PowerConnect B-FCXs - Network switch DELL - Free user manual and instructions

USER MANUAL PowerConnect B-FCXs DELL

Information in this document is subject to change without notice.

© 2011 Dell Inc. All rights reserved.

Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden.

Trademarks used in this text: Dell, the DELL logo, Dell OpenManage and PowerConnect are trademarks of Dell Inc.; Microsoft, Windows, and Windows Service are either trademarks or registered trademarks of Microsoft Corporation in the United States and/or other countries.

Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell Inc. disclaims any proprietary interest in trademarks and trade names other than its own.

Regulatory Model Code: FCX624-I, FCX624-E, FCX624-S, FCX648-I, FCX648-E, FCX648-S.

Contents

About This Document

Introduction xxxix

Device nomenclature .... xxxix

Audience xxxix

Document conventions....xl

Text formatting....xl

Command syntax conventions .....xl

Notes, cautions, and danger notices....xl

Notice to the reader ....xli

Related publications.... xli

Getting technical help.... xli

Contacting Dell.... xli

Chapter 1 Getting Familiar with Management Applications

Using the management port 1

How the management port works....1

CLI Commands for use with the management port. 2

Logging on through the CLI....3

On-line help 4

Command completion 4

Scroll control. 4

Line editing commands 5

Chapter 2 Configuring Basic Software Features

Configuring basic system parameters....18

Entering system administration information .....18

Configuring Simple Network Management Protocol (SNMP)

parameters....19

Disabling Syslog messages and traps for CLI access .....22

Cancelling an outbound Telnet session . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23

Specifying a Simple Network Time Protocol (SNTP) server. . . .23

Setting the system clock 25

Limiting broadcast, multicast, and unknown unicast traffic...27

Configuring CLI banners 29

Configuring a local MAC address for Layer 2 management traffic32

Configuring basic port parameters ....32

Assigning a port name....32

Modifying port speed and duplex mode....33

Enabling auto-negotiation maximum port speed

advertisement and down-shift 33

Modifying port duplex mode 36

Configuring MDI/MDIX. 37

Disabling or re-enabling a port....38

Configuring flow control....38

Configuring symmetric flow control on PowerConnect B-Series FCX

devices 40

Configuring PHY FIFO Rx and Tx depth....44

Configuring the IPG on PowerConnect Stackable devices ....44

Enabling and disabling support for 100BaseTX .....45

Enabling and disabling support for 100BaseFX .....45

Changing the Gbps fiber negotiation mode .....46

Modifying port priority (QoS) 47

Dynamic configuration of Voice over IP (VoIP) phones ..... 47

Configuring port flap dampening .....48

Port loop detection....52

Loading and saving configuration files....65

Replacing the startup configuration with the running configuration 65

Replacing the running configuration with the startup configuration 66

Logging changes to the startup config file .....66

Copying a configuration file to or from a TFTP server .....66

Dynamic configuration loading....67

Maximum file sizes for startup-config file and running-config .69

Loading and saving configuration files with IPv6....69

Using the IPv6 copy command....69

Copying a file from an IPv6 TFTP server....70

Using the IPv6 ncopy command 71

Uploading files from an IPv6 TFTP server .....72

Using SNMP to save and load configuration information .....73

Erasing image and configuration files 74

Scheduling a system reload 74

Reloading at a specific time 74

Reloading after a specific amount of time....75

Displaying the amount of time remaining before

a scheduled reload 75

Canceling a scheduled reload....75

Diagnostic error codes and remedies for TFTP transfers.....75

Testing network connectivity 76

Pinging an IPv4 address 76

Tracing an IPv4 route....78

Chapter 4 Software-based Licensing

Software license terminology....79

Software-based licensing overview....80

How software-based licensing works ....80

Viewing information about software licenses 91

Viewing the License ID (LID) 91

Viewing the license database....92

Viewing software packages installed in the device .....93

Chapter 5 Stackable Devices

IronStack overview 95

IronStack technology features 95

Stackable models 96

IronStack terminology....96

Building an IronStack 98

IronStack topologies 98

Software requirements....100

IronStack construction methods.....100

Scenario 1 - Configuring a three-member IronStack

in a ring topology using secure-setup....101

Scenario 2 - Configuring a three-member IronStack

in a ring topology using the automatic setup process.....105

Scenario 3 - Configuring a three-member IronStack

in a ring topology using the manual configuration process ..108

Configuring an FCX IronStack....109

Configuring PowerConnect B-Series FCX stacking ports....109

Configuring a default stacking port to function as

a data port ....115

Verifying an IronStack configuration....116

Managing your IronStack....118

Logging in through the CLI....118

Logging in through Brocade Network Advisor ....118

Logging in through the console port....118

IronStack management MAC address....120

Removing MAC address entries .....122

CLI command syntax....124

IronStack OI commands 124

Image mismatches....154

Advanced feature privileges (PowerConnect B-Series FCX) . .154

Configuration mismatch ....155

Memory allocation failure .....156

Recovering from a mismatch .....156

Troubleshooting secure-setup....157

Troubleshooting unit replacement issues ....158

More about IronStack technology ....158

Configuration, startup configuration files and stacking flash.158

IronStack topologies .....159

Port down and aging....159

Device roles and elections 159

PowerConnect B-Series FCX hitless stacking .....162

Supported events....163

Non-supported events....163

Supported protocols and services .....163

Configuration notes and feature limitations .....165

What happens during a hitless stacking switchover or

failover 166

Standby Controller role in hitless stacking....168

Support during stack formation, stack merge,

and stack split ....169

Hitless stacking default behavior....173

Hitless stacking failover....175

Hitless stacking switchover 176

Displaying information about hitless stacking....183

Syslog messages for hitless stacking failover and switchover183

Displaying hitless stacking diagnostic information .....184

Chapter 6 Monitoring Hardware Components

Virtual cable testing .....189

Configuration notes....189

Command puntav 180

IPv6 management features....199

IPv6 management ACLs 199

IPv6 debug....200

IPv6 Web management using HTTP and HTTPS .....200

IPv6 logging .....201

Name-to-IPv6 address resolution using IPv6 DNS server....201

Defining an IPv6 DNS entry....201

IPv6 ping....202

SNTP over IPv6. 203

SNMP3 over IPv6 203

Specifying an IPv6 SNMP trap receiver .....203

Secure Shell, SCP, and IPv6 204

IPv6 Telnet....204

IPv6 traceroute....205

IPv6 management commands....205

Chapter 8 Configuring Spanning Tree Protocol (STP) Related Features

STP overview....207

Configuring standard STP parameters.....208

STP parameters and defaults....208

Enabling or disabling the Spanning Tree Protocol (STP) .....209

Changing STP bridge and port parameters....210

STP protection enhancement....212

Displaying STP information .....214

Configuring STP related features....223

Fast port span 223

Fast Uplink Span 225

802.1W Rapid Spanning Tree (RSTP) 227

802.1W Draft 3 265

Single Spanning Tree (SSTP) 269

STP per VLAN group 27

PVST/PVST+ compatibility 275

Error disable recovery....286

Enabling error disable recovery .....286

Setting the recovery interval .....286

Displaying the error disable recovery state by interface . . . .287

Displaying the recovery state for all conditions .....287

Displaying the recovery state by port number and cause....287

Errdisable Syslog messages....288

802.1s Multiple Spanning Tree Protocol .....288

Multiple spanning-tree regions 288

Configuration notes 290

Configuring MSTP mode and scope....290

Reduced occurrences of MSTP reconvergence .....291

Configuring additional MSTP parameters .....293

Chapter 9 Configuring Basic Layer 2 Features

About port regions....306

PowerConnect B-Series FCX device port regions.....306

Enabling or disabling the Spanning Tree Protocol (STP)....306

Modifying STP bridge and port parameters .....307

MAC learning rate control ....307

Changing the MAC age time and disabling MAC address learning 307

Disabling the automatic learning of MAC addresses .....308

Displaying the MAC address table 308

Configuring static MAC entries....308

Multi-port static MAC address....309

Configuring VLAN-based static MAC entries .....310

Clearing MAC address entries....310

Flow-based MAC address learning....311

Feature overview 311

The benefits of flow-based learning....311

Displaying and modifying system parameter default settings . . .321

Configuration considerations....321

Displaying system parameter default values .....321

Modifying system parameter default values .....325

TDynamic Buffer Allocation for an IronStack....326

Generic buffer profiles on PowerConnect Stackable devices .329

Remote Fault Notification (RFN) on 1G fiber connections .....329

Enabling and disabling remote fault notification....330

Link Fault Signaling (LFS) for 10G....330

Jumbo frame support....331

Chapter 10 Configuring Metro Features

Topology groups....333

Master VLAN and member VLANs ....334

Control ports and free ports 334

Configuration considerations....334

Configuring a topology group ....335

Displaying topology group information ....336

Metro Ring Protocol (MRP) 337

Configuration notes 339

MRP rings without shared interfaces (MRP Phase 1) .....339

MRP rings with shared interfaces (MRP Phase 2). . . . . . . . .340

Ring initialization ....341

How ring breaks are detected and healed ....346

Master VLANs and customer VLANs. 348

Configuring MRP 349

Using MRP diagnostics ....352

Displaying MRP information ....353

MRP CLI example ....355

Virtual Switch Redundancy Protocol (VSRP) 357

Configuration notes and feature limitations .....358

Chapter 11 Configuring Uni-Directional Link Detection (UDLD) and Protected Link Groups

UDLD overview 383

UDLD for tagged ports ....384

Configuration notes and feature limitations ....384

Enabling UDLD 385

Enabling UDLD for tagged ports ....385

Changing the Keepalive interval .385

Changing the Keepalive retries....386

Displaying UDLD information ....386

Clearing UDLD statistics ....388

Protected link groups 388

About active ports 389

Using UDLD with protected link groups ....389

Configuration notes 389

Creating a protected link group and assigning

an active port ....390

Chapter 12 Configuring Trunk Groups and Dynamic Link Aggregation

Trunk group overview 393

Trunk group connectivity to a server....394

Trunk group rules 395

Trunk group configuration examples ....396

Support for flexible trunk group membership .....398

Trunk group load sharing....398

Configuring a trunk group....400

CLI syntax for configuring consecutive ports in a trunk group400

CLI syntax for configuring non-consecutive ports in a trunk group401

Example 1: Configuring the trunk groups shown

in Figure 78 ....401

Example 2: Configuring a trunk group that spans

two Gbps Ethernet modules in a chassis device .....402

Dynamic link aggregation ....410

IronStack LACP trunk group configuration example .....411

Examples of valid LACP trunk groups .....411

Configuration notes and limitations....412

Adaptation to trunk disappearance .....413

Flexible trunk eligibility 413

Enabling dynamic link aggregation....414

How changing the VLAN membership of a port

affects trunk groups and dynamic keys 416

Additional trunking options for LACP trunk ports. 416

Link aggregation parameters 416

Displaying and determining the status of aggregate links.....421

Events that affect the status of ports in an aggregate link. . .422

Displaying link aggregation and port status information ....422

Displaying LACP status information ....424

Clearing the negotiated aggregate links table .....425

Configuring single link LACP....425

Configuration notes 425

CLI syntax....425

Chapter 13 Configuring Virtual LANs (VLANs)

VLAN overview 427

Types of VLANs....427

Default VLAN 433

802.1Q tagging 434

Spanning Tree Protocol (STP)....437

Virtual routing interfaces....437

VLAN and virtual routing interface groups .....439

Dynamic, static, and excluded port membership .....439

Super aggregated VLANs....441

Trunk group ports and VLAN membership .....441

Summary of VLAN configuration rules....442

Configuring IP subnet, IPX network, and protocol-based VLANs within port-based VLANs....454

Configuring an IPv6 protocol VLAN .....458

Routing between VLANs using virtual routing interfaces (Layer 3 Switches only) .....458

Configuring protocol VLANs with dynamic ports ....464 Aging of dynamic ports ....465 Configuration guidelines ....466

Configuring an IP, IPX, or AppleTalk Protocol VLAN with Dynamic Ports .....466 Configuring an IP subnet VLAN with dynamic ports .....466 Configuring an IPX network VLAN with dynamic ports .....467

Configuring uplink ports within a port-based VLAN ....468 Configuration considerations....468 Configuration syntax....468

Configuring the same IP subnet address on multiple port-based VLANs. 469

Configuring VLAN groups and virtual routing interface groups . . . 472 Configuring a VLAN group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Configuring a virtual routing interface group. . . . 474 Displaying the VLAN group and virtual routing interface group information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Allocating memory for more VLANs or virtual routing interfaces. 476

Configuring super aggregated VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Configuring notes. 480 Configuring aggregated VLANs. 480 Verifying the configuration. 481 Complete CLI examples. 481

Configuring 802.1Q-in-Q tagging....484 Configuration rules....485

Displaying VLAN information ....500

Displaying VLANs in alphanumeric order ....500

Displaying system-wide VLAN information ....501

Displaying global VLAN information....502

Displaying VLAN information for specific ports .....502

Displaying a port VLAN membership .....503

Displaying a port dual-mode VLAN membership .....503

Displaying port default VLAN IDs (PVIDs)....503

Displaying PVLAN information....504

Chapter 14 Configuring GARP VLAN Registration Protocol (GVRP)

GVRP overview....505

Application examples....506

Dynamic core and fixed edge....506

Dynamic core and dynamic edge .....507

Fixed core and dynamic edge....508

Fixed core and fixed edge 508

VLAN names 508

Configuration notes....508

Configuring GVRP ....510

Changing the GVRP base VLAN ID ....510

Increasing the maximum configurable value of the Leaveall timer

510

Enabling GVRP....511

Disabling VLAN advertising....511

Disabling VLAN learning ....512

Changing the GVRP timers ....512

Converting a VLAN created by GVRP into a statically-configured VLAN514

Displaying GVRP information ....514

Displaying GVRP configuration information ....515

Displaying GVRP VLAN information....517

Configuration notes and feature limitations .....529

Configuration example....530

Configuring MAC-based VLANs....531

Using MAC-based VLANs and 802.1X security on the same port531

Configuring generic and Dell vendor-specific attributes on the

RADIUS server 532

Aging for MAC-based VLAN ....533

Disabling aging for MAC-based VLAN sessions .....534

Configuring the maximum MAC addresses per port .....535

Configuring a MAC-based VLAN for a static host .....535

Configuring MAC-based VLAN for a dynamic host .....536

Configuring dynamic MAC-based VLAN ....536

Configuring MAC-based VLANs using SNMP ....537

Displaying Information about MAC-based VLANs .....537

Displaying the MAC-VLAN table....537

Displaying the MAC-VLAN table for a specific MAC address .537

Displaying allowed MAC addresses ....538

Displaying denied MAC addresses....538

Displaying detailed MAC-VLAN data ....539

Displaying MAC-VLAN information for a specific interface ...541

Displaying MAC addresses in a MAC-based VLAN .....542

Displaying MAC-based VLAN logging ....543

Clearing MAC-VLAN information 543

Sample application 543

Chapter 16 Configuring Rule-Based IP Access Control Lists (ACLs)

ACL overview 548

Types of IP ACLs 548

ACL IDs and entries 548

Numbered and named ACLs....549

Default ACL action 549

Preserving user input for ACL TCP/UDP port numbers.....566

Managing ACL comment text 567

Adding a comment to an entry in a numbered ACL....567

Adding a comment to an entry in a named ACL....568

Deleting a comment from an ACL entry....568

Viewing comments in an ACL 568

Applying an ACL to a virtual interface in a protocol-

or subnet-based VLAN 569

Enabling ACL logging....570

Enabling strict control of ACL filtering of fragmented packets. . . .572

Enabling ACL support for switched traffic in the router image ...573

Enabling ACL filtering based on VLAN membership or VE port

membership ....573

Configuration notes 574

Applying an IPv4 ACL to specific VLAN members on

a port (Layer 2 devices only) 574

Applying an IPv4 ACL to a subset of ports on a virtual

interface (Layer 3 devices only) .....575

Using ACLs to filter ARP packets 576

Configuration considerations....576

Configuring ACLs for ARP filtering....576

Displaying ACL filters for ARP 577

Clearing the filter count....578

Filtering on IP precedence and ToS values....578

TCP flags - edge port security ....578

QoS options for IP ACLs 579

Configuration notes for PowerConnect B-Series FCX devices.579

Using an IP ACL to mark DSCP values (DSCP marking)....580

DSCP matching ....581

ACL-based rate limiting....582

QoS for stackable devices ....595

QoS profile restrictions in an IronStack .....595

QoS behavior for trusting Layer 2 (802.1p) in an IronStack . .595

QoS behavior for trusting Layer 3 (DSCP) in an IronStack . . .595

QoS behavior on port priority and VLAN priority

in an IronStack ....596

QoS behavior for 802.1p marking in an IronStack .....596

QoS queues....596

Assigning QoS priorities to traffic....596

Changing a port priority....597

Assigning static MAC entries to priority queues....597

Buffer allocation/threshold for QoS queues .....598

802.1p priority override ....598

Configuration notes and feature limitations .....598

Enabling 802.1p priority override .....598

Marking....599

Configuring DSCP-based QoS....599

Application notes....599

Using ACLs to honor DSCP-based QoS ....599

Configuring the QoS mappings....600

Default DSCP to internal forwarding priority mappings.....600

Changing the DSCP to internal forwarding

priority mappings....601

Changing the VLAN priority 802.1p to hardware

forwarding queue mappings....602

8 to 4 queue mapping....602

Scheduling....603

QoS queuing methods....603

Selecting the QoS queuing method ....605

Configuring the QoS queues .....605

Viewing QoS settings....608

ACL statistics and rate limit counting ....619

Enabling ACL statistics 619

Enabling ACL statistics with rate limiting traffic policies....620

Viewing ACL and rate limit counters....620

Clearing ACL and rate limit counters 621

Viewing traffic policies 622

Chapter 19 Configuring Base Layer 3 and Enabling Routing Protocols

Adding a static IP route....623

Adding a static ARP entry 624

Modifying and displaying layer 3 system parameter limits .....625

Configuration notes....625

PowerConnect IPv6 models 625

Displaying Layer 3 system parameter limits .....625

Configuring RIP 626

Enabling RIP 627

Enabling redistribution of IP static routes into RIP .....627

Enabling redistribution 628

Enabling learning of default routes .....629

Changing the route loop prevention method .....629

Other layer 3 protocols....629

Enabling or disabling routing protocols....629

Enabling or disabling layer 2 switching....630

Configuration Notes and Feature Limitations ....630

Command syntax 630

Chapter 20 Configuring Port Mirroring and Monitoring

Overview 633

Configuring port mirroring and monitoring....633

Rate limiting in hardware 644

How Fixed rate limiting works....644

Configuration notes 645

Configuring a port-based rate limiting policy .....645

Configuring an ACL-based rate limiting policy .....645

Displaying the fixed rate limiting configuration .....645

Rate shaping overview....646

Configuration notes 646

Configuring outbound rate shaping for a port .....647

Configuring outbound rate shaping for a specific priority ....647

Configuring outbound rate shaping for a trunk port .....647

Displaying rate shaping configurations .....648

Chapter 22 Configuring IP Multicast Traffic Reduction for

PowerConnect B-Series FCX Switches

IGMP snooping overview. 649

Configuration notes 651

Configuring queriers and non-queriers....652

VLAN specific configuration 653

Using IGMPv2 with IGMPv3....653

PIM SM traffic snooping overview....653

Application example....653

Configuring IGMP snooping....655

Displaying IGMP snooping information ....663

Displaying querier information 668

Clear IGMP snooping commands .....671

Chapter 23 Enabling the Foundry Discovery Protocol (FDP) and Reading Cisco

Discovery Protocol (CDP) Packets

Using FDP 673

Configuring FDP 673

General operating principles ....687

Operating modes 687

LLDP packets....688

TLV support....689

MIB support....692

Syslog messages....692

Configuring LLDP....692

Configuration notes and considerations .....693

Enabling and disabling LLDP....693

Enabling support for tagged LLDP packets .....694

Changing a port LLDP operating mode .....694

Specifying the maximum number of LLDP neighbors .....696

Enabling LLDP SNMP notifications and syslog messages ...697

Changing the minimum time between LLDP transmissions . .698

Changing the interval between regular LLDP transmissions .698

Changing the holdtime multiplier for transmit TTL .....699

Changing the minimum time between port reinitializations. .699

LLDP TLVs advertised by the Dell PowerConnect device....699

Configuring LLDP-MED 707

Enabling LLDP-MED 708

Enabling SNMP notifications and syslog messages

for LLDP-MED topology changes....708

Changing the fast start repeat count....708

Defining a location id. 709

Defining an LLDP-MED network policy 715

LLDP-MED attributes advertised by the Dell PowerConnect device717

Displaying LLDP statistics and configuration settings.....718

LLDP configuration summary....719

LLDP statistics 719

LLDP neighbors 721

LLDP neighbors detail 722

LLDP configuration details 723

PIM Dense....733

Initiating PIM multicasts on a network....734

Pruning a multicast tree 734

Grafts to a multicast Tree....736

PIM DM versions 736

Configuring PIM DM....737

Failover time in a multi-path topology 741

Modifying the TTL....741

PIM Sparse 742

PIM Sparse switch types....743

RP paths and SPT paths....744

Configuring PIM Sparse....744

Displaying PIM Sparse configuration information

and statistics....750

PIM Passive 762

Passive multicast route insertion....763

Configuring an IP tunnel763

Using ACLs to control multicast features....764

Using ACLs to limit static RP groups 764

Using ACLs to limit PIM RP candidate advertisement .....766

Disabling CPU processing for select multicast groups .....767

CLI command syntax....768

Viewing disabled multicast addresses .....768

Displaying the multicast configuration for

another multicast router....769

IGMP V3 770

Default IGMP version....771

Compatibility with IGMP V1 and V2 771

Globally enabling the IGMP version 771

Enabling the IGMP version per interface setting....771

Enabling the IGMP version on a physical port within

Chapter 26 Configuring IP

Basic configuration....784

Overview 784

Full Layer 3 support....784

IP interfaces....785

IP packet flow through a Layer 3 Switch....785

IP route exchange protocols ....790

IP multicast protocols 790

IP interface redundancy protocols....791

Access Control Lists and IP access policies. 791

Basic IP parameters and defaults - Layer 3 Switches.....791

When parameter changes take effect....792

IP global parameters - Layer 3 Switches....792

IP interface parameters - Layer 3 Switches .....796

Basic IP parameters and defaults - Layer 2 Switches.....797

IP global parameters - Layer 2 Switches....797

Interface IP parameters - Layer 2 Switches .....799

Configuring IP parameters - Layer 3 Switches .....799

Configuring IP addresses....799

Configuring Domain Name Server (DNS) resolver.....803

Configuring packet parameters .....806

Changing the router ID....809

Configuring ARP parameters....810

Configuring forwarding parameters .815

Disabling ICMP messages ....817

Disabling ICMP Redirect Messages....819

Configuring static routes....819

Configuring a default network route....828

Configuring IP load sharing....829

Configuring IRDP....832

Configuring RARP....834

Configuring UDP broadcast and IP helper parameters .....836

Chapter 27 Configuring Multicast Listening Discovery (MLD) Snooping on PowerConnect B-Series FCX Switches

Overview 889

Configuration notes....891

Configuring queriers and non-queriers.....892

VLAN specific configuration 892

Using MLDv1 with MLDv2....892

Configuring MLD snooping....893

Configuring the hardware and software resource limits .....893

Disabling transmission and receipt of MLD packets on a port894

Configuring the global MLD mode .....894

Modifying the age interval....894

Modifying the query interval (Active MLD snooping mode only)895

Configuring the global MLD version 895

Configuring report control 895

Modifying the wait time before stopping traffic when receiving a

leave message....896

Modifying the multicast cache (mcache) aging time.....896

Disabling error and warning messages .....896

Configuring the MLD mode for a VLAN....896

Disabling MLD snooping for the VLAN .....897

Configuring the MLD version for the VLAN....897

Configuring the MLD version for individual ports .....897

Configuring static groups to the entire VLAN or to individual ports 897

Configuring static router ports 898

Turning off static group proxy 898

Enabling MLDv2 membership tracking and fast leave for the VLAN

898

Configuring fast leave for MLDv1....899

Enabling fast convergence 899

Displaying MLD snooping information .....900

Clear MLD snooping commands....904

Configuring RIP parameters....910

Enabling RIP 910

Configuring metric parameters....910

Changing the administrative distance....911

Configuring redistribution....912

Configuring route learning and advertising parameters .....914

Changing the route loop prevention method .....915

Suppressing RIP route advertisement on a VRRP or

VRRPE backup interface....916

Configuring RIP route filters 916

Displaying RIP filters 917

Displaying CPU utilization statistics .....918

Chapter 29 Configuring OSPF Version 2 (IPv4)

Overview of OSPF 922

OSPF point-to-point links....923

Designated routers in multi-access networks....924

Designated router election in multi-access networks .....924

OSPF RFC 1583 and 2178 compliance....925

Reduction of equivalent AS External LSAs....926

Support for OSPF RFC 2328 Appendix E .....928

Dynamic OSPF activation and configuration .....929

Dynamic OSPF memory 930

OSPF graceful restart....930

Configuring OSPF 930

Configuration rules 931

OSPF parameters....931

Enabling OSPF on the router.....932

Assigning OSPF areas....933

Assigning an area range (optional)....937

Assigning interfaces to an area 937

Modifying interface defaults .....937

Changing the timer for OSPF authentication changes .....940

Block flooding of outbound LSAs on specific OSPF interfaces941

Configuring an OSPF non-broadcast interface....941

Assigning virtual links 942

Modifying virtual link parameters 944

Changing the reference bandwidth for the cost on OSPF interfaces

946

Defining redistribution filters 947

Preventing specific OSPF routes from being installed in the IP route

table 950

Modifying the default metric for redistribution .....953

Enabling route redistribution....953

Disabling or re-enabling load sharing. 955

Configuring external route summarization....956

Configuring default route origination .....957

Modifying SPF timers....958

Modifying the redistribution metric type .....959

Modifying the administrative distance .....959

Configuring OSPF group Link State Advertisement

(LSA) pacing....960

Modifying OSPF traps generated 961

Specifying the types of OSPF Syslog messages to log .....962

Modifying the OSPF standard compliance setting. .....962

Modifying the exit overflow interval .....962

Configuring an OSPF point-to-point link .....963

Configuring OSPF graceful restart .....963

Displaying OSPF information 966

Displaying general OSPF configuration information .....967

Displaying CPU utilization statistics....968

Displaying OSPF area information 969

Displaying OSPF neighbor information....969

Displaying OSPF interface information. 971

Displaying OSPF route information 973

Displaying OSPF external link state information .....975

Displaying OSPF link state information 976

Displaying the data in an LSA 976

Displaying OSPF virtual neighbor information 977

Displaying OSPF virtual link information .....977

Displaying OSPF ABR and ASBR information 977

Displaying OSPF trap status 978

Displaying OSPF graceful restart information .....978

Chapter 30 Configuring BGP4 (IPv4)

Overview of BGP4....982

Relationship between the BGP4 route table and

the IP route table 982

How BGP4 selects a path for a route....983

BGP4 message types....985

BGP4 graceful restart....987

Basic configuration and activation for BGP4 .....987

Note regarding disabling BGP4....988

BGP4 parameters 988

When parameter changes take effect....989

Memory considerations .....991

Memory configuration options obsoleted by

dynamic memory....991

Basic configuration tasks....992

Optional configuration tasks 1004

Changing the Keep Alive Time and Hold Time 1004

Changing the BGP4 next-hop update timer 1005

Enabling fast external fallover.... 1005

Changing the maximum number of paths for

BGP4 load sharing 1006

Customizing BGP4 load sharing....1007

Specifying a list of networks to advertise.... 1008

Changing the default local preference 1009

Using the IP default route as a valid next hop for

a BGP4 route....1010

Advertising the default route....1010

Changing the default MED (Metric) used for

route redistribution ....1010

Enabling next-hop recursion....1011

Changing administrative distances .....1014

Requiring the first AS to be the neighbor AS .....1015

Disabling or re-enabling comparison of the AS-Path length .1015

Enabling or disabling comparison of the router IDs .....1016

Configuring the Layer 3 Switch to always compare

Multi-Exit Discriminators (MEDs) 1016

Treating missing MEDs as the worst MEDs....1017

Configuring route reflection parameters .....1017

Configuration notes....1021

Aggregating routes advertised to BGP4 neighbors .....1024

Configuring BGP4 graceful restart 1025

Configuring BGP4 graceful restart 1025

Configuring timers for BGP4 graceful restart (optional) ... 1025

BGP null0 routing 1026

Configuration steps....1027

Configuration examples.... 1028

Show commands 1029

Modifying redistribution parameters 1030

Configuring route flap dampening.... 1054

Globally configuring route flap dampening 1055

Using a route map to configure route flap dampening

for specific routes 1055

Using a route map to configure route flap dampening for

a specific neighbor.... 1056

Removing route dampening from a route....1057

Removing route dampening from a neighbor routes

suppressed due to aggregation .....1057

Displaying and clearing route flap dampening statistics . . 1059

Generating traps for BGP 1060

Displaying BGP4 information....1061

Displaying summary BGP4 information .....1061

Displaying the active BGP4 configuration 1064

Displaying CPU utilization statistics 1064

Displaying summary neighbor information 1066

Displaying BGP4 neighbor information.... 1067

Displaying peer group information....1078

Displaying summary route information .....1079

Displaying the BGP4 route table 1080

Displaying BGP4 route-attribute entries.... 1086

Displaying the routes BGP4 has placed in the

IP route table 1087

Displaying route flap dampening statistics 1088

Displaying the active route map configuration ..... 1089

Displaying BGP4 graceful restart neighbor information . . . 1090

Updating route information and resetting a neighbor session . 1090

Using soft reconfiguration....1091

Dynamically requesting a route refresh from

a BGP4 neighbor 1093

Closing or resetting a neighbor session 1096

Clearing and resetting BGP4 routes in the IP route table . . .1097

Clearing traffic counters 1097

Configuring basic VRRP parameters 1113

Configuring the Owner.... 1113

Configuring a Backup.... 1113

Configuration rules for VRRP.... 1113

Configuring basic VRRPE parameters 1113

Configuration rules for VRRPE 1114

Note regarding disabling VRRP or VRRPE....1114

Configuring additional VRRP and VRRPE parameters .....1114

Forcing a Master router to abdicate to a standby router ..... 1121

Displaying VRRP and VRRPE information 1122

Displaying summary information 1122

Displaying detailed information 1123

Displaying statistics 1128

Clearing VRRP or VRRPE statistics 1130

Displaying CPU utilization statistics 1130

Configuration examples....1131

VRRP example 1131

VRRPE example 1132

Chapter 32 Securing Access to Management Functions

Securing access methods 1135

Restricting remote access to management functions .....1137

Using ACLs to restrict remote access 1138

Defining the console idle time 1140

Restricting remote access to the device to

specific IP addresses....1141

Restricting access to the device based on IP or

MAC address 1142

Defining the Telnet idle time 1143

Changing the login timeout period for Telnet sessions .... 1143

Qualifying the provisions number of least attenuates

Setting up local user accounts.... 1154

Enhancements to username and password 1154

Configuring a local user account 1158

Create password option.... 1160

Changing a local user password .....1161

Configuring SSL security for the Web Management Interface. . .1161

Enabling the SSL server on the Dell PowerConnect device .1161

Changing the SSL server certificate key size 1162

Support for SSL digital certificates larger than 2048 bytes 1162

Importing digital certificates and RSA private key files....1162

Generating an SSL certificate 1163

Configuring TACACS/TACACS+ security 1163

How TACACS+ differs from TACACS.... 1164

TACACS/TACACS+ authentication, authorization,

and accounting 1164

TACACS authentication 1166

TACACS/TACACS+ configuration considerations ..... 1169

Enabling TACACS 1170

Identifying the TACACS/TACACS+ servers....1170

Specifying different servers for individual AAA functions . . .1171

Setting optional TACACS/TACACS+ parameters.....1172

Configuring authentication-method lists for

TACACS/TACACS+....1173

Configuring TACACS+ authorization .....1175

Configuring TACACS+ accounting....1178

Configuring an interface as the source for all

TACACS/TACACS+ packets....1179

Displaying TACACS/TACACS+ statistics and

configuration information 1180

Configuring RADIUS security 1181

RADIUS authentication, authorization, and accounting ... 1181

RADIUS configuration considerations.... 1184

RADIUS configuration procedure 1185

TCP Flags - edge port security 1201

Using TCP Flags in combination with other ACL features .. 1202

Chapter 33 Configuring SSH2 and SCP

SSH version 2 support 1203

Tested SSH2 clients. 1204

Supported features 1204

Unsupported features 1204

AES encryption for SSH2 1205

Configuring SSH2 1205

Recreating SSH keys 1206

Generating a host key pair 1206

Configuring DSA challenge-response authentication ..... 1207

Setting optional parameters.... 1209

Setting the number of SSH authentication retries .....1210

Deactivating user authentication ....1210

Enabling empty password logins....1210

Setting the SSH port number 1211

Setting the SSH login timeout value.... 1211

Designating an interface as the source for all SSH packets 1211

Configuring the maximum idle time for SSH sessions .... 1211

Filtering SSH access using ACLs 1212

Terminating an active SSH connection 1212

Displaying SSH connection information 1212

Using Secure copy with SSH2 1213

Enabling and disabling SCP 1213

Configuration notes....1214

Example file transfers using SCP....1214

Chapter 34 Configuring 802.1X Port Security

Configuring 802.1X port security 1227

Configuring an authentication method list for 802.1X .... 1227

Setting RADIUS parameters 1228

Configuring dynamic VLAN assignment for 802.1X ports . . 1230

Dynamically applying IP ACLs and MAC address filters

to 802.1X ports 1234

Enabling 802.1X port security.... 1237

Setting the port control 1238

Configuring periodic re-authentication 1239

Re-authenticating a port manually 1239

Setting the quiet period.... 1240

Specifying the wait interval and number of EAP-request/

identity frame retransmissions from the Dell PowerConnect device

1240

Specifying the wait interval and number of EAP-request/

identity frame retransmissions from the RADIUS server ...1241

Specifying a timeout for retransmission of messages

to the authentication server 1242

Initializing 802.1X on a port 1242

Allowing access to multiple hosts 1242

Defining MAC address filters for EAP frames. 1245

Configuring VLAN access for non-EAP-capable clients .... 1245

Configuring 802.1X accounting.... 1246

802.1X Accounting attributes for RADIUS 1246

Enabling 802.1X accounting....1247

Displaying 802.1X information....1247

Displaying 802.1X configuration information .....1247

Displaying 802.1X statistics 1250

Clearing 802.1X statistics 1251

Displaying dynamically assigned VLAN information ..... 1251

Displaying information about dynamically applied

MAC address filters and IP ACLs. 1252

Displaying 802.1X multiple-host authentication information1255

Configuring the MAC port security feature 1264

Enabling the MAC port security feature 1265

Setting the maximum number of secure MAC addresses

for an interface.... 1265

Setting the port security age timer 1265

Specifying secure MAC addresses 1266

Autosaving secure MAC addresses to the

startup-config file.... 1266

Specifying the action taken when a security

violation occurs 1267

Clearing port security statistics 1268

Clearing restricted MAC addresses. 1268

Clearing violation statistics 1268

Displaying port security information 1268

Displaying port security settings 1269

Displaying the secure MAC addresses 1269

Displaying port security statistics 1270

Displaying restricted MAC addresses on a port .....1271

Chapter 36 Configuring Multi-Device Port Authentication

How multi-device port authentication works....1274

RADIUS authentication 1274

Authentication-failure actions....1274

Supported RADIUS attributes 1275

Support for dynamic VLAN assignment 1275

Support for dynamic ACLs 1275

Support for authenticating multiple MAC addresses

on an interface.... 1275

Support for source guard protection....1276

Using multi-device port authentication and 802.1X

security on the same port....1276

Configuring Dell-specific attributes on the

Configuring multi-device port authentication 1278

Enabling multi-device port authentication 1278

Specifying the format of the MAC addresses sent to the

RADIUS server 1279

Specifying the authentication-failure action 1279

Generating traps for multi-device port authentication .... 1280

Defining MAC address filters.... 1280

Configuring dynamic VLAN assignment.... 1280

Dynamically applying IP ACLs to authenticated

MAC addresses 1283

Enabling source guard protection.... 1286

Clearing authenticated MAC addresses 1287

Disabling aging for authenticated MAC addresses ..... 1288

Changing the hardware aging period for blocked

MAC addresses 1288

Specifying the aging time for blocked MAC addresses . . . 1289

Specifying the RADIUS timeout action 1289

Multi-device port authentication password override ..... 1291

Limiting the number of authenticated MAC addresses.... 1291

Displaying multi-device port authentication information ..... 1291

Displaying authenticated MAC address information ..... 1292

Displaying multi-device port authentication

configuration information 1292

Displaying multi-device port authentication information

for a specific MAC address or port 1293

Displaying the authenticated MAC addresses ..... 1294

Displaying the non-authenticated MAC addresses ..... 1294

Displaying multi-device port authentication information

for a port.... 1295

Displaying multi-device port authentication settings

and authenticated MAC addresses 1295

Displaying the MAC authentication table for PowerConnect B-Series

FCX devices 1298

Formula configurations 1000

Configuring web authentication options.... 1320

Enabling RADIUS accounting for web authentication ..... 1320

Changing the login mode (HTTPS or HTTP) 1321

Specifying trusted ports. 1321

Specifying hosts that are permanently authenticated .... 1321

Configuring the re-authentication period 1322

Defining the web authentication cycle 1322

Limiting the number of web authentication attempts..... 1322

Clearing authenticated hosts from the web

authentication table 1323

Setting and clearing the block duration for web

authentication attempts 1323

Manually blocking and unblocking a specific host ..... 1323

Limiting the number of authenticated hosts 1324

Filtering DNS queries.... 1324

Forcing re-authentication when ports are down ..... 1324

Forcing re-authentication after an inactive period ..... 1325

Defining the web authorization redirect address ..... 1325

Deleting a web authentication VLAN 1326

Web authentication pages 1326

Displaying web authentication information.... 1333

Displaying the web authentication configuration ..... 1333

Displaying a list of authenticated hosts 1335

Displaying a list of hosts attempting to authenticate ..... 1336

Displaying a list of blocked hosts 1336

Displaying a list of local user databases 1337

Displaying a list of users in a local user database ..... 1337

Displaying passcodes 1338

Chapter 38 Protecting Against Denial of Service Attacks

Protecting against Smurf attacks.... 1339

Avoiding being an intermediary in a Smurf attack..... 1340

Avoiding being a victim in a Smurf attack 1340

DHCP snooping 1349

How DHCP snooping works 1350

System reboot and the binding database .....1351

Configuration notes and feature limitations .....1351

Configuring DHCP snooping .....1351

Clearing the DHCP binding database 1352

Displaying DHCP snooping status and ports 1353

Displaying the DHCP snooping binding database ..... 1353

Displaying DHCP binding entry and status. 1353

DHCP snooping configuration example 1353

DHCP relay agent information (DHCP Option 82)....1354

Configuration notes 1355

DHCP Option 82 sub-options 1355

Configuring DHCP option 82 1357

Viewing information about DHCP option 82 processing ... 1359

IP source guard 1360

Configuration notes and feature limitations 1361

Enabling IP source guard on a port 1362

Defining static IP source bindings 1362

Enabling IP source guard per-port-per-VLAN 1363

Enabling IP source guard on a VE.... 1363

Displaying learned IP addresses.... 1363

Chapter 40 Securing SNMP Access

SNMP overview 1365

Establishing SNMP community strings 1366

Encryption of SNMP community strings.... 1366

Adding an SNMP community string 1366

Displaying the SNMP community strings 1368

Using the user-based security model.... 1369

Configuring your NMS 1369

Configuring SNMP version 3 on Dell PowerConnect devices1369

Displaying SNMP Information....1377

Displaying the Engine ID 1377

Displaying SNMP groups....1377

Displaying user information.... 1378

Interpreting varbinds in report packets 1378

SNMP v3 Configuration examples 1379

Simple SNMP v3 configuration 1379

More detailed SNMP v3 configuration 1379

Chapter 41 Using Syslog

Overview 1381

Displaying Syslog messages.... 1382

Enabling real-time display of Syslog messages 1383

Enabling real-time display for a Telnet or SSH session .... 1383

Show log on all terminals 1383

Configuring the Syslog service 1383

Displaying the Syslog configuration 1384

Disabling or re-enabling Syslog.... 1387

Specifying a Syslog server.... 1388

Specifying an additional Syslog server.... 1388

Disabling logging of a message level 1388

Changing the number of entries the local buffer can hold . 1389

Changing the log facility 1389

Displaying Interface names in Syslog messages..... 1390

Displaying TCP or UDP port numbers in Syslog messages. 1390

Retaining Syslog messages after a soft reboot ..... 1391

Clearing the Syslog messages from the local buffer ..... 1391

Syslog messages.... 1391

Appendix A Network Monitoring

Basic management....1417

sFlow 1427

sFlow version 5 1427

sFlow support for IPv6 packets.... 1428

Configuration considerations.... 1429

Configuring and enabling sFlow 1430

Configuring sFlow version 5 features 1436

Displaying sFlow information 1439

Configuring a utilization list for an uplink port 1442

Command syntax 1443

Displaying utilization percentages for an uplink ..... 1443

Appendix B Software Specifications

IEEE compliance 1445

RFC support.... 1445

Internet drafts 1452

About This Document

Introduction

This guide describes the following product families from Dell:

• PowerConnect B-Series FCX Stackable Switches.

This guide includes procedures for configuring the software. The software procedures show how to perform tasks using the CLI. This guide also describes how to monitor Dell products using statistics and summary screens.

This guide applies to the PowerConnect models listed in Table 1.

Device nomenclature

Table 1 lists the terms (product names) contained in this guide and the specific set of devices to which each term refers.

TABLE 1 PowerConnect family of switches

This name Refers to these devices

PowerConnect Stackable Devices

NOTE: The PowerConnect Stackable Devices include the PowerConnect B-Series FCX devices.

PowerConnect B-Series FCX. PowerConnect B-FCX624s, PowerConnect B-FCX648s, PowerConnect B-FCX624-E,

PowerConnect B-FCX624-I, PowerConnect B-FCX648-E, PowerConnect B-FCX648-I

NOTE: All PowerConnect B-Series FCX devices can be ordered from the factory as

-ADV models. ADV models include support for Layer 3 RGP. PowerConnect B-FCXF

Document conventions

This section describes text formatting conventions and important notice formats used in this document.

Text formatting

The narrative-text formatting conventions that are used are as follows:

bold text Identifies command names

Identifies the names of user-manipulated GUI elements

Identifies keywords

Identifies text to enter at the GUI or CLI

italic text Provides emphasis

Identifies variables

Identifies document titles

code text Identifies CLI output

For readability, command names in the narrative portions of this guide are presented in bold: for example, show version.

Command syntax conventions

Command syntax in this manual follows these conventions:

TABLE 2 Command syntax conventions

Convention Description

bold face font Commands and keywords.

NOTE

A note provides a tip, guidance or advice, emphasizes important information, or provides a reference to related information.

CAUTION

A Caution statement alerts you to situations that can be potentially hazardous to you or cause damage to hardware, firmware, software, or data.

DANGER

A Danger statement indicates conditions or situations that can be potentially lethal or extremely hazardous to you. Safety labels are also attached directly to products to warn of these conditions or situations.

Notice to the reader

This document may contain references to the trademarks of the following corporations. These trademarks are the properties of their respective companies and corporations.

Related publications

The following Dell documents supplement the information in this guide:

• PowerConnect B-FCX Switch Hardware Installation Guide
• PowerConnect B-MLXe MIB Reference
• Damm-Object B Series FOV Web Management Interface User Guide

NOTE

If you do not have an active Internet connection, you can find contact information on your purchase invoice, packing slip, bill, or Dell product catalog.

Dell provides several online and telephone-based support and service options. Availability varies by country and product, and some services may not be available in your area. To contact Dell for sales, technical support, or customer service issues:

1. Visit http://support.dell.com.
2. Click your country or region at the bottom of the page. For a full listing of countries and regions, click All.
3. In the Support menu, click All Support.

Choose the method of contacting Dell that is convenient for you.

Getting Familiar with Management Applications

Chapter

1

Table 3 lists the individual Dell PowerConnect switches and the management application features they support.
TABLE 3 Supported management application features

Using the management port

NOTE

• No packet received on a management port is sent to any in-band ports, and no packets received on in-band ports are sent to a management port.
  • A management port is not part of any VLAN
• Protocols are not supported on the management port.
• Creating a management VLAN disables the management port on the device.
• For PowerConnect B Series FCX devices, all features that can be configured from the global configuration mode can also be configured from the interface level of the management port. Features that are configured through the management port take effect globally, not on the management port itself.

For switches, any in-band port may be used for management purposes. A router sends Layer 3 packets using the MAC address of the port as the source MAC address.

For stacking devices, (for example, an PowerConnect B-Series FCX stack) each stack unit has one out of band management port. Only the management port on the Active Controller will actively send and receive packets. If a new Active Controller is elected, the new Active Controller management port will become the active management port. In this situation, the MAC address of the old Active Controller and the MAC address of the new controller will be different.

CLI Commands for use with the management port

The following CLI commands can be used with a management port.

To display the current configuration, use the show running-config interface management command.

Syntax: show running-config interface management

PowerConnect(config-if-mqmt)hip addr 10.44.9.64/24

PowerConnect(config)#show running-config interface management 1

interface management 1 ip address 10.44.9/64 255.255.255.0

To display the current configuration, use the show interfaces management command.

Syntax: show interfaces management

22 packets output, 1540 bytres, 0 underruns

Transmitted 0 broadcasts, 6 multicasts, 16 unicasts

0 output errors, 0 collisions

To display the management interface information in brief form, enter the show interfaces brief management command.

Syntax: show interfaces brief management

PowerConnect(config)#show interfaces brief management 1

Port Link State Dupl Speed Trunk Tag Fri MAC Name

mgmt1 Up None Full 1G None No 0 0000.9876.544a

To display management port statistics, enter the show statistics management command.

Syntax: show statistics management

PowerConnect{config}#show statistics management 1

Port Link State Dupl Speed Trunk Tag Fri MAC Name

mgmt1 Up None Full 1G None No C 0000.9876.544a

Port mgmt1 Counters:

InOctets 3210941 OutOctets 1540

InFkts 39939 OutPackets 22

InBroadcastPkts 4355 OutbroadcastPkts 0

InMultiastPkts 35214 OutMulticastPkts 6

InUnicastPkts 370 CutUnicastPkts 16

InBadPkts 0

InFragments 0

InDiscards 0 CutErrors 0

CRC 0 Collisions

InErrors 0 LateCollisions 0

InGiantPkts 0

InShortFkts 0

InJabber 0

InFlowCtrlPkts 0 CutFlowCtrlPkts 0

InBitsPerSec 83720 OutBitsPerSec 24

InPktsPerSec 130 CutPktsPerSec 0

InUtilization 0.01% OutUtilization 0.00%

You can initiate a local Telnet or SNMP connection by attaching a cable to a port and specifying the assigned management station IP address.

The commands in the CLI are organized into the following levels:

• User EXEC – Lets you display information and perform basic tasks such as pings and traceroutes.
• Privileged EXEC – Lets you use the same commands as those at the User EXEC level plus configuration commands that do not require saving the changes to the system-config file.
• CONFIG - Lets you make configuration changes to the device. To save the changes across reboots, you need to save them to the system-config file. The CONFIG level contains sub-levels for individual ports, for VLANs, for routing protocols, and other configuration areas.

NOTE

By default, any user who can open a serial or Telnet connection to the Dell PowerConnect device can access all these CLI levels. To secure access, you can configure Enable passwords or local user accounts, or you can configure the device to use a RADIUS or TACACS/TACACS+ server for authentication. Refer to Chapter 32, "Securing Access to Management Functions".

On-line help

To display a list of available commands or command options, enter “?” or press Tab. If you have not entered part of a command at the command prompt, all the commands supported at the current CLI level are listed. If you enter part of a command, then enter “?” or press Tab, the CLI lists the options you can enter at this point in the command string.

If you enter an invalid command followed by ?, a message appears indicating the command was unrecognized. An example is given below.

PowerConnect(config)#rooter ip Unrecognized command

Command completion

The Oll supports command compilation, so you do not need to enter the entire name of a command.

1px

lock-address

logging

m

--More--, next page: Space, next line:

Return key, quit: Control-c

The software provides the following scrolling options:

- Press the Space bar to display the next page (one screen at a time).

- Press the Return or Enter key to display the next line (one line at a time).

- Press Ctrl+C or Ctrl+Q to cancel the display.

Line editing commands

The CLI supports the following line editing commands. To enter a line-editing command, use the CTRL+key combination for the command by pressing and holding the CTRL key, then pressing the letter associated with the command.

TABLE 4 CLI line editing commands

Using stack-unit, slot number, and port number with CLI commands

• slot number and port number
• stack-unit, slot number, and port number
  The following sections show which format is supported on which devices. The ports are labelled on the front panels of the devices.

CLI nomenclature on Stackable devices

Stackable devices (PowerConnect B-Series FCX) use the stack-unit/slot/port nomenclature. When you enter CLI commands that include the port number as part of the syntax, you must use the stack-unit/slot/port number format. For example, the following commands change the CLI from the global CONFIG level to the configuration level for the first port on the device:

PowerConnect(config)#interface e 1/1/1 PowerConnect(config-1f-e1000-1/1/1)#

Syntax: ethernet //

Refer to Chapter 5, "Stackable Devices" for more information about these devices.

Searching and filtering output from CLI commands

You can filter CLI output from show commands and at the -More-prompt. You can search for individual characters, strings, or construct complex regular expressions to filter the output.

Searching and filtering output from Show commands

You can filter output from show commands to display lines containing a specified string, lines that do not contain a specified string, or output starting with a line containing a specified string. The search string is a regular expression consisting of a single character or string of characters. You can use special characters to construct complex regular expressions. Refer to "Using special characters in regular expressions" on page 8 for information on special characters used with regular expressions.

Displaying lines containing a specified string

Displaying lines that do not contain a specified string

The following command filters the output of the show who command so it displays only lines that do not contain the word "closed". This command can be used to display open connections to the Dell PowerConnect device.

PowerConnect#show who | exclude closed

Console connections:

established

you are connecting to this session

2 seconds in idle

Telnet connections (inbound):

1 established, client ip address 192.168.9.37

Telnet connection (outbound):

SSH connections:

Syntax: | exclude

Displaying lines starting with a specified string

The following command filters the output of the show who command so it displays output starting with the first line that contains the word "SSH". This command can be used to display information about SSH connections to the Dell PowerConnect device.

PowerConnect+show who begin SSH

SSH connections:

1 established, client ip address 192.168.9.210

7 seconds in idle

2 closed

3 closed

4 closed

5 closed

Syntax: | begin

Searching and filtering output at the --More-- prompt

--More--, next page: Space, next line: Return key, quit: Control-c

/telnet

The results of the search are displayed.

searching...

To display lines containing only a specified search string (similar to the include option for show commands) press the plus sign key (+) at the -More- prompt and then enter the search string.

--More--, next page: Space, next line: Return key, quit: Control-c +helnet.

The filtered results are displayed.

filtering...

telnet Telnet by name or IP address

To display lines that do not contain a specified search string (similar to the exclude option for show commands) press the minus sign key (-) at the -More- prompt and then enter the search string.

--More--, next page: Space, next line: Return key, quit: Control-c

-telnet

The filtered results are displayed.

filtering...

temperature temperature sensor commands

terminal display syslog

traceroute TraceRoute to IP node

TABLE 5 Special characters for regular expressions

An underscore matches on one or more of the following:

• , (comma)

• (left curly brace)

• } (right curly brace)

• (left parenthesis)

■ (related equation)

TABLE 5 Special characters for regular expressions (Continued)

If you want to filter for a special character instead of using the special character as described in the table above, enter “\” (backslash) in front of the character. For example, to filter on output containing an asterisk, enter the asterisk portion of the regular expression as “*”.

PowerConnect#show ip route bgp | include *

Creating an alias for a CLI command

You can create aliases for CLI commands. An alias serves as a shorthand version of a longer CLI command. For example, you can create an alias called shoro for the CLI command show ip route. Then when you enter shoro at the command prompt, the show ip route command is executed.

To create an alias called shoro for the CLI command show ip route, enter the following command.

PowerConnect(config)#alias shoro = show ip route

Syntax: [no] alias =

The must be a single word, without spaces.

After the alias is configured, entering shoro at either the Privileged EXEC or CONFIG levels of the CLI, executes the show ip route command.

To create an alias called wrsbc for the CLI command copy running-config tftp 10.10.10.10 test.cfg, enter the following command.

Configuration notes

The following configuration notes apply to this feature:

• You cannot include additional parameters with the alias at the command prompt. For example, after you create the shoro alias, shoro bgp would not be a valid command.
• If configured on the Dell PowerConnect device, authentication, authorization, and accounting is performed on the actual command, not on the alias for the command.
  • To save an alias definition to the startup-config file, use the write memory command.

Logging on through the Web Management Interface

To use the Web Management Interface, open a Web browser and enter the IP address of the management port on the Dell PowerConnect device in the Location or Address field. The Web browser contacts the Dell PowerConnect device and displays a Login panel, such as the one shown below.

FIGURE 1 Web Management Interface login panel

Device

Click the [Login] link to accept and continue the login process.

[Logm]

NOTE

If you are unable to connect with the device through a Web browser due to a proxy problem, it may be necessary to set your Web browser to direct Internet access instead of using a proxy. For information on how to change a proxy setting, refer to the on-line help provided with your Web browser.

Logging on through the Web Management Interface

FIGURE 2 Web Management Interface login dialog

The login username and password you enter depends on whether your device is configured with AAA authentication for SNMP. If AAA authentication for SNMP is not configured, you can use the user name "get" and the default read-only password "public" for read-only access. However, for read-write access, you must enter "set" for the user name, and enter a read-write community string you have configured on the device for the password. There is no default read-write community string. You must add one using the CLI.

As an alternative to using the SNMP community strings to log in, you can configure the Dell PowerConnect device to secure Web management access using local user accounts or Access Control Lists (ACLs).

Navigating the Web Management Interface

When you log into a device, the System configuration panel is displayed. This panel allows you to enable or disable major system features. You can return to this panel from any other panel by selecting the Home link.

The Site Map link gives you a view of all available options on a single screen.

Figure 3 displays the first Web Management Interface panel for Layer 3 Switch features, while Figure 4 displays the first panel for Layer 2 Switch features. These panels allow you to configure the

FIGURE 3 First panel for Layer 3 Switch features

NOTE

If you are using Internet Explorer 6.0 to view the Web Management Interface, make sure the version you are running includes the latest service packs. Otherwise, the navigation tree (the left-most pane in Figure 3) will not display properly. For information on how to load the latest service packs, refer to the on-line help provided with your Web browser.

FIGURE 4 First panel for Layer 2 Switch features

Using the CLI, you can modify the appearance of the Web Management Interface with the web-management command.

To cause the Web Management Interface to display the List view by default, enter the following command.

PowerConnect(config)#web-management.list-menu

To disable the front panel frame, enter the following command.

PowerConnect(config)#no web-management. Front-panel

When you save the configuration with the write memory command, the changes will take place the next time you start the Web Management Interface, or if you are currently running the Web Management Interface, the changes will take place when you click the Refresh button on your browser.

Using the Web Management Interface

1. Click on the plus sign next to Configure in the tree view to expand the list of configuration options.
2. Click on the plus sign next to System in the tree view to expand the list of system configuration links.
3. Click on the plus sign next to Management in the tree view to expand the list of system management links.
4. Click on the Web Preference link to display the Web Management Preferences panel.
5. Enable or disable elements on the Web Management Interface by clicking on the appropriate radio buttons on the panel. The following figure identifies the elements you can change.

Logging on through the Web Management Interface

NOTE
The tree view is available when you use the Web Management Interface with Netscape 4.0 or higher or Internet Explorer 4.0 or higher browsers. If you use the Web Management Interface

Logging on through Brocade Network Advisor

Logging on through Brocade Network Advisor

Refer to the Brocade® Network Advisor manual for information about using Brocade Network Advisor.

Configuring Basic Software Features

Chapter

2

Table 6 lists the individual Dell PowerConnect switches and the basic software features they support.
TABLE 6 Supported basic software features

TABLE 6 Supported basic software features

Configuring basic system parameters

Dell PowerConnect devices are configured at the factory with default parameters that allow you to begin using the basic features of the system immediately. However, many of the advanced features such as VLANs or routing protocols for the device must first be enabled at the system (global) level before they can be configured. If you use the Command Line Interface (CLI) to configure system parameters, you can find these system level parameters at the Global CONFIG level of the CLI.

NOTE

Before assigning or modifying any router parameters, you must assign the IP subnet (interface) addresses for each port.

NOTE

For information about configuring IP addresses, DNS resolver, DHCP assist, and other IP-related parameters refer to Chapter 26. "Configuring IP"

PowerConnect(config)# hostname zappa

zappa(config)# anmp-server contact Support Services

zappa (config) ≠ snmp-server location Centerville

zappa(config)† end

zappa# write memory

Syntax: hostname

Syntax: snmp-server contact

Syntax: snmp-server location

The text strings can contain blanks. The SNMP text strings do not require quotation marks when they contain blanks but the host name does.

NOTE

The chassis name command does not change the CLI prompt. Instead, the command assigns an administrative ID to the device.

Configuring Simple Network Management Protocol (SNMP) parameters

Use the procedures in this section to perform the following configuration tasks:

• Specify an SNMP trap receiver.
• Specify a source address and community string for all traps sent by the device.
• Change the holddown time for SNMP traps
• Disable individual SNMP traps. (All traps are enabled by default.)
• Disable traps for CLI access that is authenticated by a local user account, a RADIUS server, or a TACACS/TACACS+ server.

NOTE

To add and modify "get" (read-only) and "set" (read-write) community strings, refer to Chapter 32,

"Securing Access to Management Functions".

Specifying an SNMP tran receiver

To specify an SNMP trap receiver and change the UDP port that will be used to receive traps, enter a command such as the following.

PowerConnect(config)# snmp-server host 2.2.2.2 0 mypublic port 200 PowerConnect(config)# write memory

Syntax: snmp-server host [0 | 1] [port ]

The parameter specifies the IP address of the trap receiver.

The 0 | 1 parameter specifies whether you want the software to encrypt the string (1) or show the string in the clear (0). The default is 0.

The parameter specifies an SNMP community string configured on the Dell PowerConnect device. The string can be a read-only string or a read-write string. The string is not used to authenticate access to the trap host but is instead a useful method for filtering traps on the host. For example, if you configure each of your Dell PowerConnect devices that use the trap host to send a different community string, you can easily distinguish among the traps from different Dell PowerConnect devices based on the community strings.

The command in the example above adds trap receiver 2.2.2.2 and configures the software to encrypt display of the community string. When you save the new community string to the startup-config file (using the write memory command), the software adds the following command to the file.

snmp-server host 2.2.2.2 1

To add a trap receiver and configure the software to encrypt display of the community string in the CLI and Web Management Interface, enter commands such as the following.

PowerConnect(config)# amp-server host 2.2.2.2 0 PowerConnect-12 PowerConnect(config)# write memory

The port parameter allows you to specify which UDP port will be used by the trap receiver. This parameter allows you to configure several trap receivers in a system. With this parameter, Brocade Network Advisor Network Manager and another network management application can coexist in the same system. Dell PowerConnect devices can be configured to send copies of traps to more than one network management application.

To change the holddown time for SNMP traps, enter a command such as the following at the global CONFIG level of the CLI.

PowerConnect(config)# smp-server enable traps holddown-time 30

The command in this example changes the holddown time for SNMP traps to 30 seconds. The device waits 30 seconds to allow convergence in STP and OSPF before sending traps to the SNMP trap receiver.

Syntax: [no] snmp-server enable traps holddown-time

The parameter specifies the number of seconds and can be from 1 - 600 (ten minutes). The default is 60 seconds.

Disabling SNMP traps

Dell PowerConnect devices come with SNMP trap generation enabled by default for all traps. You can selectively disable one or more of the following traps.

NOTE

By default, all SNMP traps are enabled at system startup.

Layer 2 traps

The following traps are generated on devices running Layer 2 software:

• SNMP authentication keys
  • Power supply failure
• Fan failure
• Cold start
• Link up
• Link down
• Bridge new root
• Bridge topology change

• Locked address violation

• OSPF
  • VRRP
  • VRRPE

To stop link down occurrences from being reported, enter the following.

PowerConnect(config)# no snmp-server enable traps link-down

Syntax: [no] snmp-server enable traps

Disabling Syslog messages and traps for CLI access

Dell PowerConnect devices send Syslog messages and SNMP traps when a user logs into or out of the User EXEC or Privileged EXEC level of the CLI. The feature applies to users whose access is authenticated by an authentication-method list based on a local user account, RADIUS server, or TACACS/TACACS+ server.

NOTE

The Privileged EXEC level is sometimes called the "Enable" level, because the command for accessing this level is enable.

The feature is enabled by default.

Examples of Syslog messages for CLI access

When a user whose access is authenticated by a local user account, a RADIUS server, or a TACACS/TACACS+ server logs into or out of the CLI User EXEC or Privileged EXEC mode, the software generates a Syslog message and trap containing the following information:

• The time stamp
• The user name
• Whether the user logged in or out
  • The CLI level the user logged into or out of (User EXEC or Privileged EXEC level)

NOTE

Configuring basic system parameters

PowerConnect# show logging

Syslog logging: enabled (0 messages dropped, 0 flushes, 0 overruns)

Buffer logging: level ACDMEINW, 12 messages logged

level code: A-alert C-critical D-debugging M-emergency E-error

1=informational N=notification W=warning

Static Log Buffer

Dec 15 19:04:14:A:Fan 1, fan on right connector, failed

Dynamic Log Buffer (50 entries):

Oct 15 18:01:11:info:dg logout from USER EXEC mode

Oct 15 17:59:22:info:ag logout from PRIVILEGE EXEC mode

Oct. 15 17:38:07:info:dy login to PRIVILEGE EXEC mode

Oct 15 17:38:03:info:da login to USER EXEC mode

Syntax: show logging

The first message (the one on the bottom) indicates that user "dg" logged in to the CLI User EXEC level on October 15 at 5:38 PM and 3 seconds (Oct 15 17:38:03). The same user logged into the Privileged EXEC level four seconds later.

The user remained in the Privileged EXEC mode until 5:59 PM and 22 seconds. (The user could have used the CONFIG modes as well. Once you access the Privileged EXEC level, no further authentication is required to access the CONFIG levels.) At 6:01 PM and 11 seconds, the user ended the CLI session.

Disabling the Syslog messages and traps

Logging of CLI access is enabled by default. If you want to disable the logging, enter the following commands.

PowerConnect(config)# no logging enable user-login

PowerConnect(config)# write memory

PowerConnect(config)# end

PowerConnect# reload

Syntax: [no] logging enable user-login

Cancelling an outbound Telnet session

NOTE

Dell PowerConnect devices do not retain time and date information across power cycles. Unless you want to reconfigure the system time counter each time the system is reset, Dell PowerConnect recommends that you use the SNTP feature.

To identify an SNTP server with IP address 208.99.8.95 to act as the clock reference for a Dell PowerConnect device, enter the following.

PowerConnect(config)# antp server 208.99.8.95

Syntax: sntp server | []

The parameter specifies the SNTP version the server is running and can be from 1 - 4. The default is 1. You can configure up to three SNTP servers by entering three separate sntp server commands.

By default, the Dell PowerConnect device polls its SNTP server every 30 minutes (1800 seconds). To configure the Dell PowerConnect device to poll for clock updates from a SNTP server every 15 minutes, enter the following.

PowerConnect(config)‡ snlp poll-interval 900

Syntax: [no] sntp poll-interval <1-65535>

To display information about SNTP associations, enter the following command.

PowerConnect ^1 show snlp associations

Syntax: show sntp associations

The following table describes the information displayed by the show sntp associations command.

TABLE 7 Output from the show sntp associations command

This field... Displays...

PowerConnect# show antp status
Clock is synchronized, stratum = 4, reference clock = 10.70.20.23
precision is 2***-20
reference time is 3489354594.3780510747
clock offset is 0.0000 msec, root delay is 0.41 msec
root dispersion is 0.11 msec, peer dispersion is 0.00 msec
sntp pull-interval is 10 sec 

Syntax: show sntp status

The following table describes the information displayed by the show sntp status command.

TABLE 8 Output from the show sntp status command

Setting the system clock

In addition to SNTP support, Dell PowerConnect switches and routers also allow you to set the custom time counter. The time counter setting is not retained, games power menu and is set

By default, Dell PowerConnect switches and routers do not change the system time for daylight saving time. To enable daylight saving time, enter the following command.

PowerConnect+ clock summer-time

Syntax: clock summer-time

Although SNTP servers typically deliver the time and date in Greenwich Mean Time (GMT), you can configure the Dell PowerConnect device to adjust the time for any one-hour offset from GMT or for one of the following U.S. time zones:

• US Pacific
- Alaska
- Aleutian
• Arizona
- Central
- East-Indiana
- Eastern
- Hawaii
- Michigan
- Mountain
- Pacific
- Samoa

To change the time zone to Australian East Coast time (which is normally 10 hours ahead of GMT), enter the following command.

PowerConnect(config)# clock timezone gmt gmt+10

Syntax: clock timezone gmt | us

You can enter one of the following values for :

- US time zones (us): alaska, aleutian, arizona, central, east-indiana, eastern, hawaii, michigan, mountain, pacific, samoa.

Syntax: [no] clock timezone us

Enter pacific, eastern, central, or mountain for .

This command must be configured on every device that follows the US DST.

To verify the change, run a show clock command.

PowerConnect # show clock

Refer to October 19, 2006 - Daylight Saving Time 2007 Advisory, posted on kp.foundrynet.com for more information

Limiting broadcast, multicast, and unknown unicast traffic

Dell PowerConnect devices can forward all flooded traffic at wire speed within a VLAN. However, some third-party networking devices cannot handle high rates of broadcast, multicast, or unknown-unicast traffic. If high rates of traffic are being received by the Dell PowerConnect device on a given port of that VLAN, you can limit the number of broadcast, multicast, or unknown-unicast packets or bytes received each second on that port. This can help to control the number of such packets or bytes that are flooded on the VLAN to other devices.

Configuration notes and feature limitations:

• PowerConnect B-Series FCX devices

• To enable unknown-unicast limiting or multicast limiting, enable it after enabling broadcast limiting. Unknown-unicast limiting and multicast limiting use the limit defined in broadcast limiting. You cannot set a separate limit for unknown-unicast limiting and multicast limiting.
• PowerConnect B-Series FCX devices support packet-based limiting only.

Command syntax for packet-based limiting on PowerConnect B-Series FCX devices

To enable broadcast limiting on a group of ports by counting the number of packets received, enter

The variable specifies the maximum number of packets per second. It can be any number that is a multiple of 65536, up to a maximum value of 2147418112. If you enter the multicast limit command, multicast packets are included in the corresponding limit. If you specify 0, limiting is disabled. If you specify a number that is not a multiple of 65536, the software rounds the number to the next multiple of 65536. Limiting is disabled by default.

Viewing broadcast, multicast, and unknown unicast limits

You can use the show run interface command to display the broadcast, multicast, and unknown-unicast limits configured on the device.

You can use the following commands, in addition to the show run interface command, to display the broadcast, multicast, and unknown-unicast limits configured on the device:

• show rate-limit unknown-unicast

• show rate-limit broadcast

Use the show run interface command to view the broadcast, multicast, and unknown-unicast limit configured on each port.

Example

PowerConnect ^1 show run interface

interface ethernet 4
broadcast limit 1245184 bytes
multicast limit 

interface ethernet 5
broadcast limit 1245184 bytes
multicast limit 

interface ethernet 12
unknown-unicast limit 524288
! 

interface ethernet 13
unknown-unicast limit 65536 bytes
!
interface ethernet 14 

Syntax: show rate-limit unknown-unicast

Use the show rate-limit broadcast command to display the broadcast limit or broadcast and multicast limit for each port to which it applies.

Example

PowerConnect# show rate-limit broadcast

Broadcast/Multicast Limit Settings:

Port Limit Packets/Bytes Packet Type(s)

4 1245184 Bytes Broadcast + Multicast

5 1245184 Bytes Broadcast + Multicast

14 65536 Packets Broadcast only

23 131072 Packets Broadcast + Multicast

Syntax: show rate-limit broadcast

Configuring CLI banners

Dell PowerConnect devices can be configured to display a greeting message on users' terminals when they enter the Privileged EXEC CLI level or access the device through Telnet. In addition, a Dell PowerConnect device can display a message on the Console when an incoming Telnet CLI session is detected.

Setting a message of the day banner

You can configure the Dell PowerConnect device to display a message on a user terminal when he or she establishes a Telnet CLI session. For example, to display the message "Welcome to PowerConnect!" when a Telnet CLI session is established.

PowerConnect(config)# banner motd \$ (Press Return)

Enter TEXT message, End with the character 'S'.

Welcome to PowerConnect!! \$

A delimiting character is established on the first line of the banner motd command. You begin and end the message with this delimiting character. The delimiting character can be any character except " (double-quotation mark) and cannot appear in the banner text. In this example, the

Device

Click the [Login] link to accept and continue the login process...

NOTE

If you are using a Web client to view the message of the day, and your banners are very wide, with large borders, you may need to set your PC display resolution to a number greater than the width of your banner. For example, if your banner is 100 characters wide and the display is set to 80 characters, the banner may distort, or wrap, and be difficult to read. If you set your display resolution to 120 characters, the banner will display correctly.

Requiring users to press the Enter key after the message of the day banner

In earlier IronWare software releases, users were required to press the Enter key after the Message of the Day (MOTD) was displayed, prior to logging in to the Dell PowerConnect device on a console or from a Telnet session. Now, this requirement is disabled by default. Unless configured, users do not have to press Enter after the MOTD banner is displayed.

For example, if the MOTD "Authorized Access Only" is configured, by default, the following messages are displayed when a user tries to access the Dell PowerConnect device from a Telnet session.

Authorized Access Only ...

Username:

The user can then login to the device.

However, if the requirement to press the Enter key is enabled, the following messages are displayed when accessing the switch from Telnet.

To enable the requirement to press the Enter key after the MOTD is displayed, enter a command such as the following.

PowerConnect(config)# banner motd require-enter-key

Syntax: [no] banner motd require-enter-key

Use the no form of the command to disable the requirement.

Setting a privileged EXEC CLI level banner

You can configure the Dell PowerConnect device to display a message when a user enters the Privileged EXEC CLI level.

Example

PowerConnect(config)# banner exec_mode # (Press Return)

Enter TEXT message, End with the character '\$'.

You are entering Privileged EXEC level

Do not foul anything up! †

As with the banner motd command, you begin and end the message with a delimiting character; in this example, the delimiting character is 4(pound sign). The delimiting character can be any character except * (double-quotation mark) and cannot appear in the banner text. The text in between the pound signs is the contents of the banner. Banner text can be up to 4000 characters, which can consist of multiple lines.

Syntax: [no] banner exec_mode

To remove the banner, enter the no banner exec_mode command.

Displaying a console message when an incoming Telnet session is detected

You can configure the Dell PowerConnect device to display a message on the Console when a user establishes a Telnet session. This message indicates where the user is connecting from and displays a configurable text message.

Example

PowerConnect(config)† banner incoming \$ (Press Return)

Configuring a local MAC address for Layer 2 management traffic

By default, Layer 2 devices use the MAC address of the first port as the MAC address for Layer 2 management traffic. For example, when the Dell PowerConnect device receives an ARP request for its management IP address, it responds with the first port MAC address. This may cause problems in some configurations where the Dell PowerConnect device uses the same MAC address for management traffic as for switched traffic.

You can configure the Dell PowerConnect device to use a different MAC address for Layer 2 management traffic than for switched traffic. When you issue the use-local-management-mac, the Dell PowerConnect device changes a local bit in the first port MAC address and uses this MAC address for management traffic. The second bit of the first port MAC address is changed to 2. For example, if the MAC address is 00e0.5201.9900 after the feature is enabled, the switch uses 02e0.5201.9900 for management functions. Switched traffic will continue to use the first port MAC address without the local bit setting.

Example

PowerConnect(config)† use-local-management-mac

PowerConnect{config}# write memory

PowerConnect (config) # end

PowerConnect# reload

Syntax: [no] use-local-management-mac

NOTE

You must save the configuration and reload the software to place the change into effect.

NOTE

This feature is only available for the switch code. It is not available for router code.

Configuring basic port parameters

The procedures in this section describe how to configure the port parameters shown in Table 6.

Modifying port speed and duplex mode

The Gigabit Ethernet copper ports are designed to auto-sense and auto-negotiate the speed and duplex mode of the connected device. If the attached device does not support this operation, you can manually enter the port speed to operate at either 10, 100, or 1000 Mbps. The default and recommended setting is 10/100/1000 auto-sense.

NOTE

You can modify the port speed of copper ports only; this feature does not apply to fiber ports.

NOTE

For optimal link operation, copper ports on devices that do not support 803.3u must be configured with like parameters, such as speed (10,100,1000), duplex (half, full), MDI/MDIX, and Flow Control.

Configuration syntax

The following commands change the port speed of copper interface 8 on a PowerConnect from the default of 10/100/1000 auto-sense, to 100 Mbps operating in full-duplex mode.

PowerConnect(config)# interface ethernet 8

PowerConnect{config-if-e1000-8}# speed-duplex 100-full

Syntax: speed-duplex

where can be one of the following:

• 10-full - 10 Mbps, full duplex
• 10-half – 10 Mbps, half duplex
• 100-full - 100 Mbps, full duplex
• 100-half - 100 Mbps, half duplex
• 1000-full-master - 1 Gbps, full duplex master
• 1000-full-slave - 1 Gbps, full duplex slave
- auto - auto-negotiation

Maximum Port speed advertisement and Port speed down-shift are enhancements to the auto-negotiation feature, a mechanism for accommodating multi-speed network devices by automatically configuring the highest performance mode of inter-operation between two connected devices.

Port speed down-shift enables Gbps copper ports on the Dell PowerConnect device to establish a link at 1000 Mbps over a 4-pair wire when possible, or to down-shift to 100 Mbps if the medium is a 2-pair wire.

Maximum port speed advertisement enables you to configure an auto-negotiation maximum speed that Gbps copper ports on the Dell PowerConnect device will advertise to the connected device. You can configure a port to advertise a maximum speed of either 100 Mbps or 10 Mbps. When the maximum port speed advertisement feature is configured on a port that is operating at 100 Mbps maximum speed, the port will advertise 10/100 Mbps capability to the connected device. Similarly, if a port is configured at 10 Mbps maximum speed, the port will advertise 10 Mbps capability to the connected device.

The port speed down-shift and maximum port speed advertisement features operate dynamically at the physical link layer between two connected network devices. They examine the cabling conditions and the physical capabilities of the remote link, then configure the speed of the link segment according to the highest physical-layer technology that both devices can accommodate.

The port speed down-shift and maximum port speed advertisement features operate dynamically at the physical link layer, independent of logical trunk group configurations. Although Dell recommends that you use the same cable types and auto-negotiation configuration on all members of a trunk group, you could utilize the auto-negotiation features conducive to your cabling environment. For example, in certain circumstances, you could configure each port in a trunk group to have its own auto-negotiation maximum port speed advertisement or port speed down-shift configuration.

Application notes

- Port speed down-shift and maximum port speed advertisement work only when auto-negotiation is enabled (CLI command speed-duplex auto). If auto-negotiation is OFF, the device will reject the port speed down-shift and maximum port speed advertisement configuration.

Syntax: [no] link-config gig copper autoneg-control down-shift ethernet [ethernet ] | to ...

Specify the variable in the following formats:

• PowerConnect B-Series FCX stackable switches -

You can list all of the ports individually, use the keyword to to specify ranges of ports, or a combination of both.

You can enable port speed down-shift on one or two ports at a time.

To disable port speed down-shift after it has been enabled, enter the no form of the command.

Configuring port speed down-shift and auto-negotiation for a range of ports

Port speed down-shift and auto-negotiation can be configured for an entire range of ports with a single command.

For example, to configure down-shift on ports 0/1/1 to 0/1/10 and 0/1/15 to 0/1/20 on the device, enter the following.

PowerConnect(config) link-config gig copper autoneg-control down-shift ethernet 0/1/1 to 0/1/10 ethernet 0/1/15 to 0/1/20

To configure down-shift on ports 5 to 13 and 17 to 19 on a compact switch, enter the following. PowerConnect{config}# link-config gig copper autoneg-control down-shift ethernet 5 to 13 ethernet 17 to 19

Syntax: [no] link-config gig copper autoneg-control [down-shift | 100m-auto | 10m-auto] ethernet

The is the list of ports to which the command will be applied.

For , specify the ports in the following formats:

• PowerConnect B-Series FCX stackable switches -

You can list all of the ports individually, use the keyword to to specify ranges of ports, or a combination of both. To apply the configuration to all ports on the device, use the keyword all instead of listing the ports individually.

To disable selective auto-negotiation of 100m-auto on ports 0/1/21 to 0/1/25 and 0/1/30, enter the following.

PowerConnect(config)# no link-config gig copper autoneq-control 100m-auto ethernet 0/1/21 to 0/1/25 ethernet 0/1/30

Configuring maximum port speed advertisement

To configure a maximum port speed advertisement of 10 Mbps on a port that has auto-negotiation enabled, enter a command such as the following at the Global CONFIG level of the CLI.

PowerConnect(config)# link-config gig copper autoneg-control 10m ethernet 1

To configure a maximum port speed advertisement of 100 Mbps on a port that has auto-negotiation enabled, enter the following command at the Global CONFIG level of the CLI.

PowerConnect(config)# link-config gig copper autoneg-control 100m ethernet 2

Syntax: [no] link-config gig copper autoneg-control 10m | 100m ethernet [ethernet []

Specify the variable in the following formats:

• PowerConnect B-Series FCX stackable switches -

You can list all of the ports individually, use the keyword to to specify ranges of ports, or a combination of both.

You can enable maximum port speed advertisement on one or two ports at a time.

To disable maximum port speed advertisement after it has been enabled, enter the no form of the command.

Modifying port duplex mode

You can manually configure a 10/100 Mbps port to accept either full-duplex (bi-directional) or half-duplex (uni-directional) traffic.

Configuring basic port parameters

• 100-half
- auto (default)

Configuring MDI/MDIX

Dell PowerConnect devices support automatic Media Dependent Interface (MDI) and Media Dependent Interface Crossover (MDIX) detection on all Gbps Ethernet Copper ports.

MDI/MDIX is a type of Ethernet port connection using twisted pair cabling. The standard wiring for end stations is MDI, whereas the standard wiring for hubs and switches is MDIX. MDI ports connect to MDIX ports using straight-through twisted pair cabling. For example, an end station connected to a hub or a switch uses a straight-through cable. MDI-to-MDI and MDIX-to-MDIX connections use crossover twisted pair cabling. So, two end stations connected to each other, or two hubs or switches connected to each other, use crossover cable.

The auto MDI/MDIX detection feature can automatically correct errors in cable selection, making the distinction between a straight-through cable and a crossover cable insignificant.

Configuration notes

• This feature applies to copper ports only.
- The mdi-mdix mdi and mdi-mdix mdix commands work independently of auto-negotiation. Thus, these commands work whether auto-negotiation is turned ON or OFF.
- Do not use the mdi-mdix commands on ports that are manually configured with a speed and duplex of 100-full. In this case, make sure the other port (remote end of the connection) is also configured to 100-full and a cross-over cable is used if the connected device is another switch, hub, or router, or a straight-through cable if the connected device is a host NIC.

Configuration syntax

The auto MDI/MDIX detection feature is enabled on all Gbps copper ports by default. For each port, you can disable auto MDI/MDIX, designate the port as an MDI port, or designate the port as an MDIX port.

Disabling or re-enabling a port

A port can be made inactive (disable) or active (enable) by selecting the appropriate status option.

The default value for a port is enabled.

To disable port 8 of a Dell PowerConnect device, enter the following.

PowerConnect(config)4 interface ethernet 8

PowerConnect(config-if-e1000-8)# disable

You also can disable or re-enable a virtual interface. To do so, enter commands such as the

following.

PowerConnect(config)# interface ve vl

PowerConnect(config-vif-1)# disable

Syntax: disable

To re-enable a virtual interface, enter the enable command at the Interface configuration level. For

example, to re-enable virtual interface v1, enter the following command.

PowerConnect(config-vif-1)# enable

Syntax: enable

Configuring flow control

Flow control (802.3x) is a QoS mechanism created to manage the flow of data between two full-duplex Ethernet devices. Specifically, a device that is oversubscribed (is receiving more traffic than it can handle) sends an 802.3x PAUSE frame to its link partner to temporarily reduce the amount of data the link partner is transmitting. Without flow control, buffers would overflow, packets would be dropped, and data retransmission would be required.

All PowerConnect devices support asymmetric flow control, meaning they can receive PAUSE frames but cannot transmit them. In addition, FCX devices also support symmetric flow control, meaning they can both receive and transmit 802.3x PAUSE frames. For details about symmetric flow control, refer to "Configuring symmetric flow control on PowerConnect B-Series FCX devices" on page 40.

Disabling or re-enabling flow control

You can configure the Dell PowerConnect device to operate with or without flow control. Flow control is enabled by default globally and on all full-duplex ports. You can disable and re-enable flow control at the Global CONFIG level for all ports. When enabled globally, you can disable and re-enable flow control on individual ports.

To disable flow control, enter the following command.

PowerConnect(config)# no flow-control

To turn the feature back on, enter the following command.

PowerConnect(config)# flow-control

Syntax: [no] flow-control

NOTE

For optimal link operation, link ports on devices that do not support 803.3u must be configured with like parameters, such as speed (10,100,1000), duplex (half, full), MDI/MDIX, and Flow Control.

Negotiation and advertisement of flow control

By default, when flow control is enabled globally and auto-negotiation is ON, flow control is enabled and advertised on 10/100/1000M ports. If auto-negotiation is OFF or if the port speed was configured manually, then flow control is not negotiated with or advertised to the peer. For details about auto-negotiation, refer to "Modifying port speed and duplex mode" on page 33.

To disable the advertisement of flow control capability on a port, enter the following commands.

PowerConnect{config}† interface ethernet 0/1/21

PowerConnect(config-if-e1000-0/1/21) + no flow-control

To also disable flow control negotiation, enter the following commands.

PowerConnect(config)# interface ethernet 0/1/21

PowerConnect(config-if-e1000-0/1/21)† no flow-control neg-on

Syntax: [no] flow-control [neg-on]

Displaying flow-control status

The show interface command displays configuration, operation, and negotiation status where applicable.

For example, on a PowerConnect Stackable device, issuing the command for 10/100/1000M port 0/1/21 displays the following output.

PowerConnectr show interfaces ethernet 0/1/21
GigabitEthernet0/1/21 is up, line protocol is up
Hardware is GigabitEthernet, address is 00c0.5204.4014 (bia 30c0.5204.4014)
Configured speed auto, actual 100Mbit, configured duplex fdx, actual fdx
Configured rdi mode AUTO, actual MDTX
Member of L2 VLAN ID 1, port is untagged, port state is LISTENING
BPDD Guard is disabled, Root Protect is disabled
STP configured to ON, priority is level0 

Flow Control is config enabled, oper enabled, negotiation disabled

Mirror disabled, Monitor disabled
Not member of any active trunks
Not member of any configured trunks
No port name
Inter-Packet Gap (IPG) is 96 bit times
300 second input rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
300 second output rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 multicasts, 0 unicasts
0 input errors, 0 CRC, 0 frame, 0 ignored
0 runts, 0 giants
5 packets output, 320 bytes, 0 underruna
Transmitted 0 broadcasts, 5 multicasts, 0 unicasts
0 output errors, 0 collisions 

The line highlighted in bold will resemble one of the following, depending on the configuration:

• If flow-control negotiation is enabled (and a neighbor does not negotiate flow control), the display shows:
  Flow Control is config enabled, oper disabled, negotiation enabled
  • If flow control is enabled, and flow-control negotiation is disabled, the output shows.

Symmetric flow control addresses the requirements of a lossless service class in an Internet Small Computer System Interface (iSCSI) environment. It is supported on FCX standalone units as well as on all FCX units in an IronStack.

About XON and XOFF thresholds

An 802.3x PAUSE frame is generated when the buffer limit at the ingress port reaches or exceeds the port's upper watermark threshold (XOFF limit). The PAUSE frame requests that the sender stop transmitting traffic for a period of time. The time allotted enables the egress and ingress queues to be cleared. When the ingress queue falls below the port's lower watermark threshold (XON limit), an 802.3x PAUSE frame with a quanta of 0 (zero) is generated. The PAUSE frame requests that the sender resume sending traffic normally.

Each 1G and 10G port is configured with a default total number of buffers as well as a default XOFF and XON threshold. The defaults are different for 1G ports versus 10G ports. Also, the default XOFF and XON thresholds are different for jumbo mode versus non-jumbo mode. The defaults are shown in Table 9.

TABLE 9 XON and XOFF default thresholds

If necessary, you can change the total buffer limits and the XON and XOFF default thresholds. Refer

• The following QoS features are not supported together with symmetric flow control:

• Dynamic buffer allocation (CLI commands qd-descriptor and qd-buffer)
• Buffer profiles (CLI command buffer-profile port-region)
• DSCP-based QoS (CLI command trust dscp)

NOTE

Although the above QoS features are not supported with symmetric flow control, the CLI will still accept these commands. The last command issued will be the one placed into effect on the device. For example, if trust dscp is enabled after symmetric-flow-control is enabled, symmetric flow control will be disabled and trust dscp will be placed into effect. Make sure you do not enable incompatible QoS features when symmetric flow control is enabled on the device.

- Head of Line (HOL) blocking may occur when symmetric flow control is enabled. This means that a peer can stop transmitting traffic streams unrelated to the congestion stream.

Enabling and disabling symmetric flow control

By default, symmetric flow control is disabled and tail drop mode is enabled. However, because flow control is enabled by default on all full-duplex ports, these ports will always honor received 802.3x Pause frames, whether or not symmetric flow control is enabled.

To enable symmetric flow control globally on all full-duplex data ports of a standalone unit, enter the following command.

PowerConnect(config)# symmetric-flow-control enable

To enable symmetric flow control globally on all full-duplex data ports of a particular unit in an IronStack, enter a command such as the following.

PowerConnect(config)# symmetric-flow-control enable unit 4

Syntax: [no] symmetric-flow-control enable [unit ]

The parameter specifies one of the units in a stacking system. Master/Standby/Members are examples of a stack-unit

Configuring basic port parameters

Syntax: symmetric-flow-control set 1 | 2 xoff <%>xon <%>

symmetric-flow-control set 1 sets the XOFF and XON limits for 1G ports.

symmetric-flow-control set 2 sets the XOFF and XON limits for 10G ports.

For xoff <%> , the <%> minimum value is 60% and the maximum value is 95%.

For xon <%> , the <%> minimum value is 50% and the maximum value is 90%.

Use the show symmetric command to view the default or configured XON and XOFF thresholds. Refer to "Displaying symmetric flow control status" on page 43.

Changing the total buffer limits

This section describes how to change the total buffer limits described in "About XON and XOFF thresholds" on page 41. You can change the limits for all 1G ports and for all 10G ports.

To change the total buffer limit for all 1G ports, enter a command such as the following.

PowerConnect(config)# symmetric-flow-control set.1 buffers 320

Total buffers modified, 1G: 320, 10G: 128

To change the total buffer limit for all 10G ports, enter a command such as the following.

PowerConnect{config}# symmetric-flow-control set 2 buffers 128

Total buffers modified, 1G: 320, 10G: 128

Syntax: symmetric-flow-control set 1 | 2 buffers

symmetric-flow-control set 1 buffers sets the total buffer limits for 1G ports. The default is 272. You can specify a number from 64 - 320.

symmetric-flow-control set 2 buffers sets the total buffer limits for 10G ports. The default is 416. You can specify a number from 64 - 1632.

Use the show symmetric command to view the default or configured total buffer limits. Refer to "Displaying symmetric flow control status" on page 43.

Displaying symmetric flow control status

Configuring PHY FIFO Rx and Tx depth

PHY devices on PowerConnect B-Series FCX devices contain transmit and receive synchronizing FIFOs to adjust for frequency differences between clocks. The phy-filo-depth command allows you to configure the depth of the transmit and receive FIFOs. There are 4 settings (0-3) with 0 as the default. A higher setting indicates a deeper FIFO.

The default setting works for most connections. However, if the clock differences are greater than the default will handle, CRCs and errors will begin to appear on the ports. Raising the FIFO depth setting will adjust for clock differences.

Dell recommends that you disable the port before applying this command, and re-enable the port. Applying the command while traffic is flowing through the port can cause CRC and other errors for any packets that are actually passing through the PHY while the command is being applied.

Syntax: [no] phy-fifo-depth

- is a value between 0 and 3. (0 is the default.)

This command can be issued for a single port from the IF config mode or for multiple ports from the MIF config mode.

NOTE

Higher settings give better tolerance for clock differences with the partner phy, but may marginally increase latency as well.

Configuring the IPG on PowerConnect Stackable devices

On PowerConnect B-Series FCX devices, you can configure an IPG for each port. An IPG is a configurable time delay between successive data packets.

You can configure an IPG with a range from 48-120 bit times in multiples of 8, with a default of 96. The IPG may be set from either the interface configuration level or the multiple interface level.

Configuration notes

This version describes the configuration processes for DevusOmnest Optable devices

Syntax: [no] ipg

For value, enter a number in the range from 48-120 bit times in multiples of 8. The default is 96.

As a result of the above configuration, the output from the show interface Ethernet 0/1/21 command is as follows.

PowerConnect show interfaces ethernet 0/1/21
GigabitEthernet 0/1/21 is up, line protocol is up
Hardware is GigabitEthernet, address is 00e0.5204.4014 (bia 00e0.5204.4014)
Configured speed auto, actual 100MHz, configured duplex fdx, actual fdx
Configured rdi mode AUTO, actual MDTX
Member of L2 VLAN ID 1, port is untagged, port state is FORWARDING
BPDJ Guard is disabled, Root Protect is disabled
STP configured to ON, priority is level0
Flow Control is config enabled, oper enabled, negotiation disabled
Mirror disabled, Monitor disabled
Not member of any active trunks
Not member of any configured trunks
No port name
Inter-Packet Gap (IPG) is 112 bit times
TP MTU 10222 bytes
300 second input rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
300 second output rate: 248 bits/sec, 0 packets/sec, 0.00% utilization
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 multicasts, 0 unicasts
0 input errors, 0 CRC, 0 frame, 0 ignored
0 runts, 0 giants
80 packets output, 5120 bytes, 0 underruns
Transmitted 0 broadcasts, 80 multicasts, 0 unicasts
0 output errors, 0 collisions 

Enabling and disabling support for 100BaseTX

Configuration notes

• This feature requires that autonegotiation be enabled on the other end of the link.

Chassis-based and Stackable devices

NOTE

The following procedure applies to Stackable devices and to Chassis-based 100/1000 Fiber interface modules only. The CLI syntax for enabling and disabling 100BaseFX support on these devices differs than on a Compact device. Make sure you refer to the appropriate procedures.

PowerConnect devices support the following types of SFPs for 100BaseFX:

• Multimode SFP – maximum distance is 2 kilometers
• Bidirectional single mode SFP – maximum distance is 10 kilometers
• Long Reach (LR) – maximum distance is 40 kilometers
  • Intermediate Reach (IR) – maximum distance is 15 kilometers

NOTE

Connect the 100BaseFX fiber transceiver after configuring both sides of the link. Otherwise, the link could become unstable, fluctuating between up and down states.

To enable support for 100BaseFX on an fiber port or on a Stackable switch, enter commands such as the following.

PowerConnect(config)# interface ethernet. 1/6 PowerConnect(config-if-1/6)# 100-fx

The above commands enable 100BaseFX on port 6 in slot 1.

Syntax: [no] 100-fx

To disable 100BaseFX support on a fiber port, enter the no form of the command. Note that you must disable 100BaseFX support before inserting a different type of module in the same port. Otherwise, the device will not recognize traffic traversing the port.

Changing the Gbps fiber negotiation mode

The globally configured Gbps negotiation mode is the default mode for all Gbps fiber ports. You

Theorem 2.1. (A) Let f , be a finite field, and let f be the set of f -scales in the f -fuller space.

NOTE

When Gbps negotiation mode is turned off (CLI command gig-default neg-off), the Dell device may inadvertently take down both ends of a link. This is a hardware limitation for which there is currently no workaround.

Modifying port priority (QoS)

You can give preference to the inbound traffic on specific ports by changing the Quality of Service (QoS) level on those ports. For information and procedures, refer to Chapter 17, "Configuring Quality of Service".

Dynamic configuration of Voice over IP (VoIP) phones

You can configure a PowerConnect device to automatically detect and re-configure a VoIP phone when it is physically moved from one port to another within the same device. To do so, you must configure a voice VLAN ID on the port to which the VoIP phone is connected. The software stores the voice VLAN ID in the port database for retrieval by the VoIP phone.

The dynamic configuration of a VoIP phone works in conjunction with the VoIP phone discovery process. Upon installation, and sometimes periodically, a VoIP phone will query the Dell PowerConnect device for VoIP information and will advertise information about itself, such as, device ID, port ID, and platform. When the Dell PowerConnect device receives the VoIP phone query, it sends the voice VLAN ID in a reply packet back to the VoIP phone. The VoIP phone then configures itself within the voice VLAN.

As long as the port to which the VoIP phone is connected has a voice VLAN ID, the phone will configure itself into that voice VLAN. If you change the voice VLAN ID, the software will immediately send the new ID to the VoIP phone, and the VoIP phone will re-configure itself with the new voice VLAN.

Configuration notes

• This feature works with any VoIP phone that:

Enabling dynamic configuration of a Voice over IP (VoIP) phone

You can create a voice VLAN ID for a port, or for a group of ports.

To create a voice VLAN ID for a port, enter commands such as the following.

PowerConnect(config) ^4 interface ethernet. 2

PowerConnect(config-if-e1000-2)# voice-vlan 1001

To create a voice VLAN ID for a group of ports, enter commands such as the following.

PowerConnect(config)# interface ethernet 1-8

PowerConnect(config-mif-1-8)‡ voice-vlan 1001

Syntax: [no] voice-vlan

where is a valid VLAN ID between 1 - 4095.

To remove a voice VLAN ID, use the no form of the command.

Viewing voice VLAN configurations

You can view the configuration of a voice VLAN for a particular port or for all ports.

To view the voice VLAN configuration for a port, specify the port number with the show voice-vlan command. The following example shows the command output results.

PowerConnect# show voice-vlan ethernet 2

Voice vlan ID for port 2: 1001

The following example shows the message that appears when the port does not have a configured voice VLAN.

PowerConnect# show voice-vlan ethernet 2

Voice vlan is not configured for port 2.

To view the voice VLAN for all ports, use the show voice-vlan command. The following example shows the command output results.

If the port link state toggles from up to down for a specified number of times within a specified period, the interface is physically disabled for the specified wait period. Once the wait period expires, the port link state is re-enabled. However, if the wait period is set to zero (0) seconds, the port link state will remain disabled until it is manually re-enabled.

Configuration notes

• When a flap dampening port becomes a member of a trunk group, that port, as well as all other member ports of that trunk group, will inherit the primary port configuration. This means that the member ports will inherit the primary port flap dampening configuration, regardless of any previous configuration.
• The Dell PowerConnect device counts the number of times a port link state toggles from "up to down", and not from "down to up".
• The sampling time or window (the time during which the specified toggle threshold can occur before the wait period is activated) is triggered when the first "up to down" transition occurs.
• "Up to down" transitions include UDLD-based toggles, as well as the physical link state.

Configuring port flap dampening on an interface

This feature is configured at the interface level.

PowerConnect(config)# interface ethernet 2/1

PowerConnect(config-if-e10000-2/1)# link-error-disable 10 3 10

Syntax: [no] link-error-disable

The is the number of times a port link state goes from up to down and down to up before the wait period is activated. Enter a value from 1 - 50.

The is the amount of time during which the specified toggle threshold can occur before the wait period is activated. The default is 0 seconds. Enter 1 - 65535 seconds.

The is the amount of time the port remains disabled (down) before it becomes enabled. Enter a value from 0 - 65535 seconds; 0 indicates that the port will stay down until an administrative override occurs.

PowerConnect(config)# interface ethernet 2/1
PowerConnect(config-if-e10000-2/1)# no link-error-disable 10 3 10 

Displaying ports configured with port flap dampening

Ports that have been disabled due to the port flap dampening feature are identified in the output of the show link-error-disable command. The following shows an example output.

PowerConnect# show link-error-disable
Port 2/1 is forced down by link-error-disable. 

Use the show link-error-disable all command to display the ports with the port flap dampening feature enabled.

For PowerConnect Stackable devices, the output of the command shows the following.

PowerConnect# show link-error-disable all
Port8/1 is configured for link-error-disable threshold:1, sampling_period:10, waiting_period:0
Port8/2 is configured for link-error-disable threshold:1, sampling_period:10, waiting_period:0
Port8/3 is configured for link-error-disable threshold:1, sampling_period:10, waiting_period:0
Port8/4 is configured for link-error-disable threshold:1, sampling_period:10, waiting_period:0
Port8/5 is configured for link-error-disable threshold:4, sampling_period:10, waiting_period:2
Port8/9 is configured for link-error-disable threshold:2, sampling_period:20, waiting_period:0 

Table 10 defines the port flap dampening statistics displayed by the show link-error-disable all command.

TABLE 10 Output of show link-error-disable

This column... Displays...

TABLE 10 Output of show link-error-disable (Continued)

Syntax: show link-error-disable [all]

Example

PowerConnect# show interface ethernet 15

GigabitEthernet15 is up, line protocol is up

Link Error Dampening is Enabled

Hardware is GigabitEthernet, address is 00e0.5200.010e (bia 00e0.5200.010e)

GigabitEthernet17 is ERR-DISABLED, line protocol is down

Link Error Dampening is Enabled

Hardware is GigabitEthernet, address is 00e0.5200.010e (b1a 00e0.5200.010e)

Configured speed auto, actual unknown, configured duplex fdx, actual unknown

The line "Link Error Dampening" displays "Enabled" if port flap dampening is enabled on the port or "Disabled" if the feature is disabled on the port. The feature is enabled on the ports in the two examples above. Also, the characters "ERR-DISABLED" is displayed for the "GbpsEthernet" line if the port is disabled because of link errors.

Port loop detection

This feature allows the Dell PowerConnect device to disable a port that is on the receiving end of a loop by sending test packets. You can configure the time period during which test packets are sent.

Strict mode and loose mode

There are two types of loop detection; Strict Mode and Loose Mode. In Strict Mode, a port is disabled only if a packet is looped back to that same port. Strict Mode overcomes specific hardware issues where packets are echoed back to the input port. In Strict Mode, loop detection must be configured on the physical port.

In Loose Mode, loop detection is configured on the VLAN of the receiving port. Loose Mode disables the receiving port if packets originate from any port or VLAN on the same device. The VLAN of the receiving port must be configured for loop detection in order to disable the port.

Recovering disabled ports

Once a loop is detected on a port, it is placed in Err-Disable state. The port will remain disabled until one of the following occurs:

• You manually disable and enable the port at the Interface Level of the CLI.
- You enter the command clear loop-detection. This command clears loop detection statistics and enables all Err-Disabled ports.
- The device automatically re-enables the port. To set your device to automatically re-enable Err-Disabled ports, refer to "Configuring the device to automatically re-enable ports" on page 53.

Configuration notes

• Loopback detection packets are sent and received on both tagged and untagged ports. Therefore, this feature cannot be used to detect a loop across separate devices.

The following information applies to Loose Mode loop detection:

loops because STP cannot prevent loops across different VLANs. In these instances, the ports are not blocked and loop detection is able to send out probe packets in one VLAN and receive packets in another VLAN. In this way, loop detection running in Loose Mode disables both ingress and egress ports.

Enabling loop detection

Use the loop-detection command to enable loop detection on a physical port (Strict Mode) or a VLAN (Loose Mode). Loop detection is disabled by default. The following example shows a Strict Mode configuration.

PowerConnect(config)# interface ethernet 1/1 PowerConnect(config if e1000-1/1)# loop-detection

The following example shows a Loose Mode configuration.

PowerConnect(config)# vlan20 PowerConnect(config-vlan-20)# loop-detection

By default, the port will send test packets every one second, or the number of seconds specified by the loop-detection-interval command. Refer to "Configuring a global loop detection interval" on page 53.

Syntax: [no] loop-detection

Use the [no] form of the command to disable loop detection.

Configuring a global loop detection interval

The loop detection interval specifies how often a test packet is sent on a port. When loop detection is enabled, the loop detection time unit is 0.1 second, with a default of 10 (one second). The range is from 1 (one tenth of a second) to 100 (10 seconds). You can use the show loop-detection status command to view the loop detection interval.

To configure the global loop detection interval, enter a command similar to the following.

PowerConnect(config)# loop-detection-interval 50

This command sets the loop detection interval to 5 seconds (50 x 0.1)

The above command will cause the Dell PowerConnect device to automatically re-enable ports that were disabled because of a loop detection. By default, the device will wait 300 seconds before re-enabling the ports. You can optionally change this interval to a value from 10 to 65535 seconds. Refer to "Specifying the recovery time interval" on page 54.

Syntax: [no] errdisable recovery cause loop-detection

Use the [no] form of the command to disable this feature.

Specifying the recovery time interval

The recovery time interval specifies the number of seconds the Dell PowerConnect device will wait before automatically re-enabling ports that were disabled because of a loop detection. (Refer to "Configuring the device to automatically re-enable ports" on page 53.) By default, the device will wait 300 seconds. To change the recovery time interval, enter a command such as the following. PowerConnect(config)# errdisable recovery interval i20

The above command configures the device to wait 120 seconds (2 minutes) before re-enabling the ports.

To revert back to the default recovery time interval of 300 seconds (5 minutes), enter one of the following commands.

PowerConnect(config)# errdisable recovery interval 300

OR

PowerConnect(config)# no errdisable recovery interval 120

Syntax: [no] errdisable recovery interval

where is a number from 10 to 65535.

Clearing loop-detection

To clear loop detection statistics and re-enable all ports that are in Err-Disable state because of a loop detection, enter the following command.

PowerConnect# clear loop-detection

If a port is errdisabled in Strict mode, it shows "ERR-DISABLE by itself". If it is errdisabled due to its associated vlan, it shows "ERR-DISABLE by vlan?"

The following command displays the current disabled ports, including the cause and the time.

PowerConnect# show loop-detection disable

Number of err-disabled ports: 3

You can re-enable err-disable ports one by one by "disable" then "enable"

under interface config, re-enable all by "clear loop-detect", or

configure "erralisable recovery cause loop-detection" for automatic recovery index, next, ground-by, discharging

1. _1 p02c _2 dausia by _3 disabird a this
2. _4 d67 _5 d68

1 1/10 Itzell 60:23:50 2 1/19 vlnn 12 60:17:30

1. 1) 1.5 v = _1 - _2 出 t = _1 + _2

This example shows the disabled ports, the cause, and the time the port was disabled. If loop-detection is configured on a physical port, the disable cause will show "itself". For VLANs configured for loop detection, the cause will be a VLAN.

The following command shows the hardware and software resources being used by the loop-detection feature.

Vlans configured loop-detection use 1 HW MAC

Vlans not configured but use HW MAC: 1 10

Displaying loop detection resource information

Use the show loop-detection resource command to display the hardware and software resource information on loop detection.

PowerConnect# show loop-detection resource

Vlans configured loop-detection use 1 HW MAC

Vlans not configured but use HW MAC: 1 10

TABLE 11 Field definitions for the show loop-detection resource command (Continued)

Syslog message

The following message is logged when a port is disabled due to loop detection. This message also appears on the console.

loop-detect: port ?\?\vlan ?, into errdisable state

The Errdisable function logs a message whenever it re-enables a port.

Operations, Administration, and Maintenance

Chapter

Table 12 lists the individual Dell PowerConnect switches and the operations, administration, and maintenance features they support.
TABLE 12 Supported operations, administration, and maintenance features

Determining the software versions installed and running on a device

You can update the software contained on a flash module using TFTP to copy the update image from a TFTP server onto the flash module. In addition, you can copy software images and configuration files from a flash module to a TFTP server.

NOTE

Dell PowerConnect devices are TFTP clients but not TFTP servers. You must perform the TFTP transaction from the Dell PowerConnect device. You cannot "put" a file onto the Dell PowerConnect device using the interface of your TFTP server.

NOTE

If you are attempting to transfer a file using TFTP but have received an error message, refer to "Diagnostic error codes and remedies for TFTP transfers" on page 75.

Determining the software versions installed and running on a device

Use the following methods to display the software versions running on the device and the versions installed in flash memory.

Determining the flash image version running on the device

To determine the flash image version running on a device, enter the show version command at any level of the CLI. Some examples are shown below.

Compact devices

To determine the flash image version running on a Compact device, enter the show version command at any level of the CLI. The following shows an example output.

PowerConnect#show version

SW: Version 7.2.00aT53 Copyright (c) 2009 Brocade Communications Systems, Inc. Compiled on Mar 26 2003 at 13:50:31 labeled as FERO 7.2.00a (3089381 bytes) from Primary for 7.2.00a.bin

H2: Checksh1 = PES2402-PREM-TLP

Determining the boot image version running on the device

To determine the boot image running on a device, enter the show flash command at any level of the CLI. The following shows an example output.

PowerConnect#show flash
Active Management Module (slot 9):
Compressed Pri Code size = 3613675, Version 03.1.00aT3e3 (sxr03100a.bin)
Compressed Seq: Code size = 2250218, Version 03.1.00sT3e1 (sxr03100a.bin)
Compressed BootROM Code size = 524288, Version 03.0.01T3e5
Code Flash Free Space = 9659328
Standby Management Module (slot 10):
Compressed Pri Code size = 3613675, Version 03.1.00aT3e3 (sxr03100a.bin)
Compressed Seq: Code size = 2250218, Version 03.1.00sT3e1 (sxr03100a.bin)
Compressed BootROM Code size = 524288, Version  03.0.01T3e5
Code Flash Free Space = 524288 

The boot code version is shown in bold type.

Determining the image versions installed in flash memory

Enter the show flash command to display the boot and flash images installed on the device. An example of the command output is shown in "Determining the boot image version running on the device" on page 59:

• The "Compressed Pri Code size" line lists the flash code version installed in the primary flash area.
• The "Compressed Sec Code size" line lists the flash code version installed in the secondary flash area.
• The "Boot Monitor Image size" line lists the boot code version installed in flash memory. The device does not have separate primary and secondary flash areas for the boot image. The flash memory module contains only one boot image.

If TFTP was used to install the file on the Dell PowerConnect device, the path may also be displayed with the filename in the show flash output. For example (path1/SXR05100.bin).

CLI commands

Use the following command syntax to verify the flash image:

Syntax: verify md5 | sha1 | crc32 | primary | secondary []

- md5 - Generates a 16-byte hash code

- sha1 - Generates a 20-byte hash code

- crc32 - Generates a 4 byte checksum

- ascii string - A valid image filename

- primary – The primary boot image (primary.img)

• secondary – The secondary boot image (secondary.img)

- hash code - The hash code to verify

The following examples show how the verify command can be used in a variety of circumstances.

To generate an MD5 hash value for the secondary image, enter the following command.

PowerConnect#verify md5 secondary

PowerConnect....Done

Size - 2044830, MD5 01c410d6d153189a4a5d36c955653862

To generate a SHA-1 hash value for the secondary image, enter the following command.

PowerConnect#verify sha secondary

PowerConnect....Done

Size = 2044830, SHA1 49d12d26552072337f7f5fcaef4cf4b742a9f525

To generate a CRC32 hash value for the secondary image, enter the following command.

PowerConnect#verify crc32 secondary

PowerConnect ^1 ......Done

Size - 2044830, CRC32 b31fcbc0

To verify the hash value of a secondary image with a known value, enter the following commands.

PowerConnect#verify md5 secondary 01c410d6d153189a4a5d36c955653861

PowerConnect ^1 ......Done

Size = 2044830, MD5 01c410d6d153189a4a5d36c955653862

Image file types

This section lists the boot and flash image file types supported and how to install them on the PowerConnect family of switches. For information about a specific version of code, refer to the release notes.

TABLE 13 Software image files

Viewing the contents of flash files

The copy flash console command can be used to display the contents of a configuration file, backup file, or renamed file stored in flash memory. The file contents are displayed on the console when the command is entered at the CLI.

To display a list of files stored in flash memory, do one of the following:

- For PowerConnect B-Series FCX devices, enter the show dir command at any level of the CLI, or enter the dir command at the boot-monitor mode.

The following shows an example command output.

PowerConnect#show dir

133 [38f4] boot-parameter

[ffff] boatram

3802772 [0000] primary

4867691 [0000] secondary

163 [dd8e] stacking.boot

1773 [0d2d] startup-config

1808 [acfa] startup-config.backup

8674340 bytes 7 File(s)

56492032 bytes free

PowerConnect:copy flash console startup-config.backup
vor vor 7.2.00aT7f1!
stack unit 1
    module 1 FCX-24-port-management-module
    module 2 FCX-cx4-2-port-16g module
    module 3 FCX-xfp-2-port-16g-module
    priority 80
    stack port 1/2/1 1/2/2
stack unit 2
    module 1 FCX-48-port-management-module
    module 2 FCX-cx4-2-port-16g-module
    module 3 FCX-xfp-2-port-16g-module
    stack port 2/2/1 2/2/2
stack enable
!
!
!
!
vlan 1 name DEFAULT-VLAN by port
no spanning-tree
metro-rings 1
motro-ring 1
    master
    ring-interfaces ethernet 1/1/2 ethernet 1/1/3
    enable
!
vlan 10 by port
mac-vlan-permit ethe 1/1/5 to 1/1/6 ethe 2/1/5 to 2/1/6 no spanning-tree !
vlan 20 by port
untagged ethe 1/1/7 to 1/1/8
no spanning-tree
pvlan type primary
pvlan mapping 40 ethe 1/1/8
pvlan mapping 30 ethe 1/1/7
!
vlan 30 by port
untagged ethe 1/1/9 to 1/1/10
no spanning-tree
pvlan type community 

1. Configure a read-write community string on the Dell PowerConnect device, if one is not already configured. To configure a read-write community string, enter the following command from the global CONFIG level of the CLI.

snmp-server community ro | rw

where is the community string and can be up to 32 characters long.

1. On the Dell PowerConnect device, enter the following command from the global CONFIG level of the CLI.

no snmp-server pw-check

This command disables password checking for SNMP set requests. If a third-party SNMP management application does not add a password to the password field when it sends SNMP set requests to a Dell PowerConnect device, by default the Dell PowerConnect device rejects the request.

Changing the block size for TFTP file transfers

When you use TFTP to copy a file to or from a Dell PowerConnect device, the device transfers the data in blocks of 8192 bytes by default. You can change the block size to one of the following if needed:

You can use boot commands to immediately initiate software boots from a software image stored in primary or secondary flash on a Dell PowerConnect device or from a BootP or TFTP server. You can test new versions of code on a Dell PowerConnect device or choose the preferred boot source from the console boot prompt without requiring a system reset.

NOTE

It is very important that you verify a successful TFTP transfer of the boot code before you reset the system. If the boot code is not transferred successfully but you try to reset the system, the system will not have the boot code with which to successfully boot.

By default, the Dell device first attempts to boot from the image stored in its primary flash, then its secondary flash, and then from a TFTP server. You can modify this booting sequence at the global CONFIG level of the CLI using the boot system... command.

To initiate an immediate boot from the CLI, enter one of the boot system... commands.

Configuration notes

• If you are booting the device from a TFTP server through a fiber connection, use the following command: boot system tftp fiber-port.
• In an IronStack, the boot system tftp command will cause the system to boot the active unit with the image specified in the command. The rest of the units in the stack will boot with the primary or secondary image, depending on their boot configuration.

Displaying the boot preference

Use the show boot-preference command to display the boot sequence in the startup config and running config files. The boot sequence displayed is also identified as either user-configured or the default.

The following example shows the default hout sequence preference

The results of the show run command for the configured example above appear as follows.

PowerConnect #show run

Current Configuration:

ver 7.2.00aT7f1

module 1 FCX-48-port-management-module

module 2 FCX-xfp-2-port-16g-module

module 3 FCX-xfp-2-port-16g-module

alias cp-copy tf 10.1.1.1 FCX04000bl.bin pri

!

boot sys fl sec

boot sys df 10.1.1.1 FCX04000bl.bin

boot sys fl pri

ip address 10.1.1.4 255.255.255.0

snmp-client 10.1.1.1

end

Loading and saving configuration files

For easy configuration management, all Dell PowerConnect devices support both the download and upload of configuration files between the devices and a TFTP server on the network.

You can upload either the startup configuration file or the running configuration file to the TFTP server for backup and use in booting the system:

• Startup configuration file – This file contains the configuration information that is currently saved in flash. To display this file, enter the show configuration command at any CLI prompt.

- Running configuration file – This file contains the configuration active in the system RAM but not yet saved to flash. These changes could represent a short-term requirement or general configuration change. To display this file, enter the show running-config or write terminal command at any Q1 prompt.

To replace the startup configuration with the running configuration, enter the following command at any Enable or CONFIG command prompt.

PowerConnect+write memory

Replacing the running configuration with the startup configuration

If you want to back out of the changes you have made to the running configuration and return to the startup configuration, enter the following command at the Privileged EXEC level of the CLI.

PowerConnect+reload

Logging changes to the startup-config file

You can configure a Dell PowerConnect device to generate a Syslog message when the startup config file is changed. The trap is enabled by default.

The following Syslog message is generated when the startup-config file is changed.

startup-config was changed

If the startup-config file was modified by a valid user, the following Syslog message is generated.

startup-config was changed by

To disable or re-enable Syslog messages when the startup-config file is changed, use the following command.

Syntax: [no] logging enable config-changed

Copying a configuration file to or from a TFTP server

To copy the startup-config or running-config file to or from a TFTP server, use one of the following methods.

NOTE

For details about the copy and ncopy commands used with IPv6, refer to "Using the IPv6 copy

Dynamic configuration loading

You can load dynamic configuration commands (commands that do not require a reload to take effect) from a file on a TFTP server into the running-config on the Dell PowerConnect device. You can make configuration changes off-line, then load the changes directly into the device running-config, without reloading the software.

Usage considerations

• Use this feature only to load configuration information that does not require a software reload to take effect. For example, you cannot use this feature to change statically configured memory (system-max command) or to enter trunk group configuration information into the running-config.
• Do not use this feature if you have deleted a trunk group but have not yet placed the changes into effect by saving the configuration and then reloading. When you delete a trunk group, the command to configure the trunk group is removed from the device running-config, but the trunk group remains active. To finish deleting a trunk group, save the configuration (to the startup-config file), then reload the software. After you reload the software, then you can load the configuration from the file.
• Do not load port configuration information for secondary ports in a trunk group. Since all ports in a trunk group use the port configuration settings of the primary port in the group, the software cannot implement the changes to the secondary port.

Preparing the configuration file

A configuration file that you create must follow the same syntax rules as the startup-config file the device creates.

• The configuration file is a script containing CLI configuration commands. The CLI reacts to each command entered from the file in the same way the CLI reacts to the command if you enter it. For example, if the command results in an error message or a change to the CLI configuration level, the software responds by displaying the message or changing the CLI level.
• The software retains the running-config that is currently on the device, and changes the running config only by adding new commands from the configuration file. If the running config

NOTE

If you copy-and-paste a configuration into a management session, the CLI ignores the " ! " instead of changing the CLI to the global CONFIG level. As a result, you might get different results if you copy-and-paste a configuration instead of loading the configuration using TFTP.

- Make sure you enter each command at the correct CLI level. Since some commands have identical forms at both the global CONFIG level and individual configuration levels, if the CLI response to the configuration file results in the CLI entering a configuration level you did not intend, then you can get unexpected results.

For example, if a trunk group is active on the device, and the configuration file contains a command to disable STP on one of the secondary ports in the trunk group, the CLI rejects the commands to enter the interface configuration level for the port and moves on to the next command in the file you are loading. If the next command is a spanning-tree command whose syntax is valid at the global CONFIG level as well as the interface configuration level, then the software applies the command globally. Here is an example.

The configuration file contains these commands.

interface ethernet 2 no spanning-tree

The CLI responds like this.

PowerConnect(config)#interface ethernet 2 Error - cannot configure secondary ports of a trunk PowerConnect(config)#no spanning-tree PowerConnect(config)#

- If the file contains commands that must be entered in a specific order, the commands must appear in the file in the required order. For example, if you want to use the file to replace an IP address on an interface, you must first remove the old address using "no" in front of the ip address command, then add the new address. Otherwise, the CLI displays an error message and does not implement the command. Here is an example.

The configuration file contains these commands.

interface ethernet 11 ip address 10.10.10.69/24

- Always use the end command at the end of the file. The end command must appear on the last line of the file, by itself.

Loading the configuration information into the running-config

To load the file from a TFTP server, use either of the following commands:

• copy tftp running-config
- ncopy tftp running-config

NOTE

If you are loading a configuration file that uses a truncated form of the CLI command access-list, the software will not go into batch mode.

For example, the following command line will initiate batch mode.

access-list 131 permit host pc1 host. pc2

The following command line will not initiate batch mode.

acc 131 permit host pc1 host pc2

Maximum file sizes for startup-config file and running-config

Each Dell PowerConnect device has a maximum allowable size for the running-config and the startup-config file. If you use TFTP to load additional information into a device running-config or startup-config file, it is possible to exceed the maximum allowable size. If this occurs, you will not be able to save the configuration changes.

The maximum size for the running-config and the startup-config file is 64K each.

To determine the size of a running-config or startup-config file, copy it to a TFTP server, then use the directory services on the server to list the size of the copied file. To copy the running-config or startup-config file to a TFTP server, use one of the following commands:

- Commands to copy the running-config to a TFTP server:

• copy running-config tftp

• Copy a file from an IPv6 TFTP server to a specified destination

Copying a file to an IPv6 TFTP server

You can copy a file from the following sources to an IPv6 TFTP server:

• Flash memory
• Running configuration
• Startup configuration

Copying a file from flash memory

For example, to copy the primary or secondary boot image from the device flash memory to an IPv6 TFTP server, enter a command such as the following.

PowerConnect#copy flash tftp 2001:7382:e0ff:7837::3 test.img secondary

This command copies the secondary boot image named test.img from flash memory to a TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3.

Syntax: copy flash tftp primary | secondary

The parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373.

The parameter specifies the name of the file you want to copy to the IPv6 TFTP server.

The primary keyword specifies the primary boot image, while the secondary keyword specifies the secondary boot image.

Copying a file from the running or startup configuration

For example, to copy the running configuration to an IPv6 TFTP server, enter a command such as the following.

PowerConnect&copy running-config tftp 2001:7382:e0ff:7837::3 newrun.cfg

Loading and saving configuration files with IPv6

• Flash memory
• Running configuration
• Startup configuration

Copying a file to flash memory

For example, to copy a boot image from an IPv6 TFTP server to the primary or secondary storage location in the device flash memory, enter a command such as the following.

PowerConnect+copy tftp flash 2001:7382:e0ff:7837::3 test.img secondary

This command copies a boot image named test.img from an IPv6 TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3 to the secondary storage location in the device flash memory.

Syntax: copy tftp flash primary | secondary

The parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373.

The parameter specifies the name of the file you want to copy from the IPv6 TFTP server.

The primary keyword specifies the primary storage location in the device flash memory, while the secondary keyword specifies the secondary storage location in the device flash memory.

Copying a file to the running or startup configuration

For example, to copy a configuration file from an IPv6 TFTP server to the running or startup configuration, enter a command such as the following.

PowerConnect#copy tftp running-config 2001:7382:e0ff:7837::3 newrun.cfg overwrite

This command copies the newrun.cfg file from the IPv6 TFTP server and overwrites the running configuration file with the contents of newrun.cfg.

NOTE

To activate this configuration, you must reload (reset) the device.

• Copy a primary or secondary boot image from flash memory to an IPv6 TFTP server.
  • Copy the running configuration to an IPv6 TFTP server.
  • Copy the startup configuration to an IPv6 TFTP server
• Upload various files from an IPv6 TFTP server.

Copying a primary or secondary boot Image from flash memory to an IPv6 TFTP server

For example, to copy the primary or secondary boot image from the device flash memory to an IPv6 TFTP server, enter a command such as the following.

PowerConnect#ncopy flash primary tftp 2001:7382:e0ff:7837::3 primary.img

This command copies the primary boot image named primary.img from flash memory to a TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3.

Syntax: ncopy flash primary | secondary tftp

The primary keyword specifies the primary boot image, while the secondary keyword specifies the secondary boot image.

The tftp parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373.

The parameter specifies the name of the file you want to copy from flash memory.

Copying the running or startup configuration to an IPv6 TFTP server

For example, to copy a device running or startup configuration to an IPv6 TFTP server, enter a command such as the following.

PowerConnect&ncopy running-config tftp 2001:7382:eoff:7837::3 bakrun.cfg

This command copies a device running configuration to a TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3 and names the destination file bakrun.cfg.

- Startup configuration.

Uploading a primary or secondary boot image from an IPv6 TFTP server

For example, to upload a primary or secondary boot image from an IPv6 TFTP server to a device flash memory, enter a command such as the following.

PowerConnect#ncopy tftp 2001:7382:e0ff:7837::3 primary.img flash primary

This command uploads the primary boot image named primary.img from a TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3 to the device primary storage location in flash memory.

Syntax: ncopy tftp flash primary | secondary

The tftp parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373.

The parameter specifies the name of the file you want to copy from the TFTP server.

The primary keyword specifies the primary location in flash memory, while the secondary keyword specifies the secondary location in flash memory.

Uploading a running or startup configuration from an IPv6 TFTP server

For example to upload a running or startup configuration from an IPv6 TFTP server to a device, enter a command such as the following.

PowerConnectIncopy tftp 2001:7382:e0ff:7837::3 newrun.cfg running-config

This command uploads a file named newrun.cfg from a TFTP server with the IPv6 address of 2001:7382:e0ff:7837::3 to the device.

Syntax: ncopy tftp running-config | startup-config

The tftp parameter specifies the address of the TFTP server. You must specify this address in hexadecimal using 16-bit values between colons as documented in RFC 2373.

The parameter specifies the name of the file you want to copy from the TFTP server.

1. Configure a read-write community string on the Dell PowerConnect device, if one is not already configured. To configure a read-write community string, enter the following command from the global CONFIG level of the CLI.

snmp-server community ro | rw

where is the community string and can be up to 32 characters long.

1. On the Dell device, enter the following command from the global CONFIG level of the CLI. no snmp-server pw-check

This command disables password checking for SNMP set requests. If a third-party SNMP management application does not add a password to the password field when it sends SNMP set requests to a device, by default the Dell device rejects the request.

Erasing image and configuration files

To erase software images or configuration files, use the commands described below. These commands are valid at the Privileged EXEC level of the CLI:

• erase flash primary erases the image stored in primary flash of the system.
• erase flash secondary erases the image stored in secondary flash of the system.
• erase startup-config erases the configuration stored in the startup configuration file; however, the running configuration remains intact until system reboot.

Scheduling a system reload

In addition to reloading the system manually, you can configure the Dell PowerConnect device to reload itself at a specific time or after a specific amount of time has passed.

NOTE

The scheduled reload feature requires the system clock. You can use a Simple Network Time Protocol (SNTP) server to set the clock or you can set the device clock manually. Refer to "Specifvind

Reloading after a specific amount of time

To schedule a system reload to occur after a specific amount of time has passed on the system clock, use reload after command. For example, to schedule a system reload from the secondary flash one day and 12 hours later, enter the following command at the global CONFIG level of the CLI.

PowerConnect#reload after 01:12:00 secondary

Syntax: reload after [primary | secondary]

(dd:hh:mm> is the number of days, hours, and minutes.

primary | secondary specifies whether the reload is to occur from the primary code flash module or the secondary code flash module.

Displaying the amount of time remaining before a scheduled reload

To display how much time is remaining before a scheduled system reload, enter the following command from any level of the CLI.

PowerConnect#show reload

Canceling a scheduled reload

To cancel a scheduled system reload using the CLI, enter the following command at the global CONFIG level of the CLI.

PowerConnect#reload cancel

Diagnostic error codes and remedies for TFTP transfers

If an error occurs with a TFTP transfer to or from a Layer 2 Switch or Layer 3 switch, one of the

Testing network connectivity

After you install the network cables, you can test network connectivity to other devices by pinging those devices. You also can observe the LEDs related to network connection and perform trace routes.

Pinging an IPv4 address

The source specifies an IP address to be used as the origin of the ping packets.

The count parameter specifies how many ping packets the device sends. You can specify from 1 - 4294967296. The default is 1.

The timeout parameter specifies how many milliseconds the Dell PowerConnect device waits for a reply from the pinged device. You can specify a timeout from 1 - 4294967296 milliseconds. The default is 5000 (5 seconds).

The ttl parameter specifies the maximum number of hops. You can specify a TTL from 1 - 255. The default is 64.

The size parameter specifies the size of the ICMP data portion of the packet. This is the payload and does not include the header. You can specify from 0 - 4000. The default is 16.

The no-fragment parameter turns on the "don't fragment" bit in the IP header of the ping packet. This option is disabled by default.

The quiet parameter hides informational messages such as a summary of the ping parameters sent to the device and instead only displays messages indicating the success or failure of the ping. This option is disabled by default.

The verify parameter verifies that the data in the echo packet (the reply packet) is the same as the data in the echo request (the ping). By default the device does not verify the data.

The data <1 - 4 byte hex> parameter lets you specify a specific data pattern for the payload instead of the default data pattern, "abcd", in the packet data payload. The pattern repeats itself throughout the ICMP message (payload) portion of the packet.

NOTE

For numeric parameter values, the CLI does not check that the value you enter is within the allowed range. Instead, if you do exceed the range for a numeric value, the software rounds the value to the nearest valid value.

The brief parameter causes ping test characters to be displayed. The following ping test characters are supported:

! Indicates that a reply was received.

Indicate that the network corner timed out while waiting for a reply

Tracing an IPv4 route

NOTE

This section describes the IPv4 traceroute command. For details about IPv6 traceroute, refer to "IPv6 Traceroute" on page 253.

Use the traceroute command to determine the path through which a Dell PowerConnect device can reach another device. Enter the command at any level of the CLI.

The CLI displays trace route information for each hop as soon as the information is received. Traceroute requests display all responses to a given TTL. In addition, if there are multiple equal-cost routes to the destination, the Dell PowerConnect device displays up to three responses by default.

PowerConnect> traceroute 192.33.4.7

Syntax: traceroute [maxttl ] [minttl ] [numeric] [timeout ] [source-ip ]

Possible and default values are as follows.

minttl - minimum TTL (hops) value: Possible values are 1 - 255. Default value is 1 second.

maxttl - maximum TTL (hops) value: Possible values are 1 - 255. Default value is 30 seconds.

timeout - Possible values are 1 - 120. Default value is 2 seconds.

numeric - Lets you change the display to list the devices by their IP addresses instead of their names.

source-ip - Specifies an IP address to be used as the origin for the traceroute.

Software-based Licensing

Chapter

4

Table 14 lists the individual Dell PowerConnect switches and the software licensing features they support.
TABLE 14 Supported software licensing features

Software license terminology

This section defines the key terms used in this chapter.

• Entitlement certificate – The proof-of-purchase certificate (paper-pack) issued by Dell when a license is purchased. The certificate contains a unique transaction key that is used in conjunction with the License ID of the Dell PowerConnect device to generate and download a software license from the Brocade software portal.
• License file – The file produced by the Brocade software portal when the license is generated. The file is uploaded to the Dell PowerConnect device and controls access to a licensed feature or feature set.
• License ID (LID) - This is a number that uniquely identifies the Dell PowerConnect device. The LID is used in conjunction with a transaction key to generate and download a software license

Software-based licensing overview

With the introduction of software-based licensing, one or more valid software licenses are required to run such licensed features on the device.

Dell PowerConnect devices support software-based licensing will use software-based licensing only, eliminating the need for a customer- or factory-installed EEPROM on the management module or switch backplane.

Software-based licensing provides increased scalability and rapid deployment of hardware and software features on the supported Dell family of switches. For example, for premium upgrades, it is no longer necessary to physically open the chassis and install an EEPROM to upgrade the system. Instead, the Web is used to generate, download, and install a software license that will enable premium features on the device.

How software-based licensing works

A permanent license can be ordered pre-installed in a Dell PowerConnect device when first shipped from the factory, or later ordered and installed by the customer. In either case, additional licenses can be ordered as needed.

When a license is ordered separately (not pre-installed), an entitlement certificate, along with a transaction key, are issued to the customer by Dell as proof of purchase. The transaction key and LID of the Dell PowerConnect device are used to generate a license key from the Brocade software licensing portal. The license key is contained within a license file, which is downloaded to the customer's PC, where the file can then be transferred to a TFTP or SCP server, then uploaded to the Dell PowerConnect device.

Once a license is installed on the Dell PowerConnect device, it has the following effect:

- For PowerConnect B-Series FCX devices, the license unlocks the licensed feature and it becomes available immediately. There is no need to reload the software.

License types

For a list of features supported with these images, refer to the release notes.

Licensed features and part numbers

Table 16 lists the supported licensed features, associated image filenames, and related part numbers.

NOTE

There are no changes to the part numbers for products with pre-installed (factory-installed) licenses. These part numbers are listed for reference in the last column of Table 16.

TABLE 16 Licensed features and part numbers

Licensing rules

This section lists the software licensing rules and caveats related to the Dell PowerConnect devices that support software-based licensing.

General notes

The following licensing rules apply to all PowerConnect devices that support software licensing:

Licensed features and part numbers

For example, if stack member unit 4 does not have a license to run BGP whereas the Active controller does, unit 4 has an inferior license and will not be allowed to join the stack. Likewise, if unit 4 has a license to run BGP whereas the Active controller does not, unit 4 has a superior license and will be allowed to join the stack, but will not be elected as the Standby Controller.

- For hitless stacking limitations with software-based licensing, refer to "Configuration notes and feature limitations" on page 165.

Configuration tasks

This section describes the configuration tasks for generating and obtaining a software license, then installing it on the Dell PowerConnect device. Perform the tasks in the order listed in Table 17.

TABLE 17 Configuration tasks for software licensing

Obtaining a license

The procedures in this section show how to generate and obtain a software license.

1. Order a license for the desired licensed feature. Refer to Table 16 for a list of valid part numbers and licensed features.
2. When you receive the paper-pack transaction key, retrieve the LID of your Dell PowerConnect device by entering the show version command on the device. Example command output is shown in "Viewing the License ID (LID)" on page 91.

If you received a paper-pack transaction key, write the LID in the space provided on the

Figure 5 shows the Software Portal Login window.

FIGURE 5 Brocade Software Portal Login window

Figure 6 shows the License Management Welcome window that appears after logging in to the software portal. From this window, mouse over the License Management banner, then IP/Ethernet, then click on License Generation with Transaction key.

FIGURE 6 License Management Welcome window

support1 Log list

Figure 7 shows the IP/Ethernet License Generation window for generating a license using a transaction key and LID.

FIGURE 7 IP Ethernet License Generation window

support1 Leg Out

Press the Generate button to generate the license. Figure 8 shows the results window, which displays an order summary and the results of the license request.

• If the license request was successful, the "Status" field will indicate Success and the "License File" field will contain a hyperlink to the generated license file. The license file will also be automatically e-mailed to the specified Customer e-mail ID.
• If the license request failed, the "Status" field will indicate the reason it failed and the action to be taken.

FIGURE 8 IP/Ethernet License Generation Results window

Installing a license file

Once you obtain a license file, place it on a TFTP or SCP server to which the Dell PowerConnect device has access, then use TFTP or SCP to copy the file to the license database of the Dell PowerConnect device.

Using TFTP to install a license file

To copy a license file from a TFTP server to the license database of the Dell PowerConnect device, enter a command such as the following at the Privileged EXEC level of the CLI:

PowerConnect# copy tftp license 10.1.1.1 lic.xml

Syntax: copy tftp license

is the address of the IPv4 TFTP server.

is the filename of the license file.

Using Secure Copy (SCP) to install a license

SSH and SCP must be enabled on the Dell PowerConnect device before the procedures in this section can be performed. For details, see the chapter "Configuring SSH2 and SCP" on page 1423.

To copy a license file from an SCP-enabled client to the license database of the Dell PowerConnect device, enter a command such as the following on the SCP-enabled client.

c:\scp c:\license\license101 terry@10.1.1.1:license

Syntax: scp @:license

Verifying the license file installation

Use the show license command to verify that the license is installed on the device. Details about this command are in the section "Viewing the license database" on page 92.

Other licensing options available from the Brocade Software Portal

This section describes other software licensing tasks supported from the Brocade software portal.

Viewing software license information

You can use the License Query option to view software license information for a particular unit, transaction key, or both. You can export the report to Excel for sharing or archiving purposes.

Depending on the status of the license, for example whether or not the license was generated, the report will include the following Information:

• Hardware part number, serial number, and description
• Software part number, serial number, and description
• Date the license was installed
- Transaction key
• LID
- Feature name
- Product line

To access the License Query option, select it from the License Management Welcome window shown in Figure 6.

Figure 9 shows the License Query window.

FIGURE 9 License Query window

support: Log Out

License Management

Figure 10 shows an example of the license query results.
FIGURE 10 License Query results window

In this example, the line items for Level 1 display hardware-related information and the line items for Level 2 display software-related information. If the query was performed before the transaction key was generated, the first row (Level 1) would not appear as part of the search results. Similarly, if the query was performed before the license was generated, some of the information in the second row would not be displayed.

Transferring a license

A license can be transferred between Dell PowerConnect devices if the following conditions are true:

• The device is under an active support contract, and
- The license is being transferred between two like-models (e.g., from a 24-port model to another 24-port model or from a 48-port model to another 48-port model).

Contact your Dell representative for more information.

TABLE 18 Syslog messages

Viewing information about software licenses

This section describes the show commands associated with software licensing. These commands are issued on the Dell PowerConnect device, at any level of the CLI.

NOTE

You can also view information about software licenses from the Brocade software portal. Refer to "Viewing software license information" on page 89.

Viewing the License ID (LID)

Dell PowerConnect devices that ship during and after the release of software licensing will have the LID imprinted on the label affixed to the device. You also can use the CLI command show version to view the LID on these devices, and on devices that shipped before the release of software licensing.

Use the show version command to display the serial number, license, and LID of the device. The following is example output from an PowerConnect B-Series FCX unit with the license FCX-ADV-LIC-SW installed.

PowerConnectshow version

Copyright (c) 1996-2010 Brocade Communications Systems, Inc.

UNIT 1: compiled on May 30, 2010 + 16, 20, 20. Ischaled se #778070001

Viewing the license database

To display general information about all software licenses in the license database, use the show license command. The following shows example output.

PowerConnect+show license

To display detailed information about a particular license, use the show license command. The following shows example output.

PowerConnect#show license 1

Syntax: show license []

The following table describes the information displayed by the show license command.

TABLE 19 Output from the show license command

Status Indicates the status of the license:

- Valid - A license is valid if the LID matches the serial number of the device for which the license was purchased, and the package name is recognized by the system.

- Invalid – The LID does not match the serial number of the device for which the license was purchased.

• Active - The license is valid and in effect on the device.

Viewing software packages installed in the device

Use the show version command to view the software packages that are currently installed in the

device.

NOTE

The software package name is not the same as the license name.

PowerConnect↓show version

Copyright (c) 1996-2010 Brocade Communications Systems, Inc.
UNIT 1: compiled on Mar 30 2010 at 18:39:20 labeled as FCXR07000bl
(5245400 bytes) from Secondary FCXR07000bl.bin
SW: Version 07.0.00B17f3
Boot-Monitor Image size = 369286, Version:07.0.01T7f5 {grz07001}
SW: Stackable FCX624SF 

UNIT 1: SL 1: FCX-24GS 24-port Management Module

Serial #: PR320400289
license: FCX_adv_router_soft_package (lid: rlihfjffhna)
P-ENGINE 0: type DB10, rev 01 

UNIT 1: SL 2: FCX-2XGC 2-port 16G Module {2-CX4}

800 MHz Power PC processor 8544E (version 33/0022) 400 MHz bus 65536 KB flash memory
256 MB DRAM
Monitor Option is on
STACKID 1 system uptime is 16 hours 35 minutes 25 seconds
The system : started=warm start reloaded=by "reload" 

Table 20 lists the supported software packages.

TABLE 20 Software packages

Product Software package name License needed?

PowerConnect B-Series BASE_SOFT_PACKAGE No

FCX

EVY FULL ROUTER COST PACKAGE No

Table 21 lists the individual Dell PowerConnect switches and the Ironstack features they support.
TABLE 21 Supported Ironstack features

1. All PowerConnect B-Series FCX models can be ordered from the factory as -ADV models. ADV models include support for Layer 3 BGP. PowerConnect B-Series FCX-E and PowerConnect B-Series FCX-I models require an optional 10 Gbps SFP+ module to support stacking.

• Active Controller, Standby Controller, and member units in a stack
• Active Controller management of entire stack
• Active Controller download of software images to all stack units
- Standby Controller for stack redundancy
• Active Controller maintenance of information database for all stack units
- Packet switching in hardware between ports on stack units
- All protocols operate on an IronStack in the same way as on a chassis system.

Stackable models

PowerConnect B-Series FCX devices

All PowerConnect B-Series FCXdevices can be active members of a IronStack. PowerConnect B-Series FCX-E and PowerConnect B-Series FCX-I models require an optional 10 Gbps SFP+ module to support stacking. For information about how to install PowerConnect B-Series FCX devices, see the PowerConnect B-FCX Switch Hardware Installation Guide.

All PowerConnect B-Series FCX devices can be ordered from the factory as -ADV models with support for Layer 3 BGP.

IronStack terminology

Stack unit roles:

- Active Controller - Handles stack management and configures all system- and interface-level features.

- Future Active Controller - The unit that will take over as Active Controller after the next reload, if its priority has been changed to the highest priority. When a priority for a stack unit is changed to be higher than the existing Active Controller, the takeover does not happen immediately to prevent disruptions in the stack operation.

show, stack, and a few debug commands. When the stack is formed, all local consoles are directed to the Active Controller, which can access the entire CLI. The last line of output from the show version command indicates the role of a unit, unless it is a standalone unit, in which case it is not shown. For example:

My stack unit ID = 1, boctup role = active

• Clean Unit - A unit that contains no startup flash configuration or run time configuration. To erase old configuration information, enter the erase startup-config command and reset the unit. For PowerConnect B-Series FCX devices, the run-time configuration on a clean unit may also contain default-port information,
• Control Path - A path across stacking links dedicated to carrying control traffic such as commands to program hardware or software image data for upgrades. A stack unit must join the control path to operate fully in the stack.
• Default Port - PowerConnect B-Series FCX devices use the default-port command to define stacking port candidates.
• Interprocessor Communications (IPC) - The process by which proprietary packets are exchanged between stack unit CPUs.
• IronStack - A set of stackable units (maximum of eight) and their connected stacking links so that: all units can be accessed through their common connections, a single unit can manage the entire stack, and configurable entities, such as VLANs and trunk groups, can have members on multiple stack units.
• Non-Functioning Stack Unit - A stack unit that is recognized as a stack member, and is communicating with the Active Controller over the Control Path, but is in a non-functioning state. Because of this state, traffic from the non-stack ports will not be forwarded into the stack - they will be dropped or discarded. This may be caused by an image or configuration mismatch.
• Sequential Connection - Stack unit IDs, beginning with the Active Controller, are sequential. For example, 1, 3, 4, 6, 7 is sequential if Active Controller is 1, 1, 7, 6, 4, 3 are non-sequential in a linear topology, but become sequential in a ring topology when counted from the other direction as: 1, 3, 4, 6, 7. Gaps in numbering are allowed.

• Standalone Unit - A unit that is not enabled for stacking, or an Active Controller without any Standby Controller or stack members.

• Static Configuration - A configuration that remains in the database of the Active Controller even if the unit it refers to is removed from the stack. Static configurations are derived from the startup configuration file during the boot sequence, are manually entered, or are converted from dynamic configurations after a write memory command is issued.

• Dynamic Configuration - A unit configuration that is dynamically learned by a new stack unit from the Active Controller. A dynamic configuration disappears when the unit leaves the stack.

Building an IronStack

This section describes how to build an IronStack. Before you begin, you should be familiar with the supported stack topologies and the software requirements. When you are ready to build your stack, you can go directly to the instructions.

IronStack topologies

IronStack technology supports linear and ring stack topologies. Although stackable units may be connected in a simple linear topology, Dell recommends a ring topology because it offers the best redundancy and the most resilient operation.

Mixed unit topologies

For more information about PowerConnect B-Series FCX stack topologies, see "PowerConnect B-Series FCX stack topologies" on page 98.

PowerConnect B-Series FCX stack topologies

A IronStack can contain all one model, or any combination of the PowerConnect B-Series FCX models. You can mix 24-port and 48-port FCX devices in a single stack, to a maximum of eight units per stack.

The procedure for cabling a stack of PowerConnect B-Series FCX devices differs depending on whether your stack contains PowerConnect B-Series FCX-E and PowerConnect B-Series FCX-I

FIGURE 11 PowerConnect B-Series FCX linear and ring stack topologies

FIGURE 13 PowerConnect B-FCX-E linear topology stack using SFP+ module ports

FIGURE 14 Mixed linear stack of PowerConnect B-FCX-E devices and PowerConnect B-FCX-S devices

1. Use the secure-setup utility to form your stack. Secure-setup gives you control over the design of your stack topology and provides security through password verification. For the secure-setup procedure, refer to "Scenario 1 - Configuring a three-member IronStack in a ring topology using secure-setup" on page 101.
2. Automatic stack configuration. With this method, you enter all configuration information, including the module type and the priorities of all members into the unit you decide will be the Active Controller and set its priority to be the highest. When you enable stacking on the Active Controller the stack then forms automatically. This method requires that you start with clean units (except for the Active Controller) that do not contain startup or run time configurations. Refer to "Scenario 2 - Configuring a three-member IronStack in a ring topology using the automatic setup process" on page 105.
3. Manual stack configuration. With this method, you configure every unit individually, and enable stacking on each unit. Once the units are connected together, they will automatically operate as an IronStack. With this method the unit with the highest priority becomes the Active Controller, and ID assignment is determined by the sequence in which you physically connect the units. Refer to "Scenario 3 - Configuring a three-member IronStack in a ring topology using the manual configuration process" on page 108.

Configuration notes

Before you configure your IronStack, consider the following guidelines:

• Consider the number of units, and the mix of units your stack will contain, and how the stacking ports on the units will be connected. For more information about PowerConnect B-Series FCX devices, refer to the PowerConnect B-FCX Switch Hardware Installation Guide.
• The stack should be physically cabled in a linear or ring topology. Connect only those units that will be active in the stack.
• When you have a full stack of 8 units, you may need to increase the trap hold time from the default, which is 60 seconds, to five minutes (300 seconds). This will prevent the loss of initial boot traps. To increase the trap hold time, use the following command.

PowerConnect# snmp-server enable traps hold 300

Syntax: snmp-server enable traps hold

• Authentication of secure-setup packets provides verification that these packets are from genuine Dell stack unit. MD5-based port verification confirms stacking ports.
• Superuser password is required to allow password-protected devices to become members of an IronStack.
• The stack disable command. When this command is issued, a unit does not listen for or send stacking packets, which means that no other device in the network can force the stacking-disabled unit to join an IronStack.

Secure-setup can also be used to add units to an existing IronStack (refer to "Adding, removing, or replacing units in an IronStack" on page 147) and to change the stack IDs of stack members (refer to "IronStack unit identification" on page 122).

When secure-setup is issued on a unit that is not already the Active Controller, this unit becomes the Active Controller, and, if it does not have an assigned priority, secure-setup assigns it a priority of 128. Any unit that then tries to join the stack must have an assigned priority less than 128. If secure-setup discovers a unit with a priority of 128 or higher, it changes the priority to 118.

When secure-setup is issued on a unit that is not already the Active Controller, this unit becomes the Active Controller. If this unit does not already have an assigned priority, secure-setup will assign this unit a priority of 128 by default, if no other units in the stack have a priority higher than 128. If another unit in the stack has a priority of 128 or higher, secure-setup will give the Active Controller a priority equal to the highest priority unit in the stack (which is by default the Standby Controller). When the Active Controller and the Standby Controller have identical priorities, during a reset, the old Active Controller cannot reassume its role from the Standby Controller (which has become the Active Controller at the reset).

If the previous Active Controller again becomes active, and you want it to resume the role of Active Controller, you should set the priority for the Standby Controller to a priority lower than 128. If you do not want the previous Active Controller to remain Active Controller, you can set the same priority for both Active and Standby Controllers (higher than, or equal to 128). For details, refer to "IronStack unit priority" on page 123.

NOTE

Secure-setup works for units within a single stack. It does not work across stacks.

Follow the steps given below to configure a three-member stack in a ring topology using

1. Enter the stack secure-setup command. As shown In the following example, this command triggers a Dell proprietary discovery protocol that begins the discovery process in both upstream and downstream directions. The discovery process produces a list of upstream and downstream devices that are available to join the stack. Secure-setup can detect up to 7 units in each direction (14 total), but since the maximum number of units in a stack is 8, you must select a maximum of 7 units from both directions.

NOTE

To exit the secure-setup, enter ^C at any time.

You should see output similar to the following.

PowerConnect# stack secure-setup

PowerConnect# Discovering the stack topology...

Current Discovered Topology - RING

Available UPSTREAM units

Hop(s) Type Mac Address

1 FCX624 0012.f239.2d40

2 FCX624 0012.f2d5.2100

Available DOWNSTREAM units

Hop(s) Type Mac Address

1 FCX624 0012.f2d5.2100

2 FCX624 0012.f239.2d40

Do you accept the topology (RING) {y/r}?: y

If you accept the topology, you will see output similar to the following.

Selected Topology:

Active Id Type Mac Address

1 FCX648 00e0.52ab.cd00

1 S FCX648 active 00e0.52ab.cd00 128 local Ready
2 D FCX624 standby 0012.f2d5.2100 60 remote Ready
3 D FCX624 member 0012.f239.2d40 0 remote Ready 

active standby
+----+
+----+
+----+
-2/1| 1 | 3/1--2/1 | 2 | 3/1--2/2 | 3 | 2/1
+----+
+----+ +----+

Current stack management MAC is 00e0.52ab.cd00

NOTE

For field descriptions for the show stack command, refer to "Displaying stack information" on page 135.

NOTE

In this output, D indicates a dynamic configuration. After you perform a write memory, this display will change to S, for static configuration.

1. The Active Controller automatically checks all prospective stack members to see if they are password protected. If a unit is password protected, you will be asked to enter the password before you can add the unit. If you do not know the password, take one of the following actions:

2. Discontinue secure-setup by entering ^C

3. Obtain the device password from the administrator
4. Continue secure-setup for your stack. The password-protected device and all devices connected behind it will not be included in the setup process.

In the following example, the second unit is password protected, so you are asked for the password.

PowerConnect# stack secure-setup
PowerConnect# Discovering the stack topology...

Verifying password for the password protected units... 

Found UPSTREAM units 

1. When the Active Controller has finished the authentication process, you will see output that shows the suggested assigned stack IDs for each member. You can accept these recommendations, or you can manually configure stack IDs. Enter the show stack command to verify that all units are in the ready state.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment

1 S FCX624 active 00e0.5201.4000 128 local Ready
2 S FCX648 standby 001b.cd5e.c480 C remote Ready
3 S FCX648 member 00e0.5205.0000 C remote Ready

Current stack management MAC is 00e0.5201.4000

PowerConnect#

NOTE

For field descriptions for the show stack command, refer to "Displaying stack information" on page 135.

1. Enter the write memory command on the Active Controller once all of the stack units are active. This command initiates configuration synchronization, which copies the configuration file of the Active Controller to the rest of the stack units.

NOTE

The secure-setup process may modify your configuration with information about new units, stacking ports, etc. For this reason, it is very important to save this information by issuing the write memory command. If you do not do this, you may lose your configuration information the next time the stack reboots.

The secure-setup process for your stack is now complete.

Follow the steps given below to configure a three-member IronStack in a ring topology using automatic setup process.

1. Power on the devices.
2. This process requires clean devices (except for the Active Controller) that do not contain any configuration information. To change a device to a clean device, enter the erase startup-config command and reset the device. When all of the devices are clean, continue with the next step.

NOTE

The physical connections must be sequential, and must match the stack configuration.

1. Log in to the device that you want to be the Active Controller.
2. Configure the rest of the units by assigning ID numbers and module information on each unit. The stack ID can be any number from 1 through 8.

PowerConnect# config t

PowerConnect(config)#stack unit 2

PowerConnect{config-unit-2}# module 1 FCX-24-port-management-module

PowerConnect{config-unit-2}# module 2 FCX-xfp-l-port-16g-module

PowerConnect{config-unit-2}# module 3 FCX-xfp-1-port-16g-module

PowerConnect{config-unit-2}# stack unit 3

PowerConnect{config-unit-3}# module 1 FCX-24-port-management-module

PowerConnect{config-unit-3}# module 2 FCX-xfp-1-port-16q-module

PowerConnect{config-unit-3}# module 3 FCX-xfp-l-port-16g-module

NOTE

Each stack unit must have a unique ID number.

1. Assign a priority to the Active Controller using the priority command, as shown.

PowerConnect(config)‡ stack unit 1

PowerConnect(config-stack-1) priority 255

Syntax: priority

- is a value from 0-255. 255 is the highest priority

1. Assign a priority to the unit that will act as Standby Controller.

PowerConnect show running config
Current configuration:
!
vor 07.2.00a
!
stack unit 1
module 1 FCX-24-port-management-module
priority 255
stack unit 2
module 1 FCX-24-port-management-module
priority 240
stack unit 3
module 1 FCX-24-port-management-module
stack enable
! 

NOTE

For field descriptions for the show running config command, refer to "Displaying running configuration information" on page 143.

1. To see information about your stack, enter the show stack command.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment

1 S FCX624 active 00e0.5200.0100 255 local Ready
2 S FCX624 standby 0012.f2eb.afc0 240 remote Ready
5 S FCX624 member 0UIb.ed5a.alcu U remote Ready

Current stack management MAC is 00e0.5200.0100

PowerConnect#

Scenario 3 - Configuring a three-member IronStack in a ring topology using the manual configuration process

NOTE

For more detailed information about configuring an PowerConnect B-Series FCX IronStack, see "Configuring an FCX IronStack" on page 109

Follow the steps given below to configure a three-member IronStack in a ring topology using the manual configuration process.

1. Power on the devices. Do not connect the stacking cables at this point.
2. Assign a priority of 255 to unit 1, and a priority of 240 to unit 3 using the priority command. You do not have to assign a priority to the third device. Enter the stack enable command on each device. In this example, device 1 will be the Active Controller and device 2 will be the Standby Controller.

Unit 1

PowerConnect# config t

PowerConnect(config)# stack unit 1

PowerConnect{config-unit-1}# priority 255

PowerConnect{config-unit-1}# stack enable

Enable stacking. This unit actively participates in stacking

PowerConnect{config-unit-1}# write memory

Write startup-config done.

PowerConnect(config-unit-1)# Flash Memory Write (8192 bytes per dot) .Flash to Flash Done.

PowerConnect(config-unit-1) # end

Unit 2

PowerConnect# config t

PowerConnectconfig† stack enable

Enable stacking. This unit actively participates in stacking

PowerConnect(config)# Handle election, was standalone --> member,

assigned-ID=2, T=261285 ms.

For more information about cabling the devices, refer to the appropriate hardware installation guides.

NOTE

This method does not guarantee sequential stack IDs. If you want to change stack IDs to make them sequential, you can use secure-setup. Refer to "Renumbering stack units" on page 149.

Configuring an FCX IronStack

Every PowerConnect B-Series FCX-S device contains two default 16 Gbps stacking ports on the rear panel and two 10 Gbps ports on the front panel that can also be used as stacking ports.

NOTE

PowerConnect B-Series FCX-I and PowerConnect B-Series FCX-E devices can only be used for stacking if they have an optional 10 Gbps SFP+ module installed in the front panel. These devices do not have stacking ports on the rear panels.

An PowerConnect B-Series FCX IronStack may contain up to eight 24-port and 48-port devices, using any combination of the rear panel stacking ports and the front panel optional stacking ports. For PowerConnect B-Series FCXs devices, to use ports other than the factory-default 16 Gbps ports, you must define the ports for each device in the run time configuration. You can also configure the 16 Gbps ports to operate as 10 Gbps ports. See "Configuring PowerConnect B-Series FCX stacking ports" on page 109.

An PowerConnect B-Series FCX "clean unit" may contain a default port configuration, but it is still considered a clean unit. To preserve this state, do not do a write memory on the unit before you build the stack. An PowerConnect B-Series FCX device with the default port configuration is still considered a clean unit. To ensure that the device remains a clean unit, do not do a write memory on the device. (Write memory adds a startup-config, and the device is no longer a clean unit.)

NOTE

The automatic setup process will not work for PowerConnect B-Series FCX devices that do not contain the default port information in their clean unit configurations.

NOTE

If you are adding PowerConnect B-Series FCX-E or PowerConnect B-Series FCX-I devices to a stack containing PowerConnect B-Series FCX-S devices, you must reconfigure the stacking ports on the PowerConnect B-Series FCX-S devices to be the 10 Gbps ports on the front panel. You can then connect all of the devices in a stack using front panel ports.

Changing PowerConnect B-Series FCX-S and CX4 ports from 16 Gbps to 10 Gbps

You can configure the 16 Gbps PowerConnect B-Series FCX4 ports to operate as 10 Gbps ports using the speed-duplex command, as shown in the following example.

Syntax: speed-duplex [10-full | 10-half | 100-full | 100-half | 1000-full-master | 1000-full-slave | 10g-full | auto]

• 10-full - 10M, full duplex
• 10-half - 10M, half duplex
• 100-full - 100M, full duplex
• 100-half - 100M, half duplex
• 1000-full-master - 1G, full duplex, master
• 1000-full-slave - 1G, full duplex, slave
• 10g-full - 10G, full duplex
• auto - Autonegotiation

NOTE

Both ends of a link must be configured for 10 Gbps for the link to operate as 10 Gbps. If you want the link to operate as a 16 Gbps link, both ends of the link must be configured for 16 Gbps.

0 runts, 0 giants

0 packets output, 0 bytes, 0 underruns

Transmitted 0 broadcasts, 0 multicasts, 0 unicasts

0 output errors, 0 collisions

Relay Agent Information option: Disabled

Changing PowerConnect B-Series FCX-S and PowerConnect B-Series FCXS-PowerConnect B-Series FCX4 ports from 10 Gbps to 16 Gbps

To change the PowerConnect B-Series FCX4 ports from 10 Gbps back to 16 Gbps, enter the no speed-duplex 10g command at the interface level of the CLI, as shown in this example.

PowerConnect(config-if-e10000-cx4-1/2/1)† no speed-duplex 10g

PowerConnect(config-if-e10000-cx4-1/2/1)↓ show interface br | in Up

1/1/4 Up Forward Full 1G None No 1 0 001b.f286.0003

1/2/1 Up Forward Full 16G None No 1 0 001b.f288.0019

1/3/1 Up Forward Full 10G None No N/A 0 001b.f288.001b

3/3/1 Up Forward Full 10G None No N/A 0 0024.3814.Sdf3

mgmt.1 Up None Full 1G None No 1 0 001b.f288.0018

PowerConnect(config-if-e10000-cx4-1/2/1)† show interface e 1/2/1

16GigabitEthernet1/2/1 is up, line protocol is up

Hardware is 16CigabitEthernet, address is 00lb.f288.0019 (bia 00lb.f288.0019)

Interface type is 16Gig CX4

Member of L2 VLAN ID 1, port is untagged, port state is FORWARDING

BPDU guard is Disabled, ROOT protect is Disabled

Link Error Dampening is Disabled

STP configured to ON, priority is level0, mac-learning is enabled

Flow Control is enabled

mirror disabled, monitor disabled

Not member of any active trunks

Not member of any configured trunks

No port nam

IP MTU 1500 bytes, encapsulation ethernet

300 second input rate: 0 bits/sec, 0 packets/sec, 0.00% utilization

300 second output rate: 0 bits/sec, 0 packets/sec, 0.00% utilization

0 packets input, 0 bytes, 0 no buffer

Received 0 broadcasts, 0 multicasts, 0 unicasts

Secure-setup probe packets can be received by a default port whether or not it is acting as a stacking port. Stacking packets can be only received by a stacking port (which is also always a default port). In order to use stacking ports that are not defined in the default configuration, you must define the port settings for each unit using the default-port command, so that secure-setup can discover the topology of the stack.

The 4-byte Ethernet preamble for the Ethernet frame is used when a port is configured as a default stacking port. For non-default ports, the standard 8-byte Ethernet preamble is used. For a default port that is used as a regular data port, the standard 8-byte Ethernet preamble must be explicitly enabled on the port using the longpreamble command. For details, refer to "Configuring a default stacking port to function as a data port" on page 115.

Stackable devices ship with two default stacking ports configured. Use the stack-port command to select only one of these factory default ports as the stacking port. If you do not configure stack-port, both default ports will operate as stacking ports.

Use the default-port command to use ports other than the factory default ports as stacking ports. You must configure default-port on each unit before building a stack. Once you have configured default-port on all units, you can then use any of the three stack construction methods to build a stack. The Active Controller then learns the port configuration for each unit.

NOTE

You cannot change the setting for a default port if the port is in use.

Changing default stacking port configurations

For PowerConnect B-Series FCX-E and PowerConnect B-Series FCX-I devices, ports 1 and 2 of the optional 10 Gbps SFP+ module (slot 2) act as the default stacking ports. You can change the default stacking ports to 3 and 4 on this module, or disable stacking, on all of the module ports. The following example changes the default ports on a 10 Gbps module from 1 and 2 to 3 and 4.

PowerConnect 10g-1(config)# stack unit 1

10g-1{config-unit-1}#

10g-1{config-unit-1}# default-ports 1/2/3 - 1/2/4

Table 22 identifies the slot and port designations for each model.

TABLE 22 Slot and port designations for PowerConnect stackable devices

NOTE

If you enter an incorrect stack port number, you will get an error similar to the following.

PowerConnectconfig-unit-3)# stack-port 3/4/1

Error! port 3/4/1 is invalid

PowerConnect(config-unit-3)# stack-port 3/2/1

To return both ports to stacking status, enter the no stack-port command on the single stacking port. This converts both ports to stacking ports. By default, if both ports are stacking ports, they are displayed by the system only when stacking is enabled. If only one port is configured as a stacking port, the system always displays this port.

Using secure-setup to build an FCX IronStack

You can use the secure-setup utility to build an PowerConnect B-Series FCX IronStack by performing the following steps.

1. When you have designated the desired stacking ports and connected your PowerConnect B-Series FCX units together, on stack unit 1, enter stack enable and stack secure-setup, as shown.

PowerConnect# stack enable

PowerConnect# stack secure-setup

PowerConnect‡ Discovering the stack topology...

Available UPSTREAM units

Hop(s) Id Type Mac Address

1 new FCX648 0012.f2d6.0511

2 new FCX624 0200.9999.0000

Enter the number of the desired UPSTREAM units (0-2) [0]: 2

Selected Topology:

Active Id Type Mac Address

1 FCX624 001b.f2e5.0100

Selected UPSTREAM units

Hop(s) Id Type Mac Address

1 2 FCX648 0012.f2d6.0511

2 3 FCX624 0200.9999.0000

Stack unit 3 Power supply 1 is up

Stack unit 3 Power supply 2 is down

Config changed due to add/dol units. Do write mom if you want to keep it Election, was active, no role change, assigned-ID=1, total 3 units, my priority=128

PowerConnect

Config changed due to add/del units. Do write mem if you want to keep it

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment
1 S FCX624 active 001b.f2e5.0100 128 local Ready
2 D FCX648 standby 0012.f2d6.0511 0 remote Ready
3 D FCX624 member 0200.9999.0000 0 remote Ready

Current stack management MAC is 001b.f2e5.0100

PowerConnect# write mem

Write startup-config done.

PowerConnect# Flash Memory Write (8192 bytes per dot) .Flash to Flash Done.

PowerConnect#show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment
1 S FCX624 active 001b.f2e5.0100 128 local Ready
2 S FCX648 standby 0012.f2de.0511 C remote Ready
3 S FCX624 member 0200.9999.0000 0 remote Ready

Use the no form of the command to revert to the 4-byte Ethernet preamble.

Verifying an IronStack configuration

Verifying an PowerConnect B-Series FCX IronStack configuration

The following output shows an example configuration of an PowerConnect B-Series FCX IronStack.

PowerConnect# show stack
alone: standalone, D: dynamic config, S: static config
ID Type Role Mac Address Pri State Comment
2 S FCX648 standby 00e0.5202.0000 C remote Ready
3 S FCX624 member 00e0.5203.0000 C remote Ready
4 S FCX648 member 00e0.5204.0000 C remote Ready
5 S FCX648 member 00e0.0000.0000 C remoteReady
6 S FCX648 active 00e0.5201.0000 128 local Ready
active standby
+---- +---- +---- +----
-2/1 | 8 | 2/2--2/1 | 4 | 2/2--2/1 | 3 | 2/2--2/1 | 2 | 2/2-
+---- +---- +---- +---- |
----
Current stack management MAC is 00e0.5201.0000 

The next example shows output from the show version command for the same FCX stack.

PowerConnect# show version
Copyright (c) 1936-2009 Brocade Communications Systems, Inc.
UNIT 8: compiled on Jun 17 2009 at 06:23:29 labeled as FCX06000a359
(3578117 bytes) from Primary FCX06000a359.bin
SW: Version 7.2.0a
UNIT 2: compiled on Jun 17 2009 at 06:23:29 labeled as FCX06000a359
(3578117 bytes) from Primary FCX06000a359.bin
SW: Version 7.2.0a
UNIT 3: compiled on Jun 17 2009 at 06:23:29 labeled as FCX06000a359
(3578117 bytes) from Primary FCX06000a359.bin
SW: Version 7.2.0a
UNIT 4: compiled on Jun 17 2009 at 06:23:29 labeled as FCX06000a359 

P-ENGINE 1: type DB90, rev 01
UNIT 4: SL 2: FCX-2XGC 2-port 16G Module (2-CX4) UNIT 4: SL 3: FCX-2XG 2-port 16G Module (2-XFP) UNIT 8: SL 1: FCX-45G 43-port Management Module P-ENGINE 0: Type DB90, rev 01 P-ENCINE 1: type DB90, rev 01 UNIT 8: SL 2: FCX-2XGC 2-port 16G Module (2-CX4) 800 MHz Power PC processor (version 33/0022) 144 MHz bus 65536 KB flash memory 256 MG DRAM Monitor Option is on STACKID 8 system uptime is 21 hours 2 minutes 23 seconds STACKID 2 system uptime is 21 hours 2 minutes 22 seconds STACKID 3 system uptime is 21 hours 2 minutes 23 seconds STACKID 4 system uptime is 21 hours 2 minutes 22 seconds The system : started=warm start reloaded=by "reload" My stack unit ID - 8, bootup role - active *** NOT FOR PRODUCTION ***

NOTE

For field descriptions for the show running config command, refer to "Displaying running configuration information" on page 143.

NOTE

For field descriptions for the show stack and show stack detail commands, refer to “Displaying stack information” on page 135.

The output from the show stack command contains a visual diagram of the stack. The dashed line between ports 1/2/1 and 3/2/1 indicates that this stack is configured in a ring topology. If the link between ports 1/2/1 and 3/2/1 is lost, the stack topology changes to linear, and the diagram changes to resemble the following.

active standby

Managing your IronStack

Your IronStack can be managed through a single IP address. You can manage the stack using this IP address even if you remove the Active Controller or any member from the stack. You can also connect to the Active Controller through Telnet or SSH using this address. All management functions, such as SNMP, use this IP address to acquire MIB information and other management data.

A Dell IronStack can be configured and managed using the command line interface (CLI) over a serial connection to a console port, or using Brocade Network Advisor. To determine what version of Brocade Network Advisor supports IronStack refer to the Brocade Network Advisor User Guide.

Logging in through the CLI

You can access the IronStack and the CLI in two ways:

• Through a direct serial connection to the console port
- Through a local or remote Telnet session using the stack IP address

You can initiate a local Telnet or SNMP connection by attaching a cable to a port and specifying the assigned management station IP address.

The stacking commands in the CLI are organized into the following levels:

- Global – Commands issued in the global mode are applied to the entire stack.

• Stack Member Configuration Mode – Commands issued in this mode apply to the specified stack member. Configuration information resides in the Active Controller.
• Configuration Mode - This is where you make configuration changes to the unit. To save changes across reloads, you need to save them to the Active Controller startup-config file. The configuration mode contains sub-levels for individual ports, for VLANs, for routing protocols, and other configuration areas.

NOTE

By default, any user who can open a serial or Telnet connection to the IronStack can access all of these CLI levels. To secure access, you can configure Enable passwords or local user accounts, or

on the Active Controller physical console port during a reload will not be visible on the console ports of the stack members because the remote connections are not established until the software loading process is complete. It is preferable to connect a cable to the console port on the stack unit that will normally be the Active Controller, rather than to the console port of one of the other stack units.

When a stack unit establishes communication with the Active Controller, it also establishes a remote console session to the Active Controller. In a normally functioning IronStack, a console cable may be connected to any of the stack units and provide access to the same commands on the Active Controller.

You can terminate a session by entering Ctrl+O followed by 'x' or 'X', or by entering the 'exit' command from the User EXEC level, or by entering the 'logout' command at any level.

NOTE

For the rconsole connections from the stack units to the Active Controller, the escape sequence and other methods of terminating the session are not available.

NOTE

Error messages that are generated during a reload of the Active Controller will not appear on rconsole connections from the stack units to the Active Controller. To see these error messages, you must connect a console cable to the Active Controller itself.

To establish an rconsole session, enter the rconsole command as shown:

PowerConnect# rconsole 1

Syntax: rconsole

The following example shows how to establish rconsole sessions to stack members. Notice that the show stack command on the stack members displays different information than what is shown when the show stack command is entered on the Active Controller.

To see the status of your stack units, enter the show stack command on the Active Controller.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment

PowerConnect rconsole 2

Connecting to unit 2... (Press Ctrl-O X to exit)

rcconsole-2@PowerConnect#show stack

ID Type Role Mac Address Prio State Comment

2 S FCX624P standby 0012.f2e2.ba40 0 local Ready

rconsole-20PowerConnect# exit

rconsole-2@PowerConnect> exit.

Disconnected. Returning to local session...

Establish a remote console session with stack unit 3.

PowerConnect# rconsole 3

Connecting to unit 3... (Press Ctrl-O X to exit)

rconsole-3@PowerConnect# show stack

ID Type Role Mac Address Prio State Comment

3 S FCX624F member 001b,ed7a,22c0 0 local Ready

rcansale-3@PowerConnect# 1ogout

Disconnected. Returning to local session...

PowerConnect#

IronStack management MAC address

The IronStack is identified in the network by a single MAC address, usually the MAC address of the Active Controller (the default). If a new Active Controller is elected, the MAC address of the new Active Controller (by default) becomes the MAC address for the entire stack. However, you can manually configure your stack to use a specified MAC address. Refer to "Manual allocation of the IronStack MAC address" on page 120.

In an IronStack, the management MAC address is generated by the software, and is always the MAC address of the first port of the Active Controller. This ensures that the management MAC address remains consistent across stack reboots, and helps prevent frequent topology changes as a result of protocol enable, disable, and configuration changes.

When you are configuring Layer 2 protocols on stack units, such as STP, RSTP, and MSTP, the management MAC address of the Active Controller acts as the Bridge ID.

NOTE

For hitless stacking failover, Dell recommends that you configure the IronStack MAC address using the stack mac command. Without this configuration, the MAC address of the stack will change to the new base MAC address of the Active Controller. This could cause a spanning tree root change. Even without a spanning tree change, a client (for example, a personal computer) pinging the stack might encounter a long delay depending on the client MAC aging time. The client won't work until it ages out the old MAC address and sends ARP requests to relearn the new stack MAC address.

To configure a stack MAC address manually, enter the following command.

PowerConnect(config)# stack mac 0000.0000.0011

Syntax: [no] stack mac

mac-address - a hexadecimal MAC address in the xxxx.xxxx.xxxx format

Enter the no form of this command to return the MAC address to that of the Active Controller.

Output for this command resembles the following.

PowerConnect(config)# stack mac 0000.0000.0011

PowerConnect(config)# show running-config

Current configuration:

ver 7.2.00a 100T7cl

!

stock

module 1 FCX-48-port-management-module

module 2 FCX-cx4-2-port-16q-module

priority 80

stack 2

module 1 FCX-24-port-management-module

module 2 FCX-cx4-2-port-16g-module

module 3 FCX-cx4-2-port-16g-module

stack enable

stack mac 0000.0000.0011

To display the stack MAC address, enter the show chassis command.

PowerConnect# show chassis

Fan 1 ok

Fan 2. ok --More--, next page; Space, next line; Return key, quit: Control-c

NOTE

For field descriptions for the show chassis command, refer to "Displaying chassis information" on page 133.

Removing MAC address entries

You can remove the following types of learned MAC address entries from the Dell system MAC address table:

- All MAC address entries

• All MAC address entries for a specified Ethernet port

• All MAC address entries for a specified VLAN

• A specified MAC address entry in all VLANs

For example, to remove entries for the MAC address 000d.cb80.00d in all VLANs, enter the following command at the Privileged EXEC level of the CLI.

PowerConnect# clear mac-address 000d.cb80.00d0

Syntax: clear mac-address | ethernet | vlan

• If you enter the clear mac-address command without any parameters, the software removes all MAC entries.
• Use the parameter to remove a specified MAC address from all VLANs. Specify the MAC address in the following format: HHHH.HHHH.HHHH.
• Use the ethernet parameter to remove all MAC addresses for a specified Ethernet port. Specify the variable in the format .
• Use the vlan parameter to remove all MAC addresses for a specified VLAN.

IronStack unit priority

A unit with a higher priority is more likely to be elected Active Controller. The priority value can be 0 to 255 with a priority of 255 being the highest. The default priority value assigned to the Active Controller and Standby is 128.

You can assign the highest priority value to the stack unit you want to function as the Active Controller. When you enter a new priority value for a stack unit, that value takes effect immediately, but does not affect the current Active Controller until the next reset. For details, refer to “Changing the priority of a stack unit” on page 123.

You can give your Active and Standby Controllers the same priority, or different priorities (Active highest, Standby second-highest). When Active and Standby Controllers have the same priority, if the Active fails and the Standby takes over, then the original Active becomes operational again, it will not be able to resume its original role if the new Active Controller has more members.

NOTE

For two unit stacks, this behavior does not apply. When the Active and Standby Controllers have the same priority, the Active Controller will always resume its original role.

In the same situation, when the priorities of the Active and Standby Controllers are different, the old Active Controller will regain its role and will reset the other units.

For example, suppose both Active and Standby Controllers have the same priority. If there are more than two units in a stack and the Active Controller leaves and comes back, it cannot win back the Active role because the new Active Controller has more members than the old Active Controller, which has no members. If there are only two units in a stack, the old Active Controller may win back the Active role if it has a lower unit ID. In this case, both the old Active Controller and new Active Controller have no members, so the unit with the lower unit ID wins the Active role.

If you want to assign the same priority to the Active and Standby Controllers, you must do so after the stack is formed. This prevents the intended Standby Controller from becoming the Active Controller during stack construction.

Changing the priority of a stack member will trigger an election that takes effect immediately unless the Active Controller role changes. If this is the case, the changes will not take effect until after the next stack reload.

CLI command syntax

CLI syntax that refers to stack units must contain all of the following parameters:

//

• - If the device is operating as a standalone, the stack-unit will be 0 or 1. Stack IDs can be 0 or any number from 1 through 8.
• - Refers to a specific group of ports on each device.
• - A valid port number. You can list all of the ports individually, use the keyword to to specify ranges of ports, or a combination of both. To apply the configuration to all ports on the device, use the keyword all in

IronStack CLI commands

CLI commands specific to stacking are listed in Table 23, with a link to the description for each command. For more information about CLI commands and syntax conventions, refer to Chapter 1, "Getting Familiar with Management Applications".

TABLE 23 Stacking CLI commands

show chassis

"Displaying chassis information" on page 133

TABLE 23 Stacking CLI commands (Continued)

Stacking mode

When a unit is stack-enabled or joins a stack either actively or passively, it reserves priority queue 7 for stacking traffic control, assigns buffers for the stacking ports, and configures the first two 10 Gbps ports as stacking ports.

NOTE

Designated stacking ports cannot contain any configuration information, such as VLAN membership, etc. If configuration information exists, stack enable will fail. You must remove all configuration information from the port and re-issue the stack enable command.

NOTE

The two left ports on the Four-port 10Gbps SFP+ module do not pass regular Ethernet traffic by default. The stack disable command must be entered at the global level and the stack disable command must be configured on these two ports in order for them to pass regular traffic.

Copying the flash image to a stack unit from the Active Controller

To copy the flash image to a stack unit from the Active Controller primary or secondary flash, enter the following command.

PowerConnect# copy flash flash unit-id-pri 2

Syntax: copy flash flash [primary | secondary | unit-id-pri | unit-id-sec ]

• primary - Copy secondary to primary
• secondary - Copy primary to secondary
• unit-id-prl - Copy active primary image to unit-id
• unit-id-sec - Copy active secondary image to unit-id

The unit-id-pri or unit-id-sec keywords are used to copy images to a stack member from the Active Controller primary and secondary flash, respectively. For , enter a value from 1 through 8. For FCXS devices, the unit range is from 1 through 10.

Reloading a stack unit

To reload a stack unit, enter the following command.

PowerConnect# reload

Syntax: reload [after | at | cancel | unit-id ]

• after - schedule reloading after certain time period
• at - schedule reloading at an exact later time

Managing your IronStack

Available UPSTREAM units

Available DOWNSTREAM units

Do you accept the topology (RING) (y/n)?: n

Available UPSTREAM units

Available DOWNSTREAM units

Hop (s) Type Mac Address 1 ECX624 001b ed5d SB40

1 FCX624 0018.2253.9946 2 FCX624 0012. f2d5. 2100

Enter the number of the desired UPSTREAM units (0-2)[0]: 1 Enter the number of the desired DOWNSTREAM units (0-1)[0]:

Selected Topology:

Selected UPSTREAM units

Do you accept the unit ids (y/n)?: y

PowerConnect+Election, was alone --> active, assigned-ID=1 reset unit 2: diff bootup id=1

PowerConnect ^1 show stack

alone: standalone, D: dynamic config, S: static config

To reverse the partitioning, reconnect all of the units into the original stack topology using the stacking ports. This is the same as merging stacks. If the original Active Controller again has the highest priority, it will regain its role. If two partition Active Controllers have the same priority, the Active Controller with the most stack members will win the election. This process helps minimize traffic interruption.

Ring topology stacks do not partition in the event of a member failure. Operation is interrupted briefly while the stack recalculates a new path. Ring topologies are more stable than linear topologies because they provide redundant pathways in case of accidental failure.

Merging IronStacks

IronStacks may be merged, but the total number of stack units must not exceed 8. For example, you could combine two stacks with 4 units each into a single stack of 8 units.

You can merge stacks by connecting them together using the stacking ports. Before doing this, make sure that none of the stacking ports have been reconfigured as data ports (for example, ports on an end unit in a linear stack topology). You cannot use secure-setup to merge stacks because secure-setup does not work across stack boundaries.

When stacks are merged, an election is held among the Active Controllers. The winner retains its configuration and the IDs of all of its original stack members. The remaining stack units lose their configuration and are reset. If the IDs of the losing stack units conflict with the IDs of the winning units they may change, and the IDs will no longer be sequential. You can use secure-setup to renumber the members in the newly merged stack. The following examples show how stack merging works:

• If a stack partitions into multiple stacks because of a connection failure, and you fix the connection, the stack partitions will merge back into the original stack with no change to stack IDs, because in this case all stack IDs are distinct.
• In a linear stack topology, the end units of the stack will have only one stacking port configured. Before you can merge two linear stacks, you must reconfigure the end units so that both ports are stacking ports.

MIB support for the IronStack

the stack MAC address changes. During this configured interval, if the previous Active Controller is reinstalled in the stack, the stack continues to use the MAC address of this unit, even though it may no longer be the Active Controller. If the previous Active Controller does not rejoin the stack during the specified time interval, the stack assumes the address of the new Active Controller as the stack MAC address.

The Persistent MAC Address feature allows you to configure a period of time during which the original base MAC address will not change if the Active Controller fails, or is removed for maintenance. This timer is triggered when the Standby Controller becomes the Active Controller. When the timer expires, the new Active Controller will change the previous MAC address to its base MAC address and advertise this MAC address to management VLANs to update the ARP peer table. If you want to use the new address, you will have to re-enter the stack-persistent-mac-timer command again to reactivate the persistent MAC address,

To enable Persistent MAC Address, enter the following command.

PowerConnect(config)# stack persistent-mac-timer 120

Syntax: [no] stack persistent-mac-timer

The variable is the number of minutes during which the IronStack will retain the original MAC Address if the Active Controller fails or is removed for service. The valid value range is from 5 - 6000 minutes. If you enter a 0, it means "keep this address forever". The default is 60 minutes.

To disable Persistent MAC Address, enter the following command.

PowerConnect(config)# no stack persistent-mac-timer

NOTE

If you enter the [no] version of this command while the persistent MAC address timer is active, the stack will disregard the persistent MAC address and will assume the MAC address of the new Active Controller.

NOTE

Persistent MAC and stack MAC cannot be used together.

In the following example, the persistent MAC timer has been set to the default of 60 minutes.

Batterman (1984) et al. 2006, published by: 60

priority 40

stack enable

stack persistent-mac 60

To display the stack MAC addresses, enter the show stack command.

PowerConnect(config)+show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Prio State Comment

1 S FCX848S active 0012.f2d5.9380 80 local Ready

2 5 FCX648 member 00e0.6666.888C 0 remote Ready

3 S FCX624 standby 0012.f2dc.0ec0 40 remote Ready

Current persistent MAC is 0012.f2a5.9380

PowerConnect(config)# stack mac 111.111.111

Error: persistent stacking MAC address timer is configured

PowerConnect (config)

The following example shows what the Persistent MAC information looks like in the output of the show stack command when the Standby Controller becomes the Active Controller.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Prio State Comment

1 S FCX648P active 0000.0000.0000 80 reserved

2 S FCX648 standby 00e0.6665.8880 0 remote Ready

3 S FCX624 master 0012.f2dc.0ec0 40 local Ready

PowerConnect#Persistent MAC timer expires in 59 minutes 52 seconds.

Current persistent MAC is 0012.f2d5.9380

Unconfiguring an IronStack

The stack unconfigure command is a run time command that returns stack units to their pre-stacking state. When a stack unit is unconfigured, its stacking flash is removed, and its startup-config.txt flash file is recovered. These actions apply to all units to which this command is applied, regardless of the role of the unit in the stack.

When the stack unconfigure command is applied to the Active Controller, it removes stack enable

• me - unconfigure this unit only
- clean - removes all startup configuration files including v4 and v5 and makes this a clean unit

NOTE

The stack unconfigure me command is available to all units, while stack unconfigure all and stack unconfigure are available on the Active Controller only.

The following example shows a session where stack unit 2 is unconfigured.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment
1 S FCX624 active 0012.f2eb.a900 128 local Ready
2 5 FCX648 standby 00f0.424f.4243 0 remote Ready
3 S FCX624 member 00e0.5201.0100 0 remote Ready

PowerConnect# stack unconfigure 2

Will recover pre-stacking startup config of this unit, and reset it. Are you sure? (enter 'y' or 'n'): y

Stack 2 deletes stack bootup flash and recover startup-config.txt from .old

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment

1 S FCX624 active 0012.f2eb.a900 128 local Ready
2 S FCX648 member 0000,0000,0000 0 reserved
3 S FCX624 standby 00e0.5201.0100 C remote Ready

When the stack unconfigure 2 command is issued, stack unit 2 recovers the startup-config.txt from the startup-config.old configuration file that was saved when this unit downloaded its configuration from the Active Controller. As the output shows, stack member 2 has been removed from the stack, and ID 2 is now is reserved for a replacement unit. Stack member 3 is now the Standby Controller.

Displaying IronStack information

This section describes the show commands for an IronStack, including output examples and field descriptions.

Compressed Fri Code size = 3034232, version 05.0.00T7e1 (FCX05000.bin)
Compressed Sec Code size = 2873523, Version 04.2.00aT7e1 (FCX04200a.bin)
Compressed BootROM Code size = 403073, Version 03.0.00T7e5
Code Flash Freq Space = 24117246
Stack unit 3:
Compressed Fri Code size = 3034232, version 05.0.00T7e1 (FCX05000.bin)
Compressed Sec Code size = 2873568, Version 04.2.00T7e1 (FCX04200.bin)
Compressed BootROM Code size = 405217, Version 04.0.00T7e5
Code Flash Freq Space = 2252800
PowerConnect# 

For stack member 3 only:

PowerConnect# show flash stack 3
Stack unit 3:
Compressed Pri Code size = 3034232, Version 05.0.0017e1 (PCX05000.bin)
Compressed Sex Code size = 2873568, Version 04.2.0017e1 (PCX04200.bin)
Compressed BootROM Code size = 405217, Version 04.0.0017e5
Code Flash Free Space = 2252800
PowerConnect# 

Table 24 describes the fields displayed in this example.

TABLE 24 Field definitions for the show flash command

Displaying memory information

The show memory command displays information about stack units. The following example shows output from this command for a stack with eight units.

Davon/Comma and other women

Dynamic memory: 238026752 bytes total, 182820504 bytes free, 23% used Stack unit 8:

Total DRAM: 268435456 bytes Dynamic memory: 238026752 bytes total, 182811440 bytes free, 23% used PowerConnect#

Syntax: show memory

Table 25 describes the fields displayed in this output example.

TABLE 25 Field definitions for the show memory command

Displaying chassis information

The show chassis command displays chassis information for each stack unit. Output resembles the following (in this example, a three member stack).

PowerConnect ^1 show chassis

The stack unit 1 chassis info:

Power supply 1 (NA - AC - Regular) present, status ok Power supply 2 not present

Fan 1 ok

Fan 2 ck

Exhaust Side Temperature Readings:

Current temperature : 33.0 deg-C

Warning level.....: 85.0 deg-C

Shutdown level.....: 90.0 deg-C

Intake Side Temperature Readings:

Current temperature : 31.0 deg-c

Boot Prom MAC: 0012.f2e4.6e00

Management MAC: 0012.f2e4.6e00

Fan 1 ck

Fan 2 OK

Exhaust Side Temperature Readings:

Current temperature : 31.5 deg-c

Warning level.....: 85.0 deg-C

Shutdown level.....: 90.0 deg-C

Intake Side Temperature Readings:

Current Temperature : 32.0 deg-C

Boot Prom MAC: 0012.f2db.e500

Syntax: show chassis

Table 26 describes the fields displayed in this output example.

TABLE 26 Field definitions for the show chassis command

Displaying stack module information

The show module command displays information about the stack unit modules. Output resembles the following.

PowerConnect(config)# show module

Module

S1:M1 FCX-24G 24-port Management Module

Status Ports Starting MAC

CK 24 00e0.5201.4000

Managing your IronStack

Syntax: show module

Table 27 describes the fields displayed in this output example.

TABLE 27 Field definitions for the show module command

This field... Describes.

Module Identifies the module, by stack unit ID, module number, module type

Status The status of this module

Ports The number of ports in this module

Starting MAC The starting MAC address for this module

Displaying stack resource information

Use the show stack resource command to display stack resource information, as shown in this example.

Syntax: show stack resource

Table 28 describes the output fields for this command.

TABLE 28 Field definitions for the show stack resource command

This field... Describes...

This command displays the following information for register attributes, general 12B data, and RB-tree node

alloc Memory allocated

The show stack command displays general information about an IronStack, for all members, for a specified member, and with additional detail if required.

The following output covers the entire stack.

PowerConnect(config)↑ show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Pri State Comment

1 S FCX648 active 0012.f2ob.a900 130 local Ready

2 9 FCX648 standby 00f0.424f.4243 0 remote Ready

3 S FCX624 member 00e0.5201.0100 0 remote Ready

4 S FCX624 member 0000.0000.0000 0 reserved

If you add a stack member ID, output is displayed for that member only.

PowerConnect# show stack 1

ID Type Role Mac Address Prio State Comment

1 S FCX648 active 0012.f2eb.a900 130 local Ready

PowerConnect# show stack 2

ID Type Role Mac Address Prio State Comment

2 S FCX648 standby 00f0.424f.4243 0 remote Ready, member after reload

PowerConnect+show stack

ID Type Role Mac Address Prio State Comment

3 9 FCX624 member 0010.4241.4243 0 remote Ready

If you add detail to the show stack command, output resembles the following.

PowerConnect(config)# show stack detail

ID Type Role Mac Address Prio State Comment

1 S FCX624 member 00e0.5201.4000 0 remote Ready

2 S FCX624 member 00e0.5205.0000 0 remote Ready

3 S FCX624 member 001b.ed5e.c480 0 remote Ready

4 9 FCX624 active 001b.ed5e.ac00 128 local Ready

5 S FCX624 standby 001b.ed5d.al80 0 remote Ready

6 9 FCX624 member 00e0.5200.3000 0 remote Ready

7 S FCX624 member 00c0.4444.0000 0 remote Ready

8 S FCX624 member 0012.f2eb.d540 0 remote Ready

TABLE 29 Field descriptions for the show stack command

Table 30 describes the output from the show stack detail command (in addition to the show stack command fields shown in the previous table).

TABLE 30 Field descriptions for the show stack detail command

TABLE 31 Field descriptions for the show stack flash command

Syntax: show stack flash

Displaying stack rel-IPC statistics

Use the show stack rel-ipc stats command to display session statistics for stack units.

PowerConnect# show stack rel-ipc stats

Reliable IPC statistics:

Global statistics:

Pkts revd w/no session: 2

Msgs revd w/no handler: 0

Unit statistics:

Unit 2 statistics:

Msgs sent: 1678 Msgs received: 470, Fkt sends failed: 0

Message types sent:

[9]-1571, [10]-2, [11]-50, [13]-2, [19]-53,

Message types received:

[9]=467, [10]=1, [13]=2,

Session statistics, unit 2, channel 0:

Session state: established (last established 31 minutes 7 seconds ago)

Managing your IronStack

Msgs sent: 0, Msgs received: 0

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 1, Pkts received: 6

Msg bytes sent: 0, Msg bytes received: 0

Pkt bytes sent: 12, Pkt bytes received: 72

Flushes requested: 0, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (MND):

Other: 1, ACK: 0, WND: 0, ACK+WND: 0

DAT: 0, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 0, Zero-window probes sent: 0

Dup ACK pkts rcvd: 6, Fkts rcvd w/dup data: 0

Pkte revd w/data past window: 0

Session statistics, unit 2, channel 3;

Session state: established (last established 31 minutes 7 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msgs sent: 234, Msgs received:

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 255, Pkts received: 241

Msq bytes sent: 8424, Msq bytes received: 0

Pkt bytes sent: 13220, Pkt bytes received: 2892

Flushes requested: 0, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (IND):

other: 1, ACK: 0, WND: 0, ACK+WND: 0

DAT: 254, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 20, Zero-window probes sent: 0

Dup ACK pkts rcvd: 7, Pkts rcvd w/dup data: 0

Pkts revd w/data past window: 0

Session statistics, unit 2, channel 5:

Session state: established (last established 31 minutes 5 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msqs sent: 2, Msqs received: 2

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 7, Pkts received: 11

Session state: established (last established 31 minutes 11 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msqs sent: 955, Msqs received: 489

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 1172, Pkts received: 1054

Msg bytes sent: 43705, Msg bytes received: 18696

Pkt bytes sent: 236968, Pkt bytes received: 33564

Flushes requested: 59, Suspends: 0, Resumes:

Packets sent with data (DAT), ACKs, and window updates (WND):

Other: 2, ACK: 487, NND: 7, ACK+NND

DAT: 675, DAT+ACK: 1, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 129, Zero-window probes sent: 0

Dup ACK pkts revd: 17, Pkts revd w/dup data: 0

Pkts rcvd w/data past window: 0

Session statistics, unit 3, channel 2:

Session state: established (last established 31 minutes 10 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msqs sent: 0, Msqs received

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 1, Pkts received: 7

Msg bytes sent: 0, Msg bytes received: 0

Pkt bytes sent: 12, Pkt bytes received: 84

Flushes requested: 0, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (WND):

Other: 1, ACK: 0, VND: 0, ACK+VND:

DAT: 0, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmite done: 0. Zero-window probes sent: 0

Dup ACK pkts revd: 7. Ekts revd w/dup data: 0

Pkta rcvd x/data past window: 0

Session statistics, unit 3, channel 3;

Session state: established (last established 31 minutes 11 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Pkts sent: 8, Pkts received: 13

Msg bytes sent: 123, Mag bytes received: 20V

Pkt bytes sent: 232, Pkt bytes received: 296

Flushes requested: 2, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (WIND)

Other: 5, ACK: 1, WND: 0, ACK+WND: 0

DAT: 2, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 0, Zero-window probes sent: 0

Dup ACK pkts rcvd: 6, Pkts rcvd w/dup data: 0

Pkts rcvd w/data past window: 0

Syntax: show stack rel-ipc stats

Displaying stack rel-IPC statistics for a specific stack unit

To display IPC statistics for a specific unit, enter the following command:

PowerConnect ^1 show stack rel-ipc stats unit 3

Unit 3 statistics:

Msgs sent: 1217 Msgs received: 509, Pkt sends failed: 0

Message types sent:

[9]-1182, [10]-2, [11]-2, [13]-2,

[19]=29,

Message types received:

[9]=506, [10]=1, [13]=2,

Session statistics, unit 3, channel 0:

Session state: established (last established 32 minutes 19 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msqs sent: 971, Msqs received: 506

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 1205, Pkts received: 1088

Msg bytes sent: 44281, Msg bytes received: 19308

Pkt bytes sent: 238004, Pkt bytes received: 34652

Other: 1, ACK: 0, WND: 0, ACK+WND: 0

DAT: 0, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 0, Zero-window probes sent: 0

Dup ACK pkts rcvd: 7, Pkts rcvd w/dup data: 0

Pkts revd w/data past window: 0

Session statistics, unit 3, channel 3:

Session state: established (last established 32 minutes 19 seconds ago)

Connections established: 1

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msgs sent: 242, Msgs received: 0

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 243, Pkts received: 246

Msg bytes sent: 8712, Msg bytes received: 0

Pkt bytes sent: 12596, Pkt bytes received: 2952

Flushes requested: 0, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (WND):

Other: 1, ACK: 0, VND: 0, ACK+VND: 0

DAT: 242, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 0, Zero-window probes sent: 0

Dup ACK pkts revd: 4, Pkts revd w/dup data: 0

Pkts revd w/data past window: 0

Session statistics, unit 3, channel 6:

Session state: established (last established 32 minutes 17 seconds ago)

Connections established:

Remote resets: 0, Reset packets sent: 0

Connection statistics (for current connection, if established):

Msgs sent: 2, Msgs received:

Atomic batches sent: 0, Atomic batches received: 0

Pkts sent: 8, Pkts received: 13

Msg bytes sent: 123, Msg bytes received: 20

Pkt bytes sent: 232, Pkt bytes received: 296

Flushes requested: 2, Suspends: 0, Resumes: 0

Packets sent with data (DAT), ACKs, and window updates (WND):

Other: 5, ACK: 1, WND: 0, ACK+WND: 0

DAT: 2, DAT+ACK: 0, DAT+WND: 0, DAT+ACK+WND: 0

Data retransmits done: 0, Zero-window probes sent: 0

Table 32 describes the output from the show stack neighbors command.
TABLE 32 Field descriptions for the show stack neighbors command

Displaying stack port information

The show stack stack-ports command displays information about stack port status.

Syntax: show stack stack-ports

Table 33 describes the output from the show stack stack-ports command.

TABLE 33 Field descriptions for the show stack stack-ports command

Displaying running configuration information

The show running-config command displays information about the current stack configuration.

module 3 FCX-xfp-1-port-16q-module

priority 128

stack enable

1

Syntax: show running-config

Table 34 describes the output from the show running-config command.

TABLE 34 Field descriptions for the show running-config command

This field Indicates...

Stack unit <#> The stack identification number for this unit.

Module <#> Identifies the configuration for modules on this unit.

Pri Indicates that a priority has been assigned to this stack unit

Displaying configured stacking ports

The stacking ports may display in the output from the show running-config command in three different ways.

1. When stacking is enabled, the output shows both stacking ports.

stack unit 1

module 1 FCX-24-port-management-module

module 2 FCX-cx4-2-port-16g-module

module 3 FCX-xfp-1-port-16q-module

stack-port 1/2/1 1/3/1

1. When stacking is not enabled, neither stacking port is displayed.

stack unit 1

module 1 FCX-24-port-management-module

module 2 FCX-cx4-2-port-16g-module

module 3 FCX xfp 1 port 16g module

1. If one stacking port is configured, that port will be displayed regardless of whether or not stacking is enabled.

(3054675 bytes) from Primary FCX05000.bin
BootROM: Version 04.0.00T?e5 (FEv2)
HW: Chassis FCX648

STACKID 1: SL 1: FCX-24G 24-port Management Module
Serial ‡: PR11060248
P-ASIC 0: type D804, rev 01

STACKID 1: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)

STACKID 1: SL 3: FCX-1XG 1-port 16G Module (1-XFP)

STACKID 2: SL 1: FCX-48G 48-port Management Module
Serial ‡: AN07510010
P-ASIC 0: Type D804, rev 01
P-ASIC 1: type D804, rev 01

STACKID 2: SL 2: FCX-1XG 1-port 16G Module (1-XFP)

STACKID 2: SL 3: FCX-1XGC 1-port 16G Module (1-CX4)

STACKID 3: SL 1: FCX-48G 48-port Management Module
Serial ‡: AN07510269
P-ASIC 0: type D804, rev 01
P-ASIC 1: type D804, rev 01

STACKID 3: SL 2: FCX-1XGC 1-port 16G Module (1-CX4)

STACKID 3: SL 3: FCX-1XG 1-port 16G Module (1-XFP)

600 MHz Power PC processor 8248 (version 13C/2014) 66 MHz bus
512 KB boot flash memory
30720 KB code flash memory
128 MB DRAM
Monitor Option is on
The system uptime is 18 minutes 4 seconds
STACKID 1 system uptime 18 minutes 4 seconds
STACKID 2 system uptime 18 minutes 3 seconds 

PowerConnect# show interfaces stack-ports

Syntax: show interfaces stack-ports

Table 35 describes the fields displayed by the show interfaces stack-ports command.
TABLE 35 Field descriptions for the show interfaces stack-ports command

Displaying stacking port statistics

The show statistics stack-ports command displays information about all stacking ports in an

Syntax: show statistics stack-ports

Table 36 describes the fields displayed by the show statistics stack-ports command.

TABLE 36 Field definitions for the show statistics stack-ports command

Adding, removing, or replacing units in an IronStack

The following sections describe how to add, remove, or replace units in an IronStack. The recommended method is to connect units to the stack before you supply power to the units, however, you can also connect powered units.

Installing a new unit in an IronStack using secure-setup

This method can be applied to clean units, or units that have existing configurations.

1. Connect the new unit to the stack by connecting the 10 Gbps stacking ports.
2. Run secure-setup on the Active Controller and assign an ID to the new unit. The Active Controller will reset the new unit.
3. Once the new unit boots and joins the stack, do a write memory on the Active Controller.

Installing a new unit using static configuration

If the new unit is a clean unit and the connection is sequential you can add it using the static setup process.

• If the Active Controller has configuration information for a new unit, and it matches the base module (module 1) of the new unit, no action is necessary. If configuration information for non-base modules on the new unit does not match the information on the Active Controller, the Active Controller learns the configuration for the new unit module types and merges it with the information it has for the base module. This merged configuration remains static and will stay on the Active Controller even if the new unit leaves the stack.
• If the Active Controller has configuration information for the new unit, but it does not match the base module of the new unit, a configuration mismatch can occur where the configuration related to this unit is removed even after the mismatch is resolved. Refer to "Recovering from a mismatch" on page 156 for more information.

Removing a unit from an IronStack

To remove a unit from the stack, disconnect the cables from the stacking ports. This can be done whether the units are powered-on or powered-off. When you remove a unit that is powered-on, it is still in stacking enabled mode. To remove the stacking files, enter the stack unconfigure me or stack unconfigure clean command. When the unit reboots, it will operate as a standalone unit. Refer to "Unconfiguring an IronStack" on page 130.

When a unit is removed from a stack, the Active Controller deletes this unit configuration if it is dynamically learned. Refer to "IronStack terminology" on page 96 for definitions of static and dynamic configurations.

Replacing an IronStack unit

Replacing with a clean unit

If the stack unit ID numbering is sequential, you can easily swap a failed unit with an identical clean unit using this procedure.

1. Remove the old unit from the stack.
2. Make sure that the hardware (module) configuration of the replacement unit is identical to that of the failed unit.
3. Connect the new unit to the stack using the same stacking ports used by the old unit.

NOTE

Adding, removing or replacing a stack unit which is not at the end of linear topology may cause the other units in the stack to reset if these units lose their path to the Active Controller during the process. Adding or removing a unit in a ring topology should not cause the other units to reset because each unit can still find a path to the Active Controller.

Moving a unit to another stack

Moving a member from a stack and to another stack can result in non-sequential ID assignment. The Active Controller will honor the new unit original ID if that ID is not being used in the new stack. The Active Controller will assign a new ID if the original ID is already being used. To prevent non-sequential stack ID assignments, configure the unit that is moving as a clean unit before adding it to the new stack.

Removing an Active Controller from a powered stack

To remove an Active Controller from a powered stack, disconnect the Active Controller. The Standby Controller waits for 30 seconds and then assumes the role of Active Controller. A single Active Controller device functions as a standalone unit even it is still stacking-enabled. You do not have to issue a stack unconfigure me command for an Active Controller.

Renumbering stack units

You can use secure-setup to renumber stack units in a previously constructed stack. In the following example, three units make up a stack, yet two of the units are numbered 5 and 6 (the Active Controller is numbered 1). Since this stack is only going to contain 3 units, you can renumber the other units so that they are unit 2 and unit 3.

The most effective way to number your stack members is sequentially. You can skip numbers, but they should still be sequential, from 1 to 8. Sequential numbering makes it easy to replace stack units, and easier to troubleshoot issues.

2 6 FCX624 001b.ed5d.9940

Do you accept the unit ids? (y/n)?: n

Enter an unused id for the UPSTREAM FCX623 unit a 1 hop(s) (1-8)[5]: 2

Enter an unused id for the UPSTREAM FCX624 unit at 2 hop(s) (1-8) [6]: 3

PowerConnect# Election, was active, no role change, assigned-ID-1

reset unit 2: diff bootup id=5

reset unit 3: diff bootup id=6

Election, was active, no role change, assigned-ID-1

PowerConnect ^1 show stack

ID Type Role Mac Address Pri State Comment

1 S FCX624 active 0012.f239.2d40 128 local Ready

2 S ECX624 standby 0012.f2d5.2100 0 remote Ready

3 S FCX624 member 001b.ed5d.9940 0 remote Ready

Configuration Notes:

• Renumbering may result in the removal of a unit configuration if the stack unit base module does not match the configuration on the Active Controller. However, secure-setup renumbering never changes the interface configuration. For example, if you switch the IDs of identical units 2 and 3, the Active Controller does not change 2/1/5 to 3/1/5 and vice versa.
• If the configuration for the ID you select for a specific unit does not match the configuration on that unit, secure-setup will change the static configuration into a dynamic configuration so it can be overwritten by the learned configuration.
• When swapping IDs for two or more identical units - for example, if units 2, 3, and 4 are identical, changing 2 to 3, 3 to 4, and 4 to 2 will not affect the configurations of the units except that the units will reset and assume the new IDs.
• If you swap IDs for two units that are not identical -The Active Controller removes the configurations and resets both units. When both units boot with new IDs, the Active Controller learns their module types and creates new unit configurations for both. However, all interface configuration information related to units 2 and 3 is gone.
• When you renumber identical units using secure-setup, the configurations are not mapped to the new units (since the configurations match exactly). However, if you switch the IDs of units

Syslog, SNMP, and traps

Syslog messages from stack units are forwarded to, and can be viewed from, the Active Controller. All stack units support SNMP gets, sets, and traps, which are managed by the Active Controller. An SNMP trap is sent from a stack unit to the stack Active Controller, and forwarded from the Active Controller to an SNMP-configured server. An external network management station can execute SNMP gets and sets for MIBs and collect information about any port on the stack.

SNMP traps can be configured for the insertion or removal of a stack unit or uplink module, and for optic identification.

For more information about Syslog messages, refer to Chapter 41. "Using Syslog".

Configuring SNMP for an IronStack

SNMP server and feature configuration is the same for an IronStack as it is for standalone units. In an IronStack, SNMP gets and sets are processed by the Active Controller for the Standby Controller and all stack members, SNMP traps generated by the Standby Controller and stack members are propagated to the configured SNMP server through the Active Controller. For more information about how to configure an SNMP server for PowerConnect devices, refer to Chapter 40, "Securing SNMP Access".

SNMP engine IDs for stackable devices

For Dell stacking devices, if an engine ID is not manually created or a stack MAC address is not specified and saved, the stack will lose its engine ID if the Active Controller fails and the Standby Controller takes over, because the Standby Controller creates a new engine ID at bootup. To prevent this from happening, you will need to either create a new engine ID or create a new stack MAC address to ensure that the engine ID is saved to the startup configuration. This should be done before the SNMPv3 user is created.

If a new Active Controller is elected (for example, the Standby Controller becomes the Active Controller) you will see the following results:

- If you have configured the engineID saved it to the startup configuration file, the new stack configuration will use the saved engine ID.

Troubleshooting an unsuccessful stack build

If you are unable to build a stack, (for example, the show stack command does not display any stack units), perform the following steps.

1. Enter the show run command on each unit to make sure the configuration contains "stack enable". If it does not, enter the stack enable command on the unit. Before a stack is formed, you can still access the console port on each device. Once a stack is successfully formed, you are redirected to the Active Controller.

NOTE

If you are building a stack using secure-setup, you do not have to enter stack enable on each unit.

1. Check that all of your stacking port connections are secure and working properly. Enter the show interface stack on each device to confirm that the stacking port links are up and the ports are in the forward state.

PowerConnect+ show interfaces stack

Port Link State Dupl Speed Trunk Tag P MAC Name

1/2/1 Up Forward Full 10G None No 1 0012.f2eb.a902

1/2/2 Up Forward Full 10G None No 1 0012.f2eb.a904

1. Confirm that all of the devices are running the same software image

2. Use the show log command to display any IPC version mismatch messages. These messages appear in one minute when receiving mismatched probe packets, and then once every 10 minutes.

3. Type show stack ipc to see if any traffic has been sent or received. Enter clear stack ipc to clear the traffic statistics and then enter show stack ipc again so you can easily see differences in traffic flow.

PowerConnect# show stack ipc
Recv IPC 330 packets
Message typos have callbacks:
1 : Reliable IPC message    2 : Reliable IPC atomic batch
... more message types removed.
Word Messages: 

If the send message types: field is empty, it means that stack enable has not been configured. If the number of Recv IPC packets increases, but there are no Recv message types, then the packets are being dropped for various reasons, including the wrong IPC version, or a checksum error. The Possible errors field will list reasons for packet loss.

NOTE

A small “***state not ready” count is normal, but if it continues to increase a problem is indicated.

1. If the results of a show stack command show other stack members, but lists them as non-operational, this could be due to an image mismatch, or a configuration mismatch. In the event of an image mismatch, you can download the correct images to the entire stack from the Active Controller. Refer to "Configuration mismatch" on page 155 for more information about configuration mismatches.

NOTE

If your intended stacking ports are connected in a ring topology, they will not all appear to be in the forwarding state because of spanning tree, but secure-setup can still build the stack.

1. If you run out of flash memory while doing a write memory, your stack devices may contain very large startup-config.v4 or startup-config.old files, which are preserved for recovery purposes (refer to "Unconfiguring an IronStack" on page 130 for more information). If you do not need these files, you can delete them using the flash delete command. Enter the show dir command to see all flash files.
2. Check to be sure you do not have any stacking to non-stacking connections. If you see the following message.

Warning! Proc ???? packet in 2m from C012.f2222.8300, Wrong dev/port: dev=4, port=18, DSA=4971100 497--E

You might have stacking to non-stacking port connections

This indicates that you may have a connection between a stacking port and a non-stacking port. This message will appear every 10 minutes after the first display. If you see this message once only, and your connections are correct, your stack should be operating properly. Only repeat displays of this message indicate a problem.

Stack mismatches

When a stack mismatch occurs, the Active Controller can put any stack member into a non-operational state, which disables all of the ports except the stacking ports. Stack mismatches can occur for a variety of reasons, which are discussed in this section.

NOTE

The Active Controller can still download an image to the non-operational unit.

The Active Controller generates a log message whenever it puts a stack unit into a non-operational state. The following examples describe the types of mismatches and the related log message:

• Advanced feature mismatch - The Active Controller is enabled for advanced features (such as BGP) and the stack unit is not enabled.
  Slack: Unit 2.00e0.1020.0100 doesn't have the matching advanced feature privileges
• Image mismatch - A stack unit is running a different software image than that of the Active Controller.
  Stack: Unit 2 00c0.1020.0100 image mismatch

- Configuration mismatch - The module configuration for a stack unit does not match the reserved configuration on the Active Controller.

Stack: Unit 2 00e0.1020.0100 config mismatch

- Memory allocation mismatch - The Active Controller does not have enough memory to accommodate the stack unit.

Stack: Malloc failure for unit 2.00e0.1020.0100

These mismatches are described in the following sections.

Image mismatches

Major mismatch

A major mismatch indicates an Interprocessor Communications (IPC)-related data structure change, or an election algorithm change, or that a version of the software that does not support stacking is installed on a unit. This can happen when the software undergoes a major change (such as a change from 05.0.00 to 05.1.00). When a major mismatch occurs, the system logs and prints a message similar to the following.

Warning! Recv 424 IPC in lm from 0012.f21b.a900 e1/1/25: wrong version 5 !=6. Please make sure all units run the same image.

In a major mismatch, the stack cannot be built and will not operate. You must download the correct version of the software to the mismatched units individually.

Minor mismatch

With a minor mismatch, an operating stack can still exist, but traffic is dropped from all ports except for the stacking ports for units with the mismatched software. You can download the correct image to the mismatched devices from the Active Controller. A minor software mismatch means that there is no IPC or election algorithm change, but there is a release version disparity. Minor software mismatches can happen with patch release upgrades. The system logs and prints a message similar to the following.

Warning! put stack unit 2 to non-operational reason=image mismatch

The show stack command displays output similar to the following.

PowerConnect# show stack

alone: standalone, D: dynamic config, S: static config

ID Type Role Mac Address Fri State Comment

1 S FCX624 active 0012.f2eb.a900 128 local Ready

2 S FCX64B standby 0000.424F.4243 C remote NON-CP: image mismatch

3 S FCX624 member 00e0.5201.0100 0 remote Ready

If the configuration of a stack unit does not match the configuration of the Active Controller, the stack unit will not function. You must manually correct the configuration error for the unit to become operational within the stack. In this example, unit 2 is non-operational due to an image mismatch. To correct this situation, use the copy flash flash command (refer to "Copying the flash

Configuration mismatches can happen during manual setups, or when moving a unit from one stack to another stack. Secure-setup will try to overwrite a configuration mismatch even if the configuration is static. The overwrite attempt may fail if there are multi-slot trunk or LACP configurations on the ports of the unit to be overwritten. If this is the case, secure-setup will be unable to resolve the mismatch.

When you renumber identical units using secure-setup, the configurations are not mapped to the new units (since they match exactly). However, if you switch the IDs of units that are not identical, a configuration mismatch occurs.

Configuration mismatches can also occur when LACP or multi-slot trunking configurations exist on the modules of replacement units. In these cases, you will need to manually remove the LACP or multi-slot trunking configuration on the replacement unit before you try to add it to the stack.

When a configuration mismatch occurs, port-related functions on all ports are disabled on the mismatched unit (except for the stacking ports). All other functions are unaffected. For example, the Active Controller can still copy the unit's image or reset the unit. Please refer to "Recovering from a mismatch" on page 156.

Memory allocation failure

A memory allocation (malloc) failure occurs when the Active Controller does not have enough memory to run a stack unit. This failure may occur if you configure large numbers (for example, 4 K of VLANs, or STP instances (for example, 255).in the router image. This message means that the Active Controller is low on memory after allocating these resources and does not have enough remaining memory to control a stack member. You can correct this by reducing the number of VLANs or STP instances.

NOTE

After you make configuration changes such as number of VLANs or STP instances, you must reset the stack.

Recovering from a mismatch

PowerConnectt# show running config
slack unit 1
module 1 FCX-24-port-management-module
module 3 FCX-cx4-2-port-16q-module
module 4 FCX-xfp-2-port-16q-module
priority 128 

stack unit 2
module 1 FCX-24-port-management-module
module 3 FCX-xfp-2-port-16g-module 

stack unit 3
module 1 FCX-48-port-management-module
module 2 FCX-cx4-2-port-16g-module
module 3 FCX-cx4-2-port-16g-module 

stack enable 

1. To resolve the mismatch, you must remove the configuration for stack unit 3. Use the following command.

PowerConnect# no stack unit 3 

If you are unable to remove the configuration because of a multi-slot trunk configuration, it means secure-setup cannot overwrite the Active Controller configuration due to multi-slot trunking configurations on the ports of the unit to be overwritten. You must first manually remove the multi-slot trunk configuration.

1. When you have successfully deleted the mismatched stack unit, a re-election is triggered, and the Active Controller learns the correct module configuration from the Standby Controller or from other stack members.

Follow the steps given below to recover from an image mismatch.

1. Use the copy flash flash command to replace a mis-matched image with the correct image. Refer to "Copying the flash image to a stack unit from the Active Controller" on page 126.
2. Reset the unit. After the reset, the unit will contain the new image and the mis-match condition will not exist. To verify, use the show stack command.

If secure-setup times out (this may happen due to inactivity), you will not be able to make any changes in your configuration or stack topology until you restart the session by entering the stack secure-setup command.

The unit discovery process is triggered when secure-setup is initiated. However, if the stack unit is placed in a topology where another unit in the stack is already running the discovery process, the current discovery process is terminated. If this is the case, you will see a message similar to the following.

"Topology discovery is already in progress originated from . Please try later."

This means a discovery process is already active and was initiated from the unit with the mentioned in the message. You will need to re-issue secure-setup.

If there is already an active discovery process, secure-setup may not discover all the intended units. If this is the case, you will need to restart the secure-setup process.

Troubleshooting unit replacement issues

If you are unsuccessful in building a stack using the automatic setup process (refer to "Scenario 2 - Configuring a three-member IronStack in a ring topology using the automatic setup process" on page 105), or adding or replacing a unit in a stack, consider the following issues:

• Make sure that the number of units in your stack does not exceed the maximum of 8
• Make sure that the replacement unit is a clean unit (does not contain a startup-config.txt file)
- Make sure that the replacement unit running configuration does not contain "stack enable"
• Make sure the replacement unit running configuration does not contain "stack disable"
- Make sure that the configurations of the stack ports on the Active Controller match the physical connections to the unit

More about IronStack technology

This section discusses stacking technology in greater detail than the information presented in

will recover their original startup-config.txt files and reboot as standalone devices. If you enter the stack unconfigure all command from the Active Controller all devices will recover their old startup-config.txt files and become standalone devices. When this happens, the startup-config.old file is renamed to startup-config.txt, and the stacking.boot file is removed. For more information, refer to "Unconfiguring an IronStack" on page 130.

Whenever a change is made to a stack unit's configuration, such as priority, (which could affect stack elections) an election is held, and the result is written into the stacking.boot file. A prompt message appears on the console that suggests you do a write memory. For an Active Controller role change to take effect, you will need to reset the entire stack.

If you do not do a write memory, and reset the stack, the stack units will continue to operate in their roles as defined by the stacking.boot file. After the reset, each unit readjusts based on the current run time configuration. However, you may get different results depending on what has not been saved. If you have renumbered the stack unit IDs, you may see a configuration mismatch, because your changes no longer match the Active Controller configuration.

If you change priorities to elect an Active Controller, the new Active Controller will assume its role after a reboot whether you have done a write memory or not. If you do not save your priority change before the next reboot, the reboot will trigger an election that may result in a different winner based on the priority in the unsaved configuration. The new winner assumes its role after the next reboot.

If you change the stacking port configuration and do not save your changes, you may encounter connectivity errors. To recover from a configuration error, run Secure Startup to define the correct stacking port.

NOTE

You should always do a write memory after making stacking-related configuration changes such as priority and stacking ports. If you do not want to keep the changes, change the configuration back to the previous version, and do a write memory. Do not discard configuration changes by using the reset without a write memory.

IronStack topologies

IronStack technology supports both linear and ring stack topologies. Because the unicast switching follows the shortest path in a ring topology, this topology offers the strongest redundancy. When the

• Active Controller
- Standby Controller
- Stack member

Active Controller

The Active Controller contains the saved and running configuration files for each stack member. The configuration files include the system-level settings for the stack, and the interface-level settings for each stack member, as well as MIB counters and port status. The Standby Controller also has a synchronized copy of the Active Controller startup config file for use in the event the Active Controller fails.

When a stack is formed, the console function for each stack member is automatically redirected to the Active Controller console. The Active Controller console port handles all stack management functions, as well as ping, Telnet sessions, and tftp image downloads for every stack member. If you connect to the console port on a stack member that is not the Active Controller, you are automatically directed through the console of the Active Controller.

The Active Controller synchronizes its start-up configuration with the Standby Controller and the rest of the stack members. You can recover the previous flash configuration of the Standby Controller and the stack members by issuing the stack unconfigure command. For an example of this command and the output generated, refer to "Unconfiguring an IronStack" on page 130.

The Active Controller may reset the rest of the stack members, if necessary. However, if the Active Controller itself must be reset because of a role or ID change, you must issue the reset command.

If the Active Controller fails, the Standby Controller waits 30 seconds, and then takes over as Active Controller, resetting itself and all other stack members. If the old Active Controller becomes operational, it may or may not resume its role as Active, depending on the configured priorities.

Standby Controller

In addition to the Active Controller, another stack member is elected as the Standby Controller. After a default interval of 30 seconds, the Standby Controller takes over if the Active Controller fails.

Example

My stack unit ID = 1, bootup role = active

My stack unit ID = 3, bootup role = standby

Active Controller and Standby Controller elections

Whenever there is a topology change in the stack (a reset, unit failure, or the addition or removal of members), elections are held to determine the status of the Active Controller and Standby Controller. The results of the election take effect after the next stack reset.

The following conditions, in the order shown, determine which units will serve as Active Controller and Standby Controller after an election:

• Boot as Active Controller - Indicates that a unit was previously Active Controller before the current boot sequence and will again assume the role of Active Controller when two standalone units are combined into a stack. When a third standalone unit joins the stack, a current Active Controller becomes subject to the other factors in this list. The reason for this hierarchy of factors is to achieve a predictable winner regardless of the boot up sequence for a unit. You can upgrade your current Active Controller to "boot as active controller" status by performing a write memory. The system interprets the write memory action as a directive to maintain the current Active Controller role regardless of resets or a new unit joining the stack.
• Priority - The unit with the highest priority value.
• Greater number of members - The unit that has control over the greater number of stack members.
• Lowest boot stack ID - The unit that has the lowest boot stack ID (1-8, 1 is the lowest).
  • MAC address - The member with the lowest MAC address.

Active Controller and Standby Controller resets

If the Active Controller is reset or removed from the stack, the entire stack reloads and Active Controller and Standby Controller elections are initiated. If the unit functioning as the previous Active Controller is no longer part of the stack, the Standby Controller unit becomes the new Active Controller. After a reset, if no stack member qualifies as Active Controller, the existing Standby Controller waits 30 seconds and then assumes the role of Active Controller.

Standby Controller election criteria

The Standby Controller election is based on the following criteria.

1. The highest priority
2. Bootup as Active Controller
3. Bootup as Standby Controller
4. The lowest boot ID
5. The lowest MAC address

Since Standby election candidates must have startup configurations that have been synchronized with the Active Controller, if the Active Controller does not have a startup-config.txt file, there will not be a Standby Controller. Once a write memory is performed on the Active Controller, the startup-config.txt file is written and synchronized to all stack members, and a Standby Controller can be elected.

PowerConnect B-Series FCX hitless stacking

Hitless stacking is supported on FCX units in an IronStack. It is a high-availability feature set that ensures sub-second or no loss of data traffic during the following events:

• Active Controller failure or role change
- Software failure
- Addition or removal of units in a stack
- Removal or disconnection of the stacking cable between the Active and Standby Controllers

During such events, the Standby Controller takes over the active role and the system continues to forward traffic seamlessly, as if no failure or topology change has occurred. In software releases that do not support hitless stacking, events such as these could cause most of the units in a stack to reset, resulting in an impact to data traffic.

The following hitless stacking features are supported:

Supported events

The following events are supported by hitless stacking:

• Failover
• Switchover
• Priority change
• Role change

Non-supported events

The following events are not supported by hitless stacking. These events require a software reload, resulting in an impact to data traffic.

• Unit ID change – When a stack is formed or when a unit is renumbered using secure-setup.
• Stack merge - When the old Active Controller comes back up, it reboots. If it has fewer number of members than the Active Controller, it loses the election, regardless of its priority. If it has a higher priority, it becomes the Standby Controller after the reboot and is synchronized with the Active Controller. Next, a switchover occurs and it becomes the new Active Controller.

Supported protocols and services

Table 37 lists the services and protocols that are supported by hitless stacking. Table 37 also highlights the impact of a hitless switchover or failover to the system's major functions.

NOTE

Services and protocols that are not listed in Table 37 will encounter disruptions, but will resume normal operation once the new Active Controller is back up and running.

TABLE 37 Hitless-supported services and protocols – PowerConnect B-Series FCX

TABLE 37 Hitless-supported services and protocols - PowerConnect B-Series FCX

Other services to

Management

• AAA

■ DUCB

Supported protocols and services are not impacted

diving a out-of-home or follow-up

(for example, a personal computer) pinging the stack might encounter a long delay depending on the client MAC aging time. The client won't work until it ages out the old MAC address and sends ARP requests to relearn the new stack MAC address. Refer to "Manual allocation of the IronStack MAC address" on page 120.

• PBR is not supported by hitless stacking. When PBR is configured in an FCX IronStack, the stack will reload in the event of a failover. Also, manual switchover or internal switchover due to a higher priority standby is not allowed.
• Layer 3 multicast traffic is not supported by hitless stacking.
• After a switchover or failover, the Syslog may contain invalid (non-existent) port numbers in messages such as "Interface state up". This is because some messages from the old Active Controller will remain in the Syslog after a switchover or failover.

• Failover for devices connected to the management port is not supported. For example, if during a failover, an end station is connected to the stack through the management port of the Active Controller, the connection will be shut down. After the failover, the management port on the new Active Controller will work.
  • The following describes hitless stacking limitations with software-based licensing:

• If the Active Controller has a superior license (for example, BGP support) compared to all other units in the stack, all of the units except for the Active Controller will be placed in a non-operational state.

• The Standby Controller cannot have a "superior" license compared to the Active Controller. For example, if unit 2 has a license to run BGP whereas the Active Controller does not, unit 2 has a superior license and will be allowed to join the stack, but will not be elected as the Standby Controller.
• If software-based licensing is installed on the Active Controller after the stack is up and running, the licensed feature will function on the Active Controller ports, but will not function on ports on other units of the stack.

What happens during a hitless stacking switchover or failover

This section describes the internal quanta that enables a controlled or forced switches to take

• Hardware Abstraction Layer (HAL) – This includes the prefix-based routing table, next hop information for outgoing interfaces, and tunnel information.
• Layer 3 IP forwarding information – This includes the routing table, IP cache table, and ARP table, as well as static and connected routes.
• Layer 3 routing protocols are not copied to any of the units in the stack, but remain in init state on the Standby Controller until a switchover occurs. Peer adjacency will be restored after a switchover. If BGP4 or OSPF graceful restart are enabled during a switchover, the Standby Controller (new Active Controller) will initiate a graceful restart and a new set of routes will be relearned. The new set of routes will be the same as the old routes, except in the case of a network change.

When control protocols are synchronized and protocol synchronization timers have expired, the Standby Controller will be in hot-standby mode, meaning the Standby Controller will be ready to take over as the Active Controller. In the event of a switchover, the Standby Controller will pick up where the active module left off, without interrupting data traffic.

After baseline synchronization, any new events that occur on the Active Controller will be dynamically synchronized on the Standby Controller. Examples of such events include:

• CLI/HTTP/SNMP configurations
• CPU receive packets
- Link events
- Interrupts
• Layer 2 and Layer 3 forwarding table updates

- Dynamic user authentication updates such as 802.1X or multi-device port authentication Dynamic events are synchronized in such a way that if the Active Controller fails before fully executing an event, the Standby Controller (newly Active Controller) will execute the event after the failover. Also, if the Active Controller aborts the event, the Standby Controller will abort the event as well.

After a switchover, the new Active Controller receives updates from the stack members and sends verification information to the stack members to ensure that they are synchronized.

Standby Controller role in hitless stacking

In software releases that do not support hitless stacking, the Standby Controller functions as a dummy device, meaning it provides limited access to the CLI, such as show, stack, and a few debug commands. The Active Controller can access the full range of the CLI. The Standby Controller synchronizes its configuration with the Active Controller at each reset.

With the introduction of hitless stacking, the Standby Controller shadows the Active Controller. The role or behavior of the Standby Controller with hitless stacking is as follows:

• The local console on the Standby Controller still accepts only show, stack, and a few debug commands.
• The runtime configuration on the Standby Controller is synchronized with the Active Controller whenever there is a configuration change.
• Protocols are configured in the runtime configuration, but no protocol packets are sent out on the Standby.
• The state of every unit is known, including the state of the Active Controller. The show commands will display current information, such as STP or port states.
• When a failover occurs, the Standby Controller will use its current runtime configuration. The configuration could be different from the Active Controller if the last configuration transmission was lost.
• After a failover, the new Active Controller (old standby) programs all other units in hardware, based on its runtime configuration.

Standby Controller election

Candidates for Standby Controller must meet the following criteria:

• The unit is operational and the image and module configuration match that of the Active Controller
• The runtime configuration matches that of the Active Controller
• The unit does not have a "superior" license compared to the Active Controller. For example, if unit 2 has a license to run BGP whereas the Active Controller does not, unit 2 has a superior

When the Standby Controller is fully synchronized, the system will be ready for a switchover or failover.

Runtime configuration mismatch

In some cases, such as a runtime configuration mismatch between the Active Controller and candidate Standby Controller, the Standby Controller cannot be assigned by the Active Controller unless the candidate Standby Controller is reloaded.

As illustrated below, the show stack command output will indicate whether there is a runtime configuration mismatch.

PowerConnecttsh stack
alone: standalone, D: dynamic config, S: static config
ID Type Role Mac Address Pri State Comment
1 S FCX624S active 00e0.5201.0000 30 local Ready 

active
|---|
|---|
-2/1 | 2 | 2/2--2/1 | 1 | 2/2-
+----+
+----+

Note: There is no standby. Reason: u2: diff run-time config

Current stack management MAC is 00e0.5201.0000 Note: no "stack mac" config. My MAC will change after failover.

Support during stack formation, stack merge, and stack split

This section illustrates hitless stacking support during stack formation, stack merge, and stack split.

Figure 15 illustrates hitless stacking support during stack formation. Operational stages 1 and 2 are also shown in this illustration.
FIGURE 15 Hitless stacking support during stack formation

graph TD
    A["Device stack formation"] --> B["New Stack"]
    B --> C{Stack is created using memory setup or 'Stack machine';
}
    C --> D["Member 2 and 3 become 'osphorus'"]
    D --> E["Member 1 Member 2 Member 3"]
    E --> F["Startbox signed by the Active"]
    F --> G["Configuration synchronized (running config is opened from the Active)"]
    G --> H["Configuration passed on 'Stackby'"]
    H --> I["Other units are not arranged"]
    I --> J["70 sec fix protocol learning"]
    J --> K["Protocol study"]

    subgraph "Existing steps (or Units with mm and retention)"
        L["Member 1 Member 2 Member 3"] --> M["Startbox signed by the Active"]
        N["Member 2 Member 3"] --> O["Startbox signed by the Active"]
        P["Member 3 Member 2 Member 3"] --> Q["Startbox signed by the Active"]
        R["Member 4 Member 2 Member 3"] --> S["Startbox signed by the Active"]
        T["Member 5 Member 2 Member 3"] --> U["Startbox signed by the Active"]
        V["Member 6 Member 2 Member 3"] --> W["Startbox signed by the Active"]
        X["Member 7 Member 2 Member 3"] --> Y["Startbox signed by the Active"]
        Z["Member 8 Member 2 Member 3"] --> AA["Startbox signed by the Active"]
        AB["Member 9 Member 2 Member 3"] --> AC["Startbox signed by the Active"]
        AD["Member 10 Member 2 Member 3"] --> AE["Startbox signed by the Active"]
        AF["Member 11 Member 2 Member 3"] --> AG["Startbox signed by the Active"]
        AH["Member 12 Member 2 Member 3"] --> AI["Startbox signed by the Active"]
        AJ["Member 13 Member 2 Member 3"] --> AK["Startbox signed by the Active"]
        AL["Member 14 Member 2 Member 3"] --> AM["Startbox signed by the Active"]
        AN["Member 15 Member 2 Member 3"] --> AO["Startbox signed by the Active"]
        AP["Member 16 Member 2 Member 3"] --> AQ["Startbox signed by the Active"]
        AR["Member 17 Member 2 Member 3"] --> AS["Startbox signed by the Active"]
        AT["Member 18 Member 2 Member 3"] --> AU["Startbox signed by the Active"]
        AV["Member 19 Member 2 Member 3"] --> AW["Startbox signed by the Active"]
        AX["Member 20 Member 2 Member 3"] --> AY["Startbox signed by the Active"]
        AZ["Member 21 Member 2 Member 3"] --> BA["Startbox signed by the Active"]
        BB["Member 22 Member 2 Member 3"] --> BC["Startbox signed by the Active"]
        BD["Member 23 Member 2 Member 3"] --> BE["Startbox signed by the Active"]
        BF["Member 24 Member 2 Member 3"] --> BG["Startbox signed by the Active"]
        BH["Member 25 Member 2 Member 3"] --> BH
        BI["Member 26 Member 2 Member 3"] --> BJ["Startbox signed by the Active"]
        BK["Member 27 Member 2 Member 3"] --> BL["Startbox signed by the Active"]
        BM["Member 28 Member 2 Member 3"] --> BN["Startbox signed by the Active"]
        BO["Member 29 Member 2 Member 3"] --> BP["Startbox signed by the Active"]
        BQ["Member 30 Member 2 Member 3"] --> BR["Startbox signed by the Active"]
        BS["Member 31 Member 2 Member 3"] --> BT["Startbox signed by the Active"]
        BU["Member 32 Member 2 Member 3"] --> BV["Startbox signed by the Active"]
        BW["Member 33 Member 2 Member 3"] --> BX["Startbox signed by the Active"]
        BY["Member 34 Member 2 Member 3"] --> BZ["Startbox signed by the Active"]
        CA["Member 35 Member 2 Member 3"] --> CB["Startbox signed by the Active"]
        CC["Member 36 Member 2 Member 3"] --> CD["Startbox signed by the Active"]
        CE["Member 37 Member 2 Member 3"] --> CF["Startbox signed by the Active"]
        GD["Member 38 Member 2 Member 3"] --> DH["Startbox signed by the Active"]
        DI["Member 39 Member 2 Member 3"] --> DJ["Startbox signed by the Active"]
        DK["Member 40 Member 2 Member 3"] --> DL["Startbox signed by the Active"]
    end

    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#ffc,stroke:#333
    style F fill:#cff,stroke:#333
    style G fill:#ffc,stroke:#333
    style H fill:#ffc,stroke:#333
    style I fill:#ffc,stroke:#333
    style J fill:#ffc,stroke:#333
    style K fill:#ffc,stroke:#333
    style L fill:#ffc,stroke:#333
    style M fill:#ffc,stroke:#333
    style N fill:#ffc,stroke:#333
    style O fill:#ffc,stroke:#333
    style P fill:#ffc,stroke:#333
    style Q fill:#ffc,stroke:#333
    style R fill:#ffc,stroke:#333
    style S fill:#ffc,stroke:#333
    style T fill:#ffc,stroke:#333
    style U fill:#ffc,stroke:#333
    style V fill:#ffc,stroke:#333
    style W fill:#ffc,stroke:#333
    style X fill:#ffc,stroke:#333
    style Y fill:#ffc,stroke:#333
    style Z fill:#ffc,stroke:#333
    style AA fill:#ffc,stroke:#333
    style AB fill:#ffc,stroke:#333
    style AC fill:#ffc,stroke:#333
    style AD fill:#ffc,stroke:#333
    style AE fill:#ffc,stroke:#333
    style AF fill:#ffc,stroke:#333
    style AG fill:#ffc,stroke:#333
    style AH fill:#ffc,stroke:#333
    style AI fill:#ffc,stroke:#333
    style AJ fill:#ffc,stroke:#333
    style AK fill:#ffc,stroke:#333
    style AL fill:#ffc,stroke:#333
    style AM fill:#ffc,stroke:#333
    style AN fill:#ffc,stroke:#333
    style AO fill:#ffc,stroke:#333
    style AP fill:#ffc,stroke:#333
    style AQ fill:#ffc,stroke:#333
    style AR fill:#ffc,stroke:#333

Figure 16 illustrates hitless stacking support during a stack merge.
FIGURE 16 Hitless stacking support during a stack merge

graph TD
    A["Stack 1"] -->|Active 1 (pt=30)
Standby 2 (pt=20)
Member 3 (pt=10)
Member 4 (pt=0)| B["Stack 2"]
    B -->|Member 1 (pt=30)
Member 2 (pt=20)
Member 3 (pt=10)
Member 4 (pt=0)
Member 5 (pt=10)
Member 6 (pt=0)| C["Stack 1"]
    C -->|Active 1 (pt=30)
Standby 2 (pt=20)
Member 3 (pt=10)
Member 4 (pt=0)| D["Stack 2"]
    D -->|Active 1 (pt=30)
Standby 2 (pt=20)
Member 3 (pt=0)
Member 4 (pt=0)| E["Stack 1/MAC A"]
    E -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| F["Stack 2/MAC B"]
    F -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| G["Stack 1/MAC A"]
    G -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| H["Stack 2/MAC B"]
    H -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| I["Stack 1/MAC A"]
    I -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| J["Stack 2/MAC B"]
    J -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| K["Stack 1/MAC A"]
    K -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| L["Stack 2/MAC B"]
    L -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| M["Stack 1/MAC A"]
    M -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| N["Stack 2/MAC B"]
    N -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| O["Stack 1/MAC A"]
    O -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| P["Stack 2/MAC B"]
    P -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| Q["Stack 1/MAC A"]
    Q -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| R["Stack 2/MAC B"]
    R -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| S["Stack 1/MAC A"]
    S -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| T["Stack 2/MAC B"]
    T -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| U["Stack 1/MAC A"]
    U -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| V["Stack 2/MAC B"]
    V -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| W["Stack 1/MAC A"]
    W -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| X["Stack 2/MAC B"]
    X -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| Y["Stack 1/MAC A"]
    Y -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| Z["Stack 2/MAC B"]
    Z -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AA["Stack 1/MAC A"]
    AA -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AB["Stack 2/MAC B"]
    AB -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AC["Stack 1/MAC A"]
    AC -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AD["Stack 2/MAC B"]
    AD -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AE["Stack 1/MAC A"]
    AE -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AF["Stack 2/MAC B"]
    AF -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AG["Stack 1/MAC A"]
    AG -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AH["Stack 2/MAC B"]
    AH -->|Active 1 (pt=100)
Standby 2 (pt=50)
Member 3 (pt=0)
Member 4 (pt=0)| AI["Stack 1/MAC A"]

Figure 17 illustrates hitless stacking support in a stack split.
FIGURE 17 Hitless stacking support in a stack split

graph TD
    A["stack split"] --> B["Active 1 (pri=3C)<br>Standby 2 (pri=20)<br>Member 3 (pri=10)<br>Member 4 (pri=0)"]
    B --> C["Active 1 (pri=3C)<br>Standby 2 (pri=20)"]
    C --> D["The stack splits into one operational stack and two &quot;orphan&quot; units."]
    E["Active 1 (pri=3C)<br>Member 2 (pri=10)<br>Standby 3 (pri=20)<br>Member 4 (pri=0)"] --> F["Active 1 (pri=3C)<br>Standby 2 (pri=10)"]
    F --> G["The stack splits into two operational stacks."]
    H["Active 5 (pri=20)<br>Standby 2 (pri=0)"] --> I["Active 5 (pri=20)"]
    I --> J["The stack splits into one operational stack and two &quot;orphan&quot; units."]
    K["Member 3 (pri=10)<br>Member 4 (pri=0)"] --> L["Red X"]
    M["Active 1 (pri=3C)<br>Standby 2 (pri=20)"]

Hitless stacking default behavior

Hitless stacking is disabled by default. When disabled, the following limitations are in effect:

- If a failover occurs, every unit in the stack will reload

- Manual switchover is not allowed. If the CLI command stack switch-over is entered, the following message will appear on the console:

Switch-over is not allowed. Reason: hitless-failover not configured.

• Internal switchover resulting from a priority change is blocked until the entire stack is reloaded or hitless stacking is enabled. A priority change will trigger an election, but the newly-elected winner will not immediately assume its role. For more information, refer to "Displaying pending device roles" on page 174.
• If there is no Active Controller after a reload, the bootup standby will assume the active role after reloading every unit in the stack, including itself.
• During a stack merge, the Active Controller with the highest priority will win the election and reload every unit of the losing stack.

NOTE

Synchronization between the Active Controller, Standby Controller, and stack members will occur whether or not hitless stacking is enabled.

When hitless stacking is enabled, the following behavior takes effect immediately:

• If a failover occurs, the stack will not reload.
• Manual switchover (CLI command stack switch-over) is allowed.
• If a priority change occurred while hitless stacking was disabled, and the configured priority value requires a switchover, the system will start a 60-second timer before performing a switchover. After the switchover, the highest priority standby will become the Active Controller.
• If there is no Active Controller after a reload, the bootup standby will assume the active role in approximately 60 seconds without a reload.
• During a stack merge, the Active Controller with the larger number of units will win the election and reload every unit of the losing stack. If two stacks have the same number of units, then the

Enabling hitless stacking

Hitless stacking is disabled by default. To enable it, enable hitless failover as described in "Enabling hitless failover" on page 175.

Displaying hitless stacking status

You can use the show stack command to view whether or not hitless stacking is enabled. The following example shows that hitless stacking is disabled.

PowerConnectShow stack
alone: standalone, D: dynamic config, S: static config
ID Type Role Mac Address Pri State Comment
2 S FCX6485 member 0000.0000.0000 0 reserve
3 S FCX624 member 0024.3976.2640 0 remote Ready
5 S FCX624 standby 0Ge0.5200.0400 100 remote Ready
6 S FCX668 active 0024.3977.7980 128 local Ready 

Standby u5 - No hitless failover. Reason: hitless-failover not configured

Syntax: show stack

Displaying pending device roles

When hitless stacking is disabled, a priority change will trigger an election, but the newly-elected winner will not assume its role until the entire stack is reloaded or hitless stacking is enabled.

You can use the show stack command to view pending device roles. The "Role" column displays the current role for each unit. The "Comment" column displays the role that will take effect after a load or when hitless stacking is enabled.

Syntax: show stack

Hitless stacking failover

Hitless stacking failover provides automatic failover from the Active Controller to the Standby Controller without resetting any of the units in the stack and with sub-second or no packet loss to hitless stacking-supported services and protocols.

For a description of the events that occur during a hitless failover, refer to "What happens during a hitless stacking switchover or failover" on page 166.

For a description this feature's impact to major system functions, refer to Table 37 on page 164.

For an example of hitless failover operation, refer to "Hitless stacking failover example" on page 176.

For feature limitations and configuration notes, refer to "Configuration notes and feature limitations" on page 165.

Enabling hitless failover

To enable hitless failover, enter the following command at the Global CONFIG level of the CLI: PowerConnect{config}#hitless-failover enable

The command takes effect immediately. Hitless switchover is allowed, and in the event of a failover, the standby controller will take over the active role without reloading the stack.

Syntax: [no] hitless-failover enable

Use the no form of the command to disable hitless stacking once it has been enabled.

Hitless stacking failover example

Figure 18 illustrates hitless stacking failover operation when the Active Controller fails.

FIGURE 18 Hitless stacking failover when the Active Controller fails

graph TD
    A["Active 1\nMember 2 = bootup Standby\nMember 3\nMember 4"] --> B["The Active controller fails after the stack reloads"]
    B --> C["Member 2 = bootup Standby\nMember 3\nMember 4"]
    C --> D["50 sec."]
    D --> E["Active 2\nMember 3\nMember 4"]
    E --> F["30-60 sec."]
    F --> G["Active 2\nStandby 3\nMember 4"]
    G --> H["50 sec."]
    H --> I["The bootup Standby will become the Active controller in 50 seconds. The stack will not reload."]

For a description this feature's impact to major system functions, refer to Table 37 on page 164.

For examples of hitless stacking switchover operation, refer to "Hitless stacking switchover examples" on page 178.

Executing a hitless stacking switchover

The following must be in effect before a hitless switchover (switch over to the Standby Controller) is allowed:

• Hitless stacking is enabled
  • The stack has a Standby Controller
  • The Standby Controller has learned the protocols
• The Standby Controller has the same priority as the Active Controller
• More than 120 seconds have passed since the previous switchover or failover

You can use the show stack command to view whether or not these properties are in effect. For more information, see "Displaying information about hitless stacking" on page 183.

To perform a switchover, enter the following command:

PowerConnect# stack switch over Standby unit 8 will become Active Controller, and unit 1 will become standby Are you sure? (enter 'y' or 'n'): y Unit 1 is no longer the Active Controller

Syntax: stack switch-over

Hitless stacking switchover examples

This section illustrates hitless stacking failover and switchover operation during a CLI-driven

switchover or priority change.

Figure 19 illustrates a hitless stacking switchover triggered by the stack switch-over command.

FIGURE 19 Manual switchover

graph TD
    A["Device stack manual switchover"] --> B["Execute "stack switch-over""]
    B --> C{No waiting period}
    C -->|Yes| D["The Active and Standby priorities must match or the command is rejected"]
    C -->|No| E["Next switchover allowed in 120 seconds"]
    D --> F["The Active and Standby controllers switch roles immediately (no waiting period). No traffic loss is expected."]
    E --> G["Next switchover allowed in 120 seconds"]

Figure 20 illustrates a hitless stacking switchover when the Active Controller goes down then comes back up. The stack in this example has user configured priorities.
FIGURE 20 Hitless stacking switchover when the Active Controller comes back up

graph TD
    A["Active controller comes back (in a stack with user-assigned priorities)"] --> B{The Active controller fails}
    B -->|Yes| C["Active (Unit 1 with priority 200) comes back up"]
    C --> D{Active (Unit 1 with priority 200) reloads because it loses the election. After the reload, it joins the stack as a member.}
    D -->|Yes| E["30 sec."]
    D -->|No| F["70 sec."]
    E --> G["Standby 1 (on-600) Active 2 (on-100) Member 3 (on-2) Member 4 (on-3)"]
    F --> H["Standby 1 (on-600) Active 2 (on-100) Member 3 (on-2) Member 4 (on-3)"]

Figure 21 illustrates a hitless stacking switchover after the network administrator increases the priority value of the Standby Controller.
FIGURE 21 Scenario 1 - Hitless stacking switchover after a priority change

graph TD
    A["Device stack priority change - Scenario 1"] --> B["Priority 200 assigned to Unit 2 (Standby)"]
    B --> C["Active 1 (pr=100)<br>Standby 2 (pr=0)<br>Member 3 (pr=0)<br>Member 4 (pr=0)"]
    C --> D["120 sec."]
    D --> E["The priority change triggers re-election of the Active controller"]
    E --> F["Active 1 (pr=100)<br>Standby 2 (pr=200)<br>Member 3 (pr=0)<br>Member 4 (pr=0)"]
    F --> G["60 sec."]
    G --> H["The Standby controller is re-assigned and a switchover occurs."]
    style A fill:#f9f,stroke:#333
    style H fill:#f9f,stroke:#333

Figure 22 illustrates a hitless stacking switchover after the network administrator increases the priority value of one of the stack members.
FIGURE 22 Scenario 2 - Hitless stacking switchover after a priority change

graph TD
    A["Device stack priority change - Scenario 2"] --> B["Priority 200 assigned to Unit 3"]
    B --> C["The priority change triggers re-election of the Active controller"]
    C --> D["Active 1 (pil=100)<br>Standby 2 (ptr-0)<br>Member 3 (ptr-0)<br>Member 4 (ptr-0)"]
    D --> E["Active 1 (pil=100)<br>Standby 2 (ptr-0)<br>Member 3 (ptr-200)<br>Member 4 (ptr-0)"]
    E --> F["Active 1 (pil=100)<br>Standby 2 (ptr-0)<br>Member 3 (ptr-200)<br>Member 4 (ptr-0)"]
    F --> G["A switchover occurs.<br>Stages 1 and 2 are complete."]
    G --> H["The Standby controller is re-assigned"]
    H --> I["Sendby 1 (pil=100)<br>Member 2 (ptr-0)<br>Active 3 (ptr-200)<br>Member 4 (ptr-0)"]

Figure 23 illustrates a hitless stacking switchover after the network administrator increases the priority value for two of the stack members.
FIGURE 23 Scenario 3 - Hitless stacking switchover after a priority change

graph TD
    A["Device stack priority change - Scenario 3"] --> B["Activity 1 (pr=103)"]
    B --> C["Standby 2 (pr=0)"]
    C --> D["Member 3 (pr=0)"]
    D --> E["Member 4 (pr=0)"]
    E --> F["Activity 1 (pr=103)"]
    F --> G["Standby 2 (pr=0)"]
    G --> H["Member 5 (pr=150)"]
    H --> I["Member 4 (pr=200)"]
    I --> J["Activity 1 (pr=103)"]
    J --> K["Standby 2 (pr=0)"]
    K --> L["Member 3 (pr=126)"]
    L --> M["Member 4 (pr=200)"]
    M --> N["Activity 1 (pr=103)"]
    N --> O["Standby 2 (pr=0)"]
    O --> P["Member 3 (pr=150)"]
    P --> Q["Member 4 (pr=200)"]
    Q --> R["Activity 1 (pr=103)"]
    R --> S["Standby 2 (pr=0)"]
    S --> T["Member 3 (pr=150)"]
    T --> U["Member 4 (pr=200)"]
    U --> V["Activity 1 (pr=103)"]
    V --> W["Standby 2 (pr=0)"]
    W --> X["Member 3 (pr=150)"]
    X --> Y["Member 4 (pr=200)"]
    Y --> Z["Activity 1 (pr=103)"]
    Z --> AA["Standby 2 (pr=0)"]
    AA --> AB["Member 3 (pr=150)"]
    AB --> AC["Member 4 (pr=200)"]
    AC --> AD["Activity 1 (pr=103)"]
    AD --> AE["Standby 2 (pr=0)"]
    AE --> AF["Member 3 (pr=150)"]
    AF --> AG["Member 4 (pr=200)"]
    AG --> AH["Activity 1 (pr=103)"]
    AH --> AI["Standby 2 (pr=0)"]
    AI --> AJ["Member 3 (pr=150)"]
    AJ --> AK["Member 4 (pr=200)"]
    AK --> AL["Activity 1 (pr=103)"]
    AL --> AM["Standby 2 (pr=0)"]
    AM --> AN["Member 3 (pr=150)"]
    AN --> AO["Member 4 (pr=200)"]
    AO --> AP["Activity 1 (pr=103)"]
    AP --> AQ["Standby 2 (pr=0)"]
    AQ --> AR["Member 3 (pr=150)"]
    AR --> AS["Member 4 (pr=200)"]

Displaying information about hitless stacking

Use the show stack command to view information pertinent to a hitless stacking switchover or failover. The command output illustrates the Active and Standby Controllers, as well as the readiness of the Standby Controller to take over the role of Active Controller, if needed.

PowerConnect#show stack
alone: standalone, D: dynamic config, S: static config
ID Type Role Mac Address Pri State Comment
1 S FCX624S active 00e0.5200.2900 128 local Ready
2 S FCX624S standby 00c0.5200.0100 128 remote Ready
3 S FCX624S member 0000.0000.0000 128 reserve

Standby unit 2: protocols ready, can failover or manually switch over Current stack management MAC is 0000.5200.1100

NOTE

The text in bold highlights the information added for hitless stacking failover and switchover. For a description of the fields in this output, see "Field descriptions for the show stack command" on page 137.

Syslog messages for hitless stacking failover and switchover

Syslog messages are generated for the following events:

- Switchover

To view the System log or the traps logged on an SNMP trap receiver, enter the show log command at any level of the CLI. The following example output shows what the log might look like after a switchover or assignment of the Standby Controller.

PowerConnect# show log

Syslog logging: enabled (0 messages dropped, 1 flushes, 0 overruns)

Buffer logging: level ACDMETNN, B messages logged

level code: A-alert C-critical D-debugging M-emergency E-error

I=informational N=notification N=warningDynamic Log Buffer (50 lines):

0d00h05m34s:1:System: Interface ethernet mgmtl, state up

0d00h05m33s:I:Stack: Stack unit 8 has been assigned as STANDBY unit of the stack system

odvohosmiss:1:Stack: Stack is operational due to SWITCH-OVER

0d00h05m32s:1:Stack: Stack unit 1 has been elected as ACTIVE unit of the stack system

0d00h05m29s:W:System:Stack unit 2 Fan speed changed automatically to 2

0d00h05m25s;W:System:Stack unit 5 Fan speed changed automatically to 2

Od00h05m00s:I:System: Interface ethernet mgmt1, state down

Cd00h05m00s:I:Security: Telnet server enabled by from session

The following example output shows what the log might look like after a failover of the Active Controller.

PowerConnect# show log

Syslog logging: enabled (0 messages dropped, 0 flushes, 0 overruns)

Buffer logging: level ACDMEINW, 12 messages logged

level code: A=alert C=critical D=dbugging M=emergency E=error

I=informational N=notification S=warning

Dynamic Log Buffer (50 lines):

Od0Ch04m41s:T:Stack: Stack unit 3 has been assigned as STANDBY unit of the stack system

OdUChD4m12s:I:System: Interface ethernet mgmt1, state up

Od00h04m10s:T:System: Interface ethernet mgmt1, state down

Od0Ch04ml0s:I:System: Interface ethernet mgmt1, state up

Od0Ch04m09s:I:STP: VLAN 1 Bridge is RootBridge: 800000e052010000 (MgmtPriChg)

Od0Ch04m09s:1:System: Management MAC address changed to 00e0.5201.0000

Od0Ch04m09s:I:Stack: Stack is operational due to FAIL-OVER

Od00h04m08s:I:Stack: Stack unit 1 has been elected as ACTIVE unit of the stack system

Od0Ch04m08s:1:STP: VLAN 1 Port 8/1/1 STP State -> DISABLED (PortDown)

PowerConnect# debug stacking sync_rel_msq 4
stk_sync_trunk_mapping:sending trunk mapping...
start running config sync
sync_cdb:send cdb:sess = 0, pBuf = 2132f068
sync_cdb:send cdb:sess = 0, pBuf = 2132f57c
...
stk_sync_cdb:finished cdb sync 

PowerConnect# debug stacking sync_rei_msg 8
Hitless sync: TRUNK INFO size (1282)
**********************************************************************
Trunk ID: 10 (1 based), (Hw Trunk ID: 1),
g_sw_sys.trunk_config.trunk_entry[#9]
:number_of_ports = 2; creator = 0
g_sw_sys.trunk_config.trunk_entry[#9] MEMBER PORTS
port_list[0]=#009
port_list[1]=#010 

Syntax: debug stacking sync_rel_msg

PowerConnect B-Series FCX hitless stacking

Monitoring Hardware Components

Chapter

6

Table 39 lists the individual Dell PowerConnect switches and the hardware monitoring features they support.
TABLE 39 Supported hardware monitoring features

The procedures in this chapter describe how to configure the software to monitor hardware components.

Virtual cable testing

PowerConnect devices support Virtual Cable Test (VCT) technology. VCT technology enables the diagnosis of a conductor (wire or cable) by sending a pulsed signal into the conductor, then examining the reflection of that pulse. This method of cable analysis is referred to as Time Domain Reflectometry (TDR). By examining the reflection, the Dell PowerConnect device can detect and report cable statistics such as local and remote link pair, cable length, and link status.

Configuration notes

• This feature is supported on copper ports only. It is not supported on fiber ports.
- The port to which the cable is connected must be enabled when you issue the command to diagnose the cable. If the port is disabled, the command is replaced

Syntax: phy cable-diag tdr

Specify the variable in the following formats:

• PowerConnect B-Series FCX stackable switches -

Viewing the results of the cable analysis

To display the results of the cable analysis, enter a command such as the following at the Privileged EXEC level of the CLI.

In the above output, Local pair indicates the assignment of wire pairs from left to right, where Pair A is the left-most pair. Table 40 shows the Local pair mapping to the T568A pin/pair and color assignment from the TIA/EIA-568-B standard.

TABLE 40 Local pair definition

Figure 24 illustrates the T568A pin/pair assignment.

FIGURE 24 T568A pin/pair assignment

Pair 2

Orange

Specify the variable in the following formats:

• PowerConnect B-Series FCX stackable switches -

Table 41 defines the fields shown in the command output.

TABLE 41 Cable statistics

Supported Fiber Optic Transceivers

Table 42 lists the Small Form-Factor Pluggable (SFP) and 10-Gigabit Small Form Factor Pluggable (XFP) fiber optic transceivers supported on PowerConnect devices.

TABLE 42 Supported fiber optic transceivers

Digital optical monitoring

You can configure your Brocade device to monitor optical transceivers in the system, either globally or by specified ports. When this feature is enabled, the system will monitor the temperature and signal power levels for the optical transceivers in the specified ports. Console messages and Syslog messages are sent when optical operating conditions fall below or rise above the XFP or SFP manufacturer recommended thresholds.

Table 42 on page 191 specifies which Dell-qualified media types support digital optical monitoring.

Configuration limitations

Use the no form of the command to disable digital optical monitoring.

Setting the alarm interval

You can optionally change the interval between which alarms and warning messages are sent. The default interval is three minutes. To change the interval, use the following command.

PowerConnect{config}#interface ethernet 1/1 to 1/2

PowerConnect (config-mif-e10000-1/1-1/2) #optical-monitor 10

Syntax: [no] optical-monitor []

For , enter a value between 1 and 65535. Enter 0 to disable alarms and warning messages.

NOTE

The commands no optical-monitor and optical-monitor 0 perform the same function. That is, they both disable digital optical monitoring.

Displaying information about installed media

Use the show media, show media slot, and show media ethernet commands to obtain information about the media devices installed per device, per slot, and per port. The results displayed from these commands provide the Type, Vendor, Part number, Version and Serial number of the SFP or XFP optical device installed in the port. 1G M-C indicates 1b Gbps copper media. If no SFP or XFP device is installed in a port, the "Type" field will display "EMPTY".

Use the show media command to obtain information about the media devices installed in a device.

PowerConnect#show media

Part 1: Type : 1G M-SX2(SFP)
Vendor: Brocade Communications, Inc. Version: 0000
Part#: TRPAG1XRPBSS-FY Serial#: 0635000468 

Port 2: Type : EMPTY

Port 3: Type : EMPTY

Port 4: Type : 100M M-FX-SR(SFP)

Vendons: Nussels, Communal cold chain. The Vendons:

Port 24: Type : 1G M-C
Port 25: Type : 10G XG-SR(XFF)
Vendor: Brocade Communications Inc. Version: 02
Partt : JX2R018W05306 Serial#: F617604000A3
Port 26: Type : EMPTY 

Use the show media slot command to obtain information about the media device installed in a slot.

PowerConnect+show media slot 1
Port 1/1: Type : 1G M-SX(SFP)
    Vendor: Brocade Communications, Inc. Version:
    Part#: PL-XPL-VC-813-19 Serial#: 425HC103
Port 1/2: Type : 1G M-SX(SFP)
    Vendor: Brocade Communications, Inc. Version:
    Part#: PL-XPL-VC-813-19 Serial#: 411HC0AH
Port 1/3: Type : EMPTY
Port 1/4: Type : 1G M-SX(SFP)
    Vendor: Brocade Communications, Inc. Version: XI
    Part#: FTRJ-8519-3 Serial#: H11654K
Port 1/5: Type : EMPTY
Port 1/6: Type : EMPTY
Port 1/7: Type : 100M M-FX-IR(SFP)
    Vendor: Brocade Communications, Inc. Version: A
    Part#: FTLF1323P1BTR-TD Serial#: OCT000T
Port 1/8: Type : EMPTY
Port 1/9: Type : 100M M-FX-LR(STP)
    Vendor: Brocade Communications, Inc. Version: A
    Part#: FTLF1323P1BTL-TD Serial#: UD3085J
Port 1/10: Type : EMPTY
Port 1/11: Type : 100M M-FX-SR(SFP)
    Vendor: Brocade Communications, Inc. Version: A
    Part#: FTLF1217P2STL-FI Serial#: UCC003J
Port 1/12: Type : EMPTY
Port 1/13: Type : 100M M-FX-IR(SFP)
    Vendor: Brocade Communications, Inc. Version: A
    Part#: FTLF1323P1BTR-TI Serial#: PCA2XC5 

Use the show media ethernet command to obtain information about the media device installed in a port.

Digital optical monitoring

Normal

Normal

Normal

Normal

Syntax: show optic

NOTE

The show optic function takes advantage of information stored and supplied by the manufacturer of the XFP or SFP transceiver. This information is an optional feature of the Multi-Source Agreement standard defining the optical interface. Not all component suppliers have implemented this feature set. In such cases where the XFP or SFP transceiver does not supply the information, a "Not Available" message will be displayed for the specific port on which the module is installed.

The following table describes the information displayed by the show optic command.

TABLE 43 Output from the show optic command
This field... Displays...

For Temperature, Tx Power, Rx Power, and Tx Bias Current in the show optic command output, values are displayed along with one of the following alarm status values: Low-Alarm, Low-Warn, Normal, High-Warn or High-Alarm. The thresholds that determine these status values are set by the manufacturer of the optical transceivers. Table 44 describes each of these status values.

TARI F 44 Alarm status value description

Viewing optical transceiver thresholds

The thresholds that determine the alarm status values for an optical transceiver are set by the manufacturer of the XFP or SFP. To view the thresholds for a qualified optical transceiver in a particular port, use the show optic threshold command as shown below.

Syntax: show optic threshold

Specify the variable in the following formats:

PowerConnect B-Series FCX stackable switches -

For Temperature, Supply Voltage, TX Bias, TX Power, and RX Power, values are displayed for each of the following four alarm and warning settings: High alarm, Low alarm, High warning, and Low warning. The hexadecimal values are the manufacturer internal calibrations, as defined in the SFF-8472 standard. The other values indicate at what level (above the high setting or below the

Configuring IPv6 Management on PowerConnect B-Series FCXSwitches

Chapter

7

Table 45 lists the individual Dell PowerConnect switches and the IPv6 management features they support.
NOTE
The following table only shows the IPv6 management features that are supported. Full IPv6 L2/L3 support will be added in a future release.
TABLE 45 Supported IPv6 management features

This chapter describes the IPv6 management features, including command syntax and management examples.

IPv6 management overview

IPv6 was designed to replace IPv4, the Internet protocol that is most commonly used currently throughout the world. IPv6 increases the number of network address bits from 32 (IPv4) to 128, which provides more than enough unique IP addresses to support all of the network devices on the planet into the future. IPv6 is expected to quickly become the network standard.

Dell PowerConnect devices that support IPv6 may be used as management hosts. Interfaces on these devices are configured with IPv6 addresses, but do not have full IPv6 routing enabled. IPv6 is available on all Dell PowerConnect devices that are running Layer 2, base Layer 3, or full Layer 3 software images.

NOTE

Dell PowerConnect devices can serve as management hosts on an IPv6 network. However, IPv6 routing functionality is not supported for these devices.

IPv6 addressing

IPv4 is limited because of the 32-bit addressing format, which cannot satisfy potential increases in the number of users, geographical needs, and emerging applications. To address this limitation, IPv6 introduces a new 128-bit addressing format.

An IPv6 address is composed of 8 fields of 16-bit hexadecimal values separated by colons (:). Figure 25 shows the IPv6 address format.

FIGURE 25 IPv6 address format

• The hexadecimal letters in IPv6 addresses are not case-sensitive

As shown in Figure 25, the IPv6 network prefix is composed of the left-most bits of the address. As with an IPv4 address, you can specify the IPv6 prefix using the / format, where the following applies.

The parameter is specified as 16-bit hexadecimal values separated by a colon.

The parameter is specified as a decimal value that indicates the left-most bits of the IPv6 address.

The following is an example of an IPv6 prefix.

2001:FF08:49EA:D088::/64

Enabling and disabling IPv6

IPv6 is enabled by default for Dell PowerConnect devices that support it. If desired, you can disable IPv6 on a global basis on an device by entering the following command at the Global CONFIG level of the CLI.

PowerConnect(config)#no ipv6 enable

Syntax: no ipv6 enable

To re-enable IPv6 after it has been disabled, enter the ipv6 enable command.

IPv6 management features

This section describes the CLI management commands that are available to Dell PowerConnect devices that support IPv6.

IPv6 management ACLs

When you enter the IPv6 access-list command, the Dell PowerConnect device enters the IPv6 Access List configuration level, where you can access several commands for configuring IPv6 ACL

IPv6 debug

The debug ipv6 commands enable the collection of information about IPv6 configurations for troubleshooting.

Syntax: debug ipv6

2 * (forward_delay -1) >= max_age 

max_age >= 2 * (hello_time +1) 

PowerConnect(config)#spanning-tree priority 0 

PowerConnect(config)#vlan 20

PowerConnect(config-vlan-20)4spanning-tree priority 0 

PowerConnect(config)#vlan 1

PowerConnect(config-vlan-1)#spanning-tree priority 0 

graph TD
    A["Switch 1\nBridge priority = 100"] -->|Port2| B["Switch 2\nBridge priority = 200"]
    B -->|Port3| C["Switch 3\nBridge priority = 300"]
    C -->|Port4| D["Switch 4\nBridge priority = 400"]
    D -->|Port7| B
    B -->|Port8| D
    A -->|Port3| C
    C -->|Port2| A
    B -->|Port1| D

graph TD
    A["Switch 1\nBridge priority = 600"] -->|Port2 Port2| B["Switch 2\nBridge priority = 1000"]
    A -->|Port3| C["Switch 3\nBridge priority = 2000"]
    B -->|Port3| C
    C -->|Port5 Edge Port| D["Computer"]
    B -->|Port3| E["Server"]

graph TD
    A["Power Input"] --> B["Output"]
    C["Power Output"] --> D["Output"]
    E["Power Outlet"] --> F["Output"]

graph TD
    A["Switch 100\nRoot Bridge"] -->|RST RPDU\nand with a\nProposal\nflag| B["Switch 200"]
    A -->|Port2\nDesignated port\nProposing| B
    B -->|Port2\nPort3| C["Switch 300\nSwitch 400"]
    B -->|Port1\nRoot port\nProposed| D["Switch 200"]

graph TD
    A["Switch 100 Root Bridge"] -->|Port1 Designated port| B["Switch 200"]
    B -->|Port2 Sync Discarding| C["Switch 300 Switch 400"]
    B -->|Port3 Sync Discarding| D["Switch 300"]
    B -->|Port1 Root port Sync| E["Switch 200"]
    C --> F["Indicates a signal"]
    D --> F

graph TD
    A["Switch 100 Root Bridge"] -->|Port1 Designated port| B["Switch 200"]
    B -->|Port2 Synced Discarding| C["Switch 300"]
    B -->|Port3 Synced Discarding| D["Switch 400"]
    B -->|Indicates a signal| E["Output"]

graph TD
    A["Switch 100 Root Bridge"] -->|Port1 Designated port Forwarding| B["Switch 200"]
    B -->|Port2 Synced Discarding| C["Switch 300"]
    B -->|Port3 Synced Discarding| D["Switch 400"]
    B -->|RST BPDU sent with an Agreed flag| A
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cff,stroke:#333
    style D fill:#ffc,stroke:#333

graph TD
    A["Switch 100"] -->|Port1 Designated port| B["Switch 200"]
    A -->|Port2| C["Switch 60"]
    B -->|Port3| D["Switch 400"]
    B -->|Port4| E["Switch 300"]
    B -.->|Port5| F["Switch 200"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333
    style F fill:#ffc,stroke:#333

graph TD
    A["Switch 100"] -->|Port1| B["Switch 200"]
    A -->|Proposing| B
    B -->|Port2 Root port Forwarding| C["Switch 300"]
    B -->|Port3| D["Switch 400"]
    B -->|Port4 Designated port Proposed| E["Switch 60"]
    E -->|Port2 Handshake Completed Port2 Designated port| A
    E -->|Port4 Designated port Proposing| B
    B -->|Port1 Root port Forwarding| A
    B -->|Port2 Designated port Proposed| E
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333

graph TD
    A["Switch 100"] -->|Port1| B["Switch 200"]
    A -->|Port2, Root port| C["Switch 60"]
    B -->|Port3 Sync Reroot Discarding| D["Switch 300"]
    B -->|Port4 Root port Sync Reroot Discarding| E["Switch 400"]
    B -->|Port5 Sync Reroot Discarding| F["Switch 200"]
    C -->|Port4 Designated port Proposing| B
    D --> G["Indicates a signal"]
    E --> H["Indicates a signal"]
    F --> I["Indicates a signal"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333
    style F fill:#ffc,stroke:#333
    style G fill:#fcc,stroke:#333
    style H fill:#fcc,stroke:#333

graph TD
    A["Switch 100"] -->|Port1| B["Switch 200"]
    A -->|Proposing| B
    B -->|Port2 Sync Rerooted Discarding| C["Switch 300"]
    B -->|Port3 Sync Rerooted Discarding| D["Switch 400"]
    B -->|Port4 Root port Sync Rerooted Discarding| E["Switch 60"]
    E -->|Port2 Designated port| A
    B -->|Port1 Designated port Sync Rerooted Discarding| F["Switch 200"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#ffc,stroke:#333

graph TD
    A["Switch 100"] -->|Port1| B["Switch 200"]
    A -->|Port2\nRerooted Synced Discarding| B
    A -->|Port4\nRerooted Synced Forwarding| B
    B -->|Port3\nRerooted Synced Discarding| C["Switch 300"]
    B -->|Port4\nRerooted Synced Forwarding| D["Switch 400"]
    B -->|Port5\nRerooted Synced Discarding| E["Switch 60"]
    B -->|Port6\nRerooted Port Forwarding| F["Switch 60"]
    A -->|Port2\nRoot port| G["Switch 60"]
    B -->|Port1\nRerooted Synced Discarding| H["Switch 200"]
    B -->|Port2\nRerooted Synced Discarding| I["Switch 300"]
    B -->|Port3\nRerooted Synced Discarding| J["Switch 400"]
    B -->|Port4\nRerooted Port Forwarding| K["Switch 60"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333
    style F fill:#ffc,stroke:#333
    style G fill:#fcc,stroke:#333
    style H fill:#ffc,stroke:#333
    style I fill:#fcc,stroke:#333
    style J fill:#fcc,stroke:#333
    style K fill:#fcc,stroke:#333

graph TD
    A["Switch 100"] -->|Proposing| B["Switch 200"]
    B -->|Proposing Proposing| C["Switch 300"]
    B -->|Proposing Proposing| D["Switch 400"]
    B -->|Port1 Alternato port| E["Switch 200"]
    B -->|Port2 Root port| F["Switch 60"]
    F -->|Port1 Designated port| G["Switch 100"]
    F -->|Port2 Designated port| H["Switch 60"]
    B -->|Port3 Root port| I["Switch 200"]
    B -->|Port3 Root port| J["Switch 400"]

graph TD
    A["Bridge priority - 1500"] --> B["Switch 2"]
    B --> C["Port3 Designated port"]
    B --> D["Port3 Root port"]
    E["Switch 3"] --> F["Switch 3"]

graph TD
    A["Switch 2"] -->|Port3 Designated port| B["Switch 1"]
    A -->|Port3 Alternate port| C["Switch 3"]
    B -->|Port4 Designated port| C
    B -->|Port5 Backup port| A
    A -->|Bridge priority = 1500| D["Switch 2"]
    B -->|Bridge priority = 1000| E["Switch 1"]
    C -->|Bridge priority = 2000| F["Switch 3"]

graph TD
    A["Switch 2"] -->|Bridge priority = 1500| B["Switch 1"]
    A -->|Port3 Designated port| C["Switch 3"]
    A -->|Port2 Root port| D["Switch 1"]
    A -->|Port3 Alternative port| E["Switch 3"]
    B -->|Port4 Designated port| D
    B -->|Port5 Backup port| E
    C -->|Port4 Root port| E
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333

graph TD
    A["Switch 1"] -->|Port3| B["Switch 2"]
    A -->|Port4| C["Switch 3"]
    B -->|Port3| D["Switch 3"]
    C -->|Port4| D
    E["Bridge priority = 1000"] --> A
    F["Bridge priority = 1500"] --> B
    G["Bridge priority = 2000"] --> C
    H["Bridge priority = 1000"] --> I["Port5"]
    J["Bridge priority = 1500"] --> K["Port2"]
    L["Bridge priority = 2000"] --> M["Port3"]

graph TD
    Switch1["Switch 1"] -->|Port2| Switch2["Switch 2"]
    Switch1 -->|Port3| Switch3["Switch 3"]
    Switch2 -->|Port4| Switch4["Switch 4"]
    Switch2 -->|Port5| Switch5["Switch 5"]
    Switch2 -->|Port6| Switch6["Switch 6"]
    Switch2 -->|Port7| Switch1
    Switch2 -->|Port8| Switch2
    Switch2 -->|Port9| Switch2
    Switch3 -->|Port1| Switch4
    Switch3 -->|Port2| Switch1
    Switch3 -->|Port3| Switch2
    Switch4 -->|Port4| Switch3
    Switch4 -->|Port5 Ports| Switch5
    Switch4 -->|Port6 Ports| Switch6
    Switch6 -->|Port7 Port8| Switch2
    Switch6 -->|Port8 Port9| Switch2
    Switch6 -->|Port9 Port10| Switch1
    Switch6 -->|Port10 Port11| Switch1
    Switch6 -->|Port11 Port12| Switch2
    Switch6 -->|Port12 Port13| Switch3
    Switch6 -->|Port13 Port14| Switch4
    Switch6 -->|Port14 Port15| Switch5
    Switch6 -->|Port15 Port16| Switch6
    Switch6 -->|Port16 Port17| Switch5
    Switch6 -->|Port17 Port18| Switch4
    Switch6 -->|Port18 Port19| Switch5
    Switch6 -->|Port19 Port20| Switch5
    Switch6 -->|Port20 Port21| Switch5
    Switch6 -->|Port21 Port22| Switch5
    Switch6 -->|Port22 Port23| Switch5
    Switch6 -->|Port23 Port24| Switch5
    Switch6 -->|Port24 Port25| Switch5
    Switch6 -->|Port25 Port26| Switch5
    Switch6 -->|Port26 Port27| Switch5
    Switch6 -->|Port27 Port28| Switch5
    Switch6 -->|Port28 Port29| Switch5
    Switch6 -->|Port29 Port30| Switch5
    Switch6 -->|Port30 Port31| Switch5
    Switch6 -->|Port31 Port32| Switch5
    Switch6 -->|Port32 Port33| Switch5
    Switch6 -->|Port33 Port34| Switch5
    Switch6 -->|Port34 Port35| Switch5
    Switch6 -->|Port35 Port36| Switch5
    Switch6 -->|Port36 Port37| Switch5
    Switch6 -->|Port37 Port38| Switch5
    Switch6 -->|Port38 Port39| Switch5
    Switch6 -->|Port39 Port40| Switch5
    Switch6 -->|Port40 Port41| Switch5
    Switch6 -->|Port41 Port42| Switch5
    Switch6 -->|Port42 Port43| Switch5
    Switch6 -->|Port43 Port44| Switch5
    Switch6 -->|Port44 Port45| Switch5
    Switch6 -->|Port45 Port46| Switch5
    Switch6 -->|Port46 Port47| Switch5
    Switch6 -->|Port47 Port48| Switch5
    Switch6 -->|Port48 Port49| Switch5
    Switch6 -->|Port49 Port50| Switch5

graph TD
    Switch1["Switch 1"] -->|Port3| Switch2["Switch 2"]
    Switch2 -->|Port2| Switch1
    Switch2 -->|Port7| Switch2
    Switch2 -->|Port8| Switch5["Switch 5"]
    Switch2 -->|Port4| Switch4["Switch 4"]
    Switch4 -->|Port5| Switch6["Switch 6"]
    Switch4 -->|Port3| Switch3["Switch 3"]
    Switch3 -->|Port2| Switch1
    Switch3 -->|Port3| Switch2
    Switch2 -->|Port5| Switch5
    Switch2 -->|Port2| Switch5
    Switch2 -->|Port3| Switch4
    Switch2 -->|Port4| Switch3
    Switch2 -->|Port5| Switch6
    Switch2 -->|Port8| Switch5
    Switch2 -->|Port3| Switch4
    Switch2 -->|Port4| Switch3
    Switch2 -->|Port5| Switch6
    Switch2 -->|Port8| Switch5
    Switch2 -->|Port3| Switch3
    Switch2 -->|Port4| Switch4
    Switch2 -->|Port5| Switch6
    Switch2 -->|Port8| Switch5
    Switch2 -->|Port3| Switch3
    Switch2 -->|Port4| Switch4
    Switch2 -->|Port5| Switch6
    Switch2 -->|Port8| Switch5
    Switch2 -->|Port3| Switch3
    Switch2 -->|Port4| Switch4
    Switch2 -->|Port5| Switch6

    note right of Switch2: Bridge priority = 200
    note right of Switch2: Bridge priority = 60
    note right of Switch3: Bridge priority = 300
    note right of Switch4: Bridge priority = 400
    note right of Switch6: Bridge priority = 900

graph TD
    A["Switch 1"] -->|Port2 Port2| B["Switch 2"]
    B -->|Port5 Port2| C["Switch 5"]
    B -->|Port3 Port3| D["Switch 3"]
    D -->|Port4 Port4| E["Switch 4"]
    E -->|Port5 Port5| F["Switch 6"]
    F -->|Port3 Port3| C
    B -->|Port7 Port8| G["Bridge priority = 200"]
    D -->|Port4 Port4| H["Bridge priority = 300"]
    E -->|Port3 Port3| I["Bridge priority = 400"]
    F -->|Port4 Port4| J["Bridge priority = 500"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333
    style F fill:#ffc,stroke:#333
    style G fill:#fcc,stroke:#333
    style H fill:#cff,stroke:#333
    style I fill:#fcc,stroke:#333
    style J fill:#cff,stroke:#333

graph TD
    A["Switch 1"] -->|Port2| B["Switch 2"]
    B -->|Port5| C["Switch 5"]
    B -->|Port4| D["Switch 6"]
    D -->|Port3| E["Switch 3"]
    E -->|Port4 Port4| F["Switch 4"]
    F -->|Port5| G["Switch 6"]
    G -->|Port3| H["Switch 5"]
    H -->|Port2| I["Switch 2"]
    I -->|Port7 Port8| J["Switch 2"]
    J -->|Port7 Port8| K["Switch 1"]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333
    style C fill:#cfc,stroke:#333
    style D fill:#fcc,stroke:#333
    style E fill:#cff,stroke:#333
    style F fill:#ffc,stroke:#333
    style G fill:#fcc,stroke:#333
    style H fill:#cfc,stroke:#333
    style I fill:#fcc,stroke:#333
    style J fill:#cfc,stroke:#333
    style K fill:#fcc,stroke:#333

graph TD
    A["Switch 1\nBridge priority = 1000"] -->|Port3| B["Switch 3\nBridge priority = 300"]
    B -->|Port4 Port4| C["Switch 4\nBridge priority = 400"]
    C -->|Port5 Port5| D["Switch 5\nBridge priority = 900"]
    D -->|Port6 Port6| E["Switch 2\nBridge priority = 200"]
    E -->|Port7 Port8| F["Switch 2\nBridge priority = 200"]
    F -->|Port8 Port8| E
    E -->|Port3 Port3| B
    F -->|Port4 Port4| C
    F -->|Port5 Port5| D
    style A fill:#f9f,stroke:#333
    style B fill:#f9f,stroke:#333
    style C fill:#f9f,stroke:#333
    style D fill:#f9f,stroke:#333
    style E fill:#f9f,stroke:#333
    linkStyle 0 stroke:#000,stroke-width:2px
    linkStyle 1 stroke:#000,stroke-width:2px
    linkStyle 2 stroke:#000,stroke-width:2px
    linkStyle 3 stroke:#000,stroke-width:2px
    linkStyle 4 stroke:#000,stroke-width:2px
    linkStyle 5 stroke:#000,stroke-width:2px
    linkStyle 6 stroke:#000,stroke-width:2px
    linkStyle 7 stroke:#000,stroke-width:2px
    linkStyle 8 stroke:#000,stroke-width:2px
    linkStyle 9 stroke:#000,stroke-width:2px
    linkStyle 10 stroke:#000,stroke-width:2px
    linkStyle 11 stroke:#000,stroke-width:2px
    linkStyle 12 stroke:#000,stroke-width:2px
    linkStyle 13 stroke:#000,stroke-width:2px
    linkStyle 14 stroke:#000,stroke-width:2px
    linkStyle 15 stroke:#000,stroke-width:2px
    linkStyle 16 stroke:#000,stroke-width:2px
    linkStyle 17 stroke:#000,stroke-width:2px
    linkStyle 18 stroke:#000,stroke-width:2px
    linkStyle 19 stroke:#000,stroke-width:2px
    linkStyle 20 stroke:#000,stroke-width:2px
    linkStyle 21 stroke:#000,stroke-width:2px
    linkStyle 22 stroke:#000,stroke-width:2px
    linkStyle 23 stroke:#000,stroke-width:2px
    linkStyle 24 stroke:#000,stroke-width:2px
    linkStyle 25 stroke:#000,stroke-width:2px
    linkStyle 26 stroke:#000,stroke-width:2px
    linkStyle 27 stroke:#000,stroke-width:2px
    linkStyle 28 stroke:#000,stroke-width:2px
    linkStyle 29 stroke:#000,stroke-width:2px
    linkStyle 30 stroke:#000,stroke-width:2px
    linkStyle 31 stroke:#000,stroke-width:2px
    linkStyle 32 stroke:#000,stroke-width:2px
    linkStyle 33 stroke:#000,stroke-width:2px
    linkStyle 34 stroke:#000,stroke-width:2px
    linkStyle 35 stroke:#000,stroke-width:2px
    linkStyle 36 stroke:#000,stroke-width:2px
    linkStyle 37 stroke:#000,stroke-width:2px
    linkStyle 38 stroke:#000,stroke-width:2px
    linkStyle 39 stroke:#000,stroke-width:2px
    linkStyle 40 stroke:#f9f,stroke-width:2px
    linkStyle 41 stroke:#f9f,stroke-width:2px
    linkStyle 42 stroke:#f9f,stroke-width:2px
    linkStyle 43 stroke:#f9f,stroke-width:2px
    linkStyle 44 stroke:#f9f,stroke-width:2px
    linkStyle 45 stroke:#f9f,stroke-width:2px
    linkStyle 46 stroke:#f9f,stroke-width:2px
    linkStyle 47 stroke:#f9f,stroke-width:2px
    linkStyle 48 stroke:#f9f,stroke-width:2px
    linkStyle 49 stroke:#f9f,stroke-width:2px
    linkStyle 50 stroke:#f9f,stroke-width:2px

graph TD
    A["Switch 10\n802.1W"] --> B["Switch 20\n802.1D"]
    C["Switch 30\n802.1W"] --> D["Switch 30\n802.1W"]

PowerConnect#show 802-1w
--- VLAN 1 [ STP Instance owned by VLAN 1 ] ----
VLAN 1 B20U cam_Indox is 2 and the ICC and DMA master Arc(HEX) 0 1 2 3
Bridge IEEE 802.1W Parameters:
Bridge Bridge Bridge Bridge Force tx
Identifier MaxAge Hello FwdDly Version Hold
hex sec sec sec cnl
800000e080541700 20 2 15 Default 3 

RootBridge
Identifier
hex
RootPath
Cost
800000c0804c9c00
200000
DesignatedBri-
age Identifier
hex
Root
Port
1
Max
Age
sec
20
Fwd
Dly
sec
Hol
lo
sec
2
15
2 

Port IEEE 802.1W Parameters:
<--- Config Params ->|<---- Current state
Port Pri PortPath POP Edge Rule State Designs- Designated 

graph TD
    A["Switch 1"] -->|Port1/2 FWD| B["Switch 2"]
    A -->|Port1/4 FWD| B
    A -->|Port3/3 FWD| B
    A -->|Port3/4 BLK| B
    B -->|Port2/2 FWD| A
    B -->|Port2/4 FWD| A
    B -->|Port4/3 BLK| A
    B -->|Port4/4 FWD| A
    A -->|Port1/3 FWD| B
    B -->|Bridge priority = 4\nRoot port = 2/2\nAlternate = 2/3, 2/4\nRiding priority = 8]
    style A fill:#f9f,stroke:#333
    style B fill:#ccf,stroke:#333

graph TD
    A["Switch 1"] -->|Port 1/2 FWD| B["Switch 2"]
    A -->|Port 1/4 FWD| C["Switch 3"]
    A -->|Port 2/2 FWD| B
    A -->|Port 2/4 FWD| C
    B -->|Port 2/3 FWD| D["Switch 4"]
    B -->|Port 4/3 BLK| D
    C -->|Port 3/3 unavailable| D
    E["Switch 3"] -->|Port 1/3 DISABLED| A
    F["Switch 1"] -->|Port 1/3 FWD| A
    G["Switch 2"] -->|Port 2/3 FWD| B
    H["Switch 3"] -->|Port 3/4 FWD| C
    I["Switch 4"] -->|Port 4/4 FWD| B
    J["Switch 1"] -->|Bridge priority = 2\nRoot port = 2/2\nAlternate = 2/3, 2/4| B
    K["Switch 3"] -->|Bridge priority = 8\nRoot port = 3/4| C
    L["Switch 4"] -->|Bridge priority = 8\nRoot port = 4/4\nAlternate = 4/3| D
    M["Switch 1"] -->|X| N["Switch 3"]
    style A fill:#f9f,stroke:#333
    style B fill:#f9f,stroke:#333
    style C fill:#f9f,stroke:#333
    style D fill:#f9f,stroke:#333
    style E fill:#f9f,stroke:#333
    style F fill:#f9f,stroke:#333
    style G fill:#f9f,stroke:#333
    style H fill:#f9f,stroke:#333
    style I fill:#f9f,stroke:#333
    style J fill:#f9f,stroke:#333
    style K fill:#f9f,stroke:#333
    style L fill:#f9f,stroke:#333

graph TD
    A["Member VLAN 3"] --> B["Switch"]
    C["Member VLAN 4"] --> B
    D["Member VLAN 13"] --> B
    E["Member VLAN 14"] --> B
    F["Member VLAN 2"] --> B
    G["Member VLAN 3"] --> B
    H["Member VLAN 4"] --> B
    I["Member VLAN 12"] --> B
    J["Member VLAN 13"] --> B
    K["Member VLAN 14"] --> B
    L["STP group 1\nMaster VLAN 2\nMember VLAN 3\nMember VLAN 4\nSTP priority 1"] --> B
    M["STP group 2\nMaster VLAN 12\nMember VLAN 13\nMember VLAN 14\nSTP priority 2"] --> B

PowerConnect(config)#vlan 2
PowerConnect(config-vlan-2)#spanning-tree priority 1
PowerConnect(config-vlan-2)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan 2)#vlan 3
PowerConnect(config-vlan-3)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan-3)#vlan 4
PowerConnect(config-vlan-4)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan-4)#vlan 12
PowerConnect(config-vlan-12)#spanning-tree priority 2
PowerConnect(config-vlan-12)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan-12)#vlan 13
PowerConnect(config-vlan-13)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan-13)#vlan 14
PowerConnect(config-vlan-14)#tagged ethernet 1/1 to 1/4
PowerConnect(config-vlan-14)#exit 

PowerConnect(config)#stp-group 1
PowerConnect(config-stp-group-1)#master-vlan 2
PowerConnect(config-stp-group-1)#member-vlan 3 to 4
PowerConnect(config-stp-group-1)#exit
PowerConnect(config)#stp-group 2
PowerConnect(config-stp-group-2)#master-vlan 12
PowerConnect(config-stp-group 2)#member-vlan 13 to 14

graph TD
    A["Member VLANs 2 - 200"] --> B["Root bridge for master VLAN 1"]
    C["Member VLANs 202 - 400"] --> B
    D["Member VLANs 402 - 600"] --> B
    E["Member VLANs 3802 - 4000"] --> B
    B -->|FWD 1 5/3| F["Root bridge for master VLAN 401"]
    B -->|FWD 1 5/2| G["Root bridge for master VLAN 3801"]
    B -->|BLK 1| G
    B -->|BLK 1| H["Root bridge for master VLAN 201"]
    B -->|FWD 1 5/1| I["Root bridge for master VLAN 1"]
    B -->|FWD 1| J["Root bridge for master VLAN 201"]

graph TD
    A["PVST+Region IEEE 802.1Q Region"] -->|dual mode port| B["PVST Region"]
    B -->|PVST BPDUs (over ISL trunks)| A
    A -->|dual mode port| C["PVST+Region"]
    C -->|dual mode port| A
    C -->|PVST BPDUs (over ISL trunks)| B
    B -->|Do not connect| C
    style A fill:#f9f,stroke:#333
    style C fill:#f9f,stroke:#333
    note right of A: "PVST BPDUs tunneled through the IEEE 802.1Q region"
    note right of C: "PVST BPDUs (over ISL trunks)"

STP configured to ON, priority is level0, flow control enabled
mirror disabled, monitor disabled
Not member of any active trunks
Not member of any configured trunks
No port name
IPG MII 96 bits-time, IPG SMII 96 bits-time
IP MTU 1500 bytes
300 second input rate: 8 bits/sec, 0 packets/sec, 0.00% utilization
300 second output rate: 256 bits/sec, 0 packets/sec, 0.00% utilization
88 packets input, 15256 bytes, 0 no buffer
Received 75 broadcasts, 13 multicasts, 0 unicasts
1 input errors, 0 CRC, 0 frame, 0 ignored
0 runs, 0 giants
4798 packets output, 313268 bytos, 0 underruns
Transmitted 90 broadcasts, 4709 

PowerConnectfshow interfaces ethernet 1
GigabitEthernet1 is ERR-DISABLED (bpduguard), line protocol is down
BPDU guard is Enabled, ROOT protect is Disabled
Hardware is GigabitEthernet, address is 000c.dba0.7100 (bia 000c.dba0.7100)
Configured speed auto, actual unknown, configured duplex fdx, actual unknown
Configured mdi mode AUTO, actual unknown
Member of L2 VLAN ID 2, port is untaqqed, port state is DISABLED
STP configured to ON, priority is level0, flow control enabled
mirror disabled, monitor disabled
Not member of any active trunks
Not member of any configured trunks
No port name
IPG MII 96 bits-time, IPG GMII 96 bits-time
IP MTU 1500 bytes
300 second input rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
300 second output rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
145 packets input, 23561 bytes, 0 no buffer
Received 124 broadcasts, 21 multicasts, 0 unicasts
1 input errors, 0 CRC, 0 frame, 0 ignored
0 runts, 0 giants
5067 packets output, 330420 bytes, 0 underruns
Transmitted 90 broadcasts, 4977 multicasts, 0 unicasts
0 output errors, 0 collisions 

PowerConnect#show errdisable recovery
ErrDisable Reason Timer Status 

graph TD
    A["Switch 1"] -->|Port2/1| B["Switch 2"]
    A -->|Port1/2| C["Switch 3"]
    B -->|Port1/3| D["Switch 4"]
    B -->|Port1/1| E["Switch 5"]
    C -->|Port2/1| F["Switch 6"]
    D -->|Port2/3| G["Switch 4"]
    E -->|Port2/2| H["Switch 5"]
    F -->|Port1/4| I["Switch 3"]
    G -->|Port1/2| J["Switch 6"]
    H -->|Port1/2| K["Switch 5"]
    L["Switch 2"] -->|Port1/4| M["Switch 3"]
    M -->|Port3/1| N["Switch 5"]
    N -->|Port3/2| O["Switch 4"]
    O -->|Port3/3| P["Switch 5"]

PowerConnect(config-vlan-20)†show run
Current configuration:
!
ver 7.2.00sT7f1
!
!
vlan 1 name DEFAULT-VLAN by port
no spanning-tree
!
vlan 10 by port
tagged else 1 to 2
no spanning tree
!
vlan 20 by port <---- VLAN 20 configuration
tagged else 1 to 2
no spanning-tree
!
mstp scope all
mstp instance 0 vlan 1
mstp instance 1 vlan 20
mstp start
some lines omitted for brevity...
PowerConnect(config-vlan-20)‡no vlan 20 <---- VLAN 20 deleted
PowerConnect(config-vlan-20)†show run
Current configuration:
!
ver 7.2.00aT7f1
!
!
vlan 1 name DEFAULT-VLAN by port
no spanning-tree
!
vlan 10 by port
tagged else 1 to 2
no spanning-tree
!
mstp scope all 

graph TD
    RTR1["Port10/1"] -->|Port10/2| Core1["Port 2/16"]
    Core1 -->|Ports 2/9-2/12| Core2["Port 3/17-3/20"]
    Core2 -->|Ports 3/5-3/6| LAN4["LAN4"]
    Core2 -->|Ports 3/5-3/6| LAN4
    Core1 -->|Ports 2/13-2/14| LAN4
    Core2 -->|Ports 3/1-3/2| LAN4