Dell Networking S6000 Uživatelský manuál Strana 117
- Strana / 986
- Tabulka s obsahem
- ŘEŠENÍ PROBLÉMŮ
- KNIHY
Hodnocené. / 5. Na základě hodnocení zákazníků
seq 15 permit ip any host 1.1.1.3
seq 20 permit ip any host 1.1.1.4
Dell# end
Dell# resequence access-list ipv4 test 2 2
Dell# show running-config acl
!
ip access-list extended test
remark 2 XYZ
remark 4 this remark corresponds to permit any host 1.1.1.1
seq 4 permit ip any host 1.1.1.1
remark 6 this remark has no corresponding rule
remark 8 this remark corresponds to permit ip any host 1.1.1.2
seq 8 permit ip any host 1.1.1.2
seq 10 permit ip any host 1.1.1.3
seq 12 permit ip any host 1.1.1.4
Route Maps
Route maps are supported on S6000 platform.
Similar to ACLs and prefix lists, route maps are composed of a series of commands that contain a
matching criterion and an action; however, route maps can change the packets meeting the criterion.
ACLs and prefix lists can only drop or forward the packet or traffic. Route maps process routes for route
redistribution. For example, a route map can be called to filter only specific routes and to add a metric.
Route maps also have an “implicit deny.” Unlike ACLs and prefix lists; however, where the packet or traffic
is dropped, in route maps, if a route does not match any of the route map conditions, the route is not
redistributed.
Implementation Information
The Dell Networking OS implementation of route maps allows route maps with the no match or no set
commands. When there is no match command, all traffic matches the route map and the set command
applies.
Flow-Based Monitoring Support for ACLs
Flow-based monitoring is supported on the S6000 platform.
Flow-based monitoring conserves bandwidth by monitoring only the specified traffic instead of all traffic
on the interface. It is available for Layer 2 and Layer 3 ingress traffic. You can specify traffic using standard
or extended access-lists. This mechanism copies incoming packets that matches the ACL rules applied
on the ingress port and forwards (mirrors) them to another port. The source port is the monitored port
(MD) and the destination port is the monitoring port (MG).
The port mirroring application maintains and performs all the monitoring operations on the chassis. ACL
information is sent to the ACL manager, which in turn notifies the ACL agent to add entries in the CAM
area. Duplicate entries in the ACL are not saved.
When a packet arrives at a port that is being monitored, the packet is validated against the configured
ACL rules. If the packet matches an ACL rule, the system examines the corresponding flow processor to
perform the action specified for that port. If the mirroring action is set in the flow processor entry, the
destination port details, to which the mirrored information must be sent, are sent to the destination port.
Access Control Lists (ACLs)
117
- 9.5(0.1) 1
- Notes, Cautions, and Warnings 2
- Contents 3
- About this Guide 32
- Configuration Fundamentals 33
- Navigating CLI Modes 34
- The do Command 37
- Undoing Commands 38
- Obtaining Help 39
- Entering and Editing Commands 39
- Command History 40
- Getting Started 43
- Default Configuration 44
- Configuring a Host Name 44
- Accessing the System Remotely 45
- Configure a Management Route 46
- Configuration File Management 47
- Viewing Files 49
- Managing the File System 50
- View Command History 51
- Upgrading Dell Networking OS 51
- Using HTTP for File Transfers 51
- Management 54
- Configuring Logging 57
- Audit and Security Logs 58
- Configuring Logging Format 59
- Disabling System Logging 61
- Configuration 63
- Synchronizing Log Messages 65
- File Transfer Services 66
- Terminal Lines 68
- Lock CONFIGURATION Mode 71
- S6000MXL Switch 72
- Configuring 802.1X 78
- Enabling 802.1X 79
- Re-Authenticating a Port 83
- Configuring Timeouts 84
- Authentication 85
- Configuring a Guest VLAN 87
- CAM Usage 90
- ACLs and VLANs 92
- ACL Optimization 92
- Configure Route Map Filters 95
- Configuring Match Routes 96
- Configuring Set Conditions 97
- Continue Clause 99
- IP Fragment Handling 100
- Layer 4 ACL Rules Examples 101
- Configure a Standard IP ACL 102
- Access Control Lists (ACLs) 103
- Configure an Extended IP ACL 104
- Applying an IP ACL 107
- Configure Ingress ACLs 108
- Configure Egress ACLs 109
- IP Prefix Lists 110
- Implementation Information 111
- Viewing Prefix Lists 113
- ACL Resequencing 115
- Route Maps 117
- How BFD Works 121
- BFD Packet Format 122
- BFD Sessions 124
- BFD Three-Way Handshake 124
- Session State Changes 125
- Important Points to Remember 126
- Configure BFD 126
- Related Configuration Tasks 127
- Enabling BFD Globally 127
- Disabling and Re-Enabling BFD 130
- Configure BFD for OSPF 132
- Disabling BFD for OSPF 134
- Configure BFD for OSPFv3 135
- Configure BFD for IS-IS 136
- Disabling BFD for IS-IS 138
- Configure BFD for BGP 139
- Disabling BFD for BGP 141
- Use BFD in a BGP Peer Group 142
- Configure BFD for VRRP 146
- Configuring Protocol Liveness 149
- Troubleshooting BFD 149
- Autonomous Systems (AS) 151
- Figure 17. Internal BGP 152
- Sessions and Peers 153
- Route Reflectors 154
- BGP Attributes 155
- Best Path Selection Criteria 156
- Best Path Selection Details 157
- Local Preference 158
- Next Hop 161
- Multiprotocol BGP 162
- Four-Byte AS Numbers 163
- AS4 Number Representation 164
- AS Number Migration 165
- Configuration Information 168
- BGP Configuration 168
- Enabling BGP 169
- Configuring Peer Groups 175
- Configuring Passive Peering 179
- Enabling Graceful Restart 182
- Redistributing Routes 186
- Enabling Additional Paths 187
- Changing MED Attributes 192
- Changing the WEIGHT Attribute 194
- Enabling Multipath 194
- Filtering BGP Routes 194
- Aggregating Routes 198
- Enabling Route Flap Dampening 199
- Changing BGP Timers 202
- Enabling MBGP Configurations 204
- Debugging BGP 205
- Storing Last and Bad PDUs 206
- Capturing PDUs 207
- PDU Counters 208
- Sample Configurations 209
- CAM Allocation 215
- Test CAM Usage 217
- View CAM Profiles 217
- View CAM-ACL Settings 218
- View CAM Usage 220
- CAM Optimization 220
- Troubleshoot CAM Profiling 221
- Control Plane Policing (CoPP) 223
- Show Commands 228
- Data Center Bridging (DCB) 230
- Priority-Based Flow Control 231
- Enabling Data Center Bridging 236
- Configuring Lossless Queues 240
- ETS Operation with DCBx 247
- Configure a DCBx Operation 249
- DCBx Operation 250
- DCBx Port Roles 250
- DCB Configuration Exchange 252
- Configuration Source Election 252
- Behavior of Tagged Packets 254
- DCBx Example 255
- Configuring DCBx 256
- DCBx Error Messages 259
- Applying a DCB Map on a Port 278
- PFC Configuration Notes 281
- ETS Configuration Notes 283
- Pause and Resume of Traffic 284
- Settings 285
- Figure 31. DHCP packet Format 289
- Configuration Tasks 294
- Specifying a Default Gateway 295
- Debugging the DHCP Server 296
- Using DHCP Clear Commands 296
- Stacking 299
- Virtual Link Trunking (VLT) 300
- VLAN and Port Channels 300
- DHCP Snooping 300
- DHCP Server 300
- Configure Secure DHCP 301
- Clearing the Binding Table 303
- Dynamic ARP Inspection 304
- Source Address Validation 306
- Equal Cost Multi-Path (ECMP) 309
- Link Bundle Monitoring 310
- Managing ECMP Group Paths 311
- Creating an ECMP Group Bundle 312
- FCoE Transit 315
- Table 20. FIP Functions 316
- Using FIP Snooping 319
- Enable FIP Snooping on VLANs 321
- Configure the FC-MAP Value 321
- FIP Snooping Restrictions 322
- Configuring FIP Snooping 322
- Flex Hash Capability Overview 331
- Optimizing the Boot Time 332
- LACP and IPv4 Routing 334
- LACP and IPv6 Routing 335
- BGP Graceful Restart 335
- Software Upgrade 336
- LACP Fast Switchover 336
- Changes to BGP Multipath 336
- Protocol Overview 339
- Ring Status 340
- Multiple FRRP Rings 341
- Important FRRP Points 341
- Important FRRP Concepts 341
- Implementing FRRP 343
- FRRP Configuration 343
- Configuring the Control VLAN 344
- Setting the FRRP Timers 346
- Clearing the FRRP Counters 347
- Viewing the FRRP Information 347
- Troubleshooting FRRP 348
- Configure GVRP 351
- Enabling GVRP Globally 352
- Configure GVRP Registration 352
- Configure a GARP Timer 353
- LeaveAll Timer 5000 354
- Dell(conf)# 354
- IGMP Protocol Overview 355
- Join a Multicast Group 356
- Responding to an IGMP Query 356
- Leaving a Multicast Group 356
- IGMP Version 3 357
- Leaving and Staying in Groups 359
- Configure IGMP 360
- Selecting an IGMP Version 361
- Viewing IGMP Groups 362
- Adjusting Timers 362
- Enabling IGMP Immediate-Leave 364
- IGMP Snooping 364
- Disabling Multicast Flooding 365
- Applications 367
- Protocol Separation 368
- Interfaces 377
- Interface Types 378
- Enabling a Physical Interface 380
- Physical Interfaces 380
- Overview of Layer Modes 381
- Management Interfaces 385
- VLAN Interfaces 386
- Loopback Interfaces 387
- Null Interfaces 388
- Port Channel Interfaces 388
- Port Channel Benefits 389
- Port Channel Implementation 389
- Creating a Port Channel 390
- Changing the Hash Algorithm 396
- Bulk Configuration 397
- Bulk Configuration Examples 398
- Define the Interface Range 399
- Maintenance Using TDR 401
- Support for LM4 Optics 404
- Example Scenarios 404
- Link Dampening 408
- Clearing Dampening Counters 409
- Threshold Settings 411
- Enabling Pause Frames 411
- Table 29. Layer 2 Overhead 412
- Port-Pipes 413
- Set Auto-Negotiation Options 415
- Dynamic Counters 418
- IPv4 Routing 423
- Configuring Static Routes 425
- Messages 427
- Enabling Directed Broadcast 428
- Resolution of Host Names 428
- Configuration Tasks for ARP 431
- Enabling Proxy ARP 432
- Clearing ARP Cache 432
- ARP Learning via ARP Request 433
- Configuring ARP Retries 434
- Configuration Tasks for ICMP 435
- UDP Helper 436
- Enabling UDP Helper 436
- Troubleshooting UDP Helper 440
- IPv6 Routing 441
- IPv6 Headers 442
- IPv6 Header Fields 444
- Extension Header Fields 445
- Addressing 446
- Link-local Addresses 447
- Static and Dynamic Addressing 447
- Path MTU Discovery 450
- IPv6 Neighbor Discovery 451
- Configuration Tasks for IPv6 454
- Adjusting Your CAM-Profile 455
- Assigning a Static IPv6 Route 456
- Configuring Telnet with IPv6 457
- SNMP over IPv6 457
- Showing IPv6 Information 457
- Showing an IPv6 Interface 458
- Showing IPv6 Routes 459
- Clearing IPv6 Routes 460
- IS-IS Protocol Overview 472
- IS-IS Addressing 472
- Multi-Topology IS-IS 473
- Graceful Restart 474
- Enabling IS-IS 477
- Changing LSP Attributes 482
- Table 32. Metric Styles 483
- Configuring the IS-IS Cost 484
- Changing the IS-Type 485
- Controlling Routing Updates 486
- Distribute Routes 486
- Applying IPv4 Routes 486
- Applying IPv6 Routes 487
- Redistributing IPv4 Routes 488
- Redistributing IPv6 Routes 489
- Setting the Overload Bit 490
- Debugging IS-IS 491
- IS-IS Metric Styles 492
- Configure Metric Values 492
- LACP Modes 499
- Configuring LACP Commands 499
- LACP Configuration Tasks 500
- Setting the LACP Long Timeout 501
- Shared LAG State Tracking 502
- Configure a LAG on ALPHA 505
- Manage the MAC Address Table 513
- MAC Learning Limit 514
- NIC Teaming 518
- Configure Redundant Pairs 519
- Far-End Failure Detection 522
- FEFD State Changes 523
- Configuring FEFD 524
- Enabling FEFD on an Interface 525
- Debugging FEFD 526
- An RPM Failover 527
- 802.1AB (LLDP) Overview 528
- Optional TLVs 529
- Table 38. Optional TLV Types 530
- TIA-1057 (LLDP-MED) Overview 531
- LLDP-MED Capabilities TLV 533
- LLDP-MED Network Policies TLV 534
- Configure LLDP 536
- LLDP Compatibility 537
- Enabling LLDP 538
- Advertising TLVs 539
- Figure 72. Configuring LLDP 540
- Configuring LLDPDU Intervals 542
- Configuring a Time to Live 543
- Debugging LLDP 544
- Relevant Management Objects 545
- NLB Unicast Mode Scenario 551
- NLB Multicast Mode Scenario 552
- Configuring a Switch for NLB 553
- Anycast RP 556
- Enable MSDP 560
- Terminating a Peership 570
- Clearing Peer Statistics 570
- Debugging MSDP 571
- MSDP with Anycast RP 571
- Configuring Anycast RP 573
- MSDP Sample Configurations 576
- Spanning Tree Variations 580
- Modifying Global Parameters 584
- Configuring an EdgePort 586
- MSTP Sample Configurations 587
- Multicast Features 594
- Multicast Policies 596
- Area Types 606
- Networks and Neighbors 607
- Router Types 607
- Backbone Router (BR) 608
- Area Border Router (ABR) 608
- Internal Router (IR) 609
- LSA Throttling 610
- OSPF with Dell Networking OS 611
- OSPF ACK Packing 615
- Assigning a Router ID 617
- Assigning an OSPFv2 Area 619
- Enable OSPFv2 on Interfaces 619
- Configuring Stub Areas 621
- Enabling Passive Interfaces 622
- Enabling Fast-Convergence 623
- Creating Filter Routes 628
- Applying Prefix Lists 628
- Troubleshooting OSPFv2 629
- Basic OSPFv2 Router Topology 631
- OSPF Area 0 — Gl 1/1 and 1/2 631
- OSPF Area 0 — Gl 3/1 and 3/2 632
- OSPF Area 0 — Gl 2/1 and 2/2 632
- Enabling IPv6 Unicast Routing 633
- Configuring Passive-Interface 634
- Configuring a Default Route 635
- Displaying Graceful Restart 637
- Troubleshooting OSPFv3 645
- Viewing Summary Information 646
- Policy-based Routing (PBR) 647
- Networking OS 649
- PBR Exceptions (Permit) 652
- Sample Configuration 654
- Create the Redirect-List GOLD 655
- View Redirect-List GOLD 656
- PIM Sparse-Mode (PIM-SM) 657
- Refuse Multicast Traffic 658
- Send Multicast Traffic 658
- Configuring PIM-SM 659
- Enable PIM-SM 659
- Configuring S,G Expiry Timers 660
- Configure PIM-SMM 665
- Enabling PIM-SSM 665
- Port Monitoring 668
- Configuring Port Monitoring 670
- Remote Port Mirroring 673
- Configuration Notes 674
- Restrictions 676
- Configuration steps for ERPM 680
- Enabling PVST+ 685
- Disabling PVST+ 686
- PVST+ Sample Configurations 692
- Quality of Service (QoS) 694
- Port-Based QoS Configurations 696
- Classify Traffic 700
- Creating a Layer 2 Class Map 701
- Create a QoS Policy 704
- DSCP Color Maps 706
- Displaying DSCP Color Maps 707
- Create Policy Maps 708
- Creating Output Policy Maps 711
- Enabling QoS Rate Adjustment 712
- Creating WRED Profiles 715
- Marking Packets 722
- Enabling RIP Globally 731
- Configure RIP on Interfaces 732
- Generating a Default Route 735
- Summarize Routes 735
- Controlling Route Metrics 736
- Debugging RIP 736
- RIP Configuration Example 737
- Core 2 RIP Output 738
- RIP Configuration on Core3 739
- Core 3 RIP Output 739
- RIP Configuration Summary 741
- Remote Monitoring (RMON) 743
- Setting the rmon Alarm 744
- Configuring an RMON Event 745
- Service Provider Bridging 758
- Configure VLAN Stacking 760
- Debugging VLAN Stacking 762
- VLAN Stacking 763
- Enabling Drop Eligibility 766
- Layer 2 Protocol Tunneling 770
- Setting Rate-Limit BPDUs 773
- Provider Backbone Bridging 774
- Overview 775
- Enabling Extended sFlow 776
- Displaying Show sFlow Global 777
- Back-Off Mechanism 779
- SNMPv3 Compliance With FIPS 783
- Set up SNMP 785
- Creating a Community 786
- Reading Managed Object Values 787
- Writing Managed Object Values 788
- Copying a Configuration File 795
- Manage VLANs using SNMP 799
- Managing Overload on Startup 801
- Deriving Interface Indices 804
- Monitor Port-Channels 805
- Storm Control 807
- Spanning Tree Protocol (STP) 808
- Enabling PortFast 814
- Selecting STP Root 817
- STP Root Guard 818
- Configuring Root Guard 819
- STP Loop Guard 821
- Configuring Loop Guard 822
- System Time and Date 824
- Enabling NTP 826
- Configuring NTP Broadcasts 827
- Disabling NTP on an Interface 827
- Configuration Task List 831
- Setting the Timezone 832
- Set Daylight Saving Time 832
- Tunneling 835
- Interfaces for Tunnels 839
- Upgrade Procedures 840
- Virtual LANs (VLANs) 841
- Port-Based VLANs 842
- VLANs and Port Tagging 842
- Moving Untagged Interfaces 845
- Configuring Native VLANs 847
- VLT Proxy Gateway 849
- VLT on Core Switches 857
- Enhanced VLT 857
- VLT Terminology 858
- RSTP and VLT 864
- VLT Bandwidth Monitoring 864
- VLT and IGMP Snooping 865
- VLT IPv6 865
- VLT Port Delayed Restoration 865
- VLT Routing 867
- Configuring VLT Unicast 868
- VLT Multicast Routing 868
- Configuring VLT Multicast 869
- RSTP Configuration 870
- Sample RSTP Configuration 871
- Configuring VLT 871
- Configuring a VLT Backup Link 873
- VLT Sample Configuration 878
- Verifying a VLT Configuration 886
- Access Switch) 891
- Troubleshooting VLT 892
- Components of VXLAN network 903
- VXLAN Frame Format 905
- Controller GUI 906
- 2. Create Service Node 907
- Configuring VxLAN Gateway 909
- VRF Overview 913
- VRF Configuration Notes 914
- Table 74 915
- VRF Configuration 917
- View VRF Instance Information 918
- Sample VRF Configuration 919
- Route Leaking VRFs 927
- VRRP Overview 928
- VRRP Benefits 929
- VRRP Implementation 929
- VRRP Configuration 930
- Assign Virtual IP addresses 932
- Disabling Preempt 935
- Track an Interface or Object 937
- Tracking an Interface 938
- VRRP in a VRF Configuration 945
- VLAN Scenario 947
- Offline Diagnostics 950
- Configuring Fanout Mode 955
- Trace Logs 958
- Hardware Watchdog Timer 959
- Table 76. SNMP Traps and OIDs 960
- Buffer Tuning 961
- Deciding to Tune Buffers 963
- Troubleshooting Packet Loss 967
- Dataplane Statistics 968
- Display Stack Port Statistics 969
- Display Stack Member Counters 970
- Mini Core Dumps 971
- Enabling TCP Dumps 972
- Standards Compliance 973
- RFC and I-D Compliance 974
- General IPv4 Protocols 975
- General IPv6 Protocols 976
- Border Gateway Protocol (BGP) 976
- Multicast 979
- Network Management 979
- MIB Location 986
Související produkty a manuály pro Software Dell Networking S6000
Software Dell A02 Uživatelská příručka
(38 stránky)
(38 stránky)
Software Dell Vizioncore Uživatelská příručka
(189 stránky)
(189 stránky)
Software Dell V1.2 Uživatelský manuál
(224 stránky)
(224 stránky)
Software Dell Vizioncore Uživatelská příručka
(23 stránky)
(23 stránky)
Software Dell Computer Drive CMC 3.2 Uživatelský manuál
(292 stránky)
(292 stránky)
Software Dell Force10 Z9000 Uživatelský manuál
(937 stránky)
(937 stránky)
Software Dell Vizioncore Uživatelský manuál
(141 stránky)
(141 stránky)
© 2020, manymanuals.cz. Všechna práva vyhrazena. | 1.035 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce