | key [encryption-type] keyvalue | retransmit retransmit-value | timeout seconds] Parameters Parameter host ip-address udp-port Description Name of RADIUS server host. IP address of RADIUS server host. Udp port number for authentication requests, range is 1 to 65535, default is 1645. Specifies whether the key that follows is encrypted. A value of 0 (default) indicates the following key is not encrypted, and a value of 7 indicates the following key is encrypted. Authentication key value, range is 1 to 8 alpha-numeric-symbolic characters (cannot begin with a # character and spaces are not allowed), default is the value set by the radius-server key command. Number of times a RADIUS request should be resent to the RADIUS server host, range is 1 to 100, default is the value set by the radius-server retransmit command. Number of seconds to wait for the RADIUS server host to respond before re-sending a RADIUS request, range is 1 to 1000, default is the value set by the radius-server timeout command.
encryption-type
key-value
retransmit-value
seconds
radius-server key
Sets the authentication key for all RADIUS requests and responses. The no form of this command disables the authentication key. Syntax radius-server key [encryption-type] key-value no radius-server key [[encryption-type] key-value]
5-254
Parameters Parameter encryption-type Description Specifies whether the key that follows is encrypted. A value of 0 (default) indicates the following key is not encrypted, and a value of 7 indicates the following key is encrypted. Key value, range is 1 to 8 alpha-numericsymbolic characters (cannot begin with a # character and spaces are not allowed).
key-value
radius-server retransmit
Sets the number of retransmissions to each RADIUS server host. The no form of this command disables retransmission. Syntax radius-server retransmit retransmit-value no radius-server retransmit [retransmit-value] Parameters Parameter retransmit-value Description Number of times a RADIUS request should be resent to each RADIUS server host, range is 1 to 100, default is 3.
radius-server timeout
Sets the duration of time to wait for a RADIUS server host to respond. The no form of this command sets the default. Syntax radius-server timeout seconds
5-255
no radius-server timeout [seconds] Parameters Parameter seconds Description Number of seconds to wait for a RADIUS server host to respond, range is 1 to 1000, default is 5.
rcp-reboot
Reboot the SV server. Syntax rcp-reboot {[at <hh:mm>] | [in mm] | [now]}
Parameters Parameter at <hh:mm> in mm now Mode User EXEC Description The time at which to perform the reboot. Reboot the system in mm minutes from now. Reboot the system now.
rcp-shutdown
Shuts the the SV server down and powers it off. Syntax rcp-shutdown {[at <hh:mm>] | [in mm] | [now]}
5-256
The time at which to perform the shutdown. Shuts down the system in mm minutes from now. Shutdown the system now.
rcp license-key
This command is used to install or upgrade a SVP license. The no form will remove an existing license. This command is only valid on the SVP. Syntax rcp license-key <key-string> [no] rcp license-key <key-string> Parameters Parameter <key-string> Description A string with fixed length of 19 characters, in the format of xxxx-xxxx-xxxx-xxxx
rcp monitor
This command sets the SVA(s) to be monitored by the SVP. The SVA is deployed to add visibility to the media stream associated with sessions the SVP detects via signaling. The no form of command removes the SVA being monitored from the SVP monitor list. If no SVA address is specified, then all the SVAs being monitored will be removed from the SVP monitor list. NOTE: Reach-ability from the SVP and the SVP's SVM is currently required for proper operation. If the IP address to be used by the SVM is different (due to address translation), the svm-rcpa-ip-address should be specified, otherwise the same address will be used by both the SVM and the SVP. Syntax rcp monitor rcpa-ip-address <ip-address-string> [rcpm-rcpa-ip-address <rcpm-ip-addressstring>] no rcp monitor [rcpa-ip-address <ip-address-string>] [rcpm-rcpa-ip-address <rcpm-ip-
5-257
address-string>] Parameters Parameter ip-address-string rcpm-ip-address-string Description IP address that represents the SVAs IP address in the network. The IP address the SVM should use to connect to the SVA. This to account for address translation.
rcpm monitor
This command sets the SVP to be monitored by SVM. To specify SVP to be monitored, use rcpm monitor command. The no form command removes the SVP being monitored from SVM monitor list. When a no form command is entered, if the SVP address exists, the SVP will be removed from SVMs monitor list. If no SVP address exists, then all the SVPs being monitored will be removed from SVM monitor. Syntax rcpm monitor rcp-ip-address <ip-address-string> no rcpm monitor [rcp-ip-address <ip-address-string>] Parameters Parameter ip-address-string Description IP address that represents the SVPs IP address in the network.
remove
Removes older software base releases that are no longer being used. Syntax remove version major-rel-num.minor-rel-num {active | peer | self | standby} Parameters
5-258
Description The major and minor portion of a software release number. Removes software on the active RCP. Removes software on the peer RCP. Removes software on this RCP. Removes software on the standby RCP.
rename (EXEC)
Changes the name of a file. Syntax rename from-filename to-filename Parameters Parameter from-filename to-filename Description Old name of the file as [device:][directory/]file. New name of the file as [device:][directory/]file.
Mode Privileged EXEC Guidelines The device argument within a directory-name or filename specification refers to both physical devices and logical devices (directory areas). For a complete list of valid device arguments, refer to the dir command documentation.
replace
Enables new debug messages to overwrite the trace file. The no form of this command enables new debug messages to be appended to the trace file (default). Syntax
5-259
resequence access-list
For the given access-list, performs a renumbering of all of the sequence numbers so that they are sequential multiples of 10 (10, 20, 30, 40, 50, and so on). If no access-list is given, all access-lists are resequenced. Syntax resequence access-list [access-list-id] Parameters Parameter access-list-id Description Alphanumeric name string of the access-list to renumber.
Mode Global Configuration Guidelines Access-lists may have sequence-numbers that are not multiples of 10 because the RCP allows sequence numbers to be added or deleted by the user. This command maintains the order of the entries in the access-list, but renumbers them into multiples of 10.
resequence ip access-list
For the given access-list, performs a renumbering of all of the sequence numbers so that they are sequential multiples of 10 (10, 20, 30, 40, 50, and so on). If no access-list is given, all access-lists are resequenced. Syntax resequence ip access-list [access-list-id] Parameters Parameter Description
5-260
access-list-id
Mode Global Configuration Guidelines Access-lists may have sequence-numbers that are not multiples of 10 because the RCP allows sequence numbers to be added or deleted by the user. This command maintains the order of the entries in the access-list, but renumbers them into multiples of 10.
resequence ip community-list
Enables a renumbering of all of the sequence numbers for the given ip community-list so that they are sequential multiples of 10 (10, 20, 30, 40, 50, and so on). If no ip community-list is given, all ip community-lists are resequenced. Syntax resequence ip community-list [community-list-id]
5-261
Parameters Parameter community-list-id Description Alphanumeric string identifying the community-list to renumber.
Mode Global Configuration Guidelines Access-lists may have sequence-numbers that are not multiples of 10 because the RCP allows sequence numbers to be added or deleted by the user. This command maintains the order of the entries in the access-list, but renumbers them into multiples of 10.
resequence ip extcommunity-list
Enables a renumbering of all of the sequence numbers for the given ip extended communitylist so that they are sequential multiples of 10 (10, 20, 30, 40, 50, and so on). If no ip extended community-list is given, all ip extended community-lists are resequenced. Syntax resequence ip extcommunity-list [ext-community-list-id] Parameters Parameter ext-community-list-id Description Alphanumeric string identifying the extended community-list to renumber.
Mode Global Configuration Guidelines Access-lists may have sequence-numbers that are not multiples of 10 because the RCP allows sequence numbers to be added or deleted by the user. This command maintains the order of the entries in the access-list, but renumbers them into multiples of 10.
resequence ip prefix-list
Enables a renumbering of all of the sequence numbers for the given ip prefix-list so that they are sequential multiples of 5 (5, 10, 15, 20, 25, and so on). If no ip prefix-list is given, all ip prefix-lists are resequenced.
5-262
Syntax resequence ip prefix-list [prefix-list-id] Parameters Parameter prefix-list-id Mode Global Configuration Guidelines Access-lists may have sequence-numbers that are not multiples of 10 because the RCP allows sequence numbers to be added or deleted by the user. This command maintains the order of the entries in the access-list, but renumbers them into multiples of 10. Description
rib
Enables Routing Information Base (RIB) debug messages to be placed in the trace file. The no form of this command disables RIB debug messages from being placed in the trace file (default). Syntax rib no rib Mode Traceoptions Configuration
rmdir
Deletes a file directory. Syntax rmdir directory-name Parameters Parameter directory-name Description Name of the file directory as [device:]directory.
5-263
rollback
Sets the running configuration to the last-saved startup-configuration file or to a specified configuration file. Syntax rollback [filename] Parameters Parameter filename Mode Global Configuration Description Name of configuration file
route-map
Creates a route-map for redistribution or policy routing. The no form of this command removes the sequence-number specified, or if none is given, deletes the route-map. Syntax route-map route-map-name [permit | deny] [sequence-number] no route-map route-map-name [permit | deny] [sequence-number] Parameters Parameter route-map-name permit Description Name of the route map being defined. Indicates that for all routes or packets that match the match command, the following set actions apply. Indicates that for all routes or packets that match the match command, the route is either not redistributed (for redistribution route-maps) or not policy-routed (for policy routing route-maps).
deny
5-264
sequence-number
Position that this route map takes in a list of route maps of the same name.
Mode Global Configuration Guidelines Routemaps are called by policy routing (filtering) or redistribution commands.
route-table-poll
This command enables the SVP to poll the router's route table via CLI. This capability is intended to be used when peering with the router is not possible; as an example, when EIGRP is used as the IGP. If the eigrp keyword is not included in the command then all routes from the route table with known type are retrieved. If the keyword is included, only EIGRP routes are retrieved. The no form of this command removes polling of the router's route table. NOTE: this command has no affect if the cli-access host command is not enabled. Otherwise, the parameters from that configuration are used. Syntax route-table-poll [eigrp] [ bgp | bgp-multi-path ] no route-table-poll [eigrp] [ bgp | bgp-multi-path ] Parameters Parameter eigrp bgp bgp-multi-path Description Only extract EIGRP routes for inclusion into the router's DRIB. Only extract BGP routes for inclusion into the router's DRIB. Only extract BGP routes with more than one path into the router's DRIB. This will allow peering via BGP to coexist with handling multi-path entries.
routemap-exit
In a route-map, stops processing of the route-map after evaluation of the current sequencenumber in the route-map as if the route-map had no further entries. The no form of this command disables this feature, returning route-map processing to its normal behavior.
5-265
Syntax routemap-exit no routemap-exit Mode Route-Map Configuration Guidelines In combination with the continue command, this command allows the user to create something like an if-then-else in a route-map. The continue command provides a forward branch operation and routemap-exit allows the user to terminate processing at the end of an isolated segment of the route-map.
router
To configure router related commands, use the router command in topology-map configuration mode. This command puts CLI in topology-map-router mode which enables topology map router configuration commands to be entered. Syntax router <ip-address> no router <ip-address> Parameters Parameter ip-address Description IP address of the router Type/Range String Default None
router-copsrm
In a large network, multiple SVPs may be required to monitor the routers and perform session to topology tracking. COPS-RM is a COPS-based protocol extension that enables the SVPs to share router interface configuration and request session resource tracking. The SVM acts as relay agent for collecting and distributing router interface configuration as discovered by the SVPs. As sessions are captured, the routing path is inspected to determine if another SVP is monitoring a router involved in the session path. If so, the session information is passed to that SVP for tracking. This extension is not an RFC standard is only supported by the SVP OS. This command puts CLI in config-router mode which enables COPS-RM configuration commands to be entered. The current implementation of COPS-RM only supports RSVP-TE tunnel monitoring.
5-266
router-id
Sets the OSPF router-id. The no form of this command sets the router-id to the default setting, which is the highest IP address on the router, or the loopback interface with the highest IP address if a loopback has been set. Syntax router-id ip-address no router-id [ip-address] Parameters Parameter ip-address Mode Router Configuration (OSPF) Description IPv4 or IPv6 IP address of this router.
router bgp
Creates a BGP routing process and enters Router Configuration (BGP). The no form of this command deletes a BGP routing process. Syntax router bgp as-number no router bgp as-number Parameters Parameter as-number Description Autonomous system number (or symbol, if created with define as) to which this BGP router belongs.
5-267
router ospf
Creates an OSPF routing process and enters Router Configuration (OSPF). The no form of this command deletes an OSPF routing process. Syntax router ospf process-id [rfc1583] no router ospf process-id [rfc1583] Parameters Parameter process-id rfc1583 Description Unique integer representing the routing process. Enables RFC 1583 backward compatibility for the OSPF instance only; this affects the cost for aggregate summary LSAs (Type 3) and the choice of path to ASBRs.
routing critical-log
Sets the number of previous file versions to maintain and maximum file size for the routing critical log. The no form of this command sets the number of previous file versions and maximum file size to the default values. Syntax routing critical-log files files size megabytes no routing critical-log [files files size megabytes] Parameters Parameter files Description Number of previous file versions maintained, range is 0 to 100, default is 1.
5-268
megabytes
Mode Global Configuration Guidelines The routing critical log is designed to help debug difficult problems by putting a minimum set of critical routing information on disk.
rsr
Registration Success Ratio (RSR) is a percentage of registration attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the RSR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the RSR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Registration Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax rsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no rsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
5-269
rsvp-te-poll
This command enables polling of the RSVP TE MIB of routers in the monitored routing topology. This polling allows the SVP to discover RSVP TE tunnels that have been manually configured in the network. Each discovered tunnel is monitored as a new session in the network and the end-to-end network path of the session is discovered and monitored as well. The default poll interval will be the same as that specified snmp-access command. Periodic polling allows the SVP to determine when the tunnel path changes. The no form of this command disables polling regardless of the parameters specified. Syntax rsvp-te-mib [version {draft-05 | rfc3812}] [poll-multiple <poll-multiple>] no rsvp-te-mib [version {draft-05 | rfc3812}] [poll-multiple <poll-multiple>] Parameters Parameter version Description Support for Cisco routers using the draft-05 version and Juniper routers using RFC 3812 has been implemented. Number of SNMP poll intervals between qosmib polls. E.g. if snmpaccess poll interval is 90 seconds and this value is 2, the qos-mib will be polled every 180 seconds. Type/Range draft-05 rfc3812 Default draft-05
poll-multiple
1-10
run
Executes an EXEC Mode command from within a configuration mode. Syntax run
5-270
runspf (OSPF)
Enables forcing a Shortest Path First (SPF) calculation for the specified or current OSPF process. Syntax runspf [run-level] Parameters Parameter run-level Description Specifies which OSPF level to do the SPF calculation for, range is 0 to 3, default is 0. 0 runs the SPF calculation for intra-area, inter-area, and external (all levels). 1 runs the SPF calculation for inter-area only. 2 runs the SPF calculation for transit adjustment. 3 (or higher) runs the calculation for external only. Mode Router Configuration (OSPF)
security-gateway
This command configures the SVP to capture syslog messages from the SeGW. It is also necessary to configure the security-gateway-settings command to indicate the SeGW vendor. This is necessary since the format of the messages is different. The no form of this command disables capturing syslog messages for the specified interface. Syntax security-gateway [site-identifier <id>] gateway-ip-address <gw-ip-addr> syslog-ip-address <ip-addr> interface <ifname> no security-gateway [site-identifier <id>] gateway-ip-address <gw-ip-addr> syslog-ip-
5-271
address <ip-addr> interface <ifname> Parameters Parameter id Description Site ID for a security gateway. Range 1-32 alphanumeric characters 0.0.0.0 to 255.255.255.255 Default None
gw-ip-addr
Public virtual IP address for the security gateway. This is the IP address that the Mobile Stations use to set up the IPSec tunnels. IP address for the syslog server (i.e. destination IP address of syslog messages) Interface name for the interface on the SVP that is used for capturing syslog messages from the security gateway.
None
ip-addr
None
ifname
None
security-gateway-polling
This command is used to enable/disable the SVP to poll the security gateway for tunnel information. The polling mechanism is vendor specific. To poll the AudioCodes SeGW specify the SNMP information. To poll the Genband SeGW specify the CLI information and indicate whether ssh or telnet should be used. The default ports will be used unless a value is explicitly defined. A secondary set of parameters can be specified if needed for redundancy. Note: The system will only maintain one set of information. The last command entered over writes the previous command. The no form of the command disables the previous security gateway polling regardless of the cli or snmp parameters. Syntax security-gateway-polling site-identifier <site-id> snmp-address <ip-address> [udp-port <udp-port> ] version {1 | 2c} community <community-string> [snmp-address <ip-address> [udp-port <udp-port> ] version {1 |2c} community <community-string> ] interval <pollinginterval> security-gateway-polling site-identifier <site-id> cli-address <ip-address> [ port-num <port-num>] username <username> [encrypted] password <password> [access-type
5-272
{telnet | ssh}] [prompt <prompt-string> [cli-address <ip-address> [ port-num <port-num>] username <username> [encrypted] password <password> [access-type {telnet | ssh}] [prompt <prompt-string> ] interval <polling-interval> no security-gateway-polling site-identifier <site-id> [ snmp-address <ip-address> [udpport <udp-port> ] version {1 | 2c} community <community-string> [snmp-address <ipaddress> [udp-port <udp-port> ] version {1 |2c} community <community-string> ] interval <polling-interval> ] no security-gateway-polling site-identifier <site-id> [ cli-address <ip-address> [ port-num <port-num>] username <username> [encrypted] password <password> [access-type {telnet | ssh}] [prompt <prompt-string> [cli-address <ip-address> [ port-num <port-num>] username <username> [encrypted] password <password> [access-type {telnet | ssh}] [prompt <prompt-string> ] interval <polling-interval> ]
Parameters Parameter site-id ip-address udp-port version communitystring port-num Description Character string to uniquely identify a security gateway IP address of a security gateway in the dot format SNMP port number. SNMP version. SNMP community string CLI port number. Overrides the default ssh or telnet port number. Username for CLI access. Password for CLI access Indicate whether telnet or ssh access should be used. Specify the CLI command prompt to expect. Time interval to poll the security gateway 30 300 seconds telnet or ssh 1 or 2c char[32] Range char[64] N/A Default None None 161 None None 22-ssh 23-telnet None None telnet > or # 30 seconds
security-gateway-settings
5-273
This command is used to indicate the SeGW vendor. This is currently used to control the parsing for the syslog messages which is vendor specific. If the vendor is not specified correctly, tunnel events will not be recognized. The no form of the command returns the setting to the system default. security-gateway-settings vendor { audiocodes-ncite | genband-s2 } no security-gateway-settings vendor { audiocodes-ncite | genband-s2 } Parameters Parameter vendor Description Specify SeGW vendor. Type/Range audiocodes-ncite or genband-s2 Default audiocodesncite
send-alert user-email
This command adds or removes a user from the list of e-mail address alert notifications should be sent. By default the list is empty. The e-mail service must be enabled before e-mails will be sent. The no form of the command removes a single user or all users if the e-mail address is omitted. Syntax send-alert user-email <email-address> no send-alert user-email [<email-address>] Parameters Parameter email-address Description E-mail address of the user. The address is of the form username@domain.com. Note the DNS server must be enabled to resolve domain name to an IP address.
send-alert email-test
This command sends a test message to all users configured to receive alert notifications.
5-274
Mode EXEC
session-capture
The session-capture command is used to install a session capture filter on a specified SVP interface. The IP address and direction parameters are deprecated and should be omitted. The port numbers are not used unless used depending on the message-filter type. The message filter type determines the port numbers to be used for capturing signaling messages. The no form of the command removes the message filter for the specified interface. A maximum of 12 configuration commands is allowed. message-filter uma unistim h323 sip Port usage Not used, 14001 is assumed. Not used, 5000 is assumed Not used, udp port 1719 assumed and tcp ports greater than 1023 are inspected. Default 5060 assumed. The ingress-port may be used to override default. The egress-port may be used in conjunction with ingress-port to specify 2 port numbers for identifying SIP signaling messages.
Syntax session-capture interface <if-name> [cs-ip-addr <ip-address>] [direction {both | originating | terminating}] [ingress-port <port>] [egress-port <port>] [allow-ip-fragments] message-filter {uma|sip|h323|unistim [profile-name acc1]} no session-capture interface <if-name> [cs-ip-addr <ip-address>] [direction {both | originating | terminating}] [ingress-port <port>] [egress-port <port>] [allow-ip-fragments] message-filter {uma|sip|h323|unistim [profile-name acc1]} Parameters Parameter interface <if-name> Description Required parameter, the <if-name> specifies the xyxs interface for tapping on a specific SVP host. The xyxs interfaces are numbered 0 to 3 and are designed to prevent message overload on the SVP. Usage is deprecated and should be omitted.
cs-ip-addr <ip-address>
5-275
Usage is deprecated and should be omitted. Refer to port usage table above. Refer to port usage table above. By default the monitoring interface will ignore fragmented IP packets. If the allow-ip-fragments keyword is used the interface will reconstruct and process fragmented IP packets. This parameter specifies the network deployed protocol that is used to control session establishment. The profile name usage should be discussed with Netsocket support personnel to meet the deployment criterion. The default profile is selected if not entered.
message-filter profile-name
session-delay-success
The SVP analyses the signaling messages during session setup to determine if the session is established successfully. In general, for a call or video session this is done when the RTP media stream is successfully negotiated. In some cases, it may be possible that a downstream signaling event may cause a session to fail soon after it is established. In this case it may be desirable to postpone the session disposition for some number of seconds. This command is used to specify that delay value. NOTE: this is currently only implemented for SIP deployments. The no form of the command returns the delay to its default configuration. Syntax session-delay-success <delay> no session-delay-success [<delay>] Parameters Parameter delay Description Seconds to delay decision. Range 1-30 2 Default
5-276
session-from-id
The session-from-id command is used to specify the signaling message field to use for the session from Id. Currently this field is only applicable to a SIP deployment. The no form of the command returns the from Id selection to the default value. Syntax session-from-id sip {from-id | contact-id} no session-from-id sip {from-id | contact-id} Parameters Parameter sip Description Sip signaling message field to use. Type/Range from-id or contact-id Default from-id
session-ip
To allow for session KPIs to be tracked per GANC, it is necessary to configure the SVP with the destination addresses that will be captured in the packets exchanged between the HS and the GANC. If the HS sends messages with a virtual IP address that is NATd to a physical IP by a load balancer, and the SVP will receive packets with either address, it is necessary to provision both the virtual IP and the physical IPs. Sixteen addresses can be provisioned per GANC. The no form of the command will remove the IP address from the GANC list. The vip keyword should be used to identify which IP addresses are not associated with a physical address.
Syntax session-ip [vip] <ip-address> no session-ip [vip] <ip-address> Parameters Parameter ip-address Description IP address expected to be used as destination of this GANC. Type/Range IP address in dotted notation. Default None
5-277
session-loop-alert link-threshold
To configure the thresholds for session path alerts, to indicate levels of sessions that are currently encountering loops detected at a router interface, use the session-loop-alert linkthresholds command. The no form of the command disables the thresholds and hence no session-loop alerts will be sent. Syntax session-loop-alert link-thresholds {set-threshold <set-threshold> clear-threshold <clearthreshold>} no session-loop-alert link-thresholds [set-threshold <set-threshold> clear-threshold <clear-threshold>] Parameters Parameter set-threshold Description If the number of sessions currently encountering a loop is greater than this value, an alert will be set. If the number of sessions currently encountering a loop is less than or equal to this value the alert will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
session-loop-alert threshold
To configure the thresholds for session path alerts, to indicate levels of sessions that are currently encountering loops use the session-loop-alert thresholds command. The no form of the command disables the thresholds and hence no session-loop alerts will be sent. Syntax session-loop-alert thresholds {set-threshold < 32-bit-integer> clear-threshold < 32-bitinteger>} no session-loop-alert thresholds [set-threshold < 32-bit-integer> clear-threshold < 32-bitinteger>]
5-278
Parameters Parameter set-threshold Description If the number of sessions currently encountering a loop is greater than this value an alarm will be sent. If the number of sessions currently encountering a loop is less than or equal to this value the alarm will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
session-noroute-alert link-thresholds
To configure the thresholds for session path alerts, to indicate levels of sessions that are currently finding no route as detected at a specific link, the session-noroute-alert thresholds command. The no form of the command disables the thresholds and hence no session-loop alerts will be sent. Syntax session-noroute-alert link-thresholds {set-threshold <set-threshold> clear-threshold <clear-treshold> } no session-noroute-alert link-thresholds [set-threshold <set-theshold> clear-threshold <clear-threshold>] Parameters Parameter set-threshold Description If the number of sessions currently finding no route is greater than this value an alarm will be sent. If the number of sessions currently finding no route is less than or equal to this value the alarm will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
session-noroute-alert threshold
To configure the thresholds for session path alerts, to indicate levels of sessions that are
5-279
currently finding no route among the managed routers use the session-noroute-alert thresholds command. The no form of the command disables the thresholds and hence no session-loop alerts will be sent. Syntax session-noroute-alert thresholds {set-threshold <32-bit-integetr> clear-threshold <32-bitintegetr> } no session-noroute-alert thresholds [set-threshold <32-bit-integetr> clear-threshold <32bit-integetr>] Parameters Parameter set-threshold Description If the number of sessions currently finding no route is greater than this value an alarm will be sent. If the number of sessions currently finding no route is less than or equal to this value the alarm will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
session-pcap-ratio
The SVP saves pcap messages associated with a session in memory while the session is active. If the pcap messages are to be saved, they are written to disk. The system places a memory limit and disk usage limit so that saving the pcap information does not degrade overall system performance. If the pcap ratio is set too high for a system that has a high call rate, the system may drop messages and/or omit saving the information. Likewise, the disk space limit may be reached and older sessions may be deleted. Thus reduced the number of days this information would normally be saved. The no form of the command returns the ratio to its default configuration. Syntax session-pcap-ratio <ratio> no session-pcap-ratio [<ratio>] Parameters Parameter ratio Description Percentage of successful sessions to save pcap information for. Range 1-100 1 Default
5-280
session-timeout
The SVP is not part of the control signaling for call establishment. Therefore, it is not guaranteed that the SVP will receive all of the signaling in all cases. As a defensive mechanism, the SVP maintains timers during call setup and call establishment. If the timer expires, the SVP will close the session monitoring state. This command is used to set the value of these timers. The timer value should be conservative. If sessions are being timed out, it may be necessary to reevaluate how the SVP is receiving the control signaling. The no form of the command returns the timeouts to their default value regardless of the parameter values. Syntax session-timeout {setup <setup> established <established>} no session-timeout [setup <setup> established <established>] Parameters Parameter setup established Description Time in seconds to wait before considering the setup to have failed. Time in seconds to wait before considering an established call to have ended. Range 10-360 300-14400 30 3600 Default
session-thresholds
To configure SVP session and tunnel thresholds, use the session-thresholds command in global configuration mode. This command puts CLI in session-thresholds mode which enables session threshold configuration commands to be entered. Syntax
5-281
session-unstable-alert link-thresholds
To configure the thresholds for session path alerts, to indicate levels of sessions whose routes are currently converging as detected at a specific router interface use the session-unstablealert thresholds command. The no form of the command disables the thresholds and hence no session-unstable alerts will be sent. Syntax session-unstable-alert link-thresholds {set-threshold <set-threshold> clear-threshold <clear-threshold> } no session-unstable-alert link-thresholds [set-threshold <set-threshold> clear-threshold <clear-threshold>] Parameters Parameter set-threshold Description If the number of sessions currently undergoing routing convergence is greater than this value an alarm will be sent. If the number of sessions currently undergoing routing convergence is less than or equal to this value the alarm will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
session-unstable-alert threshold
To configure the thresholds for session path alerts, to indicate levels of sessions whose routes are currently converging use the session-unstable-alert thresholds command. The no form of the command disables the thresholds and hence no session-unstable alerts will be sent. Syntax session-unstable-alert thresholds {set-threshold <32-bit-integetr> clear-threshold <32-bit-
5-282
integetr> } no session-unstable-alert thresholds [set-threshold <32-bit-integetr> clear-threshold <32bit-integetr>] Parameters Parameter set-threshold Description If the number of sessions currently undergoing routing convergence is greater than this value an alarm will be sent. If the number of sessions currently undergoing routing convergence is less than or equal to this value the alarm will be cleared. Range 1-maximum number of sessions 1- value of setthreshold Default none
clear-threshold
none
set
Specifies a global environment variable and its value. Syntax set variable-name {number | name | string | $name} Parameters Parameter variable-name number name string Description Environment variable to set. Numeric value, maximum value is 4294967295. One-word string of alphabetic characters, maximum number of characters is 1024. Multiple word string of alphabetic characters, maximum number of characters is 1024, the string must begin and end with a quotation-mark character (). Value of a previously set environment variable.
name
5-283
set as-path
In a route-map, prepends the specified autonomous system number(s) to the as-path of the matched route. The no form of this command leaves the as-path intact (no modification is made). Syntax set as-path {prepend {as-number}... | tag} no set as-path {prepend [as-number]... | tag} Parameters Parameter prepend as-number Description Autonomous system number(s) to be prepended to the as-path, a maximum of 10 may be prepended. Converts the tag of a matched route into an autonomous system path; applies when redistributing routes into BGP.
tag
set automatic-tag
Enables the tag value to be automatically computed for the matched route in a route-map. The no form of this command disables this function. Syntax set automatic-tag no set automatic-tag Mode Route-Map Configuration
set comm-list
Enables communities to be added to the COMMUNITY attribute of matched inbound or outbound routes in a route-map. The no form of this command disables this command.
5-284
Syntax set comm-list community-list-id [additive] no set comm-list [community-list-id [additive]] Parameters Parameter community-list-id Description Community list that determines which COMMUNITY values should be added to the COMMUNITY attribute of matched routes. Adds the COMMUNITY values resulting from the community-list to the already existing COMMUNITY attribute of matched routes.
additive
set community
5-285
Sets the COMMUNITY attribute of matched prefixes to the specified community in a route-map. The no form of this command deletes the COMMUNITY attribute of matched routes. Syntax set community {{no-export | local-as | no-advertise} | {community-number}...} [additive] no set community {{no-export | local-as | no-advertise} | {community-number}...} [additive] Parameters Parameter no-export Description Send this route only to other subautonomous systems within a confederation, and not to an EBGP peer (systems outside the confederation, or if there is no confederation, any EBGP peer). Send this route to peers in other subautonomous systems within the local confederation; do not advertise this route to an external system. Do not advertise this route to any peer (internal or external). Community number; this can be any of the following: a number from 1 to 4294967295; specify a single number or multiple numbers separated by a space. a number in the format n:m, where n and m are integers in the range 0-65535. a community symbol as defined with the define community command; specify a single symbol or multiple symbols separated by a space. additive Adds this community to the already-existing COMMUNITY attribute.
local-as
no-advertise community-number
5-286
Syntax set community none no set community none Mode Route-Map Configuration
set extcomm-list
Enables extended communities to be added to the EXTENDED-COMMUNITY attribute of matched inbound or outbound routes in a route-map. The no form of this command disables this command. Syntax set extcomm-list ext-community-list-id [additive] no set extcomm-list [ext-community-list-id [additive]] Parameters Parameter ext-community-list-id Description Extended community list that determines which EXTENDEDCOMMUNITY values should be added to the EXTENDEDCOMMUNITY attribute of matched routes. Adds the EXTENDED-COMMUNITY values resulting from the extended communitylist to the already-existing EXTENDEDCOMMUNITY attribute of matched routes.
additive
5-287
no set extcomm-list ext-community-list-id delete Parameters Parameter ext-community-list-id Description Extended community list that determines which extended communities are to be deleted from the EXTENDED-COMMUNITY attribute of matched routes.
set extcommunity
Sets the EXTENDED-COMMUNITY attribute of matched prefixes to the specified extended community in a route-map. The no form of this command deletes the EXTENDEDCOMMUNITY attribute of matched routes. Syntax set extcommunity {lbw {as-number:32-bit-value | ip-address:16-bit-value} | opaque 32bitinteger: 32-bit-integer} rt {as-number:32-bit-value | ip-address:16-bit-value} | soo {asnumber:32- bit-value | ip-address:16-bit-value} | [additive] no set extcommunity {lbw {as-number:32-bit-value | ip-address:16-bit-value} | opaque 32bitinteger: 32-bit-integer | rt {as-number:32-bit-value | ip-address:16-bit-value} | soo {asnumber:32- bit-value | ip-address:16-bit-value} [additive] Parameters Parameter lbw as-number:32-bit-value lbw ip-address:16-bit-value opaque 32-bit-integer:32-bit-integer Description Sets the routes extended community attribute to this Link Bandwidth (lbw) value. Sets the routes extended community attribute to this Link Bandwidth (lbw) value. Sets the routes extended community attribute to the extended community type and value specified by the two 32-bit integers (a raw 64-bit extended community value is passed into BGP). Sets the routes extended community attribute to this Route Target (rt) value. Sets the routes extended community attribute to this Route Target (rt) value.
rt as-number:32-bit-value rt ip-address:16-bit-value
5-288
Sets the routes extended community attribute to this soo value. Sets the routes extended community attribute to this soo value. Adds this community to the already-existing extended community attribute.
set ip address
Sets the route(s) to be originated (injected) in a route-map. The no form of this command clears the route(s) to be injected. Syntax set ip address {access-list-id}... no set ip address [prefix-list-id]... Parameter access-list-id Mode Route-Map Configuration Description Name of access-list to be injected.
5-289
Sets the route prefix to be originated (injected) in a route-map. The no form of this command clears the prefix to be injected. Syntax set ip address prefix-list {prefix-list-id}... no set ip address prefix-list [prefix-list-id]... Parameters Parameter prefix-list-id Mode Route-Map Configuration Description Name of prefix-list to be injected.
set ip next-hop
Sets the next-hop for matching packets in a route-map. The no form of this command removes this set entry from the route-map. Syntax set ip next-hop {{ip-address}... | peer-address} no set ip next-hop {{ip-address}... | peer-address} Parameters Parameter ip-address Description IP address of the next-hop for this packet. If the first IP address is down, the following address(es) in the list are tried in the order in which they are listed. For inbound route maps, sets the next hop of matching routes to the neighbors address from which the route was received. For outbound route maps, sets the next hop of advertised matching routes to this router.
peer-address
set local-preference
NetSocket, Inc. - Proprietary and Confidential 5-290
Sets a locally significant preference value for matching autonomous system paths, in a routemap. The no form of this command removes this set entry from the route-map. Syntax set local-preference local-preference no set local-preference [local-preference] Parameters Parameter local-preference Description Local preference value, range is 0 to 4294967295, default is 100.
set metric
Sets a metric value for a protocol in a route-map used for redistribution. The no form of this command returns the metric value to its default. Syntax set metric [+ | -] metric-value no set metric [+ | -] [metric-value] Parameters Parameter + metric-value Description Adds the specified metric to the existing metric. Subtracts the specified metric from the existing metric. The metric value to be used for this protocol, range is 0 to 4294967295, default is the dynamically-learned metric value.
Mode Route-Map Configuration Guidelines Regardless of the value added or subtracted by using the + or Operators, the metric-value
5-291
will not be set to a value outside of the range of 0 to 4294967295. If neither the + nor Is used, the existing metric-value is simply overwritten by the specified metric-value.
set origin
Sets the BGP origin code for route matches in a route map. The no form of this command removes this set entry from the route-map. Syntax set origin {egp as-number | igp | incomplete} no set origin [egp as-number | igp | incomplete] Parameters Parameter egp as-number igp incomplete Mode Route-Map Configuration Description Sets the BGP origin attribute to local Exterior Gateway Protocol. Autonomous system number of the remote EGP. Sets the BGP origin attribute to Interior Gateway Protocol. Sets the BGP origin attribute to Incomplete.
set tag
Sets a tag value for matching routes in route-map. The no form of this command removes this set entry from the route-map. Syntax set tag tag-value no set tag [tag-value] Parameters Parameter tag-value Description Route tag to be set, range is 0 to 4294967295.
5-292
set weight
Sets a network weight for matching routes in a route-map. The no form of this command removes this set entry from the route-map. Syntax set weight network-weight no set weight [network-weight] Parameters Parameter network-weight Description Network weight to be assigned to redistributed routes, range is 0 to 65535.
show
Since there are several commands in the session thresholds configuration mode, a show command will also be added to display the current running configuration for the commands entered in this mode. This command is intended to be used for validating changes to the session thresholds configuration. The user should verify that the required time intervals are provisioned and that the thresholds related to those time intervals are provisioned per thresholds type. If a time interval is not defined, the no alert during that time interval will be generated. Likewise, if a time interval is provisioned, but a specific alert does not have the set/clear thresholds provisioned, that alert will not be generated. Syntax show Mode Session thresholds configuration
5-293
Syntax show Mode Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
show (BGP)
Displays information about the current BGP routing instance. Syntax show Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
5-294
show (global)
Displays the entire running-config. Syntax show Mode Global Configuration
show (interface)
Displays the interface configuration portion of the running-config. Syntax show Mode Interface Configuration (Admin, Loopback, NNET, Null, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan)
5-295
show (OSPF)
Displays information about the current OSPF routing instance. Syntax show Mode Router Configuration (OSPF)
5-296
show (system)
Displays the controller (system) configuration portion of the running-config. Syntax show Mode Controller Configuration (System)
show (traceoptions)
Displays the traceoptions configuration portion of the running-config for the currently specified trace file. Syntax show Mode Traceoptions Configuration
show access-lists
Displays the contents of access-lists used on the RCP.
5-297
Syntax show access-lists [access-list-id] Parameters Parameter access-list-id Description Name of the access-list to be displayed; if none is entered, the contents of all accesslists are shown.
Mode User EXEC Output {Standard | Extended} IP access list access-list-id Alphanumeric name string of a standard OR extended access-list. sequence-number Unique sequence number of the deny, permit, or remark clause. {deny | permit | remark string} access is denied for the source and destination addresses specified OR access is permitted for the source and destination addresses specified OR the string that follows the remark keyword is a special remark. rcp Optional indicator which specifies that this clause should allow an extended set of options only available on the RCP; therefore, this clause will not be applied on the line card. {protocol | ip} Optional name or number of an internet protocol (RCP option only) OR any IP protocol. {source-ip-address, wildcard bits source-wildmask | any | host source-ip-address} Access is denied or permitted for packets originating from this source IP address and wildcard mask combination OR access is denied or permitted for packets originating from any source IP address OR access is denied or permitted for packets originating from this source IP address host. {eq | gt | lt | neq | range} Optional indicator which specifies that port must be equal to a value OR specifies that port must be greater than a value OR specifies that port must be less than a value OR specifies that port must be not equal to a value OR specifies that port must be within a range of values. {source-tcp-port | source-udp-port} Optional decimal number or well-known name of the source TCP or UDP port. {dest-ip-address, wildcard bits dest-wildmask | any | host dest-ip-address} Access is denied or permitted for packets sent to this destination IP address and wildcard mask combination OR access is denied or permitted for packets sent to any destination IP address OR access is denied or permitted for packets sent to this destination IP address host. {eq | gt | lt | neq | range} Optional indicator which specifies that port must be equal to a value OR specifies that port must be greater than a value OR specifies that port must be less than a value OR specifies that port must be not equal to a value OR specifies that port must be within a range of values. {dest-tcp-port | dest-udp-port} Optional decimal number or well-known name of the destination TCP or UDP port. ack Optional TCP flag to be matched (RCP option only) dscp-value Optional DSCP value to be matched or a well-known DSCP name. established Optional TCP flag to be matched (RCP option only)
5-298
fin Optional TCP flag to be matched (RCP option only) fragments Optional indicator which specifies that packets in IP datagram fragments are to be matched (RCP option only) icmp-type Optional ICMP name or code to be matched. icmp-subcode Optional ICMP subcode to be matched. igmp-type Optional IGMP protocol name or code to be matched. {log | log-input} Optional indicator which specifies that information about matching packets will be sent to the console OR specifies that the input interface is to be included in the log. precedence-value Optional precedence level to be matched or a well-known precedence name. psh Optional TCP flag to be matched (RCP option only) rst Optional TCP flag to be matched (RCP option only) syn Optional TCP flag to be matched (RCP option only) tos-value Optional service level to be matched or a well-known ToS name (RCP option only) urg Optional TCP flag to be matched (RCP option only) class-map-name Optional name of an existing class-map to which the access-list is being applied.
show alarms
Displays a list of currently existing alarms. If no entity is specified on input, then alarms for all entities are displayed. Syntax show alarms [channel-type | interface-type [...subinterface] | port-type | rx [signal] | subsystemtype [instance] | system]... Parameters Parameter access-list-id interface-type rx [signal] subsystem-type Mode User EXEC Guidelines The output of a show alarms command is sorted by Severity Level (level 0 first through level 7 last) and then by Date&Time (oldest through newest). The Alarm-Description field in the output of the show alarms command does not display any alarm defect qualifier text that may exist for an alarm. This information, contained within Description {sts12c | sts192c | sts3c | sts48c}. {port-chan | pos-chan}. Display signal group alarms for the specified slot. {ap | cnet | op | osp | rnet}.
5-299
parenthesis, can be displayed using the associated show controllers command. Output Date Datestamp (mmdd) of when the alarm occurred. Time Timestamp (in hh:mm:ss) of when the alarm occurred. P Partition (A for Admin partition, an integer 0 to 5 for a router partition) Entity-Name Name of the entity to which the alarm is associated. SL Severity level of the alarm (level 0 through level 7) Eff Effect of the alarm (either SA for service affecting or NSA for non-service affecting) OA Office Alarm currently mapped to by the severity level of the alarm (CR, MJ, MN, or NA) Alarm-Type Acronym for type of alarm and definition of what acronym means.
show aliases
Displays the current command aliases for a specific mode or all modes. Syntax show aliases [mode] Parameters Parameter mode Description {address-family | configure | controller | cos-queue-group-in | cos-queuegroupout | exec | flow-cache | interface | ipexplicit-path | ipenacl | ipsnacl | line | path-attr | policy-list | protmon | QoSclassmap | QoSpolicymap-in | QoSpolicymap-out | QoSpolicymapclassin | QoSpolicymapclass-out | route-map | router | subinterface | traceoptions}. Address Family Configuration Mode. Global Configuration Mode. Controller Configuration Mode. CoS Queue Group Input Configuration Mode. CoS Queue Group Output Configuration Mode. EXEC mode. Flow Aggregation Cache Configuration Mode. Interface Configuration Mode. IP Explicit Path Configuration Mode.
5-300
ipenacl ipsnacl line path-attr policy-list protmon QoSclassmap QoSpolicymap-in QoSpolicymap-out QoSpolicymapclass-in QoSpolicymapclass-out route-map router` subinterface traceoptions Mode User EXEC
IP Extended Access-List Configuration Mode. IP Standard Access-List Configuration Mode. Line Configuration Mode. Path Attribute Configuration Mode. IP Policy-List Configuration Mode. Protection Monitor Configuration Mode. QoS Class-Map Configuration Mode QoS Policy-Map Input Configuration Mode. QoS Policy-Map Output Configuration Mode. QoS Policy-Map Class Input Configuration Mode. QoS Policy-Map Class Output Configuration Mode. Route-Map Configuration Mode. Router Configuration Mode. Subinterface Configuration Mode. Traceoptions Configuration Mode.
show arp
Displays the entries within the Address Resolution Protocol (ARP) table. Syntax show arp Mode User EXEC Output Protocol Type of protocol. Address IP address. Age (min) Time remaining (in minutes) before entry is removed from ARP table. Hardware Addr MAC address (incomplete indicates that the MAC address could not be
5-301
resolved) Type Encapsulation type. Interface Interface on which the ARP was received.
show arp-clone
Displays the arp clone routes for ethernet interfaces. Syntax show arp-clone Mode User EXEC Output ARP daemon connected Duration of time in hours, minutes, and seconds as 00:00:00 that the ARP daemon has been connected. ARP clone requests Number of ARP clone requests. IP Destination IP destination address. Egress Port Id Proprietary PFM and port identifier numbers, for NetSocket use only.
show as-table
Displays all AS numbers (or specified numbers) and corresponding symbols (created with the define as command). Syntax show as-table [as-number | symbol-name] Parameters Parameter as-number Description Number of the autonomous system for which the corresponding defined symbol is to be displayed. Existing as-symbol (created with the define as command) for which the corresponding as-number is to be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character and containing up to 20 characters.
symbol-name
5-302
show begin
Displays show command output beginning with the line matched by the regular-expression. Syntax show show-object | begin regular-expression Parameters Parameter show-object regular-expression Description Any object of a show command. Regular-expression to be matched to control the result of the search.
Mode User EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
show bgp-global-config
Displays the portion of the running configuration that controls all of BGP (the BGP global configuration commands). Syntax show bgp-global-config Mode User EXEC
show bgp-neighbor-config
Displays the running configuration of the specified peer-group or BGP neighbor. If a peer-group or IP-address is not specified, this command displays all configuration information for BGP peergroups and neighbors.
5-303
Syntax show bgp-neighbor-config [peer-group | ip-address] Parameters Parameter peer-group ip-address Description BGP peer-group whose running configuration is to be displayed. Address of the BGP peer whose running configuration is to be displayed.
show bgp-network-config
Displays the BGP network commands subset of the running configuration. Syntax show bgp-network-config Mode User EXEC
show bgp-redistribution-config
Displays the portion of the running configuration that controls redistribution in BGP. Syntax show bgp-redistribution-config Mode User EXEC
show clock
Displays the system clock value. Syntax
5-304
show clock [detail] Mode User EXEC Guidelines The time value within the output will be prefixed with an asterisk * if it is not considered authoritative (that is, thought to be accurate). If the time value is not authoritative, the system will not allow peers to synch up to the system clock. The time value within the output will be prefixed with a . if it is considered authoritative, but NTP has not finished synchronizing. Output Time source is {NTP | hardware clock} Time source currently being used. Summer-time {is not set | starts | ends} Daylight savings time settings.
show community-table
Displays BGP community numbers and the corresponding symbols (created with the define community command). Syntax show community-table [community-number | symbol-name] Parameters Parameter community-number Description Number of the BGP community for which the corresponding defined symbol is to be displayed, may be entered as a 32-bit integer, or two 16-bit integers separated by a colon (AA:NN or NN:AA, where AA is the AS-number and NN is the community number). Existing community-symbol (created with the define community command) for which the corresponding community-number is to be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character and containing up to 20 characters.
symbol-name
Mode
5-305
User EXEC
show debugging
Displays all of the settings used for debugging. Syntax show debugging Mode User EXEC
show dscp-table
Displays IP Diffserv Code Point (DSCP) numbers and the corresponding symbols (created with the define dscp command). Syntax show dscp-table [ip-dscp-number | dscp-symbol] Parameters Parameter Description
5-306
ip-dscp-number dscp-symbol
number for which the corresponding defined symbol will be displayed, range is 0 to 63. Existing dscp-symbol (created with the define dscp command) for which the corresponding DSCP number will be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character, range is 1 to 20 characters.
show exclude
Displays show command output excluding the lines matched by the regular-expression. Syntax show show-object | exclude regular-expression Parameters Parameter show-object regular-expression Description Any object of a show command. Regular-expression to match text that is to be excluded in the search.
Mode User EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
show exit-point-map
Displays the current exit point map of a RCP-monitored domain. If a host IP address is provided, the output displays all the exit points of the given router. Syntax show exit-point-map [host-address ip-address] Parameters
5-307
Parameter ip-address
Description IP address, in the format of a.b.c.d, that represents the node-id of a node in the network.
Mode EXEC
show history
Displays the contents of the history buffer. Syntax show history Mode User EXEC Guidelines The most recent commands are shown at the bottom of the show history list.
5-308
show host-login-lockout
Show all hosts that have been locked out or which have a non-zero consecutive login attempt failure. Syntax show host-login-lockout Mode User EXEC
show hosts
Displays IP default domain name(s), lookup style, nameservers, and host table information. Syntax show hosts [host] Parameters Parameter host Mode User EXEC Output Default domain is {not set | domain-name} There is no default domain set OR there is a default domain set. Domain list: domain-name(s) One or more default domain names contained within the domain search list (multiple domain names are concatenated by spaces). This line is only present if name/address lookup currently uses a domain service. Name/address lookup uses {domain service | static mappings} Host name to address resolution uses a domain service OR static mappings. Name servers are ip-address(es) One or more IP addresses of DNS servers (multiple IP addresses are concatenated by spaces) Flags {temp | perm | OK | UN} Entry entered by a name server that is removed after TTL has expired OR entry entered by a configuration command that is not removed OR entry is valid OR entry is unknown. Age Number of hours since the permanent entry was made. TTL Hours, minutes, and seconds until the temporary entry is removed. Type Type of address (always IP) Address(es) Address(es) of the host device. Description Name of a specific host device.
5-309
show icmp-table
Displays ICMP codes and corresponding symbols (created with the define icmp-code command). Syntax show icmp-table [icmp-code-number | symbol-name] Parameters Parameter icmp-code-number Description ICMP code for which the corresponding defined symbol is to be displayed, range is 0 to 255. Existing icmp-symbol (created with the define icmp-code command) for which the corresponding ICMP number is to be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character and containing up to 20 characters.
symbol-name
show include
5-310
Displays show command output including only the lines matched by the regular-expression. Syntax show show-object | include regular-expression Parameters Parameter show-object regular-expression Description Any object of a show command. Regular-expression to match text that is to be included in the search.
Mode User EXEC Guidelines The pipe symbol (|) is part of the command syntax and must be included.
show installs
Displays RCP software package installation history. Syntax show installs {active | peer | self | standby} Parameters Parameter active peer self standby Description Display installed software history on active RCP. Display installed software history on peer RCP. Display installed software history on this RCP. Display installed software history on standby RCP.
5-311
show interfaces
Displays interface configuration and status information for all interfaces. Syntax show interfaces [brief] Parameters Parameter brief Description Specifies a brief output format is to be used (one line per interface).
Mode User EXEC Guidelines The generic form of the show interfaces command (with no options) provides the same output as the specific forms of the command, but includes all interfaces. For examples and outputs descriptions of the generic form, refer to the individual specific forms of the command.
5-312
Mode User EXEC Output entity is {administratively down | down | up} Interface or subinterface is in the administratively down state OR interface or subinterface physical connection is operationally failed OR interface or subinterface physical connection is operationally good. line protocol is {down | up} Interface or subinterface software handling the line protocol has determined the line to be unusable OR interface or subinterface software handling the line protocol has determined the line to be good. Hardware is Loopback This is a loopback interface. Description: string Descriptive text for this interface (only present if string is not null) Internet address is ip-address IP address assigned to this interface. SNMP ifIndex SNMPv2 interface index. Internal Proprietary index number used by the routing protocols to identify a port, for NetSocket use only. MTU n bytes Maximum transmission unit of the interface. BW kilobits Kbit Bandwidth of the interface. DLY microseconds usec The delay value for an interface or network segment. Speed megabits Mbs mode-duplex - Displays current negotiated state, if interface is up/up. RRX rely/255 Reliability of the interface; given as a percentage where 255/255 equals 100 percent. LRX rxload/255 Receive load of the interface; given as a percentage where 255/255 equals 100 percent (the load calculation uses the value set by the bandwidth interface configuration command) LTX txload/255 Transmit load of the interface; given as a percentage where 255/255 equals 100 percent (the load calculation uses the value set by the bandwidth interface configuration command) Encapsulation {LOOPBACK} The encapsulation type is LOOPBACK loopback not set (Not Applicable) Last input {time | never} Duration of time in hours, minutes, and seconds as 00:00:00 since the last packet was received on this interface (if the hours field exceeds 23, then the output format changes to include only days and hours as #d#h; if the days field exceeds 6, then the output format changes to include only weeks and days as #w#d; asterisks are displayed upon
5-313
field overflow) OR a packet has not been received on this interface. output {time | never} Duration of time in hours, minutes, and seconds as 00:00:00 since the last packet was transmitted on this interface (if the hours field exceeds 23, then the output format changes to include only days and hours as #d#h; if the days field exceeds 6, then the output format changes to include only weeks and days as #w#d; asterisks are displayed upon field overflow) OR a packet has not been transmitted on this interface. output hang {time | never} Duration of time in hours, minutes, and seconds as 00:00:00 since the interface was reset due to a transmission taking too long (if the hours field exceeds 23, then the output format changes to include only days and hours as #d#h; if the days field exceeds 6, then the output format changes to include only weeks and days as #w#d; asterisks are displayed upon field overflow) OR the interface has never been reset due to a transmission taking too long. Last clearing of show interface counters {time | never} Duration of time in hours, minutes, and seconds as 00:00:00 since the interface counters were reset to zero (if the hours field exceeds 23, then the output format changes to include only days and hours as #d#h; if the days field exceeds 6, then the output format changes to include only weeks and days as #w#d; asterisks are displayed upon field overflow) OR the interface counters have never been reset to zero. 5 minute input rate n bits/sec, packets/sec Average bits-per-second and packets-per-second received over the last 5 minutes (if the interface counters have recently been reset to zero or the system has just been brought up, a < character will be prepended until 5 minutes of data can be averaged) 5 minute output rate n bits/sec, packets/sec Average bits-per-second and packets-persecond sent over the last 5 minutes (if the interface counters have recently been reset to zero or the system has just been brought up, a < character will be prepended until 5 minutes of data can be averaged) packets input Total count of packets received without error. bytes (input) Total count of bytes received without error. no buffer Count of packets dropped due to lack of buffer space in the main system. broadcasts Count of broadcast or multicast packets received. runts Count of packets dropped because they do not meet the minimum packet size. giants Count of packets dropped because they exceed the maximum packet size. throttles Count of instances where the interface has been disabled, possibly because of overload conditions. input errors Total count of input errors. CRC Count of cyclic redundancy checksum errors. frame Count of packets received having a CRC error and an invalid number of octets. overrun Count of instances where hardware was not capable of handing received data to a hardware buffer because the input rate exceeded the hardwares handling capability. ignored Count of packets received and ignored because the interface hardware ran low on internal buffers. abort Count of packets containing an illegal sequence of one bits on the interface. packets output Total count of packets transmitted without error. bytes (output) Total count of bytes transmitted without error. underruns Count of instances where the far-end transmitter has run faster than the local system receiver can handle. output errors Total count of output errors. collisions (Not Applicable) interface resets Count of instances where the system automatically caused an interface to be completely reset in an attempt to bring the line protocol back up. output buffer failures Count of packets dropped from the output buffer. output buffers swapped out Count of instances where the output buffer was swapped out.
5-314
5-315
Interface flap statistics are recorded even if flap dampening is disabled. When this command is issued with flap dampening disabled, an h (history) is displayed before the interface type. When flap dampening is enabled, a d (damped) is displayed before the interface type.
5-316
5-317
show ip-protocol-table
Displays the contents of IP access-lists used on the RCP. Syntax show ip access-lists [access-list-id] Parameters Parameter access-list-id Description Name of the IP access-list to be displayed; if none is entered, the contents of all access-lists are shown.
Mode User EXEC Output {Standard | Extended} IP access list access-list-id Alphanumeric name string of a standard OR extended IP access-list. sequence-number Unique sequence number of the deny, permit, or remark clause. {deny | permit | remark string}- access is denied for the source and destination addresses specified OR access is permitted for the source and destination addresses specified OR the string that follows the remark keyword is a special remark. rcp Optional indicator which specifies that this clause should allow an extended set of options only available on the RCP; therefore, this clause will not be applied on the line card. {protocol | ip} Optional name or number of an internet protocol (RCP option only) OR any IP protocol. {source-ip-address, wildcard bits source-wildmask | any | host source-ip-address} Access is denied or permitted for packets originating from this source IP address and wildcard mask combination OR access is denied or permitted for packets originating from any source IP address OR access is denied or permitted for packets originating from this source IP address host. {eq | gt | lt | neq | range} Optional indicator which specifies that port must be equal to a value OR specifies that port must be greater than a value OR specifies that port must be less than a value OR specifies that port must be not equal to a value OR specifies that port must be within a range of values. {source-tcp-port | source-udp-port} Optional decimal number or well-known name of the source TCP or UDP port. {dest-ip-address, wildcard bits dest-wildmask | any | host dest-ip-address} Access is denied or permitted for packets sent to this destination IP address and wildcard mask combination OR access is denied or permitted for packets sent to any destination IP address OR access is
5-318
denied or permitted for packets sent to this destination IP address host. {eq | gt | lt | neq | range} Optional indicator which specifies that port must be equal to a value OR specifies that port must be greater than a value OR specifies that port must be less than a value OR specifies that port must be not equal to a value OR specifies that port must be within a range of values. {dest-tcp-port | dest-udp-port} Optional decimal number or well-known name of the destination TCP or UDP port. ack Optional TCP flag to be matched (RCP option only). dscp-value Optional DSCP value to be matched or a well-known DSCP name. established Optional TCP flag to be matched (RCP option only). fin Optional TCP flag to be matched (RCP option only). fragments Optional indicator which specifies that packets in IP datagram fragments are to be matched (RCP option only). icmp-type Optional ICMP name or code to be matched. icmp-subcode Optional ICMP subcode to be matched. igmp-type Optional IGMP protocol name or code to be matched. {log | log-input} Optional indicator which specifies that information about matching packets will be sent to the console OR specifies that the input interface is to be included in the log. precedence-value Optional precedence level to be matched or a well-known precedence name. psh Optional TCP flag to be matched (RCP option only). rst Optional TCP flag to be matched (RCP option only). syn Optional TCP flag to be matched (RCP option only). tos-value Optional service level to be matched or a well-known ToS name (RCP option only). urg Optional TCP flag to be matched (RCP option only). class-map-name Optional name of an existing class-map to which the access-list is being applied.
show ip arp
Displays specified entries within the Address Resolution Protocol (ARP) table. Syntax show ip arp [hostname | mac-address | ip-address | interface-type | summary] Parameters Parameter hostname Description Network unique name to be assigned to the router, range is 1 to 63 alphanumeric or hyphen characters (the first or last character cannot be a hyphen) 48-bit IEEE MAC address using three 4-digit hex numbers separated by periods (xxxx.xxxx.xxxx). IPv4 or IPv6 IP address. {port-chan}
mac-address
ip-address interface-type
5-319
show ip as-path-access-list
Displays contents of the specified as-path access-list, or if none is specified, displays the contents of all as-path access-lists. Syntax show ip as-path-access-list [as-path-access-list-id] Parameters Parameter as-path-access-list-id Description Alphanumeric string identifying the as-path access list being displayed.
5-320
Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
Mode User EXEC Guidelines This command displays all BGP attributes for routes in a format that is friendly for test scripts.
5-321
Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-322
shorter-prefixes mask-length
Displays routes matching ip-address, with a shorter mask than the ip-address/masklength specified, but a longer mask than mask-length.
sorted
5-323
5-324
Parameter ipv4 ipv6 unicast multicast vpnv4 vpnv6 * all rd 16-bit-integer ip-address vrf-name
Description Specifies the IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Community to be shown expressed as an integer (1 to 4294967295). Community to be shown in the format AA:NN (AS-community number/2-byte number). Displays the community represented by this symbol, which must be already defined with the define community command. Displays entries with the COMMUNITY attribute of local-as. Displays entries with the COMMUNITY attribute of no-advertise. Displays entries with the COMMUNITY attribute of no-export. Displays routes that have exactly the community or communities specified (no more and no less).
community-symbol-number
5-325
5-326
sorted exact-match
5-327
sorted
5-328
lbw as-number:32-bit-value
Displays routes with the extended community attribute set to this Link Bandwidth (lbw) value. Displays routes with the extended community attribute set to this Link Bandwidth (lbw) value. Displays routes with the extended community attribute set to the extended community type and value specified by the two 32-bit integers (a raw 64-bit extended community value). Displays routes with the extended community attribute set to this Route Target (rt) value. Displays routes with the extended community attribute set to this Route Target (rt) value. Displays routes with the extended community attribute set to this soo value. Displays routes with the extended community attribute set to this soo value. Displays routes that have exactly the extended community or communities specified (no more and no less).
lbw ip-address:16-bit-value
opaque 32-bit-integer:32-bit-integer
rt as-number:32-bit-value
rt ip-address:16-bit-value
5-329
Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. String identifying the community-list. Displays routes that have exactly the community or communities specified (no more and no less) in the community-list.
5-330
Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. AS-path access list to be applied to determine filtered routes.
sorted as-path-access-list-id
5-331
Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Displays flap-statistics for this address. Subnet mask of the address for which flapstatistics are being shown. Displays flap-statistics for the route with this the ipaddress and mask-length Displays flap-statistics for routes more specific than the route entered in the ipaddress [netmask] or ip-address/masklength fields. Displays flap-statistics for routes with a longer mask than mask-length, but shorter than the ip-address/mask-length specified.
shorter-prefixes mask-length
5-332
Syntax show ip bgp [[ipv4 | ipv6] [unicast | multicast] | [vpnv4 | vpnv6] [unicast | multicast] [* | all | rd {16-bit-integer:16-bit-integer | ip-address:16-bit-integer}] | [vrf vrf-name]] [sorted] flapstatistics cidr-only Parameters Parameter ipv4 ipv6 unicast multicast vpnv4 vpnv6 * all rd 16-bit-integer ip-address vrf-name Description Specifies the IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-333
ipv4 ipv6 unicast multicast vpnv4 vpnv6 * all rd 16-bit-integer ip-address vrf-name
Specifies the IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Access list to be applied to determine routes for which flap-statistics will be displayed.
sorted access-list-id
5-334
Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Flap statistics will be displayed for routes that exactly match this regular expression
sorted regular-expression
5-335
Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Flap statistics will be displayed for routes that exactly match this regular expression
sorted regular-expression
5-336
Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-337
Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-338
Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-339
ip-address vrf-name
IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Address of the neighbor for which to show TCP and BGP connection information. Displays all routes that have been advertised to the specified neighbor. Displays the routes to the specified neighbor that are dampened. Displays flap-statistics for routes to the specified neighbor. Displays AS-paths received from the specified neighbor that match the regular expression (if given; otherwise all AS-paths are shown).
received-routes
Displays all accepted and rejected receivedroutes from the specified neighbor.
routes
5-340
ipv4 ipv6 unicast multicast vpnv4 vpnv6 * all rd 16-bit-integer ip-address vrf-name
Specifies the IPv4 address family. Specifies IPv6 address family. Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
5-341
Specifies unicast connections. Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Address of the peer router.
5-342
Specifies multicast connections. Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Address of the peer router.
5-343
Displays information about VPNv4 Network Layer Reachability Information (NLRIs). Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Address of the peer router.
5-344
Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Displays AS-paths that match the regular expression.
sorted as-path-regular-expression
5-345
Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Peer-group about which information is shown. Displays a summary of the status of all peer group members.
5-346
Displays information about VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. The prefix-list about which information is shown.
sorted prefix-list-id
5-347
Displays information about all VPNv4 or VPNv6 NLRIs. Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Displays entries exactly matching this string.
5-348
Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Displays entries that match this regular expression.
sorted regular-expression
5-349
Displays information about all VPNv4 or VPNv6 NLRIs. Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order. Name of route-map whose matches are shown.
sorted route-map-name
5-350
Specifies route distinguisher. 16-bit integer, range is 0 to 65535. IP address expressed in dotted decimal form (A.B.C.D). Displays information in the FIB about this VPN Routing and Forwarding (VRF) instance specified by an alpha-numericsymbolic name, range is 1 to 40 characters. Displays prefixes in the BGP routing table in ascending order.
sorted
show ip community-list
Displays the contents of IP community-lists used on the RCP. Syntax show ip community-list [community-list-id] Parameters Parameter community-list-id Description Name of the community-list to be displayed; if none is entered, the contents of all community-lists are shown.
5-351
router-id
None.
Mode EXEC
Mode EXEC
Mode EXEC
5-352
show ip copsrm-log
This command displays COPS-RM activity log. Syntax show ip copsrm-log Mode EXEC
show ip explicit-paths
Displays information about the specified explicit path (or all explicit paths if none is specified). Syntax show ip explicit-paths [name name | identifier number] [detail] Parameters
5-353
Description Alpha-numeric-symbolic value representing a given name to an explicit path. Specifies explicit path by number, range is 1 to 65535. Displays information in long form.
show ip extcommunity-list
Displays the contents of IP extended community-lists used on the RCP. Syntax show ip extcommunity-list [ext-community-list-id] Parameters Parameter ext-community-list-id Description Name of the extended community-list to be displayed; if none is entered, the contents of all extended community-lists are shown.
show ip fib
Displays the next-hops or prefixes in the forwarding information base (FIB) of the RCP. Syntax show ip fib {next-hop [hex-handle] | prefixes [ip-address [netmask] | ip-address/mask-length] | summary} Parameters Parameter next-hop Description Displays information about next-hops in the FIB (in hexadecimal).
5-354
Hexadecimal identifier of the next-hop handle in the FIB to be displayed. Displays information about prefixes in the FIB, including their next-hop handles. Displays information about this prefix in the FIB. Displays information about this prefix in the FIB. Displays summary information about prefixes in the FIB.
show ip interface
Displays IP information for a specific interface or for all interfaces. Syntax show ip interface *[brief | interface-name] Parameters Parameter brief interface-name Description Displays only a subset of IP information. {admin 0 | loopback loopback-number | nnet rcp-number | null 0 | portchan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number}.
show ip ospf
Displays information about the OSPF instance specified. If no OSPF instance-id is given, information for all OSPF instances on the RCP is given. Syntax show ip ospf [process-id [area-id]]
5-355
Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown. IP address or integer representing an area for which information is being shown, if no area-id is given, information for all OSPF areas are shown.
area-id
5-356
Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown.
area-id
5-357
nssa-external opaque-area
Displays information about Type 7 (NSSA External) LSAs. Displays information about Type 10 LSAs (LSAs that are limited to a particular OSPF area).
opaque-as
Displays information about Type 11 LSAs (LSAs that are propagated throughout the AS).
opaque-link
Displays information about Type 9 LSAs (LSAs that are limited to a particular network segment).
summary lsid
Displays information about Type 3 (Network Summary) LSAs. Displays information only about LSA with this link-state ID, which must be entered as a dotted-decimal IP address. Lists the LSAs in the LSA database by type and displays counts of each type.
database-summary
area-id
5-358
interface-name
area-id
link
fragment
Mode User EXEC Output OSPF Router with ID Router ID number. Process ID OSPF process ID Area instance Number of times TE information or any link changed. Link instance Number of times any link changed. Link ID Link-state ID Interface Address Local IP address assigned to the link.
5-359
Neighbor Address IP address that is on the remote end of the link. Admin Metric TE link metric. Maximum Bandwidth Bandwidth (in kbps) configured for the physical interface. Maximum Reservable Bandwidth Bandwidth (in kbps) configured for TE (through ip rsvp bandwidth) on this link. Number of Priority Number of supported preemption priorities. Priority Bandwidth (in kbps) available for TE at this priority. Affinity Bit Affinity bits assigned to the link.
area-id
interface-name
router-id detail
5-360
Syntax show ip ospf [process-id] network area Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown.
5-361
Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown. IP address or integer representing an area defined in the network area command whose LSAs will be displayed, if none is given, LSAs for all areas are shown. {loopback loopback-number | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnel-number}. Router-id of the neighbor for which information is displayed.
area-id
interface-name
router-id
area-id
interface-name
5-362
router-id
5-363
Syntax show ip ospf [process-id] spf-log Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown.
Mode User EXEC Guidelines The spf-log entries command determines the number of records that are kept in the OSPF spflog. The default is 20.
5-364
Syntax show ip ospf [process-id] virtual-links Parameters Parameter process-id Description ID of the OSPF routing process on this router for which information is being shown, range is 1 to 65535; if no process-id is given, information for all OSPF processes is shown.
show ip policy-list
Displays the contents of one or all policy-lists. Syntax show ip policy-list [policy-list-name] Parameters Parameter policy-list-name Mode User EXEC Description Name of policy-list to display.
show ip prefix-list
Displays the contents of prefix-lists on the RCP. Syntax show ip prefix-list [prefix-list-id [{ip-address/mask-length | ip-address} [longer | first-match] | seq sequence-number] | detail [prefix-list-id] | summary [prefix-list-id]] Parameters Parameter Description
5-365
prefix-list-id ip-address/mask-length
The name of the prefix list whose information is being displayed. Displays entries in the prefix-list with this IP address and netmask length.
Displays entries in the prefix-list with this IP address. Displays entries in the prefix-list with netmask lengths longer than mask-length. Displays the first entry in the prefix-list that matches mask-length. Displays the prefix-list entry with this sequence number. Displays summary information only about all prefix-lists or about the given (optional) prefix-list-id. Displays detailed information about all prefix-lists or about the given (optional) prefixlist- id.
detail
show ip protocols
Displays information about the active routing protocols on the RCP. Syntax show ip protocols [summary] Parameters Parameter summary Description Lists the active routing protocols and their process IDs.
show ip rib
5-366
Displays all routes in the routing information base (RIB). Syntax show ip rib [{ip-address ip-netmask | ip-address/mask-length} [detail] [longer-prefixes] | bgp [as-number] | connected | hash-distribution | interfaces interface-name | isis [isis-tag] | monitored routes [ip-address ip-netmask | ip-address/mask-length] | ospf [instance-id] | static | track next-hop [ip-address ip-netmask | ip-address/mask-length]] Parameters Parameter ip-address ip-netmask ip-address/mask-length detail longer-prefixes Description Displays information for this prefix in the RIB. Displays information about this prefix in the RIB. Displays the route monitoring information along with the route. Displays routes more specific than the route entered in the ip-address [netmask] or ip-address/mask-length fields. bgp [as-number] Displays all routes derived from BGP, and optionally, the autonomous system to which the BGP router belongs, if no as-number is specified, all BGP-derived routes are displayed. Displays connected routes. Displays route hash table distribution in RIB. {admin 0 | loopback loopback-number | null 0 | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}. Displays all routes derived from ISIS, and optionally, those derived from the given ISIS routing process, if no isis-tag is specified, all ISIS-derived routes are displayed. Displays monitored routes in the RIB. Displays all routes derived from OSPF, and optionally, those derived from the given OSPF process, if no instance-id is specified, all OSPF-derived routes are displayed. Displays static routes. Displays tracking next-hops in the RIB.
isis [isis-tag]
static track
5-367
show ip route
Displays active routes in the routing information base (RIB). Syntax show ip route [{ip-address ip-netmask | ip-address/mask-length} [longer-prefixes | detail] | bgp [as-number] | connected | isis [null | isis-tag] | list access-list-id | ospf [process-id] | static | supernets-only | summary] Parameters Parameter ip-address ip-netmask longer-prefixes Description Displays route information for this address. Subnet mask of the address for which information is being shown. Displays routes more specific than the route entered in the ip-address ipnetmask or ipaddress/mask-length fields. Displays route information in detail. Displays active routes derived from BGP, and optionally, the autonomous system to which the BGP router belongs, if no asnumber is specified, all BGP-derived routes are displayed. connected isis null isis [isis-tag] Displays connected routes. Displays active routes derived from ISIS null instance. Displays active routes derived from ISIS, and optionally, those derived from the given ISIS routing process, if no isis-tag is specified, all ISIS-derived routes are displayed. Displays routes matching this access list. Displays active routes derived from OSPF, and optionally, those derived from the given OSPF process, if no process-id is specified, all OSPF-derived routes are displayed. Displays static routes.
static
5-368
Displays distribution of prefix lengths in active table. Displays information for active supernets in the RIB. Displays summary-level information for active routes in the RIB.
5-369
show ip rpf
Displays information about Reverse Path Forwarding (RPF) for the specified IPv4 multicast soource address. Syntax show ip rpf ip-address [metric] Parameters Parameter ip-address metric Description Displays RPF information about this IPv4 multicast source address. Displays metric information for the RPF route.
5-370
show ip ssh
Displays configuration and version information for the SSH (Secure Shell) service. Syntax show ip ssh Mode User EXEC Guidelines SSH software is always enabled on the RCP.
show ip udp
Displays the active UDP responders. Syntax show ip udp responder port port-identifier *[ip-address | | output-modifier regular-expression] Parameters Parameter port-identifier ip-address output-modifier Description Port number or port symbol, port number range is 1 to 65535. IP address of the port. Display line based on its context, choices are begin of line, exclude line, or include line to be used in conjunction with regularexpression. Regular-expression to match text that is to be identified in the search.
regular-expression
5-371
The pipe symbol (|) is part of the command syntax and must be included.
5-372
Includes traffic engineering information. Specific LSP for which the content is displayed. A hostname consisting of a character string (which cannot contain a - or .), displays LSPs generated by this host. ISIS system ID in the form xxxx.xxxx.xxxx, where x is a hex number, displays LSPs generated by the nodes that use this system ID.
system_id
show line
Displays terminal persistent configuration and status. Syntax show line Mode User EXEC Guidelines Terminal configuration values can be configured in two manners: 1) temporarily (for the duration of the session) using terminal commands; or 2) persistently using equivalent commands within the Line Configuration Mode. The current set of configuration values show up in the show terminal command, and the persistent set of configuration values show up in the show line command. Output Length: number Number of lines displayed per page on the terminal (configurable with the terminal length and length commands) Width: number Number of columns displayed on the terminal (configurable with the terminal width and width commands) Status: {Active | Connected | Echo Off | Idle Timeout | Input Stopped | Rcvd BREAK | Rcvd CR | Ready | Sent XOFF} A process is currently active on this line AND/OR at least one active connection is currently on this line AND/OR no echoing is being done of what the user inputs on this line AND/OR an idle timeout has occurred on this line AND/OR input stopped on this line due to hardware flow control or overflow AND/OR a BREAK sequence has been received on this line AND/OR last character entered was a carriage return AND/OR state of this line is ready AND/OR an XOFF character was sent on this line. Capabilities: {none | Enabled | No Login Banner | Receives Logging Output} There are no
5-373
special capabilities currently configured OR user has enabled into a higher privilege level AND/OR no EXEC or MOTD banners displayed (configurable with the no exec-banner command) AND/OR debug and error messages are displayed (configurable with the terminal monitor command) Timeouts: Idle EXEC {never | hh:mm:ss} Timeout value for an idle EXEC (configurable with the terminal exec-timeout and exec-timeout commands) Time since activation: hh:mm:ss Amount of time user has been logged in. History is {disabled | enabled} Command line history feature is disabled (configurable with the terminal no history and no history commands) OR enabled (configurable with the terminal history and history commands) history size is lines Number of lines in the history buffer (configurable with the terminal history and history commands)
end-time
5-374
Mode EXEC
show logging
Displays the contents of a log file or the SNMP history table. If no options are supplied, a logging status summary is displayed. Syntax show logging [log-filename | history] Parameters Parameter log-filename history Mode User EXEC Guidelines All alarms declared with a severity level of 7 (debug) are not logged by syslog. These alarms can only be seen while they are active through use of the show alarms and show controllers commands. Output Syslog logging: {disabled | enabled} Syslog logging is currently disabled OR enabled. Console logging: {disabled | level severity-level-name} Debug output and system error messages are not displayed on the console OR messages equal or higher in priority than the given severity level name will be displayed on the console. Monitor logging: {disabled | level severity-level-name} Debug output and system error messages are not displayed on the lines OR messages equal or higher in priority than the given severity level name will be displayed on the lines. Trap logging: {disabled | level severity-level-name} Debug output and system error messages are not sent to remote syslog servers OR messages equal or higher in priority than the given severity level name will be sent to remote syslog servers. Logging to host Host name (or IP address) of remote syslog server. Syslog History Table: n maximum table entries Maximum number of messages to keep in history table. saving level severity-level-name or higher Debug output and system error messages equal or higher in priority than the given severity level name will be stored in history table. n messages ignored, Number of messages not processed. n dropped Number of messages not processed due to lack of resources. n table entries flushed Number of messages removed from the history table to allow logging of new messages. Description Display the specified log file. Display the SNMP history table.
5-375
SNMP notifications {not enabled | enabled} SNMP traps are not sent to the SNMP server OR SNMP traps are sent to the SNMP server. entry number Entry number of the message within the history table. timestamp: Time since system startup (in seconds) that the event occurred.
process
total
5-376
detail
Mode User EXEC Output remote IP address of remote peer. local IP address of local interface. st Stratum number, range is 0 to 15. poll Polling interval in seconds. reach Reachability register of peer in octal format. delay Estimated delay to peer. offset Offset between system clock and peers clock. disp Dispersion of the peer. hmode Host mode. pmode Peer mode. stratum Stratum number of system clock. precision Precision of system clock. leap Leap second indicator. refid Reference clock identifier. rootdistance Total delay along the path to the root clock. rootdispersion Path dispersion to root. ppoll Peer poll interval in seconds as a power of 2, for example, a value of 5 equals 25 seconds. hpoll Host poll interval in seconds as a power of 2, for example, a value of 5 equals 25 seconds. keyid Key identifier. version Version number. association Peers association identifier. valid Peer valid data count determining the interval between valid data updates. reach Reachability status of peer. unreach Unreachability status of peer. flash State of various sanity tests, a value of 00 indicates all tests have passed successfully. boffset Broadcast offset. ttl/mode Time-to-live for multicast packets. timer Peers counter to control interval between transmitted NTP messages. flags Peers system flags. reference time Time when local clock was last updated. originate timestamp Time when last NTP message was sent. receive timestamp Time when last NTP message we received. transmit timestamp Time when last NTP message departed the sender. filter delay Delay estimate from the filter in seconds. filter offset Offset estimate from the filter in seconds. filter order Order of peers from the peers last filter. offset Offset between the system clock and the peer clock. delay Delay between the system clock and the peer clock. error bound Peers dispersion estimate. filter error Peers select dispersion estimate.
5-377
5-378
Displays all places where the specified access-list is being used in the routing configuration. Syntax show policy access-list access-list-id Parameters Parameter access-list-id Description Name of the access list whose usage is to be displayed.
5-379
community-list-id
Mode User EXEC Guidelines This command lists out the route-maps that use the policy-list and the protocols that use the
5-380
5-381
show privilege
Displays the current level of privilege. Syntax show privilege Mode User EXEC
5-382
Syntax show processes memory Mode User EXEC Guidelines The output of this command is created internally by performing a UNIX ps command with certain options. The UNIX command is ps -co pid,time,start,pri,vsz,%mem,tt,command.
5-383
Mode EXEC
Mode EXEC
5-384
Description Name of the router. This is typically the hostname of the router. Interface name. [Optional] start time for the period in which the sessions terminate will be displayed. If start-time is not specified, system initialization time will be used. [Optional] end time for the period in which the sessions terminate will be displayed. If end-time is not specified, the current time will be used.
end-time
Mode EXEC
5-385
show route-map
Displays the configured route-maps.
Syntax show route-map [route-map-name] Parameters Parameter route-map-name Description Route-map to be displayed, if none is given, all route-maps are shown.
show running-config
Displays the configuration currently running on the RCP. Syntax show running-config [[ip] access-list [access-list-id] | as-path access-list [as-pathaccesslist- id] | community-list [community-list-id] | cos-queue-group [cos-queue-groupname] | default-networks | extcommunity-list [ext-community-list-id] | flow-cache |interface [interface-name] | policy-list [policy-list-name] | policy-map [policy-map-name] | prefix-list [prefix-list-id] | route-map [route-map-name] | static-routes | traceoptions [trace-filename]] Parameters Parameter ip access-list access-list-id Description Displays the part of the configuration containing this access-list or IP access-list, or, if none is specified, displays all accesslists in the configuration.
5-386
Displays the part of the configuration containing this AS-path access-list, or, if none is specified, displays all AS-path access-lists in the configuration. Displays the part of the configuration containing this community-list, or, if none is specified, displays all community-lists in the configuration. Displays the part of the configuration containing default-networks. Displays the part of the configuration containing this extended community-list, or, if none is specified, displays all extended community-lists in the configuration. Displays the part of the configuration containing Flow aggregation Cache Configuration. Displays the part of the configuration containing this interface, or, if none is specified, displays all interfaces in the configuration {admin 0 | loopback loopbacknumber | nnet rcp-number | null 0 | port-chan channel-number[.subinterface] | pos-chan channel-number | tunnel tunnelnumber}. Displays the part of the configuration containing this policy list, or, if none is specified, displays all policy lists in the configuration. Displays the part of the configuration containing this policy map, or, if none is specified, displays all policy maps in the configuration. Displays the part of the configuration containing this prefix-list, or, if none is specified, displays all prefix-lists in the configuration. Displays the part of the configuration containing this routemap, or, if none is specified, displays all route-maps in the configuration. Displays the part of the configuration containing static routes.
community-list [community-list-id]
flow-cache
interface [interface-name]
policy-list [policy-list-name]
policy-map [policy-map-name]
prefix-list [prefix-list-id]
route-map [route-map-name]
static-routes
5-387
traceoptions [trace-filename]
Displays the part of the configuration containing traceoptions for a specified trace file, or all trace files if trace-filename is not specified.
show sessions
To display active and terminated session information, use the show sessions EXEC command. Syntax show sessions [{ current [detail]} | {session-id <session-id> [detail]} | { [{[start-time <yyyy:mm:dd:hh:mm:ss>] [end-time <yyyy:mm:dd:hh:mm:ss>] [source-addr <ip-address> [<ip-netmask>]] [destination-addr <ip-address> [<ip-netmask>]] [tunnel-id <tunnel-id-str>] [termination-reason { normal | authorization-fail | timeout-fail | other-failures | any-failure}] [event-type { link-congestion | link-down | routing-loop | no-route | path-change | any-event }] [session-type { ipsec | call | data | register | monitor-path }] [from-id <from-id>] [to-id <to-id>] [detail] }]}|{ summary}] Parameters Parameter session-id <session-id> start-time <start-time> end-time <end-time> source-address <src-ipaddress> [<src-ip-mask>] destination-address <dest-ipaddress> [<dest-ip-mask>] detail tunnel-id <tunnel-id-str> Mode EXEC Description Display session record for specified session Identifier. [Optional] start time for the period when session terminates. This is in the form of yyyy:mm:dd:hh:mm:ss [Optional] end time for the period when session terminates. This is in the form of yyyy:mm:dd:hh:mm:ss [Optional] Sessions that have the specified source IP address/network. [Optional] Sessions that have the specified destination IP address/network. [Optional] Display detailed session information,. [Optional] A IPSec tunnel ID in string format
5-388
To display session information for a given link, use show session link EXEC command. Syntax show session link router <router-name> interface <if-name> [start-time <start-time>] [endtime <end-time>] Parameters Parameter router-name if-name start-time Description Name of the router. This is typically the hostname of the router. Interface name. [Optional] start time for the period in which the sessions terminate will be displayed. If start-time is not specified, system initialization time will be used. [Optional] end time for the period in which the sessions terminate will be displayed. If end-time is not specified, the current time will be used.
end-time
Mode EXEC
show snmp
Displays SNMP communications status. Syntax show snmp Mode User EXEC
5-389
Output Chassis Chassis ID string. Contact Contact string. Location Location string. SNMP packets input Count of SNMP packets input. Bad SNMP version errors Count of packets with an incompatible SNMP version. Unknown community name Count of packets with an unknown community name. Illegal operation for community name supplied Count of packets that requested an operation that is is not allowed for the supplied community name. Encoding errors Count of improperly-encoded packets. Number of requested variables Count of requested variables by SNMP managers. Number of altered variables Count of altered variables by SNMP managers. Get-request PDUs Count of get requests. Get-next PDUs Count of get-next requests. Set-request PDUs Count of set requests. SNMP packets output Count of SNMP packets output. Too big errors Count of packets larger than the maximum packet size. Maximum packet size Maximum SNMP packet size. No such name errors Count of SNMP requests for which a MIB object does not exist. Bad values errors Count of SNMP requests that contain an invalid value for a MIB object. General errors Count of SNMP requests that failed for another reason other than the No such name or Bad values errors. Response PDUs Count of responses sent from SNMP requests. Trap PDUs Count of SNMP traps.
5-390
Syntax show snmp group Mode Privileged EXEC Guidelines Five of the six values (all except notReady) may be specified in a management protocol set operation but only three values will be returned in response to a management protocol retrieval operation; these are: notReady, notInService or active. When queried, an existing conceptual row has only three states: (1) it is either available for use by the managed device (the status column has value active); (2) it is not available for use by the managed device, though the agent has sufficient information to make it so (the status column has value notInService); or, (3) it is not available for use by the managed device, and an attempt to make it so would fail because the agent has insufficient information (the state column has value notReady). Output groupname Name of the SNMP group. security model Security model of the group. readview Name of the read view. writeview Name of the write view. notifyview Name of the notify view. row status defined below: active The conceptual row is available for use by the managed device. notInService The conceptual row exists in the agent, but is unavailable for use by the managed device (see the note below). notReady The conceptual row exists in the agent, but is missing information necessary in order to be available for use by the managed device. createAndGo Supplied by a management station wishing to create a new instance of a conceptual row and to have its status automatically set to active, making it available for use by the managed device. createAndWait Supplied by a management station wishing to create a new instance of a conceptual row (but not make it available for use by the managed device). destroy Supplied by a management station wishing to delete all of the instances associated with an existing conceptual row.
5-391
Output User name Name of the SNMP user. Engine ID SNMP engine ID. storage-type: {other | volatile | nonvolatile | permanent | readonly} Indicates the memory type in which the settings have been stored.
show (system)
Displays the controller (system) configuration portion of the running-config. Syntax show Mode Controller Configuration (System)
show tcp-port-table
Displays TCP ports and corresponding symbols (created with the define tcp-port command). Syntax show tcp-port-table [tcp-port | symbol-name] Parameters Parameter tcp-port Description TCP port number for which the corresponding defined symbol is to be displayed. Existing tcp-symbol (created with the define tcp-port command) for which the corresponding TCP port number is to be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character and containing up to 20 characters.
symbol-name
5-392
show terminal
Displays terminal current configuration and status. Syntax show terminal Mode User EXEC Guidelines Terminal configuration values can be configured in two manners: 1) temporarily (for the duration of the session) using terminal commands; or 2) persistently using equivalent commands within the Line Configuration Mode. The current set of configuration values show up in the show terminal command, and the persistent set of configuration values show up in the show line command. Output Length: number Number of lines displayed per page on the terminal (configurable with the terminal length and length commands) Width: number Number of columns displayed on the terminal (configurable with the terminal width and width commands) Status: {Active | Connected | Echo Off | Idle Timeout | Input Stopped | Rcvd BREAK | Rcvd CR | Ready | Sent XOFF} A process is currently active on this line AND/OR at least one active connection is currently on this line AND/OR no echoing is being done of what the user inputs on this line AND/OR an idle timeout has occurred on this line AND/OR input stopped on this line due to hardware flow control or overflow AND/OR a BREAK sequence has been received on this line AND/OR last character entered was a carriage return AND/OR state of this line is ready AND/ OR an XOFF character was sent on this line. Capabilities: {none | Enabled | No Login Banner | Receives Logging Output} There are no special capabilities currently configured OR user has enabled into a higher privilege level AND/ OR no EXEC or MOTD banners displayed (configurable with the no exec-banner command) AND/OR debug and error messages are displayed (configurable with the terminal monitor command) Timeouts: Idle EXEC {never | hh:mm:ss} Timeout value for an idle EXEC (configurable with the terminal exec-timeout and exec-timeout commands) Time since activation: hh:mm:ss Amount of time user has been logged in. History is {disabled | enabled} Command line history feature is disabled (configurable with the terminal no history and no history commands) OR enabled (configurable with the terminal history and history commands) history size is lines Number of lines in the history buffer (configurable with the terminal history and history commands.
5-393
Syntax show topology drib [<drib-name >] Parameters Parameter drib-name Description [Optional] A string consists of the character v followed by the host IP address of the target router.
Mode EXEC
Syntax show topology interfaces [drib <drib-name>] Parameters Parameter drib-name Description [Optional] A string consists of the character v followed by the host IP address of the target router.
Mode EXEC
5-394
A string consists of the character v followed by the host IP address of the target router. OSPF instance number
5-395
Parameter drib-name Ip-address Ip-netmask ip-bitcount detail longer-prefixes bgp <as-number> ospf <instance-number> connected static Mode EXEC
Description A string consists of the character v followed by the host IP address of the target router. The address of the route to be displayed The ip mask of the route to be displayed The bit count of the verified route If set, display detailed information about the routes If set, display prefixes longer than the addr/mask prefix. AS number of the BGP instance OSPF instance number Display the connected routes Display the static routes
5-396
show trace
Displays the contents of a trace file. Syntax show trace trace-filename Parameters Parameter trace-filename Mode User EXEC Description Filename of the trace file.
show udp-port-table
Displays UDP ports and corresponding symbols (created with the define udp-port command). Syntax show udp-port-table [udp-port | symbol-name] Parameters Parameter udp-port Description UDP port number for which the corresponding defined symbol is to be displayed. Existing udp-symbol (created with the define udp-port command) for which the corresponding UDP port number is to be displayed, symbols must be alphanumeric text strings beginning with an alphabetic character and containing up to 20 characters.
symbol-name
5-397
show users
Displays information about the users that are currently logged in. An asterisk (*) at the beginning of an output line denotes the current users information. Syntax show users [me | partition {admin | all | hostname | partition-number}] Parameters Parameter me partition Description Displays information about the current user only. Displays information about users within a specified partition or all partitions.
Mode User EXEC Guidelines The output of this command displays users logged into the RCP where the command is executed. To see the users logged in to the standby RCP, this command must be executed from the standby RCP. Output Partition Partition number of the user. User Username of the user. UserID Assigned user ID for the user. Line Assigned line type (con or tty) and relative line number for the user. Login-Date/Time Date and time when the user logged in. Location For console line type, this is LOCAL; for tty line type, this is the name of the host (or IP address if the Domain Name Server is disabled for show command output) from which the user is logged in.
show version
Displays high level software and hardware configuration information.
5-398
show vlan
Displays configuration and status information about a specific VLAN. If a VLAN identifier is not specified, then information about all VLANs is displayed. Syntax show vlan [vlan-id] Parameters Parameter vlan-id Mode User EXEC Description VLAN identifier, range is 1 to 4094.
shutdown (interface)
Disables an interface and places it in the Administratively Down state (default). The no form of this command enables an interface and releases it from the Administratively Down state. Syntax shutdown no shutdown Mode Interface Configuration (Admin, Loopback, NNET, Port-chan, Pos-chan, Tunnel) Subinterface Configuration (Port-chan)
skey
Creates an skey (one-time password) for the specified user on the self rcp, peer rcp, or both if not specified. The no form of this command deletes the skey for the specified user.
5-399
Syntax skey username [peer-rcp | self-rcp] no skey username [peer-rcp | self-rcp] Parameters Parameter username peer-rcp self-rcp Mode Global Configuration Description Name of the user. RCP that user is not logged into. RCP that user is logged into.
snmp-access host
To configure SNMP related information so that SVP can communicate with SNMP running on the router defined by the router command, use the snmp-access host command. The no form of this command only requires the ip-address parameter. Syntax snmp-access host <ip-address> [udp-port <port>] version {{1| 2c} [encrypted] {community <community-string>} | {3 [encrypted] [auth {md5|sha} <auth-password> [priv des56 <privpassword >]] user <username>} } [interval <value>] no snmp-access host <ip-address> [[udp-port <port>] version {{1| 2c} [encrypted] {community <community-string>} | {3 [encrypted] [auth {md5|sha} <auth-password> [priv des56 <priv-password >]] user <username>} } [interval <value>]] Parameters Parameter ip-address udp-port <port> version 1 2c 3 Description IP address of the SNMP host. This address does not have to match with routers IP address. [optional] Specifies the port on which SNMP is listening to. Specifies SNMP version SNMP version 1 SNMP version 2c SNMP version 3
5-400
community <communitystring>
Specifies the SNMP community string. The encrypted keyword occurring prior to the community string is generated by the system to avoid showing clear text in the running configuration. [Optional] Indicates that the entered community string is encrypted. When the snmp-access command is first entered the encrypted keyword is not used and the community string is entered in clear text. The SVP will encrypt the community string and the command will be displayed in the running config with the encrypted keyword. [Optional] SNMP version 3 AuthNoPriv security model. Provides authentication based on the HMAC-MD5 or HMACSHA algorithms. Use MD5 algorithm. Use SHA algorithm. Auth password. [Optional] SNMP version 3 AuthPriv security model. Provides authentication based on the HMAC-MD5 or HMACSHA algorithms. Provides DES 56-bit encryption in addition to authentication based on the CBC-DES (DES-56) standard. Priv password Name of the user. [Optional] Query interval in seconds. Default is 60 seconds.
encrypted
auth
priv-password user <username> interval <interval> Mode Topology map router configuration
snmp-poll host
In some cases, the SVP must gather information from a host using a proprietary MIB. This command enables this type of polling. Currently this capability is implemented for gathering bandwidth utilization for GPRS services from a GANC. The no form of this command stops SNMP polling. Syntax snmp-poll host <ip-address> [udp-port <port>] version {1| 2c} community <communitystring> vendor-id { kineto } [interval <value>] no snmp-poll host [<ip-address> [udp-port <port>] version {1| 2c} community <communitystring> vendor-id { kineto } [interval <value>]]
5-401
Parameters Parameter ip-address Description IP address of the SNMP host. Type/Range IP address in dotted notation. 1-255 1/2c String kineto 1-86400 60 None Default None
UDP port agent is listening on. Specifies SNMP version Specifies SNMP community string. Designation of vendor that published proprietary MIB. Query interval in seconds.
161
snmp-server
Enables Simple Network Management Protocol (SNMP) agent operation. If no SNMP version is specified, then all SNMP versions are assumed. The no form of this command disables SNMP agent operation (default). Syntax snmp-server [v1 | v2c | v3] no snmp-server [v1 | v2c | v3] Parameter v1 v2c v3 Mode Global Configuration Description SNMP version 1. SNMP version 2c SNMP version 3
snmp-server accesshost
Sets a specified host (only) to access the snmp agent. The no form of this command disables SNMP agent host operation (default).
5-402
Syntax snmp-server accesshost {host | ip-address} no snmp-server accesshost [host | ip-address] Parameters Parameter host ip-addres Mode Global Configuration Guidelines This command is only supported over IPv4. Description Name of the host. IP address of the host.
snmp-server chassis-id
Sets the system serial number string. The no form of this command sets the default system serial number string (default). Syntax snmp-server chassis-id string no snmp-server chassis-id [string] Parameters Parameter string Description System serial number string, range is 0 to 16 alpha-numeric-symbolic characters.
snmp-server community
Sets the community access string to permit SNMP access. The no form of this command removes the community access string information.
5-403
Syntax snmp-server community string [view view-name] [ro | rw] no snmp-server community string [view view-name] [ro | rw] Parameters Parameter string view-name ro rw Mode Global Configuration Description String to allow SNMP access, range is 0 to 127 alpha-numeric-symbolic characters. Name of the view, range is 1 to 32 alphanumeric-symbolic characters. Indicates read-only access (default). Indicates read and write access.
snmp-server contact
Sets the system contact (sysContact) string. The no form of this command removes the system contact string (default). Syntax snmp-server contact string no snmp-server contact [string] Parameters Parameter string Description System contact string, range is 0 to 255 alpha-numeric-symbolic characters.
5-404
Syntax snmp-server enable traps [bgp | config | entity | envmon | isis | mpls | ospf | rcpm | snmp | syslog] no snmp-server enable traps [bgp | config | entity | envmon | isis | mpls | ospf | rcpm | snmp | syslog] Parameters Parameter bgp config entity envmon isis mpls ospf rcpm snmp syslog Mode Global Configuration Description enables SNMP Border Gateway Protocol (BGP) statechange traps enables SNMP configuration traps enables SNMP entity traps enables SNMP environmental monitor traps enables SNMP Integrated System to Integrated System (ISIS) traps enables SNMP mpls traps enables SNMP Open Shortest Path First (OSPF) traps enables SNMP Resource Control Pointer Manager (SVM) traps enables SNMP standard traps enables SNMP syslog traps
snmp-server engineID
Sets the name of the SNMP engine on the RCP. The no form of this command removes the name of the SNMP engine on the RCP. Syntax snmp-server engineID engineid-string no snmp-server engineID [engineid-string] Parameter Description
5-405
engineid-string
ASCII encoded hexadecimal string identifier for the local or remote SNMP engine, length of 24 characters (including only characters 0-9 and A-F). If less than 24 characters are specified, the remaining characters are automatically filled with zeros. An all 0, all F, or null value is not allowed.
snmp-server group
Sets up a new SNMP group. The no form of this command removes a specified SNMP group. Syntax snmp-server group groupname {v1 | v2c | v3 {auth | noauth | priv}} *[notify notifyview | read readview | write writeview] no snmp-server group groupname {v1 | v2c | v3 {auth | noauth | priv}} *[notify notifyview | read readview | write writeview] Parameters Parameter groupname v1 v2c v3 auth noauth priv notifyview Description Name of the SNMP group. SNMP version 1. SNMP version 2c. SNMP version 3. Specifies packet authentication without encryption. Specifies no packet authentication. Specifies packet authentication with encryption. Specifies a notify view for the SNMP group, notifyview range is 1 to 127 alphanumericsymbolic characters, default is null OID. Specifies a read view for the SNMP group, readview range is 1 to 127 alphanumericsymbolic characters, default is every object in the OID space.
readview
5-406
writeview
Specifies a write view for the SNMP group, writeview range is 1 to 127 alphanumericsymbolic characters, default is null OID.
snmp-server host
This command sets up a host to receive SNMP notifications. If no keywords are supplied, all SNMP notifications are received. The no form of this command removes a host from receiving SNMP notifications (default). If no keywords are supplied in the no form, all SNMP notifications are disabled. Syntax snmp-server host {<ip-address> | <ipv6-address> | <hostname>} [traps | informs] [version {1 | 2c | {3 [auth | noauth | priv] }}] <community-string> [udp-port <udp-port>] [bgp | config | entity | envmon | isis | mpls | ospf | rcpm | snmp | syslog] no snmp-server host {<ip-address> | <ipv6-address> | <hostname>} [traps | informs] [version {1 | 2c | {3 [auth | noauth | priv] }}] <community-string> [udp-port <udp-port>] [bgp | config | entity | envmon | isis | mpls | ospf | rcpm | snmp | syslog] Parameters Parameter host {<ip-address> | <ipv6address> | <hostname>} traps informs version {1 | 2c | {3 [auth | noauth | priv] }} Description The IP address or hostname of the host send SNMP traps to the host (default) send SNMP informs to the host (not supported) Optional parameter that indicates the version of the traps. 1: SNMP traps version v1, this is the least secure version 2c: SNMP traps version v2c 3: SNMP traps version v3, this is the most secure version auth: specifies packet authentication without encryption noauth: specifies no packet authentication priv: specifies packet authentication with encryption community-string udp-port <udp-port> bgp String to allow SNMP access, range is 0 to 127 alphanumeric-symbolic characters Optional parameter, udp port number of the host, range is 1 to 65535, default is 162 enables Border Gateway Protocol (BGP) state-change traps
5-407
config entity envmon mpls ospf rcpm snmp syslog Mode Global Configuration
enables SNMP configuration traps enables SNMP entity traps enables SNMP environmental monitor traps enables SNMP mpls traps enables SNMP Open Shortest Path First (OSPF) traps enables SNMP Resource Control Pointer Manager (SVM) traps enables SNMP standard traps enables SNMP syslog traps
snmp-server location
Sets the system location string. The no form of this command removes the system location string (default). Syntax snmp-server location string no snmp-server location [string] Parameters Parameter string Description System location string, range is 0 to 255 alpha-numeric-symbolic characters.
snmp-server packetsize
Sets the maximum SNMP packet size permitted for requests and replies. The no form of this command sets the maximum SNMP packet size to the default value. Syntax snmp-server packetsize byte-count
5-408
no snmp-server packetsize [byte-count] Parameters Parameter byte-count Description Maximum size of SNMP packets in bytes, range is 484 to 8192, default is 1500.
snmp-server queue-length
Sets the queue length of SNMP trap messages to be re-transmitted. The no form of this command sets the queue length to the default value. Syntax snmp-server queue-length length no snmp-server queue-length [length] Parameters Parameter length Description Number of SNMP trap messages to queue, range is 1 to 1000, default is 10.
snmp-server queue-transmit-rate
Sets the maximum allowable rate for SNMP trap message re-transmission. The no form of this command sets the maximum allowable rate to the default value. Syntax snmp-server queue-transmit-rate traps-per-second no snmp-server queue-transmit-rate [traps-per-second] Parameters Parameter Description
5-409
traps-per-second
Maximum allowable rate for SNMP trap retransmission, range is 1 to 10, default is 4.
snmp-server trap-source
Sets the source IP address of all traps to a specified value. The no version of this command removes the source IP address designation (default). Syntax snmp-server trap-source interface-name no snmp-server trap-source [interface-name] Parameters Parameter interface-name Description {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
Mode Global Configuration Guidelines Use this command to force all notifications to originate from a specified interface. Normally, an SNMP trap has the address of the interface that sent it.
snmp-server trap-timeout
Sets the timeout interval at which SNMP trap message re-transmission will be attempted. The no form of this command sets the timeout interval to the default value. Syntax snmp-server trap-timeout seconds no snmp-server trap-timeout [seconds] Parameters
5-410
Parameter seconds
Description Number of seconds for the interval at which SNMP trap message re-transmission is attempted, range is 1 to 1000, default is 30.
snmp-server user
Sets up a new user in an SNMP group. The no form of this command removes a user from an SNMP group. Syntax snmp-server user username groupname {v1 | v2c | v3 [encrypted] [auth md5 auth-password [priv des56 priv-password]]} no snmp-server user username groupname {v1 | v2c | v3 [encrypted] [auth md5 authpassword [priv des56 priv-password]]} Parameters Parameter username groupname v1 v2c v3 encrypted auth md5 auth-password Description Name of the user. Name of the group to which the user belongs. SNMP v1 security model. SNMP v2c security model. SNMP v3 security model. Specifies password encryption, encryption is disabled by default. Specifies authentication level. HMAC-MD5-96 authentication level. Authentication password for the user, range is 1 to 64 alpha-numeric-symbolic characters. priv des56 priv-password Specifies privacy level. CBC-DES privacy authentication algorithm. Privacy password for the user, range is 1 to 64 alpha-numeric-symbolic characters.
5-411
snmp-server view
Creates or updates a view entry. The no form of this command removes a server view entry. Syntax snmp-server view view-name oid-tree {included | excluded} no snmp-server view view-name [oid-tree {included | excluded}] Parameters Parameter view-name oid-tree included excluded Mode Global Configuration Description Name of the view, range is 1 to 32 alphanumeric-symbolic characters. Object identifier tree to be included or excluded from the view. Subtree is included from the view. Subtree is excluded from the view.
snmp-trap-receive
When SNMP access is enabled for a router, the SVP will determine the link state of a router via polling of the MIBII table. It might be desirable to decrease the latency of this learned state by having the router send a trap to the SVP. This command configures the SVP to listen for SNMP traps. As a security mechanism, the SVP has to configured to process traps from expected routers. Unexpected traps will be dropped. When an interface state trap is received, the SVP will update the link's state in the associated DRIB. The SVP can also be configured to poll all routers configured with the route-table-poll command when a link down trap is received. Since the route-table-poll is not as reactive as peering, using this triggering event will allow the SVP to update the DRIBs more quickly. By default the SVP will not listen far traps. The no form of this command returns the system to the default state. Syntax
5-412
snmp-trap-receive [udp-port <port>] [trigger-route-polling <maximum-rate>] no snmp-trap-receive [udp-port <port>] [trigger-route-polling <maximum-rate>] Parameters Parameter udp-port maximum-rate Description UDP port agent is listening on. Bounds the frequency in seconds at which polling will be done due to a link down event. Type/Range 1-255 5-360 Default 162 Not enabled
Mode Global
snmp-trap-source
This command is used to configure the SVP to process link up and down traps from the associated router in the topology map. The snmp-trap-receive command is required in addition to this command to listen for the traps. The By default the SVP will not process traps from a router. The no form of this command returns the system to the default state. Syntax snmp-trap-source [ip-address <ip-address>] version {1| 2c} [encrypted] community <community-string> no snmp-trap-source [ip-address <ip-address>] version {1| 2c} [encrypted] community <community-string> Parameters Parameter ip-address version encrypted community Mode Topology map router configuration Description Process traps from this ip-address. Specifies SNMP version Used by system to encrypt running configuration community string output. Specifies SNMP community string. String None 1/2c Type/Range Default Use router IP address
5-413
snrsp
If the SVA is enabled for performing analogue metric collection, it will process the RTP payload of voice call streams and determine the signal to noise ratio (SNR). When the signal to noise ratio falls below a certain level, the listener will find it difficult to understand the talker. This command specifies the SNR value to be used to for determining if a call should be marked as being degraded due to noise. If the SNR value is very low, the speech and the noise cannot be distinguished. This can occur in the following cases: The sample analyzed does not contain speech. The sample analyzed has a noise level very near the speech level. The first case is not of concern, while the second is the purpose of performing the analysis. One way to distinguish these two cases is by considering the value of the signal level. In the first case, the level would be expected to be low around -40 dBov. In the second case, the level would be -26 dBov or higher. This command also specifies the percentage of degraded sessions to all sessions measured for determining if an alert should be generated. If the calculated percentage is greater than the configured percentage, an alert will be generated. The command replaces the existing SNR threshold and/or the settings for the intervals specified. The no form of the command with no arguments disables the SNRSP alert for all time intervals and returns the SNR thresholds to their default value. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the SNRSP alert for that time interval. The no form of the command with a threshold parameter will return that parameter to its default setting.
Syntax snrsp {[snr <snr>] [slevel <slevel>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no snrsp {[snr <snr>] [slevel <slevel>] [interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter snr Description If the SNR value is less than or equal to this value, the session is marked as degraded. If the signal and noise level cannot be distinguished and the level is greater than or equal to this value, the session is labeled as degraded. Type/Range 0 to 100 20 Default
slevel
-80 to 0
-40
5-414
interval1 interval2
set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with noise degradation is greater than this value an alarm will be sent. If the percentage of sessions with noise degradation is less than or equal to this value the alarm will be cleared. 0-99
None None
clear
0-99
none
source
Specifies a file that is read as a source of commands which are executed sequentially. Syntax source filename Parameters Parameter filename Mode Protmon Configuration Guidelines Source commands may be nested up to 5 levels. Description Name of source file.
5-415
speed
Overrides auto negotiation on the Ethernet interface to force a speed. This is only supported for nnet0 and em interfaces. The command may be needed when connecting the interface to a non-gigabit interface or when the far end interface is configured at a speed below a gigabit speed. The no form of the command returns the setting back to the default which is auto negotiation. Syntax speed { 10 | 100 | 1000 | auto } no speed [{ 10 | 100 | 1000 | auto }] Parameters Parameter 10 100 1000 auto Mode Interface Configuration Description Force 10 Mbps operation Force 100 Mbps operation Force 1000 Mbps operation Enable auto negotiation
spf-log
Sets the number of records kept in the OSPF spf-log (which is visible using the show ip ospf spflog command). The no form of this command returns the value to the default (20). Syntax spf-log entries number no spf-log entries number Parameters Parameter number Description Number of entries kept in the OSPF spf-log, range is 0 to 100000, default is 20.
5-416
spf-log entries
Specifies the number of records kept in the IS-IS spf-log (which is visible using the show isis spflog command). The no form of this command returns the value to the default (20). Syntax spf-log entries number no spf-log entries number Parameters Parameter number Description Number of entries kept in the IS-IS spf-log, range is 0 to 100000, default is 20.
ssl-certificate-install
This command is used to install a SSL certificate. The no form of this command will override an existing certificate with a default one. Syntax ssl-certificate-install [directory {swdepot: | ftproot: | /}] no ssl-certificate-install [directory {swdepot: | ftproot: | /}] Parameters Parameter directory Description Optional parameter indicating the location of the certificate file. Default ftproot
Mode EXEC
stamp
NetSocket, Inc. - Proprietary and Confidential 5-417
Enables the inclusion of timestamps in the trace file (default). The no form of this command disables the inclusion of timestamps. Syntax stamp no stamp Mode Traceoptions Configuration
stream-capture
The stream-capture command is used to setup capturing filter for a SVA host to capture a stream of packets and associate related packets to an identified flow. The current implementation of the command is specifically for RTP streams. The RTP packets should be associated with routed interface either in one direction or both. Mixing RTP packet streams across multiple routed interfaces will decrease the usability of the collected metrics for identifying where the service degradation is occurring in the network.
Syntax stream-capture interface <if-name> router-ip <router-ip> router-interface-ip <routerinterface-ip> [direction {both | ingress | egress}] [port-range <first-port> <last-port>] [message-filter {rtp}] no stream-capture interface <if-name> router-ip <router-ip> router-interface-ip <routerinterface-ip> [direction {both | ingress | egress}] [port-range <first-port> <last-port>] [message-filter {rtp}]
Parameters Parameter interface router-ip router-interface-ip Description Required parameter, the <if-name> specifies the Ethernet interface for tapping on a specific SVA host. Required parameter which specifies the router IP address the stream is associated with. Required parameter which specifies the IP address of the router interface the stream is associated with.
5-418
direction
Optional parameter with a default value of egress. A value of ingress specifies the stream is being received by the router interface. A value of egress specifies the stream is being transmitted by the router interface. A value of both infers that both directions are being combined in a single SPAN port. NOTE: combining both directions should be avoided unless it is guaranteed not to cause over subscription or added delay. Optional parameter specifying the UDP port range used for identifying streams. The default value of the first port is 5000 and the default value of the last port is 65535. For RTP 5060 is always ignored. As noted previously the only stream currently supported is RTP streams.
port-range
message-filter
summary-address (OSPF)
Creates summary routes (aggregates) for routes that are being redistributed from other routing protocols into OSPF. The no form of this command removes the aggregate address. Syntax summary-address [ip-address/mask-length | ip-address netmask] [not-advertise | tag tagvalue] no summary-address [ip-address/mask-length | ip-address netmask] [not-advertise | tag tagvalue] Parameters Parameter ip-address/mask-length ip-address netmask not-advertise tag-value Mode Description Summary routes IP address and prefix netmask length (in bits). Summary routes IP address and prefix netmask. Routes that are covered by the summaryaddress will not be advertised by this router. Range is 0 to 4294967295.
5-419
sv-config
Each of the servers deployed as part of the visibility solution requires configuration information specific to the deployment which is unknown during system installation in the factory. This command provides a mechanism for the default installation information to be changed to align with the specific deployment criteria. The passwords in this command affect the shell login only and do not interact with the user accounts established via CLI. The sva-analogue SV type is used to enable measurement of analogue metrics from received bidirectional voice RTP streams on an SVA. This command changes configuration files on the server which will take effect following a system reboot.
5-420
Syntax sv-config [root-password root-password ] [admin-password admin-password] [ sv-type svm | svp | sva | sva-analogue ] [ deployment-type voip | dmh | femto | unistim ]
Parameters Parameter root-password admin-password sv-type deployment-type Mode User EXEC Description Change the shell root password. Change the shell admin password. Indicate the role the service visibility type of the node. Indicate the type of deployment.
switch network
This command switches operations from public network to private network. This command is only valid on the SVP. Syntax switch network Mode EXEC
synchronization
Configures BGP to synchronize with the Interior Gateway Protocol (IGP). The no form of this command disables synchronization between BGP and the IGP (default). Syntax synchronization no synchronization Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast)
5-421
Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
table-map (BGP)
Sets route metric, tag information and other attributes in the IP routing table for learned routes, rather than using the default values. The no form of this command disables the use of the routemap for updating the IP routing table. Syntax table-map route-map-name no table-map [route-map-name] Parameters Parameter route-map-name Description Route map that specifies route metric and tag information for BGP-learned routes to be added to the IP routing table.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Address Family Configuration (IPv4 Unicast VRF) Address Family Configuration (IPv4 Multicast) Address Family Configuration (IPv6 Unicast) Address Family Configuration (IPv6 Unicast VRF) Address Family Configuration (IPv6 Multicast) Address Family Configuration (VPNv4 Unicast) Address Family Configuration (VPNv4 Multicast) Address Family Configuration (VPNv6 Unicast) Address Family Configuration (VPNv6 Multicast)
table-map (OSPF)
Sets route metric, tag information, and other attributes in the IP routing table for learned routes using the the specified route map, rather than the default values. The no form of this command disables the use of the route-map for updating the IP routing table. Syntax
5-422
table-map route-map-name no table-map [route-map-name] Parameters Parameter route-map-name Description Route map that specifies route metric and tag information for BGP-learned routes to be added to the IP routing table.
tacacs-server host
Sets a TACACS+ server host to be used by the RCP. The no form of this command removes a TACACS+ server host. Syntax tacacs-server host {host | ip-address} *[key [encryption-type] key-value | port port-value | single-connection | timeout seconds] no tacacs-server host {host | ip-address} *[key [encryption-type] key-value | port port-value | single-connection | timeout seconds] Parameters Parameter host ip-address encryption-type Description Name of TACACS+ server host. IP address of TACACS+ server host. Specifies whether the key that follows is encrypted. A value of 0 (default) indicates the following key is not encrypted, and a value of 7 indicates the following key is encrypted. Authentication key value, range is 1 to 8 alpha-numeric-symbolic characters (cannot begin with a # character and spaces are not allowed), default is the value set by the tacacs-server key command. TACACS+ server host port number, range is 1 to 65535, default is 49.
key-value
port-value
5-423
single-connection
Specifies that a single connection be maintained for TACACS+ server host confirmation. Number of seconds to wait for the TACACS+ server host to respond before resending a TACACS+ request, range is 1 to 1000, default is the value set by the tacacs-server timeout command.
seconds
tacacs-server key
Sets the authentication key for all TACACS+ requests and responses. The no form of this command disables the authentication key. Syntax tacacs-server key [encryption-type] key-value no tacacs-server key [[encryption-type] key-value] Parameters Parameter encryption-type Description Specifies whether the key that follows is encrypted. A value of 0 (default) indicates the following key is not encrypted, and a value of 7 indicates the following key is encrypted. Authentication key value, range is 1 to 8 alpha-numeric-symbolic characters (cannot begin with a # character and spaces are not allowed).
key-value
tacacs-server timeout
Sets the duration of time to wait for a TACACS+ server host to respond. The no form of this command sets the default.
5-424
Syntax tacacs-server timeout seconds no tacacs-server timeout [seconds] Parameters Parameter seconds Description Number of seconds to wait for a TACACS+ server host to respond, range is 1 to 1000, default is 5.
telnet
Opens a Telnet connection with a remote host. Syntax telnet {host | ip-address} *[port | 8bit | source-interface interface-name] Parameters Parameter host ip-address port 8bit source-interface interface-name Description Name of the destination host. IP address of the destination host. TCP port number of the destination host, range is 1 to 65535, default is 23. Use an 8-bit data path. Set the Telnet connection source address to a specified interface value. {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}.
5-425
terminal exec-timeout
Sets the EXEC command line interpreter timeout period for the current session (specifying 0 minutes and 0 seconds disables the timeout function). The no form of this command sets the EXEC command line interpreter timeout period for the current session to the system default value set by the exec-timeout command (default). Syntax terminal exec-timeout minutes [seconds] terminal no exec-timeout [minutes [seconds]] Parameters Parameter minutes seconds Description Number of minutes, range is 0 to 65535. Additional number of seconds, range is 0 to 65535, default is 0.
terminal history
Enables the command line history feature for the current session (default). Alternatively, with the size keyword specified, this command sets the number of lines in the history buffer for the current session. The terminal no history form of this command disables the command line history feature. The terminal no history size form of this command sets the size of the history buffer to the default value. Syntax terminal history [size buffer-size] terminal no history [size [buffer-size]] Parameters Parameter buffer-size Description Number of lines in the history buffer, range is 0 to 255, default is 10.
5-426
terminal length
Sets the number of display lines per screen for the current session. The no form of this command sets the number of display lines per screen to the system default value set by the length command (default). Syntax terminal length screen-length terminal no length [screen-length] Parameters Parameter screen-length Description Number of lines displayed on the terminal, range is 0 to 512. A value of 0 disables pausing between full screens of output.
Mode User EXEC Guidelines This command is used to set the session page size for paged output applications.
terminal monitor
Enables the output of debug and error messages for the current session. The no form of this command disables the output of debug and error messages (default). Syntax terminal monitor [self] terminal no monitor [self] Parameters Parameter self Description Enable output of debug and error messages for self RCP only (do not display output from peer RCP).
5-427
terminal width
Sets the number of characters per display line for the current session. The no form of this command sets the number of characters per display line to the system default value set by the width command (default). Syntax terminal width characters terminal no width [characters] Parameters Parameter characters Description Width (in characters) of the text displayed on the terminal, range is 0 to 512.
timers bgp
Sets the values for BGP timers. The no form of this command resets the BGP timers to their default values. Syntax timers bgp keepalive-timer hold-timer no timers bgp [keepalive-timer hold-timer] Parameters Parameter keepalive-timer Description Frequency, in seconds, at which KEEPALIVE messages are sent to the specified peer-group or peer, range is 0 to 4294967295 (but the value must be less than the hold-timer), default is 60 seconds, a value of 0 specifies infinity.
5-428
hold-timer
Amount of time that can lapse between successive KEEPALIVE or UPDATE messages before this router considers the specified peer dead, range is 0 to 4294967295, default is 180 seconds, a value of 0 specifies infinity.
Mode Router Configuration (BGP) Address Family Configuration (IPv4 Unicast) Guidelines The keepalive-timer value specified must be less than the hold-timer value specified.
timers copsrm
This command specifies the global COPS-RM keep alive and dead timer values. A keep alive timer value of 0 turns off the sending of keep alive messages. The no form of this command regardless of parameter value, returns the settings to their default value. Syntax timers copsrm <tx-keep-alive-interval> <rx-dead-interval> no timers copsrm <tx-keep-alive-interval> <rx-dead-interval> Parameters Parameter tx-keep-aliveinterval rx-dead-interval Description Time in seconds between sending of keep alive messages. Time lapse between messages before peer is assumed dead. Type/Range 0-65535 seconds 0-65535 seconds 60 180 Default
timers spf
Sets the routers SPF timers for OSPF routing protocol. The no form of this command sets the timers to their default values. Syntax timers spf spf-delay spf-holdtime
5-429
no timers spf [spf-delay spf-holdtime] Parameters Parameter spf-delay Description Amount of time in seconds between when OSPF receives a topology change and when it starts a shortest path first calculation, range is 0 to 65535, default is 5. Minimum time, in seconds, between two consecutive SPF calculations, range is 0 to 65535, default is 10.
spf-holdtime
topology-link
Manually connects interfaces of two different routers. A user is able to use the command when there is no routing protocol connecting two routers and the topology manager cannot discover connectivity between the routers. The connection is bidirectional in such case. Syntax topology-link host-address ip-address interface-name interface-name-string to hostaddress ip-address interface-name interface-name-string no topology-link host-address ip-address interface-name interface-name-string to hostaddress ip-address interface-name interface-name-string Parameter ip-address Description IP address, in the format of a.b.c.d, which represents the node-id of a node in the network. The name of the link or interface in a string format.
interface-name-string
Mode Topology-Map Configuration Guidelines The two interfaces, between which the connection is being established, shall have the same interface type. Otherwise the connectivity cannot be established. Configuration on the loopback interface has no effect.
5-430
topology-map
To configure SVP topology related information, use the topology-map command in global configuration mode. This command puts CLI in topology-map mode which enables topology map configuration commands to be entered. Syntax topology-map <map-name> no topology-map <map-name> Parameters Parameter map-name Description name of the map that identifies the topology map Type/Range String Default None
topology-unlink
Manually disconnects interfaces of two different routers. If routing protocol is not running between two routers, a user is able to manually disconnect interfaces of two different routers. The connection is bidirectional in such case. Syntax topology-unlink host-address ip-address interface-name interface-name-string to hostaddress ip-address interface-name interface-name-string no topology-unlink host-address ip-address interface-name interface-name-string to hostaddress ip-address interface-name interface-name-string Parameter ip-address Description IP address, in the format of a.b.c.d, which represents the node-id of a node in the network. The name of the link or interface in a string format.
interface-name-string
5-431
traceoptions
Enters into the Traceoptions Configuration Mode to configure trace options for the specified trace file. The no form of this command removes all trace options for the specified trace file, or for all trace files if no trace file is specified. Syntax traceoptions trace-filename no traceoptions [trace-filename] Parameters Parameter trace-filename Mode Global Configuration Guidelines When attempting to remove all trace options for all trace files, a confirmation message will be displayed. Type y to continue or n to cancel this command. Description Filename of the trace file.
traceroute (privileged)
Displays the actual IP routes that a packet takes through the network. Syntax traceroute [{host | ip-address} *[loose {host | ip-address}... | maxttl hops | minttl hops | numeric | port number | probes count | size bytes | source {host | interface-name | ipaddress} | timeout seconds | tos type]] Parameters Parameter host ip-address Description Name of the destination host. IP address of the destination host.
5-432
loose {host | ip-address} maxttl hops minttl hops numeric port number
Specify nodes that must be used in the route. Maximum time for time-to-live value, range is 1 to 30, default is 30. Minimum time for time-to-live value, range is 1 to 30, default is 1. Only numeric addresses are displayed. For UDP and TCP, the base number used in probes, range is 1 to 65535, default is 33434. Number of probes per hop, range is 1 to 255, default is 3. Size of the trace datagram in bytes, range is 40 to 32768, default is minimum required (40 bytes plus bytes needed for ip options). Source name for outgoing packets. Source interface for outgoing packets. {admin 0 | loopback loopback-number | nnet rcp-number | port-chan channelnumber[.subinterface] | pos-chan channelnumber | tunnel tunnel-number}. Source address for outgoing packets. Number of seconds to wait for a response to a probe, range is 2 to 86399, default is 3. Type of service, range is 0 to 255, default is 0.
If this command is issued without options, the user is prompted with the following fields: Parameter Target IP address Source address or interface Numeric display [n] Timeout in seconds [3] Probe count [3] Minimum Time to Live [1] Description IP address of the destination host. Source name or address, or interface-name for outgoing packets. Only numeric addresses are displayed, default is no. Number of seconds to wait for a response to a probe, range is 2 to 86399, default is 3. Number of probes per hop, range is 1 to 255, default is 3. Minimum time for time-to-live value, range is 1 to 30, default is 1.
5-433
Maximum time for time-to-live value, range is 1 to 30, default is 30. For UDP and TCP, the base port number used in probes, range is 1 to 65535, default is 33434. Specify nodes that must be used in the route. Up to 8 IP addresses separated by spaces. Size of the trace datagram in bytes, range is 40 to 32768, default is minimum required (40 bytes plus bytes needed for ip options). Type of service, range is 0 to 255, default is 0.
Mode Privileged EXEC Guidelines If a datagram size is specified and it is insufficient to support the additional number of bytes required for the loose source route specified: a) the command line form of the command will be denied with an error message; b) the prompted form of the command will display an error message after the datagram size entry and allow the user to re-enter the datagram size.
traceroute (user)
Displays the actual IP routes that a packet takes through the network. Syntax traceroute {host | ip-address} Parameters Parameter host ip-address Mode User EXEC Description Name of the destination host. IP address of the destination host.
tsr
5-434
Tunnel Success Ratio (TSR) is a percentage of tunnel establishment attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the TSR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the TSR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the Tunnel Success Ratio. The command is validated to make sure the set threshold is less than or equal to the clear threshold. Syntax tsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no tsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
tunnel
Enables tunnel debug messages to be placed in the trace file. The no form of this command disables tunnel debug messages from being placed in the trace file (default). Syntax tunnel
5-435
tunnel destination
Sets the destination for a tunnel interface. The no form of this command removes the destination for the tunnel interface. Syntax tunnel destination ip-address no tunnel destination [ip-address] Parameters Parameter ip-address Mode Interface Configuration (Tunnel) Description IP address of the host destination.
tunnel source
Sets the source address of an IP tunnel to the indicated address or the address configured on a particular interface. This command is supported for GRE, IPIP and EON tunnels only.
5-436
Syntax tunnel source {ip-address | interface-name} no tunnel source {ip-address | interface-name} Parameters Parameter ip-address interface-name Description IP address to be used for source address of an IP tunnel. Interface to be used as source address of an IP tunnel.
uersp
If the SVA is enabled for performing analogue metric collection, it will process the RTP payload of voice call streams and determine the echo annoyance rating. The rating can be any of the following: None Detected Side Tone Acceptable Unacceptable When a call is labeled as having unacceptable echo, it is marked as being degraded. This command specifies the percentage of degraded sessions to all sessions measured for determining if an alert should be generated. If the calculated percentage is greater than the configured percentage, an alert will be generated. The command replaces the existing UERSP settings for the intervals specified. The no form of the command with no arguments disables the UERSP alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the UERSP alert for that time interval. Syntax uersp {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no uersp {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 Description set/clear thresholds for first interval of the day. Type/Range Default None
5-437
interval2
set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. If the percentage of sessions with echo degradation is greater than this value an alarm will be sent. If the percentage of sessions with echo degradation is less than or equal to this value the alarm will be cleared. 0-99
None
clear
0-99
none
username
This command is used to add or modify a user on the SVP and SVM. The no form will remove a user from the system. Syntax username <username> [privilege <level>] [password [0|7] <password-string> [xml | gui]] no username <username> [privilege <level>] [{password [0|7] <password-string> [xml | gui]}] Parameters Parameter <username> privilege <level> <passwordstring> Description The username for the user to be added. Privilege level of the user, optional. password string, limited to 25 characters. Range 1-25 characters 0-15 1-25 Default none 1 none
5-438
[xml | gui]
optional flag indicating the account type. xml: xml account type. gui: web only account.
none
none
validate
Checks the route-map that is currently being modified for errors in the use of the route-map. Syntax validate Mode IP Policy-List Configuration Route-Map Configuration Route-Map Assign Guidelines This command does the same thing as validate route-map, but only for the route-map being modified.
validate policy-list
Checks the specified policy-list (or all policy-lists if none is specified) for correctness and references to missing access-lists or other objects. Syntax validate policy-list [policy-list-id] Parameters Parameter policy-list-id Mode Privileged EXEC Description Policy list name of policy list to be validated.
5-439
validate policy
Checks the specified protocol (or all protocols if none is specified) for errors in the use of routemaps and access-lists. Syntax validate policy [bgp | isis [isis-tag] | ospf [ospf-id]] Parameters Parameter bgp isis [isis-tag] Description Checks route-maps and access-lists used in BGP. Checks route-maps and access-lists used in the IS-IS processes specified by isis-tag, or all IS-IS processes if no isis-tag is entered. Checks route-maps and access-lists used in the OSPF process specified by instance-id, or all OSPF processes if no instance-id is entered.
ospf [instance-id]
Mode Privileged EXEC Guidelines This command shows where undefined access-lists or route-maps are specified in the configuration. This command also shows where route-maps use match and set conditions that are not consistent with where the route-maps are being used (e.g., match community in OSPF default-originate route-map).
validate route-map
Checks the specified route-map (or all route-maps if none is specified) for errors in the use of the route-map. Syntax validate route-map [route-map-name] Parameters Parameter route-map-name Description Route map to be validated.
5-440
vrrp-mib
This command enables the SVP to gather information from the router's VRRP MIB. VRRP is deployed at the access point to a network to provide redundancy to hosts connected via a layer 2 network. By enabling this feature for the routers involved in the VRRP scheme, the SVP can accurately determine which router is receiving traffic from the hosts and performing the IP forwarding on behalf of the access network. NOTE: This feature relies on snmp polling being configured for the router in question. If it is not enabled, VRRP collection will not be performed. If the no form of this command is issued, the system will not collect VRRP information from the router. Syntax vrrp-mib [poll-multiple <poll-multiple>] no vrrp-mib [poll-multiple <poll-multiple>] Parameters Parameter poll-multiple Description Number of SNMP poll intervals between vrrp-mib polls. E.g. if snmp-access poll interval is 90 seconds and this value is 2, the qos-mib will be polled every 180 seconds. Poll interval should be less than 5 minutes. Type/Range 1-10 1 Default
vsr
Video Success Ratio (VSR) is an aggregate percentage of video session attempts that are successful. The command replaces the existing settings for the intervals specified. The no form of the command with no arguments disables the VSR alert for all time intervals. The no form of the command with a single interval, regardless of set/clear threshold value, will disable the VSR alert for that time interval. This command enables generation of alerts to the SVM and traps to the NMS based on the
5-441
Video Success Ratio. The set threshold must be less than or equal to the clear threshold per time interval. Syntax vsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } no vsr {[interval1 set <set> clear <clear>] [interval2 set <set> clear <clear>] [interval3 set <set> clear <clear>] [interval4 set <set> clear <clear>] } Parameters Parameter interval1 interval2 interval3 interval4 set clear Description set/clear thresholds for first interval of the day. set/clear thresholds for second interval of the day. set/clear thresholds for third interval of the day. set/clear thresholds for fourth interval of the day. Value of ratio is less than this value, alert will set. Value of ratio is greater than or equal to this value, alert will clear. 00 to 100 where 00 implies off. 00 to 100 Type/Range Default None None None None 00 00
wall
Sends an asynchronous user message to all users. Syntax wall [partition {all | {admin | hostname | partition-number}}] Parameters Parameter partition Description Send to a specified partition, set of partitions, or all partitions. If omitted, send to the current partition.
5-442
hostname
Hostname of a router partition, range is 1 to 63 alphanumeric or hyphen characters (the first or last character cannot be a hyphen). Router partition number, range is 0 to 5.
whatis
Displays output from a keyword search in the man-page database. Syntax whatis keyword Parameters Parameter keyword Description Text string to search in the man-page database.
Mode All command modes Guidelines The man-page database only contains the names of the CLI commands.
width
Sets the number of characters per display line. The no form of this command sets the number of characters per display line to automatically be determined using the negotiated login window size (default). Syntax width characters no width [characters] Parameters Parameter Description
5-443
characters
Width (in characters) of the text displayed on the terminal, range is 0 to 512.
world-readable
Enables the other file system read permission bit for the trace file (default). The no form of this command disables the other file system read permission bit. Syntax world-readable no world-readable Mode Traceoptions Configuration
5-444